Hi wbg,
I did backup my user directory, and now all of my firefox addons, and some other data. It's useless to run something like ghost, cause I might end up copying the virus or malware as well. I've been down that road before. If there's something I'm not doing right, please let me know. Always open to learning new things.
The second part of step one kind of threw me for a bit. You say: "in the command window type E:\frst.exe and press enter." Well, I realized I had to replace the "E" with my drive letter which was "H" but even with replacing that, I received an error stating: "is not recognized as internal or external command." Turns out the file name is actually frst64.exe. Once I figured that out, the rest was easy. Here are the reports you asked for:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-07-2013
Ran by SYSTEM on 08-07-2013 10:23:16
Running from H:\
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Recovery
The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IntelPAN] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray [1935120 2011-07-27] (Intel(R) Corporation)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1281512 2013-01-27] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [WordWeb] "C:\Program Files (x86)\WordWeb\wweb32.exe" -startup [65216 2009-11-08] (WordWeb Software)
HKLM-x32\...\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59280 2012-10-11] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421776 2012-09-09] (Apple Inc.)
HKLM-x32\...\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2012-10-25] (Apple Inc.)
HKLM-x32\...\Run: [ZoneAlarm Installer] "C:\Program Files (x86)\CheckPoint\Install\Launcher.exe" "C:\Program Files (x86)\CheckPoint\Install\Install.exe" /r /c "C:\Program Files (x86)\CheckPoint\Install\Install.xml" [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKU\robert\...\Run: [Google Update] "C:\Users\robert\AppData\Local\Google\Update\GoogleUpdate.exe" /c [116648 2012-08-12] (Google Inc.)
AppInit_DLLs: c:\progra~3\wincert\win64c~1.dll [116648 2012-08-12] ()
Startup: C:\Users\robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> (No File)
==================== Services (Whitelisted) =================
S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-02-24] (CyberLink)
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-07-27] ()
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.)
S2 StkSSrv; C:\Windows\System32\StkCSrv.exe [24576 2007-02-12] (Syntek America Inc.)
S2 ezSharedSvc; C:\Windows\System32\ezSharedSvcHost.exe [x]
==================== Drivers (Whitelisted) ====================
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
S2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.)
S3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [632704 2007-06-28] (Syntek)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-08 10:23 - 2013-07-08 10:23 - 00000000 ____D C:\FRST
2013-07-08 06:06 - 2013-07-08 06:06 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\robert\Desktop\tdsskiller.exe
2013-07-08 03:08 - 2013-07-08 06:17 - 00000168 ____A C:\Windows\setupact.log
2013-07-08 03:08 - 2013-07-08 03:08 - 00001230 ____A C:\Windows\PFRO.log
2013-07-08 03:08 - 2013-07-08 03:08 - 00000000 ____A C:\Windows\setuperr.log
2013-07-07 17:08 - 2013-07-07 17:08 - 01934636 ____A (Farbar) C:\Users\robert\Desktop\FRST64.exe
2013-07-07 04:08 - 2013-07-07 04:15 - 00000000 ____D C:\FEBEBUS
2013-07-07 03:32 - 2013-07-07 03:32 - 00001111 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-07 03:32 - 2013-07-07 03:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-07 03:06 - 2013-07-07 09:42 - 00000000 ____D C:\Users\robert\Desktop\FFBUS
2013-07-07 02:39 - 2013-07-07 02:43 - 00000000 ____D C:\Users\robert\FEBEBUS
2013-07-06 05:50 - 2013-07-06 06:00 - 00006686 ____A C:\Users\robert\Desktop\tradingsystems.txt
2013-07-02 23:00 - 2013-07-02 23:00 - 00000000 ____D C:\_OTL
2013-07-01 03:50 - 2013-07-01 03:51 - 00002036 ____A C:\AdwCleaner[S1].txt
2013-06-30 15:33 - 2013-07-06 10:51 - 00000000 ____D C:\Users\robert\Desktop\MW-Remove
2013-06-30 15:23 - 2013-06-30 15:23 - 00001949 ____A C:\AdwCleaner[R1].txt
2013-06-30 15:17 - 2013-06-30 15:18 - 00000000 ____D C:\JRT
2013-06-29 11:44 - 2013-06-29 11:44 - 00009588 ____A C:\Users\robert\Desktop\stew-lodge2.txt
2013-06-29 11:17 - 2013-06-29 11:17 - 00001896 ____A C:\Users\robert\Desktop\stew-lodge.txt
2013-06-29 11:13 - 2013-07-07 03:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-06-24 17:58 - 2013-06-25 04:10 - 00001544 ____A C:\Users\robert\Desktop\free-dental.txt
2013-06-21 04:20 - 2013-06-21 04:19 - 00263592 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-06-21 04:20 - 2013-06-21 04:19 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-06-21 04:20 - 2013-06-21 04:19 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-06-21 04:20 - 2013-06-21 04:19 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-06-21 04:17 - 2013-06-21 04:17 - 00108968 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-06-21 04:17 - 2013-06-21 04:16 - 00312232 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-06-21 04:17 - 2013-06-21 04:16 - 00189352 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-06-21 04:17 - 2013-06-21 04:16 - 00188840 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-06-18 06:39 - 2013-06-18 06:39 - 21840856 ____A (Mozilla) C:\Users\robert\Downloads\Firefox Setup 22.0.exe
2013-06-18 06:39 - 2013-06-18 06:39 - 21840856 ____A (Mozilla) C:\Users\robert\Downloads\dmtempdownload662D75C99CCE174FA83F65D6FD52083C.tmp
2013-06-12 17:20 - 2013-06-12 17:22 - 00000000 ____D C:\Users\robert\Software
2013-06-12 04:58 - 2013-05-16 20:05 - 17824768 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-12 04:58 - 2013-05-16 19:27 - 10926080 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-12 04:58 - 2013-05-16 19:09 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 04:58 - 2013-05-16 19:02 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 04:58 - 2013-05-16 19:02 - 01346560 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-12 04:58 - 2013-05-16 19:01 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-12 04:58 - 2013-05-16 19:00 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-12 04:58 - 2013-05-16 18:58 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-12 04:58 - 2013-05-16 18:56 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-12 04:58 - 2013-05-16 18:56 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-12 04:58 - 2013-05-16 18:55 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 04:58 - 2013-05-16 18:54 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 04:58 - 2013-05-16 18:53 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-12 04:58 - 2013-05-16 18:51 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-12 04:58 - 2013-05-16 18:51 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-12 04:58 - 2013-05-16 18:46 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-12 04:58 - 2013-05-16 15:08 - 12329984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-12 04:58 - 2013-05-16 14:49 - 09738752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-12 04:58 - 2013-05-16 14:39 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 04:58 - 2013-05-16 14:28 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 04:58 - 2013-05-16 14:28 - 01104384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-12 04:58 - 2013-05-16 14:27 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-12 04:58 - 2013-05-16 14:26 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-12 04:58 - 2013-05-16 14:23 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-12 04:58 - 2013-05-16 14:21 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 04:58 - 2013-05-16 14:21 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-12 04:58 - 2013-05-16 14:20 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-12 04:58 - 2013-05-16 14:19 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 04:58 - 2013-05-16 14:17 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-12 04:58 - 2013-05-16 14:17 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-12 04:58 - 2013-05-16 14:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-12 04:58 - 2013-05-16 14:12 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-12 03:30 - 2013-05-07 22:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 03:30 - 2013-04-25 21:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 03:30 - 2013-04-25 20:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 03:30 - 2013-04-25 15:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 03:30 - 2013-03-31 14:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-12 03:29 - 2013-05-12 21:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 03:29 - 2013-05-12 21:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 03:29 - 2013-05-12 21:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 03:29 - 2013-05-12 21:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 03:29 - 2013-05-12 20:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 03:29 - 2013-05-12 20:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 03:29 - 2013-05-12 20:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 03:29 - 2013-05-12 19:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 03:29 - 2013-05-12 19:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 03:29 - 2013-05-12 19:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 03:29 - 2013-05-09 21:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 03:29 - 2013-05-09 19:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 03:29 - 2013-04-16 23:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 03:29 - 2013-04-16 22:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-11 14:14 - 2013-06-30 09:18 - 00000000 ____D C:\Users\robert\health
2013-06-11 14:12 - 2013-06-12 05:51 - 00000000 ____D C:\Users\robert\letters
2013-06-08 15:50 - 2013-06-08 15:50 - 00575668 ____A C:\Users\robert\Downloads\The Atkins Shopping Guide.azw
==================== One Month Modified Files and Folders =======
2013-07-08 10:23 - 2013-07-08 10:23 - 00000000 ____D C:\FRST
2013-07-08 06:20 - 2009-07-13 21:13 - 00779266 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-08 06:19 - 2011-09-20 11:33 - 00000000 ___RD C:\Users\robert\Dropbox
2013-07-08 06:19 - 2011-09-20 11:30 - 00000000 ____D C:\Users\robert\AppData\Roaming\Dropbox
2013-07-08 06:18 - 2012-02-13 10:29 - 00000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-08 06:17 - 2013-07-08 03:08 - 00000168 ____A C:\Windows\setupact.log
2013-07-08 06:17 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-08 06:07 - 2011-09-05 13:48 - 01848031 ____A C:\Windows\WindowsUpdate.log
2013-07-08 06:06 - 2013-07-08 06:06 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\robert\Desktop\tdsskiller.exe
2013-07-08 06:05 - 2012-08-12 11:14 - 00000912 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3434975647-2719533202-2998227652-1000UA.job
2013-07-08 05:35 - 2013-01-10 05:52 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-08 05:35 - 2012-02-13 10:29 - 00000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-08 03:16 - 2009-07-13 20:45 - 00032064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-08 03:16 - 2009-07-13 20:45 - 00032064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-08 03:08 - 2013-07-08 03:08 - 00001230 ____A C:\Windows\PFRO.log
2013-07-08 03:08 - 2013-07-08 03:08 - 00000000 ____A C:\Windows\setuperr.log
2013-07-07 17:08 - 2013-07-07 17:08 - 01934636 ____A (Farbar) C:\Users\robert\Desktop\FRST64.exe
2013-07-07 10:10 - 2011-09-12 11:18 - 00000000 ____D C:\Users\robert\AppData\Local\CrashDumps
2013-07-07 09:44 - 2013-05-07 05:08 - 00000149 ____A C:\Users\robert\Desktop\Albany County Live Audio Feeds.URL
2013-07-07 09:42 - 2013-07-07 03:06 - 00000000 ____D C:\Users\robert\Desktop\FFBUS
2013-07-07 09:16 - 2011-09-16 04:30 - 00000000 ____D C:\Users\robert\My Recipes
2013-07-07 04:15 - 2013-07-07 04:08 - 00000000 ____D C:\FEBEBUS
2013-07-07 03:32 - 2013-07-07 03:32 - 00001111 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-07 03:32 - 2013-07-07 03:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-07 03:32 - 2013-06-29 11:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-07 02:43 - 2013-07-07 02:39 - 00000000 ____D C:\Users\robert\FEBEBUS
2013-07-07 02:39 - 2011-09-12 18:26 - 00000000 ____D C:\users\robert
2013-07-06 10:51 - 2013-06-30 15:33 - 00000000 ____D C:\Users\robert\Desktop\MW-Remove
2013-07-06 06:00 - 2013-07-06 05:50 - 00006686 ____A C:\Users\robert\Desktop\tradingsystems.txt
2013-07-05 02:05 - 2012-08-12 11:14 - 00000860 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3434975647-2719533202-2998227652-1000Core.job
2013-07-05 01:29 - 2011-09-14 02:24 - 00000336 ____A C:\Windows\Tasks\HPCeeScheduleForrobert.job
2013-07-04 13:19 - 2011-11-01 09:45 - 00000000 ____A C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-07-04 13:19 - 2011-09-13 16:48 - 00000052 ____A C:\Windows\SysWOW64\DOErrors.log
2013-07-02 23:00 - 2013-07-02 23:00 - 00000000 ____D C:\_OTL
2013-07-01 06:40 - 2013-02-07 05:44 - 00000000 ____D C:\Program Files (x86)\QT4
2013-07-01 03:51 - 2013-07-01 03:50 - 00002036 ____A C:\AdwCleaner[S1].txt
2013-07-01 03:51 - 2013-03-20 14:23 - 00000196 ____A C:\Windows\DeleteOnReboot.bat
2013-07-01 03:50 - 2012-11-27 16:25 - 00000000 ____D C:\Users\robert\AppData\Roaming\CheckPoint
2013-06-30 15:23 - 2013-06-30 15:23 - 00001949 ____A C:\AdwCleaner[R1].txt
2013-06-30 15:18 - 2013-06-30 15:17 - 00000000 ____D C:\JRT
2013-06-30 09:18 - 2013-06-11 14:14 - 00000000 ____D C:\Users\robert\health
2013-06-30 01:34 - 2013-05-27 12:38 - 00000000 ____D C:\Program Files (x86)\Gmail Password Hacker
2013-06-29 11:44 - 2013-06-29 11:44 - 00009588 ____A C:\Users\robert\Desktop\stew-lodge2.txt
2013-06-29 11:17 - 2013-06-29 11:17 - 00001896 ____A C:\Users\robert\Desktop\stew-lodge.txt
2013-06-28 12:38 - 2012-08-17 15:45 - 00000000 ____D C:\MGADiagToolOutput
2013-06-25 04:10 - 2013-06-24 17:58 - 00001544 ____A C:\Users\robert\Desktop\free-dental.txt
2013-06-21 04:19 - 2013-06-21 04:20 - 00263592 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-06-21 04:19 - 2013-06-21 04:20 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-06-21 04:19 - 2013-06-21 04:20 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-06-21 04:19 - 2013-06-21 04:20 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-06-21 04:19 - 2012-12-10 18:39 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-06-21 04:19 - 2011-09-12 10:35 - 00000000 ____D C:\Program Files (x86)\Java
2013-06-21 04:19 - 2011-06-21 11:44 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-06-21 04:17 - 2013-06-21 04:17 - 00108968 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll
2013-06-21 04:16 - 2013-06-21 04:17 - 00312232 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-06-21 04:16 - 2013-06-21 04:17 - 00189352 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-06-21 04:16 - 2013-06-21 04:17 - 00188840 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-06-21 04:16 - 2012-05-26 04:24 - 01093032 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-06-21 04:16 - 2011-09-12 11:30 - 00000000 ____D C:\Program Files\Java
2013-06-21 04:16 - 2011-06-21 11:45 - 00972712 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-06-19 05:35 - 2013-01-10 05:52 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-19 05:35 - 2013-01-10 05:52 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-18 06:39 - 2013-06-18 06:39 - 21840856 ____A (Mozilla) C:\Users\robert\Downloads\Firefox Setup 22.0.exe
2013-06-18 06:39 - 2013-06-18 06:39 - 21840856 ____A (Mozilla) C:\Users\robert\Downloads\dmtempdownload662D75C99CCE174FA83F65D6FD52083C.tmp
2013-06-17 17:38 - 2011-09-12 06:43 - 00773482 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2013-06-17 12:20 - 2012-05-21 10:45 - 00101184 ____A (Amazon.com, Inc.) C:\Windows\System32\stkMonitor.dll
2013-06-17 12:19 - 2011-09-13 06:26 - 00000000 ____D C:\Program Files (x86)\Amazon
2013-06-13 10:49 - 2011-09-16 04:22 - 00000000 ____D C:\Users\robert\My Books
2013-06-13 09:25 - 2011-09-19 07:33 - 00000000 ____D C:\Users\robert\Manuals_Instructions
2013-06-13 06:39 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2013-06-12 17:22 - 2013-06-12 17:20 - 00000000 ____D C:\Users\robert\Software
2013-06-12 17:21 - 2012-07-09 10:19 - 00000000 ____D C:\Users\robert\Desktop\Google
2013-06-12 17:20 - 2012-07-09 10:09 - 00000000 ____D C:\Users\robert\Desktop\eBay
2013-06-12 06:23 - 2013-03-06 11:35 - 00016679 ____A C:\Users\robert\Desktop\Untitled.camproj
2013-06-12 05:55 - 2012-08-18 13:30 - 00000000 ____D C:\Users\robert\Desktop\Excel
2013-06-12 05:51 - 2013-06-11 14:12 - 00000000 ____D C:\Users\robert\letters
2013-06-12 04:55 - 2011-09-17 04:44 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-08 15:50 - 2013-06-08 15:50 - 00575668 ____A C:\Users\robert\Downloads\The Atkins Shopping Guide.azw
Files to move or delete:
====================
C:\ProgramData\uninstaller.exe
==================== Known DLLs (Whitelisted) ================
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points =========================
Restore point made on: 2013-06-10 07:54:00
Restore point made on: 2013-06-12 04:54:47
Restore point made on: 2013-06-15 14:19:02
Restore point made on: 2013-06-17 17:33:42
Restore point made on: 2013-06-21 04:12:02
Restore point made on: 2013-06-21 04:13:55
Restore point made on: 2013-06-21 04:16:47
Restore point made on: 2013-06-21 04:19:36
Restore point made on: 2013-06-21 09:05:31
Restore point made on: 2013-06-25 03:01:34
Restore point made on: 2013-06-28 17:07:37
Restore point made on: 2013-07-02 04:04:03
Restore point made on: 2013-07-02 23:01:40
Restore point made on: 2013-07-05 08:19:28
==================== Memory info ===========================
Percentage of memory in use: 11%
Total physical RAM: 8139.86 MB
Available physical RAM: 7194.07 MB
Total Pagefile: 8138.01 MB
Available Pagefile: 7180.74 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:683.87 GB) (Free:541.68 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]
Drive e: (RECOVERY) (Fixed) (Total:14.47 GB) (Free:1.61 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.08 GB) FAT32 (Disk=0 Partition=4)
Drive h: () (Removable) (Total:7.45 GB) (Free:7.45 GB) FAT32 (Disk=1 Partition=1)
Drive x: (Boot) (Fixed) (Total:0.25 GB) (Free:0.25 GB) NTFS
Drive y: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS (Disk=0 Partition=1) ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 699 GB) (Disk ID: 7ADEB7CE)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=684 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
========================================================
Disk: 1 (Size: 7 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=7 GB) - (Type=0B)
LastRegBack: 2013-07-03 04:52
==================== End Of Log ============================
10:29:37.0711 6016 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:29:38.0241 6016 ============================================================
10:29:38.0241 6016 Current date / time: 2013/07/08 10:29:38.0241
10:29:38.0241 6016 SystemInfo:
10:29:38.0241 6016
10:29:38.0241 6016 OS Version: 6.1.7601 ServicePack: 1.0
10:29:38.0241 6016 Product type: Workstation
10:29:38.0241 6016 ComputerName: ROBERT-HP
10:29:38.0241 6016 UserName: robert
10:29:38.0241 6016 Windows directory: C:\Windows
10:29:38.0241 6016 System windows directory: C:\Windows
10:29:38.0241 6016 Running under WOW64
10:29:38.0241 6016 Processor architecture: Intel x64
10:29:38.0241 6016 Number of processors: 8
10:29:38.0241 6016 Page size: 0x1000
10:29:38.0241 6016 Boot type: Normal boot
10:29:38.0241 6016 ============================================================
10:29:39.0349 6016 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:29:39.0349 6016 ============================================================
10:29:39.0349 6016 \Device\Harddisk0\DR0:
10:29:39.0349 6016 MBR partitions:
10:29:39.0349 6016 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
10:29:39.0349 6016 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x557BF000
10:29:39.0349 6016 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x55823000, BlocksNum 0x1CEF800
10:29:39.0349 6016 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
10:29:39.0349 6016 ============================================================
10:29:39.0380 6016 C: <-> \Device\Harddisk0\DR0\Partition2
10:29:39.0427 6016 D: <-> \Device\Harddisk0\DR0\Partition3
10:29:39.0443 6016 F: <-> \Device\Harddisk0\DR0\Partition4
10:29:39.0443 6016 ============================================================
10:29:39.0443 6016 Initialize success
10:29:39.0443 6016 ============================================================
10:29:47.0290 6132 ============================================================
10:29:47.0290 6132 Scan started
10:29:47.0290 6132 Mode: Manual;
10:29:47.0290 6132 ============================================================
10:29:48.0148 6132 ================ Scan system memory ========================
10:29:48.0148 6132 System memory - ok
10:29:48.0148 6132 ================ Scan services =============================
10:29:48.0460 6132 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:29:48.0460 6132 1394ohci - ok
10:29:48.0553 6132 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
10:29:48.0553 6132 Accelerometer - ok
10:29:48.0678 6132 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:29:48.0694 6132 ACPI - ok
10:29:48.0787 6132 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:29:48.0787 6132 AcpiPmi - ok
10:29:48.0928 6132 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
10:29:48.0928 6132 adfs - ok
10:29:49.0130 6132 [ 57A3B9A69F14414ACE12AFD6BA701773 ] Adobe Version Cue CS4 C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
10:29:49.0130 6132 Adobe Version Cue CS4 - ok
10:29:49.0442 6132 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:29:49.0458 6132 AdobeARMservice - ok
10:29:49.0614 6132 [ 8ED25EDBD62A39C5C64EECEB60891A50 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:29:49.0661 6132 AdobeFlashPlayerUpdateSvc - ok
10:29:49.0723 6132 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:29:49.0739 6132 adp94xx - ok
10:29:49.0786 6132 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:29:49.0801 6132 adpahci - ok
10:29:49.0817 6132 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:29:49.0817 6132 adpu320 - ok
10:29:49.0848 6132 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:29:49.0848 6132 AeLookupSvc - ok
10:29:49.0988 6132 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
10:29:49.0988 6132 AESTFilters - ok
10:29:50.0051 6132 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:29:50.0051 6132 AFD - ok
10:29:50.0082 6132 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:29:50.0082 6132 agp440 - ok
10:29:50.0113 6132 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:29:50.0113 6132 ALG - ok
10:29:50.0144 6132 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:29:50.0160 6132 aliide - ok
10:29:50.0222 6132 [ C53D784D7303C463D004C0D5782917B4 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:29:50.0254 6132 AMD External Events Utility - ok
10:29:50.0254 6132 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:29:50.0269 6132 amdide - ok
10:29:50.0285 6132 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
10:29:50.0300 6132 AmdK8 - ok
10:29:50.0675 6132 [ 06778049A44C316E8D016039B9D14667 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:29:50.0846 6132 amdkmdag - ok
10:29:50.0909 6132 [ 94B4028F0EEA1F166D78186A254676B5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:29:50.0909 6132 amdkmdap - ok
10:29:50.0971 6132 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
10:29:50.0971 6132 AmdPPM - ok
10:29:51.0034 6132 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:29:51.0049 6132 amdsata - ok
10:29:51.0127 6132 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
10:29:51.0127 6132 amdsbs - ok
10:29:51.0143 6132 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:29:51.0143 6132 amdxata - ok
10:29:51.0205 6132 [ 7D9E301AB3247765702D0B65E2E47E50 ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
10:29:51.0221 6132 AMPPAL - ok
10:29:56.0244 6132 [ 7D9E301AB3247765702D0B65E2E47E50 ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
10:29:56.0244 6132 AMPPALP - ok
10:29:56.0556 6132 [ 576134E43169810B560F0BB6FDEE13F5 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
10:29:56.0587 6132 AMPPALR3 - ok
10:29:56.0650 6132 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:29:56.0650 6132 AppID - ok
10:29:56.0696 6132 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:29:56.0696 6132 AppIDSvc - ok
10:29:56.0759 6132 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
10:29:56.0774 6132 Appinfo - ok
10:29:56.0899 6132 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:29:56.0930 6132 Apple Mobile Device - ok
10:29:56.0962 6132 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
10:29:56.0962 6132 arc - ok
10:29:56.0977 6132 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:29:56.0977 6132 arcsas - ok
10:29:57.0164 6132 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:29:57.0242 6132 aspnet_state - ok
10:29:57.0289 6132 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:29:57.0305 6132 AsyncMac - ok
10:29:57.0336 6132 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:29:57.0336 6132 atapi - ok
10:29:57.0414 6132 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:29:57.0414 6132 AudioEndpointBuilder - ok
10:29:57.0430 6132 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:29:57.0430 6132 AudioSrv - ok
10:29:57.0461 6132 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:29:57.0476 6132 AxInstSV - ok
10:29:57.0508 6132 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
10:29:57.0508 6132 b06bdrv - ok
10:29:57.0539 6132 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:29:57.0554 6132 b57nd60a - ok
10:29:57.0601 6132 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
10:29:57.0617 6132 BCM43XX - ok
10:29:57.0648 6132 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:29:57.0648 6132 BDESVC - ok
10:29:57.0679 6132 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:29:57.0679 6132 Beep - ok
10:29:57.0726 6132 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:29:57.0726 6132 BFE - ok
10:29:57.0757 6132 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
10:29:57.0773 6132 BITS - ok
10:29:57.0804 6132 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
10:29:57.0804 6132 blbdrive - ok
10:29:57.0898 6132 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:29:57.0913 6132 Bonjour Service - ok
10:29:57.0944 6132 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:29:57.0944 6132 bowser - ok
10:29:57.0976 6132 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
10:29:57.0991 6132 BrFiltLo - ok
10:29:58.0007 6132 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
10:29:58.0007 6132 BrFiltUp - ok
10:29:58.0069 6132 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:29:58.0085 6132 Browser - ok
10:29:58.0100 6132 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:29:58.0116 6132 Brserid - ok
10:29:58.0132 6132 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:29:58.0132 6132 BrSerWdm - ok
10:29:58.0163 6132 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:29:58.0163 6132 BrUsbMdm - ok
10:29:58.0178 6132 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:29:58.0178 6132 BrUsbSer - ok
10:29:58.0210 6132 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:29:58.0210 6132 BTHMODEM - ok
10:29:58.0241 6132 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:29:58.0241 6132 bthserv - ok
10:29:58.0272 6132 [ 9E2AF97302B9F4BF97E952A865EB31AE ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
10:29:58.0288 6132 BTHSSecurityMgr - ok
10:29:58.0319 6132 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:29:58.0319 6132 cdfs - ok
10:29:58.0381 6132 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:29:58.0381 6132 cdrom - ok
10:29:58.0412 6132 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:29:58.0412 6132 CertPropSvc - ok
10:29:58.0444 6132 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
10:29:58.0444 6132 circlass - ok
10:29:58.0506 6132 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:29:58.0506 6132 CLFS - ok
10:29:58.0631 6132 [ 524DC3807CB1746225F9D26ADD19C319 ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
10:29:58.0678 6132 CLKMSVC10_38F51D56 - ok
10:29:58.0756 6132 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:29:58.0756 6132 clr_optimization_v2.0.50727_32 - ok
10:29:58.0802 6132 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:29:58.0818 6132 clr_optimization_v2.0.50727_64 - ok
10:29:58.0880 6132 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:29:59.0192 6132 clr_optimization_v4.0.30319_32 - ok
10:29:59.0239 6132 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:29:59.0364 6132 clr_optimization_v4.0.30319_64 - ok
10:29:59.0395 6132 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
10:29:59.0395 6132 clwvd - ok
10:29:59.0411 6132 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
10:29:59.0411 6132 CmBatt - ok
10:29:59.0442 6132 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:29:59.0442 6132 cmdide - ok
10:29:59.0504 6132 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
10:29:59.0520 6132 CNG - ok
10:29:59.0551 6132 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
10:29:59.0551 6132 Compbatt - ok
10:29:59.0582 6132 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:29:59.0582 6132 CompositeBus - ok
10:29:59.0598 6132 COMSysApp - ok
10:29:59.0660 6132 [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64 C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
10:29:59.0676 6132 cpudrv64 - ok
10:29:59.0707 6132 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:29:59.0707 6132 crcdisk - ok
10:29:59.0754 6132 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:29:59.0754 6132 CryptSvc - ok
10:29:59.0785 6132 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:29:59.0801 6132 DcomLaunch - ok
10:29:59.0848 6132 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:29:59.0848 6132 defragsvc - ok
10:29:59.0879 6132 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:29:59.0894 6132 DfsC - ok
10:29:59.0941 6132 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:29:59.0957 6132 Dhcp - ok
10:29:59.0972 6132 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:29:59.0972 6132 discache - ok
10:30:00.0019 6132 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
10:30:00.0035 6132 Disk - ok
10:30:00.0066 6132 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:30:00.0066 6132 Dnscache - ok
10:30:00.0097 6132 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:30:00.0113 6132 dot3svc - ok
10:30:00.0113 6132 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:30:00.0113 6132 DPS - ok
10:30:00.0160 6132 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:30:00.0160 6132 drmkaud - ok
10:30:00.0222 6132 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:30:00.0238 6132 DXGKrnl - ok
10:30:00.0253 6132 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:30:00.0253 6132 EapHost - ok
10:30:00.0347 6132 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
10:30:00.0409 6132 ebdrv - ok
10:30:00.0425 6132 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:30:00.0425 6132 EFS - ok
10:30:00.0503 6132 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:30:00.0534 6132 ehRecvr - ok
10:30:00.0550 6132 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:30:00.0565 6132 ehSched - ok
10:30:00.0596 6132 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:30:00.0596 6132 elxstor - ok
10:30:00.0628 6132 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:30:00.0628 6132 ErrDev - ok
10:30:00.0674 6132 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:30:00.0674 6132 EventSystem - ok
10:30:00.0862 6132 [ E3A96D5AE6E5C7B5472011BA77353368 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
10:30:00.0908 6132 EvtEng - ok
10:30:00.0955 6132 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:30:00.0955 6132 exfat - ok
10:30:00.0986 6132 ezSharedSvc - ok
10:30:01.0002 6132 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:30:01.0002 6132 fastfat - ok
10:30:01.0049 6132 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:30:01.0064 6132 Fax - ok
10:30:01.0096 6132 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
10:30:01.0096 6132 fdc - ok
10:30:01.0142 6132 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:30:01.0142 6132 fdPHost - ok
10:30:01.0142 6132 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:30:01.0158 6132 FDResPub - ok
10:30:01.0189 6132 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:30:01.0189 6132 FileInfo - ok
10:30:01.0205 6132 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:30:01.0205 6132 Filetrace - ok
10:30:01.0314 6132 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:30:01.0345 6132 FLEXnet Licensing Service - ok
10:30:01.0439 6132 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
10:30:01.0454 6132 FLEXnet Licensing Service 64 - ok
10:30:01.0486 6132 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
10:30:01.0486 6132 flpydisk - ok
10:30:01.0517 6132 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:30:01.0517 6132 FltMgr - ok
10:30:01.0610 6132 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
10:30:01.0642 6132 FontCache - ok
10:30:01.0704 6132 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:30:01.0704 6132 FontCache3.0.0.0 - ok
10:30:01.0751 6132 [ 2074A85A6B8F84A5A9C60B915B465FAF ] FPLService C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
10:30:01.0766 6132 FPLService - ok
10:30:01.0782 6132 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:30:01.0782 6132 FsDepends - ok
10:30:01.0829 6132 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:30:01.0829 6132 Fs_Rec - ok
10:30:01.0876 6132 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:30:01.0876 6132 fvevol - ok
10:30:01.0922 6132 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:30:01.0922 6132 gagp30kx - ok
10:30:01.0969 6132 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:30:01.0969 6132 GEARAspiWDM - ok
10:30:02.0000 6132 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:30:02.0000 6132 gpsvc - ok
10:30:02.0110 6132 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:30:02.0110 6132 gupdate - ok
10:30:02.0125 6132 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:30:02.0125 6132 gupdatem - ok
10:30:02.0156 6132 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:30:02.0156 6132 hcw85cir - ok
10:30:02.0203 6132 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:30:02.0203 6132 HdAudAddService - ok
10:30:02.0250 6132 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:30:02.0250 6132 HDAudBus - ok
10:30:02.0266 6132 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
10:30:02.0266 6132 HidBatt - ok
10:30:02.0281 6132 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:30:02.0281 6132 HidBth - ok
10:30:02.0297 6132 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
10:30:02.0297 6132 HidIr - ok
10:30:02.0312 6132 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:30:02.0312 6132 hidserv - ok
10:30:02.0359 6132 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:30:02.0359 6132 HidUsb - ok
10:30:02.0390 6132 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:30:02.0390 6132 hkmsvc - ok
10:30:02.0406 6132 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:30:02.0406 6132 HomeGroupListener - ok
10:30:02.0437 6132 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:30:02.0453 6132 HomeGroupProvider - ok
10:30:02.0562 6132 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:30:02.0562 6132 HP Support Assistant Service - ok
10:30:02.0609 6132 [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
10:30:02.0624 6132 HPClientSvc - ok
10:30:02.0687 6132 [ E040F0064D39F73BB4995D494F3DCBB8 ] hpCMSrv C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
10:30:02.0734 6132 hpCMSrv - ok
10:30:02.0765 6132 [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
10:30:02.0765 6132 hpdskflt - ok
10:30:02.0843 6132 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
10:30:02.0874 6132 hpqwmiex - ok
10:30:02.0890 6132 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:30:02.0890 6132 HpSAMD - ok
10:30:02.0921 6132 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv C:\Windows\system32\Hpservice.exe
10:30:02.0921 6132 hpsrv - ok
10:30:02.0983 6132 [ 491CE9B6321FB74E4B37AF2C47F98434 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
10:30:02.0983 6132 HPWMISVC - ok
10:30:03.0030 6132 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:30:03.0046 6132 HTTP - ok
10:30:03.0077 6132 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:30:03.0077 6132 hwpolicy - ok
10:30:03.0108 6132 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:30:03.0108 6132 i8042prt - ok
10:30:03.0202 6132 [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
10:30:03.0217 6132 iaStor - ok
10:30:03.0326 6132 [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
10:30:03.0342 6132 IAStorDataMgrSvc - ok
10:30:03.0404 6132 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:30:03.0404 6132 iaStorV - ok
10:30:03.0529 6132 [ D72BF0AE484F88399E8343E821C10D6A ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
10:30:03.0623 6132 IconMan_R - ok
10:30:03.0685 6132 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:30:03.0701 6132 idsvc - ok
10:30:03.0732 6132 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:30:03.0732 6132 iirsp - ok
10:30:03.0763 6132 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:30:03.0779 6132 IKEEXT - ok
10:30:03.0826 6132 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:30:03.0826 6132 IntcDAud - ok
10:30:03.0857 6132 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:30:03.0857 6132 intelide - ok
10:30:04.0340 6132 [ 33FAA40B288002C89529DBD14F3AB72C ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
10:30:04.0543 6132 intelkmd - ok
10:30:04.0559 6132 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:30:04.0574 6132 intelppm - ok
10:30:04.0590 6132 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:30:04.0606 6132 IPBusEnum - ok
10:30:04.0621 6132 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:30:04.0621 6132 IpFilterDriver - ok
10:30:04.0699 6132 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:30:04.0715 6132 iphlpsvc - ok
10:30:04.0746 6132 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:30:04.0746 6132 IPMIDRV - ok
10:30:04.0777 6132 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:30:04.0777 6132 IPNAT - ok
10:30:04.0840 6132 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:30:04.0840 6132 iPod Service - ok
10:30:04.0886 6132 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:30:04.0886 6132 IRENUM - ok
10:30:04.0949 6132 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:30:04.0949 6132 isapnp - ok
10:30:05.0011 6132 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:30:05.0011 6132 iScsiPrt - ok
10:30:05.0042 6132 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:30:05.0058 6132 kbdclass - ok
10:30:05.0089 6132 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:30:05.0089 6132 kbdhid - ok
10:30:05.0105 6132 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:30:05.0120 6132 KeyIso - ok
10:30:05.0183 6132 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:30:05.0198 6132 KSecDD - ok
10:30:05.0245 6132 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:30:05.0245 6132 KSecPkg - ok
10:30:05.0276 6132 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:30:05.0292 6132 ksthunk - ok
10:30:05.0308 6132 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:30:05.0308 6132 KtmRm - ok
10:30:05.0354 6132 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:30:05.0370 6132 LanmanServer - ok
10:30:05.0401 6132 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:30:05.0401 6132 LanmanWorkstation - ok
10:30:05.0417 6132 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:30:05.0417 6132 lltdio - ok
10:30:05.0448 6132 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:30:05.0448 6132 lltdsvc - ok
10:30:05.0479 6132 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:30:05.0479 6132 lmhosts - ok
10:30:05.0557 6132 [ D7E0BED3EA21D7BDDD410ADE51708D90 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
10:30:05.0557 6132 LMS - ok
10:30:05.0588 6132 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:30:05.0588 6132 LSI_FC - ok
10:30:05.0620 6132 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:30:05.0635 6132 LSI_SAS - ok
10:30:05.0635 6132 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
10:30:05.0635 6132 LSI_SAS2 - ok
10:30:05.0651 6132 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:30:05.0651 6132 LSI_SCSI - ok
10:30:05.0698 6132 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:30:05.0698 6132 luafv - ok
10:30:05.0744 6132 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:30:05.0744 6132 Mcx2Svc - ok
10:30:05.0776 6132 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
10:30:05.0776 6132 megasas - ok
10:30:05.0807 6132 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
10:30:05.0807 6132 MegaSR - ok
10:30:05.0854 6132 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:30:05.0854 6132 MEIx64 - ok
10:30:05.0885 6132 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:30:05.0900 6132 MMCSS - ok
10:30:05.0916 6132 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:30:05.0916 6132 Modem - ok
10:30:05.0932 6132 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:30:05.0932 6132 monitor - ok
10:30:05.0963 6132 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:30:05.0963 6132 mouclass - ok
10:30:05.0994 6132 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:30:05.0994 6132 mouhid - ok
10:30:06.0010 6132 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:30:06.0010 6132 mountmgr - ok
10:30:06.0056 6132 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:30:06.0072 6132 MozillaMaintenance - ok
10:30:06.0134 6132 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
10:30:06.0134 6132 MpFilter - ok
10:30:06.0166 6132 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:30:06.0166 6132 mpio - ok
10:30:06.0197 6132 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:30:06.0197 6132 mpsdrv - ok
10:30:06.0228 6132 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:30:06.0244 6132 MpsSvc - ok
10:30:06.0259 6132 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:30:06.0275 6132 MRxDAV - ok
10:30:06.0290 6132 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:30:06.0290 6132 mrxsmb - ok
10:30:06.0306 6132 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:30:06.0322 6132 mrxsmb10 - ok
10:30:06.0322 6132 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:30:06.0322 6132 mrxsmb20 - ok
10:30:06.0353 6132 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:30:06.0353 6132 msahci - ok
10:30:06.0400 6132 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:30:06.0400 6132 msdsm - ok
10:30:06.0431 6132 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:30:06.0431 6132 MSDTC - ok
10:30:06.0446 6132 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:30:06.0462 6132 Msfs - ok
10:30:06.0478 6132 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:30:06.0478 6132 mshidkmdf - ok
10:30:06.0493 6132 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:30:06.0493 6132 msisadrv - ok
10:30:06.0524 6132 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:30:06.0524 6132 MSiSCSI - ok
10:30:06.0524 6132 msiserver - ok
10:30:06.0556 6132 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:30:06.0556 6132 MSKSSRV - ok
10:30:06.0680 6132 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
10:30:06.0696 6132 MsMpSvc - ok
10:30:06.0712 6132 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:30:06.0712 6132 MSPCLOCK - ok
10:30:06.0727 6132 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:30:06.0727 6132 MSPQM - ok
10:30:06.0743 6132 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:30:06.0743 6132 MsRPC - ok
10:30:06.0774 6132 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:30:06.0774 6132 mssmbios - ok
10:30:06.0805 6132 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:30:06.0805 6132 MSTEE - ok
10:30:06.0821 6132 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
10:30:06.0836 6132 MTConfig - ok
10:30:06.0836 6132 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:30:06.0852 6132 Mup - ok
10:30:06.0899 6132 [ 8F57DB74BF5407A4CDA6C8B005DC8DD0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
10:30:06.0899 6132 MyWiFiDHCPDNS - ok
10:30:06.0961 6132 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:30:06.0977 6132 napagent - ok
10:30:07.0008 6132 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:30:07.0008 6132 NativeWifiP - ok
10:30:07.0055 6132 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:30:07.0070 6132 NDIS - ok
10:30:07.0102 6132 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:30:07.0102 6132 NdisCap - ok
10:30:07.0148 6132 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:30:07.0148 6132 NdisTapi - ok
10:30:07.0164 6132 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:30:07.0164 6132 Ndisuio - ok
10:30:07.0180 6132 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:30:07.0180 6132 NdisWan - ok
10:30:07.0195 6132 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:30:07.0195 6132 NDProxy - ok
10:30:07.0211 6132 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:30:07.0211 6132 NetBIOS - ok
10:30:07.0242 6132 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:30:07.0242 6132 NetBT - ok
10:30:07.0258 6132 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:30:07.0258 6132 Netlogon - ok
10:30:07.0289 6132 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:30:07.0304 6132 Netman - ok
10:30:07.0336 6132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:30:07.0367 6132 NetMsmqActivator - ok
10:30:07.0382 6132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:30:07.0382 6132 NetPipeActivator - ok
10:30:07.0414 6132 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:30:07.0414 6132 netprofm - ok
10:30:07.0429 6132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:30:07.0429 6132 NetTcpActivator - ok
10:30:07.0429 6132 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:30:07.0429 6132 NetTcpPortSharing - ok
10:30:07.0944 6132 [ 50AD7F7040C22BB7CAA59A0880875A21 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
10:30:08.0084 6132 NETwNs64 - ok
10:30:08.0116 6132 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:30:08.0116 6132 nfrd960 - ok
10:30:08.0178 6132 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:30:08.0178 6132 NisDrv - ok
10:30:08.0225 6132 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
10:30:08.0240 6132 NisSrv - ok
10:30:08.0272 6132 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:30:08.0303 6132 NlaSvc - ok
10:30:08.0318 6132 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
10:30:08.0318 6132 NPF - ok
10:30:08.0350 6132 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:30:08.0350 6132 Npfs - ok
10:30:08.0365 6132 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:30:08.0365 6132 nsi - ok
10:30:08.0381 6132 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:30:08.0381 6132 nsiproxy - ok
10:30:08.0474 6132 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:30:08.0521 6132 Ntfs - ok
10:30:08.0537 6132 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:30:08.0537 6132 Null - ok
10:30:08.0568 6132 [ 9A33100AC62A0463C49E47EE8E77083A ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
10:30:08.0584 6132 nusb3hub - ok
10:30:08.0599 6132 [ 87C321F7BEE646B7EC6EEDD6EB725741 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
10:30:08.0599 6132 nusb3xhc - ok
10:30:08.0646 6132 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
10:30:08.0646 6132 NVENETFD - ok
10:30:08.0693 6132 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:30:08.0693 6132 nvraid - ok
10:30:08.0724 6132 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:30:08.0724 6132 nvstor - ok
10:30:08.0755 6132 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:30:08.0771 6132 nv_agp - ok
10:30:08.0849 6132 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:30:08.0880 6132 odserv - ok
10:30:08.0896 6132 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:30:08.0896 6132 ohci1394 - ok
10:30:08.0927 6132 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:30:08.0942 6132 ose - ok
10:30:08.0974 6132 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:30:08.0974 6132 p2pimsvc - ok
10:30:09.0005 6132 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:30:09.0005 6132 p2psvc - ok
10:30:09.0036 6132 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
10:30:09.0036 6132 Parport - ok
10:30:09.0067 6132 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:30:09.0067 6132 partmgr - ok
10:30:09.0098 6132 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:30:09.0098 6132 PcaSvc - ok
10:30:09.0130 6132 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:30:09.0130 6132 pci - ok
10:30:09.0161 6132 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:30:09.0161 6132 pciide - ok
10:30:09.0176 6132 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:30:09.0192 6132 pcmcia - ok
10:30:09.0223 6132 [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
10:30:09.0223 6132 pcouffin - ok
10:30:09.0254 6132 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:30:09.0254 6132 pcw - ok
10:30:09.0270 6132 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:30:09.0286 6132 PEAUTH - ok
10:30:09.0410 6132 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:30:09.0426 6132 PerfHost - ok
10:30:09.0504 6132 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:30:09.0535 6132 pla - ok
10:30:09.0582 6132 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:30:09.0582 6132 PlugPlay - ok
10:30:09.0613 6132 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:30:09.0613 6132 PNRPAutoReg - ok
10:30:09.0629 6132 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:30:09.0629 6132 PNRPsvc - ok
10:30:09.0691 6132 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:30:09.0722 6132 PolicyAgent - ok
10:30:09.0754 6132 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:30:09.0754 6132 Power - ok
10:30:09.0800 6132 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:30:09.0800 6132 PptpMiniport - ok
10:30:09.0816 6132 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
10:30:09.0816 6132 Processor - ok
10:30:09.0847 6132 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:30:09.0847 6132 ProfSvc - ok
10:30:09.0863 6132 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:30:09.0863 6132 ProtectedStorage - ok
10:30:09.0894 6132 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:30:09.0894 6132 Psched - ok
10:30:09.0941 6132 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:30:09.0972 6132 ql2300 - ok
10:30:10.0003 6132 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:30:10.0003 6132 ql40xx - ok
10:30:10.0034 6132 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:30:10.0034 6132 QWAVE - ok
10:30:10.0050 6132 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:30:10.0050 6132 QWAVEdrv - ok
10:30:10.0066 6132 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:30:10.0066 6132 RasAcd - ok
10:30:10.0081 6132 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:30:10.0097 6132 RasAgileVpn - ok
10:30:10.0112 6132 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:30:10.0112 6132 RasAuto - ok
10:30:10.0128 6132 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:30:10.0128 6132 Rasl2tp - ok
10:30:10.0144 6132 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:30:10.0144 6132 RasMan - ok
10:30:10.0175 6132 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:30:10.0175 6132 RasPppoe - ok
10:30:10.0190 6132 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:30:10.0190 6132 RasSstp - ok
10:30:10.0206 6132 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:30:10.0206 6132 rdbss - ok
10:30:10.0222 6132 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
10:30:10.0222 6132 rdpbus - ok
10:30:10.0253 6132 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:30:10.0253 6132 RDPCDD - ok
10:30:10.0268 6132 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:30:10.0268 6132 RDPENCDD - ok
10:30:10.0284 6132 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:30:10.0284 6132 RDPREFMP - ok
10:30:10.0300 6132 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:30:10.0315 6132 RDPWD - ok
10:30:10.0346 6132 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:30:10.0362 6132 rdyboost - ok
10:30:10.0471 6132 [ FD11C1287D38A46FB72353E14D50089C ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
10:30:10.0471 6132 RegSrvc - ok
10:30:10.0502 6132 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:30:10.0518 6132 RemoteAccess - ok
10:30:10.0549 6132 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:30:10.0549 6132 RemoteRegistry - ok
10:30:10.0612 6132 [ 085D18C71AB2611A3D61528132B6501E ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
10:30:10.0627 6132 RoxioNow Service - ok
10:30:10.0643 6132 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
10:30:10.0658 6132 rpcapd - ok
10:30:10.0674 6132 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:30:10.0674 6132 RpcEptMapper - ok
10:30:10.0705 6132 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:30:10.0705 6132 RpcLocator - ok
10:30:10.0721 6132 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
10:30:10.0736 6132 RpcSs - ok
10:30:10.0783 6132 [ 1F5E7AF59B390261A85F5BEDB1BB88B3 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
10:30:10.0783 6132 RSPCIESTOR - ok
10:30:10.0814 6132 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:30:10.0814 6132 rspndr - ok
10:30:10.0846 6132 [ ED5873F7DFB2F96D37F13322211B6BDC ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:30:10.0846 6132 RTL8167 - ok
10:30:10.0861 6132 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:30:10.0861 6132 SamSs - ok
10:30:10.0892 6132 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:30:10.0892 6132 sbp2port - ok
10:30:10.0924 6132 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:30:10.0924 6132 SCardSvr - ok
10:30:10.0955 6132 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:30:10.0955 6132 scfilter - ok
10:30:10.0970 6132 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:30:10.0986 6132 Schedule - ok
10:30:11.0017 6132 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:30:11.0017 6132 SCPolicySvc - ok
10:30:11.0048 6132 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
10:30:11.0064 6132 sdbus - ok
10:30:11.0095 6132 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:30:11.0095 6132 SDRSVC - ok
10:30:11.0142 6132 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:30:11.0142 6132 secdrv - ok
10:30:11.0158 6132 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:30:11.0173 6132 seclogon - ok
10:30:11.0173 6132 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:30:11.0173 6132 SENS - ok
10:30:11.0204 6132 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:30:11.0204 6132 SensrSvc - ok
10:30:11.0220 6132 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
10:30:11.0220 6132 Serenum - ok
10:30:11.0251 6132 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
10:30:11.0251 6132 Serial - ok
10:30:11.0282 6132 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:30:11.0282 6132 sermouse - ok
10:30:11.0298 6132 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:30:11.0314 6132 SessionEnv - ok
10:30:11.0329 6132 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:30:11.0329 6132 sffdisk - ok
10:30:11.0345 6132 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:30:11.0345 6132 sffp_mmc - ok
10:30:11.0360 6132 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:30:11.0360 6132 sffp_sd - ok
10:30:11.0407 6132 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
10:30:11.0423 6132 sfloppy - ok
10:30:11.0438 6132 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:30:11.0438 6132 SharedAccess - ok
10:30:11.0470 6132 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:30:11.0485 6132 ShellHWDetection - ok
10:30:11.0501 6132 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
10:30:11.0501 6132 SiSRaid2 - ok
10:30:11.0532 6132 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:30:11.0532 6132 SiSRaid4 - ok
10:30:11.0626 6132 [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:30:11.0626 6132 SkypeUpdate - ok
10:30:11.0657 6132 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:30:11.0657 6132 Smb - ok
10:30:11.0688 6132 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:30:11.0688 6132 SNMPTRAP - ok
10:30:11.0719 6132 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:30:11.0719 6132 spldr - ok
10:30:11.0750 6132 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:30:11.0782 6132 Spooler - ok
10:30:11.0875 6132 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:30:11.0953 6132 sppsvc - ok
10:30:11.0984 6132 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:30:11.0984 6132 sppuinotify - ok
10:30:12.0016 6132 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:30:12.0031 6132 srv - ok
10:30:12.0047 6132 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:30:12.0047 6132 srv2 - ok
10:30:12.0078 6132 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
10:30:12.0094 6132 SrvHsfHDA - ok
10:30:12.0125 6132 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
10:30:12.0172 6132 SrvHsfV92 - ok
10:30:12.0187 6132 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
10:30:12.0203 6132 SrvHsfWinac - ok
10:30:12.0218 6132 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:30:12.0218 6132 srvnet - ok
10:30:12.0265 6132 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:30:12.0265 6132 SSDPSRV - ok
10:30:12.0281 6132 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:30:12.0281 6132 SstpSvc - ok
10:30:12.0359 6132 [ 20E27AA5BCC01C2149830C05FE22F675 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
10:30:12.0374 6132 STacSV - ok
10:30:12.0390 6132 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
10:30:12.0390 6132 stexstor - ok
10:30:12.0452 6132 [ BEB37CE4E7456F5EFA52D783D1E06D8C ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
10:30:12.0452 6132 STHDA - ok
10:30:12.0484 6132 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:30:12.0499 6132 stisvc - ok
10:30:12.0546 6132 [ D2FBE517D8FE03552E9C6CF91C1540D2 ] StkCMini C:\Windows\system32\Drivers\StkCMini.sys
10:30:12.0577 6132 StkCMini - ok
10:30:12.0608 6132 [ 0E447EF3CC90B32BA478093B998C48FD ] StkSSrv C:\Windows\System32\StkCSrv.exe
10:30:12.0624 6132 StkSSrv - ok
10:30:12.0640 6132 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:30:12.0640 6132 swenum - ok
10:30:12.0671 6132 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:30:12.0671 6132 swprv - ok
10:30:12.0749 6132 [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:30:12.0749 6132 SynTP - ok
10:30:12.0889 6132 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
10:30:12.0920 6132 SysMain - ok
10:30:12.0952 6132 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:30:12.0952 6132 TabletInputService - ok
10:30:12.0967 6132 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:30:12.0983 6132 TapiSrv - ok
10:30:12.0998 6132 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:30:12.0998 6132 TBS - ok
10:30:13.0061 6132 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:30:13.0092 6132 Tcpip - ok
10:30:13.0154 6132 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:30:13.0170 6132 TCPIP6 - ok
10:30:13.0201 6132 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:30:13.0217 6132 tcpipreg - ok
10:30:13.0248 6132 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:30:13.0248 6132 TDPIPE - ok
10:30:13.0279 6132 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:30:13.0279 6132 TDTCP - ok
10:30:13.0295 6132 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:30:13.0295 6132 tdx - ok
10:30:13.0310 6132 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:30:13.0310 6132 TermDD - ok
10:30:13.0342 6132 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:30:13.0373 6132 TermService - ok
10:30:13.0388 6132 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:30:13.0388 6132 Themes - ok
10:30:13.0420 6132 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:30:13.0420 6132 THREADORDER - ok
10:30:13.0435 6132 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:30:13.0451 6132 TrkWks - ok
10:30:13.0482 6132 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:30:13.0498 6132 TrustedInstaller - ok
10:30:13.0513 6132 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:30:13.0513 6132 tssecsrv - ok
10:30:13.0529 6132 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:30:13.0544 6132 TsUsbFlt - ok
10:30:13.0544 6132 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
10:30:13.0544 6132 TsUsbGD - ok
10:30:13.0591 6132 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:30:13.0591 6132 tunnel - ok
10:30:13.0607 6132 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:30:13.0607 6132 uagp35 - ok
10:30:13.0622 6132 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:30:13.0638 6132 udfs - ok
10:30:13.0669 6132 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:30:13.0669 6132 UI0Detect - ok
10:30:13.0685 6132 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:30:13.0685 6132 uliagpkx - ok
10:30:13.0716 6132 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:30:13.0716 6132 umbus - ok
10:30:13.0763 6132 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:30:13.0778 6132 UmPass - ok
10:30:13.0872 6132 [ A678E5DDD974903DD71F503BDCACA218 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
10:30:13.0950 6132 UNS - ok
10:30:13.0966 6132 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:30:13.0997 6132 upnphost - ok
10:30:14.0028 6132 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:30:14.0075 6132 USBAAPL64 - ok
10:30:14.0106 6132 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:30:14.0122 6132 usbaudio - ok
10:30:14.0153 6132 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:30:14.0153 6132 usbccgp - ok
10:30:14.0200 6132 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:30:14.0200 6132 usbcir - ok
10:30:14.0246 6132 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:30:14.0246 6132 usbehci - ok
10:30:14.0278 6132 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:30:14.0278 6132 usbhub - ok
10:30:14.0293 6132 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:30:14.0293 6132 usbohci - ok
10:30:14.0309 6132 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:30:14.0309 6132 usbprint - ok
10:30:14.0340 6132 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:30:14.0340 6132 usbscan - ok
10:30:14.0387 6132 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:30:14.0387 6132 USBSTOR - ok
10:30:14.0449 6132 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:30:14.0449 6132 usbuhci - ok
10:30:14.0496 6132 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:30:14.0496 6132 usbvideo - ok
10:30:14.0527 6132 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:30:14.0527 6132 UxSms - ok
10:30:14.0527 6132 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:30:14.0527 6132 VaultSvc - ok
10:30:14.0558 6132 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:30:14.0558 6132 vdrvroot - ok
10:30:14.0574 6132 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:30:14.0574 6132 vds - ok
10:30:14.0605 6132 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:30:14.0621 6132 vga - ok
10:30:14.0636 6132 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:30:14.0636 6132 VgaSave - ok
10:30:14.0668 6132 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:30:14.0668 6132 vhdmp - ok
10:30:14.0699 6132 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:30:14.0699 6132 viaide - ok
10:30:14.0746 6132 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:30:14.0746 6132 volmgr - ok
10:30:14.0777 6132 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:30:14.0777 6132 volmgrx - ok
10:30:14.0824 6132 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:30:14.0824 6132 volsnap - ok
10:30:14.0870 6132 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:30:14.0870 6132 vsmraid - ok
10:30:14.0917 6132 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:30:14.0933 6132 VSS - ok
10:30:14.0948 6132 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:30:14.0948 6132 vwifibus - ok
10:30:14.0995 6132 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:30:14.0995 6132 vwififlt - ok
10:30:15.0011 6132 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
10:30:15.0011 6132 vwifimp - ok
10:30:15.0042 6132 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:30:15.0042 6132 W32Time - ok
10:30:15.0089 6132 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:30:15.0089 6132 WacomPen - ok
10:30:15.0136 6132 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:30:15.0136 6132 WANARP - ok
10:30:15.0136 6132 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:30:15.0136 6132 Wanarpv6 - ok
10:30:15.0198 6132 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:30:15.0214 6132 WatAdminSvc - ok
10:30:15.0276 6132 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:30:15.0292 6132 wbengine - ok
10:30:15.0307 6132 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:30:15.0307 6132 WbioSrvc - ok
10:30:15.0323 6132 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:30:15.0323 6132 wcncsvc - ok
10:30:15.0354 6132 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:30:15.0354 6132 WcsPlugInService - ok
10:30:15.0385 6132 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
10:30:15.0385 6132 Wd - ok
10:30:15.0401 6132 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:30:15.0416 6132 Wdf01000 - ok
10:30:15.0448 6132 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:30:15.0463 6132 WdiServiceHost - ok
10:30:15.0463 6132 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:30:15.0463 6132 WdiSystemHost - ok
10:30:15.0494 6132 [ 5E1640435DD54D00451156CA5340B109 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
10:30:15.0494 6132 wdkmd - ok
10:30:15.0510 6132 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:30:15.0526 6132 WebClient - ok
10:30:15.0541 6132 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:30:15.0541 6132 Wecsvc - ok
10:30:15.0557 6132 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:30:15.0557 6132 wercplsupport - ok
10:30:15.0588 6132 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:30:15.0588 6132 WerSvc - ok
10:30:15.0619 6132 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:30:15.0619 6132 WfpLwf - ok
10:30:15.0650 6132 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:30:15.0650 6132 WIMMount - ok
10:30:15.0666 6132 WinDefend - ok
10:30:15.0682 6132 WinHttpAutoProxySvc - ok
10:30:15.0744 6132 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:30:15.0744 6132 Winmgmt - ok
10:30:15.0822 6132 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:30:15.0853 6132 WinRM - ok
10:30:15.0900 6132 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
10:30:15.0900 6132 WinUsb - ok
10:30:15.0931 6132 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:30:15.0947 6132 Wlansvc - ok
10:30:15.0994 6132 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:30:15.0994 6132 wlcrasvc - ok
10:30:16.0072 6132 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:30:16.0118 6132 wlidsvc - ok
10:30:16.0150 6132 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:30:16.0150 6132 WmiAcpi - ok
10:30:16.0181 6132 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:30:16.0196 6132 wmiApSrv - ok
10:30:16.0228 6132 WMPNetworkSvc - ok
10:30:16.0243 6132 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:30:16.0259 6132 WPCSvc - ok
10:30:16.0259 6132 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:30:16.0274 6132 WPDBusEnum - ok
10:30:16.0290 6132 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:30:16.0290 6132 ws2ifsl - ok
10:30:16.0306 6132 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
10:30:16.0306 6132 wscsvc - ok
10:30:16.0306 6132 WSearch - ok
10:30:16.0399 6132 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:30:16.0462 6132 wuauserv - ok
10:30:16.0493 6132 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:30:16.0508 6132 WudfPf - ok
10:30:16.0524 6132 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:30:16.0524 6132 WUDFRd - ok
10:30:16.0571 6132 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:30:16.0571 6132 wudfsvc - ok
10:30:16.0618 6132 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
10:30:16.0618 6132 WwanSvc - ok
10:30:16.0649 6132 ================ Scan global ===============================
10:30:16.0664 6132 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:30:16.0711 6132 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:30:16.0711 6132 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:30:16.0742 6132 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:30:16.0742 6132 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:30:16.0758 6132 [Global] - ok
10:30:16.0758 6132 ================ Scan MBR ==================================
10:30:16.0758 6132 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:30:18.0146 6132 \Device\Harddisk0\DR0 - ok
10:30:18.0146 6132 ================ Scan VBR ==================================
10:30:18.0162 6132 [ 278764E342AE9826F515F99072F5E531 ] \Device\Harddisk0\DR0\Partition1
10:30:18.0162 6132 \Device\Harddisk0\DR0\Partition1 - ok
10:30:18.0178 6132 [ 3594864B253D60DAAC04509B06D624C0 ] \Device\Harddisk0\DR0\Partition2
10:30:18.0178 6132 \Device\Harddisk0\DR0\Partition2 - ok
10:30:18.0193 6132 [ 30F8046B2AB6988566AFBD94BA7839B3 ] \Device\Harddisk0\DR0\Partition3
10:30:18.0224 6132 \Device\Harddisk0\DR0\Partition3 - ok
10:30:18.0271 6132 [ 2E626B2889DC03E43130709591CB17E8 ] \Device\Harddisk0\DR0\Partition4
10:30:18.0271 6132 \Device\Harddisk0\DR0\Partition4 - ok
10:30:18.0271 6132 ============================================================
10:30:18.0271 6132 Scan finished
10:30:18.0271 6132 ============================================================
10:30:18.0271 6124 Detected object count: 0
10:30:18.0271 6124 Actual detected object count: 0
10:31:46.0800 6008 Deinitialize success