Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Mcafee Antivirus Firewall Keeps turning off


  • Please log in to reply
13 replies to this topic

#1 shaileshsgaur

shaileshsgaur

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 03 October 2012 - 04:27 PM

My Mcafee Antivirus keeps turning off. It seems my laptop is infected. Let me know what should I do. I have Windows 7 OS.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 03 October 2012 - 04:36 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 03 October 2012 - 05:22 PM

Hi,

aswMBR crashes when I run it, should I run in safe mode

#4 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 04 October 2012 - 10:01 PM

////////////////////////
TDS Killer
/////////////////////////

22:28:04.0007 2500 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
22:28:04.0179 2500 ============================================================
22:28:04.0179 2500 Current date / time: 2012/10/04 22:28:04.0179
22:28:04.0179 2500 SystemInfo:
22:28:04.0179 2500
22:28:04.0179 2500 OS Version: 6.1.7601 ServicePack: 1.0
22:28:04.0179 2500 Product type: Workstation
22:28:04.0179 2500 ComputerName: SAIBABA-HP
22:28:04.0179 2500 UserName: Saibaba
22:28:04.0179 2500 Windows directory: C:\windows
22:28:04.0179 2500 System windows directory: C:\windows
22:28:04.0179 2500 Running under WOW64
22:28:04.0179 2500 Processor architecture: Intel x64
22:28:04.0179 2500 Number of processors: 4
22:28:04.0179 2500 Page size: 0x1000
22:28:04.0179 2500 Boot type: Safe boot with network
22:28:04.0179 2500 ============================================================
22:28:04.0678 2500 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:28:04.0678 2500 ============================================================
22:28:04.0678 2500 \Device\Harddisk0\DR0:
22:28:04.0678 2500 MBR partitions:
22:28:04.0678 2500 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
22:28:04.0678 2500 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x479F4800
22:28:04.0678 2500 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x47A8B000, BlocksNum 0x23CB800
22:28:04.0678 2500 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x49E56800, BlocksNum 0xA01000
22:28:04.0678 2500 ============================================================
22:28:04.0709 2500 C: <-> \Device\Harddisk0\DR0\Partition2
22:28:04.0756 2500 D: <-> \Device\Harddisk0\DR0\Partition3
22:28:04.0756 2500 E: <-> \Device\Harddisk0\DR0\Partition4
22:28:04.0756 2500 ============================================================
22:28:04.0756 2500 Initialize success
22:28:04.0756 2500 ============================================================
22:28:17.0782 2552 ============================================================
22:28:17.0782 2552 Scan started
22:28:17.0782 2552 Mode: Manual; TDLFS;
22:28:17.0782 2552 ============================================================
22:28:18.0375 2552 ================ Scan system memory ========================
22:28:18.0375 2552 System memory - ok
22:28:18.0375 2552 ================ Scan services =============================
22:28:18.0499 2552 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
22:28:18.0499 2552 1394ohci - ok
22:28:18.0531 2552 [ 7A330A42870EB1FA81F88BE514D2D566 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
22:28:18.0531 2552 Accelerometer - ok
22:28:18.0624 2552 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:28:18.0624 2552 ACDaemon - ok
22:28:18.0671 2552 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
22:28:18.0671 2552 ACPI - ok
22:28:18.0702 2552 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
22:28:18.0702 2552 AcpiPmi - ok
22:28:18.0827 2552 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:28:18.0827 2552 AdobeFlashPlayerUpdateSvc - ok
22:28:18.0874 2552 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
22:28:18.0889 2552 adp94xx - ok
22:28:18.0905 2552 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
22:28:18.0921 2552 adpahci - ok
22:28:18.0967 2552 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
22:28:18.0967 2552 adpu320 - ok
22:28:18.0983 2552 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
22:28:18.0999 2552 AeLookupSvc - ok
22:28:19.0077 2552 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
22:28:19.0077 2552 AESTFilters - ok
22:28:19.0139 2552 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\windows\syswow64\drivers\Afc.sys
22:28:19.0139 2552 Afc - ok
22:28:19.0170 2552 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
22:28:19.0170 2552 AFD - ok
22:28:19.0217 2552 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
22:28:19.0248 2552 AgereSoftModem - ok
22:28:19.0311 2552 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
22:28:19.0311 2552 agp440 - ok
22:28:19.0342 2552 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
22:28:19.0342 2552 ALG - ok
22:28:19.0387 2552 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
22:28:19.0387 2552 aliide - ok
22:28:19.0427 2552 [ D5518E3BBFD69520FA3BDD3D05B5B458 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
22:28:19.0427 2552 AMD External Events Utility - ok
22:28:19.0457 2552 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
22:28:19.0457 2552 amdide - ok
22:28:19.0507 2552 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
22:28:19.0507 2552 AmdK8 - ok
22:28:19.0687 2552 [ BE85FDC481F3BFBC036BB5D96DBBD12D ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
22:28:19.0837 2552 amdkmdag - ok
22:28:19.0897 2552 [ 8E0146E61409C46855F1DD008EAEDD5D ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
22:28:19.0897 2552 amdkmdap - ok
22:28:19.0937 2552 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
22:28:19.0937 2552 AmdPPM - ok
22:28:19.0967 2552 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
22:28:19.0967 2552 amdsata - ok
22:28:19.0997 2552 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
22:28:19.0997 2552 amdsbs - ok
22:28:20.0017 2552 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
22:28:20.0017 2552 amdxata - ok
22:28:20.0067 2552 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
22:28:20.0067 2552 AppID - ok
22:28:20.0097 2552 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
22:28:20.0097 2552 AppIDSvc - ok
22:28:20.0147 2552 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
22:28:20.0147 2552 Appinfo - ok
22:28:20.0267 2552 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:28:20.0267 2552 Apple Mobile Device - ok
22:28:20.0287 2552 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\windows\System32\appmgmts.dll
22:28:20.0287 2552 AppMgmt - ok
22:28:20.0327 2552 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
22:28:20.0327 2552 arc - ok
22:28:20.0347 2552 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
22:28:20.0347 2552 arcsas - ok
22:28:20.0397 2552 [ 357635F16D28558C50870F4EF8AA4712 ] ARCVCAM C:\windows\system32\DRIVERS\ArcSoftVCapture.sys
22:28:20.0397 2552 ARCVCAM - ok
22:28:20.0497 2552 [ B3FC1E4760175CC9D0DEFF38AEF96E99 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:28:20.0537 2552 aspnet_state - ok
22:28:20.0557 2552 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
22:28:20.0567 2552 AsyncMac - ok
22:28:20.0597 2552 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
22:28:20.0597 2552 atapi - ok
22:28:20.0637 2552 [ CBE61B4494165F458BD87E37181EE934 ] AthBTPort C:\windows\system32\DRIVERS\btath_flt.sys
22:28:20.0637 2552 AthBTPort - ok
22:28:20.0687 2552 [ 4C4A576818EA028257C624AE36FF7A03 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
22:28:20.0687 2552 Atheros Bt&Wlan Coex Agent - ok
22:28:20.0717 2552 [ 684B36CA4067DA7000CF95771A3CF0E7 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
22:28:20.0717 2552 AtherosSvc - ok
22:28:20.0787 2552 [ 675B31FCFAF319C0CBB908FEB6B90471 ] athr C:\windows\system32\DRIVERS\athrx.sys
22:28:20.0827 2552 athr - ok
22:28:20.0887 2552 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
22:28:20.0897 2552 AudioEndpointBuilder - ok
22:28:20.0907 2552 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
22:28:20.0907 2552 AudioSrv - ok
22:28:20.0947 2552 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
22:28:20.0947 2552 AxInstSV - ok
22:28:21.0047 2552 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
22:28:21.0047 2552 b06bdrv - ok
22:28:21.0107 2552 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
22:28:21.0107 2552 b57nd60a - ok
22:28:21.0207 2552 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
22:28:21.0217 2552 BBSvc - ok
22:28:21.0247 2552 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
22:28:21.0247 2552 BBUpdate - ok
22:28:21.0297 2552 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
22:28:21.0297 2552 BDESVC - ok
22:28:21.0327 2552 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
22:28:21.0327 2552 Beep - ok
22:28:21.0387 2552 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
22:28:21.0397 2552 BITS - ok
22:28:21.0427 2552 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
22:28:21.0427 2552 blbdrive - ok
22:28:21.0477 2552 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:28:21.0477 2552 Bonjour Service - ok
22:28:21.0507 2552 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
22:28:21.0507 2552 bowser - ok
22:28:21.0537 2552 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
22:28:21.0537 2552 BrFiltLo - ok
22:28:21.0557 2552 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
22:28:21.0557 2552 BrFiltUp - ok
22:28:21.0597 2552 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
22:28:21.0597 2552 Browser - ok
22:28:21.0627 2552 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
22:28:21.0627 2552 Brserid - ok
22:28:21.0647 2552 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
22:28:21.0647 2552 BrSerWdm - ok
22:28:21.0667 2552 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
22:28:21.0667 2552 BrUsbMdm - ok
22:28:21.0687 2552 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
22:28:21.0687 2552 BrUsbSer - ok
22:28:21.0717 2552 [ 227C8F308DE4AF4808E587465CEAB838 ] BTATH_A2DP C:\windows\system32\drivers\btath_a2dp.sys
22:28:21.0717 2552 BTATH_A2DP - ok
22:28:21.0747 2552 [ A83A91D07D1FE6BBE7A9DB46CA00434B ] BTATH_BUS C:\windows\system32\DRIVERS\btath_bus.sys
22:28:21.0747 2552 BTATH_BUS - ok
22:28:21.0767 2552 [ C864FF85EE16D61C2BDD5EF76824625F ] BTATH_HCRP C:\windows\system32\DRIVERS\btath_hcrp.sys
22:28:21.0767 2552 BTATH_HCRP - ok
22:28:21.0787 2552 [ 0DEA505EFB5D771826D177EF8B8A208F ] BTATH_LWFLT C:\windows\system32\DRIVERS\btath_lwflt.sys
22:28:21.0787 2552 BTATH_LWFLT - ok
22:28:21.0797 2552 [ 724C8088C96EFE7A3E63FEC21D4681C0 ] BTATH_RCP C:\windows\system32\DRIVERS\btath_rcp.sys
22:28:21.0797 2552 BTATH_RCP - ok
22:28:21.0847 2552 [ FF8B065F96E4D9525AA7227299FBD05C ] BtFilter C:\windows\system32\DRIVERS\btfilter.sys
22:28:21.0847 2552 BtFilter - ok
22:28:21.0887 2552 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
22:28:21.0887 2552 BthEnum - ok
22:28:21.0907 2552 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
22:28:21.0907 2552 BTHMODEM - ok
22:28:21.0947 2552 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
22:28:21.0947 2552 BthPan - ok
22:28:21.0987 2552 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
22:28:21.0987 2552 BTHPORT - ok
22:28:22.0027 2552 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
22:28:22.0027 2552 bthserv - ok
22:28:22.0067 2552 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
22:28:22.0067 2552 BTHUSB - ok
22:28:22.0087 2552 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
22:28:22.0087 2552 cdfs - ok
22:28:22.0127 2552 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\drivers\cdrom.sys
22:28:22.0137 2552 cdrom - ok
22:28:22.0167 2552 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
22:28:22.0167 2552 CertPropSvc - ok
22:28:22.0207 2552 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\windows\system32\drivers\cfwids.sys
22:28:22.0217 2552 cfwids - ok
22:28:22.0257 2552 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
22:28:22.0257 2552 circlass - ok
22:28:22.0287 2552 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
22:28:22.0287 2552 CLFS - ok
22:28:22.0357 2552 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:28:22.0357 2552 clr_optimization_v2.0.50727_32 - ok
22:28:22.0407 2552 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:28:22.0407 2552 clr_optimization_v2.0.50727_64 - ok
22:28:22.0477 2552 [ 1EBE1854D94B704D1C0EEFAEF4711151 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:28:22.0647 2552 clr_optimization_v4.0.30319_32 - ok
22:28:22.0707 2552 [ F44A20931FDD77EBFC36B263FD795959 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:28:22.0857 2552 clr_optimization_v4.0.30319_64 - ok
22:28:22.0887 2552 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
22:28:22.0887 2552 CmBatt - ok
22:28:22.0907 2552 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
22:28:22.0907 2552 cmdide - ok
22:28:22.0947 2552 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
22:28:22.0947 2552 CNG - ok
22:28:23.0007 2552 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
22:28:23.0007 2552 Compbatt - ok
22:28:23.0067 2552 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
22:28:23.0067 2552 CompositeBus - ok
22:28:23.0077 2552 COMSysApp - ok
22:28:23.0087 2552 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
22:28:23.0087 2552 crcdisk - ok
22:28:23.0127 2552 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
22:28:23.0127 2552 CryptSvc - ok
22:28:23.0157 2552 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\windows\system32\drivers\csc.sys
22:28:23.0167 2552 CSC - ok
22:28:23.0207 2552 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\windows\System32\cscsvc.dll
22:28:23.0217 2552 CscService - ok
22:28:23.0297 2552 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:28:23.0297 2552 cvhsvc - ok
22:28:23.0377 2552 [ 2E3374F9F0B5A3247B779978980C24CB ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
22:28:23.0377 2552 DAMDrv - ok
22:28:23.0417 2552 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
22:28:23.0417 2552 DcomLaunch - ok
22:28:23.0477 2552 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
22:28:23.0477 2552 defragsvc - ok
22:28:23.0517 2552 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
22:28:23.0517 2552 DfsC - ok
22:28:23.0577 2552 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
22:28:23.0587 2552 Dhcp - ok
22:28:23.0617 2552 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
22:28:23.0617 2552 discache - ok
22:28:23.0647 2552 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
22:28:23.0647 2552 Disk - ok
22:28:23.0667 2552 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
22:28:23.0667 2552 Dnscache - ok
22:28:23.0717 2552 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
22:28:23.0717 2552 dot3svc - ok
22:28:23.0797 2552 [ AA224B1BA5B2093DE97D6FCDDCF5D13B ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
22:28:23.0797 2552 DpHost - ok
22:28:23.0837 2552 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
22:28:23.0837 2552 DPS - ok
22:28:23.0877 2552 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
22:28:23.0877 2552 drmkaud - ok
22:28:23.0917 2552 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
22:28:23.0927 2552 DXGKrnl - ok
22:28:23.0957 2552 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
22:28:23.0957 2552 EapHost - ok
22:28:24.0037 2552 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
22:28:24.0127 2552 ebdrv - ok
22:28:24.0147 2552 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
22:28:24.0147 2552 EFS - ok
22:28:24.0227 2552 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
22:28:24.0237 2552 ehRecvr - ok
22:28:24.0277 2552 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
22:28:24.0277 2552 ehSched - ok
22:28:24.0317 2552 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
22:28:24.0317 2552 elxstor - ok
22:28:24.0347 2552 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
22:28:24.0347 2552 ErrDev - ok
22:28:24.0387 2552 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
22:28:24.0387 2552 EventSystem - ok
22:28:24.0407 2552 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
22:28:24.0407 2552 exfat - ok
22:28:24.0447 2552 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
22:28:24.0447 2552 fastfat - ok
22:28:24.0487 2552 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
22:28:24.0487 2552 Fax - ok
22:28:24.0517 2552 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
22:28:24.0517 2552 fdc - ok
22:28:24.0547 2552 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
22:28:24.0547 2552 fdPHost - ok
22:28:24.0557 2552 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
22:28:24.0557 2552 FDResPub - ok
22:28:24.0597 2552 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
22:28:24.0597 2552 FileInfo - ok
22:28:24.0607 2552 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
22:28:24.0607 2552 Filetrace - ok
22:28:24.0687 2552 [ 87B3E5C567509DDF3B124B16A6A3FBB7 ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
22:28:24.0687 2552 FLCDLOCK - ok
22:28:24.0747 2552 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
22:28:24.0747 2552 flpydisk - ok
22:28:24.0777 2552 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
22:28:24.0777 2552 FltMgr - ok
22:28:24.0837 2552 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
22:28:24.0847 2552 FontCache - ok
22:28:24.0887 2552 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:28:24.0897 2552 FontCache3.0.0.0 - ok
22:28:24.0927 2552 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
22:28:24.0937 2552 FsDepends - ok
22:28:24.0957 2552 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
22:28:24.0957 2552 Fs_Rec - ok
22:28:25.0097 2552 [ F5705A48AC81842BB6C1689E365C2AF4 ] fussvc C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe
22:28:25.0097 2552 fussvc - ok
22:28:25.0147 2552 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
22:28:25.0147 2552 fvevol - ok
22:28:25.0177 2552 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
22:28:25.0177 2552 gagp30kx - ok
22:28:25.0267 2552 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:28:25.0267 2552 GamesAppService - ok
22:28:25.0317 2552 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
22:28:25.0317 2552 GEARAspiWDM - ok
22:28:25.0357 2552 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
22:28:25.0367 2552 gpsvc - ok
22:28:25.0457 2552 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:28:25.0467 2552 gupdate - ok
22:28:25.0467 2552 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:28:25.0467 2552 gupdatem - ok
22:28:25.0557 2552 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:28:25.0557 2552 gusvc - ok
22:28:25.0597 2552 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
22:28:25.0607 2552 hcw85cir - ok
22:28:25.0637 2552 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
22:28:25.0637 2552 HdAudAddService - ok
22:28:25.0717 2552 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
22:28:25.0717 2552 HDAudBus - ok
22:28:25.0747 2552 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
22:28:25.0757 2552 HidBatt - ok
22:28:25.0767 2552 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
22:28:25.0767 2552 HidBth - ok
22:28:25.0807 2552 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
22:28:25.0807 2552 HidIr - ok
22:28:25.0837 2552 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
22:28:25.0837 2552 hidserv - ok
22:28:25.0897 2552 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
22:28:25.0897 2552 HidUsb - ok
22:28:25.0937 2552 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
22:28:25.0937 2552 hkmsvc - ok
22:28:25.0977 2552 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
22:28:25.0977 2552 HomeGroupListener - ok
22:28:26.0037 2552 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
22:28:26.0037 2552 HomeGroupProvider - ok
22:28:26.0087 2552 [ 02C2108111D9656A9729995D2219FB99 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
22:28:26.0087 2552 HP Power Assistant Service - ok
22:28:26.0167 2552 [ 37890FDD25BEAC6AEDA3E2D57F2B29EB ] HP ProtectTools Service c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
22:28:26.0177 2552 HP ProtectTools Service - ok
22:28:26.0227 2552 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:28:26.0227 2552 HP Support Assistant Service - ok
22:28:26.0267 2552 [ DA075126F867727810EE9B98B3041C4C ] HPAuto C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
22:28:26.0277 2552 HPAuto - ok
22:28:26.0367 2552 [ D4B198E9B3CE6D05771E116D2D560F2F ] hpCMSrv c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
22:28:26.0377 2552 hpCMSrv - ok
22:28:26.0407 2552 [ A9FC4D7EA174BBF5A675B299FFAD80A2 ] HPDayStarterService c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
22:28:26.0417 2552 HPDayStarterService - ok
22:28:26.0477 2552 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
22:28:26.0477 2552 HPDrvMntSvc.exe - ok
22:28:26.0497 2552 [ A4BE23C451ADEB252CD17A0532CAE220 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
22:28:26.0497 2552 hpdskflt - ok
22:28:26.0537 2552 [ 98FAB0413C7365C9069994D7CE47F3EC ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
22:28:26.0547 2552 HPFSService - ok
22:28:26.0587 2552 [ 0ADC6AFAB2B17FFC9C6E24DD1583F888 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
22:28:26.0597 2552 hpHotkeyMonitor - ok
22:28:26.0647 2552 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\windows\system32\DRIVERS\HpqKbFiltr.sys
22:28:26.0647 2552 HpqKbFiltr - ok
22:28:26.0697 2552 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:28:26.0707 2552 hpqwmiex - ok
22:28:26.0747 2552 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
22:28:26.0747 2552 HpSAMD - ok
22:28:26.0767 2552 [ A88A45E82BC54BFFB49C63973010226A ] hpsrv C:\windows\system32\Hpservice.exe
22:28:26.0777 2552 hpsrv - ok
22:28:26.0817 2552 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
22:28:26.0827 2552 HTTP - ok
22:28:26.0867 2552 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
22:28:26.0867 2552 hwpolicy - ok
22:28:26.0927 2552 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
22:28:26.0927 2552 i8042prt - ok
22:28:26.0967 2552 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
22:28:26.0967 2552 iaStor - ok
22:28:27.0057 2552 [ 117FF657E0D9BBD61B5C3E71E63D3919 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:28:27.0057 2552 IAStorDataMgrSvc - ok
22:28:27.0087 2552 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
22:28:27.0087 2552 iaStorV - ok
22:28:27.0137 2552 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:28:27.0147 2552 idsvc - ok
22:28:27.0187 2552 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
22:28:27.0187 2552 iirsp - ok
22:28:27.0237 2552 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
22:28:27.0247 2552 IKEEXT - ok
22:28:27.0287 2552 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
22:28:27.0287 2552 IntcDAud - ok
22:28:27.0317 2552 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
22:28:27.0317 2552 intelide - ok
22:28:27.0547 2552 [ EFE5A0AF39A8E179624117C521F1E012 ] intelkmd C:\windows\system32\DRIVERS\igdpmd64.sys
22:28:27.0767 2552 intelkmd - ok
22:28:27.0807 2552 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
22:28:27.0807 2552 intelppm - ok
22:28:27.0827 2552 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
22:28:27.0827 2552 IPBusEnum - ok
22:28:27.0867 2552 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
22:28:27.0877 2552 IpFilterDriver - ok
22:28:27.0907 2552 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
22:28:27.0907 2552 IPMIDRV - ok
22:28:27.0927 2552 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
22:28:27.0927 2552 IPNAT - ok
22:28:27.0977 2552 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:28:27.0987 2552 iPod Service - ok
22:28:28.0017 2552 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
22:28:28.0017 2552 IRENUM - ok
22:28:28.0047 2552 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
22:28:28.0047 2552 isapnp - ok
22:28:28.0077 2552 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
22:28:28.0087 2552 iScsiPrt - ok
22:28:28.0147 2552 [ 3B794CA0DE73790420DEBA3C759F1502 ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
22:28:28.0147 2552 jhi_service - ok
22:28:28.0197 2552 [ 0B44199365A69696109AB9A5855E0841 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
22:28:28.0197 2552 JMCR - ok
22:28:28.0207 2552 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
22:28:28.0207 2552 kbdclass - ok
22:28:28.0237 2552 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
22:28:28.0237 2552 kbdhid - ok
22:28:28.0257 2552 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
22:28:28.0257 2552 KeyIso - ok
22:28:28.0297 2552 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
22:28:28.0297 2552 KSecDD - ok
22:28:28.0327 2552 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
22:28:28.0337 2552 KSecPkg - ok
22:28:28.0347 2552 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
22:28:28.0347 2552 ksthunk - ok
22:28:28.0397 2552 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
22:28:28.0407 2552 KtmRm - ok
22:28:28.0447 2552 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
22:28:28.0447 2552 LanmanServer - ok
22:28:28.0487 2552 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
22:28:28.0497 2552 LanmanWorkstation - ok
22:28:28.0517 2552 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
22:28:28.0527 2552 lltdio - ok
22:28:28.0547 2552 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
22:28:28.0557 2552 lltdsvc - ok
22:28:28.0567 2552 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
22:28:28.0567 2552 lmhosts - ok
22:28:28.0617 2552 [ 97F9EAAC985A663394CD8F54DCD3E73A ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:28:28.0617 2552 LMS - ok
22:28:28.0657 2552 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
22:28:28.0657 2552 LSI_FC - ok
22:28:28.0677 2552 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
22:28:28.0677 2552 LSI_SAS - ok
22:28:28.0697 2552 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
22:28:28.0697 2552 LSI_SAS2 - ok
22:28:28.0707 2552 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
22:28:28.0707 2552 LSI_SCSI - ok
22:28:28.0737 2552 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
22:28:28.0737 2552 luafv - ok
22:28:28.0837 2552 [ 80E7E71CAAF758BF084BDF13996D52D0 ] McAfee Endpoint Encryption Agent C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
22:28:28.0847 2552 McAfee Endpoint Encryption Agent - ok
22:28:28.0917 2552 [ ACB01BF1A905356AB7F978C7FE852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:28:28.0917 2552 McAfee SiteAdvisor Service - ok
22:28:28.0927 2552 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:28:28.0927 2552 McMPFSvc - ok
22:28:28.0947 2552 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:28:28.0947 2552 mcmscsvc - ok
22:28:28.0947 2552 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:28:28.0957 2552 McNaiAnn - ok
22:28:28.0987 2552 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:28:28.0987 2552 McNASvc - ok
22:28:29.0087 2552 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
22:28:29.0087 2552 McODS - ok
22:28:29.0097 2552 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:28:29.0097 2552 McProxy - ok
22:28:29.0157 2552 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
22:28:29.0167 2552 McShield - ok
22:28:29.0197 2552 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
22:28:29.0197 2552 Mcx2Svc - ok
22:28:29.0227 2552 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
22:28:29.0227 2552 megasas - ok
22:28:29.0247 2552 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
22:28:29.0257 2552 MegaSR - ok
22:28:29.0287 2552 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
22:28:29.0287 2552 MEIx64 - ok
22:28:29.0317 2552 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\windows\system32\drivers\mfeapfk.sys
22:28:29.0317 2552 mfeapfk - ok
22:28:29.0367 2552 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\windows\system32\drivers\mfeavfk.sys
22:28:29.0367 2552 mfeavfk - ok
22:28:29.0407 2552 [ A11F574A809B3751A17815F00C88781F ] MfeEpePc C:\windows\system32\drivers\MfeEpePc.sys
22:28:29.0407 2552 MfeEpePc - ok
22:28:29.0437 2552 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:28:29.0437 2552 mfefire - ok
22:28:29.0467 2552 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\windows\system32\drivers\mfefirek.sys
22:28:29.0467 2552 mfefirek - ok
22:28:29.0497 2552 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
22:28:29.0507 2552 mfehidk - ok
22:28:29.0547 2552 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\windows\system32\DRIVERS\mfenlfk.sys
22:28:29.0547 2552 mfenlfk - ok
22:28:29.0577 2552 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\windows\system32\drivers\mferkdet.sys
22:28:29.0577 2552 mferkdet - ok
22:28:29.0607 2552 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\windows\system32\mfevtps.exe
22:28:29.0607 2552 mfevtp - ok
22:28:29.0637 2552 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\windows\system32\drivers\mfewfpk.sys
22:28:29.0637 2552 mfewfpk - ok
22:28:29.0677 2552 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
22:28:29.0677 2552 MMCSS - ok
22:28:29.0697 2552 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
22:28:29.0697 2552 Modem - ok
22:28:29.0727 2552 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
22:28:29.0727 2552 monitor - ok
22:28:29.0747 2552 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
22:28:29.0757 2552 mouclass - ok
22:28:29.0767 2552 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
22:28:29.0777 2552 mouhid - ok
22:28:29.0797 2552 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
22:28:29.0797 2552 mountmgr - ok
22:28:29.0857 2552 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:28:29.0867 2552 MozillaMaintenance - ok
22:28:29.0887 2552 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
22:28:29.0887 2552 mpio - ok
22:28:29.0917 2552 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
22:28:29.0917 2552 mpsdrv - ok
22:28:29.0937 2552 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
22:28:29.0937 2552 MRxDAV - ok
22:28:29.0967 2552 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
22:28:29.0967 2552 mrxsmb - ok
22:28:29.0977 2552 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
22:28:29.0987 2552 mrxsmb10 - ok
22:28:30.0007 2552 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
22:28:30.0007 2552 mrxsmb20 - ok
22:28:30.0037 2552 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
22:28:30.0037 2552 msahci - ok
22:28:30.0047 2552 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
22:28:30.0047 2552 msdsm - ok
22:28:30.0067 2552 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
22:28:30.0067 2552 MSDTC - ok
22:28:30.0117 2552 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
22:28:30.0117 2552 Msfs - ok
22:28:30.0127 2552 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
22:28:30.0127 2552 mshidkmdf - ok
22:28:30.0137 2552 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
22:28:30.0137 2552 msisadrv - ok
22:28:30.0167 2552 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
22:28:30.0177 2552 MSiSCSI - ok
22:28:30.0187 2552 msiserver - ok
22:28:30.0227 2552 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
22:28:30.0227 2552 MSKSSRV - ok
22:28:30.0237 2552 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
22:28:30.0237 2552 MSPCLOCK - ok
22:28:30.0247 2552 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
22:28:30.0257 2552 MSPQM - ok
22:28:30.0287 2552 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
22:28:30.0287 2552 MsRPC - ok
22:28:30.0327 2552 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
22:28:30.0327 2552 mssmbios - ok
22:28:30.0417 2552 [ A5687FA709582EBF47AF0D9C666BDC79 ] MSSQL$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
22:28:30.0417 2552 MSSQL$SQLEXPRESS - ok
22:28:30.0487 2552 MSSQLSERVER - ok
22:28:30.0547 2552 [ 8E8E74C953EB0C4F8828D99D6F27FD6F ] MSSQLServerADHelper100 c:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
22:28:30.0547 2552 MSSQLServerADHelper100 - ok
22:28:30.0577 2552 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
22:28:30.0587 2552 MSTEE - ok
22:28:30.0597 2552 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
22:28:30.0597 2552 MTConfig - ok
22:28:30.0617 2552 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
22:28:30.0617 2552 Mup - ok
22:28:30.0657 2552 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
22:28:30.0657 2552 napagent - ok
22:28:30.0707 2552 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
22:28:30.0707 2552 NativeWifiP - ok
22:28:30.0757 2552 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
22:28:30.0767 2552 NDIS - ok
22:28:30.0787 2552 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
22:28:30.0787 2552 NdisCap - ok
22:28:30.0817 2552 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
22:28:30.0817 2552 NdisTapi - ok
22:28:30.0847 2552 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
22:28:30.0847 2552 Ndisuio - ok
22:28:30.0887 2552 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
22:28:30.0887 2552 NdisWan - ok
22:28:30.0917 2552 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
22:28:30.0917 2552 NDProxy - ok
22:28:30.0927 2552 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
22:28:30.0937 2552 NetBIOS - ok
22:28:30.0957 2552 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
22:28:30.0957 2552 NetBT - ok
22:28:30.0967 2552 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
22:28:30.0977 2552 Netlogon - ok
22:28:30.0997 2552 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
22:28:31.0007 2552 Netman - ok
22:28:31.0067 2552 [ F50C405C5FCE480D39C882205EBA26A8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:28:31.0077 2552 NetMsmqActivator - ok
22:28:31.0087 2552 [ F50C405C5FCE480D39C882205EBA26A8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:28:31.0087 2552 NetPipeActivator - ok
22:28:31.0107 2552 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
22:28:31.0117 2552 netprofm - ok
22:28:31.0127 2552 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:28:31.0127 2552 NetTcpActivator - ok
22:28:31.0127 2552 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:28:31.0127 2552 NetTcpPortSharing - ok
22:28:31.0177 2552 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
22:28:31.0177 2552 nfrd960 - ok
22:28:31.0207 2552 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
22:28:31.0217 2552 NlaSvc - ok
22:28:31.0227 2552 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
22:28:31.0227 2552 Npfs - ok
22:28:31.0257 2552 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
22:28:31.0257 2552 nsi - ok
22:28:31.0257 2552 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
22:28:31.0257 2552 nsiproxy - ok
22:28:31.0307 2552 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
22:28:31.0327 2552 Ntfs - ok
22:28:31.0347 2552 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
22:28:31.0347 2552 Null - ok
22:28:31.0367 2552 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
22:28:31.0367 2552 nusb3hub - ok
22:28:31.0407 2552 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
22:28:31.0407 2552 nusb3xhc - ok
22:28:31.0427 2552 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
22:28:31.0427 2552 nvraid - ok
22:28:31.0447 2552 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
22:28:31.0447 2552 nvstor - ok
22:28:31.0487 2552 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
22:28:31.0487 2552 nv_agp - ok
22:28:31.0527 2552 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
22:28:31.0527 2552 ohci1394 - ok
22:28:31.0587 2552 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:28:31.0587 2552 ose - ok
22:28:31.0737 2552 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:28:31.0837 2552 osppsvc - ok
22:28:31.0867 2552 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
22:28:31.0867 2552 p2pimsvc - ok
22:28:31.0887 2552 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
22:28:31.0887 2552 p2psvc - ok
22:28:31.0927 2552 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
22:28:31.0927 2552 Parport - ok
22:28:31.0957 2552 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
22:28:31.0957 2552 partmgr - ok
22:28:31.0967 2552 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
22:28:31.0977 2552 PcaSvc - ok
22:28:31.0997 2552 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
22:28:31.0997 2552 pci - ok
22:28:32.0007 2552 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
22:28:32.0007 2552 pciide - ok
22:28:32.0027 2552 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
22:28:32.0027 2552 pcmcia - ok
22:28:32.0037 2552 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
22:28:32.0037 2552 pcw - ok
22:28:32.0067 2552 pdfcDispatcher - ok
22:28:32.0117 2552 [ 8F924F00F2F81422FD7C340FDA0E00D8 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
22:28:32.0117 2552 PdiService - ok
22:28:32.0147 2552 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
22:28:32.0147 2552 PEAUTH - ok
22:28:32.0187 2552 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\windows\system32\peerdistsvc.dll
22:28:32.0207 2552 PeerDistSvc - ok
22:28:32.0267 2552 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
22:28:32.0297 2552 PerfHost - ok
22:28:32.0347 2552 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
22:28:32.0357 2552 pla - ok
22:28:32.0387 2552 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
22:28:32.0397 2552 PlugPlay - ok
22:28:32.0407 2552 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
22:28:32.0417 2552 PNRPAutoReg - ok
22:28:32.0437 2552 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
22:28:32.0447 2552 PNRPsvc - ok
22:28:32.0477 2552 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
22:28:32.0477 2552 PolicyAgent - ok
22:28:32.0507 2552 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
22:28:32.0507 2552 Power - ok
22:28:32.0547 2552 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
22:28:32.0547 2552 PptpMiniport - ok
22:28:32.0567 2552 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
22:28:32.0577 2552 Processor - ok
22:28:32.0607 2552 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
22:28:32.0607 2552 ProfSvc - ok
22:28:32.0627 2552 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
22:28:32.0627 2552 ProtectedStorage - ok
22:28:32.0667 2552 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
22:28:32.0667 2552 Psched - ok
22:28:32.0697 2552 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
22:28:32.0717 2552 ql2300 - ok
22:28:32.0737 2552 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
22:28:32.0737 2552 ql40xx - ok
22:28:32.0767 2552 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
22:28:32.0767 2552 QWAVE - ok
22:28:32.0777 2552 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
22:28:32.0787 2552 QWAVEdrv - ok
22:28:32.0837 2552 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\windows\WindowsMobile\rapimgr.dll
22:28:32.0847 2552 RapiMgr - ok
22:28:32.0857 2552 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
22:28:32.0867 2552 RasAcd - ok
22:28:32.0907 2552 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
22:28:32.0907 2552 RasAgileVpn - ok
22:28:32.0917 2552 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
22:28:32.0917 2552 RasAuto - ok
22:28:32.0947 2552 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
22:28:32.0947 2552 Rasl2tp - ok
22:28:32.0987 2552 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
22:28:32.0997 2552 RasMan - ok
22:28:32.0997 2552 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
22:28:32.0997 2552 RasPppoe - ok
22:28:33.0007 2552 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
22:28:33.0007 2552 RasSstp - ok
22:28:33.0037 2552 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
22:28:33.0047 2552 rdbss - ok
22:28:33.0057 2552 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
22:28:33.0057 2552 rdpbus - ok
22:28:33.0067 2552 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
22:28:33.0067 2552 RDPCDD - ok
22:28:33.0097 2552 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\windows\system32\drivers\rdpdr.sys
22:28:33.0097 2552 RDPDR - ok
22:28:33.0117 2552 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
22:28:33.0117 2552 RDPENCDD - ok
22:28:33.0127 2552 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
22:28:33.0137 2552 RDPREFMP - ok
22:28:33.0167 2552 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
22:28:33.0167 2552 RDPWD - ok
22:28:33.0217 2552 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
22:28:33.0217 2552 rdyboost - ok
22:28:33.0267 2552 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
22:28:33.0267 2552 RemoteAccess - ok
22:28:33.0307 2552 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
22:28:33.0317 2552 RemoteRegistry - ok
22:28:33.0347 2552 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
22:28:33.0357 2552 RFCOMM - ok
22:28:33.0367 2552 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
22:28:33.0367 2552 RpcEptMapper - ok
22:28:33.0387 2552 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
22:28:33.0397 2552 RpcLocator - ok
22:28:33.0427 2552 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
22:28:33.0437 2552 RpcSs - ok
22:28:33.0467 2552 [ A0A154BA21E9A0475061D9BBEE8219AE ] RsFx0200 C:\windows\system32\DRIVERS\RsFx0200.sys
22:28:33.0477 2552 RsFx0200 - ok
22:28:33.0497 2552 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
22:28:33.0507 2552 rspndr - ok
22:28:33.0537 2552 [ 2777226EE8BF50B059D7A7C90177E99C ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
22:28:33.0537 2552 RTL8167 - ok
22:28:33.0577 2552 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\windows\system32\drivers\vms3cap.sys
22:28:33.0577 2552 s3cap - ok
22:28:33.0597 2552 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
22:28:33.0597 2552 SamSs - ok
22:28:33.0617 2552 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
22:28:33.0617 2552 sbp2port - ok
22:28:33.0647 2552 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
22:28:33.0647 2552 SCardSvr - ok
22:28:33.0687 2552 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
22:28:33.0687 2552 scfilter - ok
22:28:33.0737 2552 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
22:28:33.0747 2552 Schedule - ok
22:28:33.0767 2552 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
22:28:33.0777 2552 SCPolicySvc - ok
22:28:33.0797 2552 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\drivers\sdbus.sys
22:28:33.0797 2552 sdbus - ok
22:28:33.0827 2552 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
22:28:33.0837 2552 SDRSVC - ok
22:28:33.0867 2552 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
22:28:33.0867 2552 secdrv - ok
22:28:33.0897 2552 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
22:28:33.0897 2552 seclogon - ok
22:28:33.0927 2552 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
22:28:33.0927 2552 SENS - ok
22:28:33.0937 2552 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
22:28:33.0937 2552 SensrSvc - ok
22:28:33.0957 2552 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
22:28:33.0967 2552 Serenum - ok
22:28:33.0977 2552 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
22:28:33.0977 2552 Serial - ok
22:28:34.0007 2552 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
22:28:34.0007 2552 sermouse - ok
22:28:34.0047 2552 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
22:28:34.0047 2552 SessionEnv - ok
22:28:34.0087 2552 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
22:28:34.0087 2552 sffdisk - ok
22:28:34.0097 2552 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
22:28:34.0097 2552 sffp_mmc - ok
22:28:34.0107 2552 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
22:28:34.0107 2552 sffp_sd - ok
22:28:34.0157 2552 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
22:28:34.0157 2552 sfloppy - ok
22:28:34.0207 2552 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
22:28:34.0207 2552 Sftfs - ok
22:28:34.0247 2552 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:28:34.0257 2552 sftlist - ok
22:28:34.0277 2552 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
22:28:34.0287 2552 Sftplay - ok
22:28:34.0297 2552 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
22:28:34.0297 2552 Sftredir - ok
22:28:34.0307 2552 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
22:28:34.0307 2552 Sftvol - ok
22:28:34.0327 2552 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:28:34.0327 2552 sftvsa - ok
22:28:34.0357 2552 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
22:28:34.0367 2552 ShellHWDetection - ok
22:28:34.0387 2552 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
22:28:34.0397 2552 SiSRaid2 - ok
22:28:34.0407 2552 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
22:28:34.0407 2552 SiSRaid4 - ok
22:28:34.0587 2552 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:28:34.0617 2552 Skype C2C Service - ok
22:28:34.0697 2552 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:28:34.0697 2552 SkypeUpdate - ok
22:28:34.0737 2552 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
22:28:34.0747 2552 Smb - ok
22:28:34.0787 2552 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
22:28:34.0787 2552 SNMPTRAP - ok
22:28:34.0847 2552 [ 43FBAA2C9E6B01B6AFC40B69019C27EC ] SNP2UVC C:\windows\system32\DRIVERS\snp2uvc.sys
22:28:34.0867 2552 SNP2UVC - ok
22:28:34.0887 2552 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
22:28:34.0887 2552 spldr - ok
22:28:34.0937 2552 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
22:28:34.0937 2552 Spooler - ok
22:28:35.0027 2552 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
22:28:35.0077 2552 sppsvc - ok
22:28:35.0097 2552 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
22:28:35.0097 2552 sppuinotify - ok
22:28:35.0207 2552 [ 009C9CBCC2FD7426E8AD0826C692F4A8 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
22:28:35.0207 2552 SQLAgent$SQLEXPRESS - ok
22:28:35.0287 2552 [ 7B20DFDD0E9BAAB0097342016CF4FDF5 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
22:28:35.0287 2552 SQLBrowser - ok
22:28:35.0367 2552 [ D39B8DEE1566C30858216521998F382F ] SQLSERVERAGENT c:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
22:28:35.0367 2552 SQLSERVERAGENT - ok
22:28:35.0437 2552 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
22:28:35.0447 2552 SQLWriter - ok
22:28:35.0477 2552 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
22:28:35.0487 2552 srv - ok
22:28:35.0497 2552 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
22:28:35.0497 2552 srv2 - ok
22:28:35.0517 2552 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
22:28:35.0517 2552 srvnet - ok
22:28:35.0547 2552 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
22:28:35.0547 2552 SSDPSRV - ok
22:28:35.0557 2552 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
22:28:35.0557 2552 SstpSvc - ok
22:28:35.0647 2552 [ 0CDEA5ACBB69C45F642E96D81E906CCD ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
22:28:35.0657 2552 STacSV - ok
22:28:35.0677 2552 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
22:28:35.0677 2552 stexstor - ok
22:28:35.0697 2552 [ 5C8D6072D1D09F11789C6A014688048A ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
22:28:35.0707 2552 STHDA - ok
22:28:35.0747 2552 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
22:28:35.0757 2552 stisvc - ok
22:28:35.0787 2552 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\windows\system32\drivers\vmstorfl.sys
22:28:35.0787 2552 storflt - ok
22:28:35.0817 2552 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\windows\system32\storsvc.dll
22:28:35.0817 2552 StorSvc - ok
22:28:35.0847 2552 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\windows\system32\drivers\storvsc.sys
22:28:35.0847 2552 storvsc - ok
22:28:35.0877 2552 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
22:28:35.0877 2552 swenum - ok
22:28:35.0907 2552 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
22:28:35.0917 2552 swprv - ok
22:28:35.0977 2552 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
22:28:35.0987 2552 SynTP - ok
22:28:36.0027 2552 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
22:28:36.0047 2552 SysMain - ok
22:28:36.0077 2552 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
22:28:36.0077 2552 TabletInputService - ok
22:28:36.0107 2552 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
22:28:36.0107 2552 TapiSrv - ok
22:28:36.0147 2552 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
22:28:36.0147 2552 TBS - ok
22:28:36.0197 2552 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
22:28:36.0217 2552 Tcpip - ok
22:28:36.0247 2552 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
22:28:36.0257 2552 TCPIP6 - ok
22:28:36.0287 2552 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
22:28:36.0287 2552 tcpipreg - ok
22:28:36.0307 2552 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
22:28:36.0317 2552 TDPIPE - ok
22:28:36.0347 2552 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
22:28:36.0347 2552 TDTCP - ok
22:28:36.0377 2552 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
22:28:36.0377 2552 tdx - ok
22:28:36.0437 2552 [ F7BE59881AEBE72722B0AB669EF23BB4 ] Te.Service C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
22:28:36.0437 2552 Te.Service - ok
22:28:36.0477 2552 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
22:28:36.0477 2552 TermDD - ok
22:28:36.0517 2552 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
22:28:36.0517 2552 TermService - ok
22:28:36.0537 2552 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
22:28:36.0537 2552 Themes - ok
22:28:36.0557 2552 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
22:28:36.0557 2552 THREADORDER - ok
22:28:36.0617 2552 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\windows\system32\drivers\tpm.sys
22:28:36.0617 2552 TPM - ok
22:28:36.0637 2552 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
22:28:36.0637 2552 TrkWks - ok
22:28:36.0697 2552 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
22:28:36.0697 2552 TrustedInstaller - ok
22:28:36.0727 2552 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
22:28:36.0727 2552 tssecsrv - ok
22:28:36.0757 2552 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
22:28:36.0757 2552 TsUsbFlt - ok
22:28:36.0807 2552 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
22:28:36.0807 2552 tunnel - ok
22:28:36.0817 2552 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
22:28:36.0817 2552 uagp35 - ok
22:28:36.0877 2552 [ D5994AB5C2B2D72D6320A7004D52617C ] uArcCapture C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
22:28:36.0877 2552 uArcCapture - ok
22:28:36.0917 2552 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
22:28:36.0917 2552 udfs - ok
22:28:36.0967 2552 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
22:28:36.0967 2552 UI0Detect - ok
22:28:36.0987 2552 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
22:28:36.0987 2552 uliagpkx - ok
22:28:37.0017 2552 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
22:28:37.0017 2552 umbus - ok
22:28:37.0047 2552 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
22:28:37.0047 2552 UmPass - ok
22:28:37.0087 2552 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\windows\System32\umrdp.dll
22:28:37.0087 2552 UmRdpService - ok
22:28:37.0187 2552 [ A69CD6BDB82872999D2E46F9324ADA83 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:28:37.0207 2552 UNS - ok
22:28:37.0247 2552 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
22:28:37.0247 2552 upnphost - ok
22:28:37.0287 2552 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
22:28:37.0297 2552 USBAAPL64 - ok
22:28:37.0327 2552 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
22:28:37.0337 2552 usbccgp - ok
22:28:37.0367 2552 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
22:28:37.0367 2552 usbcir - ok
22:28:37.0407 2552 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
22:28:37.0407 2552 usbehci - ok
22:28:37.0427 2552 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
22:28:37.0427 2552 usbhub - ok
22:28:37.0457 2552 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
22:28:37.0457 2552 usbohci - ok
22:28:37.0487 2552 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
22:28:37.0487 2552 usbprint - ok
22:28:37.0517 2552 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
22:28:37.0517 2552 USBSTOR - ok
22:28:37.0537 2552 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
22:28:37.0537 2552 usbuhci - ok
22:28:37.0557 2552 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
22:28:37.0567 2552 usbvideo - ok
22:28:37.0607 2552 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\windows\system32\drivers\usb8023x.sys
22:28:37.0607 2552 usb_rndisx - ok
22:28:37.0637 2552 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
22:28:37.0637 2552 UxSms - ok
22:28:37.0647 2552 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
22:28:37.0647 2552 VaultSvc - ok
22:28:37.0717 2552 [ 41EEF971DD82A3674D07F275A4DEF702 ] vcsFPService C:\windows\system32\vcsFPService.exe
22:28:37.0757 2552 vcsFPService - ok
22:28:37.0767 2552 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
22:28:37.0767 2552 vdrvroot - ok
22:28:37.0797 2552 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
22:28:37.0807 2552 vds - ok
22:28:37.0837 2552 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
22:28:37.0837 2552 vga - ok
22:28:37.0847 2552 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
22:28:37.0847 2552 VgaSave - ok
22:28:37.0877 2552 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
22:28:37.0877 2552 vhdmp - ok
22:28:37.0907 2552 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
22:28:37.0907 2552 viaide - ok
22:28:37.0947 2552 [ FFB2188E5FD5CBC744BC1C9B6EBE0F2B ] virtdigi C:\windows\system32\DRIVERS\virtdigi.sys
22:28:37.0947 2552 virtdigi - ok
22:28:37.0987 2552 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\windows\system32\drivers\vmbus.sys
22:28:37.0987 2552 vmbus - ok
22:28:38.0017 2552 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\windows\system32\drivers\VMBusHID.sys
22:28:38.0017 2552 VMBusHID - ok
22:28:38.0037 2552 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
22:28:38.0037 2552 volmgr - ok
22:28:38.0087 2552 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
22:28:38.0087 2552 volmgrx - ok
22:28:38.0097 2552 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
22:28:38.0107 2552 volsnap - ok
22:28:38.0137 2552 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\windows\system32\DRIVERS\vpchbus.sys
22:28:38.0137 2552 vpcbus - ok
22:28:38.0167 2552 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\windows\system32\DRIVERS\vpcnfltr.sys
22:28:38.0167 2552 vpcnfltr - ok
22:28:38.0197 2552 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\windows\system32\DRIVERS\vpcusb.sys
22:28:38.0197 2552 vpcusb - ok
22:28:38.0227 2552 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\windows\system32\drivers\vpcvmm.sys
22:28:38.0237 2552 vpcvmm - ok
22:28:38.0257 2552 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
22:28:38.0267 2552 vsmraid - ok
22:28:38.0427 2552 [ CE5D3C26FD95E3BBD3381C25B9E1A8AF ] VSPerfDrv110 C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys
22:28:38.0427 2552 VSPerfDrv110 - ok
22:28:38.0497 2552 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
22:28:38.0517 2552 VSS - ok
22:28:38.0537 2552 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
22:28:38.0537 2552 vwifibus - ok
22:28:38.0547 2552 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
22:28:38.0547 2552 vwififlt - ok
22:28:38.0577 2552 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
22:28:38.0587 2552 W32Time - ok
22:28:38.0607 2552 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
22:28:38.0607 2552 WacomPen - ok
22:28:38.0657 2552 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
22:28:38.0657 2552 WANARP - ok
22:28:38.0667 2552 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
22:28:38.0667 2552 Wanarpv6 - ok
22:28:38.0737 2552 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
22:28:38.0747 2552 WatAdminSvc - ok
22:28:38.0797 2552 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
22:28:38.0807 2552 wbengine - ok
22:28:38.0847 2552 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
22:28:38.0847 2552 WbioSrvc - ok
22:28:38.0917 2552 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\windows\WindowsMobile\wcescomm.dll
22:28:38.0917 2552 WcesComm - ok
22:28:38.0947 2552 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
22:28:38.0957 2552 wcncsvc - ok
22:28:38.0957 2552 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
22:28:38.0957 2552 WcsPlugInService - ok
22:28:38.0977 2552 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
22:28:38.0987 2552 Wd - ok
22:28:39.0007 2552 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
22:28:39.0017 2552 Wdf01000 - ok
22:28:39.0027 2552 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
22:28:39.0037 2552 WdiServiceHost - ok
22:28:39.0047 2552 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
22:28:39.0047 2552 WdiSystemHost - ok
22:28:39.0077 2552 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
22:28:39.0077 2552 WebClient - ok
22:28:39.0087 2552 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
22:28:39.0097 2552 Wecsvc - ok
22:28:39.0097 2552 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
22:28:39.0097 2552 wercplsupport - ok
22:28:39.0137 2552 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
22:28:39.0137 2552 WerSvc - ok
22:28:39.0157 2552 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
22:28:39.0157 2552 WfpLwf - ok
22:28:39.0187 2552 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
22:28:39.0187 2552 WIMMount - ok
22:28:39.0197 2552 WinHttpAutoProxySvc - ok
22:28:39.0257 2552 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
22:28:39.0257 2552 Winmgmt - ok
22:28:39.0317 2552 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
22:28:39.0337 2552 WinRM - ok
22:28:39.0387 2552 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\windows\system32\DRIVERS\WinUSB.sys
22:28:39.0387 2552 WinUSB - ok
22:28:39.0417 2552 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
22:28:39.0427 2552 Wlansvc - ok
22:28:39.0557 2552 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:28:39.0577 2552 wlidsvc - ok
22:28:39.0607 2552 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
22:28:39.0607 2552 WmiAcpi - ok
22:28:39.0647 2552 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
22:28:39.0647 2552 wmiApSrv - ok
22:28:39.0677 2552 WMPNetworkSvc - ok
22:28:39.0707 2552 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
22:28:39.0717 2552 WPCSvc - ok
22:28:39.0747 2552 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
22:28:39.0747 2552 WPDBusEnum - ok
22:28:39.0777 2552 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
22:28:39.0787 2552 ws2ifsl - ok
22:28:39.0787 2552 WSearch - ok
22:28:39.0857 2552 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
22:28:39.0887 2552 wuauserv - ok
22:28:39.0907 2552 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
22:28:39.0907 2552 WudfPf - ok
22:28:39.0927 2552 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
22:28:39.0937 2552 WUDFRd - ok
22:28:39.0967 2552 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
22:28:39.0967 2552 wudfsvc - ok
22:28:39.0997 2552 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
22:28:39.0997 2552 WwanSvc - ok
22:28:40.0037 2552 [ A35820791F940822C31908F58F91D973 ] XobniService C:\Program Files (x86)\Xobni\XobniService.exe
22:28:40.0047 2552 XobniService - ok
22:28:40.0077 2552 ================ Scan global ===============================
22:28:40.0107 2552 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
22:28:40.0127 2552 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
22:28:40.0137 2552 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
22:28:40.0157 2552 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
22:28:40.0187 2552 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\windows\system32\services.exe
22:28:40.0197 2552 C:\windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
22:28:40.0197 2552 C:\windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
22:28:40.0197 2552 ================ Scan MBR ==================================
22:28:40.0197 2552 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:28:40.0377 2552 \Device\Harddisk0\DR0 - ok
22:28:40.0377 2552 ================ Scan VBR ==================================
22:28:40.0377 2552 [ D92C2884F687464C532FB1745F3C97E4 ] \Device\Harddisk0\DR0\Partition1
22:28:40.0387 2552 \Device\Harddisk0\DR0\Partition1 - ok
22:28:40.0407 2552 [ 836BF02EC00F65E58759C2EB6033FAB9 ] \Device\Harddisk0\DR0\Partition2
22:28:40.0407 2552 \Device\Harddisk0\DR0\Partition2 - ok
22:28:40.0437 2552 [ 59236CFDAD918BCB732C35D6C02DC356 ] \Device\Harddisk0\DR0\Partition3
22:28:40.0437 2552 \Device\Harddisk0\DR0\Partition3 - ok
22:28:40.0447 2552 [ 43EA4728121DCC793ABEDFBA4A61411C ] \Device\Harddisk0\DR0\Partition4
22:28:40.0447 2552 \Device\Harddisk0\DR0\Partition4 - ok
22:28:40.0447 2552 ============================================================
22:28:40.0447 2552 Scan finished
22:28:40.0447 2552 ============================================================
22:28:40.0457 2544 Detected object count: 1
22:28:40.0457 2544 Actual detected object count: 1

//////////////////////////////////////////////////////
AVAST
//////////////////////////////////////////////////////
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-03 21:58:58
-----------------------------
21:58:58.837 OS Version: Windows x64 6.1.7601 Service Pack 1
21:58:58.837 Number of processors: 4 586 0x2A07
21:58:58.837 ComputerName: SAIBABA-HP UserName: Saibaba
21:59:00.148 Initialize success
22:00:31.517 AVAST engine defs: 12100301
22:01:05.548 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:01:05.558 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 610480MB BusType: 3
22:01:05.568 Disk 0 MBR read successfully
22:01:05.578 Disk 0 MBR scan
22:01:05.588 Disk 0 Windows 7 default MBR code
22:01:05.638 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 300 MB offset 2048
22:01:05.658 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 586729 MB offset 616448
22:01:05.688 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 18327 MB offset 1202237440
22:01:05.718 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 5122 MB offset 1239771136
22:01:05.758 Disk 0 scanning C:\windows\system32\drivers
22:01:24.749 Service scanning
22:02:12.240 Modules scanning
22:02:12.255 Disk 0 trace - called modules:
22:02:12.817 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys iaStor.sys
22:02:12.832 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b2e060]
22:02:12.848 3 CLASSPNP.SYS[fffff880017c143f] -> nt!IofCallDriver -> [0xfffffa8004c70a50]
22:02:12.864 5 hpdskflt.sys[fffff88001bb3361] -> nt!IofCallDriver -> [0xfffffa8004b19e40]
22:02:12.879 7 ACPI.sys[fffff88000f9a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004b40050]
22:02:16.905 AVAST engine scan C:\windows
22:02:22.271 AVAST engine scan C:\windows\system32
22:05:49.547 File: C:\windows\system32\services.exe **INFECTED** Win32:Sirefef-ZT [Trj]
22:07:21.941 File: C:\windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:07:35.200 File: C:\windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:21:07.966 AVAST engine scan C:\windows\system32\drivers
22:21:45.683 AVAST engine scan C:\Users\Saibaba
22:37:05.794 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
22:37:05.824 The log file has been saved successfully to "C:\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-04 22:29:16
-----------------------------
22:29:16.083 OS Version: Windows x64 6.1.7601 Service Pack 1
22:29:16.083 Number of processors: 4 586 0x2A07
22:29:16.083 ComputerName: SAIBABA-HP UserName: Saibaba
22:29:16.926 Initialize success
22:29:27.814 AVAST engine defs: 12100301
22:29:36.550 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:29:36.550 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 610480MB BusType: 3
22:29:36.566 Disk 0 MBR read successfully
22:29:36.566 Disk 0 MBR scan
22:29:36.566 Disk 0 Windows 7 default MBR code
22:29:36.566 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 300 MB offset 2048
22:29:36.582 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 586729 MB offset 616448
22:29:36.597 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 18327 MB offset 1202237440
22:29:36.613 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 5122 MB offset 1239771136
22:29:36.644 Disk 0 scanning C:\windows\system32\drivers
22:29:46.519 Service scanning
22:30:12.415 Modules scanning
22:30:12.415 Disk 0 trace - called modules:
22:30:12.431 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys iaStor.sys hal.dll
22:30:12.431 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800510e060]
22:30:12.446 3 CLASSPNP.SYS[fffff880015d043f] -> nt!IofCallDriver -> [0xfffffa8004fd0b10]
22:30:12.446 5 hpdskflt.sys[fffff88001602361] -> nt!IofCallDriver -> [0xfffffa800401ee40]
22:30:12.446 7 ACPI.sys[fffff88000f297a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004e5e050]
22:30:13.367 AVAST engine scan C:\windows
22:30:16.035 AVAST engine scan C:\windows\system32
22:33:17.500 File: C:\windows\system32\services.exe **INFECTED** Win32:Sirefef-ZT [Trj]
22:33:44.020 File: C:\windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:33:47.452 File: C:\windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:41:31.360 AVAST engine scan C:\windows\system32\drivers
22:41:52.979 AVAST engine scan C:\Users\Saibaba
23:19:29.311 AVAST engine scan C:\ProgramData
23:23:50.318 Scan finished successfully
04:00:33.261 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
04:00:33.293 The log file has been saved successfully to "C:\aswMBR.txt"


//////////////////////////
ESET
////////////////////////////

C:\TDSSKiller_Quarantine\04.10.2012_18.58.56\zasubsys0000\file0000\tsk0000.dta Win64/Patched.A.Gen trojan deleted - quarantined
C:\TDSSKiller_Quarantine\04.10.2012_18.58.56\zasubsys0000\zafs0000\tsk0000.dta Win32/Sirefef.EZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\04.10.2012_18.58.56\zasubsys0000\zafs0000\tsk0001.dta Win64/Sirefef.W trojan cleaned by deleting - quarantined
C:\Users\Saibaba\AppData\Roaming\Mozilla\Firefox\Profiles\8bux2gtn.default\user.js JS/SecurityDisabler.A.Gen application cleaned by deleting - quarantined
C:\Users\Saibaba\AppData\Roaming\Real\RealPlayer\Favorites\Web Pages\driverquery.exe a variant of Win32/Kryptik.AMQP trojan cleaned by deleting - quarantined
C:\Users\Saibaba\Desktop\Softonic_ggl_1.5.21.0.exe Win32/Toolbar.Funmoods application cleaned by deleting - quarantined
Operating memory a variant of Win32/Sirefef.EZ trojan

#5 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 04 October 2012 - 10:02 PM

Sorry it took sometime to complete the scan

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 05 October 2012 - 05:24 AM

Run TDSSkiller and select CURE for this infection

22:28:40.0197 2552 C:\windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected

Post the new log

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#7 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 06 October 2012 - 12:02 AM

////////
TDSSKiller
//////

21:22:32.0380 1208 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
21:22:32.0645 1208 ============================================================
21:22:32.0645 1208 Current date / time: 2012/10/05 21:22:32.0645
21:22:32.0645 1208 SystemInfo:
21:22:32.0645 1208
21:22:32.0645 1208 OS Version: 6.1.7601 ServicePack: 1.0
21:22:32.0645 1208 Product type: Workstation
21:22:32.0645 1208 ComputerName: SAIBABA-HP
21:22:32.0645 1208 UserName: Saibaba
21:22:32.0645 1208 Windows directory: C:\windows
21:22:32.0645 1208 System windows directory: C:\windows
21:22:32.0645 1208 Running under WOW64
21:22:32.0645 1208 Processor architecture: Intel x64
21:22:32.0645 1208 Number of processors: 4
21:22:32.0645 1208 Page size: 0x1000
21:22:32.0645 1208 Boot type: Normal boot
21:22:32.0645 1208 ============================================================
21:22:33.0566 1208 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:22:33.0581 1208 ============================================================
21:22:33.0581 1208 \Device\Harddisk0\DR0:
21:22:33.0581 1208 MBR partitions:
21:22:33.0581 1208 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
21:22:33.0581 1208 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x479F4800
21:22:33.0581 1208 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x47A8B000, BlocksNum 0x23CB800
21:22:33.0581 1208 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x49E56800, BlocksNum 0xA01000
21:22:33.0581 1208 ============================================================
21:22:33.0613 1208 C: <-> \Device\Harddisk0\DR0\Partition2
21:22:33.0659 1208 D: <-> \Device\Harddisk0\DR0\Partition3
21:22:33.0675 1208 E: <-> \Device\Harddisk0\DR0\Partition4
21:22:33.0675 1208 ============================================================
21:22:33.0675 1208 Initialize success
21:22:33.0675 1208 ============================================================
21:22:45.0749 8328 ============================================================
21:22:45.0749 8328 Scan started
21:22:45.0749 8328 Mode: Manual; TDLFS;
21:22:45.0749 8328 ============================================================
21:22:46.0046 8328 ================ Scan system memory ========================
21:22:46.0046 8328 System memory - ok
21:22:46.0046 8328 ================ Scan services =============================
21:22:46.0202 8328 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
21:22:46.0311 8328 1394ohci - ok
21:22:46.0358 8328 [ 7A330A42870EB1FA81F88BE514D2D566 ] Accelerometer C:\windows\system32\DRIVERS\Accelerometer.sys
21:22:46.0467 8328 Accelerometer - ok
21:22:46.0576 8328 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:22:46.0748 8328 ACDaemon - ok
21:22:46.0810 8328 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
21:22:46.0810 8328 ACPI - ok
21:22:46.0857 8328 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
21:22:46.0951 8328 AcpiPmi - ok
21:22:47.0075 8328 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:22:47.0185 8328 AdobeFlashPlayerUpdateSvc - ok
21:22:47.0263 8328 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
21:22:47.0294 8328 adp94xx - ok
21:22:47.0325 8328 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
21:22:47.0341 8328 adpahci - ok
21:22:47.0372 8328 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
21:22:47.0387 8328 adpu320 - ok
21:22:47.0419 8328 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
21:22:47.0419 8328 AeLookupSvc - ok
21:22:47.0528 8328 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
21:22:47.0653 8328 AESTFilters - ok
21:22:47.0715 8328 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\windows\syswow64\drivers\Afc.sys
21:22:47.0809 8328 Afc - ok
21:22:47.0855 8328 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
21:22:47.0949 8328 AFD - ok
21:22:48.0011 8328 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
21:22:48.0043 8328 AgereSoftModem - ok
21:22:48.0105 8328 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
21:22:48.0105 8328 agp440 - ok
21:22:48.0167 8328 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
21:22:48.0167 8328 ALG - ok
21:22:48.0199 8328 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
21:22:48.0214 8328 aliide - ok
21:22:48.0245 8328 [ D5518E3BBFD69520FA3BDD3D05B5B458 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
21:22:48.0339 8328 AMD External Events Utility - ok
21:22:48.0355 8328 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
21:22:48.0355 8328 amdide - ok
21:22:48.0401 8328 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
21:22:48.0401 8328 AmdK8 - ok
21:22:48.0682 8328 [ BE85FDC481F3BFBC036BB5D96DBBD12D ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
21:22:49.0119 8328 amdkmdag - ok
21:22:49.0197 8328 [ 8E0146E61409C46855F1DD008EAEDD5D ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
21:22:49.0306 8328 amdkmdap - ok
21:22:49.0337 8328 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
21:22:49.0353 8328 AmdPPM - ok
21:22:49.0369 8328 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
21:22:49.0478 8328 amdsata - ok
21:22:49.0493 8328 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
21:22:49.0509 8328 amdsbs - ok
21:22:49.0525 8328 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
21:22:49.0634 8328 amdxata - ok
21:22:49.0681 8328 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
21:22:49.0790 8328 AppID - ok
21:22:49.0821 8328 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
21:22:49.0821 8328 AppIDSvc - ok
21:22:49.0868 8328 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
21:22:49.0868 8328 Appinfo - ok
21:22:49.0993 8328 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:22:50.0118 8328 Apple Mobile Device - ok
21:22:50.0165 8328 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\windows\System32\appmgmts.dll
21:22:50.0165 8328 AppMgmt - ok
21:22:50.0212 8328 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
21:22:50.0212 8328 arc - ok
21:22:50.0243 8328 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
21:22:50.0259 8328 arcsas - ok
21:22:50.0290 8328 [ 357635F16D28558C50870F4EF8AA4712 ] ARCVCAM C:\windows\system32\DRIVERS\ArcSoftVCapture.sys
21:22:50.0415 8328 ARCVCAM - ok
21:22:50.0524 8328 [ B3FC1E4760175CC9D0DEFF38AEF96E99 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:22:50.0664 8328 aspnet_state - ok
21:22:50.0696 8328 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
21:22:50.0696 8328 AsyncMac - ok
21:22:50.0742 8328 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
21:22:50.0742 8328 atapi - ok
21:22:50.0774 8328 [ CBE61B4494165F458BD87E37181EE934 ] AthBTPort C:\windows\system32\DRIVERS\btath_flt.sys
21:22:50.0898 8328 AthBTPort - ok
21:22:50.0945 8328 [ 4C4A576818EA028257C624AE36FF7A03 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
21:22:51.0117 8328 Atheros Bt&Wlan Coex Agent - ok
21:22:51.0148 8328 [ 684B36CA4067DA7000CF95771A3CF0E7 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
21:22:51.0257 8328 AtherosSvc - ok
21:22:51.0351 8328 [ 675B31FCFAF319C0CBB908FEB6B90471 ] athr C:\windows\system32\DRIVERS\athrx.sys
21:22:51.0522 8328 athr - ok
21:22:51.0585 8328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
21:22:51.0600 8328 AudioEndpointBuilder - ok
21:22:51.0632 8328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
21:22:51.0647 8328 AudioSrv - ok
21:22:51.0694 8328 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
21:22:51.0772 8328 AxInstSV - ok
21:22:51.0834 8328 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
21:22:51.0866 8328 b06bdrv - ok
21:22:51.0897 8328 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
21:22:51.0912 8328 b57nd60a - ok
21:22:52.0037 8328 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
21:22:52.0193 8328 BBSvc - ok
21:22:52.0224 8328 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
21:22:52.0240 8328 BBUpdate - ok
21:22:52.0271 8328 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
21:22:52.0271 8328 BDESVC - ok
21:22:52.0302 8328 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
21:22:52.0302 8328 Beep - ok
21:22:52.0365 8328 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
21:22:52.0630 8328 BITS - ok
21:22:52.0646 8328 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
21:22:52.0661 8328 blbdrive - ok
21:22:52.0724 8328 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:22:52.0880 8328 Bonjour Service - ok
21:22:52.0926 8328 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
21:22:53.0051 8328 bowser - ok
21:22:53.0083 8328 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
21:22:53.0083 8328 BrFiltLo - ok
21:22:53.0099 8328 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
21:22:53.0115 8328 BrFiltUp - ok
21:22:53.0177 8328 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
21:22:53.0177 8328 Browser - ok
21:22:53.0208 8328 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
21:22:53.0224 8328 Brserid - ok
21:22:53.0255 8328 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
21:22:53.0255 8328 BrSerWdm - ok
21:22:53.0286 8328 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
21:22:53.0286 8328 BrUsbMdm - ok
21:22:53.0302 8328 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
21:22:53.0317 8328 BrUsbSer - ok
21:22:53.0364 8328 [ 227C8F308DE4AF4808E587465CEAB838 ] BTATH_A2DP C:\windows\system32\drivers\btath_a2dp.sys
21:22:53.0473 8328 BTATH_A2DP - ok
21:22:53.0520 8328 [ A83A91D07D1FE6BBE7A9DB46CA00434B ] BTATH_BUS C:\windows\system32\DRIVERS\btath_bus.sys
21:22:53.0520 8328 BTATH_BUS - ok
21:22:53.0551 8328 [ C864FF85EE16D61C2BDD5EF76824625F ] BTATH_HCRP C:\windows\system32\DRIVERS\btath_hcrp.sys
21:22:53.0661 8328 BTATH_HCRP - ok
21:22:53.0692 8328 [ 0DEA505EFB5D771826D177EF8B8A208F ] BTATH_LWFLT C:\windows\system32\DRIVERS\btath_lwflt.sys
21:22:53.0801 8328 BTATH_LWFLT - ok
21:22:53.0817 8328 [ 724C8088C96EFE7A3E63FEC21D4681C0 ] BTATH_RCP C:\windows\system32\DRIVERS\btath_rcp.sys
21:22:53.0910 8328 BTATH_RCP - ok
21:22:53.0988 8328 [ FF8B065F96E4D9525AA7227299FBD05C ] BtFilter C:\windows\system32\DRIVERS\btfilter.sys
21:22:53.0988 8328 BtFilter - ok
21:22:54.0035 8328 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
21:22:54.0035 8328 BthEnum - ok
21:22:54.0082 8328 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
21:22:54.0082 8328 BTHMODEM - ok
21:22:54.0114 8328 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
21:22:54.0114 8328 BthPan - ok
21:22:54.0176 8328 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
21:22:54.0254 8328 BTHPORT - ok
21:22:54.0286 8328 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
21:22:54.0286 8328 bthserv - ok
21:22:54.0317 8328 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
21:22:54.0410 8328 BTHUSB - ok
21:22:54.0442 8328 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
21:22:54.0457 8328 cdfs - ok
21:22:54.0504 8328 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\drivers\cdrom.sys
21:22:54.0598 8328 cdrom - ok
21:22:54.0644 8328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
21:22:54.0644 8328 CertPropSvc - ok
21:22:54.0676 8328 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\windows\system32\drivers\cfwids.sys
21:22:54.0800 8328 cfwids - ok
21:22:54.0832 8328 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
21:22:54.0847 8328 circlass - ok
21:22:54.0878 8328 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
21:22:54.0894 8328 CLFS - ok
21:22:54.0972 8328 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:22:54.0972 8328 clr_optimization_v2.0.50727_32 - ok
21:22:55.0034 8328 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:22:55.0050 8328 clr_optimization_v2.0.50727_64 - ok
21:22:55.0113 8328 [ 1EBE1854D94B704D1C0EEFAEF4711151 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:22:55.0254 8328 clr_optimization_v4.0.30319_32 - ok
21:22:55.0301 8328 [ F44A20931FDD77EBFC36B263FD795959 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:22:55.0410 8328 clr_optimization_v4.0.30319_64 - ok
21:22:55.0457 8328 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
21:22:55.0472 8328 CmBatt - ok
21:22:55.0488 8328 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
21:22:55.0488 8328 cmdide - ok
21:22:55.0535 8328 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
21:22:55.0644 8328 CNG - ok
21:22:55.0659 8328 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
21:22:55.0675 8328 Compbatt - ok
21:22:55.0706 8328 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
21:22:55.0831 8328 CompositeBus - ok
21:22:55.0847 8328 COMSysApp - ok
21:22:55.0862 8328 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
21:22:55.0878 8328 crcdisk - ok
21:22:55.0909 8328 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
21:22:56.0003 8328 CryptSvc - ok
21:22:56.0049 8328 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\windows\system32\drivers\csc.sys
21:22:56.0174 8328 CSC - ok
21:22:56.0221 8328 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\windows\System32\cscsvc.dll
21:22:56.0237 8328 CscService - ok
21:22:56.0330 8328 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:22:56.0346 8328 cvhsvc - ok
21:22:56.0377 8328 [ 2E3374F9F0B5A3247B779978980C24CB ] DAMDrv C:\windows\system32\DRIVERS\DAMDrv64.sys
21:22:56.0486 8328 DAMDrv - ok
21:22:56.0549 8328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
21:22:56.0564 8328 DcomLaunch - ok
21:22:56.0611 8328 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
21:22:56.0627 8328 defragsvc - ok
21:22:56.0673 8328 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
21:22:56.0783 8328 DfsC - ok
21:22:56.0814 8328 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
21:22:56.0907 8328 Dhcp - ok
21:22:56.0939 8328 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
21:22:56.0954 8328 discache - ok
21:22:56.0985 8328 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
21:22:56.0985 8328 Disk - ok
21:22:57.0032 8328 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
21:22:57.0032 8328 Dnscache - ok
21:22:57.0079 8328 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
21:22:57.0188 8328 dot3svc - ok
21:22:57.0266 8328 [ AA224B1BA5B2093DE97D6FCDDCF5D13B ] DpHost c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
21:22:57.0391 8328 DpHost - ok
21:22:57.0438 8328 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
21:22:57.0438 8328 DPS - ok
21:22:57.0469 8328 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
21:22:57.0485 8328 drmkaud - ok
21:22:57.0563 8328 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
21:22:57.0703 8328 DXGKrnl - ok
21:22:57.0734 8328 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
21:22:57.0734 8328 EapHost - ok
21:22:57.0828 8328 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
21:22:57.0921 8328 ebdrv - ok
21:22:57.0953 8328 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
21:22:57.0968 8328 EFS - ok
21:22:58.0031 8328 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
21:22:58.0140 8328 ehRecvr - ok
21:22:58.0171 8328 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
21:22:58.0187 8328 ehSched - ok
21:22:58.0233 8328 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
21:22:58.0249 8328 elxstor - ok
21:22:58.0280 8328 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
21:22:58.0280 8328 ErrDev - ok
21:22:58.0343 8328 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
21:22:58.0358 8328 EventSystem - ok
21:22:58.0374 8328 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
21:22:58.0389 8328 exfat - ok
21:22:58.0405 8328 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
21:22:58.0436 8328 fastfat - ok
21:22:58.0499 8328 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
21:22:58.0514 8328 Fax - ok
21:22:58.0561 8328 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
21:22:58.0561 8328 fdc - ok
21:22:58.0592 8328 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
21:22:58.0608 8328 fdPHost - ok
21:22:58.0623 8328 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
21:22:58.0639 8328 FDResPub - ok
21:22:58.0670 8328 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
21:22:58.0670 8328 FileInfo - ok
21:22:58.0686 8328 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
21:22:58.0701 8328 Filetrace - ok
21:22:58.0779 8328 [ 87B3E5C567509DDF3B124B16A6A3FBB7 ] FLCDLOCK c:\Windows\SysWOW64\flcdlock.exe
21:22:58.0967 8328 FLCDLOCK - ok
21:22:58.0982 8328 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
21:22:58.0998 8328 flpydisk - ok
21:22:59.0029 8328 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
21:22:59.0107 8328 FltMgr - ok
21:22:59.0154 8328 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
21:22:59.0263 8328 FontCache - ok
21:22:59.0310 8328 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:22:59.0435 8328 FontCache3.0.0.0 - ok
21:22:59.0466 8328 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
21:22:59.0466 8328 FsDepends - ok
21:22:59.0497 8328 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
21:22:59.0622 8328 Fs_Rec - ok
21:22:59.0825 8328 [ F5705A48AC81842BB6C1689E365C2AF4 ] fussvc C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe
21:22:59.0965 8328 fussvc - ok
21:22:59.0996 8328 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
21:23:00.0121 8328 fvevol - ok
21:23:00.0168 8328 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
21:23:00.0183 8328 gagp30kx - ok
21:23:00.0277 8328 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:23:00.0417 8328 GamesAppService - ok
21:23:00.0449 8328 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
21:23:00.0558 8328 GEARAspiWDM - ok
21:23:00.0605 8328 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
21:23:00.0714 8328 gpsvc - ok
21:23:00.0823 8328 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:23:00.0823 8328 gupdate - ok
21:23:00.0854 8328 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:23:00.0854 8328 gupdatem - ok
21:23:00.0932 8328 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:23:01.0073 8328 gusvc - ok
21:23:01.0119 8328 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
21:23:01.0135 8328 hcw85cir - ok
21:23:01.0182 8328 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:23:01.0291 8328 HdAudAddService - ok
21:23:01.0322 8328 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
21:23:01.0322 8328 HDAudBus - ok
21:23:01.0353 8328 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
21:23:01.0369 8328 HidBatt - ok
21:23:01.0385 8328 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
21:23:01.0400 8328 HidBth - ok
21:23:01.0416 8328 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
21:23:01.0431 8328 HidIr - ok
21:23:01.0447 8328 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
21:23:01.0463 8328 hidserv - ok
21:23:01.0494 8328 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
21:23:01.0619 8328 HidUsb - ok
21:23:01.0665 8328 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
21:23:01.0681 8328 hkmsvc - ok
21:23:01.0712 8328 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:23:01.0790 8328 HomeGroupListener - ok
21:23:01.0837 8328 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:23:01.0931 8328 HomeGroupProvider - ok
21:23:01.0993 8328 [ 02C2108111D9656A9729995D2219FB99 ] HP Power Assistant Service C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
21:23:02.0118 8328 HP Power Assistant Service - ok
21:23:02.0180 8328 [ 37890FDD25BEAC6AEDA3E2D57F2B29EB ] HP ProtectTools Service c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
21:23:02.0321 8328 HP ProtectTools Service - ok
21:23:02.0383 8328 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
21:23:02.0586 8328 HP Support Assistant Service - ok
21:23:02.0648 8328 [ DA075126F867727810EE9B98B3041C4C ] HPAuto C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
21:23:02.0804 8328 HPAuto - ok
21:23:02.0882 8328 [ D4B198E9B3CE6D05771E116D2D560F2F ] hpCMSrv c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
21:23:03.0054 8328 hpCMSrv - ok
21:23:03.0116 8328 [ A9FC4D7EA174BBF5A675B299FFAD80A2 ] HPDayStarterService c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
21:23:03.0225 8328 HPDayStarterService - ok
21:23:03.0303 8328 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
21:23:03.0444 8328 HPDrvMntSvc.exe - ok
21:23:03.0475 8328 [ A4BE23C451ADEB252CD17A0532CAE220 ] hpdskflt C:\windows\system32\DRIVERS\hpdskflt.sys
21:23:03.0584 8328 hpdskflt - ok
21:23:03.0647 8328 [ 98FAB0413C7365C9069994D7CE47F3EC ] HPFSService C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
21:23:03.0881 8328 HPFSService - ok
21:23:03.0927 8328 [ 0ADC6AFAB2B17FFC9C6E24DD1583F888 ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
21:23:04.0068 8328 hpHotkeyMonitor - ok
21:23:04.0099 8328 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\windows\system32\DRIVERS\HpqKbFiltr.sys
21:23:04.0208 8328 HpqKbFiltr - ok
21:23:04.0255 8328 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
21:23:04.0255 8328 hpqwmiex - ok
21:23:04.0286 8328 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
21:23:04.0380 8328 HpSAMD - ok
21:23:04.0411 8328 [ A88A45E82BC54BFFB49C63973010226A ] hpsrv C:\windows\system32\Hpservice.exe
21:23:04.0505 8328 hpsrv - ok
21:23:04.0567 8328 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
21:23:04.0676 8328 HTTP - ok
21:23:04.0707 8328 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
21:23:04.0754 8328 hwpolicy - ok
21:23:04.0801 8328 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
21:23:04.0817 8328 i8042prt - ok
21:23:04.0863 8328 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
21:23:04.0863 8328 iaStor - ok
21:23:04.0941 8328 [ 117FF657E0D9BBD61B5C3E71E63D3919 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:23:05.0051 8328 IAStorDataMgrSvc - ok
21:23:05.0082 8328 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
21:23:05.0207 8328 iaStorV - ok
21:23:05.0269 8328 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:23:05.0441 8328 idsvc - ok
21:23:05.0472 8328 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
21:23:05.0487 8328 iirsp - ok
21:23:05.0597 8328 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
21:23:05.0612 8328 IKEEXT - ok
21:23:05.0659 8328 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
21:23:05.0768 8328 IntcDAud - ok
21:23:05.0799 8328 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
21:23:05.0815 8328 intelide - ok
21:23:06.0189 8328 [ EFE5A0AF39A8E179624117C521F1E012 ] intelkmd C:\windows\system32\DRIVERS\igdpmd64.sys
21:23:06.0595 8328 intelkmd - ok
21:23:06.0626 8328 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
21:23:06.0626 8328 intelppm - ok
21:23:06.0657 8328 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
21:23:06.0673 8328 IPBusEnum - ok
21:23:06.0704 8328 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
21:23:06.0813 8328 IpFilterDriver - ok
21:23:06.0845 8328 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
21:23:06.0954 8328 IPMIDRV - ok
21:23:06.0969 8328 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
21:23:06.0985 8328 IPNAT - ok
21:23:07.0063 8328 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:23:07.0203 8328 iPod Service - ok
21:23:07.0235 8328 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
21:23:07.0250 8328 IRENUM - ok
21:23:07.0281 8328 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
21:23:07.0281 8328 isapnp - ok
21:23:07.0328 8328 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
21:23:07.0453 8328 iScsiPrt - ok
21:23:07.0515 8328 [ 3B794CA0DE73790420DEBA3C759F1502 ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
21:23:07.0656 8328 jhi_service - ok
21:23:07.0703 8328 [ 0B44199365A69696109AB9A5855E0841 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
21:23:07.0812 8328 JMCR - ok
21:23:07.0843 8328 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
21:23:07.0859 8328 kbdclass - ok
21:23:07.0890 8328 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
21:23:07.0983 8328 kbdhid - ok
21:23:07.0999 8328 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
21:23:07.0999 8328 KeyIso - ok
21:23:08.0046 8328 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
21:23:08.0124 8328 KSecDD - ok
21:23:08.0155 8328 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
21:23:08.0264 8328 KSecPkg - ok
21:23:08.0295 8328 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
21:23:08.0311 8328 ksthunk - ok
21:23:08.0358 8328 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
21:23:08.0389 8328 KtmRm - ok
21:23:08.0436 8328 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
21:23:08.0451 8328 LanmanServer - ok
21:23:08.0498 8328 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:23:08.0498 8328 LanmanWorkstation - ok
21:23:08.0545 8328 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
21:23:08.0561 8328 lltdio - ok
21:23:08.0592 8328 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
21:23:08.0607 8328 lltdsvc - ok
21:23:08.0623 8328 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
21:23:08.0639 8328 lmhosts - ok
21:23:08.0701 8328 [ 97F9EAAC985A663394CD8F54DCD3E73A ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:23:08.0919 8328 LMS - ok
21:23:08.0951 8328 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
21:23:08.0966 8328 LSI_FC - ok
21:23:08.0982 8328 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
21:23:08.0997 8328 LSI_SAS - ok
21:23:09.0013 8328 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
21:23:09.0029 8328 LSI_SAS2 - ok
21:23:09.0060 8328 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
21:23:09.0075 8328 LSI_SCSI - ok
21:23:09.0107 8328 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
21:23:09.0107 8328 luafv - ok
21:23:09.0153 8328 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
21:23:09.0263 8328 MBAMProtector - ok
21:23:09.0341 8328 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:23:09.0497 8328 MBAMScheduler - ok
21:23:09.0575 8328 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:23:09.0715 8328 MBAMService - ok
21:23:09.0824 8328 [ 80E7E71CAAF758BF084BDF13996D52D0 ] McAfee Endpoint Encryption Agent C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
21:23:09.0949 8328 McAfee Endpoint Encryption Agent - ok
21:23:10.0043 8328 [ ACB01BF1A905356AB7F978C7FE852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:23:10.0136 8328 McAfee SiteAdvisor Service - ok
21:23:10.0152 8328 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:23:10.0152 8328 McMPFSvc - ok
21:23:10.0152 8328 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:23:10.0167 8328 mcmscsvc - ok
21:23:10.0167 8328 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:23:10.0183 8328 McNaiAnn - ok
21:23:10.0214 8328 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:23:10.0214 8328 McNASvc - ok
21:23:10.0308 8328 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
21:23:10.0433 8328 McODS - ok
21:23:10.0433 8328 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:23:10.0448 8328 McProxy - ok
21:23:10.0479 8328 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
21:23:10.0604 8328 McShield - ok
21:23:10.0635 8328 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
21:23:10.0729 8328 Mcx2Svc - ok
21:23:10.0760 8328 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
21:23:10.0776 8328 megasas - ok
21:23:10.0823 8328 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
21:23:10.0838 8328 MegaSR - ok
21:23:10.0869 8328 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
21:23:10.0994 8328 MEIx64 - ok
21:23:11.0041 8328 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\windows\system32\drivers\mfeapfk.sys
21:23:11.0150 8328 mfeapfk - ok
21:23:11.0181 8328 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\windows\system32\drivers\mfeavfk.sys
21:23:11.0291 8328 mfeavfk - ok
21:23:11.0306 8328 mfeavfk01 - ok
21:23:11.0337 8328 [ A11F574A809B3751A17815F00C88781F ] MfeEpePc C:\windows\system32\drivers\MfeEpePc.sys
21:23:11.0431 8328 MfeEpePc - ok
21:23:11.0447 8328 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:23:11.0540 8328 mfefire - ok
21:23:11.0587 8328 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\windows\system32\drivers\mfefirek.sys
21:23:11.0696 8328 mfefirek - ok
21:23:11.0743 8328 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
21:23:11.0852 8328 mfehidk - ok
21:23:11.0883 8328 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\windows\system32\DRIVERS\mfenlfk.sys
21:23:11.0977 8328 mfenlfk - ok
21:23:11.0993 8328 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\windows\system32\drivers\mferkdet.sys
21:23:12.0086 8328 mferkdet - ok
21:23:12.0117 8328 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\windows\system32\mfevtps.exe
21:23:12.0211 8328 mfevtp - ok
21:23:12.0258 8328 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\windows\system32\drivers\mfewfpk.sys
21:23:12.0383 8328 mfewfpk - ok
21:23:12.0429 8328 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
21:23:12.0429 8328 MMCSS - ok
21:23:12.0461 8328 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
21:23:12.0461 8328 Modem - ok
21:23:12.0492 8328 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
21:23:12.0507 8328 monitor - ok
21:23:12.0554 8328 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
21:23:12.0554 8328 mouclass - ok
21:23:12.0585 8328 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
21:23:12.0601 8328 mouhid - ok
21:23:12.0648 8328 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
21:23:12.0773 8328 mountmgr - ok
21:23:12.0851 8328 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:23:12.0975 8328 MozillaMaintenance - ok
21:23:13.0007 8328 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
21:23:13.0116 8328 mpio - ok
21:23:13.0147 8328 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
21:23:13.0163 8328 mpsdrv - ok
21:23:13.0178 8328 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
21:23:13.0287 8328 MRxDAV - ok
21:23:13.0319 8328 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
21:23:13.0397 8328 mrxsmb - ok
21:23:13.0459 8328 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
21:23:13.0537 8328 mrxsmb10 - ok
21:23:13.0553 8328 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
21:23:13.0615 8328 mrxsmb20 - ok
21:23:13.0646 8328 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
21:23:13.0724 8328 msahci - ok
21:23:13.0740 8328 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
21:23:13.0833 8328 msdsm - ok
21:23:13.0849 8328 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
21:23:13.0865 8328 MSDTC - ok
21:23:13.0896 8328 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
21:23:13.0896 8328 Msfs - ok
21:23:13.0927 8328 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
21:23:13.0943 8328 mshidkmdf - ok
21:23:13.0958 8328 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
21:23:13.0958 8328 msisadrv - ok
21:23:14.0005 8328 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
21:23:14.0021 8328 MSiSCSI - ok
21:23:14.0021 8328 msiserver - ok
21:23:14.0067 8328 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
21:23:14.0067 8328 MSKSSRV - ok
21:23:14.0083 8328 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
21:23:14.0083 8328 MSPCLOCK - ok
21:23:14.0114 8328 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
21:23:14.0114 8328 MSPQM - ok
21:23:14.0161 8328 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
21:23:14.0208 8328 MsRPC - ok
21:23:14.0239 8328 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
21:23:14.0239 8328 mssmbios - ok
21:23:14.0348 8328 [ A5687FA709582EBF47AF0D9C666BDC79 ] MSSQL$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
21:23:14.0411 8328 MSSQL$SQLEXPRESS - ok
21:23:14.0473 8328 MSSQLSERVER - ok
21:23:14.0520 8328 [ 8E8E74C953EB0C4F8828D99D6F27FD6F ] MSSQLServerADHelper100 c:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
21:23:14.0598 8328 MSSQLServerADHelper100 - ok
21:23:14.0629 8328 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
21:23:14.0629 8328 MSTEE - ok
21:23:14.0645 8328 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
21:23:14.0660 8328 MTConfig - ok
21:23:14.0676 8328 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
21:23:14.0676 8328 Mup - ok
21:23:14.0723 8328 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
21:23:14.0723 8328 napagent - ok
21:23:14.0769 8328 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
21:23:14.0769 8328 NativeWifiP - ok
21:23:14.0832 8328 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
21:23:14.0847 8328 NDIS - ok
21:23:14.0863 8328 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
21:23:14.0879 8328 NdisCap - ok
21:23:14.0910 8328 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
21:23:14.0910 8328 NdisTapi - ok
21:23:14.0941 8328 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
21:23:15.0003 8328 Ndisuio - ok
21:23:15.0035 8328 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
21:23:15.0097 8328 NdisWan - ok
21:23:15.0128 8328 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
21:23:15.0191 8328 NDProxy - ok
21:23:15.0206 8328 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
21:23:15.0206 8328 NetBIOS - ok
21:23:15.0253 8328 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
21:23:15.0300 8328 NetBT - ok
21:23:15.0315 8328 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
21:23:15.0315 8328 Netlogon - ok
21:23:15.0362 8328 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
21:23:15.0362 8328 Netman - ok
21:23:15.0440 8328 [ F50C405C5FCE480D39C882205EBA26A8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:15.0503 8328 NetMsmqActivator - ok
21:23:15.0534 8328 [ F50C405C5FCE480D39C882205EBA26A8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:15.0534 8328 NetPipeActivator - ok
21:23:15.0565 8328 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
21:23:15.0581 8328 netprofm - ok
21:23:15.0596 8328 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:15.0612 8328 NetTcpActivator - ok
21:23:15.0612 8328 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:23:15.0612 8328 NetTcpPortSharing - ok
21:23:15.0659 8328 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
21:23:15.0659 8328 nfrd960 - ok
21:23:15.0690 8328 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
21:23:15.0705 8328 NlaSvc - ok
21:23:15.0705 8328 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
21:23:15.0705 8328 Npfs - ok
21:23:15.0737 8328 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
21:23:15.0737 8328 nsi - ok
21:23:15.0737 8328 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
21:23:15.0752 8328 nsiproxy - ok
21:23:15.0799 8328 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
21:23:15.0877 8328 Ntfs - ok
21:23:15.0893 8328 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
21:23:15.0893 8328 Null - ok
21:23:15.0924 8328 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
21:23:15.0986 8328 nusb3hub - ok
21:23:16.0017 8328 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
21:23:16.0064 8328 nusb3xhc - ok
21:23:16.0080 8328 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
21:23:16.0142 8328 nvraid - ok
21:23:16.0173 8328 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
21:23:16.0236 8328 nvstor - ok
21:23:16.0267 8328 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
21:23:16.0283 8328 nv_agp - ok
21:23:16.0298 8328 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
21:23:16.0298 8328 ohci1394 - ok
21:23:16.0361 8328 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:23:16.0423 8328 ose - ok
21:23:16.0548 8328 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:23:16.0860 8328 osppsvc - ok
21:23:16.0891 8328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
21:23:16.0907 8328 p2pimsvc - ok
21:23:16.0922 8328 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
21:23:16.0938 8328 p2psvc - ok
21:23:16.0969 8328 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
21:23:16.0985 8328 Parport - ok
21:23:17.0031 8328 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
21:23:17.0141 8328 partmgr - ok
21:23:17.0156 8328 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
21:23:17.0172 8328 PcaSvc - ok
21:23:17.0203 8328 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
21:23:17.0328 8328 pci - ok
21:23:17.0359 8328 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
21:23:17.0375 8328 pciide - ok
21:23:17.0406 8328 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
21:23:17.0421 8328 pcmcia - ok
21:23:17.0437 8328 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
21:23:17.0453 8328 pcw - ok
21:23:17.0484 8328 pdfcDispatcher - ok
21:23:17.0562 8328 [ 8F924F00F2F81422FD7C340FDA0E00D8 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
21:23:17.0687 8328 PdiService - ok
21:23:17.0733 8328 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
21:23:17.0765 8328 PEAUTH - ok
21:23:17.0827 8328 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\windows\system32\peerdistsvc.dll
21:23:17.0843 8328 PeerDistSvc - ok
21:23:17.0921 8328 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
21:23:17.0936 8328 PerfHost - ok
21:23:18.0014 8328 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
21:23:18.0108 8328 pla - ok
21:23:18.0155 8328 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
21:23:18.0155 8328 PlugPlay - ok
21:23:18.0186 8328 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
21:23:18.0186 8328 PNRPAutoReg - ok
21:23:18.0217 8328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
21:23:18.0217 8328 PNRPsvc - ok
21:23:18.0264 8328 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
21:23:18.0342 8328 PolicyAgent - ok
21:23:18.0373 8328 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
21:23:18.0373 8328 Power - ok
21:23:18.0420 8328 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
21:23:18.0529 8328 PptpMiniport - ok
21:23:18.0560 8328 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
21:23:18.0576 8328 Processor - ok
21:23:18.0607 8328 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
21:23:18.0607 8328 ProfSvc - ok
21:23:18.0654 8328 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
21:23:18.0654 8328 ProtectedStorage - ok
21:23:18.0701 8328 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
21:23:18.0810 8328 Psched - ok
21:23:18.0872 8328 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
21:23:18.0935 8328 ql2300 - ok
21:23:18.0966 8328 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
21:23:18.0966 8328 ql40xx - ok
21:23:19.0013 8328 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
21:23:19.0028 8328 QWAVE - ok
21:23:19.0044 8328 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
21:23:19.0075 8328 QWAVEdrv - ok
21:23:19.0137 8328 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\windows\WindowsMobile\rapimgr.dll
21:23:19.0247 8328 RapiMgr - ok
21:23:19.0262 8328 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
21:23:19.0262 8328 RasAcd - ok
21:23:19.0309 8328 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
21:23:19.0325 8328 RasAgileVpn - ok
21:23:19.0356 8328 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
21:23:19.0356 8328 RasAuto - ok
21:23:19.0387 8328 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
21:23:19.0481 8328 Rasl2tp - ok
21:23:19.0527 8328 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
21:23:19.0605 8328 RasMan - ok
21:23:19.0683 8328 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
21:23:19.0699 8328 RasPppoe - ok
21:23:19.0715 8328 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
21:23:19.0715 8328 RasSstp - ok
21:23:19.0761 8328 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
21:23:19.0871 8328 rdbss - ok
21:23:19.0886 8328 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
21:23:19.0902 8328 rdpbus - ok
21:23:19.0933 8328 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
21:23:19.0933 8328 RDPCDD - ok
21:23:19.0980 8328 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\windows\system32\drivers\rdpdr.sys
21:23:20.0089 8328 RDPDR - ok
21:23:20.0089 8328 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
21:23:20.0105 8328 RDPENCDD - ok
21:23:20.0136 8328 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
21:23:20.0136 8328 RDPREFMP - ok
21:23:20.0167 8328 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
21:23:20.0276 8328 RDPWD - ok
21:23:20.0323 8328 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
21:23:20.0448 8328 rdyboost - ok
21:23:20.0495 8328 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
21:23:20.0510 8328 RemoteAccess - ok
21:23:20.0541 8328 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
21:23:20.0557 8328 RemoteRegistry - ok
21:23:20.0604 8328 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
21:23:20.0619 8328 RFCOMM - ok
21:23:20.0651 8328 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
21:23:20.0666 8328 RpcEptMapper - ok
21:23:20.0697 8328 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
21:23:20.0713 8328 RpcLocator - ok
21:23:20.0760 8328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
21:23:20.0775 8328 RpcSs - ok
21:23:20.0822 8328 [ A0A154BA21E9A0475061D9BBEE8219AE ] RsFx0200 C:\windows\system32\DRIVERS\RsFx0200.sys
21:23:20.0947 8328 RsFx0200 - ok
21:23:20.0994 8328 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
21:23:20.0994 8328 rspndr - ok
21:23:21.0056 8328 [ 2777226EE8BF50B059D7A7C90177E99C ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
21:23:21.0181 8328 RTL8167 - ok
21:23:21.0228 8328 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\windows\system32\drivers\vms3cap.sys
21:23:21.0337 8328 s3cap - ok
21:23:21.0368 8328 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
21:23:21.0368 8328 SamSs - ok
21:23:21.0399 8328 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
21:23:21.0524 8328 sbp2port - ok
21:23:21.0555 8328 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
21:23:21.0571 8328 SCardSvr - ok
21:23:21.0603 8328 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
21:23:21.0728 8328 scfilter - ok
21:23:21.0790 8328 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
21:23:21.0900 8328 Schedule - ok
21:23:21.0931 8328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
21:23:21.0931 8328 SCPolicySvc - ok
21:23:21.0978 8328 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\drivers\sdbus.sys
21:23:22.0087 8328 sdbus - ok
21:23:22.0118 8328 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
21:23:22.0212 8328 SDRSVC - ok
21:23:22.0243 8328 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
21:23:22.0243 8328 secdrv - ok
21:23:22.0290 8328 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
21:23:22.0383 8328 seclogon - ok
21:23:22.0414 8328 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
21:23:22.0414 8328 SENS - ok
21:23:22.0430 8328 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
21:23:22.0446 8328 SensrSvc - ok
21:23:22.0461 8328 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
21:23:22.0477 8328 Serenum - ok
21:23:22.0492 8328 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
21:23:22.0508 8328 Serial - ok
21:23:22.0555 8328 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
21:23:22.0555 8328 sermouse - ok
21:23:22.0617 8328 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
21:23:22.0711 8328 SessionEnv - ok
21:23:22.0773 8328 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
21:23:22.0773 8328 sffdisk - ok
21:23:22.0804 8328 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
21:23:22.0820 8328 sffp_mmc - ok
21:23:22.0820 8328 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
21:23:22.0960 8328 sffp_sd - ok
21:23:23.0007 8328 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
21:23:23.0007 8328 sfloppy - ok
21:23:23.0070 8328 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
21:23:23.0257 8328 Sftfs - ok
21:23:23.0304 8328 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:23:23.0444 8328 sftlist - ok
21:23:23.0475 8328 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
21:23:23.0584 8328 Sftplay - ok
21:23:23.0617 8328 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
21:23:23.0710 8328 Sftredir - ok
21:23:23.0773 8328 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
21:23:23.0897 8328 Sftvol - ok
21:23:23.0913 8328 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:23:24.0053 8328 sftvsa - ok
21:23:24.0100 8328 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
21:23:24.0194 8328 ShellHWDetection - ok
21:23:24.0241 8328 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
21:23:24.0256 8328 SiSRaid2 - ok
21:23:24.0272 8328 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
21:23:24.0287 8328 SiSRaid4 - ok
21:23:24.0490 8328 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:23:24.0725 8328 Skype C2C Service - ok
21:23:24.0819 8328 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:23:33.0383 8328 SkypeUpdate - ok
21:23:33.0430 8328 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
21:23:33.0430 8328 Smb - ok
21:23:33.0477 8328 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
21:23:33.0477 8328 SNMPTRAP - ok
21:23:33.0555 8328 [ 43FBAA2C9E6B01B6AFC40B69019C27EC ] SNP2UVC C:\windows\system32\DRIVERS\snp2uvc.sys
21:23:33.0633 8328 SNP2UVC - ok
21:23:33.0726 8328 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
21:23:33.0726 8328 spldr - ok
21:23:33.0789 8328 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
21:23:33.0914 8328 Spooler - ok
21:23:34.0054 8328 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
21:23:34.0101 8328 sppsvc - ok
21:23:34.0132 8328 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
21:23:34.0163 8328 sppuinotify - ok
21:23:34.0288 8328 [ 009C9CBCC2FD7426E8AD0826C692F4A8 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
21:23:34.0428 8328 SQLAgent$SQLEXPRESS - ok
21:23:34.0506 8328 [ 7B20DFDD0E9BAAB0097342016CF4FDF5 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:23:34.0662 8328 SQLBrowser - ok
21:23:34.0740 8328 [ D39B8DEE1566C30858216521998F382F ] SQLSERVERAGENT c:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
21:23:34.0881 8328 SQLSERVERAGENT - ok
21:23:34.0959 8328 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:23:35.0084 8328 SQLWriter - ok
21:23:35.0130 8328 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
21:23:35.0255 8328 srv - ok
21:23:35.0271 8328 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
21:23:35.0396 8328 srv2 - ok
21:23:35.0411 8328 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
21:23:35.0520 8328 srvnet - ok
21:23:35.0567 8328 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
21:23:35.0583 8328 SSDPSRV - ok
21:23:35.0598 8328 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
21:23:35.0598 8328 SstpSvc - ok
21:23:35.0723 8328 [ 0CDEA5ACBB69C45F642E96D81E906CCD ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
21:23:35.0848 8328 STacSV - ok
21:23:35.0879 8328 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
21:23:35.0879 8328 stexstor - ok
21:23:35.0926 8328 [ 5C8D6072D1D09F11789C6A014688048A ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
21:23:36.0051 8328 STHDA - ok
21:23:36.0113 8328 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
21:23:36.0222 8328 stisvc - ok
21:23:36.0254 8328 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\windows\system32\drivers\vmstorfl.sys
21:23:36.0378 8328 storflt - ok
21:23:36.0410 8328 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\windows\system32\storsvc.dll
21:23:36.0410 8328 StorSvc - ok
21:23:36.0425 8328 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\windows\system32\drivers\storvsc.sys
21:23:36.0550 8328 storvsc - ok
21:23:36.0581 8328 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
21:23:36.0597 8328 swenum - ok
21:23:36.0675 8328 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
21:23:36.0706 8328 swprv - ok
21:23:36.0784 8328 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
21:23:36.0924 8328 SynTP - ok
21:23:37.0002 8328 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
21:23:37.0096 8328 SysMain - ok
21:23:37.0127 8328 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
21:23:37.0205 8328 TabletInputService - ok
21:23:37.0221 8328 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
21:23:37.0299 8328 TapiSrv - ok
21:23:37.0330 8328 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
21:23:37.0346 8328 TBS - ok
21:23:37.0408 8328 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
21:23:37.0517 8328 Tcpip - ok
21:23:37.0580 8328 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
21:23:37.0595 8328 TCPIP6 - ok
21:23:37.0658 8328 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
21:23:37.0767 8328 tcpipreg - ok
21:23:37.0798 8328 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
21:23:37.0814 8328 TDPIPE - ok
21:23:37.0845 8328 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
21:23:37.0938 8328 TDTCP - ok
21:23:37.0970 8328 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
21:23:38.0063 8328 tdx - ok
21:23:38.0141 8328 [ F7BE59881AEBE72722B0AB669EF23BB4 ] Te.Service C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
21:23:38.0250 8328 Te.Service - ok
21:23:38.0282 8328 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
21:23:38.0360 8328 TermDD - ok
21:23:38.0406 8328 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
21:23:38.0422 8328 TermService - ok
21:23:38.0453 8328 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
21:23:38.0469 8328 Themes - ok
21:23:38.0484 8328 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
21:23:38.0500 8328 THREADORDER - ok
21:23:38.0531 8328 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\windows\system32\drivers\tpm.sys
21:23:38.0531 8328 TPM - ok
21:23:38.0562 8328 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
21:23:38.0578 8328 TrkWks - ok
21:23:38.0625 8328 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
21:23:38.0734 8328 TrustedInstaller - ok
21:23:38.0781 8328 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
21:23:38.0890 8328 tssecsrv - ok
21:23:38.0937 8328 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
21:23:39.0046 8328 TsUsbFlt - ok
21:23:39.0093 8328 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
21:23:39.0202 8328 tunnel - ok
21:23:39.0233 8328 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
21:23:39.0249 8328 uagp35 - ok
21:23:39.0296 8328 [ D5994AB5C2B2D72D6320A7004D52617C ] uArcCapture C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
21:23:39.0420 8328 uArcCapture - ok
21:23:39.0452 8328 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
21:23:39.0545 8328 udfs - ok
21:23:39.0592 8328 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
21:23:39.0608 8328 UI0Detect - ok
21:23:39.0639 8328 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
21:23:39.0639 8328 uliagpkx - ok
21:23:39.0686 8328 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
21:23:39.0779 8328 umbus - ok
21:23:39.0810 8328 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
21:23:39.0826 8328 UmPass - ok
21:23:39.0857 8328 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\windows\System32\umrdp.dll
21:23:39.0857 8328 UmRdpService - ok
21:23:39.0998 8328 [ A69CD6BDB82872999D2E46F9324ADA83 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:23:40.0294 8328 UNS - ok
21:23:40.0341 8328 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
21:23:40.0356 8328 upnphost - ok
21:23:40.0403 8328 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
21:23:40.0512 8328 USBAAPL64 - ok
21:23:40.0559 8328 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
21:23:40.0668 8328 usbccgp - ok
21:23:40.0715 8328 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
21:23:40.0731 8328 usbcir - ok
21:23:40.0746 8328 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
21:23:40.0856 8328 usbehci - ok
21:23:40.0902 8328 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
21:23:41.0012 8328 usbhub - ok
21:23:41.0043 8328 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
21:23:41.0168 8328 usbohci - ok
21:23:41.0214 8328 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
21:23:41.0214 8328 usbprint - ok
21:23:41.0230 8328 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
21:23:41.0339 8328 USBSTOR - ok
21:23:41.0370 8328 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
21:23:41.0495 8328 usbuhci - ok
21:23:41.0526 8328 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
21:23:41.0636 8328 usbvideo - ok
21:23:41.0698 8328 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\windows\system32\drivers\usb8023x.sys
21:23:41.0714 8328 usb_rndisx - ok
21:23:41.0745 8328 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
21:23:41.0745 8328 UxSms - ok
21:23:41.0760 8328 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
21:23:41.0760 8328 VaultSvc - ok
21:23:41.0854 8328 [ 41EEF971DD82A3674D07F275A4DEF702 ] vcsFPService C:\windows\system32\vcsFPService.exe
21:23:41.0994 8328 vcsFPService - ok
21:23:42.0026 8328 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
21:23:42.0041 8328 vdrvroot - ok
21:23:42.0088 8328 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
21:23:42.0197 8328 vds - ok
21:23:42.0228 8328 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
21:23:42.0244 8328 vga - ok
21:23:42.0244 8328 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
21:23:42.0260 8328 VgaSave - ok
21:23:42.0291 8328 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
21:23:42.0384 8328 vhdmp - ok
21:23:42.0416 8328 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
21:23:42.0431 8328 viaide - ok
21:23:42.0462 8328 [ FFB2188E5FD5CBC744BC1C9B6EBE0F2B ] virtdigi C:\windows\system32\DRIVERS\virtdigi.sys
21:23:42.0556 8328 virtdigi - ok
21:23:42.0587 8328 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\windows\system32\drivers\vmbus.sys
21:23:42.0681 8328 vmbus - ok
21:23:42.0696 8328 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\windows\system32\drivers\VMBusHID.sys
21:23:42.0774 8328 VMBusHID - ok
21:23:42.0806 8328 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
21:23:42.0899 8328 volmgr - ok
21:23:42.0946 8328 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
21:23:43.0040 8328 volmgrx - ok
21:23:43.0071 8328 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
21:23:43.0164 8328 volsnap - ok
21:23:43.0196 8328 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\windows\system32\DRIVERS\vpchbus.sys
21:23:43.0274 8328 vpcbus - ok
21:23:43.0320 8328 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\windows\system32\DRIVERS\vpcnfltr.sys
21:23:43.0398 8328 vpcnfltr - ok
21:23:43.0430 8328 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\windows\system32\DRIVERS\vpcusb.sys
21:23:43.0539 8328 vpcusb - ok
21:23:43.0586 8328 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\windows\system32\drivers\vpcvmm.sys
21:23:43.0601 8328 vpcvmm - ok
21:23:43.0648 8328 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
21:23:43.0664 8328 vsmraid - ok
21:23:43.0882 8328 [ CE5D3C26FD95E3BBD3381C25B9E1A8AF ] VSPerfDrv110 C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys
21:23:44.0007 8328 VSPerfDrv110 - ok
21:23:44.0085 8328 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
21:23:44.0241 8328 VSS - ok
21:23:44.0256 8328 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
21:23:44.0256 8328 vwifibus - ok
21:23:44.0288 8328 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
21:23:44.0303 8328 vwififlt - ok
21:23:44.0366 8328 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
21:23:44.0366 8328 W32Time - ok
21:23:44.0412 8328 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
21:23:44.0412 8328 WacomPen - ok
21:23:44.0459 8328 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
21:23:44.0568 8328 WANARP - ok
21:23:44.0568 8328 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
21:23:44.0568 8328 Wanarpv6 - ok
21:23:44.0646 8328 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
21:23:44.0756 8328 WatAdminSvc - ok
21:23:44.0834 8328 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
21:23:44.0974 8328 wbengine - ok
21:23:45.0005 8328 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
21:23:45.0021 8328 WbioSrvc - ok
21:23:45.0083 8328 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\windows\WindowsMobile\wcescomm.dll
21:23:45.0161 8328 WcesComm - ok
21:23:45.0224 8328 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
21:23:45.0224 8328 wcncsvc - ok
21:23:45.0255 8328 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
21:23:45.0255 8328 WcsPlugInService - ok
21:23:45.0286 8328 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
21:23:45.0286 8328 Wd - ok
21:23:45.0333 8328 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
21:23:45.0364 8328 Wdf01000 - ok
21:23:45.0395 8328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
21:23:45.0411 8328 WdiServiceHost - ok
21:23:45.0411 8328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
21:23:45.0411 8328 WdiSystemHost - ok
21:23:45.0458 8328 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
21:23:45.0551 8328 WebClient - ok
21:23:45.0582 8328 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
21:23:45.0614 8328 Wecsvc - ok
21:23:45.0614 8328 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
21:23:45.0629 8328 wercplsupport - ok
21:23:45.0660 8328 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
21:23:45.0676 8328 WerSvc - ok
21:23:45.0707 8328 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
21:23:45.0707 8328 WfpLwf - ok
21:23:45.0738 8328 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
21:23:45.0738 8328 WIMMount - ok
21:23:45.0770 8328 WinHttpAutoProxySvc - ok
21:23:45.0832 8328 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
21:23:45.0848 8328 Winmgmt - ok
21:23:45.0941 8328 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
21:23:46.0050 8328 WinRM - ok
21:23:46.0113 8328 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\windows\system32\DRIVERS\WinUSB.sys
21:23:46.0222 8328 WinUSB - ok
21:23:46.0269 8328 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
21:23:46.0300 8328 Wlansvc - ok
21:23:46.0456 8328 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:23:46.0581 8328 wlidsvc - ok
21:23:46.0612 8328 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
21:23:46.0628 8328 WmiAcpi - ok
21:23:46.0690 8328 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
21:23:46.0706 8328 wmiApSrv - ok
21:23:46.0737 8328 WMPNetworkSvc - ok
21:23:46.0784 8328 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
21:23:46.0784 8328 WPCSvc - ok
21:23:46.0830 8328 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
21:23:46.0908 8328 WPDBusEnum - ok
21:23:46.0940 8328 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
21:23:46.0955 8328 ws2ifsl - ok
21:23:46.0971 8328 WSearch - ok
21:23:47.0080 8328 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
21:23:47.0111 8328 wuauserv - ok
21:23:47.0158 8328 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
21:23:47.0267 8328 WudfPf - ok
21:23:47.0314 8328 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
21:23:47.0423 8328 WUDFRd - ok
21:23:47.0470 8328 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
21:23:47.0564 8328 wudfsvc - ok
21:23:47.0610 8328 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
21:23:47.0626 8328 WwanSvc - ok
21:23:47.0720 8328 [ A35820791F940822C31908F58F91D973 ] XobniService C:\Program Files (x86)\Xobni\XobniService.exe
21:23:47.0844 8328 XobniService - ok
21:23:47.0876 8328 ================ Scan global ===============================
21:23:47.0907 8328 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
21:23:47.0922 8328 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
21:23:47.0938 8328 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
21:23:47.0970 8328 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
21:23:48.0001 8328 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
21:23:48.0017 8328 [Global] - ok
21:23:48.0017 8328 ================ Scan MBR ==================================
21:23:48.0048 8328 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:23:48.0251 8328 \Device\Harddisk0\DR0 - ok
21:23:48.0251 8328 ================ Scan VBR ==================================
21:23:48.0251 8328 [ D92C2884F687464C532FB1745F3C97E4 ] \Device\Harddisk0\DR0\Partition1
21:23:48.0251 8328 \Device\Harddisk0\DR0\Partition1 - ok
21:23:48.0282 8328 [ 836BF02EC00F65E58759C2EB6033FAB9 ] \Device\Harddisk0\DR0\Partition2
21:23:48.0282 8328 \Device\Harddisk0\DR0\Partition2 - ok
21:23:48.0313 8328 [ 59236CFDAD918BCB732C35D6C02DC356 ] \Device\Harddisk0\DR0\Partition3
21:23:48.0329 8328 \Device\Harddisk0\DR0\Partition3 - ok
21:23:48.0376 8328 [ 43EA4728121DCC793ABEDFBA4A61411C ] \Device\Harddisk0\DR0\Partition4
21:23:48.0376 8328 \Device\Harddisk0\DR0\Partition4 - ok
21:23:48.0376 8328 ============================================================
21:23:48.0376 8328 Scan finished
21:23:48.0376 8328 ============================================================
21:23:48.0407 6568 Detected object count: 0
21:23:48.0407 6568 Actual detected object count: 0

/////
MALWAREBYTES
/////

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.05.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Saibaba :: SAIBABA-HP [administrator]

Protection: Enabled

05/10/2012 21:31:07
mbam-log-2012-10-05 (21-31-07).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 449810
Time elapsed: 8 hour(s), 21 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

////////
Mini Toolbox
///////

MiniToolBox by Farbar Version: 23-07-2012
Ran by Saibaba (administrator) on 05-10-2012 at 19:22:44
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9285 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Saibaba-HP
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : lan

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : lan
Description . . . . . . . . . . . : Atheros AR9285 802.11b/g/n WiFi Adapter
Physical Address. . . . . . . . . : 74-DE-2B-0F-F5-3A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a462:3a11:888:3bc8%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.70(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 05 October 2012 08:09:51
Lease Expires . . . . . . . . . . : 06 October 2012 18:52:38
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 376757803
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-E0-B6-19-E4-11-5B-24-6C-C2
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 74-DE-2B-10-3F-9A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : lan
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : E4-11-5B-24-6C-C2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.lan:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AE88F804-FE97-49EB-AEA5-12E7D99629A4}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dsldevice.lan
Address: 192.168.1.254

Name: google.com
Addresses: 2a00:1450:4009:807::1002
173.194.34.162
173.194.34.164
173.194.34.161
173.194.34.169
173.194.34.168
173.194.34.167
173.194.34.163
173.194.34.160
173.194.34.165
173.194.34.174
173.194.34.166


Pinging google.com [173.194.34.162] with 32 bytes of data:
Reply from 173.194.34.162: bytes=32 time=19ms TTL=55
Reply from 173.194.34.162: bytes=32 time=14ms TTL=55

Ping statistics for 173.194.34.162:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 14ms, Maximum = 19ms, Average = 16ms
Server: dsldevice.lan
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=895ms TTL=45
Reply from 72.30.38.140: bytes=32 time=717ms TTL=45

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 717ms, Maximum = 895ms, Average = 806ms
Server: dsldevice.lan
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...74 de 2b 0f f5 3a ......Atheros AR9285 802.11b/g/n WiFi Adapter
12...74 de 2b 10 3f 9a ......Bluetooth Device (Personal Area Network)
10...e4 11 5b 24 6c c2 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.70 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.70 281
192.168.1.70 255.255.255.255 On-link 192.168.1.70 281
192.168.1.255 255.255.255.255 On-link 192.168.1.70 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.70 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.70 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
13 281 fe80::/64 On-link
13 281 fe80::a462:3a11:888:3bc8/128
On-link
1 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/05/2012 06:52:44 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client event error

Error: (10/05/2012 06:52:39 PM) (Source: Validity USDK) (User: )
Description: SSL alert by host: Description is: 47.

Error: (10/05/2012 08:10:02 AM) (Source: MSSQL$SQLEXPRESS) (User: )
Description: SQL Server evaluation period has expired.

Error: (10/05/2012 04:54:55 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/05/2012 04:39:05 AM) (Source: MSSQL$SQLEXPRESS) (User: )
Description: SQL Server evaluation period has expired.

Error: (10/04/2012 06:46:50 PM) (Source: MSSQL$SQLEXPRESS) (User: )
Description: SQL Server evaluation period has expired.

Error: (10/03/2012 11:27:22 PM) (Source: MSSQL$SQLEXPRESS) (User: )
Description: SQL Server evaluation period has expired.

Error: (10/03/2012 11:24:15 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (10/03/2012 11:24:15 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (10/03/2012 11:24:15 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC


System errors:
=============
Error: (10/05/2012 06:55:30 PM) (Source: DCOM) (User: )
Description: {211EBA3A-EA5A-496B-A021-5C6BEB365E4C}

Error: (10/05/2012 06:53:57 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (10/05/2012 06:53:57 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (10/05/2012 08:12:51 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (10/05/2012 08:12:51 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (10/05/2012 08:10:27 AM) (Source: Service Control Manager) (User: )
Description: The SQL Server (SQLEXPRESS) service terminated unexpectedly. It has done this 1 time(s).

Error: (10/05/2012 08:10:04 AM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (10/05/2012 08:09:57 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (10/05/2012 08:09:57 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (10/05/2012 08:09:57 AM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.


Microsoft Office Sessions:
=========================
Error: (10/05/2012 06:52:44 PM) (Source: ATIeRecord)(User: )
Description:

Error: (10/05/2012 06:52:39 PM) (Source: Validity USDK)(User: )
Description: Description is: 47

Error: (10/05/2012 08:10:02 AM) (Source: MSSQL$SQLEXPRESS)(User: )
Description:

Error: (10/05/2012 04:54:55 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Saibaba\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MFBWPSW6\esetsmartinstaller_enu.exe

Error: (10/05/2012 04:39:05 AM) (Source: MSSQL$SQLEXPRESS)(User: )
Description:

Error: (10/04/2012 06:46:50 PM) (Source: MSSQL$SQLEXPRESS)(User: )
Description:

Error: (10/03/2012 11:27:22 PM) (Source: MSSQL$SQLEXPRESS)(User: )
Description:

Error: (10/03/2012 11:24:15 PM) (Source: ATIeRecord)(User: )
Description:

Error: (10/03/2012 11:24:15 PM) (Source: ATIeRecord)(User: )
Description:

Error: (10/03/2012 11:24:15 PM) (Source: ATIeRecord)(User: )
Description:


=========================== Installed Programs ============================

Tools for .Net 3.5 (Version: 3.11.50522)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.278)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
AMD APP SDK Runtime (Version: 2.4.595.1)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
ArcSoft TotalMedia (Version: 1.0.48.25)
ArcSoft TotalMedia (Version: 2.0.39.12)
ArcSoft Webcam Sharing Manager (Version: 2.0.0.30)
Ask Toolbar (Version: 1.15.2.0)
Ask Toolbar Updater (Version: 1.2.1.23037)
Atheros Driver Installation Program (Version: 9.2)
ATI Catalyst Install Manager (Version: 3.0.820.0)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bing Bar (Version: 7.1.361.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
BitTorrent (Version: 7.6.1)
BitTorrentBar Toolbar (Version: 6.8.11.4)
Blasterball 3 (Version: 2.2.0.95)
Blend for Visual Studio (Version: 5.0.30514.0)
Blend for Visual Studio ENU resources (Version: 5.0.30514.0)
Bluetooth Win7 Suite (64) (Version: 7.02.000.55)
Bonjour (Version: 3.0.0.10)
Bounce Symphony (Version: 2.2.0.95)
Build-a-Lot - The Elizabethan Era (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2011.0328.1145.19234)
Catalyst Control Center Graphics Previews Common (Version: 2011.0328.1145.19234)
Catalyst Control Center InstallProxy (Version: 2011.0328.1145.19234)
Catalyst Control Center Localization All (Version: 2011.0328.1145.19234)
Catalyst Control Center Profiles Mobile (Version: 2011.0328.1145.19234)
ccc-utility64 (Version: 2011.0328.1145.19234)
CCC Help Chinese Standard (Version: 2011.0328.1144.19234)
CCC Help Chinese Traditional (Version: 2011.0328.1144.19234)
CCC Help Czech (Version: 2011.0328.1144.19234)
CCC Help Danish (Version: 2011.0328.1144.19234)
CCC Help Dutch (Version: 2011.0328.1144.19234)
CCC Help English (Version: 2011.0328.1144.19234)
CCC Help Finnish (Version: 2011.0328.1144.19234)
CCC Help French (Version: 2011.0328.1144.19234)
CCC Help German (Version: 2011.0328.1144.19234)
CCC Help Greek (Version: 2011.0328.1144.19234)
CCC Help Hungarian (Version: 2011.0328.1144.19234)
CCC Help Italian (Version: 2011.0328.1144.19234)
CCC Help Japanese (Version: 2011.0328.1144.19234)
CCC Help Korean (Version: 2011.0328.1144.19234)
CCC Help Norwegian (Version: 2011.0328.1144.19234)
CCC Help Polish (Version: 2011.0328.1144.19234)
CCC Help Portuguese (Version: 2011.0328.1144.19234)
CCC Help Russian (Version: 2011.0328.1144.19234)
CCC Help Spanish (Version: 2011.0328.1144.19234)
CCC Help Swedish (Version: 2011.0328.1144.19234)
CCC Help Thai (Version: 2011.0328.1144.19234)
CCC Help Turkish (Version: 2011.0328.1144.19234)
Chuzzle Deluxe (Version: 2.2.0.95)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Concurrency Visualizer - ENU (Version: 11.0.40825)
D3DX10 (Version: 15.4.2368.0902)
Device Access Manager for HP ProtectTools (Version: 6.0.0.9)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dotfuscator and Analytics Community Edition (Version: 5.5.4456.63708)
Drive Encryption For HP ProtectTools (Version: 6.0.33.24411)
Eighteen Wheels of Steel: Extreme Trucker 2 (Version: 2.2.0.97)
Energy Star Digital Logo (Version: 1.0.1)
ESET Online Scanner v3
Evernote v. 4.2.2 (Version: 4.2.2.3979)
Face Recognition for HP ProtectTools (Version: 6.00.4303)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.95)
File Sanitizer For HP ProtectTools (Version: 6.0.0.8)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
GDR 1617 for SQL Server 2008 R2 (KB2494088) (Version: 10.50.1617.0)
Google Chrome (Version: 22.0.1229.79)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.1.4.1)
HP Auto (Version: 1.0.12494.3472)
HP Connection Manager (Version: 4.1.10.1)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP DayStarter (Version: 2.0.0.12)
HP Documentation (Version: 1.2.0.0)
HP ESU for Microsoft Windows 7 (Version: 1.1.11.1)
HP Games (Version: 1.0.3.0)
HP HotKey Support (Version: 4.0.10.1)
HP Power Assistant (Version: 2.0.2.0)
HP ProtectTools Security Manager (Version: 6.00.888)
HP QuickWeb (Version: 3.0.0.9057)
HP Setup (Version: 8.5.4526.3645)
HP SoftPaq Download Manager (Version: 3.2.0.0)
HP Software Framework (Version: 4.0.112.1)
HP Software Setup (Version: 8.2.1.1)
HP Support Assistant (Version: 6.1.12.1)
HP System Default Settings (Version: 2.1.2)
HP Wallpaper (Version: 2.00)
HP Webcam Driver (Version: 5.8.50058.0)
IDT Audio (Version: 1.0.6325.0)
IIS 8.0 Express (Version: 8.0.1508)
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
Insaniquarium Deluxe (Version: 2.2.0.95)
Intel® Display Audio Driver (Version: 6.14.00.3074)
Intel® Identity Protection Technology 1.0.71.0 (Version: 1.0.71.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Rapid Storage Technology (Version: 10.1.2.1004)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Jewel Quest II (Version: 2.2.0.95)
Jewel Quest Solitaire (Version: 2.2.0.95)
JMicron Flash Media Controller Driver (Version: 1.0.57.2)
John Deere Drive Green (Version: 2.2.0.95)
LocalESPC (Version: 8.59.8400)
LocalESPCui for en-us (Version: 8.59.8400)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
McAfee SecurityCenter (Version: 11.0.678)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 RC (Version: 4.5.50501)
Microsoft .NET Framework 4.5 RC Multi-Targeting Pack (Version: 4.5.50501)
Microsoft .NET Framework 4.5 RC SDK (Version: 4.5.50501)
Microsoft ADO.NET Entity Framework Tools (Version: 11.0.10806.00)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 3 - Visual Studio 11 Tools Update (Version: 3.0.30505.0)
Microsoft ASP.NET MVC 3 (Version: 3.0.20105.0)
Microsoft ASP.NET MVC 4 - Visual Studio 11 Tools (Version: 4.0.20505.0)
Microsoft ASP.NET MVC 4 Runtime (Version: 4.0.20505.0)
Microsoft ASP.NET Web Pages - Visual Studio 11 Tools (Version: 1.0.20505.0)
Microsoft ASP.NET Web Pages (Version: 1.0.20105.0)
Microsoft ASP.NET Web Pages 2 - Visual Studio 11 Tools (Version: 2.0.20505.0)
Microsoft ASP.NET Web Pages 2 Runtime (Version: 2.0.20505.0)
Microsoft Enterprise Library 5.0 Optional Update 1 (Version: 5.0.505.0)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Help Viewer 2.0 RC (Version: 2.0.50522)
Microsoft LightSwitch for Visual Studio 2012 RC Core (Version: 11.0.50522)
Microsoft LightSwitch for Visual Studio 2012 RC CoreRes - ENU (Version: 11.0.50522)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Home and Business 2010 - English (Version: 14.0.6114.5002)
Microsoft Office Outlook Connector (Version: 14.0.6106.5001)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Portable Library Multi-Targeting Pack (Version: 11.0.50522.01)
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (Version: 11.0.50522.01)
Microsoft Report Viewer Add-On for Visual Studio 2012 (Version: 11.1.2802.11)
Microsoft Report Viewer Redistributable 2008 (KB971119) (Version: 9.0.30731)
Microsoft Report Viewer Redistributable 2008 SP1
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Silverlight 4 SDK (Version: 4.0.60310.0)
Microsoft Silverlight 5 Beta SDK (Version: 5.0.60401.0)
Microsoft SQL Server "Denali" CTP3 (64-bit)
Microsoft SQL Server "Denali" CTP3 RsFx Driver (Version: 11.0.1440.19)
Microsoft SQL Server "Denali" CTP3 Setup (English) (Version: 11.0.1440.19)
Microsoft SQL Server "Denali" Transact-SQL ScriptDom CTP3 (Version: 11.0.1440.19)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Native Client (Version: 10.50.1617.0)
Microsoft SQL Server 2008 R2 Policies (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 RsFx Driver (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 Setup (English) (Version: 10.50.1617.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.1.2731.0)
Microsoft SQL Server 2012 Command Line Utilities (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Data-Tier App Framework (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Express LocalDB (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects (x64) (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Native Client (Version: 11.0.2100.60)
Microsoft SQL Server 2012 T-SQL Language Service (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL Compiler Service (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (Version: 11.0.2100.60)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 Query Tools ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU CTP1 (Version: 4.0.8872.1)
Microsoft SQL Server Data Tools - enu (11.1.20425.00) (Version: 11.1.20425.00)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20425.00) (Version: 11.1.20425.00)
Microsoft SQL Server System CLR Types (Version: 10.50.1600.1)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1600.1)
Microsoft Surface 2.0 Runtime (Version: 2.0.21114.00)
Microsoft Surface 2.0 SDK (Version: 2.0.21114.00)
Microsoft System CLR Types for SQL Server 2012 (Version: 11.0.2100.60)
Microsoft System CLR Types for SQL Server 2012 (x64) (Version: 11.0.2100.60)
Microsoft Visual C# 2010 Express - ENU (Version: 10.0.30319)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (Version: 9.0.30729.4974)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2012 RC x64 Designtime - 11.0.50522 (Version: 11.0.50522)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50522 (Version: 11.0.50522)
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50522 (Version: 11.0.50522)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50522 (Version: 11.0.50522)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50522 (Version: 11.0.50522)
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50522 (Version: 11.0.50522)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50522 (Version: 11.0.50522)
Microsoft Visual C++ Compilers 2012 - ENU Resources (Version: 11.0.50522)
Microsoft Visual C++ Compilers 2012 (Version: 11.0.50522)
Microsoft Visual C++ Core Libraries 2012 (Version: 11.0.50522)
Microsoft Visual C++ Extended Libraries 2012 (Version: 11.0.50522)
Microsoft Visual C++ Microsoft Foundation Class Libraries 2012 (Version: 11.0.50522)
Microsoft Visual Studio 11 Developer Preview Language Pack - ENU (Version: 11.0.40825.0)
Microsoft Visual Studio 11 Developer Preview SDK Language Pack (Version: 11.0.40825)
Microsoft Visual Studio 11 IntelliTrace Collection (x64) enu Language Pack (Version: 11.0.40825)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50522)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31121)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31126)
Microsoft Visual Studio 2012 Devenv (Version: 11.0.50522)
Microsoft Visual Studio 2012 Devenv Resources (Version: 11.0.50522)
Microsoft Visual Studio 2012 IntelliTrace Core amd64 (Version: 11.0.50522)
Microsoft Visual Studio 2012 IntelliTrace Core x86 (Version: 11.0.50522)
Microsoft Visual Studio 2012 IntelliTrace Front End x86 (Version: 11.0.50522)
Microsoft Visual Studio 2012 Performance Collection Tools RC - ENU (Version: 11.0.50522)
Microsoft Visual Studio 2012 Performance Collection Tools RC (Version: 11.0.50522)
Microsoft Visual Studio 2012 RC Preparation (Version: 11.0.50522)
Microsoft Visual Studio 2012 SharePoint Developer Tools RC (Version: 11.0.50522)
Microsoft Visual Studio 2012 SharePoint Developer Tools RC enu Language Pack (Version: 11.0.50522)
Microsoft Visual Studio 2012 Shell (Minimum) (Version: 11.0.50522)
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (Version: 11.0.50522)
Microsoft Visual Studio 2012 Shell (Minimum) Resources (Version: 11.0.50522)
Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 RC ENU (Version: 4.0.8872.1)
Microsoft Visual Studio Premium 2012 RC - ENU (Version: 11.0.50522)
Microsoft Visual Studio Premium 2012 RC (Version: 11.0.50522)
Microsoft Visual Studio Professional 2012 RC - ENU (Version: 11.0.50522)
Microsoft Visual Studio Professional 2012 RC (Version: 11.0.50522)
Microsoft Visual Studio Team Foundation Server 2012 RC Object Model (Version: 11.0.50522)
Microsoft Visual Studio Team Foundation Server 2012 RC Object Model Language Pack - ENU (Version: 11.0.50522)
Microsoft Visual Studio Team Foundation Server 2012 RC Storyboarding (Version: 11.0.50522)
Microsoft Visual Studio Team Foundation Server 2012 RC Storyboarding Language Pack - ENU (Version: 11.0.50522)
Microsoft Visual Studio Team Foundation Server 2012 RC Team Explorer (Version: 11.0.50522)
Microsoft Visual Studio Team Foundation Server 2012 RC Team Explorer Language Pack - ENU (Version: 11.0.50522)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.35191)
Microsoft Visual Studio Ultimate 2012 RC - ENU (Version: 11.0.50522)
Microsoft Visual Studio Ultimate 2012 RC (Version: 11.0.50522)
Microsoft Visual Studio Ultimate 2012 RC XAML UI Designer Core (Version: 11.0.50522)
Microsoft Visual Studio Ultimate 2012 RC XAML UI Designer enu Resources (Version: 11.0.50522)
Microsoft VSS Writer for SQL Server "Denali" CTP3 (Version: 11.0.1440.19)
Microsoft Web Deploy 3.0 (Version: 3.1236.1516)
Microsoft Web Deploy dbSqlPackage Provider - enu (Version: 10.3.20225.0)
Microsoft Web Platform Installer 4.0 (Version: 4.0.1307)
Microsoft Web Tooling Extensions - Visual Studio 11 (Version: 1.0.30426.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC90_CRT_x86 (Version: 1.0.0)
Mini Golf Mayhem (Version: 2.2.0.95)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
Mystery P.I. - Stolen in San Francisco (Version: 2.2.0.98)
PDF Complete Special Edition (Version: 4.0.33)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
PreEmptive Analytics Visual Studio Components (Version: 1.0.2102.1)
Prerequisites for SSDT (Version: 11.0.2100.60)
Privacy Manager for HP ProtectTools (Version: 6.00.831)
PX Profile Update (Version: 1.00.1.)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.6)
Realtek Ethernet Controller All-In-One Windows Driver (Version: 1.12.0016)
RealUpgrade 1.1 (Version: 1.1.0)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.32.0)
SDK (Version: 2.24.025)
Skype Click to Call (Version: 6.2.10687)
Skype™ 5.10 (Version: 5.10.116)
Slingo Deluxe (Version: 2.2.0.95)
Softonic toolbar on IE and Chrome
SQL Server "Denali" CTP3 Common Files (Version: 11.0.1440.19)
SQL Server "Denali" CTP3 Database Engine Services (Version: 11.0.1440.19)
SQL Server "Denali" CTP3 Database Engine Shared (Version: 11.0.1440.19)
SQL Server 2008 R2 Common Files (Version: 10.50.1600.1)
SQL Server 2008 R2 Database Engine Services (Version: 10.50.1600.1)
SQL Server 2008 R2 Database Engine Shared (Version: 10.50.1600.1)
SQL Server 2008 R2 Management Studio (Version: 10.50.1600.1)
SQL Server Browser for SQL Server "Denali" CTP3 (Version: 11.0.1440.19)
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1)
Sql Server Customer Experience Improvement Program (Version: 11.0.1440.19)
SQL Server Data Framework Tools - enu (Version: 11.1.20425.00)
Synaptics Pointing Device Driver (Version: 15.2.11.1)
Theft Recovery for HP ProtectTools (Version: 6.0.0.30)
Update for (KB2504637) (Version: 1)
Update Installer for WildTangent Games App
Validity Fingerprint Sensor Driver (Version: 4.3.117.0)
VIP Access SDK x64(1.0.0.50) (Version: 1.0.0.50)
Virtual Villagers - The Secret City (Version: 2.2.0.95)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
Visual Studio 2012 Prerequisites - ENU Language Pack (Version: 11.0.50522)
Visual Studio 2012 Prerequisites (Version: 11.0.50522)
Visual Studio Extensions for Windows Library for JavaScript (Version: 1.0.8377.0)
vs_intshellfinalizer (Version: 11.0.40825)
WCF Data Services 5.0 (for OData v3) Metro Support (Version: 5.0.50326.0)
WCF Data Services 5.0 (for OData v3) Primary Components (Version: 5.0.50316.0)
WCF Data Services Tools for Visual Studio 11 (Version: 5.0.50326.0)
WCF RIA Services V1.0 SP2 (Version: 4.1.61709.0)
Wedding Dash (Version: 2.2.0.95)
WildTangent Games (Version: 1.0.3.0)
WildTangent Games App (HP Games) (Version: 4.0.5.32)
WildTangent Games App (Version: 4.0.5.36)
Windows App Certification Kit Native Components (Version: 8.59.8400)
Windows App Certification Kit x64 (Version: 8.59.8400)
Windows Live (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows Runtime Intellisense Content - en-us (Version: 8.59.8400)
Windows Software Development Kit (Version: 8.59.8400)
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.8400)
Windows Software Development Kit DirectX x86 Remote (Version: 8.59.8400)
Windows Software Development Kit for Metro style Apps (Version: 8.59.8400)
Windows Software Development Kit for Metro style Apps DirectX x64 Remote (Version: 8.59.8400)
Windows Software Development Kit for Metro style Apps DirectX x86 Remote (Version: 8.59.8400)
WinZip Courier (Version: 3.5.9658)
WinZipBar Toolbar (Version: 6.8.9.0)
WMV9/VC-1 Video Playback (Version: 1.00.0000)
Xobni (Version: 1.9.5.13282)
Xobni Core (Version: 1.0.0)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 60%
Total physical RAM: 4030.36 MB
Available physical RAM: 1607.02 MB
Total Pagefile: 8058.91 MB
Available Pagefile: 4483.44 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.58 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:572.98 GB) (Free:492.68 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:17.9 GB) (Free:2.73 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:4.99 GB) (Free:2.13 GB) FAT32

========================= Users: ========================================

User accounts for \\SAIBABA-HP

Administrator Guest Saibaba

========================= Restore Points ==================================


**** End of log ****

/////////////////////////////////////////////////////////////////////////////////////////
FSS
/////////////////////////////////////////////////////////////////////////////////////////

Farbar Service Scanner Version: 19-09-2012
Ran by Saibaba (administrator) on 05-10-2012 at 19:24:37
Running from "C:\Users\Saibaba\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UHZ3WPZ5"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

////////////////////////////////////////////////////////////////////////////////////
Adware Cleaner
/////////////////////////////////////////////////////////////////////////////////////

# AdwCleaner v2.003 - Logfile created 10/05/2012 at 20:53:42
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Saibaba - SAIBABA-HP
# Boot Mode : Normal
# Running from : C:\Users\Saibaba\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WIQN2T3Z\adwcleaner (1).exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Saibaba\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Saibaba\AppData\Roaming\Mozilla\Firefox\Profiles\8bux2gtn.default\searchplugins\Askcom.xml
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\BitTorrentBar
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Softonic
Folder Deleted : C:\Program Files (x86)\WinZipBar
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Users\Saibaba\AppData\Local\Conduit
Folder Deleted : C:\Users\Saibaba\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhfdcmehmjcclgopdodkjdicohagipid
Folder Deleted : C:\Users\Saibaba\AppData\Local\Temp\avg@toolbar
Folder Deleted : C:\Users\Saibaba\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Saibaba\AppData\LocalLow\BitTorrentBar
Folder Deleted : C:\Users\Saibaba\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Saibaba\AppData\LocalLow\Softonic
Folder Deleted : C:\Users\Saibaba\AppData\LocalLow\WinZipBar
Folder Deleted : C:\Users\Saibaba\AppData\Roaming\Mozilla\Firefox\Profiles\8bux2gtn.default\extensions\[email protected]
Folder Deleted : C:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\BitTorrentBar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\WinZipBar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Google\Chrome\Extensions\mhfdcmehmjcclgopdodkjdicohagipid
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\BitTorrentBar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3106777
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9280CAA3-237E-468E-A41C-43EADB5FF61A}
Key Deleted : HKLM\Software\Softonic
Key Deleted : HKLM\Software\WinZipBar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32804100-B238-45F4-B15E-C5A2F2F7400B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9280CAA3-237E-468E-A41C-43EADB5FF61A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mhfdcmehmjcclgopdodkjdicohagipid
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D5AAF7E-EB94-441C-80E5-E3A18DE98DAB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7083FE0E-8368-4365-8B50-AC3A024E5CEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{91313CE2-42A3-4071-BE22-6BEEC3F3992B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F52FBA1F-E3AC-4AEE-80D8-C5316F8091A8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Softonic
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinZipBar Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{5018CFD2-804D-4C99-9F81-25EAEA2769DE}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{50FAFAF0-70A9-419D-A109-FA4B4FFD4E37}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.softonic.com/MON00005/tb_v1?SearchSource=15&cc= --> hxxp://www.google.com

-\\ Mozilla Firefox v13.0.1 (en-US)

Profile name : default
File : C:\Users\Saibaba\AppData\Roaming\Mozilla\Firefox\Profiles\8bux2gtn.default\prefs.js

Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.selectedEngine", "Ask.com");
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");
Deleted : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=&locale=&apn_u[...]

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Saibaba\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S2].txt - [17201 octets] - [05/10/2012 20:53:42]

########## EOF - C:\AdwCleaner[S2].txt - [17262 octets] ##########


/////////////////////////////////////////////////////////////////////////////////////////////////////////////
Junkware Removal Tool
/////////////////////////////////////////////////////////////////////////////////////////////////////////////

Junkware Removal Tool (JRT) by Thisisu
Version: 1.2.5 (10.05.2012)
OS: Windows 7 Professional x64
Ran by Saibaba on 05/10/2012 at 21:17:34.03
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_classes_root\clsid\{3c471948-f874-49f5-b338-4f214a2ee0b1}



*** Files: 0 Detections



*** Folders: 0 Detections



*** FireFox detected and repaired



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on 05/10/2012 at 21:18:14.55
End of Report

///////////////////////////////////////////////////////////////////////////////

#8 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 06 October 2012 - 12:03 AM

Please note that McAfee Antivirus Firewall is still turning off

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 06 October 2012 - 04:57 AM

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#10 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 06 October 2012 - 10:08 AM

///////////////////////////////////////////////////
FSS
//////////////////////////////////////////////////

Farbar Service Scanner Version: 19-09-2012
Ran by Saibaba (administrator) on 06-10-2012 at 15:54:59
Running from "C:\Users\Saibaba\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UHZ3WPZ5"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


///////////////////////////////////////////////////////////////////////
Rkill
///////////////////////////////////////////////////////////////////////

Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/06/2012 03:57:13 PM in x64 mode.
Windows Version: Windows 7 Professional Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe (PID: 3584) [SFI]

1 proccess terminated!

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\Saibaba\Desktop\rkill\rkill-10-06-2012-03-57-24.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 10/06/2012 03:57:50 PM
Execution time: 0 hours(s), 0 minute(s), and 37 seconds(s)

////////////////////////////////////////////////////////////////////
Autoruns
///////////////////////////////////////////////////////////////////

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit" "" "" ""
+ "c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe" "DigitalPersona Local Agent" "DigitalPersona, Inc." "c:\program files (x86)\hewlett-packard\hp protecttools security manager\bin\dpagent.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AthBtTray" "Bluetooth Tray" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athbttray.exe"
+ "AtherosBtStack" "Bluetooth Stack Server" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\btvstack.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "HPPowerAssistant" "" "" "c:\program files\hewlett-packard\hp power assistant\delayedappstarter.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "MfeEpePcMonitor" "McAfee Endpoint Encryption Encryption Monitor" "" "c:\program files\hewlett-packard\drive encryption\epepcmonitor.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "DTRun" "ArcSoft TotalMedia Theatre" "ArcSoft Inc." "c:\program files (x86)\arcsoft\totalmedia suite\totalmedia theatre 3\udtrun.exe"
+ "File Sanitizer" "File Sanitizer for HP ProtectTools" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\file sanitizer\coreshredder.exe"
+ "HPConnectionManager" "HPCMDelayStart Application" "Hewlett-Packard Development Company L.P." "c:\program files (x86)\hewlett-packard\hp connection manager\hpcmdelaystart.exe"
+ "HPQuickWebProxy" "HP QuickWeb Utilities" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp quickweb\hpqwutils.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "mcui_exe" "McAfee Security Center" "McAfee, Inc." "c:\program files\mcafee.com\agent\mcagent.exe"
+ "NUSB3MON" "USB 3.0 Monitor" "Renesas Electronics Corporation" "c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
+ "PDF Complete" "Sentry for PDF" "PDF Complete Inc" "c:\program files (x86)\pdf complete\pdfsty.exe"
+ "QLBController" "QLBController" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp hotkey support\qlbcontroller.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "TkBellExe" "RealNetworks Scheduler" "RealNetworks, Inc." "c:\program files (x86)\real\realplayer\update\realsched.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\googletoolbarnotifier.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "application/x-mfe-ipt" "McAfee MSC IE plugin DLL" "McAfee, Inc." "c:\program files\mcafee\msc\mcsniepl64.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "dssrequest" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "sacore" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Atheros" "Bluetooth Application Extension" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\btvappext.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "FTShellContext" "ShellContextExt Module" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\shellcontextext.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "Ath_CopyHook" "AthCopyHook Dynamic Link Library" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athcopyhook.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "McCtxMenuFrmWrk" "McAfee ContextMenu Framework" "McAfee, Inc." "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\scriptsn.20120627164144.dll"
+ "Skype add-on for Internet Explorer" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Bing Bar Helper" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\7.1.361.0\bingext.dll"
+ "CIESpeechBHO Class" "Bluetooth IE PlugIn" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\ieplugin.dll"
+ "File Sanitizer for HP ProtectTools" "File Sanitizer for HP ProtectTools" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\file sanitizer\iebho.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\ssv.dll"
+ "McAfee SiteAdvisor BHO" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
+ "Microsoft Web Test Recorder 10.0 Helper" "Microsoft Web Test Recorder Helper" "Microsoft Corporation" "c:\program files (x86)\microsoft visual studio 11.0\common7\ide\privateassemblies\microsoft.visualstudio.qualitytools.recorderbarbho100.dll"
+ "RealPlayer Download and Record Plugin for Internet Explorer" "RealPlayer Download and Record Plugin" "RealPlayer" "c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files (x86)\common files\mcafee\systemcore\scriptsn.20120703212232.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "WinZip Courier BHO" "WinZip Courier BHO" "WinZip Computing, S.L." "c:\program files (x86)\winzip courier\wzwmcie.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\x64\mcieplg.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Bing" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\7.1.361.0\bingext.dll"
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "McAfee SiteAdvisor" "SiteAdvisor" "McAfee, Inc." "c:\program files (x86)\mcafee\siteadvisor\mcieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Add to Evernote 4" "" "" "File not found: C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204"
+ "Send by Bluetooth to" "Bluetooth IE PlugIn" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\ieplugin.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpsfmessenger\hpsfmsgr.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Health Analysis" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Tuneup" "HP Support Assistant" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\Update Check" "HP Support Assistant Updater" "Hewlett-Packard" "c:\programdata\hewlett-packard\hp support framework\resources\updater\hpsfupdater.exe"
+ "\HPCeeScheduleForSaibaba" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\HPCeeScheduleForSAIBABA-HP$" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Defender\MpIdleTask" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\TabletPC\InputPersonalization" "" "" "File not found: C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\RealCreateProcessScheduledTask2411837S-1-5-21-4129808186-1427657445-693601602-1001" "RealNetworks Scheduler" "RealNetworks, Inc." "c:\program files (x86)\real\realplayer\update\realsched.exe"
+ "\RealCreateProcessScheduledTask513399S-1-5-21-4129808186-1427657445-693601602-1001" "RealPlayer" "RealNetworks, Inc." "c:\program files (x86)\real\realplayer\realplay.exe"
+ "\RealUpgradeScheduledTaskS-1-5-21-4129808186-1427657445-693601602-1001" "RealUpgrade Launcher" "RealNetworks, Inc." "c:\program files (x86)\real\realupgrade\realupgrade.exe"
+ "\Scheduled Update for Ask Toolbar" "" "" "File not found: C:\Program Files (x86)\Ask.com\UpdateTask.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "ACDaemon" "ArcSoft Connect Service" "ArcSoft Inc." "c:\program files (x86)\common files\arcsoft\connection service\bin\acservice.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AESTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\idt\wdm\aestsr64.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Atheros Bt&Wlan Coex Agent" "Co-existence Coordinator Service between 11a/b/g/n Wireless LAN and Bluetooth." "Atheros" "c:\program files (x86)\bluetooth suite\ath_coexagent.exe"
+ "AtherosSvc" "Atheros BT Stack Service Agent" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\adminservice.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\7.1.361.0\bbsvc.exe"
+ "BBUpdate" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\7.1.361.0\seaport.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "cvhsvc" "Client Virtualization Handler Service (unlocalized description)" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "DpHost" "Provides user authentication services." "DigitalPersona, Inc." "c:\program files\hewlett-packard\hp protecttools security manager\bin\dphostw.exe"
+ "FLCDLOCK" "Used by HP ProtectTools to lock devices and audit access to drives" "Hewlett-Packard Company" "c:\windows\syswow64\flcdlock.exe"
+ "fussvc" "Fast User Switching Utility Service" "Microsoft Corporation" "c:\program files (x86)\windows kits\8.0\app certification kit\fussvc.exe"
+ "GamesAppService" "WT Games App Services" "WildTangent, Inc." "c:\program files (x86)\wildtangent games\app\gamesappservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "HP Power Assistant Service" "This service monitors the power usage of this computer and allows the HP Power Assistant application to turn devices on and off." "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp power assistant\hppa_service.exe"
+ "HP ProtectTools Service" "HP ProtectTools Service" "Hewlett-Packard Development Company, L.P" "c:\program files (x86)\hewlett-packard\2009 password filter for hp protecttools\ptchangefilterservice.exe"
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe"
+ "HPAuto" "HP Usage Improvement Tracking" "Hewlett-Packard" "c:\program files\hewlett-packard\hp auto\hpauto.exe"
+ "hpCMSrv" "HP Connection Manager 4 Service" "Hewlett-Packard Development Company L.P." "c:\program files (x86)\hewlett-packard\hp connection manager\hpcmsrv.exe"
+ "HPDayStarterService" "This service checks if DayStarter is supported" "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp daystarter\32-bit\hpdaystarterservice.exe"
+ "HPDrvMntSvc.exe" "HP Quick Synchronization Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe"
+ "HPFSService" "HPFSService Application" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\file sanitizer\hpfsservice.exe"
+ "hpHotkeyMonitor" "hpHotkeyMonitor service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp hotkey support\hphotkeymonitor.exe"
+ "hpqwmiex" "hpqwmiex Module" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe"
+ "hpsrv" "HpService" "Hewlett-Packard Company" "c:\windows\system32\hpservice.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "jhi_service" "Intel® Identity Protection Technology Host Interface Service - Allows applications to access the local Intel Identity Protection Technology" "Intel Corporation" "c:\program files (x86)\intel\services\ipt\jhi_service.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "McAfee Endpoint Encryption Agent" "McAfee Endpoint Encryption Agent Host Service" "" "c:\program files\hewlett-packard\drive encryption\eeagent\mfeepehost.exe"
+ "McAfee SiteAdvisor Service" "McAfee SiteAdvisor Service" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McMPFSvc" "Helps protect your computer from intrusion and let's you manage your computer's trusted programs." "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "mcmscsvc" "McAfee Services" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McNaiAnn" "McAfee VirusScan Announcer" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McNASvc" "McAfee Network Agent" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McODS" "McAfee Scanner" "McAfee, Inc." "c:\program files\mcafee\virusscan\mcods.exe"
+ "McProxy" "McAfee Proxy Service" "McAfee, Inc." "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McShield" "McAfee OnAccess Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mcshield.exe"
+ "mfefire" "Provides firewall services to McAfee products" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mfefire.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\windows\system32\mfevtps.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MSSQL$SQLEXPRESS" "Provides storage, processing and controlled access of data, and rapid transaction processing." "Microsoft Corporation" "c:\program files\microsoft sql server\mssql11.sqlexpress\mssql\binn\sqlservr.exe"
+ "MSSQLSERVER" "Provides storage, processing and controlled access of data, and rapid transaction processing." "Microsoft Corporation" "c:\program files (x86)\microsoft sql server\mssql10_50.mssqlserver\mssql\binn\sqlservr.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "pdfcDispatcher" "Manages the PDF document production process. A primary task is to enable the routing of documents from the print spooler to the user. If this service is stopped, PDF documents will be unavailable." "PDF Complete Inc" "c:\program files (x86)\pdf complete\pdfsvc.exe"
+ "PdiService" "Provides support for applications that control display settings." "Portrait Displays, Inc." "c:\program files (x86)\common files\portrait displays\drivers\pdisrvc.exe"
+ "sftlist" "Streams and manages applications." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"
+ "sftvsa" "Monitors global service events and launches virtual services." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "SQLWriter" "Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlwriter.exe"
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\program files\idt\wdm\stacsv64.exe"
+ "Te.Service" "Wex.Services [v2.9.3k]" "Microsoft Corporation" "c:\program files (x86)\windows kits\8.0\testing\runtimes\taef\wex.services.exe"
+ "uArcCapture" "Monitor the status of the webcam on PC startup." "ArcSoft, Inc." "c:\windows\syswow64\arcvcaprender\uarccapture.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "vcsFPService" "Validity Fingerprint Service" "Validity Sensors, Inc." "c:\windows\system32\vcsfpservice.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "XobniService" "Xobni software updates and error recovery" "Xobni Corporation" "c:\program files (x86)\xobni\xobniservice.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Accelerometer" "HP Accelerometer" "Hewlett-Packard Company" "c:\windows\system32\drivers\accelerometer.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "Afc" "Arcsoft® ASPI Shell" "Arcsoft, Inc." "c:\windows\syswow64\drivers\afc.sys"
+ "AgereSoftModem" "SoftModem Device Driver" "LSI Corp" "c:\windows\system32\drivers\agrsm64.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "ARCVCAM" "ArcSoft Magic-i Driver" "ArcSoft, Inc." "c:\windows\system32\drivers\arcsoftvcapture.sys"
+ "AthBTPort" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_flt.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "BTATH_A2DP" "Atheros A2DP driver" "Atheros" "c:\windows\system32\drivers\btath_a2dp.sys"
+ "BTATH_BUS" "Atheros BUS driver" "Atheros" "c:\windows\system32\drivers\btath_bus.sys"
+ "BTATH_HCRP" "Atheros HCRP driver" "Atheros" "c:\windows\system32\drivers\btath_hcrp.sys"
+ "BTATH_LWFLT" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_lwflt.sys"
+ "BTATH_RCP" "Atheros AVRCP driver" "Atheros" "c:\windows\system32\drivers\btath_rcp.sys"
+ "BtFilter" "BtFilter Driver" "Atheros" "c:\windows\system32\drivers\btfilter.sys"
+ "cfwids" "McAfee Personal Firewall IDS Plugin" "McAfee, Inc." "c:\windows\system32\drivers\cfwids.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "DAMDrv" "Device Access Manager DAMDrv" "Hewlett-Packard Company" "c:\windows\system32\drivers\damdrv64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "hpdskflt" "HP Disk Filter - SATA/RAID" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpdskflt.sys"
+ "HpqKbFiltr" "Keyboard Filter Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpqkbfiltr.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "intelkmd" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdpmd64.sys"
+ "JMCR" "JMicron PCIe Flash Media Controller Driver" "JMicron Technology Corporation" "c:\windows\system32\drivers\jmcr.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfeavfk01" "" "" "File not found: C:\windows\System32\Drivers\mfeavfk01.sys"
+ "MfeEpePc" "McAfee, Inc." "McAfee, Inc." "c:\windows\system32\drivers\mfeepepc.sys"
+ "mfefirek" "McAfee Core Firewall Engine Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfefirek.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mfenlfk" "McAfee NDIS Light Filter" "McAfee, Inc." "c:\windows\system32\drivers\mfenlfk.sys"
+ "mferkdet" "McAfee Code Analysis Driver" "McAfee, Inc." "c:\windows\system32\drivers\mferkdet.sys"
+ "mfewfpk" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfewfpk.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SNP2UVC" "UVC Camera Streaming Driver" "" "c:\windows\system32\drivers\snp2uvc.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "VSPerfDrv110" "VSPerf Profiling Control Driver" "Microsoft Corporation" "c:\program files (x86)\microsoft visual studio 11.0\team tools\performance tools\x64\vsperfdrv110.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "RealPlayer Audio Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files (x86)\real\realplayer\rdsf3260.dll"
+ "RealPlayer Transcode Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files (x86)\real\realplayer\rdsf3260.dll"
+ "RealPlayer Video Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files (x86)\real\realplayer\rdsf3260.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "VD Render" "VD Render" "ArcSoft, Inc." "c:\windows\syswow64\arcvcaprender\vdrender.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "Photoshop Codec" "PSDCodec" "Microsoft Corporation" "c:\program files (x86)\microsoft visual studio 11.0\blend\imaging\psdcodec.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PDFC" "PDF Complete Print Monitor" "PDF Complete, Inc." "c:\windows\system32\pdfc_port.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages" "" "" ""
+ "DPPassFilter" "Password Filter" "DigitalPersona, Inc." "c:\windows\system32\dppassfilter.dll"
+ "EpePcNp64" "" "" "File not found: EpePcNp64"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "MfeEpePcNP" "McAfee Endpoint Encryption for PC Network Provider" "" "c:\program files\hewlett-packard\drive encryption\epepcnp64.dll"
"C:\Users\Saibaba\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "" "" "" "C:\Program Files\Windows Sidebar\Gadgets\Norton.Gadget"

#11 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 06 October 2012 - 10:11 AM

btw, McAfee Firewall is up now. Thanks for all your support. Let me know if I had to run some other repair tool

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 06 October 2012 - 12:04 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#13 shaileshsgaur

shaileshsgaur
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 07 October 2012 - 06:06 AM

Thanks for the help. Much appreciated

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 07 October 2012 - 09:13 AM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users