Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't remove Trojan.Ransom with Malwarebytes


  • Please log in to reply
19 replies to this topic

#1 Mex112

Mex112

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 10 July 2012 - 07:23 PM

Hi,

I have Windows Vista and McAfee installed. I seem to have gotten some viruses a couple of days ago (that disabled my McAfee firewall) so I downloaded Malwarebytes to remove them. The scan quarantined and deleted most of the viruses except for Trojan.Ransom which I can't seem to remove no matter how many times I try to.

Here's the log of my latest scan: (Should I also include my first one?)

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.10.13

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Tiffany :: TIFFANY-PC [administrator]

Protection: Enabled

11/07/2012 9:59:52 a.m.
mbam-log-2012-07-11 (09-59-52).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 230644
Time elapsed: 4 minute(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|Load (Trojan.Ransom) -> Data: C:\Users\Tiffany\LOCALS~1\Temp\mscupvv.bat -> Delete on reboot.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:25 AM

Posted 10 July 2012 - 07:35 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 10 July 2012 - 08:11 PM

TDSSkiller save log
13:09:44.0674 3104 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
13:09:45.0428 3104 ============================================================
13:09:45.0428 3104 Current date / time: 2012/07/11 13:09:45.0428
13:09:45.0428 3104 SystemInfo:
13:09:45.0428 3104
13:09:45.0428 3104 OS Version: 6.1.7601 ServicePack: 1.0
13:09:45.0428 3104 Product type: Workstation
13:09:45.0428 3104 ComputerName: TIFFANY-PC
13:09:45.0428 3104 UserName: Tiffany
13:09:45.0428 3104 Windows directory: C:\Windows
13:09:45.0428 3104 System windows directory: C:\Windows
13:09:45.0428 3104 Running under WOW64
13:09:45.0428 3104 Processor architecture: Intel x64
13:09:45.0428 3104 Number of processors: 8
13:09:45.0428 3104 Page size: 0x1000
13:09:45.0428 3104 Boot type: Normal boot
13:09:45.0428 3104 ============================================================
13:09:46.0173 3104 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:09:46.0191 3104 ============================================================
13:09:46.0191 3104 \Device\Harddisk0\DR0:
13:09:46.0192 3104 MBR partitions:
13:09:46.0192 3104 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x34000, BlocksNum 0x2710000
13:09:46.0192 3104 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2744000, BlocksNum 0x54E01EF0
13:09:46.0192 3104 ============================================================
13:09:46.0219 3104 C: <-> \Device\Harddisk0\DR0\Partition1
13:09:46.0219 3104 ============================================================
13:09:46.0219 3104 Initialize success
13:09:46.0219 3104 ============================================================
13:09:53.0511 3040 ============================================================
13:09:53.0511 3040 Scan started
13:09:53.0511 3040 Mode: Manual; TDLFS;
13:09:53.0511 3040 ============================================================
13:09:54.0104 3040 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
13:09:54.0104 3040 1394ohci - ok
13:09:54.0135 3040 Acceler (e0065cbf1a25c015c218457d2cd522b9) C:\Windows\system32\DRIVERS\Accelern.sys
13:09:54.0135 3040 Acceler - ok
13:09:54.0182 3040 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
13:09:54.0182 3040 ACPI - ok
13:09:54.0198 3040 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
13:09:54.0198 3040 AcpiPmi - ok
13:09:54.0260 3040 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
13:09:54.0276 3040 adp94xx - ok
13:09:54.0338 3040 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
13:09:54.0338 3040 adpahci - ok
13:09:54.0354 3040 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
13:09:54.0369 3040 adpu320 - ok
13:09:54.0400 3040 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
13:09:54.0400 3040 AeLookupSvc - ok
13:09:54.0463 3040 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
13:09:54.0463 3040 AERTFilters - ok
13:09:54.0525 3040 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
13:09:54.0525 3040 AFD - ok
13:09:54.0572 3040 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
13:09:54.0572 3040 agp440 - ok
13:09:54.0603 3040 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
13:09:54.0619 3040 ALG - ok
13:09:54.0634 3040 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
13:09:54.0634 3040 aliide - ok
13:09:54.0650 3040 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
13:09:54.0650 3040 amdide - ok
13:09:54.0666 3040 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
13:09:54.0666 3040 AmdK8 - ok
13:09:54.0681 3040 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
13:09:54.0697 3040 AmdPPM - ok
13:09:54.0728 3040 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
13:09:54.0728 3040 amdsata - ok
13:09:54.0759 3040 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
13:09:54.0759 3040 amdsbs - ok
13:09:54.0775 3040 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
13:09:54.0775 3040 amdxata - ok
13:09:54.0822 3040 AMPPAL (12e7a43a3c6840a063a82b04f7ef47c0) C:\Windows\system32\DRIVERS\AMPPAL.sys
13:09:54.0822 3040 AMPPAL - ok
13:09:54.0853 3040 AMPPALP (12e7a43a3c6840a063a82b04f7ef47c0) C:\Windows\system32\DRIVERS\amppal.sys
13:09:54.0853 3040 AMPPALP - ok
13:09:54.0962 3040 AMPPALR3 (2cc0cbf2707be4d5b6ce6b87d9da2f97) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
13:09:54.0978 3040 AMPPALR3 - ok
13:09:55.0024 3040 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
13:09:55.0024 3040 AppID - ok
13:09:55.0056 3040 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
13:09:55.0056 3040 AppIDSvc - ok
13:09:55.0071 3040 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
13:09:55.0087 3040 Appinfo - ok
13:09:55.0102 3040 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
13:09:55.0102 3040 arc - ok
13:09:55.0118 3040 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
13:09:55.0118 3040 arcsas - ok
13:09:55.0461 3040 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:09:55.0461 3040 aspnet_state - ok
13:09:55.0477 3040 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
13:09:55.0492 3040 AsyncMac - ok
13:09:55.0508 3040 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
13:09:55.0508 3040 atapi - ok
13:09:55.0602 3040 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
13:09:55.0680 3040 AudioEndpointBuilder - ok
13:09:55.0680 3040 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
13:09:55.0711 3040 AudioSrv - ok
13:09:55.0960 3040 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
13:09:55.0960 3040 AxInstSV - ok
13:09:56.0038 3040 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
13:09:56.0070 3040 b06bdrv - ok
13:09:56.0132 3040 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
13:09:56.0132 3040 b57nd60a - ok
13:09:56.0179 3040 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
13:09:56.0179 3040 BDESVC - ok
13:09:56.0194 3040 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
13:09:56.0194 3040 Beep - ok
13:09:56.0288 3040 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
13:09:56.0382 3040 BITS - ok
13:09:56.0413 3040 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
13:09:56.0428 3040 blbdrive - ok
13:09:56.0569 3040 Bluetooth Device Monitor (0f46d2845bd7ddaca52340ecc2b65da3) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
13:09:56.0584 3040 Bluetooth Device Monitor - ok
13:09:56.0694 3040 Bluetooth Media Service (3341de556ec28252d603277609eef8bf) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
13:09:56.0709 3040 Bluetooth Media Service - ok
13:09:56.0850 3040 Bluetooth OBEX Service (5d5c3ec9be1107dedf0feb55b7f3bd77) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
13:09:56.0865 3040 Bluetooth OBEX Service - ok
13:09:56.0990 3040 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
13:09:56.0990 3040 bowser - ok
13:09:57.0021 3040 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
13:09:57.0021 3040 BrFiltLo - ok
13:09:57.0021 3040 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
13:09:57.0021 3040 BrFiltUp - ok
13:09:57.0099 3040 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
13:09:57.0099 3040 Browser - ok
13:09:57.0146 3040 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
13:09:57.0146 3040 Brserid - ok
13:09:57.0162 3040 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
13:09:57.0177 3040 BrSerWdm - ok
13:09:57.0193 3040 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
13:09:57.0193 3040 BrUsbMdm - ok
13:09:57.0193 3040 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
13:09:57.0193 3040 BrUsbSer - ok
13:09:57.0237 3040 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
13:09:57.0239 3040 BthEnum - ok
13:09:57.0266 3040 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
13:09:57.0268 3040 BTHMODEM - ok
13:09:57.0506 3040 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
13:09:57.0506 3040 BthPan - ok
13:09:57.0568 3040 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys
13:09:57.0584 3040 BTHPORT - ok
13:09:57.0630 3040 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
13:09:57.0630 3040 bthserv - ok
13:09:57.0708 3040 BTHSSecurityMgr (d6ceec2f878149e4db9fe93fa5d8fe60) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
13:09:57.0708 3040 BTHSSecurityMgr - ok
13:09:57.0755 3040 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys
13:09:57.0755 3040 BTHUSB - ok
13:09:57.0771 3040 btmaux (ab0a33001fe7ebb209d9d52ced11be1a) C:\Windows\system32\DRIVERS\btmaux.sys
13:09:57.0771 3040 btmaux - ok
13:09:57.0802 3040 btmhsf (5ba4c6f82a5ca3307c0579d9f7b36e28) C:\Windows\system32\DRIVERS\btmhsf.sys
13:09:57.0818 3040 btmhsf - ok
13:09:57.0849 3040 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
13:09:57.0864 3040 cdfs - ok
13:09:57.0896 3040 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
13:09:57.0896 3040 cdrom - ok
13:09:57.0942 3040 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
13:09:57.0942 3040 CertPropSvc - ok
13:09:58.0005 3040 cfwids (274ce03459896006f7a5069266e0469e) C:\Windows\system32\drivers\cfwids.sys
13:09:58.0005 3040 cfwids - ok
13:09:58.0052 3040 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
13:09:58.0052 3040 circlass - ok
13:09:58.0114 3040 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
13:09:58.0114 3040 CLFS - ok
13:09:58.0176 3040 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:09:58.0192 3040 clr_optimization_v2.0.50727_32 - ok
13:09:58.0225 3040 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:09:58.0228 3040 clr_optimization_v2.0.50727_64 - ok
13:09:58.0285 3040 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:09:58.0288 3040 clr_optimization_v4.0.30319_32 - ok
13:09:58.0325 3040 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:09:58.0329 3040 clr_optimization_v4.0.30319_64 - ok
13:09:58.0343 3040 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
13:09:58.0345 3040 CmBatt - ok
13:09:58.0367 3040 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
13:09:58.0369 3040 cmdide - ok
13:09:58.0427 3040 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
13:09:58.0436 3040 CNG - ok
13:09:58.0461 3040 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
13:09:58.0463 3040 Compbatt - ok
13:09:58.0485 3040 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
13:09:58.0486 3040 CompositeBus - ok
13:09:58.0502 3040 COMSysApp - ok
13:09:58.0518 3040 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
13:09:58.0518 3040 crcdisk - ok
13:09:58.0627 3040 Creative ALchemy AL6 Licensing Service (c8bd651e13895b93ed9ec5b4f1df42bc) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
13:09:58.0627 3040 Creative ALchemy AL6 Licensing Service - ok
13:09:58.0658 3040 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
13:09:58.0658 3040 Creative Audio Engine Licensing Service - ok
13:09:58.0705 3040 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
13:09:58.0705 3040 CryptSvc - ok
13:09:59.0360 3040 CTAudSvcService (07ba6d17e66879018b30b6c3f976ebed) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
13:09:59.0360 3040 CTAudSvcService - ok
13:09:59.0407 3040 CtClsFlt (bc3d4f90978cd7c8eabd1baf3bf7873a) C:\Windows\system32\DRIVERS\CtClsFlt.sys
13:09:59.0407 3040 CtClsFlt - ok
13:09:59.0516 3040 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
13:09:59.0532 3040 cvhsvc - ok
13:09:59.0594 3040 DAUpdaterSvc (80861969541971176e005d2c09dae851) C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
13:09:59.0594 3040 DAUpdaterSvc - ok
13:09:59.0641 3040 dc3d (1ca90212a99db6975c344826d11055c9) C:\Windows\system32\DRIVERS\dc3d.sys
13:09:59.0641 3040 dc3d - ok
13:09:59.0719 3040 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
13:09:59.0735 3040 DcomLaunch - ok
13:09:59.0782 3040 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
13:09:59.0782 3040 defragsvc - ok
13:09:59.0813 3040 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
13:09:59.0813 3040 DfsC - ok
13:09:59.0875 3040 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
13:09:59.0875 3040 Dhcp - ok
13:09:59.0891 3040 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
13:09:59.0891 3040 discache - ok
13:09:59.0922 3040 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
13:09:59.0922 3040 Disk - ok
13:09:59.0953 3040 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
13:09:59.0953 3040 Dnscache - ok
13:09:59.0984 3040 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
13:10:00.0062 3040 dot3svc - ok
13:10:00.0094 3040 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
13:10:00.0094 3040 DPS - ok
13:10:00.0125 3040 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
13:10:00.0125 3040 drmkaud - ok
13:10:00.0218 3040 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
13:10:00.0234 3040 DXGKrnl - ok
13:10:00.0278 3040 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
13:10:00.0282 3040 EapHost - ok
13:10:00.0463 3040 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
13:10:00.0488 3040 ebdrv - ok
13:10:00.0596 3040 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
13:10:00.0596 3040 EFS - ok
13:10:00.0705 3040 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
13:10:00.0720 3040 ehRecvr - ok
13:10:00.0752 3040 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
13:10:00.0767 3040 ehSched - ok
13:10:00.0861 3040 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
13:10:00.0876 3040 elxstor - ok
13:10:00.0876 3040 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
13:10:00.0876 3040 ErrDev - ok
13:10:00.0954 3040 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
13:10:00.0970 3040 EventSystem - ok
13:10:01.0142 3040 EvtEng (532b8ff8e07f3772b086620377654f95) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
13:10:01.0157 3040 EvtEng - ok
13:10:01.0360 3040 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
13:10:01.0360 3040 exfat - ok
13:10:01.0438 3040 FACAP (2c1d443e14f376e8331f52f135dca9ef) C:\Windows\system32\DRIVERS\facap.sys
13:10:01.0438 3040 FACAP - ok
13:10:01.0656 3040 FAService (a363ff99dc160b7844a1c1e0d6cebbe3) C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
13:10:01.0688 3040 FAService - ok
13:10:01.0797 3040 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
13:10:01.0797 3040 fastfat - ok
13:10:01.0890 3040 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
13:10:01.0906 3040 Fax - ok
13:10:01.0922 3040 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
13:10:01.0937 3040 fdc - ok
13:10:01.0953 3040 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
13:10:01.0953 3040 fdPHost - ok
13:10:01.0984 3040 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
13:10:01.0984 3040 FDResPub - ok
13:10:02.0015 3040 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
13:10:02.0015 3040 FileInfo - ok
13:10:02.0031 3040 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
13:10:02.0031 3040 Filetrace - ok
13:10:02.0031 3040 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
13:10:02.0031 3040 flpydisk - ok
13:10:02.0062 3040 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
13:10:02.0078 3040 FltMgr - ok
13:10:02.0187 3040 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
13:10:02.0202 3040 FontCache - ok
13:10:02.0274 3040 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:10:02.0276 3040 FontCache3.0.0.0 - ok
13:10:02.0317 3040 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
13:10:02.0320 3040 FsDepends - ok
13:10:02.0352 3040 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
13:10:02.0354 3040 Fs_Rec - ok
13:10:02.0394 3040 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
13:10:02.0399 3040 fvevol - ok
13:10:02.0417 3040 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
13:10:02.0429 3040 gagp30kx - ok
13:10:02.0502 3040 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
13:10:02.0516 3040 gpsvc - ok
13:10:02.0535 3040 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
13:10:02.0542 3040 hcw85cir - ok
13:10:02.0558 3040 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
13:10:02.0574 3040 HDAudBus - ok
13:10:02.0574 3040 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
13:10:02.0574 3040 HidBatt - ok
13:10:02.0590 3040 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
13:10:02.0605 3040 HidBth - ok
13:10:02.0621 3040 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
13:10:02.0621 3040 HidIr - ok
13:10:02.0636 3040 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
13:10:02.0636 3040 hidserv - ok
13:10:02.0668 3040 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
13:10:02.0668 3040 HidUsb - ok
13:10:02.0699 3040 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
13:10:02.0699 3040 hkmsvc - ok
13:10:02.0730 3040 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
13:10:02.0730 3040 HomeGroupListener - ok
13:10:02.0777 3040 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
13:10:02.0777 3040 HomeGroupProvider - ok
13:10:02.0792 3040 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
13:10:02.0792 3040 HpSAMD - ok
13:10:02.0870 3040 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
13:10:02.0886 3040 HTTP - ok
13:10:02.0933 3040 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
13:10:02.0933 3040 hwpolicy - ok
13:10:02.0964 3040 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
13:10:02.0964 3040 i8042prt - ok
13:10:03.0042 3040 iaStor (d469b77687e12fe43e344806740b624d) C:\Windows\system32\drivers\iaStor.sys
13:10:03.0058 3040 iaStor - ok
13:10:03.0104 3040 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
13:10:03.0120 3040 iaStorV - ok
13:10:03.0151 3040 iBtFltCoex (806422f30df9ce8307457485779c77b7) C:\Windows\system32\DRIVERS\iBtFltCoex.sys
13:10:03.0151 3040 iBtFltCoex - ok
13:10:03.0276 3040 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:10:03.0292 3040 idsvc - ok
13:10:03.0931 3040 igfx (0bd58366c86ef9ddc4f61afed0cada99) C:\Windows\system32\DRIVERS\igdkmd64.sys
13:10:03.0978 3040 igfx - ok
13:10:04.0072 3040 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
13:10:04.0087 3040 iirsp - ok
13:10:04.0165 3040 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
13:10:04.0181 3040 IKEEXT - ok
13:10:04.0212 3040 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\drivers\Impcd.sys
13:10:04.0228 3040 Impcd - ok
13:10:04.0259 3040 intaud_WaveExtensible (caddf0927dac63edae48f5c35a61d87d) C:\Windows\system32\drivers\intelaud.sys
13:10:04.0259 3040 intaud_WaveExtensible - ok
13:10:04.0431 3040 IntcAzAudAddService (8fed6428fde53d7f4c105095f22524be) C:\Windows\system32\drivers\RTKVHD64.sys
13:10:04.0449 3040 IntcAzAudAddService - ok
13:10:04.0562 3040 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
13:10:04.0566 3040 IntcDAud - ok
13:10:04.0582 3040 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
13:10:04.0582 3040 intelide - ok
13:10:04.0613 3040 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
13:10:04.0613 3040 intelppm - ok
13:10:04.0644 3040 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
13:10:04.0644 3040 IPBusEnum - ok
13:10:04.0691 3040 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:10:04.0691 3040 IpFilterDriver - ok
13:10:04.0706 3040 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
13:10:04.0769 3040 IPMIDRV - ok
13:10:04.0784 3040 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
13:10:04.0784 3040 IPNAT - ok
13:10:04.0800 3040 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
13:10:04.0800 3040 IRENUM - ok
13:10:04.0800 3040 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
13:10:04.0800 3040 isapnp - ok
13:10:04.0831 3040 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
13:10:04.0831 3040 iScsiPrt - ok
13:10:04.0862 3040 iwdbus (716f66336f10885d935b08174dc54242) C:\Windows\system32\DRIVERS\iwdbus.sys
13:10:04.0862 3040 iwdbus - ok
13:10:04.0909 3040 JMCR (e56417c56b6a7316b6f527c890a1860d) C:\Windows\system32\DRIVERS\jmcr.sys
13:10:04.0925 3040 JMCR - ok
13:10:04.0940 3040 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
13:10:04.0940 3040 kbdclass - ok
13:10:04.0972 3040 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
13:10:04.0972 3040 kbdhid - ok
13:10:05.0003 3040 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:10:05.0003 3040 KeyIso - ok
13:10:05.0034 3040 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
13:10:05.0112 3040 KSecDD - ok
13:10:05.0143 3040 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
13:10:05.0143 3040 KSecPkg - ok
13:10:05.0159 3040 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
13:10:05.0159 3040 ksthunk - ok
13:10:05.0221 3040 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
13:10:05.0237 3040 KtmRm - ok
13:10:05.0284 3040 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
13:10:05.0304 3040 LanmanServer - ok
13:10:05.0327 3040 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
13:10:05.0334 3040 LanmanWorkstation - ok
13:10:05.0366 3040 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
13:10:05.0369 3040 lltdio - ok
13:10:05.0419 3040 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
13:10:05.0426 3040 lltdsvc - ok
13:10:05.0446 3040 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
13:10:05.0450 3040 lmhosts - ok
13:10:05.0559 3040 LMS (7f32d4c47a50e7223491e8fb9359907d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
13:10:05.0565 3040 LMS - ok
13:10:05.0601 3040 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
13:10:05.0601 3040 LSI_FC - ok
13:10:05.0633 3040 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
13:10:05.0633 3040 LSI_SAS - ok
13:10:05.0648 3040 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
13:10:05.0648 3040 LSI_SAS2 - ok
13:10:05.0664 3040 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
13:10:05.0664 3040 LSI_SCSI - ok
13:10:05.0695 3040 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
13:10:05.0711 3040 luafv - ok
13:10:05.0757 3040 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
13:10:05.0757 3040 MBAMProtector - ok
13:10:05.0835 3040 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:10:05.0851 3040 MBAMService - ok
13:10:05.0945 3040 McAWFwk (9504f1dda1b67fb8d526fd4f8cc882f3) c:\PROGRA~1\mcafee\msc\mcawfwk.exe
13:10:05.0945 3040 McAWFwk - ok
13:10:06.0007 3040 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
13:10:06.0007 3040 McMPFSvc - ok
13:10:06.0023 3040 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
13:10:06.0023 3040 mcmscsvc - ok
13:10:06.0038 3040 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
13:10:06.0054 3040 McNaiAnn - ok
13:10:06.0054 3040 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
13:10:06.0069 3040 McNASvc - ok
13:10:06.0194 3040 McODS (dd2321925274f2902929d76ce2b0eb45) C:\Program Files\mcafee\VirusScan\mcods.exe
13:10:06.0210 3040 McODS - ok
13:10:06.0210 3040 McOobeSv (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
13:10:06.0225 3040 McOobeSv - ok
13:10:06.0225 3040 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
13:10:06.0241 3040 McProxy - ok
13:10:06.0313 3040 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
13:10:06.0318 3040 McShield - ok
13:10:06.0420 3040 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
13:10:06.0424 3040 Mcx2Svc - ok
13:10:06.0462 3040 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
13:10:06.0473 3040 megasas - ok
13:10:06.0519 3040 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
13:10:06.0524 3040 MegaSR - ok
13:10:06.0554 3040 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
13:10:06.0556 3040 MEIx64 - ok
13:10:06.0604 3040 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys
13:10:06.0604 3040 mfeapfk - ok
13:10:06.0650 3040 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys
13:10:06.0650 3040 mfeavfk - ok
13:10:06.0666 3040 mfeavfk01 - ok
13:10:06.0713 3040 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
13:10:06.0713 3040 mfefire - ok
13:10:06.0760 3040 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\Windows\system32\drivers\mfefirek.sys
13:10:06.0760 3040 mfefirek - ok
13:10:06.0838 3040 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys
13:10:06.0853 3040 mfehidk - ok
13:10:06.0884 3040 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\Windows\system32\DRIVERS\mfenlfk.sys
13:10:06.0884 3040 mfenlfk - ok
13:10:06.0931 3040 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys
13:10:06.0931 3040 mferkdet - ok
13:10:06.0962 3040 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Windows\system32\mfevtps.exe
13:10:06.0978 3040 mfevtp - ok
13:10:07.0009 3040 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys
13:10:07.0025 3040 mfewfpk - ok
13:10:07.0040 3040 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
13:10:07.0056 3040 MMCSS - ok
13:10:07.0072 3040 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
13:10:07.0087 3040 Modem - ok
13:10:07.0118 3040 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
13:10:07.0118 3040 monitor - ok
13:10:07.0150 3040 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
13:10:07.0150 3040 mouclass - ok
13:10:07.0181 3040 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
13:10:07.0181 3040 mouhid - ok
13:10:07.0212 3040 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
13:10:07.0212 3040 mountmgr - ok
13:10:07.0243 3040 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
13:10:07.0352 3040 mpio - ok
13:10:07.0369 3040 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
13:10:07.0369 3040 mpsdrv - ok
13:10:07.0385 3040 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
13:10:07.0385 3040 MRxDAV - ok
13:10:07.0416 3040 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:10:07.0416 3040 mrxsmb - ok
13:10:07.0447 3040 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:10:07.0447 3040 mrxsmb10 - ok
13:10:07.0478 3040 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:10:07.0478 3040 mrxsmb20 - ok
13:10:07.0509 3040 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
13:10:07.0509 3040 msahci - ok
13:10:07.0556 3040 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
13:10:07.0556 3040 msdsm - ok
13:10:07.0587 3040 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
13:10:07.0587 3040 MSDTC - ok
13:10:07.0619 3040 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
13:10:07.0619 3040 Msfs - ok
13:10:07.0650 3040 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
13:10:07.0650 3040 mshidkmdf - ok
13:10:07.0681 3040 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
13:10:07.0681 3040 msisadrv - ok
13:10:07.0712 3040 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
13:10:07.0728 3040 MSiSCSI - ok
13:10:07.0728 3040 msiserver - ok
13:10:07.0790 3040 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
13:10:07.0790 3040 MSK80Service - ok
13:10:07.0821 3040 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
13:10:07.0821 3040 MSKSSRV - ok
13:10:07.0837 3040 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
13:10:07.0837 3040 MSPCLOCK - ok
13:10:07.0837 3040 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
13:10:07.0853 3040 MSPQM - ok
13:10:07.0899 3040 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
13:10:07.0899 3040 MsRPC - ok
13:10:07.0915 3040 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
13:10:07.0931 3040 mssmbios - ok
13:10:07.0931 3040 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
13:10:07.0931 3040 MSTEE - ok
13:10:07.0946 3040 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
13:10:07.0946 3040 MTConfig - ok
13:10:07.0962 3040 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
13:10:07.0962 3040 Mup - ok
13:10:08.0040 3040 MyWiFiDHCPDNS (265937bc59819df1dab65e27c60f94c0) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
13:10:08.0055 3040 MyWiFiDHCPDNS - ok
13:10:08.0102 3040 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
13:10:08.0118 3040 napagent - ok
13:10:08.0165 3040 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
13:10:08.0180 3040 NativeWifiP - ok
13:10:08.0274 3040 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
13:10:08.0289 3040 NDIS - ok
13:10:08.0321 3040 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
13:10:08.0321 3040 NdisCap - ok
13:10:08.0352 3040 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
13:10:08.0352 3040 NdisTapi - ok
13:10:08.0367 3040 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
13:10:08.0367 3040 Ndisuio - ok
13:10:08.0383 3040 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
13:10:08.0471 3040 NdisWan - ok
13:10:08.0489 3040 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
13:10:08.0490 3040 NDProxy - ok
13:10:08.0497 3040 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
13:10:08.0498 3040 NetBIOS - ok
13:10:08.0516 3040 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
13:10:08.0518 3040 NetBT - ok
13:10:08.0541 3040 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:10:08.0544 3040 Netlogon - ok
13:10:08.0597 3040 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
13:10:08.0601 3040 Netman - ok
13:10:08.0674 3040 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:10:08.0678 3040 NetMsmqActivator - ok
13:10:08.0686 3040 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:10:08.0690 3040 NetPipeActivator - ok
13:10:08.0726 3040 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
13:10:08.0726 3040 netprofm - ok
13:10:08.0742 3040 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:10:08.0742 3040 NetTcpActivator - ok
13:10:08.0742 3040 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:10:08.0742 3040 NetTcpPortSharing - ok
13:10:09.0132 3040 NETwNs64 (774c9eccef83ab8a3d1466f19809c95f) C:\Windows\system32\DRIVERS\NETwNs64.sys
13:10:09.0163 3040 NETwNs64 - ok
13:10:09.0257 3040 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
13:10:09.0257 3040 nfrd960 - ok
13:10:09.0304 3040 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
13:10:09.0304 3040 NlaSvc - ok
13:10:09.0578 3040 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
13:10:09.0605 3040 NOBU - ok
13:10:09.0715 3040 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
13:10:09.0718 3040 Npfs - ok
13:10:09.0748 3040 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
13:10:09.0748 3040 nsi - ok
13:10:09.0748 3040 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
13:10:09.0763 3040 nsiproxy - ok
13:10:09.0872 3040 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
13:10:09.0888 3040 Ntfs - ok
13:10:09.0997 3040 NuidFltr (317020d31f1696334679b9d0416eb62e) C:\Windows\system32\DRIVERS\NuidFltr.sys
13:10:10.0013 3040 NuidFltr - ok
13:10:10.0028 3040 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
13:10:10.0028 3040 Null - ok
13:10:10.0075 3040 nusb3hub (0ebc9d13cd96c15b1b18d8678a609e4b) C:\Windows\system32\DRIVERS\nusb3hub.sys
13:10:10.0075 3040 nusb3hub - ok
13:10:10.0106 3040 nusb3xhc (7bdec000d56d485021d9c1e63c2f81ca) C:\Windows\system32\DRIVERS\nusb3xhc.sys
13:10:10.0106 3040 nusb3xhc - ok
13:10:10.0778 3040 nvlddmkm (573b0941a37aebee96085d56a103f57b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:10:10.0825 3040 nvlddmkm - ok
13:10:10.0934 3040 nvpciflt (43af7ebeac2ab623468e32caddcb61a4) C:\Windows\system32\DRIVERS\nvpciflt.sys
13:10:10.0934 3040 nvpciflt - ok
13:10:10.0996 3040 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
13:10:10.0996 3040 nvraid - ok
13:10:11.0043 3040 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
13:10:11.0043 3040 nvstor - ok
13:10:11.0090 3040 NvStUSB (9e01b716c8085f7adb1cdc10103ceef8) C:\Windows\system32\drivers\nvstusb.sys
13:10:11.0090 3040 NvStUSB - ok
13:10:11.0199 3040 NVSvc (c500760572c6059918fb0c960967695b) C:\Windows\system32\nvvsvc.exe
13:10:11.0215 3040 NVSvc - ok
13:10:11.0449 3040 nvUpdatusService (f28169a7adf7b41809cf92d369e744f0) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
13:10:11.0482 3040 nvUpdatusService - ok
13:10:11.0593 3040 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
13:10:11.0596 3040 nv_agp - ok
13:10:11.0610 3040 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
13:10:11.0612 3040 ohci1394 - ok
13:10:11.0700 3040 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:10:11.0703 3040 ose - ok
13:10:11.0957 3040 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:10:12.0004 3040 osppsvc - ok
13:10:12.0113 3040 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
13:10:12.0113 3040 p2pimsvc - ok
13:10:12.0160 3040 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
13:10:12.0175 3040 p2psvc - ok
13:10:12.0222 3040 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
13:10:12.0222 3040 Parport - ok
13:10:12.0253 3040 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
13:10:12.0316 3040 partmgr - ok
13:10:12.0331 3040 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
13:10:12.0331 3040 PcaSvc - ok
13:10:12.0409 3040 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
13:10:12.0425 3040 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
13:10:12.0472 3040 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
13:10:12.0476 3040 pci - ok
13:10:12.0496 3040 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
13:10:12.0498 3040 pciide - ok
13:10:12.0541 3040 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
13:10:12.0546 3040 pcmcia - ok
13:10:12.0563 3040 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
13:10:12.0566 3040 pcw - ok
13:10:12.0610 3040 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
13:10:12.0636 3040 PEAUTH - ok
13:10:12.0728 3040 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
13:10:12.0731 3040 PerfHost - ok
13:10:12.0836 3040 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
13:10:12.0867 3040 pla - ok
13:10:12.0945 3040 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
13:10:12.0945 3040 PlugPlay - ok
13:10:12.0992 3040 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
13:10:12.0992 3040 PNRPAutoReg - ok
13:10:13.0038 3040 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
13:10:13.0038 3040 PNRPsvc - ok
13:10:13.0101 3040 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
13:10:13.0101 3040 Point64 - ok
13:10:13.0163 3040 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
13:10:13.0163 3040 PolicyAgent - ok
13:10:13.0241 3040 Power (a2cca4fb273e6050f17a0a416cff2fcd) C:\Windows\system32\umpo.dll
13:10:13.0241 3040 Power - ok
13:10:13.0288 3040 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
13:10:13.0288 3040 PptpMiniport - ok
13:10:13.0319 3040 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
13:10:13.0319 3040 Processor - ok
13:10:13.0350 3040 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
13:10:13.0366 3040 ProfSvc - ok
13:10:13.0397 3040 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:10:13.0397 3040 ProtectedStorage - ok
13:10:13.0444 3040 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
13:10:13.0444 3040 Psched - ok
13:10:13.0484 3040 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
13:10:13.0486 3040 PxHlpa64 - ok
13:10:13.0525 3040 qicflt (0928bd20273625622722fe1de5bbde57) C:\Windows\system32\DRIVERS\qicflt.sys
13:10:13.0581 3040 qicflt - ok
13:10:13.0653 3040 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
13:10:13.0660 3040 ql2300 - ok
13:10:13.0756 3040 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
13:10:13.0758 3040 ql40xx - ok
13:10:13.0789 3040 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
13:10:13.0805 3040 QWAVE - ok
13:10:13.0821 3040 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
13:10:13.0821 3040 QWAVEdrv - ok
13:10:13.0836 3040 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
13:10:13.0836 3040 RasAcd - ok
13:10:13.0883 3040 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
13:10:13.0883 3040 RasAgileVpn - ok
13:10:13.0914 3040 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
13:10:13.0930 3040 RasAuto - ok
13:10:13.0945 3040 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:10:13.0961 3040 Rasl2tp - ok
13:10:14.0008 3040 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
13:10:14.0008 3040 RasMan - ok
13:10:14.0039 3040 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
13:10:14.0039 3040 RasPppoe - ok
13:10:14.0055 3040 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
13:10:14.0055 3040 RasSstp - ok
13:10:14.0086 3040 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
13:10:14.0101 3040 rdbss - ok
13:10:14.0117 3040 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
13:10:14.0117 3040 rdpbus - ok
13:10:14.0133 3040 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:10:14.0133 3040 RDPCDD - ok
13:10:14.0148 3040 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
13:10:14.0148 3040 RDPENCDD - ok
13:10:14.0164 3040 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
13:10:14.0164 3040 RDPREFMP - ok
13:10:14.0211 3040 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
13:10:14.0211 3040 RDPWD - ok
13:10:14.0273 3040 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
13:10:14.0273 3040 rdyboost - ok
13:10:14.0413 3040 RegSrvc (7196be857e29007470ff9b689c7f29a7) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
13:10:14.0429 3040 RegSrvc - ok
13:10:14.0476 3040 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
13:10:14.0476 3040 RemoteAccess - ok
13:10:14.0518 3040 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
13:10:14.0525 3040 RemoteRegistry - ok
13:10:14.0592 3040 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
13:10:14.0596 3040 RFCOMM - ok
13:10:14.0759 3040 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
13:10:14.0762 3040 RoxMediaDB12OEM - ok
13:10:14.0808 3040 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
13:10:14.0824 3040 RoxWatch12 - ok
13:10:14.0918 3040 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
13:10:14.0933 3040 RpcEptMapper - ok
13:10:14.0949 3040 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
13:10:14.0949 3040 RpcLocator - ok
13:10:15.0011 3040 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
13:10:15.0027 3040 RpcSs - ok
13:10:15.0074 3040 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
13:10:15.0074 3040 rspndr - ok
13:10:15.0152 3040 RTL8167 (ed5873f7dfb2f96d37f13322211b6bdc) C:\Windows\system32\DRIVERS\Rt64win7.sys
13:10:15.0152 3040 RTL8167 - ok
13:10:15.0183 3040 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:10:15.0183 3040 SamSs - ok
13:10:15.0214 3040 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
13:10:15.0214 3040 sbp2port - ok
13:10:15.0245 3040 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
13:10:15.0245 3040 SCardSvr - ok
13:10:15.0276 3040 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
13:10:15.0276 3040 scfilter - ok
13:10:15.0417 3040 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
13:10:15.0479 3040 Schedule - ok
13:10:15.0511 3040 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
13:10:15.0511 3040 SCPolicySvc - ok
13:10:15.0547 3040 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
13:10:15.0550 3040 sdbus - ok
13:10:15.0583 3040 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
13:10:15.0589 3040 SDRSVC - ok
13:10:15.0626 3040 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
13:10:15.0628 3040 secdrv - ok
13:10:15.0647 3040 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
13:10:15.0722 3040 seclogon - ok
13:10:15.0754 3040 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
13:10:15.0756 3040 SENS - ok
13:10:15.0763 3040 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
13:10:15.0764 3040 SensrSvc - ok
13:10:15.0791 3040 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
13:10:15.0793 3040 Serenum - ok
13:10:15.0806 3040 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
13:10:15.0813 3040 Serial - ok
13:10:15.0831 3040 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
13:10:15.0831 3040 sermouse - ok
13:10:15.0862 3040 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
13:10:15.0862 3040 SessionEnv - ok
13:10:15.0878 3040 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
13:10:15.0878 3040 sffdisk - ok
13:10:15.0894 3040 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
13:10:15.0894 3040 sffp_mmc - ok
13:10:15.0909 3040 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\DRIVERS\sffp_sd.sys
13:10:15.0909 3040 sffp_sd - ok
13:10:15.0909 3040 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
13:10:15.0925 3040 sfloppy - ok
13:10:16.0003 3040 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
13:10:16.0018 3040 Sftfs - ok
13:10:16.0112 3040 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
13:10:16.0128 3040 sftlist - ok
13:10:16.0174 3040 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
13:10:16.0268 3040 Sftplay - ok
13:10:16.0284 3040 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
13:10:16.0284 3040 Sftredir - ok
13:10:16.0393 3040 SftService (29ddea72c5bdf61d62f4d438dc0e497c) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
13:10:16.0424 3040 SftService - ok
13:10:16.0533 3040 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
13:10:16.0627 3040 Sftvol - ok
13:10:16.0670 3040 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
13:10:16.0671 3040 sftvsa - ok
13:10:16.0722 3040 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
13:10:16.0731 3040 ShellHWDetection - ok
13:10:16.0760 3040 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
13:10:16.0763 3040 SiSRaid2 - ok
13:10:16.0776 3040 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
13:10:16.0779 3040 SiSRaid4 - ok
13:10:16.0803 3040 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
13:10:16.0805 3040 Smb - ok
13:10:16.0835 3040 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
13:10:16.0835 3040 SNMPTRAP - ok
13:10:16.0898 3040 Sound Blaster X-Fi MB Licensing Service (9b24dca429f819db314f30ee4c6c80fd) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
13:10:16.0898 3040 Sound Blaster X-Fi MB Licensing Service - ok
13:10:16.0929 3040 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
13:10:16.0929 3040 spldr - ok
13:10:17.0007 3040 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
13:10:17.0007 3040 Spooler - ok
13:10:17.0303 3040 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
13:10:17.0350 3040 sppsvc - ok
13:10:17.0459 3040 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
13:10:17.0475 3040 sppuinotify - ok
13:10:17.0537 3040 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
13:10:17.0560 3040 srv - ok
13:10:17.0606 3040 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
13:10:17.0614 3040 srv2 - ok
13:10:17.0645 3040 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
13:10:17.0714 3040 srvnet - ok
13:10:17.0755 3040 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
13:10:17.0757 3040 SSDPSRV - ok
13:10:17.0773 3040 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
13:10:17.0778 3040 SstpSvc - ok
13:10:17.0816 3040 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\Windows\system32\DRIVERS\stdcfltn.sys
13:10:17.0885 3040 stdcfltn - ok
13:10:17.0978 3040 Stereo Service (0683504bbb3ffc0a73d9d217b63dd0e0) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:10:17.0994 3040 Stereo Service - ok
13:10:18.0010 3040 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
13:10:18.0025 3040 stexstor - ok
13:10:18.0103 3040 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
13:10:18.0119 3040 stisvc - ok
13:10:18.0166 3040 stllssvr (7731f46ec0d687a931cba063e8f90ef0) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
13:10:18.0166 3040 stllssvr - ok
13:10:18.0181 3040 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
13:10:18.0197 3040 swenum - ok
13:10:18.0244 3040 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
13:10:18.0259 3040 swprv - ok
13:10:18.0400 3040 SynTP (b0c7d4dcf4800df2f2145b500d0161e8) C:\Windows\system32\DRIVERS\SynTP.sys
13:10:18.0493 3040 SynTP - ok
13:10:18.0656 3040 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
13:10:18.0687 3040 SysMain - ok
13:10:18.0764 3040 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
13:10:18.0769 3040 TabletInputService - ok
13:10:18.0813 3040 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
13:10:18.0821 3040 TapiSrv - ok
13:10:18.0842 3040 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
13:10:18.0843 3040 TBS - ok
13:10:18.0999 3040 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
13:10:19.0030 3040 Tcpip - ok
13:10:19.0280 3040 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
13:10:19.0311 3040 TCPIP6 - ok
13:10:19.0405 3040 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
13:10:19.0405 3040 tcpipreg - ok
13:10:19.0420 3040 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
13:10:19.0420 3040 TDPIPE - ok
13:10:19.0452 3040 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
13:10:19.0514 3040 TDTCP - ok
13:10:19.0530 3040 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
13:10:19.0530 3040 tdx - ok
13:10:19.0530 3040 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
13:10:19.0530 3040 TermDD - ok
13:10:19.0606 3040 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
13:10:19.0704 3040 TermService - ok
13:10:19.0724 3040 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
13:10:19.0729 3040 Themes - ok
13:10:19.0760 3040 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
13:10:19.0764 3040 THREADORDER - ok
13:10:19.0791 3040 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
13:10:19.0797 3040 TrkWks - ok
13:10:19.0841 3040 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
13:10:19.0845 3040 TrustedInstaller - ok
13:10:19.0861 3040 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:10:19.0861 3040 tssecsrv - ok
13:10:19.0892 3040 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
13:10:19.0892 3040 TsUsbFlt - ok
13:10:19.0908 3040 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
13:10:19.0986 3040 TsUsbGD - ok
13:10:20.0017 3040 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
13:10:20.0017 3040 tunnel - ok
13:10:20.0048 3040 TurboB (fd24f98d2898be093fe926604be7db99) C:\Windows\system32\DRIVERS\TurboB.sys
13:10:20.0079 3040 TurboB - ok
13:10:20.0142 3040 TurboBoost (600b406a04d90f577fea8a88d7379f08) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
13:10:20.0142 3040 TurboBoost - ok
13:10:20.0173 3040 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
13:10:20.0173 3040 uagp35 - ok
13:10:20.0204 3040 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
13:10:20.0220 3040 udfs - ok
13:10:20.0251 3040 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
13:10:20.0267 3040 UI0Detect - ok
13:10:20.0282 3040 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
13:10:20.0282 3040 uliagpkx - ok
13:10:20.0298 3040 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
13:10:20.0298 3040 umbus - ok
13:10:20.0313 3040 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
13:10:20.0313 3040 UmPass - ok
13:10:20.0532 3040 UNS (2c16648a12999ae69a9ebf41974b0ba2) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
13:10:20.0579 3040 UNS - ok
13:10:20.0671 3040 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
13:10:20.0681 3040 upnphost - ok
13:10:20.0752 3040 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
13:10:20.0755 3040 usbaudio - ok
13:10:20.0798 3040 usbccgp (19ad7990c0b67e48dac5b26f99628223) C:\Windows\system32\DRIVERS\usbccgp.sys
13:10:20.0801 3040 usbccgp - ok
13:10:20.0837 3040 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
13:10:20.0840 3040 usbcir - ok
13:10:20.0866 3040 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
13:10:20.0868 3040 usbehci - ok
13:10:20.0915 3040 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
13:10:20.0915 3040 usbhub - ok
13:10:20.0946 3040 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
13:10:20.0946 3040 usbohci - ok
13:10:20.0962 3040 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
13:10:20.0977 3040 usbprint - ok
13:10:21.0009 3040 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
13:10:21.0009 3040 usbscan - ok
13:10:21.0040 3040 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:10:21.0040 3040 USBSTOR - ok
13:10:21.0071 3040 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
13:10:21.0071 3040 usbuhci - ok
13:10:21.0133 3040 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
13:10:21.0133 3040 usbvideo - ok
13:10:21.0149 3040 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
13:10:21.0165 3040 UxSms - ok
13:10:21.0196 3040 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
13:10:21.0196 3040 VaultSvc - ok
13:10:21.0243 3040 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
13:10:21.0243 3040 vdrvroot - ok
13:10:21.0289 3040 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
13:10:21.0305 3040 vds - ok
13:10:21.0321 3040 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
13:10:21.0321 3040 vga - ok
13:10:21.0336 3040 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
13:10:21.0352 3040 VgaSave - ok
13:10:21.0383 3040 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
13:10:21.0383 3040 vhdmp - ok
13:10:21.0399 3040 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
13:10:21.0399 3040 viaide - ok
13:10:21.0430 3040 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
13:10:21.0430 3040 volmgr - ok
13:10:21.0461 3040 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
13:10:21.0477 3040 volmgrx - ok
13:10:21.0508 3040 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
13:10:21.0601 3040 volsnap - ok
13:10:21.0648 3040 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
13:10:21.0649 3040 vsmraid - ok
13:10:21.0767 3040 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
13:10:21.0794 3040 VSS - ok
13:10:21.0892 3040 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
13:10:21.0894 3040 vwifibus - ok
13:10:21.0917 3040 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
13:10:21.0917 3040 vwififlt - ok
13:10:21.0933 3040 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
13:10:21.0933 3040 vwifimp - ok
13:10:21.0995 3040 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
13:10:21.0995 3040 W32Time - ok
13:10:22.0026 3040 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
13:10:22.0026 3040 WacomPen - ok
13:10:22.0058 3040 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:10:22.0167 3040 WANARP - ok
13:10:22.0198 3040 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:10:22.0260 3040 Wanarpv6 - ok
13:10:22.0448 3040 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
13:10:22.0463 3040 WatAdminSvc - ok
13:10:22.0510 3040 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
13:10:22.0526 3040 wbengine - ok
13:10:22.0624 3040 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
13:10:22.0626 3040 WbioSrvc - ok
13:10:22.0644 3040 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
13:10:22.0647 3040 wcncsvc - ok
13:10:22.0663 3040 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
13:10:22.0664 3040 WcsPlugInService - ok
13:10:22.0699 3040 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
13:10:22.0703 3040 Wd - ok
13:10:22.0737 3040 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
13:10:22.0743 3040 Wdf01000 - ok
13:10:22.0764 3040 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
13:10:22.0770 3040 WdiServiceHost - ok
13:10:22.0782 3040 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
13:10:22.0787 3040 WdiSystemHost - ok
13:10:22.0822 3040 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
13:10:22.0825 3040 WebClient - ok
13:10:22.0854 3040 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
13:10:22.0861 3040 Wecsvc - ok
13:10:22.0876 3040 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
13:10:22.0881 3040 wercplsupport - ok
13:10:22.0907 3040 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
13:10:22.0912 3040 WerSvc - ok
13:10:22.0951 3040 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
13:10:22.0951 3040 WfpLwf - ok
13:10:23.0014 3040 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
13:10:23.0014 3040 WimFltr - ok
13:10:23.0045 3040 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
13:10:23.0045 3040 WIMMount - ok
13:10:23.0061 3040 WinHttpAutoProxySvc - ok
13:10:23.0123 3040 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
13:10:23.0123 3040 Winmgmt - ok
13:10:23.0232 3040 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
13:10:23.0263 3040 WinRM - ok
13:10:23.0419 3040 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
13:10:23.0513 3040 WinUsb - ok
13:10:23.0607 3040 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
13:10:23.0622 3040 Wlansvc - ok
13:10:23.0707 3040 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:10:23.0709 3040 wlcrasvc - ok
13:10:23.0877 3040 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:10:23.0888 3040 wlidsvc - ok
13:10:23.0984 3040 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
13:10:23.0984 3040 WmiAcpi - ok
13:10:24.0046 3040 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
13:10:24.0046 3040 wmiApSrv - ok
13:10:24.0077 3040 WMPNetworkSvc - ok
13:10:24.0109 3040 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
13:10:24.0124 3040 WPCSvc - ok
13:10:24.0140 3040 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
13:10:24.0155 3040 WPDBusEnum - ok
13:10:24.0187 3040 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
13:10:24.0187 3040 ws2ifsl - ok
13:10:24.0187 3040 WSearch - ok
13:10:24.0343 3040 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
13:10:24.0374 3040 wuauserv - ok
13:10:24.0483 3040 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
13:10:24.0483 3040 WudfPf - ok
13:10:24.0545 3040 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:10:24.0545 3040 WUDFRd - ok
13:10:24.0577 3040 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
13:10:24.0577 3040 wudfsvc - ok
13:10:24.0608 3040 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
13:10:24.0623 3040 WwanSvc - ok
13:10:24.0689 3040 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
13:10:25.0097 3040 \Device\Harddisk0\DR0 - ok
13:10:25.0097 3040 Boot (0x1200) (4b3692005cf7cd1034ef6ea16884d4a1) \Device\Harddisk0\DR0\Partition0
13:10:25.0097 3040 \Device\Harddisk0\DR0\Partition0 - ok
13:10:25.0128 3040 Boot (0x1200) (9ec36dede369b056ba8dd1157015fdfc) \Device\Harddisk0\DR0\Partition1
13:10:25.0128 3040 \Device\Harddisk0\DR0\Partition1 - ok
13:10:25.0144 3040 ============================================================
13:10:25.0144 3040 Scan finished
13:10:25.0144 3040 ============================================================
13:10:25.0160 1768 Detected object count: 0
13:10:25.0160 1768 Actual detected object count: 0
13:10:41.0816 6068 Deinitialize success

#4 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 10 July 2012 - 08:37 PM

Oh, and I should mention that something keeps turning off the McAfee firewall and stopping me from turning it back on. When I run Malwarebytes and try to delete the Trojan.Ransom virus and restart the computer after being prompted to, the McAfee firewall turns back on for a while (like a couple of hours) only to turn back off again. So far, I can keep on turning the firewall back on by doing the aforementioned.

I also get messages from McAfee that keep popping up, saying that it has just blocked ‘ZeroAccess’ and ‘Generic….’ (I can’t remember what the last one said).

Still running the aswMBR scan. It’s found 4 infections so far…

#5 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 10 July 2012 - 08:49 PM

aswMBR quickscan:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-11 10:52:43
-----------------------------
10:52:43.602 OS Version: Windows x64 6.1.7601 Service Pack 1
10:52:43.602 Number of processors: 8 586 0x2A07
10:52:43.605 ComputerName: TIFFANY-PC UserName: Tiffany
10:52:48.388 Initialize success
10:53:05.746 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:53:05.746 Disk 0 Vendor: ST975042 0002 Size: 715404MB BusType: 3
10:53:05.762 Disk 0 MBR read successfully
10:53:05.762 Disk 0 MBR scan
10:53:05.762 Disk 0 Windows VISTA default MBR code
10:53:05.762 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
10:53:05.778 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 20000 MB offset 212992
10:53:05.793 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 695299 MB offset 41172992
10:53:05.809 Disk 0 scanning C:\Windows\system32\drivers
10:53:15.003 Service scanning
10:53:32.925 Modules scanning
10:53:32.925 Disk 0 trace - called modules:
10:53:32.925 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ACPI.sys iaStor.sys hal.dll
10:53:32.925 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007de7790]
10:53:32.925 3 CLASSPNP.SYS[fffff88001bb743f] -> nt!IofCallDriver -> [0xfffffa8007d06890]
10:53:32.925 5 stdcfltn.sys[fffff88001afcc52] -> nt!IofCallDriver -> [0xfffffa80062ce440]
10:53:32.925 7 ACPI.sys[fffff88000fa77a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006322050]
10:53:32.925 Scan finished successfully
10:58:48.625 Disk 0 MBR has been saved successfully to "C:\Users\Tiffany\Documents\MBR.dat"
10:58:48.640 The log file has been saved successfully to "C:\Users\Tiffany\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-11 13:12:24
-----------------------------
13:12:24.846 OS Version: Windows x64 6.1.7601 Service Pack 1
13:12:24.846 Number of processors: 8 586 0x2A07
13:12:24.846 ComputerName: TIFFANY-PC UserName: Tiffany
13:12:34.026 Initialize success
13:13:27.742 AVAST engine defs: 12071001
13:13:38.173 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:13:38.173 Disk 0 Vendor: ST975042 0002 Size: 715404MB BusType: 3
13:13:38.189 Disk 0 MBR read successfully
13:13:38.204 Disk 0 MBR scan
13:13:38.204 Disk 0 Windows VISTA default MBR code
13:13:38.204 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
13:13:38.204 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 20000 MB offset 212992
13:13:38.235 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 695299 MB offset 41172992
13:13:38.267 Disk 0 scanning C:\Windows\system32\drivers
13:13:53.904 Service scanning
13:14:27.114 Modules scanning
13:14:27.114 Disk 0 trace - called modules:
13:14:27.130 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ACPI.sys iaStor.sys hal.dll
13:14:27.130 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800658c060]
13:14:27.130 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa8006439cb0]
13:14:27.130 5 stdcfltn.sys[fffff88001b20c52] -> nt!IofCallDriver -> [0xfffffa80062c1470]
13:14:27.130 7 ACPI.sys[fffff88000f4a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80062c5050]
13:14:34.346 AVAST engine scan C:\Windows
13:14:37.039 AVAST engine scan C:\Windows\system32
13:16:58.403 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
13:17:00.582 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
13:19:08.669 AVAST engine scan C:\Windows\system32\drivers
13:19:25.790 AVAST engine scan C:\Users\Tiffany
13:32:43.845 File: C:\Users\Tiffany\AppData\Roaming\K9EMTM6temp.exe **INFECTED** MSIL:Downloader-CM [Trj]
13:33:49.303 File: C:\Users\Tiffany\AppData\Roaming\Microsoft Essentials\NrfBqhvGoo.exe **INFECTED** MSIL:Downloader-CM [Trj]
13:42:06.092 AVAST engine scan C:\ProgramData
13:45:53.955 Scan finished successfully
13:48:09.814 Disk 0 MBR has been saved successfully to "C:\Users\Tiffany\Documents\MBR.dat"
13:48:09.833 The log file has been saved successfully to "C:\Users\Tiffany\Documents\aswMBR.txt"

Edited by Mex112, 10 July 2012 - 08:50 PM.


#6 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 10 July 2012 - 11:08 PM

ESET Online Scanner:
Operating memory a variant of Win32/Sirefef.EZ trojan

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:25 AM

Posted 10 July 2012 - 11:14 PM

We need advanced tools to remove this one

Read the guide here on preparing logs

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

#8 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 13 July 2012 - 10:25 PM

okay, so I called McAfee and they did their own thing and managed to remove some of the viruses since nothing shows up on the McAfee scan and the ESET scan. But the Malwarebytes scan still shows the Trojan.Ransom virus. It's does not seem to be doing anything or affecting my laptop (not that I know of) and the firewall is on. What do I do? Should I just leave it?

Also, here is the latest aswMBR scan (i don't understand so I dunno if I still have viruses but the 4 infections from before are gone now):

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-14 14:50:57
-----------------------------
14:50:57.504 OS Version: Windows x64 6.1.7601 Service Pack 1
14:50:57.504 Number of processors: 8 586 0x2A07
14:50:57.504 ComputerName: TIFFANY-PC UserName: Tiffany
14:51:11.133 Initialize success
14:55:54.608 AVAST engine defs: 12071301
14:56:57.289 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
14:56:57.289 Disk 0 Vendor: ST975042 0002 Size: 715404MB BusType: 3
14:56:57.305 Disk 0 MBR read successfully
14:56:57.305 Disk 0 MBR scan
14:56:57.383 Disk 0 Windows VISTA default MBR code
14:56:57.398 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
14:56:57.414 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 20000 MB offset 212992
14:56:57.445 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 695299 MB offset 41172992
14:56:57.476 Disk 0 scanning C:\Windows\system32\drivers
14:57:18.890 Service scanning
14:57:51.279 Modules scanning
14:57:51.279 Disk 0 trace - called modules:
14:57:51.295 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ACPI.sys iaStor.sys hal.dll
14:57:51.810 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007eb8060]
14:57:51.810 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> [0xfffffa8007d0c930]
14:57:51.810 5 stdcfltn.sys[fffff88001b8ac52] -> nt!IofCallDriver -> [0xfffffa800631d240]
14:57:51.810 7 ACPI.sys[fffff88000e0b7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800632b050]
14:58:04.658 AVAST engine scan C:\Windows
14:58:16.684 AVAST engine scan C:\Windows\system32
15:03:33.297 AVAST engine scan C:\Windows\system32\drivers
15:04:15.490 AVAST engine scan C:\Users\Tiffany
15:16:00.763 AVAST engine scan C:\ProgramData
15:18:06.295 Scan finished successfully
15:20:35.190 Disk 0 MBR has been saved successfully to "C:\Users\Tiffany\Documents\MBR.dat"
15:20:35.212 The log file has been saved successfully to "C:\Users\Tiffany\Documents\aswMBR2.txt"

Edited by Mex112, 14 July 2012 - 12:54 AM.


#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:25 AM

Posted 14 July 2012 - 04:44 AM

Go ahead and run ESET online scanner

#10 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 14 July 2012 - 11:39 PM

sorry if it takes me too long to respond. i just ran the ESET online scanner and it found no threats. Maybe I should scan with some other software?

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:25 AM

Posted 15 July 2012 - 08:34 AM

Press Windows+R key and type

regedit and click ok

Go to

HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

No right side you should find a key called LOAD with value C:\Users\Tiffany\LOCALS~1\Temp\mscupvv.bat

Delete it

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Edited by narenxp, 15 July 2012 - 08:37 AM.


#12 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 15 July 2012 - 04:57 PM

I tried to delete it but it just said "unable to delete all specified values".

Edited by Mex112, 15 July 2012 - 05:05 PM.


#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:25 AM

Posted 15 July 2012 - 07:02 PM

Go to

HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Right click on Windows key

click on Everyone

Checkmark Full control option below

Click ok

Now delete the key

#14 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 16 July 2012 - 01:16 AM

Thanks. I deleted it now.

Here's the minitoolbox scan results:

MiniToolBox by Farbar Version: 15-07-2012
Ran by Tiffany (administrator) on 16-07-2012 at 18:14:43
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 1030 = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Tiffany-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 4C-EB-42-0E-E5-DF
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 4C-EB-42-0E-E5-DF
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 4C-EB-42-0E-E5-E2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 1030
Physical Address. . . . . . . . . : 4C-EB-42-0E-E5-DE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3573:dbd9:26c8:7a1f%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, 16 July 2012 6:09:04 p.m.
Lease Expires . . . . . . . . . . : Tuesday, 17 July 2012 6:09:04 p.m.
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 239921986
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-C8-8D-79-84-8F-69-C6-98-4F
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : wds02.com
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 84-8F-69-C6-98-4F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: RTA1025W.home
Address: 192.168.1.1

Name: google.com
Addresses: 2404:6800:4006:801::1004
203.97.30.150
203.97.30.152
203.97.30.155
203.97.30.157
203.97.30.161
203.97.30.163
203.97.30.166
203.97.30.168
203.97.30.172
203.97.30.174
203.97.30.177
203.97.30.179
203.97.30.183
203.97.30.185
203.97.30.144
203.97.30.146


Pinging google.com [203.97.30.150] with 32 bytes of data:
Reply from 203.97.30.150: bytes=32 time=215ms TTL=61
Reply from 203.97.30.150: bytes=32 time=31ms TTL=61

Ping statistics for 203.97.30.150:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 31ms, Maximum = 215ms, Average = 123ms
Server: RTA1025W.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=379ms TTL=49
Reply from 209.191.122.70: bytes=32 time=204ms TTL=49

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 204ms, Maximum = 379ms, Average = 291ms
Server: RTA1025W.home
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 2ms, Average = 1ms
===========================================================================
Interface List
16...4c eb 42 0e e5 df ......Microsoft Virtual WiFi Miniport Adapter #2
15...4c eb 42 0e e5 df ......Microsoft Virtual WiFi Miniport Adapter
14...4c eb 42 0e e5 e2 ......Bluetooth Device (Personal Area Network)
12...4c eb 42 0e e5 de ......Intel® Centrino® Wireless-N 1030
11...84 8f 69 c6 98 4f ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
23...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
26...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.4 281
192.168.1.4 255.255.255.255 On-link 192.168.1.4 281
192.168.1.255 255.255.255.255 On-link 192.168.1.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 281 fe80::/64 On-link
12 281 fe80::3573:dbd9:26c8:7a1f/128
On-link
1 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/16/2012 06:09:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/16/2012 09:12:58 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/15/2012 05:55:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/15/2012 03:53:33 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/15/2012 03:53:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/15/2012 01:30:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2012 01:16:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/14/2012 01:05:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2012 00:55:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2012 00:39:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (07/16/2012 06:10:35 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/16/2012 06:10:05 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/16/2012 10:33:24 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR2.

Error: (07/16/2012 10:33:23 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR2.

Error: (07/16/2012 10:33:22 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR2.

Error: (07/16/2012 10:32:19 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (07/16/2012 09:15:18 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/16/2012 09:14:48 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/15/2012 03:51:37 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/15/2012 03:51:07 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.


Microsoft Office Sessions:
=========================
Error: (07/16/2012 06:09:07 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/16/2012 09:12:58 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/15/2012 05:55:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Tiffany\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\4Y3CZUVZ\esetsmartinstaller_enu.exe

Error: (07/15/2012 03:53:33 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Tiffany\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4Y3CZUVZ\esetsmartinstaller_enu.exe

Error: (07/15/2012 03:53:29 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Tiffany\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4Y3CZUVZ\esetsmartinstaller_enu.exe

Error: (07/15/2012 01:30:55 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2012 01:16:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Tiffany\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N63SI17S\esetsmartinstaller_enu (1).exe

Error: (07/14/2012 01:05:52 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2012 00:55:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/14/2012 00:39:50 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
AccelerometerP11 (Version: 2.00.11.22)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Reader X MUI (Version: 10.0.0)
Advanced Audio FX Engine (Version: 1.12.05)
AviSynth 2.5
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 9.4.61)
Dell DataSafe Local Backup (Version: 9.4.61)
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell MusicStage (Version: 1.6.225.0)
Dell PhotoStage (Version: 1.5.0.65)
Dell Stage (Version: 1.5.420.0)
Dell Support Center (Version: 3.1.5907.39)
Dell VideoStage (Version: 1.2.0.1712)
Dell Webcam Central (Version: 2.00.44)
DirectX 9 Runtime (Version: 1.00.0000)
Dragon Age Redesigned © Morrigan
Dragon Age Redesigned©
Dragon Age Redesigned© Wynne
Dragon Age: Origins (Version: 1.00)
Face Recognition (Version: 3.1.70.1)
Freemake Video Converter version 3.0.2 (Version: 3.0.2)
Google Chrome (Version: 20.0.1132.57)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2455)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.1.0608)
Intel® PROSet/Wireless WiFi Software (Version: 14.03.0000)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® WiDi (Version: 2.1.39.0)
Intel® Wireless Display
Java Auto Updater (Version: 2.1.5.1)
Java™ 7 Update 1 (Version: 7.0.10)
Java™ 7 Update 4 (64-bit) (Version: 7.0.40)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee SecurityCenter (Version: 11.0.678)
McAfee Virtual Technician (Version: 6.5.0.2101)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA 3D Vision Driver 268.30 (Version: 268.30)
NVIDIA Control Panel 268.30 (Version: 268.30)
NVIDIA Graphics Driver 268.30 (Version: 268.30)
NVIDIA Install Application (Version: 2.265.41.0)
NVIDIA Optimus 1.0.21 (Version: 1.0.21)
NVIDIA PhysX (Version: 9.09.0203)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6830)
NVIDIA Update Components (Version: 1.0.21)
PhotoShowExpress (Version: 2.0.063)
PSP Video 9 5.03 (Version: 5.03)
Quickset64 (Version: 11.0.10)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6312)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
SaveVid Plug-in (Version: 2.0.0.443)
Skype™ 5.5 (Version: 5.5.119)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Sound Blaster X-Fi MB (Version: 1.0)
Synaptics Pointing Device Driver (Version: 15.2.6.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VLC media player 2.0.1 (Version: 2.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 34%
Total physical RAM: 6038.17 MB
Available physical RAM: 3975.44 MB
Total Pagefile: 12074.53 MB
Available Pagefile: 9142.31 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.33 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:679 GB) (Free:575.91 GB) NTFS

========================= Users: ========================================

User accounts for \\TIFFANY-PC

Administrator Guest Tiffany
UpdatusUser


**** End of log ****

#15 Mex112

Mex112
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:10:25 PM

Posted 16 July 2012 - 01:18 AM

Here's the results of the FSS scan:
Farbar Service Scanner Version: 08-07-2012
Ran by Tiffany (administrator) on 16-07-2012 at 18:16:53
Running from "C:\Users\Tiffany\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YROBM0A1"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users