Inspiron I5 running slow
- Thread starter tremmor
- Start date
tremmor
Well-Known Member
got all the programs running good as mentioned. But see another problem
now. taking for ever to start the laptop. then when i log in it takes a few minutes
before everything starts working properly. think i have to wait 3 or 4 minutes.
click on browser etc and everything works.
now. taking for ever to start the laptop. then when i log in it takes a few minutes
before everything starts working properly. think i have to wait 3 or 4 minutes.
click on browser etc and everything works.
There's probably a bunch of crap running on startup.
I'm moving more and more towards Chrome so that I can use Roboform. I can't get it to work in Pale Moon.
I'm moving more and more towards Chrome so that I can use Roboform. I can't get it to work in Pale Moon.
Either too many startup processes or you actually have a rootkit infection. Try running tdsskiller to make sure.
Please download and run tdsskiller and post the log. Just copy and past the log inside your reply, no need to attach it.
Please download and run TDSSkiller
When the program opens, Click on the change parameters button, click on the detect tdlfs file system, click ok, click on the start scan button.
TDSSKiller will now scan your computer for the TDSS infection. When the scan has finished it will display a result screen stating whether or not the infection was found on your computer. If it was found it will display a screen similar to the one below.
To remove the infections simply click on the Continue button and TDSSKiller will attempt to clean them or remove them.
After trying to clean them it will pop up with the results of the scan and its actions.
Please reboot the system if asked to do so.
After running there will be a log that will be located at the root of your c:\ drive labeled tdsskiller with a series of numbers after it example, C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt
Please open the log and copy and paste it back here.
Please download and run tdsskiller and post the log. Just copy and past the log inside your reply, no need to attach it.
Please download and run TDSSkiller
When the program opens, Click on the change parameters button, click on the detect tdlfs file system, click ok, click on the start scan button.
TDSSKiller will now scan your computer for the TDSS infection. When the scan has finished it will display a result screen stating whether or not the infection was found on your computer. If it was found it will display a screen similar to the one below.
To remove the infections simply click on the Continue button and TDSSKiller will attempt to clean them or remove them.
After trying to clean them it will pop up with the results of the scan and its actions.
Please reboot the system if asked to do so.
After running there will be a log that will be located at the root of your c:\ drive labeled tdsskiller with a series of numbers after it example, C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt
Please open the log and copy and paste it back here.
tremmor
Well-Known Member
16:41:05.0872 0x0ce8 TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
16:41:11.0958 0x0ce8 ============================================================
16:41:11.0958 0x0ce8 Current date / time: 2015/09/09 16:41:11.0958
16:41:11.0958 0x0ce8 SystemInfo:
16:41:11.0958 0x0ce8
16:41:11.0958 0x0ce8 OS Version: 6.1.7601 ServicePack: 1.0
16:41:11.0958 0x0ce8 Product type: Workstation
16:41:11.0958 0x0ce8 ComputerName: SHERRY-PC
16:41:11.0958 0x0ce8 UserName: Sherry
16:41:11.0958 0x0ce8 Windows directory: C:\Windows
16:41:11.0958 0x0ce8 System windows directory: C:\Windows
16:41:11.0958 0x0ce8 Running under WOW64
16:41:11.0958 0x0ce8 Processor architecture: Intel x64
16:41:11.0958 0x0ce8 Number of processors: 4
16:41:11.0958 0x0ce8 Page size: 0x1000
16:41:11.0958 0x0ce8 Boot type: Normal boot
16:41:11.0958 0x0ce8 ============================================================
16:41:14.0337 0x0ce8 KLMD registered as C:\Windows\system32\drivers\44306757.sys
16:41:16.0933 0x0ce8 System UUID: {E3EF4B74-CC90-A766-11E8-0CF2655F2653}
16:41:18.0084 0x0ce8 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0:
16:41:18.0099 0x0ce8 MBR partitions:
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x38606863
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 C: <-> \Device\Harddisk0\DR0\Partition2
16:41:18.0287 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 Initialize success
16:41:18.0287 0x0ce8 ============================================================
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc Scan started
16:41:28.0364 0x0bbc Mode: Manual;
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc KSN ping started
16:41:31.0165 0x0bbc KSN ping finished: true
16:41:33.0979 0x0bbc ================ Scan system memory ========================
16:41:33.0979 0x0bbc System memory - ok
16:41:33.0979 0x0bbc ================ Scan services =============================
16:41:35.0579 0x0bbc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:41:35.0625 0x0bbc 1394ohci - ok
16:41:35.0766 0x0bbc [ 426E0E8127BAC7D5DDEE8251F104E053, 7A0FD2F9828FA155FF8626801724151B9721EAFF6F737BBD6044CCBA92A73BCA ] AbsoluteNotifier C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
16:41:36.0127 0x0bbc AbsoluteNotifier - ok
16:41:36.0267 0x0bbc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:41:36.0298 0x0bbc ACPI - ok
16:41:36.0382 0x0bbc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:41:36.0386 0x0bbc AcpiPmi - ok
16:41:37.0246 0x0bbc [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:41:37.0506 0x0bbc AdobeFlashPlayerUpdateSvc - ok
16:41:37.0553 0x0bbc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:41:37.0584 0x0bbc adp94xx - ok
16:41:37.0615 0x0bbc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:41:37.0615 0x0bbc adpahci - ok
16:41:37.0693 0x0bbc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:41:37.0755 0x0bbc adpu320 - ok
16:41:37.0818 0x0bbc [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:41:37.0818 0x0bbc AeLookupSvc - ok
16:41:37.0930 0x0bbc [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
16:41:37.0930 0x0bbc AERTFilters - ok
16:41:38.0039 0x0bbc [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
16:41:38.0055 0x0bbc AFD - ok
16:41:38.0133 0x0bbc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
16:41:38.0148 0x0bbc agp440 - ok
16:41:38.0211 0x0bbc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
16:41:38.0211 0x0bbc ALG - ok
16:41:38.0304 0x0bbc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
16:41:38.0320 0x0bbc aliide - ok
16:41:38.0394 0x0bbc [ 3D90CF67DB75823A8480E56BBCD2E028, 775D58B99ACA606D434713BC00132D43061C37CFEEAECD194FCFDF45792944A3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:41:38.0407 0x0bbc AMD External Events Utility - ok
16:41:38.0487 0x0bbc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
16:41:38.0487 0x0bbc amdide - ok
16:41:38.0550 0x0bbc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:41:38.0565 0x0bbc AmdK8 - ok
16:41:39.0605 0x0bbc [ 52679612D742BF74CA1BA6AB86DDF431, 9D7A8FA8952519AD83CD36038F85B958BC97D1A25596EDC01CA1F6DD45DB542A ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
16:41:40.0592 0x0bbc amdkmdag - ok
16:41:40.0670 0x0bbc [ 414E0788920A8C856032BE2CBF29F984, 2DD027ADA24C871167C80A2F5C5ED5CB3AEA1E3A4E8C5FD352FA82C33B24479B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:41:40.0686 0x0bbc amdkmdap - ok
16:41:40.0717 0x0bbc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:41:40.0733 0x0bbc AmdPPM - ok
16:41:40.0826 0x0bbc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:41:40.0826 0x0bbc amdsata - ok
16:41:40.0912 0x0bbc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:41:40.0927 0x0bbc amdsbs - ok
16:41:40.0974 0x0bbc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:41:40.0974 0x0bbc amdxata - ok
16:41:41.0052 0x0bbc [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
16:41:41.0068 0x0bbc AppID - ok
16:41:41.0114 0x0bbc [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:41:41.0130 0x0bbc AppIDSvc - ok
16:41:41.0192 0x0bbc [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\Windows\System32\appinfo.dll
16:41:41.0208 0x0bbc Appinfo - ok
16:41:41.0286 0x0bbc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
16:41:41.0286 0x0bbc arc - ok
16:41:41.0302 0x0bbc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:41:41.0302 0x0bbc arcsas - ok
16:41:41.0834 0x0bbc [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:41:41.0898 0x0bbc aspnet_state - ok
16:41:41.0961 0x0bbc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:41:41.0992 0x0bbc AsyncMac - ok
16:41:42.0070 0x0bbc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
16:41:42.0070 0x0bbc atapi - ok
16:41:42.0179 0x0bbc [ 637E0753BD6DEB8EA5314A5C357EC1A0, 2B479DBBF72A2AFB3DC65A3FDA30B628BC9FB21160EBD7E1BE44404C671B1D08 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
16:41:42.0273 0x0bbc AtiHdmiService - ok
16:41:42.0466 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:41:42.0529 0x0bbc AudioEndpointBuilder - ok
16:41:42.0669 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:41:42.0700 0x0bbc AudioSrv - ok
16:41:42.0794 0x0bbc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:41:42.0810 0x0bbc AxInstSV - ok
16:41:42.0886 0x0bbc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:41:42.0964 0x0bbc b06bdrv - ok
16:41:43.0089 0x0bbc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:41:43.0182 0x0bbc b57nd60a - ok
16:41:43.0463 0x0bbc [ 4BEFF67C1775D353A16A62347E727874, 62363C5E5F4BF049A3E49FADA8CB17269945056ACADB319FDC4F05B74E2553C8 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe
16:41:43.0478 0x0bbc BBSvc - ok
16:41:43.0541 0x0bbc [ A6DAAD3EA93DBDBD07FA821BCED133F6, 8F33D4E4B82091D09E62FD5487C88F3DF0DAC31FCBB846183CC4020533A131DE ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe
16:41:43.0587 0x0bbc BBUpdate - ok
16:41:44.0101 0x0bbc [ 8B5D16D20774FC3727F44E161BE2C0AC, 0EF2489E1ACC86403B1D6931140C5DF082127B327143ECB6EF28A4FF57D3C371 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
16:41:44.0147 0x0bbc BCM43XX - ok
16:41:44.0225 0x0bbc [ D224B2E6BB543F1D8F1177D57FEC2950, F5D4096A275E0AF24E38778EFAFFAFFAE3185BF8AD7A0547D50D8E7354EF7FCD ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
16:41:44.0225 0x0bbc BcmVWL - ok
16:41:44.0288 0x0bbc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
16:41:44.0288 0x0bbc BDESVC - ok
16:41:44.0335 0x0bbc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
16:41:44.0386 0x0bbc Beep - ok
16:41:44.0458 0x0bbc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
16:41:44.0505 0x0bbc BFE - ok
16:41:44.0567 0x0bbc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
16:41:44.0598 0x0bbc BITS - ok
16:41:44.0614 0x0bbc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:41:44.0629 0x0bbc blbdrive - ok
16:41:44.0692 0x0bbc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:41:44.0707 0x0bbc bowser - ok
16:41:44.0739 0x0bbc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:41:44.0754 0x0bbc BrFiltLo - ok
16:41:44.0770 0x0bbc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:41:44.0785 0x0bbc BrFiltUp - ok
16:41:44.0817 0x0bbc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
16:41:44.0817 0x0bbc Browser - ok
16:41:44.0832 0x0bbc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:41:44.0897 0x0bbc Brserid - ok
16:41:44.0928 0x0bbc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:41:44.0943 0x0bbc BrSerWdm - ok
16:41:45.0006 0x0bbc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:41:45.0021 0x0bbc BrUsbMdm - ok
16:41:45.0021 0x0bbc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:41:45.0037 0x0bbc BrUsbSer - ok
16:41:45.0115 0x0bbc [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
16:41:45.0115 0x0bbc BthEnum - ok
16:41:45.0131 0x0bbc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:41:45.0162 0x0bbc BTHMODEM - ok
16:41:45.0177 0x0bbc [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
16:41:45.0177 0x0bbc BthPan - ok
16:41:45.0209 0x0bbc [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
16:41:45.0224 0x0bbc BTHPORT - ok
16:41:45.0271 0x0bbc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
16:41:45.0287 0x0bbc bthserv - ok
16:41:45.0302 0x0bbc [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
16:41:45.0318 0x0bbc BTHUSB - ok
16:41:45.0333 0x0bbc [ D3466F77C2C49C6E393BA5FBA963A33E, FD5E48A29E153BBAB095AB2E3B86F592B1FC1F790978911093B5F8A2CD6C5652 ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
16:41:45.0349 0x0bbc btusbflt - ok
16:41:45.0387 0x0bbc [ AF838D8029AE7C27470862D63FA54D24, 96247094D2446CEE594AD765B98DE8583762A96FE83223CB18B4CDB3A4958376 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
16:41:45.0390 0x0bbc btwaudio - ok
16:41:45.0421 0x0bbc [ 5C849BD7C78791C5CEE9F4651D7FE38D, BC93A1B911FB4A44EC4DB64AF9AFC6F2013CD76BFB6FA9E4834CFDAAAF4BCD9F ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
16:41:45.0421 0x0bbc btwavdt - ok
16:41:45.0562 0x0bbc [ 10FFB5FA51D5713D872B41A59DFC2213, E0C0EA99C862E3FCE4D121BB34DEC00E74A371DF4093A44055E70E9F4CFA3DC6 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:41:45.0609 0x0bbc btwdins - ok
16:41:45.0624 0x0bbc [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
16:41:45.0624 0x0bbc btwl2cap - ok
16:41:45.0640 0x0bbc [ 3E1991AFA851A36DC978B0A1B0535C8B, F55F7FDDD2A71532F163E4F14B26A09DCDB7C970E806D803418D4CE0DFF09FB6 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
16:41:45.0640 0x0bbc btwrchid - ok
16:41:45.0687 0x0bbc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:41:45.0718 0x0bbc cdfs - ok
16:41:45.0780 0x0bbc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
16:41:45.0827 0x0bbc cdrom - ok
16:41:45.0876 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
16:41:45.0876 0x0bbc CertPropSvc - ok
16:41:45.0969 0x0bbc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:41:45.0985 0x0bbc circlass - ok
16:41:46.0016 0x0bbc [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
16:41:46.0016 0x0bbc CLFS - ok
16:41:46.0110 0x0bbc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:41:46.0110 0x0bbc clr_optimization_v2.0.50727_32 - ok
16:41:46.0250 0x0bbc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:41:46.0359 0x0bbc clr_optimization_v2.0.50727_64 - ok
16:41:47.0261 0x0bbc [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:41:47.0413 0x0bbc clr_optimization_v4.0.30319_32 - ok
16:41:47.0476 0x0bbc [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:41:47.0523 0x0bbc clr_optimization_v4.0.30319_64 - ok
16:41:47.0556 0x0bbc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:41:47.0571 0x0bbc CmBatt - ok
16:41:47.0618 0x0bbc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:41:47.0618 0x0bbc cmdide - ok
16:41:47.0696 0x0bbc [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
16:41:47.0712 0x0bbc CNG - ok
16:41:47.0759 0x0bbc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:41:47.0759 0x0bbc Compbatt - ok
16:41:47.0821 0x0bbc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:41:47.0837 0x0bbc CompositeBus - ok
16:41:47.0868 0x0bbc COMSysApp - ok
16:41:48.0081 0x0bbc [ F49C902F71D91BD8A2497BF2F0838275, F0735B524AADE790F887A4272F4B8EF49FD3839CAEC51B3C438EAE743A7BE848 ] CouponPrinterService C:\Program Files (x86)\Coupons\CouponPrinterService.exe
16:41:48.0096 0x0bbc CouponPrinterService - ok
16:41:48.0159 0x0bbc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:41:48.0159 0x0bbc crcdisk - ok
16:41:48.0252 0x0bbc [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:41:48.0283 0x0bbc CryptSvc - ok
16:41:48.0330 0x0bbc [ ED5CF92396A62F4C15110DCDB5E854D9, CD26216B8B3F558A0466843C8161E86EEDB78E6031E1AC0A00DCDE700A2B6EE2 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:41:48.0346 0x0bbc CtClsFlt - ok
16:41:48.0594 0x0bbc [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:41:48.0656 0x0bbc cvhsvc - ok
16:41:48.0750 0x0bbc [ CB6BCAB0F3086D02B0DBE686AB0CFC76, 2621FCE5425F097CC0FC84A49D26DD5F442D5CDFC62C2025564868BF7B403987 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
16:41:48.0765 0x0bbc dc3d - ok
16:41:48.0828 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:41:48.0843 0x0bbc DcomLaunch - ok
16:41:48.0878 0x0bbc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
16:41:48.0888 0x0bbc defragsvc - ok
16:41:48.0920 0x0bbc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:41:48.0935 0x0bbc DfsC - ok
16:41:48.0998 0x0bbc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
16:41:48.0998 0x0bbc Dhcp - ok
16:41:49.0169 0x0bbc [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack C:\Windows\system32\diagtrack.dll
16:41:49.0247 0x0bbc DiagTrack - ok
16:41:49.0294 0x0bbc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
16:41:49.0294 0x0bbc discache - ok
16:41:49.0356 0x0bbc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:41:49.0374 0x0bbc Disk - ok
16:41:49.0436 0x0bbc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:41:49.0452 0x0bbc Dnscache - ok
16:41:49.0592 0x0bbc [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:41:49.0592 0x0bbc DockLoginService - ok
16:41:49.0670 0x0bbc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
16:41:49.0717 0x0bbc dot3svc - ok
16:41:49.0795 0x0bbc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
16:41:49.0811 0x0bbc DPS - ok
16:41:49.0899 0x0bbc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:41:49.0915 0x0bbc drmkaud - ok
16:41:50.0086 0x0bbc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:41:50.0164 0x0bbc DXGKrnl - ok
16:41:50.0227 0x0bbc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
16:41:50.0242 0x0bbc EapHost - ok
16:41:50.0538 0x0bbc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:41:50.0958 0x0bbc ebdrv - ok
16:41:51.0005 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] EFS C:\Windows\System32\lsass.exe
16:41:51.0020 0x0bbc EFS - ok
16:41:51.0161 0x0bbc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:41:51.0285 0x0bbc ehRecvr - ok
16:41:51.0318 0x0bbc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
16:41:51.0349 0x0bbc ehSched - ok
16:41:51.0409 0x0bbc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:41:51.0440 0x0bbc elxstor - ok
16:41:51.0471 0x0bbc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:41:51.0487 0x0bbc ErrDev - ok
16:41:51.0549 0x0bbc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
16:41:51.0565 0x0bbc EventSystem - ok
16:41:51.0596 0x0bbc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
16:41:51.0611 0x0bbc exfat - ok
16:41:51.0643 0x0bbc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:41:51.0658 0x0bbc fastfat - ok
16:41:51.0799 0x0bbc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
16:41:51.0830 0x0bbc Fax - ok
16:41:51.0879 0x0bbc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:41:51.0890 0x0bbc fdc - ok
16:41:51.0952 0x0bbc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
16:41:51.0968 0x0bbc fdPHost - ok
16:41:51.0983 0x0bbc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
16:41:51.0983 0x0bbc FDResPub - ok
16:41:52.0030 0x0bbc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:41:52.0030 0x0bbc FileInfo - ok
16:41:52.0077 0x0bbc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:41:52.0108 0x0bbc Filetrace - ok
16:41:52.0155 0x0bbc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:41:52.0186 0x0bbc flpydisk - ok
16:41:52.0358 0x0bbc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:41:52.0403 0x0bbc FltMgr - ok
16:41:52.0590 0x0bbc [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
16:41:52.0637 0x0bbc FontCache - ok
16:41:52.0762 0x0bbc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:41:52.0855 0x0bbc FontCache3.0.0.0 - ok
16:41:52.0888 0x0bbc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:41:52.0888 0x0bbc FsDepends - ok
16:41:52.0935 0x0bbc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:41:52.0935 0x0bbc Fs_Rec - ok
16:41:53.0076 0x0bbc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:41:53.0076 0x0bbc fvevol - ok
16:41:53.0122 0x0bbc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:41:53.0138 0x0bbc gagp30kx - ok
16:41:53.0413 0x0bbc [ C1BBCE4B30B45410178EE674C818D10C, 3FD449C20493057592A21CA812CA39803BC32136B84A060B2BF9621776D94E54 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
16:41:53.0476 0x0bbc GameConsoleService - ok
16:41:53.0678 0x0bbc [ 4EA5458FCA8518344686C543749365B1, 52D4D2392C80A4C57C74B09FE04E9DFF6CB01521F03132EB7523BE52B8BF7A50 ] gfiark C:\Windows\system32\drivers\gfiark.sys
16:41:53.0725 0x0bbc gfiark - ok
16:41:53.0899 0x0bbc [ 16A23FF8621929ADC5B18DCCD5E206EE, 6204E3110503F76DC5970FDBD7340CE1265EE57196759E4D4DB187BAF119FF22 ] gfiutil C:\Windows\system32\drivers\gfiutil.sys
16:41:53.0899 0x0bbc gfiutil - ok
16:41:54.0164 0x0bbc [ 2EEFBED80B4CCC5DBEC08F12F0A1EACF, 30BD09B77218F14F25CEEBC34E06B5428970A238FD5E39866FE13E06A85B674A ] gfi_lanss11_attservice C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe
16:41:54.0180 0x0bbc gfi_lanss11_attservice - ok
16:41:54.0273 0x0bbc [ D3316F6E3C011435F36E3D6E49B3196C, 941DF52BA26603A146ED6B65A696DB87153868ED0469EF9C2EB09AC7E63525B7 ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
16:41:54.0289 0x0bbc GoToAssist - ok
16:41:54.0565 0x0bbc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
16:41:54.0627 0x0bbc gpsvc - ok
16:41:11.0958 0x0ce8 ============================================================
16:41:11.0958 0x0ce8 Current date / time: 2015/09/09 16:41:11.0958
16:41:11.0958 0x0ce8 SystemInfo:
16:41:11.0958 0x0ce8
16:41:11.0958 0x0ce8 OS Version: 6.1.7601 ServicePack: 1.0
16:41:11.0958 0x0ce8 Product type: Workstation
16:41:11.0958 0x0ce8 ComputerName: SHERRY-PC
16:41:11.0958 0x0ce8 UserName: Sherry
16:41:11.0958 0x0ce8 Windows directory: C:\Windows
16:41:11.0958 0x0ce8 System windows directory: C:\Windows
16:41:11.0958 0x0ce8 Running under WOW64
16:41:11.0958 0x0ce8 Processor architecture: Intel x64
16:41:11.0958 0x0ce8 Number of processors: 4
16:41:11.0958 0x0ce8 Page size: 0x1000
16:41:11.0958 0x0ce8 Boot type: Normal boot
16:41:11.0958 0x0ce8 ============================================================
16:41:14.0337 0x0ce8 KLMD registered as C:\Windows\system32\drivers\44306757.sys
16:41:16.0933 0x0ce8 System UUID: {E3EF4B74-CC90-A766-11E8-0CF2655F2653}
16:41:18.0084 0x0ce8 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0:
16:41:18.0099 0x0ce8 MBR partitions:
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x38606863
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 C: <-> \Device\Harddisk0\DR0\Partition2
16:41:18.0287 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 Initialize success
16:41:18.0287 0x0ce8 ============================================================
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc Scan started
16:41:28.0364 0x0bbc Mode: Manual;
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc KSN ping started
16:41:31.0165 0x0bbc KSN ping finished: true
16:41:33.0979 0x0bbc ================ Scan system memory ========================
16:41:33.0979 0x0bbc System memory - ok
16:41:33.0979 0x0bbc ================ Scan services =============================
16:41:35.0579 0x0bbc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:41:35.0625 0x0bbc 1394ohci - ok
16:41:35.0766 0x0bbc [ 426E0E8127BAC7D5DDEE8251F104E053, 7A0FD2F9828FA155FF8626801724151B9721EAFF6F737BBD6044CCBA92A73BCA ] AbsoluteNotifier C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
16:41:36.0127 0x0bbc AbsoluteNotifier - ok
16:41:36.0267 0x0bbc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:41:36.0298 0x0bbc ACPI - ok
16:41:36.0382 0x0bbc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:41:36.0386 0x0bbc AcpiPmi - ok
16:41:37.0246 0x0bbc [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:41:37.0506 0x0bbc AdobeFlashPlayerUpdateSvc - ok
16:41:37.0553 0x0bbc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:41:37.0584 0x0bbc adp94xx - ok
16:41:37.0615 0x0bbc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:41:37.0615 0x0bbc adpahci - ok
16:41:37.0693 0x0bbc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:41:37.0755 0x0bbc adpu320 - ok
16:41:37.0818 0x0bbc [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:41:37.0818 0x0bbc AeLookupSvc - ok
16:41:37.0930 0x0bbc [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
16:41:37.0930 0x0bbc AERTFilters - ok
16:41:38.0039 0x0bbc [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
16:41:38.0055 0x0bbc AFD - ok
16:41:38.0133 0x0bbc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
16:41:38.0148 0x0bbc agp440 - ok
16:41:38.0211 0x0bbc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
16:41:38.0211 0x0bbc ALG - ok
16:41:38.0304 0x0bbc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
16:41:38.0320 0x0bbc aliide - ok
16:41:38.0394 0x0bbc [ 3D90CF67DB75823A8480E56BBCD2E028, 775D58B99ACA606D434713BC00132D43061C37CFEEAECD194FCFDF45792944A3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:41:38.0407 0x0bbc AMD External Events Utility - ok
16:41:38.0487 0x0bbc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
16:41:38.0487 0x0bbc amdide - ok
16:41:38.0550 0x0bbc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:41:38.0565 0x0bbc AmdK8 - ok
16:41:39.0605 0x0bbc [ 52679612D742BF74CA1BA6AB86DDF431, 9D7A8FA8952519AD83CD36038F85B958BC97D1A25596EDC01CA1F6DD45DB542A ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
16:41:40.0592 0x0bbc amdkmdag - ok
16:41:40.0670 0x0bbc [ 414E0788920A8C856032BE2CBF29F984, 2DD027ADA24C871167C80A2F5C5ED5CB3AEA1E3A4E8C5FD352FA82C33B24479B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:41:40.0686 0x0bbc amdkmdap - ok
16:41:40.0717 0x0bbc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:41:40.0733 0x0bbc AmdPPM - ok
16:41:40.0826 0x0bbc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:41:40.0826 0x0bbc amdsata - ok
16:41:40.0912 0x0bbc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:41:40.0927 0x0bbc amdsbs - ok
16:41:40.0974 0x0bbc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:41:40.0974 0x0bbc amdxata - ok
16:41:41.0052 0x0bbc [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
16:41:41.0068 0x0bbc AppID - ok
16:41:41.0114 0x0bbc [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:41:41.0130 0x0bbc AppIDSvc - ok
16:41:41.0192 0x0bbc [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\Windows\System32\appinfo.dll
16:41:41.0208 0x0bbc Appinfo - ok
16:41:41.0286 0x0bbc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
16:41:41.0286 0x0bbc arc - ok
16:41:41.0302 0x0bbc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:41:41.0302 0x0bbc arcsas - ok
16:41:41.0834 0x0bbc [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:41:41.0898 0x0bbc aspnet_state - ok
16:41:41.0961 0x0bbc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:41:41.0992 0x0bbc AsyncMac - ok
16:41:42.0070 0x0bbc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
16:41:42.0070 0x0bbc atapi - ok
16:41:42.0179 0x0bbc [ 637E0753BD6DEB8EA5314A5C357EC1A0, 2B479DBBF72A2AFB3DC65A3FDA30B628BC9FB21160EBD7E1BE44404C671B1D08 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
16:41:42.0273 0x0bbc AtiHdmiService - ok
16:41:42.0466 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:41:42.0529 0x0bbc AudioEndpointBuilder - ok
16:41:42.0669 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:41:42.0700 0x0bbc AudioSrv - ok
16:41:42.0794 0x0bbc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:41:42.0810 0x0bbc AxInstSV - ok
16:41:42.0886 0x0bbc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:41:42.0964 0x0bbc b06bdrv - ok
16:41:43.0089 0x0bbc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:41:43.0182 0x0bbc b57nd60a - ok
16:41:43.0463 0x0bbc [ 4BEFF67C1775D353A16A62347E727874, 62363C5E5F4BF049A3E49FADA8CB17269945056ACADB319FDC4F05B74E2553C8 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe
16:41:43.0478 0x0bbc BBSvc - ok
16:41:43.0541 0x0bbc [ A6DAAD3EA93DBDBD07FA821BCED133F6, 8F33D4E4B82091D09E62FD5487C88F3DF0DAC31FCBB846183CC4020533A131DE ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe
16:41:43.0587 0x0bbc BBUpdate - ok
16:41:44.0101 0x0bbc [ 8B5D16D20774FC3727F44E161BE2C0AC, 0EF2489E1ACC86403B1D6931140C5DF082127B327143ECB6EF28A4FF57D3C371 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
16:41:44.0147 0x0bbc BCM43XX - ok
16:41:44.0225 0x0bbc [ D224B2E6BB543F1D8F1177D57FEC2950, F5D4096A275E0AF24E38778EFAFFAFFAE3185BF8AD7A0547D50D8E7354EF7FCD ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
16:41:44.0225 0x0bbc BcmVWL - ok
16:41:44.0288 0x0bbc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
16:41:44.0288 0x0bbc BDESVC - ok
16:41:44.0335 0x0bbc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
16:41:44.0386 0x0bbc Beep - ok
16:41:44.0458 0x0bbc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
16:41:44.0505 0x0bbc BFE - ok
16:41:44.0567 0x0bbc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
16:41:44.0598 0x0bbc BITS - ok
16:41:44.0614 0x0bbc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:41:44.0629 0x0bbc blbdrive - ok
16:41:44.0692 0x0bbc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:41:44.0707 0x0bbc bowser - ok
16:41:44.0739 0x0bbc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:41:44.0754 0x0bbc BrFiltLo - ok
16:41:44.0770 0x0bbc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:41:44.0785 0x0bbc BrFiltUp - ok
16:41:44.0817 0x0bbc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
16:41:44.0817 0x0bbc Browser - ok
16:41:44.0832 0x0bbc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:41:44.0897 0x0bbc Brserid - ok
16:41:44.0928 0x0bbc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:41:44.0943 0x0bbc BrSerWdm - ok
16:41:45.0006 0x0bbc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:41:45.0021 0x0bbc BrUsbMdm - ok
16:41:45.0021 0x0bbc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:41:45.0037 0x0bbc BrUsbSer - ok
16:41:45.0115 0x0bbc [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
16:41:45.0115 0x0bbc BthEnum - ok
16:41:45.0131 0x0bbc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:41:45.0162 0x0bbc BTHMODEM - ok
16:41:45.0177 0x0bbc [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
16:41:45.0177 0x0bbc BthPan - ok
16:41:45.0209 0x0bbc [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
16:41:45.0224 0x0bbc BTHPORT - ok
16:41:45.0271 0x0bbc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
16:41:45.0287 0x0bbc bthserv - ok
16:41:45.0302 0x0bbc [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
16:41:45.0318 0x0bbc BTHUSB - ok
16:41:45.0333 0x0bbc [ D3466F77C2C49C6E393BA5FBA963A33E, FD5E48A29E153BBAB095AB2E3B86F592B1FC1F790978911093B5F8A2CD6C5652 ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
16:41:45.0349 0x0bbc btusbflt - ok
16:41:45.0387 0x0bbc [ AF838D8029AE7C27470862D63FA54D24, 96247094D2446CEE594AD765B98DE8583762A96FE83223CB18B4CDB3A4958376 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
16:41:45.0390 0x0bbc btwaudio - ok
16:41:45.0421 0x0bbc [ 5C849BD7C78791C5CEE9F4651D7FE38D, BC93A1B911FB4A44EC4DB64AF9AFC6F2013CD76BFB6FA9E4834CFDAAAF4BCD9F ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
16:41:45.0421 0x0bbc btwavdt - ok
16:41:45.0562 0x0bbc [ 10FFB5FA51D5713D872B41A59DFC2213, E0C0EA99C862E3FCE4D121BB34DEC00E74A371DF4093A44055E70E9F4CFA3DC6 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:41:45.0609 0x0bbc btwdins - ok
16:41:45.0624 0x0bbc [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
16:41:45.0624 0x0bbc btwl2cap - ok
16:41:45.0640 0x0bbc [ 3E1991AFA851A36DC978B0A1B0535C8B, F55F7FDDD2A71532F163E4F14B26A09DCDB7C970E806D803418D4CE0DFF09FB6 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
16:41:45.0640 0x0bbc btwrchid - ok
16:41:45.0687 0x0bbc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:41:45.0718 0x0bbc cdfs - ok
16:41:45.0780 0x0bbc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
16:41:45.0827 0x0bbc cdrom - ok
16:41:45.0876 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
16:41:45.0876 0x0bbc CertPropSvc - ok
16:41:45.0969 0x0bbc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:41:45.0985 0x0bbc circlass - ok
16:41:46.0016 0x0bbc [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
16:41:46.0016 0x0bbc CLFS - ok
16:41:46.0110 0x0bbc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:41:46.0110 0x0bbc clr_optimization_v2.0.50727_32 - ok
16:41:46.0250 0x0bbc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:41:46.0359 0x0bbc clr_optimization_v2.0.50727_64 - ok
16:41:47.0261 0x0bbc [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:41:47.0413 0x0bbc clr_optimization_v4.0.30319_32 - ok
16:41:47.0476 0x0bbc [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:41:47.0523 0x0bbc clr_optimization_v4.0.30319_64 - ok
16:41:47.0556 0x0bbc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:41:47.0571 0x0bbc CmBatt - ok
16:41:47.0618 0x0bbc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:41:47.0618 0x0bbc cmdide - ok
16:41:47.0696 0x0bbc [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
16:41:47.0712 0x0bbc CNG - ok
16:41:47.0759 0x0bbc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:41:47.0759 0x0bbc Compbatt - ok
16:41:47.0821 0x0bbc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:41:47.0837 0x0bbc CompositeBus - ok
16:41:47.0868 0x0bbc COMSysApp - ok
16:41:48.0081 0x0bbc [ F49C902F71D91BD8A2497BF2F0838275, F0735B524AADE790F887A4272F4B8EF49FD3839CAEC51B3C438EAE743A7BE848 ] CouponPrinterService C:\Program Files (x86)\Coupons\CouponPrinterService.exe
16:41:48.0096 0x0bbc CouponPrinterService - ok
16:41:48.0159 0x0bbc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:41:48.0159 0x0bbc crcdisk - ok
16:41:48.0252 0x0bbc [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:41:48.0283 0x0bbc CryptSvc - ok
16:41:48.0330 0x0bbc [ ED5CF92396A62F4C15110DCDB5E854D9, CD26216B8B3F558A0466843C8161E86EEDB78E6031E1AC0A00DCDE700A2B6EE2 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:41:48.0346 0x0bbc CtClsFlt - ok
16:41:48.0594 0x0bbc [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:41:48.0656 0x0bbc cvhsvc - ok
16:41:48.0750 0x0bbc [ CB6BCAB0F3086D02B0DBE686AB0CFC76, 2621FCE5425F097CC0FC84A49D26DD5F442D5CDFC62C2025564868BF7B403987 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
16:41:48.0765 0x0bbc dc3d - ok
16:41:48.0828 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:41:48.0843 0x0bbc DcomLaunch - ok
16:41:48.0878 0x0bbc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
16:41:48.0888 0x0bbc defragsvc - ok
16:41:48.0920 0x0bbc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:41:48.0935 0x0bbc DfsC - ok
16:41:48.0998 0x0bbc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
16:41:48.0998 0x0bbc Dhcp - ok
16:41:49.0169 0x0bbc [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack C:\Windows\system32\diagtrack.dll
16:41:49.0247 0x0bbc DiagTrack - ok
16:41:49.0294 0x0bbc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
16:41:49.0294 0x0bbc discache - ok
16:41:49.0356 0x0bbc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:41:49.0374 0x0bbc Disk - ok
16:41:49.0436 0x0bbc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:41:49.0452 0x0bbc Dnscache - ok
16:41:49.0592 0x0bbc [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:41:49.0592 0x0bbc DockLoginService - ok
16:41:49.0670 0x0bbc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
16:41:49.0717 0x0bbc dot3svc - ok
16:41:49.0795 0x0bbc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
16:41:49.0811 0x0bbc DPS - ok
16:41:49.0899 0x0bbc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:41:49.0915 0x0bbc drmkaud - ok
16:41:50.0086 0x0bbc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:41:50.0164 0x0bbc DXGKrnl - ok
16:41:50.0227 0x0bbc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
16:41:50.0242 0x0bbc EapHost - ok
16:41:50.0538 0x0bbc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:41:50.0958 0x0bbc ebdrv - ok
16:41:51.0005 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] EFS C:\Windows\System32\lsass.exe
16:41:51.0020 0x0bbc EFS - ok
16:41:51.0161 0x0bbc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:41:51.0285 0x0bbc ehRecvr - ok
16:41:51.0318 0x0bbc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
16:41:51.0349 0x0bbc ehSched - ok
16:41:51.0409 0x0bbc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:41:51.0440 0x0bbc elxstor - ok
16:41:51.0471 0x0bbc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:41:51.0487 0x0bbc ErrDev - ok
16:41:51.0549 0x0bbc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
16:41:51.0565 0x0bbc EventSystem - ok
16:41:51.0596 0x0bbc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
16:41:51.0611 0x0bbc exfat - ok
16:41:51.0643 0x0bbc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:41:51.0658 0x0bbc fastfat - ok
16:41:51.0799 0x0bbc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
16:41:51.0830 0x0bbc Fax - ok
16:41:51.0879 0x0bbc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:41:51.0890 0x0bbc fdc - ok
16:41:51.0952 0x0bbc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
16:41:51.0968 0x0bbc fdPHost - ok
16:41:51.0983 0x0bbc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
16:41:51.0983 0x0bbc FDResPub - ok
16:41:52.0030 0x0bbc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:41:52.0030 0x0bbc FileInfo - ok
16:41:52.0077 0x0bbc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:41:52.0108 0x0bbc Filetrace - ok
16:41:52.0155 0x0bbc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:41:52.0186 0x0bbc flpydisk - ok
16:41:52.0358 0x0bbc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:41:52.0403 0x0bbc FltMgr - ok
16:41:52.0590 0x0bbc [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
16:41:52.0637 0x0bbc FontCache - ok
16:41:52.0762 0x0bbc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:41:52.0855 0x0bbc FontCache3.0.0.0 - ok
16:41:52.0888 0x0bbc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:41:52.0888 0x0bbc FsDepends - ok
16:41:52.0935 0x0bbc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:41:52.0935 0x0bbc Fs_Rec - ok
16:41:53.0076 0x0bbc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:41:53.0076 0x0bbc fvevol - ok
16:41:53.0122 0x0bbc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:41:53.0138 0x0bbc gagp30kx - ok
16:41:53.0413 0x0bbc [ C1BBCE4B30B45410178EE674C818D10C, 3FD449C20493057592A21CA812CA39803BC32136B84A060B2BF9621776D94E54 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
16:41:53.0476 0x0bbc GameConsoleService - ok
16:41:53.0678 0x0bbc [ 4EA5458FCA8518344686C543749365B1, 52D4D2392C80A4C57C74B09FE04E9DFF6CB01521F03132EB7523BE52B8BF7A50 ] gfiark C:\Windows\system32\drivers\gfiark.sys
16:41:53.0725 0x0bbc gfiark - ok
16:41:53.0899 0x0bbc [ 16A23FF8621929ADC5B18DCCD5E206EE, 6204E3110503F76DC5970FDBD7340CE1265EE57196759E4D4DB187BAF119FF22 ] gfiutil C:\Windows\system32\drivers\gfiutil.sys
16:41:53.0899 0x0bbc gfiutil - ok
16:41:54.0164 0x0bbc [ 2EEFBED80B4CCC5DBEC08F12F0A1EACF, 30BD09B77218F14F25CEEBC34E06B5428970A238FD5E39866FE13E06A85B674A ] gfi_lanss11_attservice C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe
16:41:54.0180 0x0bbc gfi_lanss11_attservice - ok
16:41:54.0273 0x0bbc [ D3316F6E3C011435F36E3D6E49B3196C, 941DF52BA26603A146ED6B65A696DB87153868ED0469EF9C2EB09AC7E63525B7 ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
16:41:54.0289 0x0bbc GoToAssist - ok
16:41:54.0565 0x0bbc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
16:41:54.0627 0x0bbc gpsvc - ok
tremmor
Well-Known Member
16:41:54.0890 0x0bbc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:54.0890 0x0bbc gupdate - ok
16:41:54.0968 0x0bbc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:54.0968 0x0bbc gupdatem - ok
16:41:55.0015 0x0bbc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:41:55.0046 0x0bbc hcw85cir - ok
16:41:55.0124 0x0bbc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:41:55.0140 0x0bbc HDAudBus - ok
16:41:55.0202 0x0bbc [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
16:41:55.0202 0x0bbc HECIx64 - ok
16:41:55.0218 0x0bbc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:41:55.0249 0x0bbc HidBatt - ok
16:41:55.0280 0x0bbc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:41:55.0312 0x0bbc HidBth - ok
16:41:55.0356 0x0bbc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:41:55.0372 0x0bbc HidIr - ok
16:41:55.0419 0x0bbc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
16:41:55.0419 0x0bbc hidserv - ok
16:41:55.0497 0x0bbc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:41:55.0512 0x0bbc HidUsb - ok
16:41:55.0590 0x0bbc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:41:55.0637 0x0bbc hkmsvc - ok
16:41:55.0699 0x0bbc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:41:55.0731 0x0bbc HomeGroupListener - ok
16:41:55.0793 0x0bbc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:41:55.0809 0x0bbc HomeGroupProvider - ok
16:41:55.0918 0x0bbc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:41:55.0934 0x0bbc HpSAMD - ok
16:41:56.0105 0x0bbc [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:41:56.0152 0x0bbc HTTP - ok
16:41:56.0199 0x0bbc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:41:56.0199 0x0bbc hwpolicy - ok
16:41:56.0261 0x0bbc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:41:56.0277 0x0bbc i8042prt - ok
16:41:56.0339 0x0bbc [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:41:56.0339 0x0bbc iaStor - ok
16:41:56.0402 0x0bbc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:41:56.0435 0x0bbc iaStorV - ok
16:41:56.0607 0x0bbc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:41:56.0685 0x0bbc idsvc - ok
16:41:56.0716 0x0bbc IEEtwCollectorService - ok
16:41:56.0747 0x0bbc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:41:56.0747 0x0bbc iirsp - ok
16:41:56.0825 0x0bbc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
16:41:56.0882 0x0bbc IKEEXT - ok
16:41:56.0915 0x0bbc [ 36FDF367A1DABFF903E2214023D71368, 60468692C1D048428AF25ED87DE23DAE756C7BA2B6CF6AF5EFD2E53C80F5FC68 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
16:41:56.0931 0x0bbc Impcd - ok
16:41:57.0336 0x0bbc [ 6E4CCB3AFF07E2B9F2A937385C84B573, 34F0597E7DE0D47EFE3C2D97D1DFEBA3593B8B656D0CD3D661C582B65A20A12A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:41:57.0723 0x0bbc IntcAzAudAddService - ok
16:41:57.0769 0x0bbc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
16:41:57.0785 0x0bbc intelide - ok
16:41:57.0847 0x0bbc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:41:57.0847 0x0bbc intelppm - ok
16:41:57.0923 0x0bbc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:41:57.0938 0x0bbc IPBusEnum - ok
16:41:57.0970 0x0bbc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:41:57.0985 0x0bbc IpFilterDriver - ok
16:41:58.0094 0x0bbc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:41:58.0141 0x0bbc iphlpsvc - ok
16:41:58.0172 0x0bbc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:41:58.0250 0x0bbc IPMIDRV - ok
16:41:58.0328 0x0bbc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:41:58.0360 0x0bbc IPNAT - ok
16:41:58.0377 0x0bbc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:41:58.0408 0x0bbc IRENUM - ok
16:41:58.0455 0x0bbc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:41:58.0471 0x0bbc isapnp - ok
16:41:58.0611 0x0bbc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:41:58.0627 0x0bbc iScsiPrt - ok
16:41:58.0689 0x0bbc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:41:58.0705 0x0bbc kbdclass - ok
16:41:58.0767 0x0bbc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:41:58.0861 0x0bbc kbdhid - ok
16:41:58.0890 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] KeyIso C:\Windows\system32\lsass.exe
16:41:58.0890 0x0bbc KeyIso - ok
16:41:58.0968 0x0bbc [ 67A1743377EBB5D9A370A8C2086CFDCC, 2F0FD6C1969B1EEEEFFC1A8F972E1E90F1AD9558FF00EC159BC19ED927FD4BF5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:41:58.0968 0x0bbc KSecDD - ok
16:41:59.0000 0x0bbc [ 522A1595D5701800DD41B2D472F5AAED, B62924AE94A5AC454AD6057BC133D717BB1C6445BE36D6BECAB76E1600F60C33 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:41:59.0000 0x0bbc KSecPkg - ok
16:41:59.0046 0x0bbc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:41:59.0078 0x0bbc ksthunk - ok
16:41:59.0171 0x0bbc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
16:41:59.0327 0x0bbc KtmRm - ok
16:41:59.0376 0x0bbc [ 39918DB0EFCF045A1CE6FABBF339F975, 1BAAA33DCE8F0BDBA9F6BCACAC9F4E926EBF287AFFCB2EBE114519B1ABF29529 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
16:41:59.0401 0x0bbc L1C - ok
16:41:59.0526 0x0bbc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:41:59.0541 0x0bbc LanmanServer - ok
16:41:59.0619 0x0bbc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:41:59.0666 0x0bbc LanmanWorkstation - ok
16:41:59.0729 0x0bbc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:41:59.0744 0x0bbc lltdio - ok
16:41:59.0838 0x0bbc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:41:59.0899 0x0bbc lltdsvc - ok
16:41:59.0945 0x0bbc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:41:59.0961 0x0bbc lmhosts - ok
16:42:00.0055 0x0bbc [ 23D990150D56B670A62B21B9ABDD45EE, BB9DBC0D02474976420321162C3AB1FDF975FA0494B1030488B03BC98A65F888 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:42:00.0086 0x0bbc LMS - ok
16:42:00.0148 0x0bbc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:42:00.0148 0x0bbc LSI_FC - ok
16:42:00.0211 0x0bbc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:42:00.0211 0x0bbc LSI_SAS - ok
16:42:00.0242 0x0bbc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:42:00.0242 0x0bbc LSI_SAS2 - ok
16:42:00.0273 0x0bbc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:42:00.0273 0x0bbc LSI_SCSI - ok
16:42:00.0304 0x0bbc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
16:42:00.0335 0x0bbc luafv - ok
16:42:00.0466 0x0bbc [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:42:00.0482 0x0bbc MBAMProtector - ok
16:42:00.0638 0x0bbc [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:42:00.0716 0x0bbc MBAMService - ok
16:42:00.0763 0x0bbc [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:42:00.0778 0x0bbc MBAMSwissArmy - ok
16:42:00.0809 0x0bbc [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
16:42:00.0825 0x0bbc MBAMWebAccessControl - ok
16:42:00.0906 0x0bbc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:42:00.0925 0x0bbc Mcx2Svc - ok
16:42:01.0003 0x0bbc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:42:01.0003 0x0bbc megasas - ok
16:42:01.0159 0x0bbc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:42:01.0206 0x0bbc MegaSR - ok
16:42:01.0387 0x0bbc [ A8129CFB919347F8533C934B365E9202, A1B84263714DFE92AF3C7D8DF5EBE5BBC7C96954337119BF9754676DDDE5DBED ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
16:42:01.0392 0x0bbc mfenlfk - ok
16:42:01.0470 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
16:42:01.0501 0x0bbc MMCSS - ok
16:42:01.0548 0x0bbc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
16:42:01.0563 0x0bbc Modem - ok
16:42:01.0719 0x0bbc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:42:01.0719 0x0bbc monitor - ok
16:42:02.0201 0x0bbc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:42:02.0217 0x0bbc mouclass - ok
16:42:02.0279 0x0bbc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:42:02.0295 0x0bbc mouhid - ok
16:42:02.0378 0x0bbc [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:42:02.0384 0x0bbc mountmgr - ok
16:42:02.0745 0x0bbc [ 73150F67D20270FF95A021A22E64F28A, A8878DEFBE437FB453F8E9243FB5C787D07AC7415A4475388D479C10417C524F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:42:02.0776 0x0bbc MpFilter - ok
16:42:02.0838 0x0bbc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
16:42:02.0838 0x0bbc mpio - ok
16:42:02.0900 0x0bbc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:42:03.0043 0x0bbc mpsdrv - ok
16:42:03.0199 0x0bbc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:42:03.0261 0x0bbc MpsSvc - ok
16:42:03.0323 0x0bbc [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:42:03.0391 0x0bbc MRxDAV - ok
16:42:03.0448 0x0bbc [ B2081803D510DCE174992BA880EDCA70, 37DB53C9756EC03EB7165DEB58251615D70B7C86DF32A54DE25ADAF30A04D792 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:42:03.0494 0x0bbc mrxsmb - ok
16:42:03.0541 0x0bbc [ 552FA62B0EFECD22D8D52499324BCA4F, C3A02C9C30C36928AC7B1025496544967187A05BEF5D100B54F2C0155E47145C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:42:03.0604 0x0bbc mrxsmb10 - ok
16:42:03.0635 0x0bbc [ 97687971F9CB30E2633DE0F1296B9F61, 865DA87523E4C32D65D55D5475A5CDDFA10699780DA500E6D606384FB3BEB1BE ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:42:03.0650 0x0bbc mrxsmb20 - ok
16:42:03.0697 0x0bbc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
16:42:03.0713 0x0bbc msahci - ok
16:42:03.0760 0x0bbc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:42:03.0760 0x0bbc msdsm - ok
16:42:03.0791 0x0bbc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
16:42:03.0806 0x0bbc MSDTC - ok
16:42:03.0853 0x0bbc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:42:03.0853 0x0bbc Msfs - ok
16:42:03.0891 0x0bbc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:42:03.0895 0x0bbc mshidkmdf - ok
16:42:03.0942 0x0bbc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:42:03.0942 0x0bbc msisadrv - ok
16:42:03.0960 0x0bbc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:42:03.0975 0x0bbc MSiSCSI - ok
16:42:03.0975 0x0bbc msiserver - ok
16:42:04.0022 0x0bbc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:42:04.0038 0x0bbc MSKSSRV - ok
16:42:04.0241 0x0bbc [ CE996C1821021ADF8E28E80A54E846A8, 99042E895B6C2EA80F3BA65563A12C8EBA882E3AD6A21DD8E799B0112C75DDD2 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:42:04.0256 0x0bbc MsMpSvc - ok
16:42:04.0272 0x0bbc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:42:04.0303 0x0bbc MSPCLOCK - ok
16:42:04.0334 0x0bbc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:42:04.0350 0x0bbc MSPQM - ok
16:42:04.0410 0x0bbc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:42:04.0410 0x0bbc MsRPC - ok
16:42:04.0503 0x0bbc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:42:04.0503 0x0bbc mssmbios - ok
16:42:04.0597 0x0bbc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:42:04.0628 0x0bbc MSTEE - ok
16:42:04.0644 0x0bbc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:42:04.0675 0x0bbc MTConfig - ok
16:42:04.0722 0x0bbc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
16:42:04.0722 0x0bbc Mup - ok
16:42:04.0800 0x0bbc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
16:42:04.0815 0x0bbc napagent - ok
16:42:04.0880 0x0bbc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:42:04.0895 0x0bbc NativeWifiP - ok
16:42:04.0958 0x0bbc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
16:42:05.0007 0x0bbc NDIS - ok
16:42:05.0085 0x0bbc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:42:05.0116 0x0bbc NdisCap - ok
16:42:05.0147 0x0bbc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:42:05.0178 0x0bbc NdisTapi - ok
16:42:05.0209 0x0bbc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:42:05.0241 0x0bbc Ndisuio - ok
16:42:05.0303 0x0bbc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:42:05.0365 0x0bbc NdisWan - ok
16:42:05.0420 0x0bbc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:42:05.0435 0x0bbc NDProxy - ok
16:42:05.0513 0x0bbc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:42:05.0544 0x0bbc NetBIOS - ok
16:42:05.0591 0x0bbc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:42:05.0607 0x0bbc NetBT - ok
16:42:05.0622 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] Netlogon C:\Windows\system32\lsass.exe
16:42:05.0622 0x0bbc Netlogon - ok
16:42:05.0685 0x0bbc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
16:42:05.0685 0x0bbc Netman - ok
16:42:05.0747 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0763 0x0bbc NetMsmqActivator - ok
16:42:05.0778 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0778 0x0bbc NetPipeActivator - ok
16:42:05.0794 0x0bbc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
16:42:05.0810 0x0bbc netprofm - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0856 0x0bbc NetTcpActivator - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0875 0x0bbc NetTcpPortSharing - ok
16:42:05.0916 0x0bbc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:42:05.0932 0x0bbc nfrd960 - ok
16:42:06.0215 0x0bbc [ 4774AD83C650001B337B92E5E5DA337B, 138ECC7F556D8A12AE58B78B68F6515BE4C00F9F062596B48B6CA6C010F13035 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:42:06.0246 0x0bbc NisDrv - ok
16:42:06.0339 0x0bbc [ 96B7D15161A778B359E707796CCEA646, 9E4A25D9848FAECC517474EAD548E7975CBE3F41AAA964E5245E78F2A723925E ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:42:06.0386 0x0bbc NisSrv - ok
16:42:06.0494 0x0bbc [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
16:42:06.0525 0x0bbc NlaSvc - ok
16:42:06.0556 0x0bbc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:42:06.0587 0x0bbc Npfs - ok
16:42:06.0650 0x0bbc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
16:42:06.0712 0x0bbc nsi - ok
16:42:06.0759 0x0bbc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:42:06.0759 0x0bbc nsiproxy - ok
16:42:06.0959 0x0bbc [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:42:07.0166 0x0bbc Ntfs - ok
16:42:07.0213 0x0bbc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
16:42:07.0228 0x0bbc Null - ok
16:42:07.0306 0x0bbc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:42:07.0322 0x0bbc nvraid - ok
16:42:07.0392 0x0bbc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:42:07.0394 0x0bbc nvstor - ok
16:42:07.0441 0x0bbc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:42:07.0441 0x0bbc nv_agp - ok
16:42:07.0504 0x0bbc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:42:07.0535 0x0bbc ohci1394 - ok
16:42:07.0597 0x0bbc [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:42:07.0613 0x0bbc ose - ok
16:42:07.0880 0x0bbc [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:42:08.0225 0x0bbc osppsvc - ok
16:42:08.0410 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:42:08.0446 0x0bbc p2pimsvc - ok
16:42:08.0602 0x0bbc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
16:42:08.0665 0x0bbc p2psvc - ok
16:42:08.0712 0x0bbc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:42:08.0743 0x0bbc Parport - ok
16:42:08.0790 0x0bbc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:42:08.0805 0x0bbc partmgr - ok
16:42:08.0852 0x0bbc [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:42:08.0868 0x0bbc PcaSvc - ok
16:42:08.0918 0x0bbc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
16:42:08.0934 0x0bbc pci - ok
16:42:08.0981 0x0bbc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
16:42:08.0981 0x0bbc pciide - ok
16:42:09.0030 0x0bbc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:42:09.0045 0x0bbc pcmcia - ok
16:42:09.0076 0x0bbc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
16:42:09.0076 0x0bbc pcw - ok
16:42:09.0186 0x0bbc [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:42:09.0217 0x0bbc PEAUTH - ok
16:42:09.0295 0x0bbc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:42:09.0326 0x0bbc PerfHost - ok
16:42:09.0618 0x0bbc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
16:42:09.0836 0x0bbc pla - ok
16:42:10.0836 0x0bbc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:42:10.0925 0x0bbc PlugPlay - ok
16:42:10.0957 0x0bbc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:42:10.0988 0x0bbc PNRPAutoReg - ok
16:42:11.0300 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:42:11.0315 0x0bbc PNRPsvc - ok
16:42:11.0395 0x0bbc [ 138EDF5FF39DC01F31F812365EA607E6, CC793A18250FF3B82D2BBAFA1364F17DE5D1D1282DCA3F675E5ED5D663744415 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
16:42:11.0395 0x0bbc Point64 - ok
16:42:11.0473 0x0bbc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:42:11.0505 0x0bbc PolicyAgent - ok
16:42:11.0567 0x0bbc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
16:42:11.0598 0x0bbc Power - ok
16:42:11.0645 0x0bbc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:42:11.0676 0x0bbc PptpMiniport - ok
16:42:11.0707 0x0bbc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:42:11.0739 0x0bbc Processor - ok
16:42:11.0832 0x0bbc [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
16:42:11.0903 0x0bbc ProfSvc - ok
16:42:11.0919 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:42:11.0919 0x0bbc ProtectedStorage - ok
16:42:12.0012 0x0bbc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:42:12.0012 0x0bbc Psched - ok
16:42:12.0090 0x0bbc [ 4712CC14E720ECCCC0AA16949D18AAF1, AF0223D118A25CA14EC1AF8A40A793D3CBCBE3576CCACBCD4F9A3D3F10407262 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
16:42:12.0090 0x0bbc PxHlpa64 - ok
16:42:12.0199 0x0bbc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:42:12.0262 0x0bbc ql2300 - ok
16:42:12.0293 0x0bbc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:42:12.0293 0x0bbc ql40xx - ok
16:42:12.0324 0x0bbc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
16:42:12.0355 0x0bbc QWAVE - ok
16:42:12.0385 0x0bbc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:42:12.0401 0x0bbc QWAVEdrv - ok
16:42:12.0416 0x0bbc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:42:12.0494 0x0bbc RasAcd - ok
16:42:12.0603 0x0bbc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:42:12.0619 0x0bbc RasAgileVpn - ok
16:42:12.0681 0x0bbc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
16:42:12.0713 0x0bbc RasAuto - ok
16:42:12.0775 0x0bbc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:42:12.0806 0x0bbc Rasl2tp - ok
16:42:12.0869 0x0bbc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
16:42:12.0917 0x0bbc RasMan - ok
16:42:12.0980 0x0bbc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:42:12.0995 0x0bbc RasPppoe - ok
16:42:13.0198 0x0bbc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:42:13.0276 0x0bbc RasSstp - ok
16:42:13.0412 0x0bbc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:42:13.0474 0x0bbc rdbss - ok
16:42:13.0537 0x0bbc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:42:13.0552 0x0bbc rdpbus - ok
16:42:13.0568 0x0bbc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:42:13.0568 0x0bbc RDPCDD - ok
16:42:13.0599 0x0bbc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:42:13.0599 0x0bbc RDPENCDD - ok
16:42:13.0630 0x0bbc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:42:13.0630 0x0bbc RDPREFMP - ok
16:42:13.0771 0x0bbc [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:42:13.0802 0x0bbc RdpVideoMiniport - ok
16:42:13.0883 0x0bbc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:42:13.0902 0x0bbc RDPWD - ok
16:42:13.0964 0x0bbc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:42:13.0964 0x0bbc rdyboost - ok
16:42:14.0026 0x0bbc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:42:14.0120 0x0bbc RemoteAccess - ok
16:42:14.0198 0x0bbc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:42:14.0245 0x0bbc RemoteRegistry - ok
16:42:14.0338 0x0bbc [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
16:42:14.0354 0x0bbc RFCOMM - ok
16:42:14.0391 0x0bbc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:42:14.0454 0x0bbc RpcEptMapper - ok
16:42:14.0485 0x0bbc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
16:42:14.0500 0x0bbc RpcLocator - ok
16:42:14.0610 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
16:42:14.0625 0x0bbc RpcSs - ok
16:41:54.0890 0x0bbc gupdate - ok
16:41:54.0968 0x0bbc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:54.0968 0x0bbc gupdatem - ok
16:41:55.0015 0x0bbc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:41:55.0046 0x0bbc hcw85cir - ok
16:41:55.0124 0x0bbc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:41:55.0140 0x0bbc HDAudBus - ok
16:41:55.0202 0x0bbc [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
16:41:55.0202 0x0bbc HECIx64 - ok
16:41:55.0218 0x0bbc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:41:55.0249 0x0bbc HidBatt - ok
16:41:55.0280 0x0bbc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:41:55.0312 0x0bbc HidBth - ok
16:41:55.0356 0x0bbc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:41:55.0372 0x0bbc HidIr - ok
16:41:55.0419 0x0bbc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
16:41:55.0419 0x0bbc hidserv - ok
16:41:55.0497 0x0bbc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:41:55.0512 0x0bbc HidUsb - ok
16:41:55.0590 0x0bbc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:41:55.0637 0x0bbc hkmsvc - ok
16:41:55.0699 0x0bbc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:41:55.0731 0x0bbc HomeGroupListener - ok
16:41:55.0793 0x0bbc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:41:55.0809 0x0bbc HomeGroupProvider - ok
16:41:55.0918 0x0bbc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:41:55.0934 0x0bbc HpSAMD - ok
16:41:56.0105 0x0bbc [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:41:56.0152 0x0bbc HTTP - ok
16:41:56.0199 0x0bbc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:41:56.0199 0x0bbc hwpolicy - ok
16:41:56.0261 0x0bbc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:41:56.0277 0x0bbc i8042prt - ok
16:41:56.0339 0x0bbc [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:41:56.0339 0x0bbc iaStor - ok
16:41:56.0402 0x0bbc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:41:56.0435 0x0bbc iaStorV - ok
16:41:56.0607 0x0bbc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:41:56.0685 0x0bbc idsvc - ok
16:41:56.0716 0x0bbc IEEtwCollectorService - ok
16:41:56.0747 0x0bbc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:41:56.0747 0x0bbc iirsp - ok
16:41:56.0825 0x0bbc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
16:41:56.0882 0x0bbc IKEEXT - ok
16:41:56.0915 0x0bbc [ 36FDF367A1DABFF903E2214023D71368, 60468692C1D048428AF25ED87DE23DAE756C7BA2B6CF6AF5EFD2E53C80F5FC68 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
16:41:56.0931 0x0bbc Impcd - ok
16:41:57.0336 0x0bbc [ 6E4CCB3AFF07E2B9F2A937385C84B573, 34F0597E7DE0D47EFE3C2D97D1DFEBA3593B8B656D0CD3D661C582B65A20A12A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:41:57.0723 0x0bbc IntcAzAudAddService - ok
16:41:57.0769 0x0bbc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
16:41:57.0785 0x0bbc intelide - ok
16:41:57.0847 0x0bbc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:41:57.0847 0x0bbc intelppm - ok
16:41:57.0923 0x0bbc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:41:57.0938 0x0bbc IPBusEnum - ok
16:41:57.0970 0x0bbc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:41:57.0985 0x0bbc IpFilterDriver - ok
16:41:58.0094 0x0bbc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:41:58.0141 0x0bbc iphlpsvc - ok
16:41:58.0172 0x0bbc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:41:58.0250 0x0bbc IPMIDRV - ok
16:41:58.0328 0x0bbc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:41:58.0360 0x0bbc IPNAT - ok
16:41:58.0377 0x0bbc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:41:58.0408 0x0bbc IRENUM - ok
16:41:58.0455 0x0bbc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:41:58.0471 0x0bbc isapnp - ok
16:41:58.0611 0x0bbc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:41:58.0627 0x0bbc iScsiPrt - ok
16:41:58.0689 0x0bbc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:41:58.0705 0x0bbc kbdclass - ok
16:41:58.0767 0x0bbc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:41:58.0861 0x0bbc kbdhid - ok
16:41:58.0890 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] KeyIso C:\Windows\system32\lsass.exe
16:41:58.0890 0x0bbc KeyIso - ok
16:41:58.0968 0x0bbc [ 67A1743377EBB5D9A370A8C2086CFDCC, 2F0FD6C1969B1EEEEFFC1A8F972E1E90F1AD9558FF00EC159BC19ED927FD4BF5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:41:58.0968 0x0bbc KSecDD - ok
16:41:59.0000 0x0bbc [ 522A1595D5701800DD41B2D472F5AAED, B62924AE94A5AC454AD6057BC133D717BB1C6445BE36D6BECAB76E1600F60C33 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:41:59.0000 0x0bbc KSecPkg - ok
16:41:59.0046 0x0bbc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:41:59.0078 0x0bbc ksthunk - ok
16:41:59.0171 0x0bbc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
16:41:59.0327 0x0bbc KtmRm - ok
16:41:59.0376 0x0bbc [ 39918DB0EFCF045A1CE6FABBF339F975, 1BAAA33DCE8F0BDBA9F6BCACAC9F4E926EBF287AFFCB2EBE114519B1ABF29529 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
16:41:59.0401 0x0bbc L1C - ok
16:41:59.0526 0x0bbc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:41:59.0541 0x0bbc LanmanServer - ok
16:41:59.0619 0x0bbc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:41:59.0666 0x0bbc LanmanWorkstation - ok
16:41:59.0729 0x0bbc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:41:59.0744 0x0bbc lltdio - ok
16:41:59.0838 0x0bbc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:41:59.0899 0x0bbc lltdsvc - ok
16:41:59.0945 0x0bbc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:41:59.0961 0x0bbc lmhosts - ok
16:42:00.0055 0x0bbc [ 23D990150D56B670A62B21B9ABDD45EE, BB9DBC0D02474976420321162C3AB1FDF975FA0494B1030488B03BC98A65F888 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:42:00.0086 0x0bbc LMS - ok
16:42:00.0148 0x0bbc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:42:00.0148 0x0bbc LSI_FC - ok
16:42:00.0211 0x0bbc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:42:00.0211 0x0bbc LSI_SAS - ok
16:42:00.0242 0x0bbc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:42:00.0242 0x0bbc LSI_SAS2 - ok
16:42:00.0273 0x0bbc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:42:00.0273 0x0bbc LSI_SCSI - ok
16:42:00.0304 0x0bbc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
16:42:00.0335 0x0bbc luafv - ok
16:42:00.0466 0x0bbc [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:42:00.0482 0x0bbc MBAMProtector - ok
16:42:00.0638 0x0bbc [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:42:00.0716 0x0bbc MBAMService - ok
16:42:00.0763 0x0bbc [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:42:00.0778 0x0bbc MBAMSwissArmy - ok
16:42:00.0809 0x0bbc [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
16:42:00.0825 0x0bbc MBAMWebAccessControl - ok
16:42:00.0906 0x0bbc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:42:00.0925 0x0bbc Mcx2Svc - ok
16:42:01.0003 0x0bbc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:42:01.0003 0x0bbc megasas - ok
16:42:01.0159 0x0bbc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:42:01.0206 0x0bbc MegaSR - ok
16:42:01.0387 0x0bbc [ A8129CFB919347F8533C934B365E9202, A1B84263714DFE92AF3C7D8DF5EBE5BBC7C96954337119BF9754676DDDE5DBED ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
16:42:01.0392 0x0bbc mfenlfk - ok
16:42:01.0470 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
16:42:01.0501 0x0bbc MMCSS - ok
16:42:01.0548 0x0bbc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
16:42:01.0563 0x0bbc Modem - ok
16:42:01.0719 0x0bbc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:42:01.0719 0x0bbc monitor - ok
16:42:02.0201 0x0bbc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:42:02.0217 0x0bbc mouclass - ok
16:42:02.0279 0x0bbc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:42:02.0295 0x0bbc mouhid - ok
16:42:02.0378 0x0bbc [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:42:02.0384 0x0bbc mountmgr - ok
16:42:02.0745 0x0bbc [ 73150F67D20270FF95A021A22E64F28A, A8878DEFBE437FB453F8E9243FB5C787D07AC7415A4475388D479C10417C524F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:42:02.0776 0x0bbc MpFilter - ok
16:42:02.0838 0x0bbc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
16:42:02.0838 0x0bbc mpio - ok
16:42:02.0900 0x0bbc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:42:03.0043 0x0bbc mpsdrv - ok
16:42:03.0199 0x0bbc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:42:03.0261 0x0bbc MpsSvc - ok
16:42:03.0323 0x0bbc [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:42:03.0391 0x0bbc MRxDAV - ok
16:42:03.0448 0x0bbc [ B2081803D510DCE174992BA880EDCA70, 37DB53C9756EC03EB7165DEB58251615D70B7C86DF32A54DE25ADAF30A04D792 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:42:03.0494 0x0bbc mrxsmb - ok
16:42:03.0541 0x0bbc [ 552FA62B0EFECD22D8D52499324BCA4F, C3A02C9C30C36928AC7B1025496544967187A05BEF5D100B54F2C0155E47145C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:42:03.0604 0x0bbc mrxsmb10 - ok
16:42:03.0635 0x0bbc [ 97687971F9CB30E2633DE0F1296B9F61, 865DA87523E4C32D65D55D5475A5CDDFA10699780DA500E6D606384FB3BEB1BE ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:42:03.0650 0x0bbc mrxsmb20 - ok
16:42:03.0697 0x0bbc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
16:42:03.0713 0x0bbc msahci - ok
16:42:03.0760 0x0bbc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:42:03.0760 0x0bbc msdsm - ok
16:42:03.0791 0x0bbc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
16:42:03.0806 0x0bbc MSDTC - ok
16:42:03.0853 0x0bbc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:42:03.0853 0x0bbc Msfs - ok
16:42:03.0891 0x0bbc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:42:03.0895 0x0bbc mshidkmdf - ok
16:42:03.0942 0x0bbc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:42:03.0942 0x0bbc msisadrv - ok
16:42:03.0960 0x0bbc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:42:03.0975 0x0bbc MSiSCSI - ok
16:42:03.0975 0x0bbc msiserver - ok
16:42:04.0022 0x0bbc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:42:04.0038 0x0bbc MSKSSRV - ok
16:42:04.0241 0x0bbc [ CE996C1821021ADF8E28E80A54E846A8, 99042E895B6C2EA80F3BA65563A12C8EBA882E3AD6A21DD8E799B0112C75DDD2 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:42:04.0256 0x0bbc MsMpSvc - ok
16:42:04.0272 0x0bbc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:42:04.0303 0x0bbc MSPCLOCK - ok
16:42:04.0334 0x0bbc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:42:04.0350 0x0bbc MSPQM - ok
16:42:04.0410 0x0bbc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:42:04.0410 0x0bbc MsRPC - ok
16:42:04.0503 0x0bbc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:42:04.0503 0x0bbc mssmbios - ok
16:42:04.0597 0x0bbc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:42:04.0628 0x0bbc MSTEE - ok
16:42:04.0644 0x0bbc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:42:04.0675 0x0bbc MTConfig - ok
16:42:04.0722 0x0bbc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
16:42:04.0722 0x0bbc Mup - ok
16:42:04.0800 0x0bbc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
16:42:04.0815 0x0bbc napagent - ok
16:42:04.0880 0x0bbc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:42:04.0895 0x0bbc NativeWifiP - ok
16:42:04.0958 0x0bbc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
16:42:05.0007 0x0bbc NDIS - ok
16:42:05.0085 0x0bbc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:42:05.0116 0x0bbc NdisCap - ok
16:42:05.0147 0x0bbc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:42:05.0178 0x0bbc NdisTapi - ok
16:42:05.0209 0x0bbc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:42:05.0241 0x0bbc Ndisuio - ok
16:42:05.0303 0x0bbc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:42:05.0365 0x0bbc NdisWan - ok
16:42:05.0420 0x0bbc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:42:05.0435 0x0bbc NDProxy - ok
16:42:05.0513 0x0bbc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:42:05.0544 0x0bbc NetBIOS - ok
16:42:05.0591 0x0bbc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:42:05.0607 0x0bbc NetBT - ok
16:42:05.0622 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] Netlogon C:\Windows\system32\lsass.exe
16:42:05.0622 0x0bbc Netlogon - ok
16:42:05.0685 0x0bbc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
16:42:05.0685 0x0bbc Netman - ok
16:42:05.0747 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0763 0x0bbc NetMsmqActivator - ok
16:42:05.0778 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0778 0x0bbc NetPipeActivator - ok
16:42:05.0794 0x0bbc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
16:42:05.0810 0x0bbc netprofm - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0856 0x0bbc NetTcpActivator - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0875 0x0bbc NetTcpPortSharing - ok
16:42:05.0916 0x0bbc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:42:05.0932 0x0bbc nfrd960 - ok
16:42:06.0215 0x0bbc [ 4774AD83C650001B337B92E5E5DA337B, 138ECC7F556D8A12AE58B78B68F6515BE4C00F9F062596B48B6CA6C010F13035 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:42:06.0246 0x0bbc NisDrv - ok
16:42:06.0339 0x0bbc [ 96B7D15161A778B359E707796CCEA646, 9E4A25D9848FAECC517474EAD548E7975CBE3F41AAA964E5245E78F2A723925E ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:42:06.0386 0x0bbc NisSrv - ok
16:42:06.0494 0x0bbc [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
16:42:06.0525 0x0bbc NlaSvc - ok
16:42:06.0556 0x0bbc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:42:06.0587 0x0bbc Npfs - ok
16:42:06.0650 0x0bbc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
16:42:06.0712 0x0bbc nsi - ok
16:42:06.0759 0x0bbc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:42:06.0759 0x0bbc nsiproxy - ok
16:42:06.0959 0x0bbc [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:42:07.0166 0x0bbc Ntfs - ok
16:42:07.0213 0x0bbc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
16:42:07.0228 0x0bbc Null - ok
16:42:07.0306 0x0bbc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:42:07.0322 0x0bbc nvraid - ok
16:42:07.0392 0x0bbc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:42:07.0394 0x0bbc nvstor - ok
16:42:07.0441 0x0bbc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:42:07.0441 0x0bbc nv_agp - ok
16:42:07.0504 0x0bbc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:42:07.0535 0x0bbc ohci1394 - ok
16:42:07.0597 0x0bbc [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:42:07.0613 0x0bbc ose - ok
16:42:07.0880 0x0bbc [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:42:08.0225 0x0bbc osppsvc - ok
16:42:08.0410 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:42:08.0446 0x0bbc p2pimsvc - ok
16:42:08.0602 0x0bbc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
16:42:08.0665 0x0bbc p2psvc - ok
16:42:08.0712 0x0bbc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:42:08.0743 0x0bbc Parport - ok
16:42:08.0790 0x0bbc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:42:08.0805 0x0bbc partmgr - ok
16:42:08.0852 0x0bbc [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:42:08.0868 0x0bbc PcaSvc - ok
16:42:08.0918 0x0bbc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
16:42:08.0934 0x0bbc pci - ok
16:42:08.0981 0x0bbc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
16:42:08.0981 0x0bbc pciide - ok
16:42:09.0030 0x0bbc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:42:09.0045 0x0bbc pcmcia - ok
16:42:09.0076 0x0bbc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
16:42:09.0076 0x0bbc pcw - ok
16:42:09.0186 0x0bbc [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:42:09.0217 0x0bbc PEAUTH - ok
16:42:09.0295 0x0bbc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:42:09.0326 0x0bbc PerfHost - ok
16:42:09.0618 0x0bbc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
16:42:09.0836 0x0bbc pla - ok
16:42:10.0836 0x0bbc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:42:10.0925 0x0bbc PlugPlay - ok
16:42:10.0957 0x0bbc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:42:10.0988 0x0bbc PNRPAutoReg - ok
16:42:11.0300 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:42:11.0315 0x0bbc PNRPsvc - ok
16:42:11.0395 0x0bbc [ 138EDF5FF39DC01F31F812365EA607E6, CC793A18250FF3B82D2BBAFA1364F17DE5D1D1282DCA3F675E5ED5D663744415 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
16:42:11.0395 0x0bbc Point64 - ok
16:42:11.0473 0x0bbc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:42:11.0505 0x0bbc PolicyAgent - ok
16:42:11.0567 0x0bbc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
16:42:11.0598 0x0bbc Power - ok
16:42:11.0645 0x0bbc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:42:11.0676 0x0bbc PptpMiniport - ok
16:42:11.0707 0x0bbc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:42:11.0739 0x0bbc Processor - ok
16:42:11.0832 0x0bbc [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
16:42:11.0903 0x0bbc ProfSvc - ok
16:42:11.0919 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:42:11.0919 0x0bbc ProtectedStorage - ok
16:42:12.0012 0x0bbc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:42:12.0012 0x0bbc Psched - ok
16:42:12.0090 0x0bbc [ 4712CC14E720ECCCC0AA16949D18AAF1, AF0223D118A25CA14EC1AF8A40A793D3CBCBE3576CCACBCD4F9A3D3F10407262 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
16:42:12.0090 0x0bbc PxHlpa64 - ok
16:42:12.0199 0x0bbc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:42:12.0262 0x0bbc ql2300 - ok
16:42:12.0293 0x0bbc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:42:12.0293 0x0bbc ql40xx - ok
16:42:12.0324 0x0bbc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
16:42:12.0355 0x0bbc QWAVE - ok
16:42:12.0385 0x0bbc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:42:12.0401 0x0bbc QWAVEdrv - ok
16:42:12.0416 0x0bbc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:42:12.0494 0x0bbc RasAcd - ok
16:42:12.0603 0x0bbc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:42:12.0619 0x0bbc RasAgileVpn - ok
16:42:12.0681 0x0bbc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
16:42:12.0713 0x0bbc RasAuto - ok
16:42:12.0775 0x0bbc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:42:12.0806 0x0bbc Rasl2tp - ok
16:42:12.0869 0x0bbc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
16:42:12.0917 0x0bbc RasMan - ok
16:42:12.0980 0x0bbc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:42:12.0995 0x0bbc RasPppoe - ok
16:42:13.0198 0x0bbc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:42:13.0276 0x0bbc RasSstp - ok
16:42:13.0412 0x0bbc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:42:13.0474 0x0bbc rdbss - ok
16:42:13.0537 0x0bbc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:42:13.0552 0x0bbc rdpbus - ok
16:42:13.0568 0x0bbc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:42:13.0568 0x0bbc RDPCDD - ok
16:42:13.0599 0x0bbc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:42:13.0599 0x0bbc RDPENCDD - ok
16:42:13.0630 0x0bbc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:42:13.0630 0x0bbc RDPREFMP - ok
16:42:13.0771 0x0bbc [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:42:13.0802 0x0bbc RdpVideoMiniport - ok
16:42:13.0883 0x0bbc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:42:13.0902 0x0bbc RDPWD - ok
16:42:13.0964 0x0bbc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:42:13.0964 0x0bbc rdyboost - ok
16:42:14.0026 0x0bbc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:42:14.0120 0x0bbc RemoteAccess - ok
16:42:14.0198 0x0bbc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:42:14.0245 0x0bbc RemoteRegistry - ok
16:42:14.0338 0x0bbc [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
16:42:14.0354 0x0bbc RFCOMM - ok
16:42:14.0391 0x0bbc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:42:14.0454 0x0bbc RpcEptMapper - ok
16:42:14.0485 0x0bbc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
16:42:14.0500 0x0bbc RpcLocator - ok
16:42:14.0610 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
16:42:14.0625 0x0bbc RpcSs - ok
tremmor
Well-Known Member
16:42:14.0688 0x0bbc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:42:14.0719 0x0bbc rspndr - ok
16:42:14.0812 0x0bbc [ 22D6B47D004A6568C500680BE2972854, 6FDDF4C0CE6211A49D0BE6529253754319D094AF3E306F87C3EE8986FB188671 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
16:42:14.0859 0x0bbc RSUSBSTOR - ok
16:42:14.0880 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] SamSs C:\Windows\system32\lsass.exe
16:42:14.0882 0x0bbc SamSs - ok
16:42:15.0527 0x0bbc [ A71BF27B7A5237A3EAF52333759543BE, 02F35BE4E00BAD85B473400661CF6511406A4CFE989F09FA25B195FF7CF4C7C2 ] SBAMSvc C:\Program Files (x86)\VIPRE\SBAMSvc.exe
16:42:15.0605 0x0bbc SBAMSvc - ok
16:42:15.0636 0x0bbc [ 7B7505F8674AC9C8418B55F807A06F1D, 876407127790900E04C454FDF6F8E993941303FF88B22A94E8EFEE09BFB3DA11 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
16:42:15.0667 0x0bbc sbapifs - ok
16:42:15.0947 0x0bbc [ 1B1AE5F447175D4B0B32B959B1ADB287, D2CCA537453F6F1BDA6687D6770D198DDC90345E28B63B6C9E00CC2203227C51 ] SbFw C:\Windows\system32\drivers\SbFw.sys
16:42:16.0057 0x0bbc SbFw - ok
16:42:16.0228 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
16:42:16.0228 0x0bbc SBFWIMCL - ok
16:42:16.0244 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
16:42:16.0244 0x0bbc SBFWIMCLMP - ok
16:42:16.0396 0x0bbc [ 4A5F19B271F147D93A596A920DB267D2, CBD72DB559EAC50B84E30EAE01DBB87571EEC7E06402B1F8E31398A0A20F1B2E ] SbHips C:\Windows\system32\drivers\sbhips.sys
16:42:16.0445 0x0bbc SbHips - ok
16:42:16.0492 0x0bbc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:42:16.0492 0x0bbc sbp2port - ok
16:42:16.0570 0x0bbc [ D8F1475DA10AEE8C25461F8A166EFA92, ADA427FF184885FF8EB77EEB598058B5EBCD33D262A2C5060119A149FECBC2DF ] SBPIMSvc C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
16:42:16.0585 0x0bbc SBPIMSvc - ok
16:42:16.0804 0x0bbc [ 97ECCE37DBAA0A871B4504CEF53EE76B, 4D319B238DC7968C17D977C1C02DE0F350C07CF721788A84E56EF19C2C4A2D4B ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
16:42:16.0804 0x0bbc sbwtis - ok
16:42:16.0896 0x0bbc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:42:17.0021 0x0bbc SCardSvr - ok
16:42:17.0067 0x0bbc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:42:17.0083 0x0bbc scfilter - ok
16:42:17.0471 0x0bbc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
16:42:17.0627 0x0bbc Schedule - ok
16:42:17.0659 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:42:17.0659 0x0bbc SCPolicySvc - ok
16:42:17.0690 0x0bbc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:42:17.0721 0x0bbc SDRSVC - ok
16:42:17.0783 0x0bbc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:42:17.0783 0x0bbc secdrv - ok
16:42:17.0815 0x0bbc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
16:42:17.0984 0x0bbc seclogon - ok
16:42:18.0030 0x0bbc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
16:42:18.0030 0x0bbc SENS - ok
16:42:18.0062 0x0bbc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:42:18.0077 0x0bbc SensrSvc - ok
16:42:18.0124 0x0bbc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:42:18.0140 0x0bbc Serenum - ok
16:42:18.0171 0x0bbc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:42:18.0202 0x0bbc Serial - ok
16:42:18.0233 0x0bbc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:42:18.0249 0x0bbc sermouse - ok
16:42:18.0296 0x0bbc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
16:42:18.0311 0x0bbc SessionEnv - ok
16:42:18.0358 0x0bbc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:42:18.0358 0x0bbc sffdisk - ok
16:42:18.0388 0x0bbc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:42:18.0403 0x0bbc sffp_mmc - ok
16:42:18.0419 0x0bbc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:42:18.0434 0x0bbc sffp_sd - ok
16:42:18.0466 0x0bbc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:42:18.0481 0x0bbc sfloppy - ok
16:42:18.0559 0x0bbc [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
16:42:18.0622 0x0bbc Sftfs - ok
16:42:18.0731 0x0bbc [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:42:18.0778 0x0bbc sftlist - ok
16:42:18.0824 0x0bbc [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:42:18.0840 0x0bbc Sftplay - ok
16:42:18.0884 0x0bbc [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:42:18.0885 0x0bbc Sftredir - ok
16:42:18.0994 0x0bbc [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
16:42:19.0057 0x0bbc SftService - ok
16:42:19.0104 0x0bbc [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
16:42:19.0119 0x0bbc Sftvol - ok
16:42:19.0197 0x0bbc [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:42:19.0213 0x0bbc sftvsa - ok
16:42:19.0260 0x0bbc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:42:19.0275 0x0bbc SharedAccess - ok
16:42:19.0306 0x0bbc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:42:19.0353 0x0bbc ShellHWDetection - ok
16:42:19.0396 0x0bbc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:42:19.0399 0x0bbc SiSRaid2 - ok
16:42:19.0431 0x0bbc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:42:19.0431 0x0bbc SiSRaid4 - ok
16:42:19.0555 0x0bbc [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:42:19.0571 0x0bbc SkypeUpdate - ok
16:42:19.0602 0x0bbc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:42:19.0665 0x0bbc Smb - ok
16:42:19.0711 0x0bbc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:42:19.0727 0x0bbc SNMPTRAP - ok
16:42:19.0761 0x0bbc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
16:42:19.0761 0x0bbc spldr - ok
16:42:19.0824 0x0bbc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
16:42:19.0913 0x0bbc Spooler - ok
16:42:20.0225 0x0bbc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
16:42:20.0349 0x0bbc sppsvc - ok
16:42:20.0395 0x0bbc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:42:20.0426 0x0bbc sppuinotify - ok
16:42:20.0488 0x0bbc [ D630B6F2E8379B6F10DC16E82A426552, 9F7949B11BCEF55B38119ED45BD92117A8551BEC8A2BCD88EA89707C48120F1B ] sprtsvc_DellSupportCenter c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
16:42:20.0488 0x0bbc sprtsvc_DellSupportCenter - ok
16:42:20.0566 0x0bbc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:42:20.0566 0x0bbc srv - ok
16:42:20.0613 0x0bbc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:42:20.0629 0x0bbc srv2 - ok
16:42:20.0644 0x0bbc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:42:20.0660 0x0bbc srvnet - ok
16:42:20.0707 0x0bbc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:42:20.0707 0x0bbc SSDPSRV - ok
16:42:20.0738 0x0bbc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:42:20.0769 0x0bbc SstpSvc - ok
16:42:20.0831 0x0bbc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:42:20.0831 0x0bbc stexstor - ok
16:42:20.0891 0x0bbc [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
16:42:20.0891 0x0bbc StillCam - ok
16:42:20.0954 0x0bbc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
16:42:20.0969 0x0bbc stisvc - ok
16:42:21.0000 0x0bbc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
16:42:21.0016 0x0bbc swenum - ok
16:42:21.0063 0x0bbc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
16:42:21.0110 0x0bbc swprv - ok
16:42:21.0188 0x0bbc [ C25866BDF0E818E02BB8E76845D26E54, 9D417E0C11ACF96059CBA3ADF0E6FF404C75498D21819B34635177C945560FD7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:42:21.0281 0x0bbc SynTP - ok
16:42:21.0487 0x0bbc [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
16:42:21.0565 0x0bbc SysMain - ok
16:42:21.0627 0x0bbc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:42:21.0659 0x0bbc TabletInputService - ok
16:42:21.0690 0x0bbc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
16:42:21.0721 0x0bbc TapiSrv - ok
16:42:21.0752 0x0bbc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
16:42:21.0752 0x0bbc TBS - ok
16:42:21.0885 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:42:21.0981 0x0bbc Tcpip - ok
16:42:22.0090 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:42:22.0121 0x0bbc TCPIP6 - ok
16:42:22.0183 0x0bbc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:42:22.0183 0x0bbc tcpipreg - ok
16:42:22.0199 0x0bbc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:42:22.0215 0x0bbc TDPIPE - ok
16:42:22.0261 0x0bbc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:42:22.0261 0x0bbc TDTCP - ok
16:42:22.0340 0x0bbc [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:42:22.0372 0x0bbc tdx - ok
16:42:22.0400 0x0bbc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
16:42:22.0400 0x0bbc TermDD - ok
16:42:22.0447 0x0bbc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
16:42:22.0541 0x0bbc TermService - ok
16:42:22.0587 0x0bbc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
16:42:22.0603 0x0bbc Themes - ok
16:42:22.0634 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
16:42:22.0634 0x0bbc THREADORDER - ok
16:42:22.0697 0x0bbc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
16:42:22.0697 0x0bbc TrkWks - ok
16:42:22.0759 0x0bbc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:42:22.0759 0x0bbc TrustedInstaller - ok
16:42:22.0806 0x0bbc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:42:22.0806 0x0bbc tssecsrv - ok
16:42:22.0853 0x0bbc [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:42:22.0929 0x0bbc TsUsbFlt - ok
16:42:22.0991 0x0bbc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:42:22.0991 0x0bbc tunnel - ok
16:42:23.0023 0x0bbc [ 825E7A1F48FB8BCFBA27C178AAB4E275, 94F039917B52BEFFFE383E14A6169AE81B6E79C30BA7DD017A9CFE15708A1605 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
16:42:23.0038 0x0bbc TurboB - ok
16:42:23.0101 0x0bbc [ B206BE1174D5964D49A56BB6C4E0524A, 9D7DA11220B69E2EDEA9E55EC0E4CB554DD7F638ABF49B76353CE5A5C75965B8 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
16:42:23.0116 0x0bbc TurboBoost - ok
16:42:23.0163 0x0bbc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:42:23.0163 0x0bbc uagp35 - ok
16:42:23.0210 0x0bbc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:42:23.0241 0x0bbc udfs - ok
16:42:23.0272 0x0bbc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:42:23.0320 0x0bbc UI0Detect - ok
16:42:23.0351 0x0bbc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:42:23.0351 0x0bbc uliagpkx - ok
16:42:23.0615 0x0bbc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
16:42:23.0631 0x0bbc umbus - ok
16:42:23.0693 0x0bbc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:42:23.0709 0x0bbc UmPass - ok
16:42:24.0282 0x0bbc [ CBDEE152D73200EE49031A26310B9D3E, 92E22235446F8DB3BFE97EDE7DE7D33F43EAC5957C5B41ACCEC4EBFD19BFF819 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:42:24.0313 0x0bbc UNS - ok
16:42:24.0422 0x0bbc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
16:42:24.0469 0x0bbc upnphost - ok
16:42:24.0516 0x0bbc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:42:24.0547 0x0bbc usbccgp - ok
16:42:24.0718 0x0bbc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:42:24.0750 0x0bbc usbcir - ok
16:42:24.0796 0x0bbc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:42:24.0828 0x0bbc usbehci - ok
16:42:24.0903 0x0bbc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:42:24.0997 0x0bbc usbhub - ok
16:42:25.0043 0x0bbc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:42:25.0059 0x0bbc usbohci - ok
16:42:25.0090 0x0bbc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:42:25.0106 0x0bbc usbprint - ok
16:42:25.0137 0x0bbc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
16:42:25.0153 0x0bbc USBSTOR - ok
16:42:25.0231 0x0bbc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:42:25.0246 0x0bbc usbuhci - ok
16:42:25.0355 0x0bbc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:42:25.0404 0x0bbc usbvideo - ok
16:42:25.0451 0x0bbc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
16:42:25.0482 0x0bbc UxSms - ok
16:42:25.0513 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] VaultSvc C:\Windows\system32\lsass.exe
16:42:25.0513 0x0bbc VaultSvc - ok
16:42:25.0576 0x0bbc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:42:25.0576 0x0bbc vdrvroot - ok
16:42:25.0779 0x0bbc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
16:42:25.0952 0x0bbc vds - ok
16:42:26.0015 0x0bbc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:42:26.0030 0x0bbc vga - ok
16:42:26.0077 0x0bbc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
16:42:26.0093 0x0bbc VgaSave - ok
16:42:26.0171 0x0bbc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:42:26.0171 0x0bbc vhdmp - ok
16:42:26.0249 0x0bbc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
16:42:26.0249 0x0bbc viaide - ok
16:42:26.0295 0x0bbc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:42:26.0295 0x0bbc volmgr - ok
16:42:26.0392 0x0bbc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:42:26.0397 0x0bbc volmgrx - ok
16:42:26.0475 0x0bbc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:42:26.0491 0x0bbc volsnap - ok
16:42:26.0538 0x0bbc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:42:26.0553 0x0bbc vsmraid - ok
16:42:27.0034 0x0bbc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
16:42:27.0315 0x0bbc VSS - ok
16:42:27.0331 0x0bbc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:42:27.0346 0x0bbc vwifibus - ok
16:42:27.0396 0x0bbc [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:42:27.0412 0x0bbc vwififlt - ok
16:42:27.0521 0x0bbc [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:42:27.0521 0x0bbc vwifimp - ok
16:42:27.0599 0x0bbc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
16:42:27.0646 0x0bbc W32Time - ok
16:42:27.0677 0x0bbc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:42:27.0755 0x0bbc WacomPen - ok
16:42:27.0833 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0864 0x0bbc WANARP - ok
16:42:27.0902 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0907 0x0bbc Wanarpv6 - ok
16:42:28.0132 0x0bbc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:42:28.0226 0x0bbc WatAdminSvc - ok
16:42:28.0560 0x0bbc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
16:42:28.0857 0x0bbc wbengine - ok
16:42:28.0918 0x0bbc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:42:28.0933 0x0bbc WbioSrvc - ok
16:42:28.0996 0x0bbc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:42:29.0058 0x0bbc wcncsvc - ok
16:42:29.0105 0x0bbc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:42:29.0121 0x0bbc WcsPlugInService - ok
16:42:29.0167 0x0bbc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:42:29.0167 0x0bbc Wd - ok
16:42:29.0214 0x0bbc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:42:29.0261 0x0bbc Wdf01000 - ok
16:42:29.0292 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:42:29.0292 0x0bbc WdiServiceHost - ok
16:42:29.0308 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:42:29.0308 0x0bbc WdiSystemHost - ok
16:42:29.0355 0x0bbc [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
16:42:29.0392 0x0bbc WebClient - ok
16:42:29.0460 0x0bbc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:42:29.0569 0x0bbc Wecsvc - ok
16:42:29.0585 0x0bbc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:42:29.0601 0x0bbc wercplsupport - ok
16:42:29.0741 0x0bbc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
16:42:29.0757 0x0bbc WerSvc - ok
16:42:29.0788 0x0bbc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:42:29.0803 0x0bbc WfpLwf - ok
16:42:29.0895 0x0bbc [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
16:42:29.0911 0x0bbc WimFltr - ok
16:42:29.0973 0x0bbc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:42:29.0973 0x0bbc WIMMount - ok
16:42:30.0020 0x0bbc WinDefend - ok
16:42:30.0051 0x0bbc WinHttpAutoProxySvc - ok
16:42:30.0487 0x0bbc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:42:30.0533 0x0bbc Winmgmt - ok
16:42:30.0941 0x0bbc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
16:42:31.0113 0x0bbc WinRM - ok
16:42:31.0237 0x0bbc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
16:42:31.0347 0x0bbc WinUsb - ok
16:42:31.0481 0x0bbc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:42:31.0544 0x0bbc Wlansvc - ok
16:42:31.0591 0x0bbc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:42:31.0591 0x0bbc WmiAcpi - ok
16:42:31.0669 0x0bbc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:42:31.0778 0x0bbc wmiApSrv - ok
16:42:31.0825 0x0bbc WMPNetworkSvc - ok
16:42:31.0871 0x0bbc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:42:31.0889 0x0bbc WPCSvc - ok
16:42:31.0951 0x0bbc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:42:31.0967 0x0bbc WPDBusEnum - ok
16:42:32.0014 0x0bbc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:42:32.0029 0x0bbc ws2ifsl - ok
16:42:32.0061 0x0bbc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
16:42:32.0076 0x0bbc wscsvc - ok
16:42:32.0092 0x0bbc WSearch - ok
16:42:32.0554 0x0bbc [ 499034D7F1F6AF49F9EE12F8822793CB, 55D591C4861AF66C6B9201BF78808B2ECE7B79D95C6BB07FF0ED87EFE63DD99E ] wuauserv C:\Windows\system32\wuaueng.dll
16:42:32.0773 0x0bbc wuauserv - ok
16:42:32.0835 0x0bbc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:42:32.0851 0x0bbc WudfPf - ok
16:42:32.0899 0x0bbc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\drivers\WUDFRd.sys
16:42:32.0946 0x0bbc WUDFRd - ok
16:42:32.0962 0x0bbc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:42:32.0977 0x0bbc wudfsvc - ok
16:42:33.0040 0x0bbc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
16:42:33.0071 0x0bbc WwanSvc - ok
16:42:33.0102 0x0bbc ================ Scan global ===============================
16:42:33.0133 0x0bbc [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
16:42:33.0180 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0227 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0258 0x0bbc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:42:33.0321 0x0bbc [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
16:42:33.0352 0x0bbc [ Global ] - ok
16:42:33.0352 0x0bbc ================ Scan MBR ==================================
16:42:33.0387 0x0bbc [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:42:35.0363 0x0bbc \Device\Harddisk0\DR0 - ok
16:42:35.0363 0x0bbc ================ Scan VBR ==================================
16:42:35.0382 0x0bbc [ 7019B8CC0DC29E0FEB9B03C67B44EE2D ] \Device\Harddisk0\DR0\Partition1
16:42:35.0385 0x0bbc \Device\Harddisk0\DR0\Partition1 - ok
16:42:35.0401 0x0bbc [ 2340C985AA75654C7597E3A6EA3097D0 ] \Device\Harddisk0\DR0\Partition2
16:42:35.0463 0x0bbc \Device\Harddisk0\DR0\Partition2 - ok
16:42:35.0479 0x0bbc ================ Scan generic autorun ======================
16:42:35.0479 0x0bbc SynTPEnh - ok
16:42:36.0785 0x0bbc [ 8AFCB48CAD2A0AC051FBDEB7289BC0EE, ACBD119E608A3634E869E26DEA9DC5B7870E3E6C4B762BF04B6BFF40E2460847 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:42:37.0315 0x0bbc RtHDVCpl - ok
16:42:37.0954 0x0bbc [ E93736524C401B8F7654806DB82FC050, 72574A5B324095C2518A63B8D156EC375F832045CDDB343FCB564A6AB2B3B26E ] C:\Program Files\Dell\QuickSet\QuickSet.exe
16:42:38.0017 0x0bbc QuickSet - ok
16:42:38.0403 0x0bbc [ 35BA4E6632BA690EA6421C1E03537D0E, 99D6B4DB12ABE3A7F44AB1B2D626978E85231185AE280D9516986027BC8385CB ] c:\Program Files\Microsoft Security Client\msseces.exe
16:42:38.0575 0x0bbc MSC - ok
16:42:38.0809 0x0bbc [ 77AC8322178FB8F3117CDD3B6DC6E126, 2786198EE920D7788FA0DE376231D4E42AB68F6D5A1E87FAC1F3D7424D1ED493 ] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
16:42:38.0824 0x0bbc StartCCC - ok
16:42:39.0029 0x0bbc [ 80B62FF105908EC9E4B072AFB1CFC824, B124F309CB42167D59097DB3346487A26D431EC05694CECF19F0C5938312B3E8 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
16:42:39.0060 0x0bbc Dell Webcam Central - ok
16:42:39.0123 0x0bbc [ 00D1FB0073B4A8BD2989EA8FF4CC792B, 001A26FF51BF6BABF6325983F512CF8D84CADEE1CA36F166A41702D94C1B0841 ] c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
16:42:39.0123 0x0bbc DellSupportCenter - ok
16:42:39.0263 0x0bbc [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:42:39.0263 0x0bbc HP Software Update - ok
16:42:39.0357 0x0bbc [ EABCB3EBAB22B981A09DBC1E65D05E96, 9980D2ADF2CB726DC6832A7D8697605608C3C8121DC631134735386A402896A8 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe
16:42:39.0867 0x0bbc "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" - ok
16:42:40.0243 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0486 0x0bbc Sidebar - ok
16:42:40.0533 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0595 0x0bbc mctadmin - ok
16:42:40.0657 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0673 0x0bbc Sidebar - ok
16:42:40.0720 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0735 0x0bbc mctadmin - ok
16:42:40.0735 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:41.0746 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:42.0756 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:43.0766 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:44.0828 0x0bbc AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.8.204.0 ), 0x61000 ( enabled : updated )
16:42:44.0943 0x0bbc AV detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41000 ( enabled : updated )
16:42:44.0943 0x0bbc FW detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41010 ( enabled )
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0bbc Scan finished
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0b68 Detected object count: 0
16:42:47.0846 0x0b68 Actual detected object count: 0
16:43:11.0431 0x1770 Deinitialize success
16:42:14.0719 0x0bbc rspndr - ok
16:42:14.0812 0x0bbc [ 22D6B47D004A6568C500680BE2972854, 6FDDF4C0CE6211A49D0BE6529253754319D094AF3E306F87C3EE8986FB188671 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
16:42:14.0859 0x0bbc RSUSBSTOR - ok
16:42:14.0880 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] SamSs C:\Windows\system32\lsass.exe
16:42:14.0882 0x0bbc SamSs - ok
16:42:15.0527 0x0bbc [ A71BF27B7A5237A3EAF52333759543BE, 02F35BE4E00BAD85B473400661CF6511406A4CFE989F09FA25B195FF7CF4C7C2 ] SBAMSvc C:\Program Files (x86)\VIPRE\SBAMSvc.exe
16:42:15.0605 0x0bbc SBAMSvc - ok
16:42:15.0636 0x0bbc [ 7B7505F8674AC9C8418B55F807A06F1D, 876407127790900E04C454FDF6F8E993941303FF88B22A94E8EFEE09BFB3DA11 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
16:42:15.0667 0x0bbc sbapifs - ok
16:42:15.0947 0x0bbc [ 1B1AE5F447175D4B0B32B959B1ADB287, D2CCA537453F6F1BDA6687D6770D198DDC90345E28B63B6C9E00CC2203227C51 ] SbFw C:\Windows\system32\drivers\SbFw.sys
16:42:16.0057 0x0bbc SbFw - ok
16:42:16.0228 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
16:42:16.0228 0x0bbc SBFWIMCL - ok
16:42:16.0244 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
16:42:16.0244 0x0bbc SBFWIMCLMP - ok
16:42:16.0396 0x0bbc [ 4A5F19B271F147D93A596A920DB267D2, CBD72DB559EAC50B84E30EAE01DBB87571EEC7E06402B1F8E31398A0A20F1B2E ] SbHips C:\Windows\system32\drivers\sbhips.sys
16:42:16.0445 0x0bbc SbHips - ok
16:42:16.0492 0x0bbc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:42:16.0492 0x0bbc sbp2port - ok
16:42:16.0570 0x0bbc [ D8F1475DA10AEE8C25461F8A166EFA92, ADA427FF184885FF8EB77EEB598058B5EBCD33D262A2C5060119A149FECBC2DF ] SBPIMSvc C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
16:42:16.0585 0x0bbc SBPIMSvc - ok
16:42:16.0804 0x0bbc [ 97ECCE37DBAA0A871B4504CEF53EE76B, 4D319B238DC7968C17D977C1C02DE0F350C07CF721788A84E56EF19C2C4A2D4B ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
16:42:16.0804 0x0bbc sbwtis - ok
16:42:16.0896 0x0bbc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:42:17.0021 0x0bbc SCardSvr - ok
16:42:17.0067 0x0bbc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:42:17.0083 0x0bbc scfilter - ok
16:42:17.0471 0x0bbc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
16:42:17.0627 0x0bbc Schedule - ok
16:42:17.0659 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:42:17.0659 0x0bbc SCPolicySvc - ok
16:42:17.0690 0x0bbc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:42:17.0721 0x0bbc SDRSVC - ok
16:42:17.0783 0x0bbc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:42:17.0783 0x0bbc secdrv - ok
16:42:17.0815 0x0bbc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
16:42:17.0984 0x0bbc seclogon - ok
16:42:18.0030 0x0bbc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
16:42:18.0030 0x0bbc SENS - ok
16:42:18.0062 0x0bbc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:42:18.0077 0x0bbc SensrSvc - ok
16:42:18.0124 0x0bbc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:42:18.0140 0x0bbc Serenum - ok
16:42:18.0171 0x0bbc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:42:18.0202 0x0bbc Serial - ok
16:42:18.0233 0x0bbc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:42:18.0249 0x0bbc sermouse - ok
16:42:18.0296 0x0bbc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
16:42:18.0311 0x0bbc SessionEnv - ok
16:42:18.0358 0x0bbc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:42:18.0358 0x0bbc sffdisk - ok
16:42:18.0388 0x0bbc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:42:18.0403 0x0bbc sffp_mmc - ok
16:42:18.0419 0x0bbc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:42:18.0434 0x0bbc sffp_sd - ok
16:42:18.0466 0x0bbc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:42:18.0481 0x0bbc sfloppy - ok
16:42:18.0559 0x0bbc [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
16:42:18.0622 0x0bbc Sftfs - ok
16:42:18.0731 0x0bbc [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:42:18.0778 0x0bbc sftlist - ok
16:42:18.0824 0x0bbc [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:42:18.0840 0x0bbc Sftplay - ok
16:42:18.0884 0x0bbc [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:42:18.0885 0x0bbc Sftredir - ok
16:42:18.0994 0x0bbc [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
16:42:19.0057 0x0bbc SftService - ok
16:42:19.0104 0x0bbc [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
16:42:19.0119 0x0bbc Sftvol - ok
16:42:19.0197 0x0bbc [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:42:19.0213 0x0bbc sftvsa - ok
16:42:19.0260 0x0bbc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:42:19.0275 0x0bbc SharedAccess - ok
16:42:19.0306 0x0bbc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:42:19.0353 0x0bbc ShellHWDetection - ok
16:42:19.0396 0x0bbc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:42:19.0399 0x0bbc SiSRaid2 - ok
16:42:19.0431 0x0bbc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:42:19.0431 0x0bbc SiSRaid4 - ok
16:42:19.0555 0x0bbc [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:42:19.0571 0x0bbc SkypeUpdate - ok
16:42:19.0602 0x0bbc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:42:19.0665 0x0bbc Smb - ok
16:42:19.0711 0x0bbc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:42:19.0727 0x0bbc SNMPTRAP - ok
16:42:19.0761 0x0bbc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
16:42:19.0761 0x0bbc spldr - ok
16:42:19.0824 0x0bbc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
16:42:19.0913 0x0bbc Spooler - ok
16:42:20.0225 0x0bbc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
16:42:20.0349 0x0bbc sppsvc - ok
16:42:20.0395 0x0bbc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:42:20.0426 0x0bbc sppuinotify - ok
16:42:20.0488 0x0bbc [ D630B6F2E8379B6F10DC16E82A426552, 9F7949B11BCEF55B38119ED45BD92117A8551BEC8A2BCD88EA89707C48120F1B ] sprtsvc_DellSupportCenter c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
16:42:20.0488 0x0bbc sprtsvc_DellSupportCenter - ok
16:42:20.0566 0x0bbc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:42:20.0566 0x0bbc srv - ok
16:42:20.0613 0x0bbc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:42:20.0629 0x0bbc srv2 - ok
16:42:20.0644 0x0bbc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:42:20.0660 0x0bbc srvnet - ok
16:42:20.0707 0x0bbc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:42:20.0707 0x0bbc SSDPSRV - ok
16:42:20.0738 0x0bbc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:42:20.0769 0x0bbc SstpSvc - ok
16:42:20.0831 0x0bbc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:42:20.0831 0x0bbc stexstor - ok
16:42:20.0891 0x0bbc [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
16:42:20.0891 0x0bbc StillCam - ok
16:42:20.0954 0x0bbc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
16:42:20.0969 0x0bbc stisvc - ok
16:42:21.0000 0x0bbc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
16:42:21.0016 0x0bbc swenum - ok
16:42:21.0063 0x0bbc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
16:42:21.0110 0x0bbc swprv - ok
16:42:21.0188 0x0bbc [ C25866BDF0E818E02BB8E76845D26E54, 9D417E0C11ACF96059CBA3ADF0E6FF404C75498D21819B34635177C945560FD7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:42:21.0281 0x0bbc SynTP - ok
16:42:21.0487 0x0bbc [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
16:42:21.0565 0x0bbc SysMain - ok
16:42:21.0627 0x0bbc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:42:21.0659 0x0bbc TabletInputService - ok
16:42:21.0690 0x0bbc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
16:42:21.0721 0x0bbc TapiSrv - ok
16:42:21.0752 0x0bbc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
16:42:21.0752 0x0bbc TBS - ok
16:42:21.0885 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:42:21.0981 0x0bbc Tcpip - ok
16:42:22.0090 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:42:22.0121 0x0bbc TCPIP6 - ok
16:42:22.0183 0x0bbc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:42:22.0183 0x0bbc tcpipreg - ok
16:42:22.0199 0x0bbc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:42:22.0215 0x0bbc TDPIPE - ok
16:42:22.0261 0x0bbc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:42:22.0261 0x0bbc TDTCP - ok
16:42:22.0340 0x0bbc [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:42:22.0372 0x0bbc tdx - ok
16:42:22.0400 0x0bbc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
16:42:22.0400 0x0bbc TermDD - ok
16:42:22.0447 0x0bbc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
16:42:22.0541 0x0bbc TermService - ok
16:42:22.0587 0x0bbc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
16:42:22.0603 0x0bbc Themes - ok
16:42:22.0634 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
16:42:22.0634 0x0bbc THREADORDER - ok
16:42:22.0697 0x0bbc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
16:42:22.0697 0x0bbc TrkWks - ok
16:42:22.0759 0x0bbc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:42:22.0759 0x0bbc TrustedInstaller - ok
16:42:22.0806 0x0bbc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:42:22.0806 0x0bbc tssecsrv - ok
16:42:22.0853 0x0bbc [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:42:22.0929 0x0bbc TsUsbFlt - ok
16:42:22.0991 0x0bbc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:42:22.0991 0x0bbc tunnel - ok
16:42:23.0023 0x0bbc [ 825E7A1F48FB8BCFBA27C178AAB4E275, 94F039917B52BEFFFE383E14A6169AE81B6E79C30BA7DD017A9CFE15708A1605 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
16:42:23.0038 0x0bbc TurboB - ok
16:42:23.0101 0x0bbc [ B206BE1174D5964D49A56BB6C4E0524A, 9D7DA11220B69E2EDEA9E55EC0E4CB554DD7F638ABF49B76353CE5A5C75965B8 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
16:42:23.0116 0x0bbc TurboBoost - ok
16:42:23.0163 0x0bbc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:42:23.0163 0x0bbc uagp35 - ok
16:42:23.0210 0x0bbc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:42:23.0241 0x0bbc udfs - ok
16:42:23.0272 0x0bbc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:42:23.0320 0x0bbc UI0Detect - ok
16:42:23.0351 0x0bbc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:42:23.0351 0x0bbc uliagpkx - ok
16:42:23.0615 0x0bbc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
16:42:23.0631 0x0bbc umbus - ok
16:42:23.0693 0x0bbc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:42:23.0709 0x0bbc UmPass - ok
16:42:24.0282 0x0bbc [ CBDEE152D73200EE49031A26310B9D3E, 92E22235446F8DB3BFE97EDE7DE7D33F43EAC5957C5B41ACCEC4EBFD19BFF819 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:42:24.0313 0x0bbc UNS - ok
16:42:24.0422 0x0bbc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
16:42:24.0469 0x0bbc upnphost - ok
16:42:24.0516 0x0bbc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:42:24.0547 0x0bbc usbccgp - ok
16:42:24.0718 0x0bbc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:42:24.0750 0x0bbc usbcir - ok
16:42:24.0796 0x0bbc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:42:24.0828 0x0bbc usbehci - ok
16:42:24.0903 0x0bbc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:42:24.0997 0x0bbc usbhub - ok
16:42:25.0043 0x0bbc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:42:25.0059 0x0bbc usbohci - ok
16:42:25.0090 0x0bbc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:42:25.0106 0x0bbc usbprint - ok
16:42:25.0137 0x0bbc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
16:42:25.0153 0x0bbc USBSTOR - ok
16:42:25.0231 0x0bbc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:42:25.0246 0x0bbc usbuhci - ok
16:42:25.0355 0x0bbc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:42:25.0404 0x0bbc usbvideo - ok
16:42:25.0451 0x0bbc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
16:42:25.0482 0x0bbc UxSms - ok
16:42:25.0513 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] VaultSvc C:\Windows\system32\lsass.exe
16:42:25.0513 0x0bbc VaultSvc - ok
16:42:25.0576 0x0bbc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:42:25.0576 0x0bbc vdrvroot - ok
16:42:25.0779 0x0bbc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
16:42:25.0952 0x0bbc vds - ok
16:42:26.0015 0x0bbc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:42:26.0030 0x0bbc vga - ok
16:42:26.0077 0x0bbc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
16:42:26.0093 0x0bbc VgaSave - ok
16:42:26.0171 0x0bbc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:42:26.0171 0x0bbc vhdmp - ok
16:42:26.0249 0x0bbc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
16:42:26.0249 0x0bbc viaide - ok
16:42:26.0295 0x0bbc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:42:26.0295 0x0bbc volmgr - ok
16:42:26.0392 0x0bbc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:42:26.0397 0x0bbc volmgrx - ok
16:42:26.0475 0x0bbc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:42:26.0491 0x0bbc volsnap - ok
16:42:26.0538 0x0bbc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:42:26.0553 0x0bbc vsmraid - ok
16:42:27.0034 0x0bbc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
16:42:27.0315 0x0bbc VSS - ok
16:42:27.0331 0x0bbc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:42:27.0346 0x0bbc vwifibus - ok
16:42:27.0396 0x0bbc [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:42:27.0412 0x0bbc vwififlt - ok
16:42:27.0521 0x0bbc [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:42:27.0521 0x0bbc vwifimp - ok
16:42:27.0599 0x0bbc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
16:42:27.0646 0x0bbc W32Time - ok
16:42:27.0677 0x0bbc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:42:27.0755 0x0bbc WacomPen - ok
16:42:27.0833 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0864 0x0bbc WANARP - ok
16:42:27.0902 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0907 0x0bbc Wanarpv6 - ok
16:42:28.0132 0x0bbc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:42:28.0226 0x0bbc WatAdminSvc - ok
16:42:28.0560 0x0bbc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
16:42:28.0857 0x0bbc wbengine - ok
16:42:28.0918 0x0bbc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:42:28.0933 0x0bbc WbioSrvc - ok
16:42:28.0996 0x0bbc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:42:29.0058 0x0bbc wcncsvc - ok
16:42:29.0105 0x0bbc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:42:29.0121 0x0bbc WcsPlugInService - ok
16:42:29.0167 0x0bbc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:42:29.0167 0x0bbc Wd - ok
16:42:29.0214 0x0bbc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:42:29.0261 0x0bbc Wdf01000 - ok
16:42:29.0292 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:42:29.0292 0x0bbc WdiServiceHost - ok
16:42:29.0308 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:42:29.0308 0x0bbc WdiSystemHost - ok
16:42:29.0355 0x0bbc [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
16:42:29.0392 0x0bbc WebClient - ok
16:42:29.0460 0x0bbc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:42:29.0569 0x0bbc Wecsvc - ok
16:42:29.0585 0x0bbc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:42:29.0601 0x0bbc wercplsupport - ok
16:42:29.0741 0x0bbc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
16:42:29.0757 0x0bbc WerSvc - ok
16:42:29.0788 0x0bbc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:42:29.0803 0x0bbc WfpLwf - ok
16:42:29.0895 0x0bbc [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
16:42:29.0911 0x0bbc WimFltr - ok
16:42:29.0973 0x0bbc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:42:29.0973 0x0bbc WIMMount - ok
16:42:30.0020 0x0bbc WinDefend - ok
16:42:30.0051 0x0bbc WinHttpAutoProxySvc - ok
16:42:30.0487 0x0bbc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:42:30.0533 0x0bbc Winmgmt - ok
16:42:30.0941 0x0bbc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
16:42:31.0113 0x0bbc WinRM - ok
16:42:31.0237 0x0bbc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
16:42:31.0347 0x0bbc WinUsb - ok
16:42:31.0481 0x0bbc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:42:31.0544 0x0bbc Wlansvc - ok
16:42:31.0591 0x0bbc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:42:31.0591 0x0bbc WmiAcpi - ok
16:42:31.0669 0x0bbc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:42:31.0778 0x0bbc wmiApSrv - ok
16:42:31.0825 0x0bbc WMPNetworkSvc - ok
16:42:31.0871 0x0bbc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:42:31.0889 0x0bbc WPCSvc - ok
16:42:31.0951 0x0bbc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:42:31.0967 0x0bbc WPDBusEnum - ok
16:42:32.0014 0x0bbc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:42:32.0029 0x0bbc ws2ifsl - ok
16:42:32.0061 0x0bbc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
16:42:32.0076 0x0bbc wscsvc - ok
16:42:32.0092 0x0bbc WSearch - ok
16:42:32.0554 0x0bbc [ 499034D7F1F6AF49F9EE12F8822793CB, 55D591C4861AF66C6B9201BF78808B2ECE7B79D95C6BB07FF0ED87EFE63DD99E ] wuauserv C:\Windows\system32\wuaueng.dll
16:42:32.0773 0x0bbc wuauserv - ok
16:42:32.0835 0x0bbc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:42:32.0851 0x0bbc WudfPf - ok
16:42:32.0899 0x0bbc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\drivers\WUDFRd.sys
16:42:32.0946 0x0bbc WUDFRd - ok
16:42:32.0962 0x0bbc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:42:32.0977 0x0bbc wudfsvc - ok
16:42:33.0040 0x0bbc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
16:42:33.0071 0x0bbc WwanSvc - ok
16:42:33.0102 0x0bbc ================ Scan global ===============================
16:42:33.0133 0x0bbc [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
16:42:33.0180 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0227 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0258 0x0bbc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:42:33.0321 0x0bbc [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
16:42:33.0352 0x0bbc [ Global ] - ok
16:42:33.0352 0x0bbc ================ Scan MBR ==================================
16:42:33.0387 0x0bbc [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:42:35.0363 0x0bbc \Device\Harddisk0\DR0 - ok
16:42:35.0363 0x0bbc ================ Scan VBR ==================================
16:42:35.0382 0x0bbc [ 7019B8CC0DC29E0FEB9B03C67B44EE2D ] \Device\Harddisk0\DR0\Partition1
16:42:35.0385 0x0bbc \Device\Harddisk0\DR0\Partition1 - ok
16:42:35.0401 0x0bbc [ 2340C985AA75654C7597E3A6EA3097D0 ] \Device\Harddisk0\DR0\Partition2
16:42:35.0463 0x0bbc \Device\Harddisk0\DR0\Partition2 - ok
16:42:35.0479 0x0bbc ================ Scan generic autorun ======================
16:42:35.0479 0x0bbc SynTPEnh - ok
16:42:36.0785 0x0bbc [ 8AFCB48CAD2A0AC051FBDEB7289BC0EE, ACBD119E608A3634E869E26DEA9DC5B7870E3E6C4B762BF04B6BFF40E2460847 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:42:37.0315 0x0bbc RtHDVCpl - ok
16:42:37.0954 0x0bbc [ E93736524C401B8F7654806DB82FC050, 72574A5B324095C2518A63B8D156EC375F832045CDDB343FCB564A6AB2B3B26E ] C:\Program Files\Dell\QuickSet\QuickSet.exe
16:42:38.0017 0x0bbc QuickSet - ok
16:42:38.0403 0x0bbc [ 35BA4E6632BA690EA6421C1E03537D0E, 99D6B4DB12ABE3A7F44AB1B2D626978E85231185AE280D9516986027BC8385CB ] c:\Program Files\Microsoft Security Client\msseces.exe
16:42:38.0575 0x0bbc MSC - ok
16:42:38.0809 0x0bbc [ 77AC8322178FB8F3117CDD3B6DC6E126, 2786198EE920D7788FA0DE376231D4E42AB68F6D5A1E87FAC1F3D7424D1ED493 ] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
16:42:38.0824 0x0bbc StartCCC - ok
16:42:39.0029 0x0bbc [ 80B62FF105908EC9E4B072AFB1CFC824, B124F309CB42167D59097DB3346487A26D431EC05694CECF19F0C5938312B3E8 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
16:42:39.0060 0x0bbc Dell Webcam Central - ok
16:42:39.0123 0x0bbc [ 00D1FB0073B4A8BD2989EA8FF4CC792B, 001A26FF51BF6BABF6325983F512CF8D84CADEE1CA36F166A41702D94C1B0841 ] c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
16:42:39.0123 0x0bbc DellSupportCenter - ok
16:42:39.0263 0x0bbc [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:42:39.0263 0x0bbc HP Software Update - ok
16:42:39.0357 0x0bbc [ EABCB3EBAB22B981A09DBC1E65D05E96, 9980D2ADF2CB726DC6832A7D8697605608C3C8121DC631134735386A402896A8 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe
16:42:39.0867 0x0bbc "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" - ok
16:42:40.0243 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0486 0x0bbc Sidebar - ok
16:42:40.0533 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0595 0x0bbc mctadmin - ok
16:42:40.0657 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0673 0x0bbc Sidebar - ok
16:42:40.0720 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0735 0x0bbc mctadmin - ok
16:42:40.0735 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:41.0746 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:42.0756 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:43.0766 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:44.0828 0x0bbc AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.8.204.0 ), 0x61000 ( enabled : updated )
16:42:44.0943 0x0bbc AV detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41000 ( enabled : updated )
16:42:44.0943 0x0bbc FW detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41010 ( enabled )
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0bbc Scan finished
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0b68 Detected object count: 0
16:42:47.0846 0x0b68 Actual detected object count: 0
16:43:11.0431 0x1770 Deinitialize success
OK, no rootkit. Might want to go ahead and run the general cleanup scans and post the logs.
1.
Please download AdwCleaner by Xplode onto your Desktop.
•Please close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Scan.
•After the scan you will need to click on clean for it to delete the adware.
•Your computer will be rebooted automatically. A text file will open after the restart.
•Please post the content of that logfile in your reply.
•You can find the logfile at C:\AdwCleaner[Sn].txt as well - n is the order number.
2.
Please download Junkware Removal Tool to your desktop.
•Shutdown your antivirus to avoid any conflicts.
•Very important that you run the tool in this manner:
Right-mouse click JRT.exe and select Run as administrator
Do NOT just double-click it.
•The tool will open and start scanning your system.
•Please be patient as this can take a while to complete.
•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
•Post the contents of JRT.txt in your next message.
3.
Please download Malwarebytes' Anti-Malware and save it to your desktop.
If for some reason Malwarebytes will not install or run please download and run Rkill.scr, Rkill.exe, or Rkill.com. If you are still having issues running rkill then try downloading these renamed versions of the same program.
EXPLORER.EXE
IEXPLORE.EXE
USERINIT.EXE
WINLOGON.EXE
But DO NOT reboot the system and then try installing or running Malwarebytes. If Rkill (which is a black box) appears and then disappears right away or you get a message saying rkill is infected, keep trying to run rkill until it over powers the infection and temporarily kills it. Once a log appears on the screen, you can try running malwarebytes or downloading other programs.
Please post the log that Malwarebytes displays on your screen.
4.
Download OTL to your Desktop
•Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
•Click on Minimal Output at the top
•Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
◦When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. Just post the OTL.txt file in your reply.
then post the logs from the following 4 programs.
1. Adwcleaner
2. Junkware removal tool
3. Malwarebytes
4. OTL
1.
Please download AdwCleaner by Xplode onto your Desktop.
•Please close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Scan.
•After the scan you will need to click on clean for it to delete the adware.
•Your computer will be rebooted automatically. A text file will open after the restart.
•Please post the content of that logfile in your reply.
•You can find the logfile at C:\AdwCleaner[Sn].txt as well - n is the order number.
2.
Please download Junkware Removal Tool to your desktop.
•Shutdown your antivirus to avoid any conflicts.
•Very important that you run the tool in this manner:
Right-mouse click JRT.exe and select Run as administrator
Do NOT just double-click it.
•The tool will open and start scanning your system.
•Please be patient as this can take a while to complete.
•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
•Post the contents of JRT.txt in your next message.
3.
Please download Malwarebytes' Anti-Malware and save it to your desktop.
- Double-click mbam-setup.exe and follow the prompts to install the program.
- At the end, be sure a checkmark is placed next to
- Update Malwarebytes' Anti-Malware
- and Launch Malwarebytes' Anti-Malware
- then click Finish.
- If an update is found, it will download and install the latest version. Please keep updating until it says you have the latest version.
- Once the program has loaded, select Perform quick scan, then click Scan.
- When the scan is complete, click OK, then Show Results to view the results.
- Be sure that everything is checked, and click Remove Selected.
- A log will be saved automatically which you can access by clicking on the Logs tab within Malwarebytes' Anti-Malware
If for some reason Malwarebytes will not install or run please download and run Rkill.scr, Rkill.exe, or Rkill.com. If you are still having issues running rkill then try downloading these renamed versions of the same program.
EXPLORER.EXE
IEXPLORE.EXE
USERINIT.EXE
WINLOGON.EXE
But DO NOT reboot the system and then try installing or running Malwarebytes. If Rkill (which is a black box) appears and then disappears right away or you get a message saying rkill is infected, keep trying to run rkill until it over powers the infection and temporarily kills it. Once a log appears on the screen, you can try running malwarebytes or downloading other programs.
Please post the log that Malwarebytes displays on your screen.
4.
Download OTL to your Desktop
•Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
•Click on Minimal Output at the top
•Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
◦When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. Just post the OTL.txt file in your reply.
then post the logs from the following 4 programs.
1. Adwcleaner
2. Junkware removal tool
3. Malwarebytes
4. OTL
tremmor
Well-Known Member
16:41:05.0872 0x0ce8 TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
16:41:11.0958 0x0ce8 ============================================================
16:41:11.0958 0x0ce8 Current date / time: 2015/09/09 16:41:11.0958
16:41:11.0958 0x0ce8 SystemInfo:
16:41:11.0958 0x0ce8
16:41:11.0958 0x0ce8 OS Version: 6.1.7601 ServicePack: 1.0
16:41:11.0958 0x0ce8 Product type: Workstation
16:41:11.0958 0x0ce8 ComputerName: SHERRY-PC
16:41:11.0958 0x0ce8 UserName: Sherry
16:41:11.0958 0x0ce8 Windows directory: C:\Windows
16:41:11.0958 0x0ce8 System windows directory: C:\Windows
16:41:11.0958 0x0ce8 Running under WOW64
16:41:11.0958 0x0ce8 Processor architecture: Intel x64
16:41:11.0958 0x0ce8 Number of processors: 4
16:41:11.0958 0x0ce8 Page size: 0x1000
16:41:11.0958 0x0ce8 Boot type: Normal boot
16:41:11.0958 0x0ce8 ============================================================
16:41:14.0337 0x0ce8 KLMD registered as C:\Windows\system32\drivers\44306757.sys
16:41:16.0933 0x0ce8 System UUID: {E3EF4B74-CC90-A766-11E8-0CF2655F2653}
16:41:18.0084 0x0ce8 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0:
16:41:18.0099 0x0ce8 MBR partitions:
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x38606863
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 C: <-> \Device\Harddisk0\DR0\Partition2
16:41:18.0287 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 Initialize success
16:41:18.0287 0x0ce8 ============================================================
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc Scan started
16:41:28.0364 0x0bbc Mode: Manual;
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc KSN ping started
16:41:31.0165 0x0bbc KSN ping finished: true
16:41:33.0979 0x0bbc ================ Scan system memory ========================
16:41:33.0979 0x0bbc System memory - ok
16:41:33.0979 0x0bbc ================ Scan services =============================
16:41:35.0579 0x0bbc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:41:35.0625 0x0bbc 1394ohci - ok
16:41:35.0766 0x0bbc [ 426E0E8127BAC7D5DDEE8251F104E053, 7A0FD2F9828FA155FF8626801724151B9721EAFF6F737BBD6044CCBA92A73BCA ] AbsoluteNotifier C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
16:41:36.0127 0x0bbc AbsoluteNotifier - ok
16:41:36.0267 0x0bbc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:41:36.0298 0x0bbc ACPI - ok
16:41:36.0382 0x0bbc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:41:36.0386 0x0bbc AcpiPmi - ok
16:41:37.0246 0x0bbc [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:41:37.0506 0x0bbc AdobeFlashPlayerUpdateSvc - ok
16:41:37.0553 0x0bbc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:41:37.0584 0x0bbc adp94xx - ok
16:41:37.0615 0x0bbc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:41:37.0615 0x0bbc adpahci - ok
16:41:37.0693 0x0bbc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:41:37.0755 0x0bbc adpu320 - ok
16:41:37.0818 0x0bbc [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:41:37.0818 0x0bbc AeLookupSvc - ok
16:41:37.0930 0x0bbc [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
16:41:37.0930 0x0bbc AERTFilters - ok
16:41:38.0039 0x0bbc [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
16:41:38.0055 0x0bbc AFD - ok
16:41:38.0133 0x0bbc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
16:41:38.0148 0x0bbc agp440 - ok
16:41:38.0211 0x0bbc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
16:41:38.0211 0x0bbc ALG - ok
16:41:38.0304 0x0bbc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
16:41:38.0320 0x0bbc aliide - ok
16:41:38.0394 0x0bbc [ 3D90CF67DB75823A8480E56BBCD2E028, 775D58B99ACA606D434713BC00132D43061C37CFEEAECD194FCFDF45792944A3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:41:38.0407 0x0bbc AMD External Events Utility - ok
16:41:38.0487 0x0bbc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
16:41:38.0487 0x0bbc amdide - ok
16:41:38.0550 0x0bbc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:41:38.0565 0x0bbc AmdK8 - ok
16:41:39.0605 0x0bbc [ 52679612D742BF74CA1BA6AB86DDF431, 9D7A8FA8952519AD83CD36038F85B958BC97D1A25596EDC01CA1F6DD45DB542A ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
16:41:40.0592 0x0bbc amdkmdag - ok
16:41:40.0670 0x0bbc [ 414E0788920A8C856032BE2CBF29F984, 2DD027ADA24C871167C80A2F5C5ED5CB3AEA1E3A4E8C5FD352FA82C33B24479B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:41:40.0686 0x0bbc amdkmdap - ok
16:41:40.0717 0x0bbc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:41:40.0733 0x0bbc AmdPPM - ok
16:41:40.0826 0x0bbc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:41:40.0826 0x0bbc amdsata - ok
16:41:40.0912 0x0bbc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:41:40.0927 0x0bbc amdsbs - ok
16:41:40.0974 0x0bbc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:41:40.0974 0x0bbc amdxata - ok
16:41:41.0052 0x0bbc [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
16:41:41.0068 0x0bbc AppID - ok
16:41:41.0114 0x0bbc [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:41:41.0130 0x0bbc AppIDSvc - ok
16:41:41.0192 0x0bbc [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\Windows\System32\appinfo.dll
16:41:41.0208 0x0bbc Appinfo - ok
16:41:41.0286 0x0bbc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
16:41:41.0286 0x0bbc arc - ok
16:41:41.0302 0x0bbc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:41:41.0302 0x0bbc arcsas - ok
16:41:41.0834 0x0bbc [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:41:41.0898 0x0bbc aspnet_state - ok
16:41:41.0961 0x0bbc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:41:41.0992 0x0bbc AsyncMac - ok
16:41:42.0070 0x0bbc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
16:41:42.0070 0x0bbc atapi - ok
16:41:42.0179 0x0bbc [ 637E0753BD6DEB8EA5314A5C357EC1A0, 2B479DBBF72A2AFB3DC65A3FDA30B628BC9FB21160EBD7E1BE44404C671B1D08 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
16:41:42.0273 0x0bbc AtiHdmiService - ok
16:41:42.0466 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:41:42.0529 0x0bbc AudioEndpointBuilder - ok
16:41:42.0669 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:41:42.0700 0x0bbc AudioSrv - ok
16:41:42.0794 0x0bbc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:41:42.0810 0x0bbc AxInstSV - ok
16:41:42.0886 0x0bbc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:41:42.0964 0x0bbc b06bdrv - ok
16:41:43.0089 0x0bbc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:41:43.0182 0x0bbc b57nd60a - ok
16:41:43.0463 0x0bbc [ 4BEFF67C1775D353A16A62347E727874, 62363C5E5F4BF049A3E49FADA8CB17269945056ACADB319FDC4F05B74E2553C8 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe
16:41:43.0478 0x0bbc BBSvc - ok
16:41:43.0541 0x0bbc [ A6DAAD3EA93DBDBD07FA821BCED133F6, 8F33D4E4B82091D09E62FD5487C88F3DF0DAC31FCBB846183CC4020533A131DE ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe
16:41:43.0587 0x0bbc BBUpdate - ok
16:41:44.0101 0x0bbc [ 8B5D16D20774FC3727F44E161BE2C0AC, 0EF2489E1ACC86403B1D6931140C5DF082127B327143ECB6EF28A4FF57D3C371 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
16:41:44.0147 0x0bbc BCM43XX - ok
16:41:44.0225 0x0bbc [ D224B2E6BB543F1D8F1177D57FEC2950, F5D4096A275E0AF24E38778EFAFFAFFAE3185BF8AD7A0547D50D8E7354EF7FCD ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
16:41:44.0225 0x0bbc BcmVWL - ok
16:41:44.0288 0x0bbc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
16:41:44.0288 0x0bbc BDESVC - ok
16:41:44.0335 0x0bbc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
16:41:44.0386 0x0bbc Beep - ok
16:41:44.0458 0x0bbc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
16:41:44.0505 0x0bbc BFE - ok
16:41:44.0567 0x0bbc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
16:41:44.0598 0x0bbc BITS - ok
16:41:44.0614 0x0bbc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:41:44.0629 0x0bbc blbdrive - ok
16:41:44.0692 0x0bbc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:41:44.0707 0x0bbc bowser - ok
16:41:44.0739 0x0bbc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:41:44.0754 0x0bbc BrFiltLo - ok
16:41:44.0770 0x0bbc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:41:44.0785 0x0bbc BrFiltUp - ok
16:41:44.0817 0x0bbc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
16:41:44.0817 0x0bbc Browser - ok
16:41:44.0832 0x0bbc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:41:44.0897 0x0bbc Brserid - ok
16:41:44.0928 0x0bbc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:41:44.0943 0x0bbc BrSerWdm - ok
16:41:45.0006 0x0bbc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:41:45.0021 0x0bbc BrUsbMdm - ok
16:41:45.0021 0x0bbc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:41:45.0037 0x0bbc BrUsbSer - ok
16:41:45.0115 0x0bbc [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
16:41:45.0115 0x0bbc BthEnum - ok
16:41:45.0131 0x0bbc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:41:45.0162 0x0bbc BTHMODEM - ok
16:41:45.0177 0x0bbc [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
16:41:45.0177 0x0bbc BthPan - ok
16:41:45.0209 0x0bbc [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
16:41:45.0224 0x0bbc BTHPORT - ok
16:41:45.0271 0x0bbc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
16:41:45.0287 0x0bbc bthserv - ok
16:41:45.0302 0x0bbc [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
16:41:45.0318 0x0bbc BTHUSB - ok
16:41:45.0333 0x0bbc [ D3466F77C2C49C6E393BA5FBA963A33E, FD5E48A29E153BBAB095AB2E3B86F592B1FC1F790978911093B5F8A2CD6C5652 ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
16:41:45.0349 0x0bbc btusbflt - ok
16:41:45.0387 0x0bbc [ AF838D8029AE7C27470862D63FA54D24, 96247094D2446CEE594AD765B98DE8583762A96FE83223CB18B4CDB3A4958376 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
16:41:45.0390 0x0bbc btwaudio - ok
16:41:45.0421 0x0bbc [ 5C849BD7C78791C5CEE9F4651D7FE38D, BC93A1B911FB4A44EC4DB64AF9AFC6F2013CD76BFB6FA9E4834CFDAAAF4BCD9F ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
16:41:45.0421 0x0bbc btwavdt - ok
16:41:45.0562 0x0bbc [ 10FFB5FA51D5713D872B41A59DFC2213, E0C0EA99C862E3FCE4D121BB34DEC00E74A371DF4093A44055E70E9F4CFA3DC6 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:41:45.0609 0x0bbc btwdins - ok
16:41:45.0624 0x0bbc [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
16:41:45.0624 0x0bbc btwl2cap - ok
16:41:45.0640 0x0bbc [ 3E1991AFA851A36DC978B0A1B0535C8B, F55F7FDDD2A71532F163E4F14B26A09DCDB7C970E806D803418D4CE0DFF09FB6 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
16:41:45.0640 0x0bbc btwrchid - ok
16:41:45.0687 0x0bbc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:41:45.0718 0x0bbc cdfs - ok
16:41:45.0780 0x0bbc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
16:41:45.0827 0x0bbc cdrom - ok
16:41:45.0876 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
16:41:45.0876 0x0bbc CertPropSvc - ok
16:41:45.0969 0x0bbc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:41:45.0985 0x0bbc circlass - ok
16:41:46.0016 0x0bbc [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
16:41:46.0016 0x0bbc CLFS - ok
16:41:46.0110 0x0bbc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:41:46.0110 0x0bbc clr_optimization_v2.0.50727_32 - ok
16:41:46.0250 0x0bbc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:41:46.0359 0x0bbc clr_optimization_v2.0.50727_64 - ok
16:41:47.0261 0x0bbc [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:41:47.0413 0x0bbc clr_optimization_v4.0.30319_32 - ok
16:41:47.0476 0x0bbc [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:41:47.0523 0x0bbc clr_optimization_v4.0.30319_64 - ok
16:41:47.0556 0x0bbc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:41:47.0571 0x0bbc CmBatt - ok
16:41:47.0618 0x0bbc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:41:47.0618 0x0bbc cmdide - ok
16:41:47.0696 0x0bbc [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
16:41:47.0712 0x0bbc CNG - ok
16:41:47.0759 0x0bbc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:41:47.0759 0x0bbc Compbatt - ok
16:41:47.0821 0x0bbc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:41:47.0837 0x0bbc CompositeBus - ok
16:41:47.0868 0x0bbc COMSysApp - ok
16:41:48.0081 0x0bbc [ F49C902F71D91BD8A2497BF2F0838275, F0735B524AADE790F887A4272F4B8EF49FD3839CAEC51B3C438EAE743A7BE848 ] CouponPrinterService C:\Program Files (x86)\Coupons\CouponPrinterService.exe
16:41:48.0096 0x0bbc CouponPrinterService - ok
16:41:48.0159 0x0bbc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:41:48.0159 0x0bbc crcdisk - ok
16:41:48.0252 0x0bbc [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:41:48.0283 0x0bbc CryptSvc - ok
16:41:48.0330 0x0bbc [ ED5CF92396A62F4C15110DCDB5E854D9, CD26216B8B3F558A0466843C8161E86EEDB78E6031E1AC0A00DCDE700A2B6EE2 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:41:48.0346 0x0bbc CtClsFlt - ok
16:41:48.0594 0x0bbc [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:41:48.0656 0x0bbc cvhsvc - ok
16:41:48.0750 0x0bbc [ CB6BCAB0F3086D02B0DBE686AB0CFC76, 2621FCE5425F097CC0FC84A49D26DD5F442D5CDFC62C2025564868BF7B403987 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
16:41:48.0765 0x0bbc dc3d - ok
16:41:48.0828 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:41:48.0843 0x0bbc DcomLaunch - ok
16:41:48.0878 0x0bbc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
16:41:48.0888 0x0bbc defragsvc - ok
16:41:48.0920 0x0bbc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:41:48.0935 0x0bbc DfsC - ok
16:41:48.0998 0x0bbc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
16:41:48.0998 0x0bbc Dhcp - ok
16:41:49.0169 0x0bbc [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack C:\Windows\system32\diagtrack.dll
16:41:49.0247 0x0bbc DiagTrack - ok
16:41:49.0294 0x0bbc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
16:41:49.0294 0x0bbc discache - ok
16:41:49.0356 0x0bbc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:41:49.0374 0x0bbc Disk - ok
16:41:49.0436 0x0bbc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:41:49.0452 0x0bbc Dnscache - ok
16:41:49.0592 0x0bbc [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:41:49.0592 0x0bbc DockLoginService - ok
16:41:49.0670 0x0bbc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
16:41:49.0717 0x0bbc dot3svc - ok
16:41:49.0795 0x0bbc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
16:41:49.0811 0x0bbc DPS - ok
16:41:49.0899 0x0bbc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:41:49.0915 0x0bbc drmkaud - ok
16:41:50.0086 0x0bbc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:41:50.0164 0x0bbc DXGKrnl - ok
16:41:50.0227 0x0bbc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
16:41:50.0242 0x0bbc EapHost - ok
16:41:50.0538 0x0bbc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:41:50.0958 0x0bbc ebdrv - ok
16:41:51.0005 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] EFS C:\Windows\System32\lsass.exe
16:41:51.0020 0x0bbc EFS - ok
16:41:51.0161 0x0bbc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:41:51.0285 0x0bbc ehRecvr - ok
16:41:51.0318 0x0bbc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
16:41:51.0349 0x0bbc ehSched - ok
16:41:51.0409 0x0bbc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:41:51.0440 0x0bbc elxstor - ok
16:41:51.0471 0x0bbc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:41:51.0487 0x0bbc ErrDev - ok
16:41:51.0549 0x0bbc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
16:41:51.0565 0x0bbc EventSystem - ok
16:41:51.0596 0x0bbc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
16:41:51.0611 0x0bbc exfat - ok
16:41:51.0643 0x0bbc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:41:51.0658 0x0bbc fastfat - ok
16:41:51.0799 0x0bbc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
16:41:51.0830 0x0bbc Fax - ok
16:41:51.0879 0x0bbc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:41:51.0890 0x0bbc fdc - ok
16:41:51.0952 0x0bbc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
16:41:51.0968 0x0bbc fdPHost - ok
16:41:51.0983 0x0bbc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
16:41:51.0983 0x0bbc FDResPub - ok
16:41:52.0030 0x0bbc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:41:52.0030 0x0bbc FileInfo - ok
16:41:52.0077 0x0bbc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:41:52.0108 0x0bbc Filetrace - ok
16:41:52.0155 0x0bbc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:41:52.0186 0x0bbc flpydisk - ok
16:41:52.0358 0x0bbc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:41:52.0403 0x0bbc FltMgr - ok
16:41:52.0590 0x0bbc [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
16:41:52.0637 0x0bbc FontCache - ok
16:41:52.0762 0x0bbc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:41:52.0855 0x0bbc FontCache3.0.0.0 - ok
16:41:52.0888 0x0bbc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:41:52.0888 0x0bbc FsDepends - ok
16:41:52.0935 0x0bbc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:41:52.0935 0x0bbc Fs_Rec - ok
16:41:53.0076 0x0bbc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:41:53.0076 0x0bbc fvevol - ok
16:41:53.0122 0x0bbc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:41:53.0138 0x0bbc gagp30kx - ok
16:41:53.0413 0x0bbc [ C1BBCE4B30B45410178EE674C818D10C, 3FD449C20493057592A21CA812CA39803BC32136B84A060B2BF9621776D94E54 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
16:41:53.0476 0x0bbc GameConsoleService - ok
16:41:53.0678 0x0bbc [ 4EA5458FCA8518344686C543749365B1, 52D4D2392C80A4C57C74B09FE04E9DFF6CB01521F03132EB7523BE52B8BF7A50 ] gfiark C:\Windows\system32\drivers\gfiark.sys
16:41:53.0725 0x0bbc gfiark - ok
16:41:53.0899 0x0bbc [ 16A23FF8621929ADC5B18DCCD5E206EE, 6204E3110503F76DC5970FDBD7340CE1265EE57196759E4D4DB187BAF119FF22 ] gfiutil C:\Windows\system32\drivers\gfiutil.sys
16:41:53.0899 0x0bbc gfiutil - ok
16:41:54.0164 0x0bbc [ 2EEFBED80B4CCC5DBEC08F12F0A1EACF, 30BD09B77218F14F25CEEBC34E06B5428970A238FD5E39866FE13E06A85B674A ] gfi_lanss11_attservice C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe
16:41:54.0180 0x0bbc gfi_lanss11_attservice - ok
16:41:54.0273 0x0bbc [ D3316F6E3C011435F36E3D6E49B3196C, 941DF52BA26603A146ED6B65A696DB87153868ED0469EF9C2EB09AC7E63525B7 ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
16:41:54.0289 0x0bbc GoToAssist - ok
16:41:54.0565 0x0bbc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
16:41:54.0627 0x0bbc gpsvc - ok
16:41:54.0890 0x0bbc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:54.0890 0x0bbc gupdate - ok
16:41:54.0968 0x0bbc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:54.0968 0x0bbc gupdatem - ok
16:41:55.0015 0x0bbc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:41:55.0046 0x0bbc hcw85cir - ok
16:41:55.0124 0x0bbc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:41:55.0140 0x0bbc HDAudBus - ok
16:41:55.0202 0x0bbc [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
16:41:55.0202 0x0bbc HECIx64 - ok
16:41:55.0218 0x0bbc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:41:55.0249 0x0bbc HidBatt - ok
16:41:55.0280 0x0bbc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:41:55.0312 0x0bbc HidBth - ok
16:41:55.0356 0x0bbc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:41:55.0372 0x0bbc HidIr - ok
16:41:55.0419 0x0bbc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
16:41:55.0419 0x0bbc hidserv - ok
16:41:55.0497 0x0bbc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:41:55.0512 0x0bbc HidUsb - ok
16:41:55.0590 0x0bbc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:41:55.0637 0x0bbc hkmsvc - ok
16:41:55.0699 0x0bbc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:41:55.0731 0x0bbc HomeGroupListener - ok
16:41:55.0793 0x0bbc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:41:55.0809 0x0bbc HomeGroupProvider - ok
16:41:55.0918 0x0bbc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:41:55.0934 0x0bbc HpSAMD - ok
16:41:56.0105 0x0bbc [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:41:56.0152 0x0bbc HTTP - ok
16:41:56.0199 0x0bbc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:41:56.0199 0x0bbc hwpolicy - ok
16:41:56.0261 0x0bbc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:41:56.0277 0x0bbc i8042prt - ok
16:41:56.0339 0x0bbc [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:41:56.0339 0x0bbc iaStor - ok
16:41:56.0402 0x0bbc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:41:56.0435 0x0bbc iaStorV - ok
16:41:56.0607 0x0bbc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:41:56.0685 0x0bbc idsvc - ok
16:41:56.0716 0x0bbc IEEtwCollectorService - ok
16:41:56.0747 0x0bbc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:41:56.0747 0x0bbc iirsp - ok
16:41:56.0825 0x0bbc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
16:41:56.0882 0x0bbc IKEEXT - ok
16:41:56.0915 0x0bbc [ 36FDF367A1DABFF903E2214023D71368, 60468692C1D048428AF25ED87DE23DAE756C7BA2B6CF6AF5EFD2E53C80F5FC68 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
16:41:56.0931 0x0bbc Impcd - ok
16:41:57.0336 0x0bbc [ 6E4CCB3AFF07E2B9F2A937385C84B573, 34F0597E7DE0D47EFE3C2D97D1DFEBA3593B8B656D0CD3D661C582B65A20A12A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:41:57.0723 0x0bbc IntcAzAudAddService - ok
16:41:57.0769 0x0bbc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
16:41:57.0785 0x0bbc intelide - ok
16:41:57.0847 0x0bbc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:41:57.0847 0x0bbc intelppm - ok
16:41:57.0923 0x0bbc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:41:57.0938 0x0bbc IPBusEnum - ok
16:41:57.0970 0x0bbc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:41:57.0985 0x0bbc IpFilterDriver - ok
16:41:58.0094 0x0bbc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:41:58.0141 0x0bbc iphlpsvc - ok
16:41:58.0172 0x0bbc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:41:58.0250 0x0bbc IPMIDRV - ok
16:41:58.0328 0x0bbc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:41:58.0360 0x0bbc IPNAT - ok
16:41:58.0377 0x0bbc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:41:58.0408 0x0bbc IRENUM - ok
16:41:58.0455 0x0bbc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:41:58.0471 0x0bbc isapnp - ok
16:41:58.0611 0x0bbc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:41:58.0627 0x0bbc iScsiPrt - ok
16:41:58.0689 0x0bbc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:41:58.0705 0x0bbc kbdclass - ok
16:41:58.0767 0x0bbc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:41:58.0861 0x0bbc kbdhid - ok
16:41:58.0890 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] KeyIso C:\Windows\system32\lsass.exe
16:41:58.0890 0x0bbc KeyIso - ok
16:41:58.0968 0x0bbc [ 67A1743377EBB5D9A370A8C2086CFDCC, 2F0FD6C1969B1EEEEFFC1A8F972E1E90F1AD9558FF00EC159BC19ED927FD4BF5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:41:58.0968 0x0bbc KSecDD - ok
16:41:59.0000 0x0bbc [ 522A1595D5701800DD41B2D472F5AAED, B62924AE94A5AC454AD6057BC133D717BB1C6445BE36D6BECAB76E1600F60C33 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:41:59.0000 0x0bbc KSecPkg - ok
16:41:59.0046 0x0bbc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:41:59.0078 0x0bbc ksthunk - ok
16:41:59.0171 0x0bbc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
16:41:59.0327 0x0bbc KtmRm - ok
16:41:59.0376 0x0bbc [ 39918DB0EFCF045A1CE6FABBF339F975, 1BAAA33DCE8F0BDBA9F6BCACAC9F4E926EBF287AFFCB2EBE114519B1ABF29529 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
16:41:59.0401 0x0bbc L1C - ok
16:41:59.0526 0x0bbc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:41:59.0541 0x0bbc LanmanServer - ok
16:41:59.0619 0x0bbc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:41:59.0666 0x0bbc LanmanWorkstation - ok
16:41:59.0729 0x0bbc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:41:59.0744 0x0bbc lltdio - ok
16:41:59.0838 0x0bbc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:41:59.0899 0x0bbc lltdsvc - ok
16:41:59.0945 0x0bbc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:41:59.0961 0x0bbc lmhosts - ok
16:42:00.0055 0x0bbc [ 23D990150D56B670A62B21B9ABDD45EE, BB9DBC0D02474976420321162C3AB1FDF975FA0494B1030488B03BC98A65F888 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:42:00.0086 0x0bbc LMS - ok
16:42:00.0148 0x0bbc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:42:00.0148 0x0bbc LSI_FC - ok
16:42:00.0211 0x0bbc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:42:00.0211 0x0bbc LSI_SAS - ok
16:42:00.0242 0x0bbc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:42:00.0242 0x0bbc LSI_SAS2 - ok
16:42:00.0273 0x0bbc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:42:00.0273 0x0bbc LSI_SCSI - ok
16:42:00.0304 0x0bbc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
16:42:00.0335 0x0bbc luafv - ok
16:42:00.0466 0x0bbc [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:42:00.0482 0x0bbc MBAMProtector - ok
16:42:00.0638 0x0bbc [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:42:00.0716 0x0bbc MBAMService - ok
16:42:00.0763 0x0bbc [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:42:00.0778 0x0bbc MBAMSwissArmy - ok
16:42:00.0809 0x0bbc [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
16:42:00.0825 0x0bbc MBAMWebAccessControl - ok
16:42:00.0906 0x0bbc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:42:00.0925 0x0bbc Mcx2Svc - ok
16:42:01.0003 0x0bbc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:42:01.0003 0x0bbc megasas - ok
16:42:01.0159 0x0bbc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:42:01.0206 0x0bbc MegaSR - ok
16:42:01.0387 0x0bbc [ A8129CFB919347F8533C934B365E9202, A1B84263714DFE92AF3C7D8DF5EBE5BBC7C96954337119BF9754676DDDE5DBED ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
16:42:01.0392 0x0bbc mfenlfk - ok
16:42:01.0470 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
16:42:01.0501 0x0bbc MMCSS - ok
16:42:01.0548 0x0bbc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
16:42:01.0563 0x0bbc Modem - ok
16:42:01.0719 0x0bbc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:42:01.0719 0x0bbc monitor - ok
16:42:02.0201 0x0bbc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:42:02.0217 0x0bbc mouclass - ok
16:42:02.0279 0x0bbc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:42:02.0295 0x0bbc mouhid - ok
16:42:02.0378 0x0bbc [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:42:02.0384 0x0bbc mountmgr - ok
16:42:02.0745 0x0bbc [ 73150F67D20270FF95A021A22E64F28A, A8878DEFBE437FB453F8E9243FB5C787D07AC7415A4475388D479C10417C524F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:42:02.0776 0x0bbc MpFilter - ok
16:42:02.0838 0x0bbc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
16:42:02.0838 0x0bbc mpio - ok
16:42:02.0900 0x0bbc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:42:03.0043 0x0bbc mpsdrv - ok
16:42:03.0199 0x0bbc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:42:03.0261 0x0bbc MpsSvc - ok
16:42:03.0323 0x0bbc [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:42:03.0391 0x0bbc MRxDAV - ok
16:42:03.0448 0x0bbc [ B2081803D510DCE174992BA880EDCA70, 37DB53C9756EC03EB7165DEB58251615D70B7C86DF32A54DE25ADAF30A04D792 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:42:03.0494 0x0bbc mrxsmb - ok
16:42:03.0541 0x0bbc [ 552FA62B0EFECD22D8D52499324BCA4F, C3A02C9C30C36928AC7B1025496544967187A05BEF5D100B54F2C0155E47145C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:42:03.0604 0x0bbc mrxsmb10 - ok
16:42:03.0635 0x0bbc [ 97687971F9CB30E2633DE0F1296B9F61, 865DA87523E4C32D65D55D5475A5CDDFA10699780DA500E6D606384FB3BEB1BE ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:42:03.0650 0x0bbc mrxsmb20 - ok
16:42:03.0697 0x0bbc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
16:42:03.0713 0x0bbc msahci - ok
16:42:03.0760 0x0bbc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:42:03.0760 0x0bbc msdsm - ok
16:42:03.0791 0x0bbc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
16:42:03.0806 0x0bbc MSDTC - ok
16:42:03.0853 0x0bbc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:42:03.0853 0x0bbc Msfs - ok
16:42:03.0891 0x0bbc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows
16:41:11.0958 0x0ce8 ============================================================
16:41:11.0958 0x0ce8 Current date / time: 2015/09/09 16:41:11.0958
16:41:11.0958 0x0ce8 SystemInfo:
16:41:11.0958 0x0ce8
16:41:11.0958 0x0ce8 OS Version: 6.1.7601 ServicePack: 1.0
16:41:11.0958 0x0ce8 Product type: Workstation
16:41:11.0958 0x0ce8 ComputerName: SHERRY-PC
16:41:11.0958 0x0ce8 UserName: Sherry
16:41:11.0958 0x0ce8 Windows directory: C:\Windows
16:41:11.0958 0x0ce8 System windows directory: C:\Windows
16:41:11.0958 0x0ce8 Running under WOW64
16:41:11.0958 0x0ce8 Processor architecture: Intel x64
16:41:11.0958 0x0ce8 Number of processors: 4
16:41:11.0958 0x0ce8 Page size: 0x1000
16:41:11.0958 0x0ce8 Boot type: Normal boot
16:41:11.0958 0x0ce8 ============================================================
16:41:14.0337 0x0ce8 KLMD registered as C:\Windows\system32\drivers\44306757.sys
16:41:16.0933 0x0ce8 System UUID: {E3EF4B74-CC90-A766-11E8-0CF2655F2653}
16:41:18.0084 0x0ce8 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0:
16:41:18.0099 0x0ce8 MBR partitions:
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
16:41:18.0099 0x0ce8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x38606863
16:41:18.0099 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 C: <-> \Device\Harddisk0\DR0\Partition2
16:41:18.0287 0x0ce8 ============================================================
16:41:18.0287 0x0ce8 Initialize success
16:41:18.0287 0x0ce8 ============================================================
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc Scan started
16:41:28.0364 0x0bbc Mode: Manual;
16:41:28.0364 0x0bbc ============================================================
16:41:28.0364 0x0bbc KSN ping started
16:41:31.0165 0x0bbc KSN ping finished: true
16:41:33.0979 0x0bbc ================ Scan system memory ========================
16:41:33.0979 0x0bbc System memory - ok
16:41:33.0979 0x0bbc ================ Scan services =============================
16:41:35.0579 0x0bbc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:41:35.0625 0x0bbc 1394ohci - ok
16:41:35.0766 0x0bbc [ 426E0E8127BAC7D5DDEE8251F104E053, 7A0FD2F9828FA155FF8626801724151B9721EAFF6F737BBD6044CCBA92A73BCA ] AbsoluteNotifier C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe
16:41:36.0127 0x0bbc AbsoluteNotifier - ok
16:41:36.0267 0x0bbc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:41:36.0298 0x0bbc ACPI - ok
16:41:36.0382 0x0bbc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:41:36.0386 0x0bbc AcpiPmi - ok
16:41:37.0246 0x0bbc [ 368290D0A612D62DA6F3D798B1BB8FE7, D573BF8543F37BC51B88A2473EDFD28AFBCCC446E8CADD54A90FA48D8739D222 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:41:37.0506 0x0bbc AdobeFlashPlayerUpdateSvc - ok
16:41:37.0553 0x0bbc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:41:37.0584 0x0bbc adp94xx - ok
16:41:37.0615 0x0bbc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:41:37.0615 0x0bbc adpahci - ok
16:41:37.0693 0x0bbc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:41:37.0755 0x0bbc adpu320 - ok
16:41:37.0818 0x0bbc [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:41:37.0818 0x0bbc AeLookupSvc - ok
16:41:37.0930 0x0bbc [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
16:41:37.0930 0x0bbc AERTFilters - ok
16:41:38.0039 0x0bbc [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
16:41:38.0055 0x0bbc AFD - ok
16:41:38.0133 0x0bbc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
16:41:38.0148 0x0bbc agp440 - ok
16:41:38.0211 0x0bbc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
16:41:38.0211 0x0bbc ALG - ok
16:41:38.0304 0x0bbc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
16:41:38.0320 0x0bbc aliide - ok
16:41:38.0394 0x0bbc [ 3D90CF67DB75823A8480E56BBCD2E028, 775D58B99ACA606D434713BC00132D43061C37CFEEAECD194FCFDF45792944A3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:41:38.0407 0x0bbc AMD External Events Utility - ok
16:41:38.0487 0x0bbc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
16:41:38.0487 0x0bbc amdide - ok
16:41:38.0550 0x0bbc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:41:38.0565 0x0bbc AmdK8 - ok
16:41:39.0605 0x0bbc [ 52679612D742BF74CA1BA6AB86DDF431, 9D7A8FA8952519AD83CD36038F85B958BC97D1A25596EDC01CA1F6DD45DB542A ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
16:41:40.0592 0x0bbc amdkmdag - ok
16:41:40.0670 0x0bbc [ 414E0788920A8C856032BE2CBF29F984, 2DD027ADA24C871167C80A2F5C5ED5CB3AEA1E3A4E8C5FD352FA82C33B24479B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:41:40.0686 0x0bbc amdkmdap - ok
16:41:40.0717 0x0bbc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:41:40.0733 0x0bbc AmdPPM - ok
16:41:40.0826 0x0bbc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:41:40.0826 0x0bbc amdsata - ok
16:41:40.0912 0x0bbc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:41:40.0927 0x0bbc amdsbs - ok
16:41:40.0974 0x0bbc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:41:40.0974 0x0bbc amdxata - ok
16:41:41.0052 0x0bbc [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
16:41:41.0068 0x0bbc AppID - ok
16:41:41.0114 0x0bbc [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:41:41.0130 0x0bbc AppIDSvc - ok
16:41:41.0192 0x0bbc [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\Windows\System32\appinfo.dll
16:41:41.0208 0x0bbc Appinfo - ok
16:41:41.0286 0x0bbc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
16:41:41.0286 0x0bbc arc - ok
16:41:41.0302 0x0bbc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:41:41.0302 0x0bbc arcsas - ok
16:41:41.0834 0x0bbc [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:41:41.0898 0x0bbc aspnet_state - ok
16:41:41.0961 0x0bbc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:41:41.0992 0x0bbc AsyncMac - ok
16:41:42.0070 0x0bbc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
16:41:42.0070 0x0bbc atapi - ok
16:41:42.0179 0x0bbc [ 637E0753BD6DEB8EA5314A5C357EC1A0, 2B479DBBF72A2AFB3DC65A3FDA30B628BC9FB21160EBD7E1BE44404C671B1D08 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
16:41:42.0273 0x0bbc AtiHdmiService - ok
16:41:42.0466 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:41:42.0529 0x0bbc AudioEndpointBuilder - ok
16:41:42.0669 0x0bbc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:41:42.0700 0x0bbc AudioSrv - ok
16:41:42.0794 0x0bbc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:41:42.0810 0x0bbc AxInstSV - ok
16:41:42.0886 0x0bbc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:41:42.0964 0x0bbc b06bdrv - ok
16:41:43.0089 0x0bbc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:41:43.0182 0x0bbc b57nd60a - ok
16:41:43.0463 0x0bbc [ 4BEFF67C1775D353A16A62347E727874, 62363C5E5F4BF049A3E49FADA8CB17269945056ACADB319FDC4F05B74E2553C8 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe
16:41:43.0478 0x0bbc BBSvc - ok
16:41:43.0541 0x0bbc [ A6DAAD3EA93DBDBD07FA821BCED133F6, 8F33D4E4B82091D09E62FD5487C88F3DF0DAC31FCBB846183CC4020533A131DE ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe
16:41:43.0587 0x0bbc BBUpdate - ok
16:41:44.0101 0x0bbc [ 8B5D16D20774FC3727F44E161BE2C0AC, 0EF2489E1ACC86403B1D6931140C5DF082127B327143ECB6EF28A4FF57D3C371 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
16:41:44.0147 0x0bbc BCM43XX - ok
16:41:44.0225 0x0bbc [ D224B2E6BB543F1D8F1177D57FEC2950, F5D4096A275E0AF24E38778EFAFFAFFAE3185BF8AD7A0547D50D8E7354EF7FCD ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
16:41:44.0225 0x0bbc BcmVWL - ok
16:41:44.0288 0x0bbc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
16:41:44.0288 0x0bbc BDESVC - ok
16:41:44.0335 0x0bbc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
16:41:44.0386 0x0bbc Beep - ok
16:41:44.0458 0x0bbc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
16:41:44.0505 0x0bbc BFE - ok
16:41:44.0567 0x0bbc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
16:41:44.0598 0x0bbc BITS - ok
16:41:44.0614 0x0bbc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:41:44.0629 0x0bbc blbdrive - ok
16:41:44.0692 0x0bbc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:41:44.0707 0x0bbc bowser - ok
16:41:44.0739 0x0bbc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:41:44.0754 0x0bbc BrFiltLo - ok
16:41:44.0770 0x0bbc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:41:44.0785 0x0bbc BrFiltUp - ok
16:41:44.0817 0x0bbc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
16:41:44.0817 0x0bbc Browser - ok
16:41:44.0832 0x0bbc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:41:44.0897 0x0bbc Brserid - ok
16:41:44.0928 0x0bbc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:41:44.0943 0x0bbc BrSerWdm - ok
16:41:45.0006 0x0bbc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:41:45.0021 0x0bbc BrUsbMdm - ok
16:41:45.0021 0x0bbc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:41:45.0037 0x0bbc BrUsbSer - ok
16:41:45.0115 0x0bbc [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
16:41:45.0115 0x0bbc BthEnum - ok
16:41:45.0131 0x0bbc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:41:45.0162 0x0bbc BTHMODEM - ok
16:41:45.0177 0x0bbc [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
16:41:45.0177 0x0bbc BthPan - ok
16:41:45.0209 0x0bbc [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
16:41:45.0224 0x0bbc BTHPORT - ok
16:41:45.0271 0x0bbc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
16:41:45.0287 0x0bbc bthserv - ok
16:41:45.0302 0x0bbc [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
16:41:45.0318 0x0bbc BTHUSB - ok
16:41:45.0333 0x0bbc [ D3466F77C2C49C6E393BA5FBA963A33E, FD5E48A29E153BBAB095AB2E3B86F592B1FC1F790978911093B5F8A2CD6C5652 ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
16:41:45.0349 0x0bbc btusbflt - ok
16:41:45.0387 0x0bbc [ AF838D8029AE7C27470862D63FA54D24, 96247094D2446CEE594AD765B98DE8583762A96FE83223CB18B4CDB3A4958376 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
16:41:45.0390 0x0bbc btwaudio - ok
16:41:45.0421 0x0bbc [ 5C849BD7C78791C5CEE9F4651D7FE38D, BC93A1B911FB4A44EC4DB64AF9AFC6F2013CD76BFB6FA9E4834CFDAAAF4BCD9F ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
16:41:45.0421 0x0bbc btwavdt - ok
16:41:45.0562 0x0bbc [ 10FFB5FA51D5713D872B41A59DFC2213, E0C0EA99C862E3FCE4D121BB34DEC00E74A371DF4093A44055E70E9F4CFA3DC6 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:41:45.0609 0x0bbc btwdins - ok
16:41:45.0624 0x0bbc [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
16:41:45.0624 0x0bbc btwl2cap - ok
16:41:45.0640 0x0bbc [ 3E1991AFA851A36DC978B0A1B0535C8B, F55F7FDDD2A71532F163E4F14B26A09DCDB7C970E806D803418D4CE0DFF09FB6 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
16:41:45.0640 0x0bbc btwrchid - ok
16:41:45.0687 0x0bbc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:41:45.0718 0x0bbc cdfs - ok
16:41:45.0780 0x0bbc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
16:41:45.0827 0x0bbc cdrom - ok
16:41:45.0876 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
16:41:45.0876 0x0bbc CertPropSvc - ok
16:41:45.0969 0x0bbc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:41:45.0985 0x0bbc circlass - ok
16:41:46.0016 0x0bbc [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
16:41:46.0016 0x0bbc CLFS - ok
16:41:46.0110 0x0bbc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:41:46.0110 0x0bbc clr_optimization_v2.0.50727_32 - ok
16:41:46.0250 0x0bbc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:41:46.0359 0x0bbc clr_optimization_v2.0.50727_64 - ok
16:41:47.0261 0x0bbc [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:41:47.0413 0x0bbc clr_optimization_v4.0.30319_32 - ok
16:41:47.0476 0x0bbc [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:41:47.0523 0x0bbc clr_optimization_v4.0.30319_64 - ok
16:41:47.0556 0x0bbc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:41:47.0571 0x0bbc CmBatt - ok
16:41:47.0618 0x0bbc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:41:47.0618 0x0bbc cmdide - ok
16:41:47.0696 0x0bbc [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
16:41:47.0712 0x0bbc CNG - ok
16:41:47.0759 0x0bbc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:41:47.0759 0x0bbc Compbatt - ok
16:41:47.0821 0x0bbc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:41:47.0837 0x0bbc CompositeBus - ok
16:41:47.0868 0x0bbc COMSysApp - ok
16:41:48.0081 0x0bbc [ F49C902F71D91BD8A2497BF2F0838275, F0735B524AADE790F887A4272F4B8EF49FD3839CAEC51B3C438EAE743A7BE848 ] CouponPrinterService C:\Program Files (x86)\Coupons\CouponPrinterService.exe
16:41:48.0096 0x0bbc CouponPrinterService - ok
16:41:48.0159 0x0bbc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:41:48.0159 0x0bbc crcdisk - ok
16:41:48.0252 0x0bbc [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:41:48.0283 0x0bbc CryptSvc - ok
16:41:48.0330 0x0bbc [ ED5CF92396A62F4C15110DCDB5E854D9, CD26216B8B3F558A0466843C8161E86EEDB78E6031E1AC0A00DCDE700A2B6EE2 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:41:48.0346 0x0bbc CtClsFlt - ok
16:41:48.0594 0x0bbc [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:41:48.0656 0x0bbc cvhsvc - ok
16:41:48.0750 0x0bbc [ CB6BCAB0F3086D02B0DBE686AB0CFC76, 2621FCE5425F097CC0FC84A49D26DD5F442D5CDFC62C2025564868BF7B403987 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
16:41:48.0765 0x0bbc dc3d - ok
16:41:48.0828 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:41:48.0843 0x0bbc DcomLaunch - ok
16:41:48.0878 0x0bbc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
16:41:48.0888 0x0bbc defragsvc - ok
16:41:48.0920 0x0bbc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:41:48.0935 0x0bbc DfsC - ok
16:41:48.0998 0x0bbc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
16:41:48.0998 0x0bbc Dhcp - ok
16:41:49.0169 0x0bbc [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack C:\Windows\system32\diagtrack.dll
16:41:49.0247 0x0bbc DiagTrack - ok
16:41:49.0294 0x0bbc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
16:41:49.0294 0x0bbc discache - ok
16:41:49.0356 0x0bbc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:41:49.0374 0x0bbc Disk - ok
16:41:49.0436 0x0bbc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:41:49.0452 0x0bbc Dnscache - ok
16:41:49.0592 0x0bbc [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:41:49.0592 0x0bbc DockLoginService - ok
16:41:49.0670 0x0bbc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
16:41:49.0717 0x0bbc dot3svc - ok
16:41:49.0795 0x0bbc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
16:41:49.0811 0x0bbc DPS - ok
16:41:49.0899 0x0bbc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:41:49.0915 0x0bbc drmkaud - ok
16:41:50.0086 0x0bbc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:41:50.0164 0x0bbc DXGKrnl - ok
16:41:50.0227 0x0bbc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
16:41:50.0242 0x0bbc EapHost - ok
16:41:50.0538 0x0bbc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:41:50.0958 0x0bbc ebdrv - ok
16:41:51.0005 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] EFS C:\Windows\System32\lsass.exe
16:41:51.0020 0x0bbc EFS - ok
16:41:51.0161 0x0bbc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:41:51.0285 0x0bbc ehRecvr - ok
16:41:51.0318 0x0bbc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
16:41:51.0349 0x0bbc ehSched - ok
16:41:51.0409 0x0bbc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:41:51.0440 0x0bbc elxstor - ok
16:41:51.0471 0x0bbc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:41:51.0487 0x0bbc ErrDev - ok
16:41:51.0549 0x0bbc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
16:41:51.0565 0x0bbc EventSystem - ok
16:41:51.0596 0x0bbc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
16:41:51.0611 0x0bbc exfat - ok
16:41:51.0643 0x0bbc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:41:51.0658 0x0bbc fastfat - ok
16:41:51.0799 0x0bbc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
16:41:51.0830 0x0bbc Fax - ok
16:41:51.0879 0x0bbc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:41:51.0890 0x0bbc fdc - ok
16:41:51.0952 0x0bbc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
16:41:51.0968 0x0bbc fdPHost - ok
16:41:51.0983 0x0bbc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
16:41:51.0983 0x0bbc FDResPub - ok
16:41:52.0030 0x0bbc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:41:52.0030 0x0bbc FileInfo - ok
16:41:52.0077 0x0bbc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:41:52.0108 0x0bbc Filetrace - ok
16:41:52.0155 0x0bbc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:41:52.0186 0x0bbc flpydisk - ok
16:41:52.0358 0x0bbc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:41:52.0403 0x0bbc FltMgr - ok
16:41:52.0590 0x0bbc [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
16:41:52.0637 0x0bbc FontCache - ok
16:41:52.0762 0x0bbc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:41:52.0855 0x0bbc FontCache3.0.0.0 - ok
16:41:52.0888 0x0bbc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:41:52.0888 0x0bbc FsDepends - ok
16:41:52.0935 0x0bbc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:41:52.0935 0x0bbc Fs_Rec - ok
16:41:53.0076 0x0bbc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:41:53.0076 0x0bbc fvevol - ok
16:41:53.0122 0x0bbc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:41:53.0138 0x0bbc gagp30kx - ok
16:41:53.0413 0x0bbc [ C1BBCE4B30B45410178EE674C818D10C, 3FD449C20493057592A21CA812CA39803BC32136B84A060B2BF9621776D94E54 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
16:41:53.0476 0x0bbc GameConsoleService - ok
16:41:53.0678 0x0bbc [ 4EA5458FCA8518344686C543749365B1, 52D4D2392C80A4C57C74B09FE04E9DFF6CB01521F03132EB7523BE52B8BF7A50 ] gfiark C:\Windows\system32\drivers\gfiark.sys
16:41:53.0725 0x0bbc gfiark - ok
16:41:53.0899 0x0bbc [ 16A23FF8621929ADC5B18DCCD5E206EE, 6204E3110503F76DC5970FDBD7340CE1265EE57196759E4D4DB187BAF119FF22 ] gfiutil C:\Windows\system32\drivers\gfiutil.sys
16:41:53.0899 0x0bbc gfiutil - ok
16:41:54.0164 0x0bbc [ 2EEFBED80B4CCC5DBEC08F12F0A1EACF, 30BD09B77218F14F25CEEBC34E06B5428970A238FD5E39866FE13E06A85B674A ] gfi_lanss11_attservice C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe
16:41:54.0180 0x0bbc gfi_lanss11_attservice - ok
16:41:54.0273 0x0bbc [ D3316F6E3C011435F36E3D6E49B3196C, 941DF52BA26603A146ED6B65A696DB87153868ED0469EF9C2EB09AC7E63525B7 ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
16:41:54.0289 0x0bbc GoToAssist - ok
16:41:54.0565 0x0bbc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
16:41:54.0627 0x0bbc gpsvc - ok
16:41:54.0890 0x0bbc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:54.0890 0x0bbc gupdate - ok
16:41:54.0968 0x0bbc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:54.0968 0x0bbc gupdatem - ok
16:41:55.0015 0x0bbc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:41:55.0046 0x0bbc hcw85cir - ok
16:41:55.0124 0x0bbc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:41:55.0140 0x0bbc HDAudBus - ok
16:41:55.0202 0x0bbc [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
16:41:55.0202 0x0bbc HECIx64 - ok
16:41:55.0218 0x0bbc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:41:55.0249 0x0bbc HidBatt - ok
16:41:55.0280 0x0bbc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:41:55.0312 0x0bbc HidBth - ok
16:41:55.0356 0x0bbc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:41:55.0372 0x0bbc HidIr - ok
16:41:55.0419 0x0bbc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
16:41:55.0419 0x0bbc hidserv - ok
16:41:55.0497 0x0bbc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:41:55.0512 0x0bbc HidUsb - ok
16:41:55.0590 0x0bbc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:41:55.0637 0x0bbc hkmsvc - ok
16:41:55.0699 0x0bbc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:41:55.0731 0x0bbc HomeGroupListener - ok
16:41:55.0793 0x0bbc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:41:55.0809 0x0bbc HomeGroupProvider - ok
16:41:55.0918 0x0bbc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:41:55.0934 0x0bbc HpSAMD - ok
16:41:56.0105 0x0bbc [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:41:56.0152 0x0bbc HTTP - ok
16:41:56.0199 0x0bbc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:41:56.0199 0x0bbc hwpolicy - ok
16:41:56.0261 0x0bbc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:41:56.0277 0x0bbc i8042prt - ok
16:41:56.0339 0x0bbc [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:41:56.0339 0x0bbc iaStor - ok
16:41:56.0402 0x0bbc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:41:56.0435 0x0bbc iaStorV - ok
16:41:56.0607 0x0bbc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:41:56.0685 0x0bbc idsvc - ok
16:41:56.0716 0x0bbc IEEtwCollectorService - ok
16:41:56.0747 0x0bbc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:41:56.0747 0x0bbc iirsp - ok
16:41:56.0825 0x0bbc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
16:41:56.0882 0x0bbc IKEEXT - ok
16:41:56.0915 0x0bbc [ 36FDF367A1DABFF903E2214023D71368, 60468692C1D048428AF25ED87DE23DAE756C7BA2B6CF6AF5EFD2E53C80F5FC68 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
16:41:56.0931 0x0bbc Impcd - ok
16:41:57.0336 0x0bbc [ 6E4CCB3AFF07E2B9F2A937385C84B573, 34F0597E7DE0D47EFE3C2D97D1DFEBA3593B8B656D0CD3D661C582B65A20A12A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:41:57.0723 0x0bbc IntcAzAudAddService - ok
16:41:57.0769 0x0bbc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
16:41:57.0785 0x0bbc intelide - ok
16:41:57.0847 0x0bbc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:41:57.0847 0x0bbc intelppm - ok
16:41:57.0923 0x0bbc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:41:57.0938 0x0bbc IPBusEnum - ok
16:41:57.0970 0x0bbc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:41:57.0985 0x0bbc IpFilterDriver - ok
16:41:58.0094 0x0bbc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:41:58.0141 0x0bbc iphlpsvc - ok
16:41:58.0172 0x0bbc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:41:58.0250 0x0bbc IPMIDRV - ok
16:41:58.0328 0x0bbc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:41:58.0360 0x0bbc IPNAT - ok
16:41:58.0377 0x0bbc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:41:58.0408 0x0bbc IRENUM - ok
16:41:58.0455 0x0bbc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:41:58.0471 0x0bbc isapnp - ok
16:41:58.0611 0x0bbc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:41:58.0627 0x0bbc iScsiPrt - ok
16:41:58.0689 0x0bbc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:41:58.0705 0x0bbc kbdclass - ok
16:41:58.0767 0x0bbc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:41:58.0861 0x0bbc kbdhid - ok
16:41:58.0890 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] KeyIso C:\Windows\system32\lsass.exe
16:41:58.0890 0x0bbc KeyIso - ok
16:41:58.0968 0x0bbc [ 67A1743377EBB5D9A370A8C2086CFDCC, 2F0FD6C1969B1EEEEFFC1A8F972E1E90F1AD9558FF00EC159BC19ED927FD4BF5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:41:58.0968 0x0bbc KSecDD - ok
16:41:59.0000 0x0bbc [ 522A1595D5701800DD41B2D472F5AAED, B62924AE94A5AC454AD6057BC133D717BB1C6445BE36D6BECAB76E1600F60C33 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:41:59.0000 0x0bbc KSecPkg - ok
16:41:59.0046 0x0bbc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:41:59.0078 0x0bbc ksthunk - ok
16:41:59.0171 0x0bbc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
16:41:59.0327 0x0bbc KtmRm - ok
16:41:59.0376 0x0bbc [ 39918DB0EFCF045A1CE6FABBF339F975, 1BAAA33DCE8F0BDBA9F6BCACAC9F4E926EBF287AFFCB2EBE114519B1ABF29529 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
16:41:59.0401 0x0bbc L1C - ok
16:41:59.0526 0x0bbc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:41:59.0541 0x0bbc LanmanServer - ok
16:41:59.0619 0x0bbc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:41:59.0666 0x0bbc LanmanWorkstation - ok
16:41:59.0729 0x0bbc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:41:59.0744 0x0bbc lltdio - ok
16:41:59.0838 0x0bbc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:41:59.0899 0x0bbc lltdsvc - ok
16:41:59.0945 0x0bbc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:41:59.0961 0x0bbc lmhosts - ok
16:42:00.0055 0x0bbc [ 23D990150D56B670A62B21B9ABDD45EE, BB9DBC0D02474976420321162C3AB1FDF975FA0494B1030488B03BC98A65F888 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:42:00.0086 0x0bbc LMS - ok
16:42:00.0148 0x0bbc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:42:00.0148 0x0bbc LSI_FC - ok
16:42:00.0211 0x0bbc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:42:00.0211 0x0bbc LSI_SAS - ok
16:42:00.0242 0x0bbc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:42:00.0242 0x0bbc LSI_SAS2 - ok
16:42:00.0273 0x0bbc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:42:00.0273 0x0bbc LSI_SCSI - ok
16:42:00.0304 0x0bbc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
16:42:00.0335 0x0bbc luafv - ok
16:42:00.0466 0x0bbc [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:42:00.0482 0x0bbc MBAMProtector - ok
16:42:00.0638 0x0bbc [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:42:00.0716 0x0bbc MBAMService - ok
16:42:00.0763 0x0bbc [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:42:00.0778 0x0bbc MBAMSwissArmy - ok
16:42:00.0809 0x0bbc [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
16:42:00.0825 0x0bbc MBAMWebAccessControl - ok
16:42:00.0906 0x0bbc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:42:00.0925 0x0bbc Mcx2Svc - ok
16:42:01.0003 0x0bbc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:42:01.0003 0x0bbc megasas - ok
16:42:01.0159 0x0bbc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:42:01.0206 0x0bbc MegaSR - ok
16:42:01.0387 0x0bbc [ A8129CFB919347F8533C934B365E9202, A1B84263714DFE92AF3C7D8DF5EBE5BBC7C96954337119BF9754676DDDE5DBED ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
16:42:01.0392 0x0bbc mfenlfk - ok
16:42:01.0470 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
16:42:01.0501 0x0bbc MMCSS - ok
16:42:01.0548 0x0bbc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
16:42:01.0563 0x0bbc Modem - ok
16:42:01.0719 0x0bbc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:42:01.0719 0x0bbc monitor - ok
16:42:02.0201 0x0bbc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:42:02.0217 0x0bbc mouclass - ok
16:42:02.0279 0x0bbc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:42:02.0295 0x0bbc mouhid - ok
16:42:02.0378 0x0bbc [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:42:02.0384 0x0bbc mountmgr - ok
16:42:02.0745 0x0bbc [ 73150F67D20270FF95A021A22E64F28A, A8878DEFBE437FB453F8E9243FB5C787D07AC7415A4475388D479C10417C524F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:42:02.0776 0x0bbc MpFilter - ok
16:42:02.0838 0x0bbc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
16:42:02.0838 0x0bbc mpio - ok
16:42:02.0900 0x0bbc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:42:03.0043 0x0bbc mpsdrv - ok
16:42:03.0199 0x0bbc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:42:03.0261 0x0bbc MpsSvc - ok
16:42:03.0323 0x0bbc [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:42:03.0391 0x0bbc MRxDAV - ok
16:42:03.0448 0x0bbc [ B2081803D510DCE174992BA880EDCA70, 37DB53C9756EC03EB7165DEB58251615D70B7C86DF32A54DE25ADAF30A04D792 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:42:03.0494 0x0bbc mrxsmb - ok
16:42:03.0541 0x0bbc [ 552FA62B0EFECD22D8D52499324BCA4F, C3A02C9C30C36928AC7B1025496544967187A05BEF5D100B54F2C0155E47145C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:42:03.0604 0x0bbc mrxsmb10 - ok
16:42:03.0635 0x0bbc [ 97687971F9CB30E2633DE0F1296B9F61, 865DA87523E4C32D65D55D5475A5CDDFA10699780DA500E6D606384FB3BEB1BE ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:42:03.0650 0x0bbc mrxsmb20 - ok
16:42:03.0697 0x0bbc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
16:42:03.0713 0x0bbc msahci - ok
16:42:03.0760 0x0bbc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:42:03.0760 0x0bbc msdsm - ok
16:42:03.0791 0x0bbc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
16:42:03.0806 0x0bbc MSDTC - ok
16:42:03.0853 0x0bbc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:42:03.0853 0x0bbc Msfs - ok
16:42:03.0891 0x0bbc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows
tremmor
Well-Known Member
\System32\drivers\mshidkmdf.sys
16:42:03.0895 0x0bbc mshidkmdf - ok
16:42:03.0942 0x0bbc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:42:03.0942 0x0bbc msisadrv - ok
16:42:03.0960 0x0bbc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:42:03.0975 0x0bbc MSiSCSI - ok
16:42:03.0975 0x0bbc msiserver - ok
16:42:04.0022 0x0bbc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:42:04.0038 0x0bbc MSKSSRV - ok
16:42:04.0241 0x0bbc [ CE996C1821021ADF8E28E80A54E846A8, 99042E895B6C2EA80F3BA65563A12C8EBA882E3AD6A21DD8E799B0112C75DDD2 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:42:04.0256 0x0bbc MsMpSvc - ok
16:42:04.0272 0x0bbc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:42:04.0303 0x0bbc MSPCLOCK - ok
16:42:04.0334 0x0bbc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:42:04.0350 0x0bbc MSPQM - ok
16:42:04.0410 0x0bbc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:42:04.0410 0x0bbc MsRPC - ok
16:42:04.0503 0x0bbc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:42:04.0503 0x0bbc mssmbios - ok
16:42:04.0597 0x0bbc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:42:04.0628 0x0bbc MSTEE - ok
16:42:04.0644 0x0bbc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:42:04.0675 0x0bbc MTConfig - ok
16:42:04.0722 0x0bbc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
16:42:04.0722 0x0bbc Mup - ok
16:42:04.0800 0x0bbc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
16:42:04.0815 0x0bbc napagent - ok
16:42:04.0880 0x0bbc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:42:04.0895 0x0bbc NativeWifiP - ok
16:42:04.0958 0x0bbc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
16:42:05.0007 0x0bbc NDIS - ok
16:42:05.0085 0x0bbc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:42:05.0116 0x0bbc NdisCap - ok
16:42:05.0147 0x0bbc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:42:05.0178 0x0bbc NdisTapi - ok
16:42:05.0209 0x0bbc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:42:05.0241 0x0bbc Ndisuio - ok
16:42:05.0303 0x0bbc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:42:05.0365 0x0bbc NdisWan - ok
16:42:05.0420 0x0bbc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:42:05.0435 0x0bbc NDProxy - ok
16:42:05.0513 0x0bbc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:42:05.0544 0x0bbc NetBIOS - ok
16:42:05.0591 0x0bbc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:42:05.0607 0x0bbc NetBT - ok
16:42:05.0622 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] Netlogon C:\Windows\system32\lsass.exe
16:42:05.0622 0x0bbc Netlogon - ok
16:42:05.0685 0x0bbc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
16:42:05.0685 0x0bbc Netman - ok
16:42:05.0747 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0763 0x0bbc NetMsmqActivator - ok
16:42:05.0778 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0778 0x0bbc NetPipeActivator - ok
16:42:05.0794 0x0bbc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
16:42:05.0810 0x0bbc netprofm - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0856 0x0bbc NetTcpActivator - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0875 0x0bbc NetTcpPortSharing - ok
16:42:05.0916 0x0bbc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:42:05.0932 0x0bbc nfrd960 - ok
16:42:06.0215 0x0bbc [ 4774AD83C650001B337B92E5E5DA337B, 138ECC7F556D8A12AE58B78B68F6515BE4C00F9F062596B48B6CA6C010F13035 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:42:06.0246 0x0bbc NisDrv - ok
16:42:06.0339 0x0bbc [ 96B7D15161A778B359E707796CCEA646, 9E4A25D9848FAECC517474EAD548E7975CBE3F41AAA964E5245E78F2A723925E ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:42:06.0386 0x0bbc NisSrv - ok
16:42:06.0494 0x0bbc [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
16:42:06.0525 0x0bbc NlaSvc - ok
16:42:06.0556 0x0bbc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:42:06.0587 0x0bbc Npfs - ok
16:42:06.0650 0x0bbc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
16:42:06.0712 0x0bbc nsi - ok
16:42:06.0759 0x0bbc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:42:06.0759 0x0bbc nsiproxy - ok
16:42:06.0959 0x0bbc [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:42:07.0166 0x0bbc Ntfs - ok
16:42:07.0213 0x0bbc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
16:42:07.0228 0x0bbc Null - ok
16:42:07.0306 0x0bbc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:42:07.0322 0x0bbc nvraid - ok
16:42:07.0392 0x0bbc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:42:07.0394 0x0bbc nvstor - ok
16:42:07.0441 0x0bbc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:42:07.0441 0x0bbc nv_agp - ok
16:42:07.0504 0x0bbc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:42:07.0535 0x0bbc ohci1394 - ok
16:42:07.0597 0x0bbc [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:42:07.0613 0x0bbc ose - ok
16:42:07.0880 0x0bbc [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:42:08.0225 0x0bbc osppsvc - ok
16:42:08.0410 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:42:08.0446 0x0bbc p2pimsvc - ok
16:42:08.0602 0x0bbc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
16:42:08.0665 0x0bbc p2psvc - ok
16:42:08.0712 0x0bbc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:42:08.0743 0x0bbc Parport - ok
16:42:08.0790 0x0bbc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:42:08.0805 0x0bbc partmgr - ok
16:42:08.0852 0x0bbc [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:42:08.0868 0x0bbc PcaSvc - ok
16:42:08.0918 0x0bbc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
16:42:08.0934 0x0bbc pci - ok
16:42:08.0981 0x0bbc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
16:42:08.0981 0x0bbc pciide - ok
16:42:09.0030 0x0bbc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:42:09.0045 0x0bbc pcmcia - ok
16:42:09.0076 0x0bbc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
16:42:09.0076 0x0bbc pcw - ok
16:42:09.0186 0x0bbc [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:42:09.0217 0x0bbc PEAUTH - ok
16:42:09.0295 0x0bbc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:42:09.0326 0x0bbc PerfHost - ok
16:42:09.0618 0x0bbc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
16:42:09.0836 0x0bbc pla - ok
16:42:10.0836 0x0bbc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:42:10.0925 0x0bbc PlugPlay - ok
16:42:10.0957 0x0bbc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:42:10.0988 0x0bbc PNRPAutoReg - ok
16:42:11.0300 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:42:11.0315 0x0bbc PNRPsvc - ok
16:42:11.0395 0x0bbc [ 138EDF5FF39DC01F31F812365EA607E6, CC793A18250FF3B82D2BBAFA1364F17DE5D1D1282DCA3F675E5ED5D663744415 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
16:42:11.0395 0x0bbc Point64 - ok
16:42:11.0473 0x0bbc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:42:11.0505 0x0bbc PolicyAgent - ok
16:42:11.0567 0x0bbc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
16:42:11.0598 0x0bbc Power - ok
16:42:11.0645 0x0bbc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:42:11.0676 0x0bbc PptpMiniport - ok
16:42:11.0707 0x0bbc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:42:11.0739 0x0bbc Processor - ok
16:42:11.0832 0x0bbc [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
16:42:11.0903 0x0bbc ProfSvc - ok
16:42:11.0919 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:42:11.0919 0x0bbc ProtectedStorage - ok
16:42:12.0012 0x0bbc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:42:12.0012 0x0bbc Psched - ok
16:42:12.0090 0x0bbc [ 4712CC14E720ECCCC0AA16949D18AAF1, AF0223D118A25CA14EC1AF8A40A793D3CBCBE3576CCACBCD4F9A3D3F10407262 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
16:42:12.0090 0x0bbc PxHlpa64 - ok
16:42:12.0199 0x0bbc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:42:12.0262 0x0bbc ql2300 - ok
16:42:12.0293 0x0bbc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:42:12.0293 0x0bbc ql40xx - ok
16:42:12.0324 0x0bbc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
16:42:12.0355 0x0bbc QWAVE - ok
16:42:12.0385 0x0bbc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:42:12.0401 0x0bbc QWAVEdrv - ok
16:42:12.0416 0x0bbc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:42:12.0494 0x0bbc RasAcd - ok
16:42:12.0603 0x0bbc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:42:12.0619 0x0bbc RasAgileVpn - ok
16:42:12.0681 0x0bbc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
16:42:12.0713 0x0bbc RasAuto - ok
16:42:12.0775 0x0bbc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:42:12.0806 0x0bbc Rasl2tp - ok
16:42:12.0869 0x0bbc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
16:42:12.0917 0x0bbc RasMan - ok
16:42:12.0980 0x0bbc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:42:12.0995 0x0bbc RasPppoe - ok
16:42:13.0198 0x0bbc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:42:13.0276 0x0bbc RasSstp - ok
16:42:13.0412 0x0bbc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:42:13.0474 0x0bbc rdbss - ok
16:42:13.0537 0x0bbc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:42:13.0552 0x0bbc rdpbus - ok
16:42:13.0568 0x0bbc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:42:13.0568 0x0bbc RDPCDD - ok
16:42:13.0599 0x0bbc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:42:13.0599 0x0bbc RDPENCDD - ok
16:42:13.0630 0x0bbc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:42:13.0630 0x0bbc RDPREFMP - ok
16:42:13.0771 0x0bbc [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:42:13.0802 0x0bbc RdpVideoMiniport - ok
16:42:13.0883 0x0bbc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:42:13.0902 0x0bbc RDPWD - ok
16:42:13.0964 0x0bbc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:42:13.0964 0x0bbc rdyboost - ok
16:42:14.0026 0x0bbc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:42:14.0120 0x0bbc RemoteAccess - ok
16:42:14.0198 0x0bbc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:42:14.0245 0x0bbc RemoteRegistry - ok
16:42:14.0338 0x0bbc [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
16:42:14.0354 0x0bbc RFCOMM - ok
16:42:14.0391 0x0bbc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:42:14.0454 0x0bbc RpcEptMapper - ok
16:42:14.0485 0x0bbc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
16:42:14.0500 0x0bbc RpcLocator - ok
16:42:14.0610 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
16:42:14.0625 0x0bbc RpcSs - ok
16:42:14.0688 0x0bbc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:42:14.0719 0x0bbc rspndr - ok
16:42:14.0812 0x0bbc [ 22D6B47D004A6568C500680BE2972854, 6FDDF4C0CE6211A49D0BE6529253754319D094AF3E306F87C3EE8986FB188671 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
16:42:14.0859 0x0bbc RSUSBSTOR - ok
16:42:14.0880 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] SamSs C:\Windows\system32\lsass.exe
16:42:14.0882 0x0bbc SamSs - ok
16:42:15.0527 0x0bbc [ A71BF27B7A5237A3EAF52333759543BE, 02F35BE4E00BAD85B473400661CF6511406A4CFE989F09FA25B195FF7CF4C7C2 ] SBAMSvc C:\Program Files (x86)\VIPRE\SBAMSvc.exe
16:42:15.0605 0x0bbc SBAMSvc - ok
16:42:15.0636 0x0bbc [ 7B7505F8674AC9C8418B55F807A06F1D, 876407127790900E04C454FDF6F8E993941303FF88B22A94E8EFEE09BFB3DA11 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
16:42:15.0667 0x0bbc sbapifs - ok
16:42:15.0947 0x0bbc [ 1B1AE5F447175D4B0B32B959B1ADB287, D2CCA537453F6F1BDA6687D6770D198DDC90345E28B63B6C9E00CC2203227C51 ] SbFw C:\Windows\system32\drivers\SbFw.sys
16:42:16.0057 0x0bbc SbFw - ok
16:42:16.0228 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
16:42:16.0228 0x0bbc SBFWIMCL - ok
16:42:16.0244 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
16:42:16.0244 0x0bbc SBFWIMCLMP - ok
16:42:16.0396 0x0bbc [ 4A5F19B271F147D93A596A920DB267D2, CBD72DB559EAC50B84E30EAE01DBB87571EEC7E06402B1F8E31398A0A20F1B2E ] SbHips C:\Windows\system32\drivers\sbhips.sys
16:42:16.0445 0x0bbc SbHips - ok
16:42:16.0492 0x0bbc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:42:16.0492 0x0bbc sbp2port - ok
16:42:16.0570 0x0bbc [ D8F1475DA10AEE8C25461F8A166EFA92, ADA427FF184885FF8EB77EEB598058B5EBCD33D262A2C5060119A149FECBC2DF ] SBPIMSvc C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
16:42:16.0585 0x0bbc SBPIMSvc - ok
16:42:16.0804 0x0bbc [ 97ECCE37DBAA0A871B4504CEF53EE76B, 4D319B238DC7968C17D977C1C02DE0F350C07CF721788A84E56EF19C2C4A2D4B ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
16:42:16.0804 0x0bbc sbwtis - ok
16:42:16.0896 0x0bbc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:42:17.0021 0x0bbc SCardSvr - ok
16:42:17.0067 0x0bbc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:42:17.0083 0x0bbc scfilter - ok
16:42:17.0471 0x0bbc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
16:42:17.0627 0x0bbc Schedule - ok
16:42:17.0659 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:42:17.0659 0x0bbc SCPolicySvc - ok
16:42:17.0690 0x0bbc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:42:17.0721 0x0bbc SDRSVC - ok
16:42:17.0783 0x0bbc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:42:17.0783 0x0bbc secdrv - ok
16:42:17.0815 0x0bbc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
16:42:17.0984 0x0bbc seclogon - ok
16:42:18.0030 0x0bbc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
16:42:18.0030 0x0bbc SENS - ok
16:42:18.0062 0x0bbc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:42:18.0077 0x0bbc SensrSvc - ok
16:42:18.0124 0x0bbc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:42:18.0140 0x0bbc Serenum - ok
16:42:18.0171 0x0bbc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:42:18.0202 0x0bbc Serial - ok
16:42:18.0233 0x0bbc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:42:18.0249 0x0bbc sermouse - ok
16:42:18.0296 0x0bbc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
16:42:18.0311 0x0bbc SessionEnv - ok
16:42:18.0358 0x0bbc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:42:18.0358 0x0bbc sffdisk - ok
16:42:18.0388 0x0bbc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:42:18.0403 0x0bbc sffp_mmc - ok
16:42:18.0419 0x0bbc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:42:18.0434 0x0bbc sffp_sd - ok
16:42:18.0466 0x0bbc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:42:18.0481 0x0bbc sfloppy - ok
16:42:18.0559 0x0bbc [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
16:42:18.0622 0x0bbc Sftfs - ok
16:42:18.0731 0x0bbc [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:42:18.0778 0x0bbc sftlist - ok
16:42:18.0824 0x0bbc [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:42:18.0840 0x0bbc Sftplay - ok
16:42:18.0884 0x0bbc [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:42:18.0885 0x0bbc Sftredir - ok
16:42:18.0994 0x0bbc [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
16:42:19.0057 0x0bbc SftService - ok
16:42:19.0104 0x0bbc [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
16:42:19.0119 0x0bbc Sftvol - ok
16:42:19.0197 0x0bbc [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:42:19.0213 0x0bbc sftvsa - ok
16:42:19.0260 0x0bbc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:42:19.0275 0x0bbc SharedAccess - ok
16:42:19.0306 0x0bbc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:42:19.0353 0x0bbc ShellHWDetection - ok
16:42:19.0396 0x0bbc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:42:19.0399 0x0bbc SiSRaid2 - ok
16:42:19.0431 0x0bbc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:42:19.0431 0x0bbc SiSRaid4 - ok
16:42:19.0555 0x0bbc [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:42:19.0571 0x0bbc SkypeUpdate - ok
16:42:19.0602 0x0bbc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:42:19.0665 0x0bbc Smb - ok
16:42:19.0711 0x0bbc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:42:19.0727 0x0bbc SNMPTRAP - ok
16:42:19.0761 0x0bbc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
16:42:19.0761 0x0bbc spldr - ok
16:42:19.0824 0x0bbc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
16:42:19.0913 0x0bbc Spooler - ok
16:42:20.0225 0x0bbc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
16:42:20.0349 0x0bbc sppsvc - ok
16:42:20.0395 0x0bbc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:42:20.0426 0x0bbc sppuinotify - ok
16:42:20.0488 0x0bbc [ D630B6F2E8379B6F10DC16E82A426552, 9F7949B11BCEF55B38119ED45BD92117A8551BEC8A2BCD88EA89707C48120F1B ] sprtsvc_DellSupportCenter c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
16:42:20.0488 0x0bbc sprtsvc_DellSupportCenter - ok
16:42:20.0566 0x0bbc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:42:20.0566 0x0bbc srv - ok
16:42:20.0613 0x0bbc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:42:20.0629 0x0bbc srv2 - ok
16:42:20.0644 0x0bbc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:42:20.0660 0x0bbc srvnet - ok
16:42:20.0707 0x0bbc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:42:20.0707 0x0bbc SSDPSRV - ok
16:42:20.0738 0x0bbc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:42:20.0769 0x0bbc SstpSvc - ok
16:42:20.0831 0x0bbc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:42:20.0831 0x0bbc stexstor - ok
16:42:20.0891 0x0bbc [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
16:42:20.0891 0x0bbc StillCam - ok
16:42:20.0954 0x0bbc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
16:42:20.0969 0x0bbc stisvc - ok
16:42:21.0000 0x0bbc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
16:42:21.0016 0x0bbc swenum - ok
16:42:21.0063 0x0bbc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
16:42:21.0110 0x0bbc swprv - ok
16:42:21.0188 0x0bbc [ C25866BDF0E818E02BB8E76845D26E54, 9D417E0C11ACF96059CBA3ADF0E6FF404C75498D21819B34635177C945560FD7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:42:21.0281 0x0bbc SynTP - ok
16:42:21.0487 0x0bbc [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
16:42:21.0565 0x0bbc SysMain - ok
16:42:21.0627 0x0bbc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:42:21.0659 0x0bbc TabletInputService - ok
16:42:21.0690 0x0bbc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
16:42:21.0721 0x0bbc TapiSrv - ok
16:42:21.0752 0x0bbc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
16:42:21.0752 0x0bbc TBS - ok
16:42:21.0885 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:42:21.0981 0x0bbc Tcpip - ok
16:42:22.0090 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:42:22.0121 0x0bbc TCPIP6 - ok
16:42:22.0183 0x0bbc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:42:22.0183 0x0bbc tcpipreg - ok
16:42:22.0199 0x0bbc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:42:22.0215 0x0bbc TDPIPE - ok
16:42:22.0261 0x0bbc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:42:22.0261 0x0bbc TDTCP - ok
16:42:22.0340 0x0bbc [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:42:22.0372 0x0bbc tdx - ok
16:42:22.0400 0x0bbc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
16:42:22.0400 0x0bbc TermDD - ok
16:42:22.0447 0x0bbc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
16:42:22.0541 0x0bbc TermService - ok
16:42:22.0587 0x0bbc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
16:42:22.0603 0x0bbc Themes - ok
16:42:22.0634 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
16:42:22.0634 0x0bbc THREADORDER - ok
16:42:22.0697 0x0bbc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
16:42:22.0697 0x0bbc TrkWks - ok
16:42:22.0759 0x0bbc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:42:22.0759 0x0bbc TrustedInstaller - ok
16:42:22.0806 0x0bbc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:42:22.0806 0x0bbc tssecsrv - ok
16:42:22.0853 0x0bbc [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:42:22.0929 0x0bbc TsUsbFlt - ok
16:42:22.0991 0x0bbc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:42:22.0991 0x0bbc tunnel - ok
16:42:23.0023 0x0bbc [ 825E7A1F48FB8BCFBA27C178AAB4E275, 94F039917B52BEFFFE383E14A6169AE81B6E79C30BA7DD017A9CFE15708A1605 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
16:42:23.0038 0x0bbc TurboB - ok
16:42:23.0101 0x0bbc [ B206BE1174D5964D49A56BB6C4E0524A, 9D7DA11220B69E2EDEA9E55EC0E4CB554DD7F638ABF49B76353CE5A5C75965B8 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
16:42:23.0116 0x0bbc TurboBoost - ok
16:42:23.0163 0x0bbc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:42:23.0163 0x0bbc uagp35 - ok
16:42:23.0210 0x0bbc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:42:23.0241 0x0bbc udfs - ok
16:42:23.0272 0x0bbc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:42:23.0320 0x0bbc UI0Detect - ok
16:42:23.0351 0x0bbc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:42:23.0351 0x0bbc uliagpkx - ok
16:42:23.0615 0x0bbc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
16:42:23.0631 0x0bbc umbus - ok
16:42:23.0693 0x0bbc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:42:23.0709 0x0bbc UmPass - ok
16:42:24.0282 0x0bbc [ CBDEE152D73200EE49031A26310B9D3E, 92E22235446F8DB3BFE97EDE7DE7D33F43EAC5957C5B41ACCEC4EBFD19BFF819 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:42:24.0313 0x0bbc UNS - ok
16:42:24.0422 0x0bbc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
16:42:24.0469 0x0bbc upnphost - ok
16:42:24.0516 0x0bbc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:42:24.0547 0x0bbc usbccgp - ok
16:42:24.0718 0x0bbc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:42:24.0750 0x0bbc usbcir - ok
16:42:24.0796 0x0bbc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:42:24.0828 0x0bbc usbehci - ok
16:42:24.0903 0x0bbc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:42:24.0997 0x0bbc usbhub - ok
16:42:25.0043 0x0bbc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:42:25.0059 0x0bbc usbohci - ok
16:42:25.0090 0x0bbc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:42:25.0106 0x0bbc usbprint - ok
16:42:25.0137 0x0bbc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
16:42:25.0153 0x0bbc USBSTOR - ok
16:42:25.0231 0x0bbc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:42:25.0246 0x0bbc usbuhci - ok
16:42:25.0355 0x0bbc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:42:25.0404 0x0bbc usbvideo - ok
16:42:25.0451 0x0bbc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
16:42:25.0482 0x0bbc UxSms - ok
16:42:25.0513 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] VaultSvc C:\Windows\system32\lsass.exe
16:42:25.0513 0x0bbc VaultSvc - ok
16:42:25.0576 0x0bbc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:42:25.0576 0x0bbc vdrvroot - ok
16:42:25.0779 0x0bbc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
16:42:25.0952 0x0bbc vds - ok
16:42:26.0015 0x0bbc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:42:26.0030 0x0bbc vga - ok
16:42:26.0077 0x0bbc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
16:42:26.0093 0x0bbc VgaSave - ok
16:42:26.0171 0x0bbc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:42:26.0171 0x0bbc vhdmp - ok
16:42:26.0249 0x0bbc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
16:42:26.0249 0x0bbc viaide - ok
16:42:26.0295 0x0bbc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:42:26.0295 0x0bbc volmgr - ok
16:42:26.0392 0x0bbc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:42:26.0397 0x0bbc volmgrx - ok
16:42:26.0475 0x0bbc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:42:26.0491 0x0bbc volsnap - ok
16:42:26.0538 0x0bbc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:42:26.0553 0x0bbc vsmraid - ok
16:42:27.0034 0x0bbc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
16:42:27.0315 0x0bbc VSS - ok
16:42:27.0331 0x0bbc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:42:27.0346 0x0bbc vwifibus - ok
16:42:27.0396 0x0bbc [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:42:27.0412 0x0bbc vwififlt - ok
16:42:27.0521 0x0bbc [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:42:27.0521 0x0bbc vwifimp - ok
16:42:27.0599 0x0bbc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
16:42:27.0646 0x0bbc W32Time - ok
16:42:27.0677 0x0bbc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:42:27.0755 0x0bbc WacomPen - ok
16:42:27.0833 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0864 0x0bbc WANARP - ok
16:42:27.0902 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0907 0x0bbc Wanarpv6 - ok
16:42:28.0132 0x0bbc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:42:28.0226 0x0bbc WatAdminSvc - ok
16:42:28.0560 0x0bbc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
16:42:28.0857 0x0bbc wbengine - ok
16:42:28.0918 0x0bbc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:42:28.0933 0x0bbc WbioSrvc - ok
16:42:28.0996 0x0bbc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:42:29.0058 0x0bbc wcncsvc - ok
16:42:29.0105 0x0bbc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:42:29.0121 0x0bbc WcsPlugInService - ok
16:42:29.0167 0x0bbc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:42:29.0167 0x0bbc Wd - ok
16:42:29.0214 0x0bbc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:42:29.0261 0x0bbc Wdf01000 - ok
16:42:29.0292 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:42:29.0292 0x0bbc WdiServiceHost - ok
16:42:29.0308 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:42:29.0308 0x0bbc WdiSystemHost - ok
16:42:29.0355 0x0bbc [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
16:42:29.0392 0x0bbc WebClient - ok
16:42:29.0460 0x0bbc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:42:29.0569 0x0bbc Wecsvc - ok
16:42:29.0585 0x0bbc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:42:29.0601 0x0bbc wercplsupport - ok
16:42:29.0741 0x0bbc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
16:42:29.0757 0x0bbc WerSvc - ok
16:42:29.0788 0x0bbc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:42:29.0803 0x0bbc WfpLwf - ok
16:42:29.0895 0x0bbc [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
16:42:29.0911 0x0bbc WimFltr - ok
16:42:29.0973 0x0bbc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:42:29.0973 0x0bbc WIMMount - ok
16:42:30.0020 0x0bbc WinDefend - ok
16:42:30.0051 0x0bbc WinHttpAutoProxySvc - ok
16:42:30.0487 0x0bbc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:42:30.0533 0x0bbc Winmgmt - ok
16:42:30.0941 0x0bbc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
16:42:31.0113 0x0bbc WinRM - ok
16:42:31.0237 0x0bbc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
16:42:31.0347 0x0bbc WinUsb - ok
16:42:31.0481 0x0bbc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:42:31.0544 0x0bbc Wlansvc - ok
16:42:31.0591 0x0bbc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:42:31.0591 0x0bbc WmiAcpi - ok
16:42:31.0669 0x0bbc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:42:31.0778 0x0bbc wmiApSrv - ok
16:42:31.0825 0x0bbc WMPNetworkSvc - ok
16:42:31.0871 0x0bbc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:42:31.0889 0x0bbc WPCSvc - ok
16:42:31.0951 0x0bbc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:42:31.0967 0x0bbc WPDBusEnum - ok
16:42:32.0014 0x0bbc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:42:32.0029 0x0bbc ws2ifsl - ok
16:42:32.0061 0x0bbc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
16:42:32.0076 0x0bbc wscsvc - ok
16:42:32.0092 0x0bbc WSearch - ok
16:42:32.0554 0x0bbc [ 499034D7F1F6AF49F9EE12F8822793CB, 55D591C4861AF66C6B9201BF78808B2ECE7B79D95C6BB07FF0ED87EFE63DD99E ] wuauserv C:\Windows\system32\wuaueng.dll
16:42:32.0773 0x0bbc wuauserv - ok
16:42:32.0835 0x0bbc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:42:32.0851 0x0bbc WudfPf - ok
16:42:32.0899 0x0bbc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\drivers\WUDFRd.sys
16:42:32.0946 0x0bbc WUDFRd - ok
16:42:32.0962 0x0bbc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:42:32.0977 0x0bbc wudfsvc - ok
16:42:33.0040 0x0bbc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
16:42:33.0071 0x0bbc WwanSvc - ok
16:42:33.0102 0x0bbc ================ Scan global ===============================
16:42:33.0133 0x0bbc [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
16:42:33.0180 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0227 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0258 0x0bbc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:42:33.0321 0x0bbc [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
16:42:33.0352 0x0bbc [ Global ] - ok
16:42:33.0352 0x0bbc ================ Scan MBR ==================================
16:42:33.0387 0x0bbc [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:42:35.0363 0x0bbc \Device\Harddisk0\DR0 - ok
16:42:35.0363 0x0bbc ================ Scan VBR ==================================
16:42:35.0382 0x0bbc [ 7019B8CC0DC29E0FEB9B03C67B44EE2D ] \Device\Harddisk0\DR0\Partition1
16:42:35.0385 0x0bbc \Device\Harddisk0\DR0\Partition1 - ok
16:42:35.0401 0x0bbc [ 2340C985AA75654C7597E3A6EA3097D0 ] \Device\Harddisk0\DR0\Partition2
16:42:35.0463 0x0bbc \Device\Harddisk0\DR0\Partition2 - ok
16:42:35.0479 0x0bbc ================ Scan generic autorun ======================
16:42:35.0479 0x0bbc SynTPEnh - ok
16:42:36.0785 0x0bbc [ 8AFCB48CAD2A0AC051FBDEB7289BC0EE, ACBD119E608A3634E869E26DEA9DC5B7870E3E6C4B762BF04B6BFF40E2460847 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:42:37.0315 0x0bbc RtHDVCpl - ok
16:42:37.0954 0x0bbc [ E93736524C401B8F7654806DB82FC050, 72574A5B324095C2518A63B8D156EC375F832045CDDB343FCB564A6AB2B3B26E ] C:\Program Files\Dell\QuickSet\QuickSet.exe
16:42:38.0017 0x0bbc QuickSet - ok
16:42:38.0403 0x0bbc [ 35BA4E6632BA690EA6421C1E03537D0E, 99D6B4DB12ABE3A7F44AB1B2D626978E85231185AE280D9516986027BC8385CB ] c:\Program Files\Microsoft Security Client\msseces.exe
16:42:38.0575 0x0bbc MSC - ok
16:42:38.0809 0x0bbc [ 77AC8322178FB8F3117CDD3B6DC6E126, 2786198EE920D7788FA0DE376231D4E42AB68F6D5A1E87FAC1F3D7424D1ED493 ] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
16:42:38.0824 0x0bbc StartCCC - ok
16:42:39.0029 0x0bbc [ 80B62FF105908EC9E4B072AFB1CFC824, B124F309CB42167D59097DB3346487A26D431EC05694CECF19F0C5938312B3E8 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
16:42:39.0060 0x0bbc Dell Webcam Central - ok
16:42:39.0123 0x0bbc [ 00D1FB0073B4A8BD2989EA8FF4CC792B, 001A26FF51BF6BABF6325983F512CF8D84CADEE1CA36F166A41702D94C1B0841 ] c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
16:42:39.0123 0x0bbc DellSupportCenter - ok
16:42:39.0263 0x0bbc [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:42:39.0263 0x0bbc HP Software Update - ok
16:42:39.0357 0x0bbc [ EABCB3EBAB22B981A09DBC1E65D05E96, 9980D2ADF2CB726DC6832A7D8697605608C3C8121DC631134735386A402896A8 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe
16:42:39.0867 0x0bbc "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" - ok
16:42:40.0243 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0486 0x0bbc Sidebar - ok
16:42:40.0533 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0595 0x0bbc mctadmin - ok
16:42:40.0657 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0673 0x0bbc Sidebar - ok
16:42:40.0720 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0735 0x0bbc mctadmin - ok
16:42:40.0735 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:41.0746 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:42.0756 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:43.0766 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:44.0828 0x0bbc AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.8.204.0 ), 0x61000 ( enabled : updated )
16:42:44.0943 0x0bbc AV detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41000 ( enabled : updated )
16:42:44.0943 0x0bbc FW detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41010 ( enabled )
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0bbc Scan finished
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0b68 Detected object count: 0
16:42:47.0846 0x0b68 Actual detected object count: 0
16:43:11.0431 0x1770 Deinitialize success
16:42:03.0895 0x0bbc mshidkmdf - ok
16:42:03.0942 0x0bbc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:42:03.0942 0x0bbc msisadrv - ok
16:42:03.0960 0x0bbc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:42:03.0975 0x0bbc MSiSCSI - ok
16:42:03.0975 0x0bbc msiserver - ok
16:42:04.0022 0x0bbc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:42:04.0038 0x0bbc MSKSSRV - ok
16:42:04.0241 0x0bbc [ CE996C1821021ADF8E28E80A54E846A8, 99042E895B6C2EA80F3BA65563A12C8EBA882E3AD6A21DD8E799B0112C75DDD2 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:42:04.0256 0x0bbc MsMpSvc - ok
16:42:04.0272 0x0bbc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:42:04.0303 0x0bbc MSPCLOCK - ok
16:42:04.0334 0x0bbc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:42:04.0350 0x0bbc MSPQM - ok
16:42:04.0410 0x0bbc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:42:04.0410 0x0bbc MsRPC - ok
16:42:04.0503 0x0bbc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:42:04.0503 0x0bbc mssmbios - ok
16:42:04.0597 0x0bbc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:42:04.0628 0x0bbc MSTEE - ok
16:42:04.0644 0x0bbc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:42:04.0675 0x0bbc MTConfig - ok
16:42:04.0722 0x0bbc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
16:42:04.0722 0x0bbc Mup - ok
16:42:04.0800 0x0bbc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
16:42:04.0815 0x0bbc napagent - ok
16:42:04.0880 0x0bbc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:42:04.0895 0x0bbc NativeWifiP - ok
16:42:04.0958 0x0bbc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
16:42:05.0007 0x0bbc NDIS - ok
16:42:05.0085 0x0bbc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:42:05.0116 0x0bbc NdisCap - ok
16:42:05.0147 0x0bbc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:42:05.0178 0x0bbc NdisTapi - ok
16:42:05.0209 0x0bbc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:42:05.0241 0x0bbc Ndisuio - ok
16:42:05.0303 0x0bbc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:42:05.0365 0x0bbc NdisWan - ok
16:42:05.0420 0x0bbc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:42:05.0435 0x0bbc NDProxy - ok
16:42:05.0513 0x0bbc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:42:05.0544 0x0bbc NetBIOS - ok
16:42:05.0591 0x0bbc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:42:05.0607 0x0bbc NetBT - ok
16:42:05.0622 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] Netlogon C:\Windows\system32\lsass.exe
16:42:05.0622 0x0bbc Netlogon - ok
16:42:05.0685 0x0bbc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
16:42:05.0685 0x0bbc Netman - ok
16:42:05.0747 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0763 0x0bbc NetMsmqActivator - ok
16:42:05.0778 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0778 0x0bbc NetPipeActivator - ok
16:42:05.0794 0x0bbc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
16:42:05.0810 0x0bbc netprofm - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0856 0x0bbc NetTcpActivator - ok
16:42:05.0856 0x0bbc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:05.0875 0x0bbc NetTcpPortSharing - ok
16:42:05.0916 0x0bbc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:42:05.0932 0x0bbc nfrd960 - ok
16:42:06.0215 0x0bbc [ 4774AD83C650001B337B92E5E5DA337B, 138ECC7F556D8A12AE58B78B68F6515BE4C00F9F062596B48B6CA6C010F13035 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:42:06.0246 0x0bbc NisDrv - ok
16:42:06.0339 0x0bbc [ 96B7D15161A778B359E707796CCEA646, 9E4A25D9848FAECC517474EAD548E7975CBE3F41AAA964E5245E78F2A723925E ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:42:06.0386 0x0bbc NisSrv - ok
16:42:06.0494 0x0bbc [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
16:42:06.0525 0x0bbc NlaSvc - ok
16:42:06.0556 0x0bbc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:42:06.0587 0x0bbc Npfs - ok
16:42:06.0650 0x0bbc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
16:42:06.0712 0x0bbc nsi - ok
16:42:06.0759 0x0bbc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:42:06.0759 0x0bbc nsiproxy - ok
16:42:06.0959 0x0bbc [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:42:07.0166 0x0bbc Ntfs - ok
16:42:07.0213 0x0bbc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
16:42:07.0228 0x0bbc Null - ok
16:42:07.0306 0x0bbc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:42:07.0322 0x0bbc nvraid - ok
16:42:07.0392 0x0bbc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:42:07.0394 0x0bbc nvstor - ok
16:42:07.0441 0x0bbc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:42:07.0441 0x0bbc nv_agp - ok
16:42:07.0504 0x0bbc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:42:07.0535 0x0bbc ohci1394 - ok
16:42:07.0597 0x0bbc [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:42:07.0613 0x0bbc ose - ok
16:42:07.0880 0x0bbc [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:42:08.0225 0x0bbc osppsvc - ok
16:42:08.0410 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:42:08.0446 0x0bbc p2pimsvc - ok
16:42:08.0602 0x0bbc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
16:42:08.0665 0x0bbc p2psvc - ok
16:42:08.0712 0x0bbc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:42:08.0743 0x0bbc Parport - ok
16:42:08.0790 0x0bbc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:42:08.0805 0x0bbc partmgr - ok
16:42:08.0852 0x0bbc [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:42:08.0868 0x0bbc PcaSvc - ok
16:42:08.0918 0x0bbc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
16:42:08.0934 0x0bbc pci - ok
16:42:08.0981 0x0bbc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
16:42:08.0981 0x0bbc pciide - ok
16:42:09.0030 0x0bbc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:42:09.0045 0x0bbc pcmcia - ok
16:42:09.0076 0x0bbc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
16:42:09.0076 0x0bbc pcw - ok
16:42:09.0186 0x0bbc [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:42:09.0217 0x0bbc PEAUTH - ok
16:42:09.0295 0x0bbc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:42:09.0326 0x0bbc PerfHost - ok
16:42:09.0618 0x0bbc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
16:42:09.0836 0x0bbc pla - ok
16:42:10.0836 0x0bbc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:42:10.0925 0x0bbc PlugPlay - ok
16:42:10.0957 0x0bbc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:42:10.0988 0x0bbc PNRPAutoReg - ok
16:42:11.0300 0x0bbc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:42:11.0315 0x0bbc PNRPsvc - ok
16:42:11.0395 0x0bbc [ 138EDF5FF39DC01F31F812365EA607E6, CC793A18250FF3B82D2BBAFA1364F17DE5D1D1282DCA3F675E5ED5D663744415 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
16:42:11.0395 0x0bbc Point64 - ok
16:42:11.0473 0x0bbc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:42:11.0505 0x0bbc PolicyAgent - ok
16:42:11.0567 0x0bbc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
16:42:11.0598 0x0bbc Power - ok
16:42:11.0645 0x0bbc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:42:11.0676 0x0bbc PptpMiniport - ok
16:42:11.0707 0x0bbc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:42:11.0739 0x0bbc Processor - ok
16:42:11.0832 0x0bbc [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
16:42:11.0903 0x0bbc ProfSvc - ok
16:42:11.0919 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:42:11.0919 0x0bbc ProtectedStorage - ok
16:42:12.0012 0x0bbc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:42:12.0012 0x0bbc Psched - ok
16:42:12.0090 0x0bbc [ 4712CC14E720ECCCC0AA16949D18AAF1, AF0223D118A25CA14EC1AF8A40A793D3CBCBE3576CCACBCD4F9A3D3F10407262 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
16:42:12.0090 0x0bbc PxHlpa64 - ok
16:42:12.0199 0x0bbc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:42:12.0262 0x0bbc ql2300 - ok
16:42:12.0293 0x0bbc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:42:12.0293 0x0bbc ql40xx - ok
16:42:12.0324 0x0bbc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
16:42:12.0355 0x0bbc QWAVE - ok
16:42:12.0385 0x0bbc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:42:12.0401 0x0bbc QWAVEdrv - ok
16:42:12.0416 0x0bbc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:42:12.0494 0x0bbc RasAcd - ok
16:42:12.0603 0x0bbc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:42:12.0619 0x0bbc RasAgileVpn - ok
16:42:12.0681 0x0bbc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
16:42:12.0713 0x0bbc RasAuto - ok
16:42:12.0775 0x0bbc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:42:12.0806 0x0bbc Rasl2tp - ok
16:42:12.0869 0x0bbc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
16:42:12.0917 0x0bbc RasMan - ok
16:42:12.0980 0x0bbc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:42:12.0995 0x0bbc RasPppoe - ok
16:42:13.0198 0x0bbc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:42:13.0276 0x0bbc RasSstp - ok
16:42:13.0412 0x0bbc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:42:13.0474 0x0bbc rdbss - ok
16:42:13.0537 0x0bbc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:42:13.0552 0x0bbc rdpbus - ok
16:42:13.0568 0x0bbc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:42:13.0568 0x0bbc RDPCDD - ok
16:42:13.0599 0x0bbc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:42:13.0599 0x0bbc RDPENCDD - ok
16:42:13.0630 0x0bbc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:42:13.0630 0x0bbc RDPREFMP - ok
16:42:13.0771 0x0bbc [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:42:13.0802 0x0bbc RdpVideoMiniport - ok
16:42:13.0883 0x0bbc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:42:13.0902 0x0bbc RDPWD - ok
16:42:13.0964 0x0bbc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:42:13.0964 0x0bbc rdyboost - ok
16:42:14.0026 0x0bbc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:42:14.0120 0x0bbc RemoteAccess - ok
16:42:14.0198 0x0bbc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:42:14.0245 0x0bbc RemoteRegistry - ok
16:42:14.0338 0x0bbc [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
16:42:14.0354 0x0bbc RFCOMM - ok
16:42:14.0391 0x0bbc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:42:14.0454 0x0bbc RpcEptMapper - ok
16:42:14.0485 0x0bbc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
16:42:14.0500 0x0bbc RpcLocator - ok
16:42:14.0610 0x0bbc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
16:42:14.0625 0x0bbc RpcSs - ok
16:42:14.0688 0x0bbc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:42:14.0719 0x0bbc rspndr - ok
16:42:14.0812 0x0bbc [ 22D6B47D004A6568C500680BE2972854, 6FDDF4C0CE6211A49D0BE6529253754319D094AF3E306F87C3EE8986FB188671 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
16:42:14.0859 0x0bbc RSUSBSTOR - ok
16:42:14.0880 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] SamSs C:\Windows\system32\lsass.exe
16:42:14.0882 0x0bbc SamSs - ok
16:42:15.0527 0x0bbc [ A71BF27B7A5237A3EAF52333759543BE, 02F35BE4E00BAD85B473400661CF6511406A4CFE989F09FA25B195FF7CF4C7C2 ] SBAMSvc C:\Program Files (x86)\VIPRE\SBAMSvc.exe
16:42:15.0605 0x0bbc SBAMSvc - ok
16:42:15.0636 0x0bbc [ 7B7505F8674AC9C8418B55F807A06F1D, 876407127790900E04C454FDF6F8E993941303FF88B22A94E8EFEE09BFB3DA11 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
16:42:15.0667 0x0bbc sbapifs - ok
16:42:15.0947 0x0bbc [ 1B1AE5F447175D4B0B32B959B1ADB287, D2CCA537453F6F1BDA6687D6770D198DDC90345E28B63B6C9E00CC2203227C51 ] SbFw C:\Windows\system32\drivers\SbFw.sys
16:42:16.0057 0x0bbc SbFw - ok
16:42:16.0228 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
16:42:16.0228 0x0bbc SBFWIMCL - ok
16:42:16.0244 0x0bbc [ 9AEF0F267553FD9C900E9449B61586B7, 32209344D29310250854877998CBB12B4F44165960104ED8596F0C46E07F445E ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
16:42:16.0244 0x0bbc SBFWIMCLMP - ok
16:42:16.0396 0x0bbc [ 4A5F19B271F147D93A596A920DB267D2, CBD72DB559EAC50B84E30EAE01DBB87571EEC7E06402B1F8E31398A0A20F1B2E ] SbHips C:\Windows\system32\drivers\sbhips.sys
16:42:16.0445 0x0bbc SbHips - ok
16:42:16.0492 0x0bbc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:42:16.0492 0x0bbc sbp2port - ok
16:42:16.0570 0x0bbc [ D8F1475DA10AEE8C25461F8A166EFA92, ADA427FF184885FF8EB77EEB598058B5EBCD33D262A2C5060119A149FECBC2DF ] SBPIMSvc C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
16:42:16.0585 0x0bbc SBPIMSvc - ok
16:42:16.0804 0x0bbc [ 97ECCE37DBAA0A871B4504CEF53EE76B, 4D319B238DC7968C17D977C1C02DE0F350C07CF721788A84E56EF19C2C4A2D4B ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
16:42:16.0804 0x0bbc sbwtis - ok
16:42:16.0896 0x0bbc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:42:17.0021 0x0bbc SCardSvr - ok
16:42:17.0067 0x0bbc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:42:17.0083 0x0bbc scfilter - ok
16:42:17.0471 0x0bbc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
16:42:17.0627 0x0bbc Schedule - ok
16:42:17.0659 0x0bbc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:42:17.0659 0x0bbc SCPolicySvc - ok
16:42:17.0690 0x0bbc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:42:17.0721 0x0bbc SDRSVC - ok
16:42:17.0783 0x0bbc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:42:17.0783 0x0bbc secdrv - ok
16:42:17.0815 0x0bbc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
16:42:17.0984 0x0bbc seclogon - ok
16:42:18.0030 0x0bbc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
16:42:18.0030 0x0bbc SENS - ok
16:42:18.0062 0x0bbc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:42:18.0077 0x0bbc SensrSvc - ok
16:42:18.0124 0x0bbc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:42:18.0140 0x0bbc Serenum - ok
16:42:18.0171 0x0bbc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:42:18.0202 0x0bbc Serial - ok
16:42:18.0233 0x0bbc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:42:18.0249 0x0bbc sermouse - ok
16:42:18.0296 0x0bbc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
16:42:18.0311 0x0bbc SessionEnv - ok
16:42:18.0358 0x0bbc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:42:18.0358 0x0bbc sffdisk - ok
16:42:18.0388 0x0bbc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:42:18.0403 0x0bbc sffp_mmc - ok
16:42:18.0419 0x0bbc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:42:18.0434 0x0bbc sffp_sd - ok
16:42:18.0466 0x0bbc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:42:18.0481 0x0bbc sfloppy - ok
16:42:18.0559 0x0bbc [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
16:42:18.0622 0x0bbc Sftfs - ok
16:42:18.0731 0x0bbc [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:42:18.0778 0x0bbc sftlist - ok
16:42:18.0824 0x0bbc [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:42:18.0840 0x0bbc Sftplay - ok
16:42:18.0884 0x0bbc [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:42:18.0885 0x0bbc Sftredir - ok
16:42:18.0994 0x0bbc [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
16:42:19.0057 0x0bbc SftService - ok
16:42:19.0104 0x0bbc [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
16:42:19.0119 0x0bbc Sftvol - ok
16:42:19.0197 0x0bbc [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:42:19.0213 0x0bbc sftvsa - ok
16:42:19.0260 0x0bbc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:42:19.0275 0x0bbc SharedAccess - ok
16:42:19.0306 0x0bbc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:42:19.0353 0x0bbc ShellHWDetection - ok
16:42:19.0396 0x0bbc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:42:19.0399 0x0bbc SiSRaid2 - ok
16:42:19.0431 0x0bbc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:42:19.0431 0x0bbc SiSRaid4 - ok
16:42:19.0555 0x0bbc [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:42:19.0571 0x0bbc SkypeUpdate - ok
16:42:19.0602 0x0bbc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:42:19.0665 0x0bbc Smb - ok
16:42:19.0711 0x0bbc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:42:19.0727 0x0bbc SNMPTRAP - ok
16:42:19.0761 0x0bbc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
16:42:19.0761 0x0bbc spldr - ok
16:42:19.0824 0x0bbc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
16:42:19.0913 0x0bbc Spooler - ok
16:42:20.0225 0x0bbc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
16:42:20.0349 0x0bbc sppsvc - ok
16:42:20.0395 0x0bbc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:42:20.0426 0x0bbc sppuinotify - ok
16:42:20.0488 0x0bbc [ D630B6F2E8379B6F10DC16E82A426552, 9F7949B11BCEF55B38119ED45BD92117A8551BEC8A2BCD88EA89707C48120F1B ] sprtsvc_DellSupportCenter c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
16:42:20.0488 0x0bbc sprtsvc_DellSupportCenter - ok
16:42:20.0566 0x0bbc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:42:20.0566 0x0bbc srv - ok
16:42:20.0613 0x0bbc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:42:20.0629 0x0bbc srv2 - ok
16:42:20.0644 0x0bbc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:42:20.0660 0x0bbc srvnet - ok
16:42:20.0707 0x0bbc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:42:20.0707 0x0bbc SSDPSRV - ok
16:42:20.0738 0x0bbc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:42:20.0769 0x0bbc SstpSvc - ok
16:42:20.0831 0x0bbc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:42:20.0831 0x0bbc stexstor - ok
16:42:20.0891 0x0bbc [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
16:42:20.0891 0x0bbc StillCam - ok
16:42:20.0954 0x0bbc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
16:42:20.0969 0x0bbc stisvc - ok
16:42:21.0000 0x0bbc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
16:42:21.0016 0x0bbc swenum - ok
16:42:21.0063 0x0bbc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
16:42:21.0110 0x0bbc swprv - ok
16:42:21.0188 0x0bbc [ C25866BDF0E818E02BB8E76845D26E54, 9D417E0C11ACF96059CBA3ADF0E6FF404C75498D21819B34635177C945560FD7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:42:21.0281 0x0bbc SynTP - ok
16:42:21.0487 0x0bbc [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
16:42:21.0565 0x0bbc SysMain - ok
16:42:21.0627 0x0bbc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:42:21.0659 0x0bbc TabletInputService - ok
16:42:21.0690 0x0bbc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
16:42:21.0721 0x0bbc TapiSrv - ok
16:42:21.0752 0x0bbc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
16:42:21.0752 0x0bbc TBS - ok
16:42:21.0885 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:42:21.0981 0x0bbc Tcpip - ok
16:42:22.0090 0x0bbc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:42:22.0121 0x0bbc TCPIP6 - ok
16:42:22.0183 0x0bbc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:42:22.0183 0x0bbc tcpipreg - ok
16:42:22.0199 0x0bbc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:42:22.0215 0x0bbc TDPIPE - ok
16:42:22.0261 0x0bbc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:42:22.0261 0x0bbc TDTCP - ok
16:42:22.0340 0x0bbc [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:42:22.0372 0x0bbc tdx - ok
16:42:22.0400 0x0bbc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
16:42:22.0400 0x0bbc TermDD - ok
16:42:22.0447 0x0bbc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
16:42:22.0541 0x0bbc TermService - ok
16:42:22.0587 0x0bbc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
16:42:22.0603 0x0bbc Themes - ok
16:42:22.0634 0x0bbc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
16:42:22.0634 0x0bbc THREADORDER - ok
16:42:22.0697 0x0bbc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
16:42:22.0697 0x0bbc TrkWks - ok
16:42:22.0759 0x0bbc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:42:22.0759 0x0bbc TrustedInstaller - ok
16:42:22.0806 0x0bbc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:42:22.0806 0x0bbc tssecsrv - ok
16:42:22.0853 0x0bbc [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:42:22.0929 0x0bbc TsUsbFlt - ok
16:42:22.0991 0x0bbc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:42:22.0991 0x0bbc tunnel - ok
16:42:23.0023 0x0bbc [ 825E7A1F48FB8BCFBA27C178AAB4E275, 94F039917B52BEFFFE383E14A6169AE81B6E79C30BA7DD017A9CFE15708A1605 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
16:42:23.0038 0x0bbc TurboB - ok
16:42:23.0101 0x0bbc [ B206BE1174D5964D49A56BB6C4E0524A, 9D7DA11220B69E2EDEA9E55EC0E4CB554DD7F638ABF49B76353CE5A5C75965B8 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
16:42:23.0116 0x0bbc TurboBoost - ok
16:42:23.0163 0x0bbc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:42:23.0163 0x0bbc uagp35 - ok
16:42:23.0210 0x0bbc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:42:23.0241 0x0bbc udfs - ok
16:42:23.0272 0x0bbc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:42:23.0320 0x0bbc UI0Detect - ok
16:42:23.0351 0x0bbc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:42:23.0351 0x0bbc uliagpkx - ok
16:42:23.0615 0x0bbc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
16:42:23.0631 0x0bbc umbus - ok
16:42:23.0693 0x0bbc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:42:23.0709 0x0bbc UmPass - ok
16:42:24.0282 0x0bbc [ CBDEE152D73200EE49031A26310B9D3E, 92E22235446F8DB3BFE97EDE7DE7D33F43EAC5957C5B41ACCEC4EBFD19BFF819 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:42:24.0313 0x0bbc UNS - ok
16:42:24.0422 0x0bbc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
16:42:24.0469 0x0bbc upnphost - ok
16:42:24.0516 0x0bbc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:42:24.0547 0x0bbc usbccgp - ok
16:42:24.0718 0x0bbc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:42:24.0750 0x0bbc usbcir - ok
16:42:24.0796 0x0bbc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:42:24.0828 0x0bbc usbehci - ok
16:42:24.0903 0x0bbc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:42:24.0997 0x0bbc usbhub - ok
16:42:25.0043 0x0bbc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:42:25.0059 0x0bbc usbohci - ok
16:42:25.0090 0x0bbc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:42:25.0106 0x0bbc usbprint - ok
16:42:25.0137 0x0bbc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
16:42:25.0153 0x0bbc USBSTOR - ok
16:42:25.0231 0x0bbc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:42:25.0246 0x0bbc usbuhci - ok
16:42:25.0355 0x0bbc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:42:25.0404 0x0bbc usbvideo - ok
16:42:25.0451 0x0bbc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
16:42:25.0482 0x0bbc UxSms - ok
16:42:25.0513 0x0bbc [ 0D48E93C6BE3143C0198CB252B992D16, AF34A41BAAE967045C8078E80B070E66ED60FDA0945FA752F715E49FD43373A4 ] VaultSvc C:\Windows\system32\lsass.exe
16:42:25.0513 0x0bbc VaultSvc - ok
16:42:25.0576 0x0bbc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:42:25.0576 0x0bbc vdrvroot - ok
16:42:25.0779 0x0bbc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
16:42:25.0952 0x0bbc vds - ok
16:42:26.0015 0x0bbc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:42:26.0030 0x0bbc vga - ok
16:42:26.0077 0x0bbc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
16:42:26.0093 0x0bbc VgaSave - ok
16:42:26.0171 0x0bbc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:42:26.0171 0x0bbc vhdmp - ok
16:42:26.0249 0x0bbc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
16:42:26.0249 0x0bbc viaide - ok
16:42:26.0295 0x0bbc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:42:26.0295 0x0bbc volmgr - ok
16:42:26.0392 0x0bbc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:42:26.0397 0x0bbc volmgrx - ok
16:42:26.0475 0x0bbc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:42:26.0491 0x0bbc volsnap - ok
16:42:26.0538 0x0bbc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:42:26.0553 0x0bbc vsmraid - ok
16:42:27.0034 0x0bbc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
16:42:27.0315 0x0bbc VSS - ok
16:42:27.0331 0x0bbc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:42:27.0346 0x0bbc vwifibus - ok
16:42:27.0396 0x0bbc [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:42:27.0412 0x0bbc vwififlt - ok
16:42:27.0521 0x0bbc [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:42:27.0521 0x0bbc vwifimp - ok
16:42:27.0599 0x0bbc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
16:42:27.0646 0x0bbc W32Time - ok
16:42:27.0677 0x0bbc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:42:27.0755 0x0bbc WacomPen - ok
16:42:27.0833 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0864 0x0bbc WANARP - ok
16:42:27.0902 0x0bbc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:42:27.0907 0x0bbc Wanarpv6 - ok
16:42:28.0132 0x0bbc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:42:28.0226 0x0bbc WatAdminSvc - ok
16:42:28.0560 0x0bbc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
16:42:28.0857 0x0bbc wbengine - ok
16:42:28.0918 0x0bbc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:42:28.0933 0x0bbc WbioSrvc - ok
16:42:28.0996 0x0bbc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:42:29.0058 0x0bbc wcncsvc - ok
16:42:29.0105 0x0bbc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:42:29.0121 0x0bbc WcsPlugInService - ok
16:42:29.0167 0x0bbc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:42:29.0167 0x0bbc Wd - ok
16:42:29.0214 0x0bbc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:42:29.0261 0x0bbc Wdf01000 - ok
16:42:29.0292 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:42:29.0292 0x0bbc WdiServiceHost - ok
16:42:29.0308 0x0bbc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:42:29.0308 0x0bbc WdiSystemHost - ok
16:42:29.0355 0x0bbc [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
16:42:29.0392 0x0bbc WebClient - ok
16:42:29.0460 0x0bbc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:42:29.0569 0x0bbc Wecsvc - ok
16:42:29.0585 0x0bbc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:42:29.0601 0x0bbc wercplsupport - ok
16:42:29.0741 0x0bbc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
16:42:29.0757 0x0bbc WerSvc - ok
16:42:29.0788 0x0bbc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:42:29.0803 0x0bbc WfpLwf - ok
16:42:29.0895 0x0bbc [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
16:42:29.0911 0x0bbc WimFltr - ok
16:42:29.0973 0x0bbc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:42:29.0973 0x0bbc WIMMount - ok
16:42:30.0020 0x0bbc WinDefend - ok
16:42:30.0051 0x0bbc WinHttpAutoProxySvc - ok
16:42:30.0487 0x0bbc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:42:30.0533 0x0bbc Winmgmt - ok
16:42:30.0941 0x0bbc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
16:42:31.0113 0x0bbc WinRM - ok
16:42:31.0237 0x0bbc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
16:42:31.0347 0x0bbc WinUsb - ok
16:42:31.0481 0x0bbc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:42:31.0544 0x0bbc Wlansvc - ok
16:42:31.0591 0x0bbc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:42:31.0591 0x0bbc WmiAcpi - ok
16:42:31.0669 0x0bbc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:42:31.0778 0x0bbc wmiApSrv - ok
16:42:31.0825 0x0bbc WMPNetworkSvc - ok
16:42:31.0871 0x0bbc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:42:31.0889 0x0bbc WPCSvc - ok
16:42:31.0951 0x0bbc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:42:31.0967 0x0bbc WPDBusEnum - ok
16:42:32.0014 0x0bbc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:42:32.0029 0x0bbc ws2ifsl - ok
16:42:32.0061 0x0bbc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
16:42:32.0076 0x0bbc wscsvc - ok
16:42:32.0092 0x0bbc WSearch - ok
16:42:32.0554 0x0bbc [ 499034D7F1F6AF49F9EE12F8822793CB, 55D591C4861AF66C6B9201BF78808B2ECE7B79D95C6BB07FF0ED87EFE63DD99E ] wuauserv C:\Windows\system32\wuaueng.dll
16:42:32.0773 0x0bbc wuauserv - ok
16:42:32.0835 0x0bbc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:42:32.0851 0x0bbc WudfPf - ok
16:42:32.0899 0x0bbc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\drivers\WUDFRd.sys
16:42:32.0946 0x0bbc WUDFRd - ok
16:42:32.0962 0x0bbc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:42:32.0977 0x0bbc wudfsvc - ok
16:42:33.0040 0x0bbc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
16:42:33.0071 0x0bbc WwanSvc - ok
16:42:33.0102 0x0bbc ================ Scan global ===============================
16:42:33.0133 0x0bbc [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
16:42:33.0180 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0227 0x0bbc [ E80CA72FA43BF258E72C408CEF9839BE, 06482E80F43AD91F4B9E5919A0C50219382213D59EACF9FBAE7AFD7A321F30D2 ] C:\Windows\system32\winsrv.dll
16:42:33.0258 0x0bbc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:42:33.0321 0x0bbc [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
16:42:33.0352 0x0bbc [ Global ] - ok
16:42:33.0352 0x0bbc ================ Scan MBR ==================================
16:42:33.0387 0x0bbc [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:42:35.0363 0x0bbc \Device\Harddisk0\DR0 - ok
16:42:35.0363 0x0bbc ================ Scan VBR ==================================
16:42:35.0382 0x0bbc [ 7019B8CC0DC29E0FEB9B03C67B44EE2D ] \Device\Harddisk0\DR0\Partition1
16:42:35.0385 0x0bbc \Device\Harddisk0\DR0\Partition1 - ok
16:42:35.0401 0x0bbc [ 2340C985AA75654C7597E3A6EA3097D0 ] \Device\Harddisk0\DR0\Partition2
16:42:35.0463 0x0bbc \Device\Harddisk0\DR0\Partition2 - ok
16:42:35.0479 0x0bbc ================ Scan generic autorun ======================
16:42:35.0479 0x0bbc SynTPEnh - ok
16:42:36.0785 0x0bbc [ 8AFCB48CAD2A0AC051FBDEB7289BC0EE, ACBD119E608A3634E869E26DEA9DC5B7870E3E6C4B762BF04B6BFF40E2460847 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:42:37.0315 0x0bbc RtHDVCpl - ok
16:42:37.0954 0x0bbc [ E93736524C401B8F7654806DB82FC050, 72574A5B324095C2518A63B8D156EC375F832045CDDB343FCB564A6AB2B3B26E ] C:\Program Files\Dell\QuickSet\QuickSet.exe
16:42:38.0017 0x0bbc QuickSet - ok
16:42:38.0403 0x0bbc [ 35BA4E6632BA690EA6421C1E03537D0E, 99D6B4DB12ABE3A7F44AB1B2D626978E85231185AE280D9516986027BC8385CB ] c:\Program Files\Microsoft Security Client\msseces.exe
16:42:38.0575 0x0bbc MSC - ok
16:42:38.0809 0x0bbc [ 77AC8322178FB8F3117CDD3B6DC6E126, 2786198EE920D7788FA0DE376231D4E42AB68F6D5A1E87FAC1F3D7424D1ED493 ] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
16:42:38.0824 0x0bbc StartCCC - ok
16:42:39.0029 0x0bbc [ 80B62FF105908EC9E4B072AFB1CFC824, B124F309CB42167D59097DB3346487A26D431EC05694CECF19F0C5938312B3E8 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
16:42:39.0060 0x0bbc Dell Webcam Central - ok
16:42:39.0123 0x0bbc [ 00D1FB0073B4A8BD2989EA8FF4CC792B, 001A26FF51BF6BABF6325983F512CF8D84CADEE1CA36F166A41702D94C1B0841 ] c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
16:42:39.0123 0x0bbc DellSupportCenter - ok
16:42:39.0263 0x0bbc [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:42:39.0263 0x0bbc HP Software Update - ok
16:42:39.0357 0x0bbc [ EABCB3EBAB22B981A09DBC1E65D05E96, 9980D2ADF2CB726DC6832A7D8697605608C3C8121DC631134735386A402896A8 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe
16:42:39.0867 0x0bbc "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" - ok
16:42:40.0243 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0486 0x0bbc Sidebar - ok
16:42:40.0533 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0595 0x0bbc mctadmin - ok
16:42:40.0657 0x0bbc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:42:40.0673 0x0bbc Sidebar - ok
16:42:40.0720 0x0bbc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:42:40.0735 0x0bbc mctadmin - ok
16:42:40.0735 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:41.0746 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:42.0756 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:43.0766 0x0bbc Waiting for KSN requests completion. In queue: 12
16:42:44.0828 0x0bbc AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.8.204.0 ), 0x61000 ( enabled : updated )
16:42:44.0943 0x0bbc AV detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41000 ( enabled : updated )
16:42:44.0943 0x0bbc FW detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 7.0.5.1 ), 0x41010 ( enabled )
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0bbc Scan finished
16:42:47.0846 0x0bbc ============================================================
16:42:47.0846 0x0b68 Detected object count: 0
16:42:47.0846 0x0b68 Actual detected object count: 0
16:43:11.0431 0x1770 Deinitialize success
tremmor
Well-Known Member
OTL Extras logfile created on: 9/10/2015 1:12:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\sherry
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 40.92% Memory free
7.73 Gb Paging File | 5.44 Gb Available in Paging File | 70.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 349.58 Gb Free Space | 77.51% Space Free | Partition Type: NTFS
Drive E: | 29.23 Gb Total Space | 25.25 Gb Free Space | 86.37% Space Free | Partition Type: FAT32
Computer Name: SHERRY-PC | User Name: Sherry | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{010D9C61-9675-49F9-9FE3-D7031B129581}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0DC34E24-3A15-4CEB-8D7E-37B39C32DF22}" = rport=137 | protocol=17 | dir=out | app=system |
"{16791724-F1D0-4DE5-9DBA-874B43AB7184}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{17C03DC7-622E-4BD9-8CDE-8D6F0073FAE2}" = lport=139 | protocol=6 | dir=in | app=system |
"{23D0DF7D-7054-4D86-B0CD-255848604355}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2D351FB8-E734-4129-9929-909E0BDBFD5E}" = lport=137 | protocol=17 | dir=in | app=system |
"{3E192379-8CC0-48A8-8BD3-3B149DA1F329}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4E70C7DF-7903-4AB7-BCB2-AFC6CF4603E8}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{5040490D-A0D2-4F32-B3D8-5D7653FB8116}" = lport=138 | protocol=17 | dir=in | app=system |
"{5A4FD0DF-2551-4C71-9FB6-82A99E2E2A8A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{71E471E7-3968-4228-98D8-3D4D4E2B6E7E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{825213B2-5F5C-40AF-B160-2267B975BE8B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{872FACA6-6E0E-46D8-8CFE-922C84530FF9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9AD56B06-0706-45E6-A9C5-234C086AD420}" = rport=445 | protocol=6 | dir=out | app=system |
"{9FA79655-86ED-4814-B0B9-34D653819470}" = lport=445 | protocol=6 | dir=in | app=system |
"{A6D58A6B-8F4A-41A2-A75A-FDDBB68A6AC7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A73B4ACC-2A7B-4C9A-B2E9-6BC450936A80}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{A7B05CE4-B70E-4692-8315-53DE18EAD5AC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AB6823AE-9BE5-4547-96E9-71111D50345E}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B67479A7-5BAA-4538-9D1B-5BC24776D5EE}" = rport=138 | protocol=17 | dir=out | app=system |
"{B7270EEE-05D7-4641-AA81-A03719899B58}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BCD6B17C-5985-42E4-BEFA-BC404B8E8E72}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BED48590-B310-4099-81C1-227E2DF6B45A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C23D946D-DD9A-4A30-8F6D-9F2F76087D96}" = rport=139 | protocol=6 | dir=out | app=system |
"{CADDFC20-FE9E-4AF5-B686-39B3A7737822}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E1B52909-0C74-4C43-B1C1-F68E96B8B9BE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F813990F-E4DC-4B34-99FC-EA7F8010611A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0150FEBE-C27A-4B72-8445-04653739BFA8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0D77DA43-2752-478D-962F-FFCA3A67424D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1784038A-CACA-435D-A93B-B41C88D42BB6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{37AB8CD3-EA30-4861-AE47-83E54E9F7B7C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4468BC93-1EDB-43C8-8506-A5A6337ADE0F}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{54A89F97-EA41-49D9-85A8-DEF20431D3B6}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{6021D90B-402D-44AA-BFC7-F0DE5C1AF7F6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{686F8FE9-BDF6-494E-B649-9D3B6C402008}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6B2D2DA1-E045-49E1-AE30-A7AEC3FFFC58}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6BE9F8E7-1BAA-45B9-ADB0-608A65733E96}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CFEB5CC-F447-4DB5-82F2-574FFD998DF3}" = protocol=1 | dir=out | [email protected],-28544 |
"{6D434A1C-984B-4F20-8DF7-05B800D1D316}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{771B5BF0-E0FF-463E-B95C-E79AA45C4F0E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7F18C32C-BE87-48EC-B9E6-210E1E553922}" = protocol=1 | dir=in | [email protected],-28543 |
"{94A023DF-F268-44BE-919B-B498D329E5C3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9BAC2F24-FA1E-4654-913D-303985AB4FD0}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A15238F3-70C5-4FBB-A898-8275612A2CD0}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{AA3ED6FE-31C3-4700-B678-5F446663C8D6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AF970BDD-3A4B-4F6F-8432-9D3BA45615B5}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\sendafax.exe |
"{B162B481-E7C6-4BF1-BFA9-3517E642E53E}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{B2573EBD-96AD-496F-89EC-41CFA47989AB}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{B6C427AE-C945-4E38-9DB4-CFD8230351AA}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\devicesetup.exe |
"{BA9AC278-0742-406E-8EAD-A57161B7A644}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BD942E74-8428-4F91-A48F-BC6B20201AFC}" = protocol=58 | dir=out | [email protected],-28546 |
"{D36C7DEB-D3F7-45BD-A403-99EA39DD3347}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicator.exe |
"{D4964CEB-79E1-4764-A361-086FBDCC6B08}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicatorcom.exe |
"{D9211E07-454A-43B2-A4BC-19D7E6D84E2E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D968E0C1-3AD3-4D24-BED5-94314D3B09CE}" = protocol=6 | dir=out | app=system |
"{E2E82BBD-6E9E-4CAB-8C3F-105CFF4CCB3E}" = protocol=58 | dir=in | [email protected],-28545 |
"{F0289D89-88F7-4F7D-9E7D-B791D6871A86}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\digitalwizards.exe |
"{F67709B3-FD5F-48C1-ACDE-251AE4F677D7}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\faxapplications.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{26A24AE4-039D-4CA4-87B4-2F86416045FF}" = Java(TM) 6 Update 45 (64-bit)
"{2BF5E9CC-C55D-4B0F-ACAF-FFE77F333CD8}" = HP Officejet Pro 8600 Product Improvement Study
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Intel(R) Turbo Boost Technology Monitor
"{3B6074E5-5823-9363-851C-25F9DDB1E477}" = ccc-utility64
"{791A06E2-340F-43B0-8FAB-62D151339362}" = HP Officejet Pro 8600 Basic Device Software
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = WIDCOMM Bluetooth Software
"{C73A3942-84C8-4597-9F9B-EE227DCBA758}" = Dell Dock
"{D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}" = Microsoft Security Client
"{FA945868-397C-44F2-A1A4-53244A1D64B3}" = Microsoft Mouse and Keyboard Center
"CCleaner" = CCleaner
"DW WLAN Card" = DW WLAN Card
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Pale Moon 25.7.0 (x64 en-US)" = Pale Moon 25.7.0 (x64 en-US)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1170BEDA-359C-4202-A5BF-CCA919E7B917}" = CCC Help Danish
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{15FFEF06-4FF5-4192-B050-C685068D9F95}" = VIPRE Internet Security
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{19DE6032-D3EE-D664-FA63-452431599161}" = CCC Help Norwegian
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24BBD0E3-4579-9EF5-6081-DE56129D093A}" = Catalyst Control Center InstallProxy
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{2DA5F129-11AC-4F11-8188-B2F07EAAC20A}" = Cozi
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3611CA6C-5FCA-4900-A329-6A118123CCFC}" = Bing Bar
"{39EFAC6A-639E-3CE3-2B62-EF8518AD8326}" = CCC Help Chinese Traditional
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{3E7E6F1E-7376-475A-8BC9-E3126B20CF5F}" = Citrix Online Launcher
"{3ED3BC2E-141A-BFB0-D48C-E8DDA3A461E7}" = ccc-core-static
"{40AE01BE-A290-4FFB-8DAB-C624C17DC87E}" = Vegas Movie Studio HD Platinum 10.0
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{46235FF7-2CBE-4A84-BEDA-87348D1F7850}" = HP Officejet Pro 8600 Help
"{57B21E43-056F-9E58-8774-20E8A89B5347}" = CCC Help English
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65A30A52-B4CA-006E-8750-8366C9693C77}" = CCC Help Russian
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{66C5E9B6-2D87-D7E8-9B8F-BFCAD7105AD1}" = Catalyst Control Center Graphics Previews Common
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.9
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{6F3AB64A-CC2D-C533-C5CD-30420E2DC578}" = Skins
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71E015CC-52DA-4536-AF0C-C643BA1E45FB}" = Catalyst Control Center - Branding
"{78AE5FAE-C641-311B-9CC8-CEBB87FAF795}" = CCC Help Japanese
"{7BCA9417-A611-CC28-9471-6250EC9666EB}" = Catalyst Control Center Graphics Full Existing
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C28F118-03B5-4756-F83C-C31C851D1FF3}" = CCC Help Chinese Standard
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{95E58BA1-2E10-B49E-283C-3C170C098149}" = CCC Help Dutch
"{9635D462-1B39-E171-BA1C-32A036572251}" = CCC Help Spanish
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A4147C0B-A939-B87E-A6AB-71837A52AFEC}" = Catalyst Control Center Core Implementation
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8ACDFFF-093C-8898-E1B8-9388277CD805}" = CCC Help Portuguese
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.5
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{B47669BF-36B7-B33B-69C9-A2E7AAA36017}" = CCC Help German
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C1D1FC57-3EB9-4B21-BCA3-F1C927508200}" = VIPRE Internet Security
"{C52D6FF6-308B-2395-72EE-CA72216F8618}" = CCC Help Korean
"{C5422D6A-6CC4-82CA-C28F-249DC0C846B5}" = Catalyst Control Center Graphics Full New
"{CA6BCA2F-EDEB-408F-850B-31404BE16A61}" = I.R.I.S. OCR
"{CEC73671-6AFB-CC2B-203B-2A00E8901755}" = Catalyst Control Center Graphics Previews Vista
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{D7058431-BC8D-71B7-136F-6FFA32C5C7C2}" = CCC Help Swedish
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EBE939ED-4612-45FD-A39E-77AC199C4273}" = Absolute Notifier
"{ECBA603F-259F-9C33-85DE-0D7E3FCAB407}" = CCC Help Finnish
"{EE14D3B8-D4A6-EEC6-A37E-FC77CBF6A5FE}" = CCC Help Italian
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F26E3E58-D6E5-3C61-7A7C-20D61017C26A}" = CCC Help French
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FB9F4BEA-283B-18FA-3DA4-B757214528F3}" = Catalyst Control Center Localization All
"{FE60B87C-63A2-4A45-AC06-FFEFD5DB7846}_is1" = Online Vault
"{FE6D5F28-4C11-4197-66CA-48AA4AECD833}" = Catalyst Control Center Graphics Light
"acozyfire_3130676" = acozyfire_3130676 Screen Saver
"Adobe Flash Player ActiveX" = Adobe Flash Player 18 ActiveX
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Citrix Web Client" = Citrix Web Client
"Coupon Printer for Windows5.0.1.4" = Coupon Printer for Windows
"Dell Dock" = Dell Dock
"Dell Webcam Central" = Dell Webcam Central
"Google Chrome" = Google Chrome
"GoToAssist" = GoToAssist 8.0.0.514
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.1.8.1057
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"ShopAtHome.com BrowserAppCore Service Chrome" = ShopAtHome.com BrowserAppCore Service Chrome
"springbutterflies_3042993" = springbutterflies_3042993 Screen Saver
"townandcountrychristmas_3116234" = townandcountrychristmas_3116234 Screen Saver
"WildTangent dell Master Uninstall" = WildTangent Games
"WinLiveSuite_Wave3" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"GoToMeeting" = GoToMeeting 7.2.5.3356
"Juniper_Setup_Client" = Juniper Networks, Inc. Setup Client
"Juniper_Term_Services" = Juniper Terminal Services Client
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 9/9/2015 7:52:28 AM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program IEXPLORE.EXE version 11.0.9600.17840 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1540 Start
Time: 01d0eaf5eba20445 Termination Time: 0 Application Path: C:\Program Files\Internet
Explorer\IEXPLORE.EXE Report Id: 388bfe87-56e9-11e5-84b0-c0cb38bd89d1
Error - 9/9/2015 9:00:59 AM | Computer Name = Sherry-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "C:\Program Files (x86)\Windows
Live\Photo Gallery\MovieMaker.Exe".Error in manifest or policy file "C:\Program
Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.
Error - 9/9/2015 4:48:23 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/9/2015 7:07:45 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:25:33 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:32:21 PM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program NOTEPAD.EXE version 6.1.7601.18917 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1dc0 Start
Time: 01d0ebe63309445e Termination Time: 0 Application Path: C:\Windows\system32\NOTEPAD.EXE
Report
Id: 7988c923-57d9-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:39:46 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Explorer.EXE, version: 6.1.7601.17567,
time stamp: 0x4d672ee4 Faulting module name: BtwCP.dll, version: 6.2.1.1100, time
stamp: 0x4b3a7f94 Exception code: 0xc0000005 Fault offset: 0x000000000001ec59 Faulting
process id: 0x1268 Faulting application start time: 0x01d0ebe4669f1626 Faulting application
path: C:\Windows\Explorer.EXE Faulting module path: c:\Program Files\WIDCOMM\Bluetooth
Software\BtwCP.dll Report Id: 8b14fc2e-57da-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:50:34 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: svchost.exe_ProfSvc, version: 6.1.7600.16385,
time stamp: 0x4a5bc3c1 Faulting module name: unknown, version: 0.0.0.0, time stamp:
0x00000000 Exception code: 0xc0000005 Fault offset: 0x000000000a026250 Faulting process
id: 0x410 Faulting application start time: 0x01d0ebe45259903c Faulting application
path: C:\Windows\system32\svchost.exe Faulting module path: unknown Report Id: 0d3b9f36-57dc-11e5-9315-f04da2622c8a
Error - 9/10/2015 1:06:29 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 1:11:38 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
[ Dell Events ]
Error - 1/6/2011 6:22:42 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 8/22/2011 7:52:13 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
[ System Events ]
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7032
Description = The Service Control Manager tried to take a corrective action (Restart
the service) after the unexpected termination of the Server service, but this action
failed with the following error: %%1056
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 1:00:21 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:00:51 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:08:29 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:31 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:49 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for Start with the following error:
%%5
Error - 9/10/2015 1:10:18 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureCommand with the following
error: %%5
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = E:\sherry
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 40.92% Memory free
7.73 Gb Paging File | 5.44 Gb Available in Paging File | 70.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 349.58 Gb Free Space | 77.51% Space Free | Partition Type: NTFS
Drive E: | 29.23 Gb Total Space | 25.25 Gb Free Space | 86.37% Space Free | Partition Type: FAT32
Computer Name: SHERRY-PC | User Name: Sherry | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{010D9C61-9675-49F9-9FE3-D7031B129581}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0DC34E24-3A15-4CEB-8D7E-37B39C32DF22}" = rport=137 | protocol=17 | dir=out | app=system |
"{16791724-F1D0-4DE5-9DBA-874B43AB7184}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{17C03DC7-622E-4BD9-8CDE-8D6F0073FAE2}" = lport=139 | protocol=6 | dir=in | app=system |
"{23D0DF7D-7054-4D86-B0CD-255848604355}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2D351FB8-E734-4129-9929-909E0BDBFD5E}" = lport=137 | protocol=17 | dir=in | app=system |
"{3E192379-8CC0-48A8-8BD3-3B149DA1F329}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4E70C7DF-7903-4AB7-BCB2-AFC6CF4603E8}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{5040490D-A0D2-4F32-B3D8-5D7653FB8116}" = lport=138 | protocol=17 | dir=in | app=system |
"{5A4FD0DF-2551-4C71-9FB6-82A99E2E2A8A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{71E471E7-3968-4228-98D8-3D4D4E2B6E7E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{825213B2-5F5C-40AF-B160-2267B975BE8B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{872FACA6-6E0E-46D8-8CFE-922C84530FF9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9AD56B06-0706-45E6-A9C5-234C086AD420}" = rport=445 | protocol=6 | dir=out | app=system |
"{9FA79655-86ED-4814-B0B9-34D653819470}" = lport=445 | protocol=6 | dir=in | app=system |
"{A6D58A6B-8F4A-41A2-A75A-FDDBB68A6AC7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A73B4ACC-2A7B-4C9A-B2E9-6BC450936A80}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{A7B05CE4-B70E-4692-8315-53DE18EAD5AC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AB6823AE-9BE5-4547-96E9-71111D50345E}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B67479A7-5BAA-4538-9D1B-5BC24776D5EE}" = rport=138 | protocol=17 | dir=out | app=system |
"{B7270EEE-05D7-4641-AA81-A03719899B58}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BCD6B17C-5985-42E4-BEFA-BC404B8E8E72}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BED48590-B310-4099-81C1-227E2DF6B45A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C23D946D-DD9A-4A30-8F6D-9F2F76087D96}" = rport=139 | protocol=6 | dir=out | app=system |
"{CADDFC20-FE9E-4AF5-B686-39B3A7737822}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E1B52909-0C74-4C43-B1C1-F68E96B8B9BE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F813990F-E4DC-4B34-99FC-EA7F8010611A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0150FEBE-C27A-4B72-8445-04653739BFA8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0D77DA43-2752-478D-962F-FFCA3A67424D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1784038A-CACA-435D-A93B-B41C88D42BB6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{37AB8CD3-EA30-4861-AE47-83E54E9F7B7C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4468BC93-1EDB-43C8-8506-A5A6337ADE0F}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{54A89F97-EA41-49D9-85A8-DEF20431D3B6}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{6021D90B-402D-44AA-BFC7-F0DE5C1AF7F6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{686F8FE9-BDF6-494E-B649-9D3B6C402008}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6B2D2DA1-E045-49E1-AE30-A7AEC3FFFC58}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6BE9F8E7-1BAA-45B9-ADB0-608A65733E96}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CFEB5CC-F447-4DB5-82F2-574FFD998DF3}" = protocol=1 | dir=out | [email protected],-28544 |
"{6D434A1C-984B-4F20-8DF7-05B800D1D316}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{771B5BF0-E0FF-463E-B95C-E79AA45C4F0E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7F18C32C-BE87-48EC-B9E6-210E1E553922}" = protocol=1 | dir=in | [email protected],-28543 |
"{94A023DF-F268-44BE-919B-B498D329E5C3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9BAC2F24-FA1E-4654-913D-303985AB4FD0}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A15238F3-70C5-4FBB-A898-8275612A2CD0}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{AA3ED6FE-31C3-4700-B678-5F446663C8D6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AF970BDD-3A4B-4F6F-8432-9D3BA45615B5}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\sendafax.exe |
"{B162B481-E7C6-4BF1-BFA9-3517E642E53E}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{B2573EBD-96AD-496F-89EC-41CFA47989AB}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{B6C427AE-C945-4E38-9DB4-CFD8230351AA}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\devicesetup.exe |
"{BA9AC278-0742-406E-8EAD-A57161B7A644}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BD942E74-8428-4F91-A48F-BC6B20201AFC}" = protocol=58 | dir=out | [email protected],-28546 |
"{D36C7DEB-D3F7-45BD-A403-99EA39DD3347}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicator.exe |
"{D4964CEB-79E1-4764-A361-086FBDCC6B08}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicatorcom.exe |
"{D9211E07-454A-43B2-A4BC-19D7E6D84E2E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D968E0C1-3AD3-4D24-BED5-94314D3B09CE}" = protocol=6 | dir=out | app=system |
"{E2E82BBD-6E9E-4CAB-8C3F-105CFF4CCB3E}" = protocol=58 | dir=in | [email protected],-28545 |
"{F0289D89-88F7-4F7D-9E7D-B791D6871A86}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\digitalwizards.exe |
"{F67709B3-FD5F-48C1-ACDE-251AE4F677D7}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\faxapplications.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{26A24AE4-039D-4CA4-87B4-2F86416045FF}" = Java(TM) 6 Update 45 (64-bit)
"{2BF5E9CC-C55D-4B0F-ACAF-FFE77F333CD8}" = HP Officejet Pro 8600 Product Improvement Study
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Intel(R) Turbo Boost Technology Monitor
"{3B6074E5-5823-9363-851C-25F9DDB1E477}" = ccc-utility64
"{791A06E2-340F-43B0-8FAB-62D151339362}" = HP Officejet Pro 8600 Basic Device Software
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = WIDCOMM Bluetooth Software
"{C73A3942-84C8-4597-9F9B-EE227DCBA758}" = Dell Dock
"{D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}" = Microsoft Security Client
"{FA945868-397C-44F2-A1A4-53244A1D64B3}" = Microsoft Mouse and Keyboard Center
"CCleaner" = CCleaner
"DW WLAN Card" = DW WLAN Card
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Pale Moon 25.7.0 (x64 en-US)" = Pale Moon 25.7.0 (x64 en-US)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1170BEDA-359C-4202-A5BF-CCA919E7B917}" = CCC Help Danish
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{15FFEF06-4FF5-4192-B050-C685068D9F95}" = VIPRE Internet Security
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{19DE6032-D3EE-D664-FA63-452431599161}" = CCC Help Norwegian
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24BBD0E3-4579-9EF5-6081-DE56129D093A}" = Catalyst Control Center InstallProxy
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{2DA5F129-11AC-4F11-8188-B2F07EAAC20A}" = Cozi
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3611CA6C-5FCA-4900-A329-6A118123CCFC}" = Bing Bar
"{39EFAC6A-639E-3CE3-2B62-EF8518AD8326}" = CCC Help Chinese Traditional
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{3E7E6F1E-7376-475A-8BC9-E3126B20CF5F}" = Citrix Online Launcher
"{3ED3BC2E-141A-BFB0-D48C-E8DDA3A461E7}" = ccc-core-static
"{40AE01BE-A290-4FFB-8DAB-C624C17DC87E}" = Vegas Movie Studio HD Platinum 10.0
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{46235FF7-2CBE-4A84-BEDA-87348D1F7850}" = HP Officejet Pro 8600 Help
"{57B21E43-056F-9E58-8774-20E8A89B5347}" = CCC Help English
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65A30A52-B4CA-006E-8750-8366C9693C77}" = CCC Help Russian
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{66C5E9B6-2D87-D7E8-9B8F-BFCAD7105AD1}" = Catalyst Control Center Graphics Previews Common
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.9
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{6F3AB64A-CC2D-C533-C5CD-30420E2DC578}" = Skins
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71E015CC-52DA-4536-AF0C-C643BA1E45FB}" = Catalyst Control Center - Branding
"{78AE5FAE-C641-311B-9CC8-CEBB87FAF795}" = CCC Help Japanese
"{7BCA9417-A611-CC28-9471-6250EC9666EB}" = Catalyst Control Center Graphics Full Existing
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C28F118-03B5-4756-F83C-C31C851D1FF3}" = CCC Help Chinese Standard
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{95E58BA1-2E10-B49E-283C-3C170C098149}" = CCC Help Dutch
"{9635D462-1B39-E171-BA1C-32A036572251}" = CCC Help Spanish
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A4147C0B-A939-B87E-A6AB-71837A52AFEC}" = Catalyst Control Center Core Implementation
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8ACDFFF-093C-8898-E1B8-9388277CD805}" = CCC Help Portuguese
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.5
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{B47669BF-36B7-B33B-69C9-A2E7AAA36017}" = CCC Help German
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C1D1FC57-3EB9-4B21-BCA3-F1C927508200}" = VIPRE Internet Security
"{C52D6FF6-308B-2395-72EE-CA72216F8618}" = CCC Help Korean
"{C5422D6A-6CC4-82CA-C28F-249DC0C846B5}" = Catalyst Control Center Graphics Full New
"{CA6BCA2F-EDEB-408F-850B-31404BE16A61}" = I.R.I.S. OCR
"{CEC73671-6AFB-CC2B-203B-2A00E8901755}" = Catalyst Control Center Graphics Previews Vista
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{D7058431-BC8D-71B7-136F-6FFA32C5C7C2}" = CCC Help Swedish
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EBE939ED-4612-45FD-A39E-77AC199C4273}" = Absolute Notifier
"{ECBA603F-259F-9C33-85DE-0D7E3FCAB407}" = CCC Help Finnish
"{EE14D3B8-D4A6-EEC6-A37E-FC77CBF6A5FE}" = CCC Help Italian
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F26E3E58-D6E5-3C61-7A7C-20D61017C26A}" = CCC Help French
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FB9F4BEA-283B-18FA-3DA4-B757214528F3}" = Catalyst Control Center Localization All
"{FE60B87C-63A2-4A45-AC06-FFEFD5DB7846}_is1" = Online Vault
"{FE6D5F28-4C11-4197-66CA-48AA4AECD833}" = Catalyst Control Center Graphics Light
"acozyfire_3130676" = acozyfire_3130676 Screen Saver
"Adobe Flash Player ActiveX" = Adobe Flash Player 18 ActiveX
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Citrix Web Client" = Citrix Web Client
"Coupon Printer for Windows5.0.1.4" = Coupon Printer for Windows
"Dell Dock" = Dell Dock
"Dell Webcam Central" = Dell Webcam Central
"Google Chrome" = Google Chrome
"GoToAssist" = GoToAssist 8.0.0.514
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.1.8.1057
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"ShopAtHome.com BrowserAppCore Service Chrome" = ShopAtHome.com BrowserAppCore Service Chrome
"springbutterflies_3042993" = springbutterflies_3042993 Screen Saver
"townandcountrychristmas_3116234" = townandcountrychristmas_3116234 Screen Saver
"WildTangent dell Master Uninstall" = WildTangent Games
"WinLiveSuite_Wave3" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"GoToMeeting" = GoToMeeting 7.2.5.3356
"Juniper_Setup_Client" = Juniper Networks, Inc. Setup Client
"Juniper_Term_Services" = Juniper Terminal Services Client
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 9/9/2015 7:52:28 AM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program IEXPLORE.EXE version 11.0.9600.17840 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1540 Start
Time: 01d0eaf5eba20445 Termination Time: 0 Application Path: C:\Program Files\Internet
Explorer\IEXPLORE.EXE Report Id: 388bfe87-56e9-11e5-84b0-c0cb38bd89d1
Error - 9/9/2015 9:00:59 AM | Computer Name = Sherry-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "C:\Program Files (x86)\Windows
Live\Photo Gallery\MovieMaker.Exe".Error in manifest or policy file "C:\Program
Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.
Error - 9/9/2015 4:48:23 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/9/2015 7:07:45 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:25:33 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:32:21 PM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program NOTEPAD.EXE version 6.1.7601.18917 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1dc0 Start
Time: 01d0ebe63309445e Termination Time: 0 Application Path: C:\Windows\system32\NOTEPAD.EXE
Report
Id: 7988c923-57d9-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:39:46 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Explorer.EXE, version: 6.1.7601.17567,
time stamp: 0x4d672ee4 Faulting module name: BtwCP.dll, version: 6.2.1.1100, time
stamp: 0x4b3a7f94 Exception code: 0xc0000005 Fault offset: 0x000000000001ec59 Faulting
process id: 0x1268 Faulting application start time: 0x01d0ebe4669f1626 Faulting application
path: C:\Windows\Explorer.EXE Faulting module path: c:\Program Files\WIDCOMM\Bluetooth
Software\BtwCP.dll Report Id: 8b14fc2e-57da-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:50:34 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: svchost.exe_ProfSvc, version: 6.1.7600.16385,
time stamp: 0x4a5bc3c1 Faulting module name: unknown, version: 0.0.0.0, time stamp:
0x00000000 Exception code: 0xc0000005 Fault offset: 0x000000000a026250 Faulting process
id: 0x410 Faulting application start time: 0x01d0ebe45259903c Faulting application
path: C:\Windows\system32\svchost.exe Faulting module path: unknown Report Id: 0d3b9f36-57dc-11e5-9315-f04da2622c8a
Error - 9/10/2015 1:06:29 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 1:11:38 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
[ Dell Events ]
Error - 1/6/2011 6:22:42 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 8/22/2011 7:52:13 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
[ System Events ]
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7032
Description = The Service Control Manager tried to take a corrective action (Restart
the service) after the unexpected termination of the Server service, but this action
failed with the following error: %%1056
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 1:00:21 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:00:51 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:08:29 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:31 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:49 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for Start with the following error:
%%5
Error - 9/10/2015 1:10:18 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureCommand with the following
error: %%5
< End of report >
tremmor
Well-Known Member
OTL Extras logfile created on: 9/10/2015 1:12:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\sherry
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 40.92% Memory free
7.73 Gb Paging File | 5.44 Gb Available in Paging File | 70.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 349.58 Gb Free Space | 77.51% Space Free | Partition Type: NTFS
Drive E: | 29.23 Gb Total Space | 25.25 Gb Free Space | 86.37% Space Free | Partition Type: FAT32
Computer Name: SHERRY-PC | User Name: Sherry | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{010D9C61-9675-49F9-9FE3-D7031B129581}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0DC34E24-3A15-4CEB-8D7E-37B39C32DF22}" = rport=137 | protocol=17 | dir=out | app=system |
"{16791724-F1D0-4DE5-9DBA-874B43AB7184}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{17C03DC7-622E-4BD9-8CDE-8D6F0073FAE2}" = lport=139 | protocol=6 | dir=in | app=system |
"{23D0DF7D-7054-4D86-B0CD-255848604355}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2D351FB8-E734-4129-9929-909E0BDBFD5E}" = lport=137 | protocol=17 | dir=in | app=system |
"{3E192379-8CC0-48A8-8BD3-3B149DA1F329}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4E70C7DF-7903-4AB7-BCB2-AFC6CF4603E8}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{5040490D-A0D2-4F32-B3D8-5D7653FB8116}" = lport=138 | protocol=17 | dir=in | app=system |
"{5A4FD0DF-2551-4C71-9FB6-82A99E2E2A8A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{71E471E7-3968-4228-98D8-3D4D4E2B6E7E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{825213B2-5F5C-40AF-B160-2267B975BE8B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{872FACA6-6E0E-46D8-8CFE-922C84530FF9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9AD56B06-0706-45E6-A9C5-234C086AD420}" = rport=445 | protocol=6 | dir=out | app=system |
"{9FA79655-86ED-4814-B0B9-34D653819470}" = lport=445 | protocol=6 | dir=in | app=system |
"{A6D58A6B-8F4A-41A2-A75A-FDDBB68A6AC7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A73B4ACC-2A7B-4C9A-B2E9-6BC450936A80}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{A7B05CE4-B70E-4692-8315-53DE18EAD5AC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AB6823AE-9BE5-4547-96E9-71111D50345E}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B67479A7-5BAA-4538-9D1B-5BC24776D5EE}" = rport=138 | protocol=17 | dir=out | app=system |
"{B7270EEE-05D7-4641-AA81-A03719899B58}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BCD6B17C-5985-42E4-BEFA-BC404B8E8E72}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BED48590-B310-4099-81C1-227E2DF6B45A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C23D946D-DD9A-4A30-8F6D-9F2F76087D96}" = rport=139 | protocol=6 | dir=out | app=system |
"{CADDFC20-FE9E-4AF5-B686-39B3A7737822}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E1B52909-0C74-4C43-B1C1-F68E96B8B9BE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F813990F-E4DC-4B34-99FC-EA7F8010611A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0150FEBE-C27A-4B72-8445-04653739BFA8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0D77DA43-2752-478D-962F-FFCA3A67424D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1784038A-CACA-435D-A93B-B41C88D42BB6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{37AB8CD3-EA30-4861-AE47-83E54E9F7B7C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4468BC93-1EDB-43C8-8506-A5A6337ADE0F}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{54A89F97-EA41-49D9-85A8-DEF20431D3B6}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{6021D90B-402D-44AA-BFC7-F0DE5C1AF7F6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{686F8FE9-BDF6-494E-B649-9D3B6C402008}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6B2D2DA1-E045-49E1-AE30-A7AEC3FFFC58}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6BE9F8E7-1BAA-45B9-ADB0-608A65733E96}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CFEB5CC-F447-4DB5-82F2-574FFD998DF3}" = protocol=1 | dir=out | [email protected],-28544 |
"{6D434A1C-984B-4F20-8DF7-05B800D1D316}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{771B5BF0-E0FF-463E-B95C-E79AA45C4F0E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7F18C32C-BE87-48EC-B9E6-210E1E553922}" = protocol=1 | dir=in | [email protected],-28543 |
"{94A023DF-F268-44BE-919B-B498D329E5C3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9BAC2F24-FA1E-4654-913D-303985AB4FD0}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A15238F3-70C5-4FBB-A898-8275612A2CD0}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{AA3ED6FE-31C3-4700-B678-5F446663C8D6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AF970BDD-3A4B-4F6F-8432-9D3BA45615B5}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\sendafax.exe |
"{B162B481-E7C6-4BF1-BFA9-3517E642E53E}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{B2573EBD-96AD-496F-89EC-41CFA47989AB}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{B6C427AE-C945-4E38-9DB4-CFD8230351AA}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\devicesetup.exe |
"{BA9AC278-0742-406E-8EAD-A57161B7A644}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BD942E74-8428-4F91-A48F-BC6B20201AFC}" = protocol=58 | dir=out | [email protected],-28546 |
"{D36C7DEB-D3F7-45BD-A403-99EA39DD3347}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicator.exe |
"{D4964CEB-79E1-4764-A361-086FBDCC6B08}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicatorcom.exe |
"{D9211E07-454A-43B2-A4BC-19D7E6D84E2E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D968E0C1-3AD3-4D24-BED5-94314D3B09CE}" = protocol=6 | dir=out | app=system |
"{E2E82BBD-6E9E-4CAB-8C3F-105CFF4CCB3E}" = protocol=58 | dir=in | [email protected],-28545 |
"{F0289D89-88F7-4F7D-9E7D-B791D6871A86}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\digitalwizards.exe |
"{F67709B3-FD5F-48C1-ACDE-251AE4F677D7}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\faxapplications.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{26A24AE4-039D-4CA4-87B4-2F86416045FF}" = Java(TM) 6 Update 45 (64-bit)
"{2BF5E9CC-C55D-4B0F-ACAF-FFE77F333CD8}" = HP Officejet Pro 8600 Product Improvement Study
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Intel(R) Turbo Boost Technology Monitor
"{3B6074E5-5823-9363-851C-25F9DDB1E477}" = ccc-utility64
"{791A06E2-340F-43B0-8FAB-62D151339362}" = HP Officejet Pro 8600 Basic Device Software
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = WIDCOMM Bluetooth Software
"{C73A3942-84C8-4597-9F9B-EE227DCBA758}" = Dell Dock
"{D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}" = Microsoft Security Client
"{FA945868-397C-44F2-A1A4-53244A1D64B3}" = Microsoft Mouse and Keyboard Center
"CCleaner" = CCleaner
"DW WLAN Card" = DW WLAN Card
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Pale Moon 25.7.0 (x64 en-US)" = Pale Moon 25.7.0 (x64 en-US)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1170BEDA-359C-4202-A5BF-CCA919E7B917}" = CCC Help Danish
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{15FFEF06-4FF5-4192-B050-C685068D9F95}" = VIPRE Internet Security
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{19DE6032-D3EE-D664-FA63-452431599161}" = CCC Help Norwegian
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24BBD0E3-4579-9EF5-6081-DE56129D093A}" = Catalyst Control Center InstallProxy
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{2DA5F129-11AC-4F11-8188-B2F07EAAC20A}" = Cozi
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3611CA6C-5FCA-4900-A329-6A118123CCFC}" = Bing Bar
"{39EFAC6A-639E-3CE3-2B62-EF8518AD8326}" = CCC Help Chinese Traditional
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{3E7E6F1E-7376-475A-8BC9-E3126B20CF5F}" = Citrix Online Launcher
"{3ED3BC2E-141A-BFB0-D48C-E8DDA3A461E7}" = ccc-core-static
"{40AE01BE-A290-4FFB-8DAB-C624C17DC87E}" = Vegas Movie Studio HD Platinum 10.0
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{46235FF7-2CBE-4A84-BEDA-87348D1F7850}" = HP Officejet Pro 8600 Help
"{57B21E43-056F-9E58-8774-20E8A89B5347}" = CCC Help English
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65A30A52-B4CA-006E-8750-8366C9693C77}" = CCC Help Russian
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{66C5E9B6-2D87-D7E8-9B8F-BFCAD7105AD1}" = Catalyst Control Center Graphics Previews Common
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.9
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{6F3AB64A-CC2D-C533-C5CD-30420E2DC578}" = Skins
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71E015CC-52DA-4536-AF0C-C643BA1E45FB}" = Catalyst Control Center - Branding
"{78AE5FAE-C641-311B-9CC8-CEBB87FAF795}" = CCC Help Japanese
"{7BCA9417-A611-CC28-9471-6250EC9666EB}" = Catalyst Control Center Graphics Full Existing
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C28F118-03B5-4756-F83C-C31C851D1FF3}" = CCC Help Chinese Standard
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{95E58BA1-2E10-B49E-283C-3C170C098149}" = CCC Help Dutch
"{9635D462-1B39-E171-BA1C-32A036572251}" = CCC Help Spanish
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A4147C0B-A939-B87E-A6AB-71837A52AFEC}" = Catalyst Control Center Core Implementation
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8ACDFFF-093C-8898-E1B8-9388277CD805}" = CCC Help Portuguese
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.5
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{B47669BF-36B7-B33B-69C9-A2E7AAA36017}" = CCC Help German
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C1D1FC57-3EB9-4B21-BCA3-F1C927508200}" = VIPRE Internet Security
"{C52D6FF6-308B-2395-72EE-CA72216F8618}" = CCC Help Korean
"{C5422D6A-6CC4-82CA-C28F-249DC0C846B5}" = Catalyst Control Center Graphics Full New
"{CA6BCA2F-EDEB-408F-850B-31404BE16A61}" = I.R.I.S. OCR
"{CEC73671-6AFB-CC2B-203B-2A00E8901755}" = Catalyst Control Center Graphics Previews Vista
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{D7058431-BC8D-71B7-136F-6FFA32C5C7C2}" = CCC Help Swedish
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EBE939ED-4612-45FD-A39E-77AC199C4273}" = Absolute Notifier
"{ECBA603F-259F-9C33-85DE-0D7E3FCAB407}" = CCC Help Finnish
"{EE14D3B8-D4A6-EEC6-A37E-FC77CBF6A5FE}" = CCC Help Italian
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F26E3E58-D6E5-3C61-7A7C-20D61017C26A}" = CCC Help French
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FB9F4BEA-283B-18FA-3DA4-B757214528F3}" = Catalyst Control Center Localization All
"{FE60B87C-63A2-4A45-AC06-FFEFD5DB7846}_is1" = Online Vault
"{FE6D5F28-4C11-4197-66CA-48AA4AECD833}" = Catalyst Control Center Graphics Light
"acozyfire_3130676" = acozyfire_3130676 Screen Saver
"Adobe Flash Player ActiveX" = Adobe Flash Player 18 ActiveX
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Citrix Web Client" = Citrix Web Client
"Coupon Printer for Windows5.0.1.4" = Coupon Printer for Windows
"Dell Dock" = Dell Dock
"Dell Webcam Central" = Dell Webcam Central
"Google Chrome" = Google Chrome
"GoToAssist" = GoToAssist 8.0.0.514
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.1.8.1057
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"ShopAtHome.com BrowserAppCore Service Chrome" = ShopAtHome.com BrowserAppCore Service Chrome
"springbutterflies_3042993" = springbutterflies_3042993 Screen Saver
"townandcountrychristmas_3116234" = townandcountrychristmas_3116234 Screen Saver
"WildTangent dell Master Uninstall" = WildTangent Games
"WinLiveSuite_Wave3" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"GoToMeeting" = GoToMeeting 7.2.5.3356
"Juniper_Setup_Client" = Juniper Networks, Inc. Setup Client
"Juniper_Term_Services" = Juniper Terminal Services Client
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 9/9/2015 7:52:28 AM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program IEXPLORE.EXE version 11.0.9600.17840 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1540 Start
Time: 01d0eaf5eba20445 Termination Time: 0 Application Path: C:\Program Files\Internet
Explorer\IEXPLORE.EXE Report Id: 388bfe87-56e9-11e5-84b0-c0cb38bd89d1
Error - 9/9/2015 9:00:59 AM | Computer Name = Sherry-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "C:\Program Files (x86)\Windows
Live\Photo Gallery\MovieMaker.Exe".Error in manifest or policy file "C:\Program
Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.
Error - 9/9/2015 4:48:23 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/9/2015 7:07:45 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:25:33 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:32:21 PM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program NOTEPAD.EXE version 6.1.7601.18917 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1dc0 Start
Time: 01d0ebe63309445e Termination Time: 0 Application Path: C:\Windows\system32\NOTEPAD.EXE
Report
Id: 7988c923-57d9-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:39:46 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Explorer.EXE, version: 6.1.7601.17567,
time stamp: 0x4d672ee4 Faulting module name: BtwCP.dll, version: 6.2.1.1100, time
stamp: 0x4b3a7f94 Exception code: 0xc0000005 Fault offset: 0x000000000001ec59 Faulting
process id: 0x1268 Faulting application start time: 0x01d0ebe4669f1626 Faulting application
path: C:\Windows\Explorer.EXE Faulting module path: c:\Program Files\WIDCOMM\Bluetooth
Software\BtwCP.dll Report Id: 8b14fc2e-57da-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:50:34 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: svchost.exe_ProfSvc, version: 6.1.7600.16385,
time stamp: 0x4a5bc3c1 Faulting module name: unknown, version: 0.0.0.0, time stamp:
0x00000000 Exception code: 0xc0000005 Fault offset: 0x000000000a026250 Faulting process
id: 0x410 Faulting application start time: 0x01d0ebe45259903c Faulting application
path: C:\Windows\system32\svchost.exe Faulting module path: unknown Report Id: 0d3b9f36-57dc-11e5-9315-f04da2622c8a
Error - 9/10/2015 1:06:29 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 1:11:38 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
[ Dell Events ]
Error - 1/6/2011 6:22:42 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 8/22/2011 7:52:13 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
[ System Events ]
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7032
Description = The Service Control Manager tried to take a corrective action (Restart
the service) after the unexpected termination of the Server service, but this action
failed with the following error: %%1056
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 1:00:21 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:00:51 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:08:29 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:31 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:49 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for Start with the following error:
%%5
Error - 9/10/2015 1:10:18 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureCommand with the following
error: %%5
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = E:\sherry
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 40.92% Memory free
7.73 Gb Paging File | 5.44 Gb Available in Paging File | 70.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 349.58 Gb Free Space | 77.51% Space Free | Partition Type: NTFS
Drive E: | 29.23 Gb Total Space | 25.25 Gb Free Space | 86.37% Space Free | Partition Type: FAT32
Computer Name: SHERRY-PC | User Name: Sherry | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{010D9C61-9675-49F9-9FE3-D7031B129581}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0DC34E24-3A15-4CEB-8D7E-37B39C32DF22}" = rport=137 | protocol=17 | dir=out | app=system |
"{16791724-F1D0-4DE5-9DBA-874B43AB7184}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{17C03DC7-622E-4BD9-8CDE-8D6F0073FAE2}" = lport=139 | protocol=6 | dir=in | app=system |
"{23D0DF7D-7054-4D86-B0CD-255848604355}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2D351FB8-E734-4129-9929-909E0BDBFD5E}" = lport=137 | protocol=17 | dir=in | app=system |
"{3E192379-8CC0-48A8-8BD3-3B149DA1F329}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4E70C7DF-7903-4AB7-BCB2-AFC6CF4603E8}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{5040490D-A0D2-4F32-B3D8-5D7653FB8116}" = lport=138 | protocol=17 | dir=in | app=system |
"{5A4FD0DF-2551-4C71-9FB6-82A99E2E2A8A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{71E471E7-3968-4228-98D8-3D4D4E2B6E7E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{825213B2-5F5C-40AF-B160-2267B975BE8B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{872FACA6-6E0E-46D8-8CFE-922C84530FF9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9AD56B06-0706-45E6-A9C5-234C086AD420}" = rport=445 | protocol=6 | dir=out | app=system |
"{9FA79655-86ED-4814-B0B9-34D653819470}" = lport=445 | protocol=6 | dir=in | app=system |
"{A6D58A6B-8F4A-41A2-A75A-FDDBB68A6AC7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A73B4ACC-2A7B-4C9A-B2E9-6BC450936A80}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{A7B05CE4-B70E-4692-8315-53DE18EAD5AC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AB6823AE-9BE5-4547-96E9-71111D50345E}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B67479A7-5BAA-4538-9D1B-5BC24776D5EE}" = rport=138 | protocol=17 | dir=out | app=system |
"{B7270EEE-05D7-4641-AA81-A03719899B58}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BCD6B17C-5985-42E4-BEFA-BC404B8E8E72}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BED48590-B310-4099-81C1-227E2DF6B45A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C23D946D-DD9A-4A30-8F6D-9F2F76087D96}" = rport=139 | protocol=6 | dir=out | app=system |
"{CADDFC20-FE9E-4AF5-B686-39B3A7737822}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E1B52909-0C74-4C43-B1C1-F68E96B8B9BE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F813990F-E4DC-4B34-99FC-EA7F8010611A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0150FEBE-C27A-4B72-8445-04653739BFA8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0D77DA43-2752-478D-962F-FFCA3A67424D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1784038A-CACA-435D-A93B-B41C88D42BB6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{37AB8CD3-EA30-4861-AE47-83E54E9F7B7C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4468BC93-1EDB-43C8-8506-A5A6337ADE0F}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{54A89F97-EA41-49D9-85A8-DEF20431D3B6}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{6021D90B-402D-44AA-BFC7-F0DE5C1AF7F6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{686F8FE9-BDF6-494E-B649-9D3B6C402008}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6B2D2DA1-E045-49E1-AE30-A7AEC3FFFC58}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6BE9F8E7-1BAA-45B9-ADB0-608A65733E96}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CFEB5CC-F447-4DB5-82F2-574FFD998DF3}" = protocol=1 | dir=out | [email protected],-28544 |
"{6D434A1C-984B-4F20-8DF7-05B800D1D316}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{771B5BF0-E0FF-463E-B95C-E79AA45C4F0E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7F18C32C-BE87-48EC-B9E6-210E1E553922}" = protocol=1 | dir=in | [email protected],-28543 |
"{94A023DF-F268-44BE-919B-B498D329E5C3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9BAC2F24-FA1E-4654-913D-303985AB4FD0}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A15238F3-70C5-4FBB-A898-8275612A2CD0}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{AA3ED6FE-31C3-4700-B678-5F446663C8D6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AF970BDD-3A4B-4F6F-8432-9D3BA45615B5}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\sendafax.exe |
"{B162B481-E7C6-4BF1-BFA9-3517E642E53E}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{B2573EBD-96AD-496F-89EC-41CFA47989AB}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{B6C427AE-C945-4E38-9DB4-CFD8230351AA}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\devicesetup.exe |
"{BA9AC278-0742-406E-8EAD-A57161B7A644}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BD942E74-8428-4F91-A48F-BC6B20201AFC}" = protocol=58 | dir=out | [email protected],-28546 |
"{D36C7DEB-D3F7-45BD-A403-99EA39DD3347}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicator.exe |
"{D4964CEB-79E1-4764-A361-086FBDCC6B08}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicatorcom.exe |
"{D9211E07-454A-43B2-A4BC-19D7E6D84E2E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{D968E0C1-3AD3-4D24-BED5-94314D3B09CE}" = protocol=6 | dir=out | app=system |
"{E2E82BBD-6E9E-4CAB-8C3F-105CFF4CCB3E}" = protocol=58 | dir=in | [email protected],-28545 |
"{F0289D89-88F7-4F7D-9E7D-B791D6871A86}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\digitalwizards.exe |
"{F67709B3-FD5F-48C1-ACDE-251AE4F677D7}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\faxapplications.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{26A24AE4-039D-4CA4-87B4-2F86416045FF}" = Java(TM) 6 Update 45 (64-bit)
"{2BF5E9CC-C55D-4B0F-ACAF-FFE77F333CD8}" = HP Officejet Pro 8600 Product Improvement Study
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Intel(R) Turbo Boost Technology Monitor
"{3B6074E5-5823-9363-851C-25F9DDB1E477}" = ccc-utility64
"{791A06E2-340F-43B0-8FAB-62D151339362}" = HP Officejet Pro 8600 Basic Device Software
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = WIDCOMM Bluetooth Software
"{C73A3942-84C8-4597-9F9B-EE227DCBA758}" = Dell Dock
"{D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}" = Microsoft Security Client
"{FA945868-397C-44F2-A1A4-53244A1D64B3}" = Microsoft Mouse and Keyboard Center
"CCleaner" = CCleaner
"DW WLAN Card" = DW WLAN Card
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Pale Moon 25.7.0 (x64 en-US)" = Pale Moon 25.7.0 (x64 en-US)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}" = Microsoft Visual C++ 2005 Redistributable
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1170BEDA-359C-4202-A5BF-CCA919E7B917}" = CCC Help Danish
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{15FFEF06-4FF5-4192-B050-C685068D9F95}" = VIPRE Internet Security
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{19DE6032-D3EE-D664-FA63-452431599161}" = CCC Help Norwegian
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24BBD0E3-4579-9EF5-6081-DE56129D093A}" = Catalyst Control Center InstallProxy
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{2DA5F129-11AC-4F11-8188-B2F07EAAC20A}" = Cozi
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3611CA6C-5FCA-4900-A329-6A118123CCFC}" = Bing Bar
"{39EFAC6A-639E-3CE3-2B62-EF8518AD8326}" = CCC Help Chinese Traditional
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{3E7E6F1E-7376-475A-8BC9-E3126B20CF5F}" = Citrix Online Launcher
"{3ED3BC2E-141A-BFB0-D48C-E8DDA3A461E7}" = ccc-core-static
"{40AE01BE-A290-4FFB-8DAB-C624C17DC87E}" = Vegas Movie Studio HD Platinum 10.0
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{46235FF7-2CBE-4A84-BEDA-87348D1F7850}" = HP Officejet Pro 8600 Help
"{57B21E43-056F-9E58-8774-20E8A89B5347}" = CCC Help English
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65A30A52-B4CA-006E-8750-8366C9693C77}" = CCC Help Russian
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{66C5E9B6-2D87-D7E8-9B8F-BFCAD7105AD1}" = Catalyst Control Center Graphics Previews Common
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype™ 7.9
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{6F3AB64A-CC2D-C533-C5CD-30420E2DC578}" = Skins
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71E015CC-52DA-4536-AF0C-C643BA1E45FB}" = Catalyst Control Center - Branding
"{78AE5FAE-C641-311B-9CC8-CEBB87FAF795}" = CCC Help Japanese
"{7BCA9417-A611-CC28-9471-6250EC9666EB}" = Catalyst Control Center Graphics Full Existing
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8C28F118-03B5-4756-F83C-C31C851D1FF3}" = CCC Help Chinese Standard
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{95E58BA1-2E10-B49E-283C-3C170C098149}" = CCC Help Dutch
"{9635D462-1B39-E171-BA1C-32A036572251}" = CCC Help Spanish
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A33E7B0C-B99C-4EC9-B702-8A328B161AF9}" = Roxio Burn
"{A4147C0B-A939-B87E-A6AB-71837A52AFEC}" = Catalyst Control Center Core Implementation
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8ACDFFF-093C-8898-E1B8-9388277CD805}" = CCC Help Portuguese
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.5
"{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}" = Roxio Burn
"{B47669BF-36B7-B33B-69C9-A2E7AAA36017}" = CCC Help German
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C1D1FC57-3EB9-4B21-BCA3-F1C927508200}" = VIPRE Internet Security
"{C52D6FF6-308B-2395-72EE-CA72216F8618}" = CCC Help Korean
"{C5422D6A-6CC4-82CA-C28F-249DC0C846B5}" = Catalyst Control Center Graphics Full New
"{CA6BCA2F-EDEB-408F-850B-31404BE16A61}" = I.R.I.S. OCR
"{CEC73671-6AFB-CC2B-203B-2A00E8901755}" = Catalyst Control Center Graphics Previews Vista
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{D7058431-BC8D-71B7-136F-6FFA32C5C7C2}" = CCC Help Swedish
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EBE939ED-4612-45FD-A39E-77AC199C4273}" = Absolute Notifier
"{ECBA603F-259F-9C33-85DE-0D7E3FCAB407}" = CCC Help Finnish
"{EE14D3B8-D4A6-EEC6-A37E-FC77CBF6A5FE}" = CCC Help Italian
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F26E3E58-D6E5-3C61-7A7C-20D61017C26A}" = CCC Help French
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FB9F4BEA-283B-18FA-3DA4-B757214528F3}" = Catalyst Control Center Localization All
"{FE60B87C-63A2-4A45-AC06-FFEFD5DB7846}_is1" = Online Vault
"{FE6D5F28-4C11-4197-66CA-48AA4AECD833}" = Catalyst Control Center Graphics Light
"acozyfire_3130676" = acozyfire_3130676 Screen Saver
"Adobe Flash Player ActiveX" = Adobe Flash Player 18 ActiveX
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Citrix Web Client" = Citrix Web Client
"Coupon Printer for Windows5.0.1.4" = Coupon Printer for Windows
"Dell Dock" = Dell Dock
"Dell Webcam Central" = Dell Webcam Central
"Google Chrome" = Google Chrome
"GoToAssist" = GoToAssist 8.0.0.514
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.1.8.1057
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"ShopAtHome.com BrowserAppCore Service Chrome" = ShopAtHome.com BrowserAppCore Service Chrome
"springbutterflies_3042993" = springbutterflies_3042993 Screen Saver
"townandcountrychristmas_3116234" = townandcountrychristmas_3116234 Screen Saver
"WildTangent dell Master Uninstall" = WildTangent Games
"WinLiveSuite_Wave3" = Windows Live Essentials
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"GoToMeeting" = GoToMeeting 7.2.5.3356
"Juniper_Setup_Client" = Juniper Networks, Inc. Setup Client
"Juniper_Term_Services" = Juniper Terminal Services Client
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 9/9/2015 7:52:28 AM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program IEXPLORE.EXE version 11.0.9600.17840 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1540 Start
Time: 01d0eaf5eba20445 Termination Time: 0 Application Path: C:\Program Files\Internet
Explorer\IEXPLORE.EXE Report Id: 388bfe87-56e9-11e5-84b0-c0cb38bd89d1
Error - 9/9/2015 9:00:59 AM | Computer Name = Sherry-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "C:\Program Files (x86)\Windows
Live\Photo Gallery\MovieMaker.Exe".Error in manifest or policy file "C:\Program
Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.
Error - 9/9/2015 4:48:23 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/9/2015 7:07:45 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:25:33 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 12:32:21 PM | Computer Name = Sherry-PC | Source = Application Hang | ID = 1002
Description = The program NOTEPAD.EXE version 6.1.7601.18917 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1dc0 Start
Time: 01d0ebe63309445e Termination Time: 0 Application Path: C:\Windows\system32\NOTEPAD.EXE
Report
Id: 7988c923-57d9-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:39:46 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Explorer.EXE, version: 6.1.7601.17567,
time stamp: 0x4d672ee4 Faulting module name: BtwCP.dll, version: 6.2.1.1100, time
stamp: 0x4b3a7f94 Exception code: 0xc0000005 Fault offset: 0x000000000001ec59 Faulting
process id: 0x1268 Faulting application start time: 0x01d0ebe4669f1626 Faulting application
path: C:\Windows\Explorer.EXE Faulting module path: c:\Program Files\WIDCOMM\Bluetooth
Software\BtwCP.dll Report Id: 8b14fc2e-57da-11e5-9315-f04da2622c8a
Error - 9/10/2015 12:50:34 PM | Computer Name = Sherry-PC | Source = Application Error | ID = 1000
Description = Faulting application name: svchost.exe_ProfSvc, version: 6.1.7600.16385,
time stamp: 0x4a5bc3c1 Faulting module name: unknown, version: 0.0.0.0, time stamp:
0x00000000 Exception code: 0xc0000005 Fault offset: 0x000000000a026250 Faulting process
id: 0x410 Faulting application start time: 0x01d0ebe45259903c Faulting application
path: C:\Windows\system32\svchost.exe Faulting module path: unknown Report Id: 0d3b9f36-57dc-11e5-9315-f04da2622c8a
Error - 9/10/2015 1:06:29 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
Error - 9/10/2015 1:11:38 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-LoadPerf | ID = 3001
Description = The performance counter name string value in the registry is not formatted
correctly. The malformed string is . The first DWORD in the Data section contains
the index value to the malformed string while the second and third DWORDs in the
Data section contain the last valid index values.
[ Dell Events ]
Error - 1/6/2011 6:22:42 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 2/3/2011 9:07:20 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 5/29/2011 7:59:43 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 6/14/2011 8:53:38 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 7/5/2011 9:17:53 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
Error - 8/22/2011 7:52:13 PM | Computer Name = Sherry-PC | Source = DataSafe | ID = 17
Description = The process was interrupted before completion.
[ System Events ]
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7032
Description = The Service Control Manager tried to take a corrective action (Restart
the service) after the unexpected termination of the Server service, but this action
failed with the following error: %%1056
Error - 9/10/2015 12:51:43 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 12:52:14 PM | Computer Name = Sherry-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10003
Description = WLAN Extensibility Module has stopped unexpectedly. Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error - 9/10/2015 1:00:21 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:00:51 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the SftService service.
Error - 9/10/2015 1:08:29 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:31 PM | Computer Name = Sherry-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR1.
Error - 9/10/2015 1:08:49 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for Start with the following error:
%%5
Error - 9/10/2015 1:10:18 PM | Computer Name = Sherry-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureCommand with the following
error: %%5
< End of report >
tremmor
Well-Known Member
thought i did what was said johnb.
Only thing i have now is this. Sorry for screw up on my part.
as far as tool i ran the program only. didn't see a tool.
took a while to do what i did. thanks for the patience.
OTL logfile created on: 9/10/2015 1:12:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\sherry
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 40.92% Memory free
7.73 Gb Paging File | 5.44 Gb Available in Paging File | 70.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 349.58 Gb Free Space | 77.51% Space Free | Partition Type: NTFS
Drive E: | 29.23 Gb Total Space | 25.25 Gb Free Space | 86.37% Space Free | Partition Type: FAT32
Computer Name: SHERRY-PC | User Name: Sherry | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - E:\sherry\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\VIPRE\SBAMTray.exe (ThreatTrack Security, Inc.)
PRC - C:\Program Files (x86)\VIPRE\SBAMSvc.exe (ThreatTrack Security, Inc.)
PRC - C:\Program Files (x86)\VIPRE\SBPIMSvc.exe (ThreatTrack Security, Inc.)
PRC - C:\Users\Sherry\AppData\Roaming\ShopAtHome.com BrowserAppCore Service\ShopAtHome_BAC_Service.exe (ShopAtHome.com)
PRC - C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe (GFI Software Development Ltd.)
PRC - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE (Microsoft Corporation.)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe (SoftThinks - Dell)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe ()
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe (SoftThinks - Dell)
PRC - C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe (Microsoft)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - c:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (Broadcom Corporation.)
PRC - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
PRC - C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
PRC - c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
PRC - C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
========== Modules (No Company Name) ==========
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3d4521ea040737939f831af5a10cd6ad\PresentationFramework.Aero.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d597003fd3cb340c3e29f87850bc2aa0\PresentationFramework.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\3853a33429e1fe84a805b8ca76bbe0a5\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\a6265e4a24c4f8361d84fc84f10e9736\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\63e9d5c341d64a753cde97f5a3d65c71\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\21f876e85bfaa433a999a410eda373bc\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6949c4470a81970ec3de0a575d93babc\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5a401fd2a7689ff13fb54182953f9c40\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\007fc007edc388d9806dff94ee04f129\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatch62ba68af#\9d0f68e23f0a626ba85092c08dadd1b2\SocialWatch.Configuration.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatchd4ea2be5#\0044a8febdac7fe20d8ce18087b8f4e5\SocialWatch.Scanner.Providers.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.CSharp\89f6d223bf932b4268e3440db40377d8\Microsoft.CSharp.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Dynamic\c70a933334ba4207853811411c322d5d\System.Dynamic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\c61bafa9d029e3f2bf83bd5af3f1f5ac\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\908075c4922acdf834c67ac802814c9d\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\d18e2115a3270f89663fce831547f534\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatcha4e6253f#\f44e2ade571eab7fa62127fa6ecc5669\SocialWatch.Authentication.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\log4net\f90de270296fa6fcdacc40de0a4aec65\log4net.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Infrastructure\85e44e08cb1631f26af64f24f9185fa3\Infrastructure.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Facebook\98f9e34065473e45c9d5929582dc20ed\Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatch8579869f#\b1c097052ae822d88e7834e53a9282d9\SocialWatch.Scanner.Serialization.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatchb96ca80f#\65b967e484f7efd5758ca7da94a8c5b0\SocialWatch.Engine.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatch3fe684a7#\f9af36cc5ba4ebb22d39f95515f6efbd\SocialWatch.Scanner.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatche3fb5e81#\a3be1f285ecfa548d15acc3b5f89b276\SocialWatch.Authentication.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatcha583c611#\45f2d467dcc6db120ddd9b7fdd0c1914\SocialWatch.Configuration.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatcha57243a5#\6a71ba9f45d9a1f475bb192164c3255b\SocialWatch.Plugins.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3d6ee4ffbd9a86ac1e7b01800b6fe9c7\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Compba577418#\736256bbeb4557664ef1d22ce2b8cd47\System.ComponentModel.Composition.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\d1265d6159ea876f9d63ea4c1361b587\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d49908aa93a23c84847b1f8b1b667860\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe ()
========== Services (SafeList) ==========
SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (NisSrv) -- c:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (btwdins) -- c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV:64bit: - (AERTFilters) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Andrea Electronics Corporation)
SRV:64bit: - (TurboBoost) -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Intel(R) Corporation)
SRV:64bit: - (DockLoginService) -- C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (SBAMSvc) -- C:\Program Files (x86)\VIPRE\SBAMSvc.exe (ThreatTrack Security, Inc.)
SRV - (SBPIMSvc) -- C:\Program Files (x86)\VIPRE\SBPIMSvc.exe (ThreatTrack Security, Inc.)
SRV - (gfi_lanss11_attservice) -- C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe (GFI Software Development Ltd.)
SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE (Microsoft Corporation.)
SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE (Microsoft Corporation.)
SRV - (SftService) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
SRV - (GoToAssist) -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
SRV - (AbsoluteNotifier) -- C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe (Microsoft)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (GameConsoleService) -- C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe (WildTangent, Inc.)
SRV - (sprtsvc_DellSupportCenter) -- c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
========== Driver Services (SafeList) ==========
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes Corporation)
DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (gfiutil) -- C:\Windows\SysNative\drivers\gfiutil.sys (ThreatTrack Security)
DRV:64bit: - (SbFw) -- C:\Windows\SysNative\drivers\SbFw.sys (GFI Software)
DRV:64bit: - (SbHips) -- C:\Windows\SysNative\drivers\sbhips.sys (GFI Software)
DRV:64bit: - (sbapifs) -- C:\Windows\SysNative\drivers\sbapifs.sys (ThreatTrack Security, Inc.)
DRV:64bit: - (gfiark) -- C:\Windows\SysNative\drivers\gfiark.sys (ThreatTrack Security)
DRV:64bit: - (sbwtis) -- C:\Windows\SysNative\drivers\sbwtis.sys (GFI Software)
DRV:64bit: - (SBFWIMCLMP) -- C:\Windows\SysNative\drivers\SbFwIm.sys (GFI Software)
DRV:64bit: - (SBFWIMCL) -- C:\Windows\SysNative\drivers\SbFwIm.sys (GFI Software)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (mfenlfk) -- C:\Windows\SysNative\drivers\mfenlfk.sys (McAfee, Inc.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (btusbflt) -- C:\Windows\SysNative\drivers\btusbflt.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (BcmVWL) -- C:\Windows\SysNative\drivers\bcmvwl64.sys (Broadcom Corporation)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atipmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
DRV:64bit: - (TurboB) -- C:\Windows\SysNative\drivers\TurboB.sys ()
DRV:64bit: - (Impcd) -- C:\Windows\SysNative\drivers\Impcd.sys (Intel Corporation)
DRV:64bit: - (HECIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (CtClsFlt) -- C:\Windows\SysNative\drivers\CtClsFlt.sys (Creative Technology Ltd.)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {597AA5B3-BA1C-4918-B14C-0939F0AD7B6A}
IE:64bit: - HKLM\..\SearchScopes\{597AA5B3-BA1C-4918-B14C-0939F0AD7B6A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {866ADDC5-CBB3-46DC-A870-F3F9337A0D37}
IE - HKLM\..\SearchScopes\{866ADDC5-CBB3-46DC-A870-F3F9337A0D37}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://att.yahoo.com/
IE - HKCU\..\SearchScopes,DefaultScope = {597AA5B3-BA1C-4918-B14C-0939F0AD7B6A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45: C:\Windows\system32\npdeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@citrixonline.com/appdetectorplugin: C:\Users\Sherry\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Pale Moon 25.7.0\extensions\\Components: C:\PROGRAM FILES\PALE MOON\COMPONENTS
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Pale Moon 25.7.0\extensions\\Plugins: C:\PROGRAM FILES\PALE MOON\PLUGINS
[2015/09/09 07:38:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sherry\AppData\Roaming\Mozilla\Extensions
========== Chrome ==========
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
O1 HOSTS File: ([2015/09/08 10:12:14 | 000,000,826 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (VIPRE Search Guard Helper) - {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (VIPRE Search Guard Toolbar) - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (VIPRE Search Guard Toolbar) - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DellSupportCenter] c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O4 - Startup: C:\Users\Sherry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: kellyservices.com ([kelly] https in Trusted sites)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab (Java Plug-in 1.6.0_45)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab (Java Plug-in 1.6.0_45)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://portal.kellyservices.com/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5A9A9F9D-B8AD-4776-8922-5C214C6BE0BE}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\cozi - No CLSID value found
O18:64bit: - Protocol\Handler\inbox - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\vipresg - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\inbox - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\vipresg {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2015/09/09 10:33:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2015/09/09 10:33:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2015/09/09 07:38:50 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Roaming\Mozilla
[2015/09/09 07:38:18 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Roaming\Moonchild Productions
[2015/09/09 07:38:18 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Local\Moonchild Productions
[2015/09/09 07:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\Pale Moon
[2015/09/09 07:24:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015/09/08 16:27:01 | 000,113,880 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2015/09/08 16:26:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2015/09/08 16:26:41 | 000,109,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2015/09/08 16:26:41 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2015/09/08 16:26:41 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2015/09/08 16:26:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2015/09/08 16:26:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/09/08 16:26:12 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Local\Programs
[2015/09/08 16:01:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
[2015/09/08 16:00:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Mouse and Keyboard Center
[2015/09/08 10:40:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/09/08 10:40:33 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/08/17 11:31:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2015/08/17 11:31:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2015/08/13 21:07:44 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/01/04 17:39:15 | 005,943,312 | ---- | C] (Absolute Software Corp. ) -- C:\Users\Sherry\AppData\Roaming\LoJackSetup.exe
[3 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
[2 C:\Users\Sherry\Documents\*.tmp files -> C:\Users\Sherry\Documents\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2015/09/10 13:12:04 | 000,000,664 | ---- | M] () -- C:\Windows\tasks\G2MUploadTask-S-1-5-21-1048274751-2647313636-3212736942-1000.job
[2015/09/10 13:09:55 | 000,022,464 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/09/10 13:09:55 | 000,022,464 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/09/10 13:08:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/09/10 13:00:10 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/09/10 12:58:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/09/10 12:58:30 | 3111,534,592 | -HS- | M] () -- C:\hiberfil.sys
[2015/09/10 12:54:50 | 000,410,040 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/09/10 12:47:50 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/09/10 12:44:35 | 000,000,568 | ---- | M] () -- C:\Windows\tasks\G2MUpdateTask-S-1-5-21-1048274751-2647313636-3212736942-1000.job
[2015/09/09 10:34:07 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2015/09/09 10:12:21 | 000,002,285 | ---- | M] () -- C:\Users\Sherry\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/09/09 07:38:10 | 000,000,887 | ---- | M] () -- C:\Users\Public\Desktop\Pale Moon.lnk
[2015/09/09 07:24:27 | 000,002,261 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/09/08 16:27:34 | 000,113,880 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2015/09/08 16:26:45 | 000,001,108 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015/09/08 16:01:30 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_point64_01011.Wdf
[2015/09/08 16:01:12 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_dc3d_01011.Wdf
[2015/09/08 15:54:25 | 000,016,303 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2015/09/08 15:54:25 | 000,016,303 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2015/09/08 11:32:33 | 000,321,940 | ---- | M] () -- C:\Users\Sherry\Documents\cc_20150908_113144.reg
[2015/09/08 10:12:14 | 000,000,826 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2015/09/07 22:25:11 | 004,456,990 | ---- | M] () -- C:\Users\Sherry\Documents\me and dad.jpg
[2015/09/03 14:59:21 | 000,000,000 | ---- | M] () -- C:\Users\Sherry\AppData\Local\{FD48367F-CCEF-4406-B545-58366D5C4D02}
[2015/08/24 11:49:34 | 001,481,433 | ---- | M] () -- C:\Users\Sherry\Documents\Make your cake taste like it came from a bakery.mht
[3 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
[2 C:\Users\Sherry\Documents\*.tmp files -> C:\Users\Sherry\Documents\*.tmp -> ]
========== Files Created - No Company Name ==========
[2015/09/09 10:34:07 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2015/09/09 10:33:59 | 000,002,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2015/09/09 07:55:08 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/09/09 07:38:10 | 000,000,899 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pale Moon.lnk
[2015/09/09 07:38:10 | 000,000,887 | ---- | C] () -- C:\Users\Public\Desktop\Pale Moon.lnk
[2015/09/09 07:24:27 | 000,002,285 | ---- | C] () -- C:\Users\Sherry\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/09/09 07:24:27 | 000,002,261 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/09/08 16:26:45 | 000,001,108 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015/09/08 16:01:30 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_point64_01011.Wdf
[2015/09/08 16:01:12 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_dc3d_01011.Wdf
[2015/09/08 15:54:25 | 000,016,303 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2015/09/08 15:54:25 | 000,016,303 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2015/09/08 11:31:48 | 000,321,940 | ---- | C] () -- C:\Users\Sherry\Documents\cc_20150908_113144.reg
[2015/09/07 22:25:10 | 004,456,990 | ---- | C] () -- C:\Users\Sherry\Documents\me and dad.jpg
[2015/09/03 14:59:21 | 000,000,000 | ---- | C] () -- C:\Users\Sherry\AppData\Local\{FD48367F-CCEF-4406-B545-58366D5C4D02}
[2015/08/24 11:49:32 | 001,481,433 | ---- | C] () -- C:\Users\Sherry\Documents\Make your cake taste like it came from a bakery.mht
[2015/06/01 18:00:29 | 000,000,000 | ---- | C] () -- C:\Users\Sherry\AppData\Local\{1C690E2C-7CFD-455D-B4B7-F168ABC99B2E}
[2014/08/13 00:13:11 | 187,760,934 | ---- | C] () -- C:\Users\Sherry\S1170107.zip
[2013/08/08 17:58:02 | 000,267,776 | ---- | C] () -- C:\Users\Sherry\AppData\Local\nEPyzLafE
[2013/08/08 17:58:02 | 000,267,776 | ---- | C] () -- C:\Users\Sherry\AppData\Roaming\75dGeJ26mr
[2013/08/08 17:58:02 | 000,267,776 | ---- | C] () -- C:\ProgramData\2MMOAOnGDT
[2013/05/03 07:53:10 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2011/02/19 22:34:30 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/01/12 18:36:45 | 000,004,608 | ---- | C] () -- C:\Users\Sherry\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/04 17:38:20 | 000,000,046 | ---- | C] () -- C:\Users\Sherry\AppData\Roaming\FactoryInstaller.xml
========== ZeroAccess Check ==========
[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/07/10 13:51:25 | 014,177,280 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/07/10 13:34:07 | 012,875,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2011/01/04 17:47:20 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Absolute
[2011/01/04 17:47:43 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Absolute Software
[2013/10/19 12:21:58 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\deb27c1a-00e6-4263-94b2-8b78ea4d32ae
[2013/10/19 12:20:34 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\GFI Software
[2011/08/10 21:58:11 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Juniper Networks
[2015/09/09 07:38:18 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Moonchild Productions
[2011/01/06 09:03:59 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Publish Providers
[2015/04/22 12:43:52 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\ShopAtHome.com BrowserAppCore Service
[2011/12/22 19:23:08 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\SoftGrid Client
[2011/01/06 09:04:29 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Sony
[2011/05/11 22:13:25 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\TP
[2015/08/08 22:46:40 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\VIPRE
[2014/05/29 14:58:09 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Windows
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 184 bytes -> C:\Users\Sherry\Documents\Prudential Authorization Letter_June 24 2013.jpeg:3or4kl4x13tuuug3Byamue2s4b
< End of report >
Only thing i have now is this. Sorry for screw up on my part.
as far as tool i ran the program only. didn't see a tool.
took a while to do what i did. thanks for the patience.
OTL logfile created on: 9/10/2015 1:12:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\sherry
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 40.92% Memory free
7.73 Gb Paging File | 5.44 Gb Available in Paging File | 70.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 349.58 Gb Free Space | 77.51% Space Free | Partition Type: NTFS
Drive E: | 29.23 Gb Total Space | 25.25 Gb Free Space | 86.37% Space Free | Partition Type: FAT32
Computer Name: SHERRY-PC | User Name: Sherry | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - E:\sherry\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\VIPRE\SBAMTray.exe (ThreatTrack Security, Inc.)
PRC - C:\Program Files (x86)\VIPRE\SBAMSvc.exe (ThreatTrack Security, Inc.)
PRC - C:\Program Files (x86)\VIPRE\SBPIMSvc.exe (ThreatTrack Security, Inc.)
PRC - C:\Users\Sherry\AppData\Roaming\ShopAtHome.com BrowserAppCore Service\ShopAtHome_BAC_Service.exe (ShopAtHome.com)
PRC - C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe (GFI Software Development Ltd.)
PRC - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE (Microsoft Corporation.)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe (SoftThinks - Dell)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe ()
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe (SoftThinks - Dell)
PRC - C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe (Microsoft)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - c:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (Broadcom Corporation.)
PRC - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
PRC - C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
PRC - c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
PRC - C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
========== Modules (No Company Name) ==========
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3d4521ea040737939f831af5a10cd6ad\PresentationFramework.Aero.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d597003fd3cb340c3e29f87850bc2aa0\PresentationFramework.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\3853a33429e1fe84a805b8ca76bbe0a5\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\a6265e4a24c4f8361d84fc84f10e9736\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\63e9d5c341d64a753cde97f5a3d65c71\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\21f876e85bfaa433a999a410eda373bc\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6949c4470a81970ec3de0a575d93babc\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5a401fd2a7689ff13fb54182953f9c40\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\007fc007edc388d9806dff94ee04f129\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatch62ba68af#\9d0f68e23f0a626ba85092c08dadd1b2\SocialWatch.Configuration.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatchd4ea2be5#\0044a8febdac7fe20d8ce18087b8f4e5\SocialWatch.Scanner.Providers.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.CSharp\89f6d223bf932b4268e3440db40377d8\Microsoft.CSharp.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Dynamic\c70a933334ba4207853811411c322d5d\System.Dynamic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\c61bafa9d029e3f2bf83bd5af3f1f5ac\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\908075c4922acdf834c67ac802814c9d\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\d18e2115a3270f89663fce831547f534\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatcha4e6253f#\f44e2ade571eab7fa62127fa6ecc5669\SocialWatch.Authentication.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\log4net\f90de270296fa6fcdacc40de0a4aec65\log4net.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Infrastructure\85e44e08cb1631f26af64f24f9185fa3\Infrastructure.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Facebook\98f9e34065473e45c9d5929582dc20ed\Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatch8579869f#\b1c097052ae822d88e7834e53a9282d9\SocialWatch.Scanner.Serialization.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatchb96ca80f#\65b967e484f7efd5758ca7da94a8c5b0\SocialWatch.Engine.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatch3fe684a7#\f9af36cc5ba4ebb22d39f95515f6efbd\SocialWatch.Scanner.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatche3fb5e81#\a3be1f285ecfa548d15acc3b5f89b276\SocialWatch.Authentication.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatcha583c611#\45f2d467dcc6db120ddd9b7fdd0c1914\SocialWatch.Configuration.Interfaces.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SocialWatcha57243a5#\6a71ba9f45d9a1f475bb192164c3255b\SocialWatch.Plugins.Facebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3d6ee4ffbd9a86ac1e7b01800b6fe9c7\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Compba577418#\736256bbeb4557664ef1d22ce2b8cd47\System.ComponentModel.Composition.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\d1265d6159ea876f9d63ea4c1361b587\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d49908aa93a23c84847b1f8b1b667860\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe ()
========== Services (SafeList) ==========
SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (NisSrv) -- c:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (MsMpSvc) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (btwdins) -- c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV:64bit: - (AERTFilters) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Andrea Electronics Corporation)
SRV:64bit: - (TurboBoost) -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Intel(R) Corporation)
SRV:64bit: - (DockLoginService) -- C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (SBAMSvc) -- C:\Program Files (x86)\VIPRE\SBAMSvc.exe (ThreatTrack Security, Inc.)
SRV - (SBPIMSvc) -- C:\Program Files (x86)\VIPRE\SBPIMSvc.exe (ThreatTrack Security, Inc.)
SRV - (gfi_lanss11_attservice) -- C:\Program Files (x86)\GFI\LanGuard 11 Agent\lnssatt.exe (GFI Software Development Ltd.)
SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE (Microsoft Corporation.)
SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE (Microsoft Corporation.)
SRV - (SftService) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
SRV - (GoToAssist) -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
SRV - (AbsoluteNotifier) -- C:\Program Files (x86)\Absolute Software\Absolute Notifier\AbsoluteNotifierService.exe (Microsoft)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (GameConsoleService) -- C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe (WildTangent, Inc.)
SRV - (sprtsvc_DellSupportCenter) -- c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
========== Driver Services (SafeList) ==========
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes Corporation)
DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (gfiutil) -- C:\Windows\SysNative\drivers\gfiutil.sys (ThreatTrack Security)
DRV:64bit: - (SbFw) -- C:\Windows\SysNative\drivers\SbFw.sys (GFI Software)
DRV:64bit: - (SbHips) -- C:\Windows\SysNative\drivers\sbhips.sys (GFI Software)
DRV:64bit: - (sbapifs) -- C:\Windows\SysNative\drivers\sbapifs.sys (ThreatTrack Security, Inc.)
DRV:64bit: - (gfiark) -- C:\Windows\SysNative\drivers\gfiark.sys (ThreatTrack Security)
DRV:64bit: - (sbwtis) -- C:\Windows\SysNative\drivers\sbwtis.sys (GFI Software)
DRV:64bit: - (SBFWIMCLMP) -- C:\Windows\SysNative\drivers\SbFwIm.sys (GFI Software)
DRV:64bit: - (SBFWIMCL) -- C:\Windows\SysNative\drivers\SbFwIm.sys (GFI Software)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (mfenlfk) -- C:\Windows\SysNative\drivers\mfenlfk.sys (McAfee, Inc.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (btusbflt) -- C:\Windows\SysNative\drivers\btusbflt.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (BcmVWL) -- C:\Windows\SysNative\drivers\bcmvwl64.sys (Broadcom Corporation)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atipmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
DRV:64bit: - (TurboB) -- C:\Windows\SysNative\drivers\TurboB.sys ()
DRV:64bit: - (Impcd) -- C:\Windows\SysNative\drivers\Impcd.sys (Intel Corporation)
DRV:64bit: - (HECIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (CtClsFlt) -- C:\Windows\SysNative\drivers\CtClsFlt.sys (Creative Technology Ltd.)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {597AA5B3-BA1C-4918-B14C-0939F0AD7B6A}
IE:64bit: - HKLM\..\SearchScopes\{597AA5B3-BA1C-4918-B14C-0939F0AD7B6A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {866ADDC5-CBB3-46DC-A870-F3F9337A0D37}
IE - HKLM\..\SearchScopes\{866ADDC5-CBB3-46DC-A870-F3F9337A0D37}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://att.yahoo.com/
IE - HKCU\..\SearchScopes,DefaultScope = {597AA5B3-BA1C-4918-B14C-0939F0AD7B6A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45: C:\Windows\system32\npdeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@citrixonline.com/appdetectorplugin: C:\Users\Sherry\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Pale Moon 25.7.0\extensions\\Components: C:\PROGRAM FILES\PALE MOON\COMPONENTS
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Pale Moon 25.7.0\extensions\\Plugins: C:\PROGRAM FILES\PALE MOON\PLUGINS
[2015/09/09 07:38:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sherry\AppData\Roaming\Mozilla\Extensions
========== Chrome ==========
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\Sherry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
O1 HOSTS File: ([2015/09/08 10:12:14 | 000,000,826 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (VIPRE Search Guard Helper) - {963C8283-AE7F-4AA6-9B3B-847A8FC62C5E} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (VIPRE Search Guard Toolbar) - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (VIPRE Search Guard Toolbar) - {A924C17A-5E94-4E02-BED5-49720BA6F7FA} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DellSupportCenter] c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O4 - Startup: C:\Users\Sherry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: kellyservices.com ([kelly] https in Trusted sites)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab (Java Plug-in 1.6.0_45)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab (Java Plug-in 1.6.0_45)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://portal.kellyservices.com/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5A9A9F9D-B8AD-4776-8922-5C214C6BE0BE}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\cozi - No CLSID value found
O18:64bit: - Protocol\Handler\inbox - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\vipresg - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\inbox - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\vipresg {47BE2E5B-703B-444F-ABD3-05717D2191C6} - C:\Program Files (x86)\VIPRE\VSGN.dll ()
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2015/09/09 10:33:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2015/09/09 10:33:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2015/09/09 07:38:50 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Roaming\Mozilla
[2015/09/09 07:38:18 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Roaming\Moonchild Productions
[2015/09/09 07:38:18 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Local\Moonchild Productions
[2015/09/09 07:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\Pale Moon
[2015/09/09 07:24:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2015/09/08 16:27:01 | 000,113,880 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2015/09/08 16:26:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2015/09/08 16:26:41 | 000,109,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2015/09/08 16:26:41 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2015/09/08 16:26:41 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2015/09/08 16:26:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2015/09/08 16:26:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/09/08 16:26:12 | 000,000,000 | ---D | C] -- C:\Users\Sherry\AppData\Local\Programs
[2015/09/08 16:01:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
[2015/09/08 16:00:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Mouse and Keyboard Center
[2015/09/08 10:40:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/09/08 10:40:33 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/08/17 11:31:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2015/08/17 11:31:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2015/08/13 21:07:44 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/01/04 17:39:15 | 005,943,312 | ---- | C] (Absolute Software Corp. ) -- C:\Users\Sherry\AppData\Roaming\LoJackSetup.exe
[3 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
[2 C:\Users\Sherry\Documents\*.tmp files -> C:\Users\Sherry\Documents\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2015/09/10 13:12:04 | 000,000,664 | ---- | M] () -- C:\Windows\tasks\G2MUploadTask-S-1-5-21-1048274751-2647313636-3212736942-1000.job
[2015/09/10 13:09:55 | 000,022,464 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/09/10 13:09:55 | 000,022,464 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/09/10 13:08:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/09/10 13:00:10 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/09/10 12:58:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/09/10 12:58:30 | 3111,534,592 | -HS- | M] () -- C:\hiberfil.sys
[2015/09/10 12:54:50 | 000,410,040 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/09/10 12:47:50 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/09/10 12:44:35 | 000,000,568 | ---- | M] () -- C:\Windows\tasks\G2MUpdateTask-S-1-5-21-1048274751-2647313636-3212736942-1000.job
[2015/09/09 10:34:07 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2015/09/09 10:12:21 | 000,002,285 | ---- | M] () -- C:\Users\Sherry\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/09/09 07:38:10 | 000,000,887 | ---- | M] () -- C:\Users\Public\Desktop\Pale Moon.lnk
[2015/09/09 07:24:27 | 000,002,261 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/09/08 16:27:34 | 000,113,880 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2015/09/08 16:26:45 | 000,001,108 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015/09/08 16:01:30 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_point64_01011.Wdf
[2015/09/08 16:01:12 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_dc3d_01011.Wdf
[2015/09/08 15:54:25 | 000,016,303 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2015/09/08 15:54:25 | 000,016,303 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2015/09/08 11:32:33 | 000,321,940 | ---- | M] () -- C:\Users\Sherry\Documents\cc_20150908_113144.reg
[2015/09/08 10:12:14 | 000,000,826 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2015/09/07 22:25:11 | 004,456,990 | ---- | M] () -- C:\Users\Sherry\Documents\me and dad.jpg
[2015/09/03 14:59:21 | 000,000,000 | ---- | M] () -- C:\Users\Sherry\AppData\Local\{FD48367F-CCEF-4406-B545-58366D5C4D02}
[2015/08/24 11:49:34 | 001,481,433 | ---- | M] () -- C:\Users\Sherry\Documents\Make your cake taste like it came from a bakery.mht
[3 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
[2 C:\Users\Sherry\Documents\*.tmp files -> C:\Users\Sherry\Documents\*.tmp -> ]
========== Files Created - No Company Name ==========
[2015/09/09 10:34:07 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2015/09/09 10:33:59 | 000,002,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2015/09/09 07:55:08 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/09/09 07:38:10 | 000,000,899 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pale Moon.lnk
[2015/09/09 07:38:10 | 000,000,887 | ---- | C] () -- C:\Users\Public\Desktop\Pale Moon.lnk
[2015/09/09 07:24:27 | 000,002,285 | ---- | C] () -- C:\Users\Sherry\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/09/09 07:24:27 | 000,002,261 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/09/08 16:26:45 | 000,001,108 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015/09/08 16:01:30 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_point64_01011.Wdf
[2015/09/08 16:01:12 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_dc3d_01011.Wdf
[2015/09/08 15:54:25 | 000,016,303 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2015/09/08 15:54:25 | 000,016,303 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2015/09/08 11:31:48 | 000,321,940 | ---- | C] () -- C:\Users\Sherry\Documents\cc_20150908_113144.reg
[2015/09/07 22:25:10 | 004,456,990 | ---- | C] () -- C:\Users\Sherry\Documents\me and dad.jpg
[2015/09/03 14:59:21 | 000,000,000 | ---- | C] () -- C:\Users\Sherry\AppData\Local\{FD48367F-CCEF-4406-B545-58366D5C4D02}
[2015/08/24 11:49:32 | 001,481,433 | ---- | C] () -- C:\Users\Sherry\Documents\Make your cake taste like it came from a bakery.mht
[2015/06/01 18:00:29 | 000,000,000 | ---- | C] () -- C:\Users\Sherry\AppData\Local\{1C690E2C-7CFD-455D-B4B7-F168ABC99B2E}
[2014/08/13 00:13:11 | 187,760,934 | ---- | C] () -- C:\Users\Sherry\S1170107.zip
[2013/08/08 17:58:02 | 000,267,776 | ---- | C] () -- C:\Users\Sherry\AppData\Local\nEPyzLafE
[2013/08/08 17:58:02 | 000,267,776 | ---- | C] () -- C:\Users\Sherry\AppData\Roaming\75dGeJ26mr
[2013/08/08 17:58:02 | 000,267,776 | ---- | C] () -- C:\ProgramData\2MMOAOnGDT
[2013/05/03 07:53:10 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2011/02/19 22:34:30 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/01/12 18:36:45 | 000,004,608 | ---- | C] () -- C:\Users\Sherry\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/04 17:38:20 | 000,000,046 | ---- | C] () -- C:\Users\Sherry\AppData\Roaming\FactoryInstaller.xml
========== ZeroAccess Check ==========
[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/07/10 13:51:25 | 014,177,280 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/07/10 13:34:07 | 012,875,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2011/01/04 17:47:20 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Absolute
[2011/01/04 17:47:43 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Absolute Software
[2013/10/19 12:21:58 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\deb27c1a-00e6-4263-94b2-8b78ea4d32ae
[2013/10/19 12:20:34 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\GFI Software
[2011/08/10 21:58:11 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Juniper Networks
[2015/09/09 07:38:18 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Moonchild Productions
[2011/01/06 09:03:59 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Publish Providers
[2015/04/22 12:43:52 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\ShopAtHome.com BrowserAppCore Service
[2011/12/22 19:23:08 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\SoftGrid Client
[2011/01/06 09:04:29 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Sony
[2011/05/11 22:13:25 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\TP
[2015/08/08 22:46:40 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\VIPRE
[2014/05/29 14:58:09 | 000,000,000 | ---D | M] -- C:\Users\Sherry\AppData\Roaming\Windows
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 184 bytes -> C:\Users\Sherry\Documents\Prudential Authorization Letter_June 24 2013.jpeg:3or4kl4x13tuuug3Byamue2s4b
< End of report >