Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possibly have a rootkit problem?


  • Please log in to reply
13 replies to this topic

#1 jessib

jessib

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 26 July 2012 - 12:33 AM

So, for a long time now (I have been putting this off and I know I shouldn't have), when I start up my computer I get this message:

"There was a problem starting
C:\Users\admin\AppData\Local\Dell\bwjgypzh.dll

The specified module could not be found."

When I looked up bwjgypzh.dll, I found that it was supposedly a rootkit? I don't really know what that is, but since the message says it couldn't be started, does that mean it hasn't been working? Does "the specified module cannot be found" mean I actually don't have it?

I'm a little concerned but other than the message every time I start my computer I haven't had any problems.

EDIT: I'm on Windows 7. Sorry.

Edited by jessib, 26 July 2012 - 12:34 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:04 PM

Posted 26 July 2012 - 04:38 AM

Actually yes its a infected DLL(that causes browser redirects).I'm not sure how you removed it


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 27 July 2012 - 11:35 PM

00:30:46.0374 3512 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
00:30:46.0624 3512 ============================================================
00:30:46.0624 3512 Current date / time: 2012/07/28 00:30:46.0624
00:30:46.0624 3512 SystemInfo:
00:30:46.0624 3512
00:30:46.0624 3512 OS Version: 6.1.7601 ServicePack: 1.0
00:30:46.0624 3512 Product type: Workstation
00:30:46.0624 3512 ComputerName: JESSICA-PC
00:30:46.0624 3512 UserName: admin
00:30:46.0624 3512 Windows directory: C:\Windows
00:30:46.0624 3512 System windows directory: C:\Windows
00:30:46.0624 3512 Running under WOW64
00:30:46.0624 3512 Processor architecture: Intel x64
00:30:46.0624 3512 Number of processors: 8
00:30:46.0624 3512 Page size: 0x1000
00:30:46.0624 3512 Boot type: Normal boot
00:30:46.0624 3512 ============================================================
00:30:47.0279 3512 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:30:47.0295 3512 ============================================================
00:30:47.0295 3512 \Device\Harddisk0\DR0:
00:30:47.0295 3512 MBR partitions:
00:30:47.0295 3512 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
00:30:47.0295 3512 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x48AF80EB
00:30:47.0295 3512 ============================================================
00:30:47.0342 3512 C: <-> \Device\Harddisk0\DR0\Partition1
00:30:47.0342 3512 ============================================================
00:30:47.0342 3512 Initialize success
00:30:47.0342 3512 ============================================================
00:31:00.0929 4324 ============================================================
00:31:00.0929 4324 Scan started
00:31:00.0929 4324 Mode: Manual; TDLFS;
00:31:00.0929 4324 ============================================================
00:31:01.0366 4324 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
00:31:01.0382 4324 1394ohci - ok
00:31:01.0444 4324 Acceler (7a505465bbb1eb8b5ad4d76e8749383b) C:\Windows\system32\DRIVERS\Accelern.sys
00:31:01.0460 4324 Acceler - ok
00:31:01.0538 4324 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
00:31:01.0538 4324 ACPI - ok
00:31:01.0569 4324 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
00:31:01.0585 4324 AcpiPmi - ok
00:31:01.0756 4324 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:31:01.0756 4324 AdobeFlashPlayerUpdateSvc - ok
00:31:01.0850 4324 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
00:31:01.0881 4324 adp94xx - ok
00:31:01.0959 4324 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
00:31:01.0990 4324 adpahci - ok
00:31:02.0021 4324 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
00:31:02.0053 4324 adpu320 - ok
00:31:02.0084 4324 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
00:31:02.0084 4324 AeLookupSvc - ok
00:31:02.0177 4324 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
00:31:02.0193 4324 AERTFilters - ok
00:31:02.0255 4324 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
00:31:02.0255 4324 AFD - ok
00:31:02.0333 4324 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
00:31:02.0333 4324 agp440 - ok
00:31:02.0365 4324 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
00:31:02.0365 4324 ALG - ok
00:31:02.0427 4324 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
00:31:02.0427 4324 aliide - ok
00:31:02.0458 4324 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
00:31:02.0474 4324 amdide - ok
00:31:02.0521 4324 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
00:31:02.0521 4324 AmdK8 - ok
00:31:02.0552 4324 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
00:31:02.0567 4324 AmdPPM - ok
00:31:02.0630 4324 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
00:31:02.0645 4324 amdsata - ok
00:31:02.0692 4324 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
00:31:02.0708 4324 amdsbs - ok
00:31:02.0739 4324 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
00:31:02.0739 4324 amdxata - ok
00:31:02.0786 4324 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
00:31:02.0817 4324 AppID - ok
00:31:02.0848 4324 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
00:31:02.0864 4324 AppIDSvc - ok
00:31:02.0895 4324 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
00:31:02.0895 4324 Appinfo - ok
00:31:03.0067 4324 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:31:03.0067 4324 Apple Mobile Device - ok
00:31:03.0113 4324 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
00:31:03.0129 4324 arc - ok
00:31:03.0160 4324 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
00:31:03.0160 4324 arcsas - ok
00:31:03.0301 4324 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:31:03.0347 4324 aspnet_state - ok
00:31:03.0379 4324 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
00:31:03.0394 4324 AsyncMac - ok
00:31:03.0457 4324 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
00:31:03.0457 4324 atapi - ok
00:31:03.0550 4324 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
00:31:03.0566 4324 AudioEndpointBuilder - ok
00:31:03.0581 4324 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
00:31:03.0581 4324 AudioSrv - ok
00:31:03.0628 4324 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
00:31:03.0644 4324 AxInstSV - ok
00:31:03.0722 4324 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
00:31:03.0737 4324 b06bdrv - ok
00:31:03.0784 4324 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
00:31:03.0815 4324 b57nd60a - ok
00:31:03.0847 4324 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
00:31:03.0893 4324 BDESVC - ok
00:31:03.0909 4324 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
00:31:03.0909 4324 Beep - ok
00:31:04.0018 4324 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
00:31:04.0018 4324 BFE - ok
00:31:04.0096 4324 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
00:31:04.0112 4324 BITS - ok
00:31:04.0221 4324 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
00:31:04.0237 4324 blbdrive - ok
00:31:04.0393 4324 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
00:31:04.0393 4324 Bonjour Service - ok
00:31:04.0471 4324 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
00:31:04.0486 4324 bowser - ok
00:31:04.0517 4324 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:31:04.0549 4324 BrFiltLo - ok
00:31:04.0580 4324 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:31:04.0595 4324 BrFiltUp - ok
00:31:04.0658 4324 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
00:31:04.0658 4324 Browser - ok
00:31:04.0689 4324 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
00:31:04.0720 4324 Brserid - ok
00:31:04.0736 4324 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
00:31:04.0751 4324 BrSerWdm - ok
00:31:04.0798 4324 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
00:31:04.0814 4324 BrUsbMdm - ok
00:31:04.0829 4324 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
00:31:04.0845 4324 BrUsbSer - ok
00:31:04.0861 4324 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
00:31:04.0876 4324 BTHMODEM - ok
00:31:04.0923 4324 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
00:31:04.0923 4324 bthserv - ok
00:31:04.0954 4324 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
00:31:04.0970 4324 cdfs - ok
00:31:05.0048 4324 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
00:31:05.0063 4324 cdrom - ok
00:31:05.0110 4324 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
00:31:05.0110 4324 CertPropSvc - ok
00:31:05.0157 4324 cfwids (e8ddaaf635a4ea6f24927544e97c6de8) C:\Windows\system32\drivers\cfwids.sys
00:31:05.0173 4324 cfwids - ok
00:31:05.0188 4324 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
00:31:05.0219 4324 circlass - ok
00:31:05.0266 4324 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
00:31:05.0266 4324 CLFS - ok
00:31:05.0360 4324 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:31:05.0391 4324 clr_optimization_v2.0.50727_32 - ok
00:31:05.0453 4324 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:31:05.0469 4324 clr_optimization_v2.0.50727_64 - ok
00:31:05.0578 4324 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:31:05.0578 4324 clr_optimization_v4.0.30319_32 - ok
00:31:05.0656 4324 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:31:05.0672 4324 clr_optimization_v4.0.30319_64 - ok
00:31:05.0734 4324 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
00:31:05.0750 4324 CmBatt - ok
00:31:05.0781 4324 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
00:31:05.0781 4324 cmdide - ok
00:31:05.0843 4324 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
00:31:05.0890 4324 CNG - ok
00:31:05.0921 4324 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
00:31:05.0937 4324 Compbatt - ok
00:31:06.0031 4324 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
00:31:06.0031 4324 CompositeBus - ok
00:31:06.0046 4324 COMSysApp - ok
00:31:06.0077 4324 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
00:31:06.0077 4324 crcdisk - ok
00:31:06.0155 4324 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
00:31:06.0155 4324 CryptSvc - ok
00:31:06.0202 4324 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
00:31:06.0436 4324 CtClsFlt - ok
00:31:06.0530 4324 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
00:31:06.0545 4324 DcomLaunch - ok
00:31:06.0608 4324 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
00:31:06.0608 4324 defragsvc - ok
00:31:06.0639 4324 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
00:31:06.0655 4324 DfsC - ok
00:31:06.0701 4324 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
00:31:06.0701 4324 Dhcp - ok
00:31:06.0717 4324 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
00:31:06.0717 4324 discache - ok
00:31:06.0748 4324 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
00:31:06.0764 4324 Disk - ok
00:31:06.0795 4324 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
00:31:06.0795 4324 Dnscache - ok
00:31:06.0889 4324 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
00:31:06.0889 4324 DockLoginService - ok
00:31:06.0935 4324 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
00:31:06.0951 4324 dot3svc - ok
00:31:06.0998 4324 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
00:31:06.0998 4324 DPS - ok
00:31:07.0060 4324 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
00:31:07.0076 4324 drmkaud - ok
00:31:07.0185 4324 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
00:31:07.0201 4324 DXGKrnl - ok
00:31:07.0216 4324 EagleX64 - ok
00:31:07.0232 4324 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
00:31:07.0232 4324 EapHost - ok
00:31:07.0481 4324 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
00:31:07.0528 4324 ebdrv - ok
00:31:07.0684 4324 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
00:31:07.0684 4324 EFS - ok
00:31:07.0793 4324 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
00:31:07.0825 4324 ehRecvr - ok
00:31:07.0871 4324 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
00:31:07.0887 4324 ehSched - ok
00:31:07.0981 4324 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
00:31:08.0027 4324 elxstor - ok
00:31:08.0043 4324 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
00:31:08.0059 4324 ErrDev - ok
00:31:08.0105 4324 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
00:31:08.0121 4324 EventSystem - ok
00:31:08.0339 4324 EvtEng (b56d9602db5fe1c116b1ca5efd8e2e50) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
00:31:08.0355 4324 EvtEng - ok
00:31:08.0495 4324 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
00:31:08.0511 4324 exfat - ok
00:31:08.0573 4324 FACAP (2c1d443e14f376e8331f52f135dca9ef) C:\Windows\system32\DRIVERS\facap.sys
00:31:08.0605 4324 FACAP - ok
00:31:08.0839 4324 FAService (9a58f93651f095625ac9aab754d8d6fd) c:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
00:31:08.0854 4324 FAService - ok
00:31:09.0010 4324 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
00:31:09.0010 4324 fastfat - ok
00:31:09.0088 4324 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
00:31:09.0088 4324 Fax - ok
00:31:09.0135 4324 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
00:31:09.0151 4324 fdc - ok
00:31:09.0182 4324 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
00:31:09.0182 4324 fdPHost - ok
00:31:09.0229 4324 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
00:31:09.0244 4324 FDResPub - ok
00:31:09.0275 4324 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
00:31:09.0291 4324 FileInfo - ok
00:31:09.0307 4324 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
00:31:09.0322 4324 Filetrace - ok
00:31:09.0353 4324 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
00:31:09.0369 4324 flpydisk - ok
00:31:09.0416 4324 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
00:31:09.0416 4324 FltMgr - ok
00:31:09.0509 4324 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
00:31:09.0525 4324 FontCache - ok
00:31:09.0619 4324 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:31:09.0634 4324 FontCache3.0.0.0 - ok
00:31:09.0681 4324 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
00:31:09.0681 4324 FsDepends - ok
00:31:09.0728 4324 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
00:31:09.0728 4324 Fs_Rec - ok
00:31:09.0806 4324 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
00:31:09.0806 4324 fvevol - ok
00:31:09.0837 4324 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
00:31:09.0853 4324 gagp30kx - ok
00:31:09.0899 4324 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:31:09.0915 4324 GEARAspiWDM - ok
00:31:10.0055 4324 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
00:31:10.0305 4324 GoToAssist - ok
00:31:10.0399 4324 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
00:31:10.0399 4324 gpsvc - ok
00:31:10.0430 4324 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
00:31:10.0430 4324 hcw85cir - ok
00:31:10.0477 4324 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
00:31:10.0477 4324 HDAudBus - ok
00:31:10.0523 4324 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
00:31:10.0570 4324 HECIx64 - ok
00:31:10.0586 4324 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
00:31:10.0586 4324 HidBatt - ok
00:31:10.0617 4324 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
00:31:10.0633 4324 HidBth - ok
00:31:10.0664 4324 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
00:31:10.0679 4324 HidIr - ok
00:31:10.0711 4324 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
00:31:10.0711 4324 hidserv - ok
00:31:10.0742 4324 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
00:31:10.0757 4324 HidUsb - ok
00:31:10.0820 4324 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
00:31:10.0820 4324 hkmsvc - ok
00:31:10.0867 4324 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
00:31:10.0867 4324 HomeGroupListener - ok
00:31:10.0929 4324 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
00:31:10.0929 4324 HomeGroupProvider - ok
00:31:10.0976 4324 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
00:31:10.0991 4324 HpSAMD - ok
00:31:11.0085 4324 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
00:31:11.0101 4324 HTTP - ok
00:31:11.0132 4324 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
00:31:11.0132 4324 hwpolicy - ok
00:31:11.0194 4324 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
00:31:11.0210 4324 i8042prt - ok
00:31:11.0272 4324 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\DRIVERS\iaStor.sys
00:31:11.0272 4324 iaStor - ok
00:31:11.0413 4324 IAStorDataMgrSvc (31a0e93cdf29007d6c6fffb632f375ed) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:31:11.0428 4324 IAStorDataMgrSvc - ok
00:31:11.0491 4324 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
00:31:11.0506 4324 iaStorV - ok
00:31:11.0678 4324 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:31:11.0693 4324 idsvc - ok
00:31:11.0834 4324 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
00:31:11.0849 4324 iirsp - ok
00:31:11.0927 4324 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
00:31:11.0927 4324 IKEEXT - ok
00:31:12.0068 4324 IntcAzAudAddService (491dadcc74327fabc85e0ab80af8f204) C:\Windows\system32\drivers\RTKVHD64.sys
00:31:12.0099 4324 IntcAzAudAddService - ok
00:31:12.0208 4324 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
00:31:12.0224 4324 intelide - ok
00:31:12.0255 4324 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
00:31:12.0271 4324 intelppm - ok
00:31:12.0333 4324 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
00:31:12.0349 4324 IPBusEnum - ok
00:31:12.0395 4324 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:31:12.0411 4324 IpFilterDriver - ok
00:31:12.0473 4324 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
00:31:12.0489 4324 iphlpsvc - ok
00:31:12.0536 4324 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
00:31:12.0567 4324 IPMIDRV - ok
00:31:12.0598 4324 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
00:31:12.0614 4324 IPNAT - ok
00:31:12.0770 4324 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
00:31:12.0785 4324 iPod Service - ok
00:31:12.0801 4324 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
00:31:12.0817 4324 IRENUM - ok
00:31:12.0848 4324 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
00:31:12.0895 4324 isapnp - ok
00:31:12.0926 4324 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
00:31:12.0957 4324 iScsiPrt - ok
00:31:13.0051 4324 JMCR (3926c8c55a2cd2c94888be39b4beb629) C:\Windows\system32\DRIVERS\jmcr.sys
00:31:13.0051 4324 JMCR - ok
00:31:13.0082 4324 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
00:31:13.0082 4324 kbdclass - ok
00:31:13.0144 4324 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
00:31:13.0160 4324 kbdhid - ok
00:31:13.0207 4324 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:31:13.0207 4324 KeyIso - ok
00:31:13.0238 4324 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
00:31:13.0253 4324 KSecDD - ok
00:31:13.0285 4324 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
00:31:13.0300 4324 KSecPkg - ok
00:31:13.0331 4324 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
00:31:13.0331 4324 ksthunk - ok
00:31:13.0378 4324 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
00:31:13.0409 4324 KtmRm - ok
00:31:13.0456 4324 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
00:31:13.0472 4324 LanmanServer - ok
00:31:13.0534 4324 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
00:31:13.0534 4324 LanmanWorkstation - ok
00:31:13.0565 4324 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
00:31:13.0581 4324 lltdio - ok
00:31:13.0628 4324 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
00:31:13.0643 4324 lltdsvc - ok
00:31:13.0675 4324 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
00:31:13.0675 4324 lmhosts - ok
00:31:13.0846 4324 LMS (23d990150d56b670a62b21b9abdd45ee) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:31:13.0862 4324 LMS - ok
00:31:13.0909 4324 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
00:31:13.0924 4324 LSI_FC - ok
00:31:13.0955 4324 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
00:31:13.0987 4324 LSI_SAS - ok
00:31:14.0002 4324 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:31:14.0002 4324 LSI_SAS2 - ok
00:31:14.0033 4324 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:31:14.0049 4324 LSI_SCSI - ok
00:31:14.0096 4324 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
00:31:14.0127 4324 luafv - ok
00:31:14.0221 4324 McShield (82128f909cd5148556f6deb77b340532) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
00:31:14.0283 4324 McShield - ok
00:31:14.0330 4324 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
00:31:14.0345 4324 Mcx2Svc - ok
00:31:14.0361 4324 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
00:31:14.0377 4324 megasas - ok
00:31:14.0423 4324 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
00:31:14.0423 4324 MegaSR - ok
00:31:14.0517 4324 mfeapfk (fb752feb1ed4e660ff51712892905c04) C:\Windows\system32\drivers\mfeapfk.sys
00:31:14.0533 4324 mfeapfk - ok
00:31:14.0564 4324 mfeavfk (3257cf681999a47d8c552dfbbeb7844e) C:\Windows\system32\drivers\mfeavfk.sys
00:31:14.0595 4324 mfeavfk - ok
00:31:14.0626 4324 mfefire (a6cdfc6300e214d19da765253e3e3d20) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
00:31:14.0626 4324 mfefire - ok
00:31:14.0689 4324 mfefirek (00016d7ed29a95d6f7e7b6a3f591fd2d) C:\Windows\system32\drivers\mfefirek.sys
00:31:14.0735 4324 mfefirek - ok
00:31:14.0782 4324 mfehidk (39030c98198f02a2f3a1c3166bf56253) C:\Windows\system32\drivers\mfehidk.sys
00:31:14.0845 4324 mfehidk - ok
00:31:14.0876 4324 mfenlfk (217fa02439de74844b6a39aebeed24e1) C:\Windows\system32\DRIVERS\mfenlfk.sys
00:31:14.0907 4324 mfenlfk - ok
00:31:14.0938 4324 mferkdet (8474e6ee0b5eab108cf005c6c4956e75) C:\Windows\system32\drivers\mferkdet.sys
00:31:14.0969 4324 mferkdet - ok
00:31:15.0094 4324 mfevtp (bfcdf65f8513e396889a62dc1397273f) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
00:31:15.0125 4324 mfevtp - ok
00:31:15.0172 4324 mfewfpk (d4cf36f1eba374fcc35903ae4f4e46bc) C:\Windows\system32\drivers\mfewfpk.sys
00:31:15.0235 4324 mfewfpk - ok
00:31:15.0266 4324 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:31:15.0266 4324 MMCSS - ok
00:31:15.0313 4324 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
00:31:15.0313 4324 Modem - ok
00:31:15.0359 4324 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
00:31:15.0359 4324 monitor - ok
00:31:15.0406 4324 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
00:31:15.0406 4324 mouclass - ok
00:31:15.0437 4324 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
00:31:15.0484 4324 mouhid - ok
00:31:15.0515 4324 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
00:31:15.0515 4324 mountmgr - ok
00:31:15.0656 4324 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:31:15.0671 4324 MozillaMaintenance - ok
00:31:15.0718 4324 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
00:31:15.0765 4324 mpio - ok
00:31:15.0781 4324 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
00:31:15.0796 4324 mpsdrv - ok
00:31:15.0859 4324 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
00:31:15.0874 4324 MpsSvc - ok
00:31:15.0905 4324 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
00:31:15.0921 4324 MRxDAV - ok
00:31:15.0952 4324 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:31:15.0952 4324 mrxsmb - ok
00:31:15.0999 4324 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:31:16.0015 4324 mrxsmb10 - ok
00:31:16.0046 4324 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:31:16.0046 4324 mrxsmb20 - ok
00:31:16.0093 4324 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
00:31:16.0124 4324 msahci - ok
00:31:16.0139 4324 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
00:31:16.0155 4324 msdsm - ok
00:31:16.0202 4324 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
00:31:16.0217 4324 MSDTC - ok
00:31:16.0295 4324 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
00:31:16.0311 4324 Msfs - ok
00:31:16.0342 4324 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
00:31:16.0358 4324 mshidkmdf - ok
00:31:16.0373 4324 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
00:31:16.0373 4324 msisadrv - ok
00:31:16.0436 4324 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
00:31:16.0467 4324 MSiSCSI - ok
00:31:16.0467 4324 msiserver - ok
00:31:16.0498 4324 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
00:31:16.0514 4324 MSKSSRV - ok
00:31:16.0561 4324 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
00:31:16.0576 4324 MSPCLOCK - ok
00:31:16.0592 4324 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
00:31:16.0607 4324 MSPQM - ok
00:31:16.0654 4324 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
00:31:16.0670 4324 MsRPC - ok
00:31:16.0717 4324 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
00:31:16.0717 4324 mssmbios - ok
00:31:16.0732 4324 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
00:31:16.0732 4324 MSTEE - ok
00:31:16.0763 4324 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
00:31:16.0763 4324 MTConfig - ok
00:31:16.0795 4324 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
00:31:16.0795 4324 Mup - ok
00:31:16.0935 4324 MyWiFiDHCPDNS (a9bc2302fbdf52c8af4e2fc966288d21) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
00:31:16.0951 4324 MyWiFiDHCPDNS - ok
00:31:17.0044 4324 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
00:31:17.0044 4324 napagent - ok
00:31:17.0107 4324 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
00:31:17.0122 4324 NativeWifiP - ok
00:31:17.0231 4324 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
00:31:17.0247 4324 NDIS - ok
00:31:17.0278 4324 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
00:31:17.0294 4324 NdisCap - ok
00:31:17.0356 4324 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
00:31:17.0372 4324 NdisTapi - ok
00:31:17.0403 4324 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
00:31:17.0403 4324 Ndisuio - ok
00:31:17.0434 4324 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
00:31:17.0481 4324 NdisWan - ok
00:31:17.0528 4324 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
00:31:17.0543 4324 NDProxy - ok
00:31:17.0559 4324 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
00:31:17.0575 4324 NetBIOS - ok
00:31:17.0621 4324 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
00:31:17.0621 4324 NetBT - ok
00:31:17.0668 4324 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:31:17.0668 4324 Netlogon - ok
00:31:17.0746 4324 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
00:31:17.0762 4324 Netman - ok
00:31:17.0887 4324 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:31:17.0902 4324 NetMsmqActivator - ok
00:31:17.0902 4324 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:31:17.0918 4324 NetPipeActivator - ok
00:31:17.0949 4324 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
00:31:17.0965 4324 netprofm - ok
00:31:17.0965 4324 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:31:17.0965 4324 NetTcpActivator - ok
00:31:17.0980 4324 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:31:17.0980 4324 NetTcpPortSharing - ok
00:31:18.0464 4324 NETw5s64 (18555f48844c2861d9dce8f2b7223ae5) C:\Windows\system32\DRIVERS\NETw5s64.sys
00:31:18.0620 4324 NETw5s64 - ok
00:31:18.0823 4324 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
00:31:18.0838 4324 nfrd960 - ok
00:31:18.0932 4324 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
00:31:18.0932 4324 NlaSvc - ok
00:31:18.0979 4324 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
00:31:18.0994 4324 Npfs - ok
00:31:19.0025 4324 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
00:31:19.0025 4324 nsi - ok
00:31:19.0041 4324 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
00:31:19.0041 4324 nsiproxy - ok
00:31:19.0181 4324 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
00:31:19.0228 4324 Ntfs - ok
00:31:19.0353 4324 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
00:31:19.0384 4324 Null - ok
00:31:19.0415 4324 nusb3hub (285acec1b13a15ba520aae06bacb9cff) C:\Windows\system32\DRIVERS\nusb3hub.sys
00:31:19.0415 4324 nusb3hub - ok
00:31:19.0462 4324 nusb3xhc (f6d625ff7b56bb6ea063f0d3a5bbc996) C:\Windows\system32\DRIVERS\nusb3xhc.sys
00:31:19.0462 4324 nusb3xhc - ok
00:31:19.0493 4324 NVHDA (e20abd5b229760158f753ca90b97e090) C:\Windows\system32\drivers\nvhda64v.sys
00:31:19.0525 4324 NVHDA - ok
00:31:20.0211 4324 nvlddmkm (011f0596d167d073e6813ae88e7947a9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:31:20.0273 4324 nvlddmkm - ok
00:31:20.0429 4324 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
00:31:20.0461 4324 nvraid - ok
00:31:20.0476 4324 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
00:31:20.0492 4324 nvstor - ok
00:31:20.0554 4324 nvsvc (e72422f9c55078dfa298ac7aa0a87970) C:\Windows\system32\nvvsvc.exe
00:31:20.0554 4324 nvsvc - ok
00:31:20.0632 4324 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
00:31:20.0663 4324 nv_agp - ok
00:31:20.0695 4324 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
00:31:20.0710 4324 ohci1394 - ok
00:31:20.0819 4324 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:31:20.0851 4324 ose - ok
00:31:21.0241 4324 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:31:21.0334 4324 osppsvc - ok
00:31:21.0475 4324 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:31:21.0475 4324 p2pimsvc - ok
00:31:21.0521 4324 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
00:31:21.0537 4324 p2psvc - ok
00:31:21.0584 4324 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
00:31:21.0599 4324 Parport - ok
00:31:21.0662 4324 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
00:31:21.0677 4324 partmgr - ok
00:31:21.0709 4324 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
00:31:21.0709 4324 PcaSvc - ok
00:31:21.0755 4324 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
00:31:21.0771 4324 pci - ok
00:31:21.0802 4324 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
00:31:21.0818 4324 pciide - ok
00:31:21.0849 4324 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
00:31:21.0865 4324 pcmcia - ok
00:31:21.0896 4324 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
00:31:21.0911 4324 pcw - ok
00:31:21.0958 4324 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
00:31:21.0989 4324 PEAUTH - ok
00:31:22.0083 4324 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
00:31:22.0099 4324 PerfHost - ok
00:31:22.0270 4324 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
00:31:22.0317 4324 pla - ok
00:31:22.0426 4324 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
00:31:22.0426 4324 PlugPlay - ok
00:31:22.0473 4324 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
00:31:22.0489 4324 PNRPAutoReg - ok
00:31:22.0535 4324 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:31:22.0535 4324 PNRPsvc - ok
00:31:22.0629 4324 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
00:31:22.0645 4324 PolicyAgent - ok
00:31:22.0691 4324 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
00:31:22.0691 4324 Power - ok
00:31:22.0754 4324 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
00:31:22.0769 4324 PptpMiniport - ok
00:31:22.0801 4324 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
00:31:22.0832 4324 Processor - ok
00:31:22.0879 4324 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
00:31:22.0879 4324 ProfSvc - ok
00:31:22.0925 4324 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:31:22.0925 4324 ProtectedStorage - ok
00:31:22.0972 4324 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
00:31:22.0972 4324 Psched - ok
00:31:22.0988 4324 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
00:31:23.0003 4324 PxHlpa64 - ok
00:31:23.0050 4324 qicflt (0928bd20273625622722fe1de5bbde57) C:\Windows\system32\DRIVERS\qicflt.sys
00:31:23.0081 4324 qicflt - ok
00:31:23.0191 4324 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
00:31:23.0237 4324 ql2300 - ok
00:31:23.0362 4324 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
00:31:23.0393 4324 ql40xx - ok
00:31:23.0425 4324 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
00:31:23.0440 4324 QWAVE - ok
00:31:23.0471 4324 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
00:31:23.0471 4324 QWAVEdrv - ok
00:31:23.0487 4324 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
00:31:23.0487 4324 RasAcd - ok
00:31:23.0534 4324 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
00:31:23.0549 4324 RasAgileVpn - ok
00:31:23.0581 4324 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
00:31:23.0596 4324 RasAuto - ok
00:31:23.0659 4324 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:31:23.0674 4324 Rasl2tp - ok
00:31:23.0721 4324 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
00:31:23.0737 4324 RasMan - ok
00:31:23.0752 4324 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
00:31:23.0768 4324 RasPppoe - ok
00:31:23.0799 4324 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
00:31:23.0799 4324 RasSstp - ok
00:31:23.0846 4324 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
00:31:23.0861 4324 rdbss - ok
00:31:23.0893 4324 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
00:31:23.0893 4324 rdpbus - ok
00:31:23.0939 4324 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:31:23.0939 4324 RDPCDD - ok
00:31:23.0971 4324 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
00:31:23.0971 4324 RDPENCDD - ok
00:31:24.0017 4324 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
00:31:24.0017 4324 RDPREFMP - ok
00:31:24.0049 4324 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
00:31:24.0080 4324 RDPWD - ok
00:31:24.0127 4324 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
00:31:24.0142 4324 rdyboost - ok
00:31:24.0267 4324 RegSrvc (0aa473966357c4a41b5eb19649eb6e5e) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
00:31:24.0267 4324 RegSrvc - ok
00:31:24.0314 4324 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
00:31:24.0329 4324 RemoteAccess - ok
00:31:24.0361 4324 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
00:31:24.0361 4324 RemoteRegistry - ok
00:31:24.0392 4324 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
00:31:24.0392 4324 RpcEptMapper - ok
00:31:24.0423 4324 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
00:31:24.0439 4324 RpcLocator - ok
00:31:24.0501 4324 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
00:31:24.0501 4324 RpcSs - ok
00:31:24.0563 4324 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
00:31:24.0579 4324 rspndr - ok
00:31:24.0641 4324 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
00:31:24.0657 4324 RTL8167 - ok
00:31:24.0673 4324 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:31:24.0688 4324 SamSs - ok
00:31:24.0985 4324 SBAMSvc (18530d2f605f1ec48ca20a7b184ccbcc) C:\Program Files (x86)\GFI Software\VIPRE\SBAMSvc.exe
00:31:25.0000 4324 SBAMSvc - ok
00:31:25.0141 4324 sbapifs (6e342316e72f4b6fa39c99e06373a1a3) C:\Windows\system32\DRIVERS\sbapifs.sys
00:31:25.0156 4324 sbapifs - ok
00:31:25.0187 4324 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
00:31:25.0219 4324 sbp2port - ok
00:31:25.0343 4324 SBPIMSvc (2815772894855506e94008cc0e602738) C:\Program Files (x86)\GFI Software\VIPRE\SBPIMSvc.exe
00:31:25.0343 4324 SBPIMSvc - ok
00:31:25.0390 4324 SBRE (aae41efbad69b78513875c2eb3de7008) C:\Windows\system32\drivers\SBREdrv.sys
00:31:25.0406 4324 SBRE - ok
00:31:25.0437 4324 sbwtis (f9aa83a88eabe22b29d8f293c21aaa4d) C:\Windows\system32\DRIVERS\sbwtis.sys
00:31:25.0468 4324 sbwtis - ok
00:31:25.0499 4324 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
00:31:25.0531 4324 SCardSvr - ok
00:31:25.0546 4324 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
00:31:25.0562 4324 scfilter - ok
00:31:25.0655 4324 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
00:31:25.0671 4324 Schedule - ok
00:31:25.0702 4324 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
00:31:25.0702 4324 SCPolicySvc - ok
00:31:25.0733 4324 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
00:31:25.0749 4324 SDRSVC - ok
00:31:25.0796 4324 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
00:31:25.0811 4324 secdrv - ok
00:31:25.0843 4324 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
00:31:25.0858 4324 seclogon - ok
00:31:25.0889 4324 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
00:31:25.0889 4324 SENS - ok
00:31:25.0921 4324 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
00:31:25.0936 4324 SensrSvc - ok
00:31:25.0967 4324 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
00:31:25.0983 4324 Serenum - ok
00:31:26.0030 4324 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
00:31:26.0045 4324 Serial - ok
00:31:26.0108 4324 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
00:31:26.0123 4324 sermouse - ok
00:31:26.0155 4324 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
00:31:26.0155 4324 SessionEnv - ok
00:31:26.0186 4324 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
00:31:26.0201 4324 sffdisk - ok
00:31:26.0217 4324 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
00:31:26.0233 4324 sffp_mmc - ok
00:31:26.0248 4324 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
00:31:26.0248 4324 sffp_sd - ok
00:31:26.0279 4324 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
00:31:26.0295 4324 sfloppy - ok
00:31:26.0420 4324 SftService (e1974a92ac0914a3859359a0a8c82c68) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
00:31:26.0435 4324 SftService - ok
00:31:26.0482 4324 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
00:31:26.0513 4324 SharedAccess - ok
00:31:26.0545 4324 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
00:31:26.0560 4324 ShellHWDetection - ok
00:31:26.0607 4324 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:31:26.0623 4324 SiSRaid2 - ok
00:31:26.0638 4324 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
00:31:26.0654 4324 SiSRaid4 - ok
00:31:26.0747 4324 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files (x86)\Skype\Updater\Updater.exe
00:31:26.0779 4324 SkypeUpdate - ok
00:31:26.0810 4324 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
00:31:26.0810 4324 Smb - ok
00:31:26.0857 4324 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
00:31:26.0888 4324 SNMPTRAP - ok
00:31:26.0903 4324 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
00:31:26.0919 4324 spldr - ok
00:31:26.0997 4324 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
00:31:27.0013 4324 Spooler - ok
00:31:27.0231 4324 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
00:31:27.0247 4324 sppsvc - ok
00:31:27.0371 4324 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
00:31:27.0387 4324 sppuinotify - ok
00:31:27.0481 4324 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
00:31:27.0481 4324 sprtsvc_DellSupportCenter - ok
00:31:27.0559 4324 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
00:31:27.0590 4324 srv - ok
00:31:27.0652 4324 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
00:31:27.0668 4324 srv2 - ok
00:31:27.0699 4324 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
00:31:27.0715 4324 srvnet - ok
00:31:27.0761 4324 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
00:31:27.0777 4324 SSDPSRV - ok
00:31:27.0793 4324 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
00:31:27.0808 4324 SstpSvc - ok
00:31:27.0855 4324 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\Windows\system32\DRIVERS\stdcfltn.sys
00:31:27.0871 4324 stdcfltn - ok
00:31:27.0980 4324 Stereo Service (c6539a0cb1ebff488d3d4b070c4f17f8) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
00:31:27.0980 4324 Stereo Service - ok
00:31:28.0011 4324 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
00:31:28.0027 4324 stexstor - ok
00:31:28.0105 4324 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
00:31:28.0120 4324 stisvc - ok
00:31:28.0151 4324 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
00:31:28.0167 4324 swenum - ok
00:31:28.0214 4324 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
00:31:28.0229 4324 swprv - ok
00:31:28.0339 4324 SynTP (36f506c894e1ea59c65faf6398bdf49a) C:\Windows\system32\DRIVERS\SynTP.sys
00:31:28.0370 4324 SynTP - ok
00:31:28.0573 4324 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
00:31:28.0588 4324 SysMain - ok
00:31:28.0651 4324 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
00:31:28.0666 4324 TabletInputService - ok
00:31:28.0697 4324 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
00:31:28.0713 4324 TapiSrv - ok
00:31:28.0760 4324 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
00:31:28.0775 4324 TBS - ok
00:31:28.0963 4324 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
00:31:28.0994 4324 Tcpip - ok
00:31:29.0150 4324 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
00:31:29.0165 4324 TCPIP6 - ok
00:31:29.0243 4324 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
00:31:29.0243 4324 tcpipreg - ok
00:31:29.0275 4324 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
00:31:29.0290 4324 TDPIPE - ok
00:31:29.0337 4324 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
00:31:29.0353 4324 TDTCP - ok
00:31:29.0415 4324 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
00:31:29.0431 4324 tdx - ok
00:31:29.0493 4324 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
00:31:29.0509 4324 TermDD - ok
00:31:29.0571 4324 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
00:31:29.0571 4324 TermService - ok
00:31:29.0602 4324 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
00:31:29.0602 4324 Themes - ok
00:31:29.0633 4324 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:31:29.0633 4324 THREADORDER - ok
00:31:29.0665 4324 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
00:31:29.0665 4324 TrkWks - ok
00:31:29.0711 4324 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
00:31:29.0727 4324 TrustedInstaller - ok
00:31:29.0774 4324 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:31:29.0805 4324 tssecsrv - ok
00:31:29.0867 4324 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
00:31:29.0883 4324 TsUsbFlt - ok
00:31:29.0930 4324 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
00:31:29.0945 4324 tunnel - ok
00:31:29.0992 4324 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
00:31:30.0351 4324 TurboB - ok
00:31:30.0460 4324 TurboBoost (b206be1174d5964d49a56bb6c4e0524a) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
00:31:30.0819 4324 TurboBoost - ok
00:31:30.0850 4324 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
00:31:30.0866 4324 uagp35 - ok
00:31:30.0913 4324 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
00:31:30.0928 4324 udfs - ok
00:31:30.0975 4324 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
00:31:30.0991 4324 UI0Detect - ok
00:31:31.0037 4324 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
00:31:31.0053 4324 uliagpkx - ok
00:31:31.0084 4324 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
00:31:31.0100 4324 umbus - ok
00:31:31.0131 4324 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
00:31:31.0131 4324 UmPass - ok
00:31:31.0381 4324 UNS (cbdee152d73200ee49031a26310b9d3e) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:31:31.0412 4324 UNS - ok
00:31:31.0537 4324 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
00:31:31.0537 4324 upnphost - ok
00:31:31.0615 4324 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
00:31:31.0646 4324 USBAAPL64 - ok
00:31:31.0677 4324 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
00:31:31.0693 4324 usbccgp - ok
00:31:31.0739 4324 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
00:31:31.0755 4324 usbcir - ok
00:31:31.0786 4324 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
00:31:31.0802 4324 usbehci - ok
00:31:31.0833 4324 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
00:31:31.0864 4324 usbhub - ok
00:31:31.0880 4324 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
00:31:31.0895 4324 usbohci - ok
00:31:31.0927 4324 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
00:31:31.0942 4324 usbprint - ok
00:31:31.0973 4324 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
00:31:31.0989 4324 USBSTOR - ok
00:31:32.0005 4324 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
00:31:32.0020 4324 usbuhci - ok
00:31:32.0051 4324 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
00:31:32.0083 4324 usbvideo - ok
00:31:32.0098 4324 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
00:31:32.0114 4324 UxSms - ok
00:31:32.0129 4324 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:31:32.0145 4324 VaultSvc - ok
00:31:32.0176 4324 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
00:31:32.0192 4324 vdrvroot - ok
00:31:32.0239 4324 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
00:31:32.0270 4324 vds - ok
00:31:32.0317 4324 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
00:31:32.0332 4324 vga - ok
00:31:32.0348 4324 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
00:31:32.0363 4324 VgaSave - ok
00:31:32.0410 4324 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
00:31:32.0426 4324 vhdmp - ok
00:31:32.0457 4324 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
00:31:32.0473 4324 viaide - ok
00:31:32.0504 4324 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
00:31:32.0519 4324 volmgr - ok
00:31:32.0566 4324 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
00:31:32.0582 4324 volmgrx - ok
00:31:32.0613 4324 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
00:31:32.0629 4324 volsnap - ok
00:31:32.0675 4324 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
00:31:32.0691 4324 vsmraid - ok
00:31:32.0831 4324 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
00:31:32.0847 4324 VSS - ok
00:31:32.0956 4324 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
00:31:32.0972 4324 vwifibus - ok
00:31:33.0003 4324 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
00:31:33.0019 4324 vwififlt - ok
00:31:33.0065 4324 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
00:31:33.0081 4324 vwifimp - ok
00:31:33.0143 4324 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
00:31:33.0159 4324 W32Time - ok
00:31:33.0206 4324 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
00:31:33.0206 4324 WacomPen - ok
00:31:33.0268 4324 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
00:31:33.0284 4324 WANARP - ok
00:31:33.0299 4324 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
00:31:33.0299 4324 Wanarpv6 - ok
00:31:33.0440 4324 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
00:31:33.0487 4324 WatAdminSvc - ok
00:31:33.0611 4324 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
00:31:33.0643 4324 wbengine - ok
00:31:33.0767 4324 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
00:31:33.0799 4324 WbioSrvc - ok
00:31:33.0845 4324 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
00:31:33.0861 4324 wcncsvc - ok
00:31:33.0877 4324 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
00:31:33.0892 4324 WcsPlugInService - ok
00:31:33.0923 4324 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
00:31:33.0939 4324 Wd - ok
00:31:34.0017 4324 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
00:31:34.0048 4324 Wdf01000 - ok
00:31:34.0079 4324 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:31:34.0079 4324 WdiServiceHost - ok
00:31:34.0079 4324 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:31:34.0095 4324 WdiSystemHost - ok
00:31:34.0126 4324 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
00:31:34.0142 4324 WebClient - ok
00:31:34.0173 4324 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
00:31:34.0204 4324 Wecsvc - ok
00:31:34.0235 4324 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
00:31:34.0235 4324 wercplsupport - ok
00:31:34.0267 4324 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
00:31:34.0282 4324 WerSvc - ok
00:31:34.0345 4324 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
00:31:34.0360 4324 WfpLwf - ok
00:31:34.0391 4324 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
00:31:34.0391 4324 WimFltr - ok
00:31:34.0423 4324 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
00:31:34.0423 4324 WIMMount - ok
00:31:34.0469 4324 WinDefend - ok
00:31:34.0485 4324 WinHttpAutoProxySvc - ok
00:31:34.0563 4324 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
00:31:34.0579 4324 Winmgmt - ok
00:31:34.0719 4324 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
00:31:34.0781 4324 WinRM - ok
00:31:34.0953 4324 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
00:31:34.0953 4324 WinUsb - ok
00:31:35.0031 4324 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
00:31:35.0047 4324 Wlansvc - ok
00:31:35.0078 4324 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
00:31:35.0078 4324 WmiAcpi - ok
00:31:35.0140 4324 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
00:31:35.0171 4324 wmiApSrv - ok
00:31:35.0218 4324 WMPNetworkSvc - ok
00:31:35.0249 4324 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
00:31:35.0265 4324 WPCSvc - ok
00:31:35.0296 4324 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
00:31:35.0312 4324 WPDBusEnum - ok
00:31:35.0343 4324 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
00:31:35.0359 4324 ws2ifsl - ok
00:31:35.0390 4324 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
00:31:35.0390 4324 wscsvc - ok
00:31:35.0405 4324 WSearch - ok
00:31:35.0593 4324 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
00:31:35.0608 4324 wuauserv - ok
00:31:35.0733 4324 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
00:31:35.0733 4324 WudfPf - ok
00:31:35.0780 4324 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:31:35.0780 4324 WUDFRd - ok
00:31:35.0811 4324 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
00:31:35.0811 4324 wudfsvc - ok
00:31:35.0858 4324 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
00:31:35.0889 4324 WwanSvc - ok
00:31:35.0936 4324 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
00:31:36.0263 4324 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
00:31:36.0263 4324 \Device\Harddisk0\DR0 - detected TDSS File System (1)
00:31:36.0279 4324 Boot (0x1200) (18ae7c98ae07d726ef8ace2808fa44c5) \Device\Harddisk0\DR0\Partition0
00:31:36.0279 4324 \Device\Harddisk0\DR0\Partition0 - ok
00:31:36.0310 4324 Boot (0x1200) (c591cca9af08efa701645c62131a8a43) \Device\Harddisk0\DR0\Partition1
00:31:36.0310 4324 \Device\Harddisk0\DR0\Partition1 - ok
00:31:36.0310 4324 ============================================================
00:31:36.0310 4324 Scan finished
00:31:36.0310 4324 ============================================================
00:31:36.0326 0996 Detected object count: 1
00:31:36.0326 0996 Actual detected object count: 1
00:31:48.0837 0996 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
00:31:48.0837 0996 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
00:33:17.0532 3880 ============================================================
00:33:17.0533 3880 Scan started
00:33:17.0533 3880 Mode: Manual; TDLFS;
00:33:17.0533 3880 ============================================================
00:33:17.0785 3880 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
00:33:17.0788 3880 1394ohci - ok
00:33:17.0811 3880 Acceler (7a505465bbb1eb8b5ad4d76e8749383b) C:\Windows\system32\DRIVERS\Accelern.sys
00:33:17.0813 3880 Acceler - ok
00:33:17.0857 3880 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
00:33:17.0862 3880 ACPI - ok
00:33:17.0887 3880 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
00:33:17.0889 3880 AcpiPmi - ok
00:33:18.0002 3880 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:33:18.0004 3880 AdobeFlashPlayerUpdateSvc - ok
00:33:18.0056 3880 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
00:33:18.0062 3880 adp94xx - ok
00:33:18.0093 3880 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
00:33:18.0097 3880 adpahci - ok
00:33:18.0127 3880 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
00:33:18.0130 3880 adpu320 - ok
00:33:18.0164 3880 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
00:33:18.0166 3880 AeLookupSvc - ok
00:33:18.0237 3880 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
00:33:18.0239 3880 AERTFilters - ok
00:33:18.0295 3880 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
00:33:18.0302 3880 AFD - ok
00:33:18.0343 3880 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
00:33:18.0345 3880 agp440 - ok
00:33:18.0370 3880 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
00:33:18.0372 3880 ALG - ok
00:33:18.0385 3880 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
00:33:18.0386 3880 aliide - ok
00:33:18.0409 3880 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
00:33:18.0410 3880 amdide - ok
00:33:18.0448 3880 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
00:33:18.0450 3880 AmdK8 - ok
00:33:18.0476 3880 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
00:33:18.0477 3880 AmdPPM - ok
00:33:18.0512 3880 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
00:33:18.0514 3880 amdsata - ok
00:33:18.0542 3880 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
00:33:18.0545 3880 amdsbs - ok
00:33:18.0565 3880 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
00:33:18.0566 3880 amdxata - ok
00:33:18.0600 3880 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
00:33:18.0602 3880 AppID - ok
00:33:18.0620 3880 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
00:33:18.0621 3880 AppIDSvc - ok
00:33:18.0647 3880 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
00:33:18.0649 3880 Appinfo - ok
00:33:18.0763 3880 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:33:18.0765 3880 Apple Mobile Device - ok
00:33:18.0798 3880 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
00:33:18.0800 3880 arc - ok
00:33:18.0818 3880 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
00:33:18.0820 3880 arcsas - ok
00:33:18.0923 3880 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:33:18.0925 3880 aspnet_state - ok
00:33:18.0938 3880 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
00:33:18.0939 3880 AsyncMac - ok
00:33:18.0972 3880 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
00:33:18.0973 3880 atapi - ok
00:33:19.0040 3880 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
00:33:19.0048 3880 AudioEndpointBuilder - ok
00:33:19.0060 3880 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
00:33:19.0068 3880 AudioSrv - ok
00:33:19.0123 3880 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
00:33:19.0125 3880 AxInstSV - ok
00:33:19.0167 3880 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
00:33:19.0173 3880 b06bdrv - ok
00:33:19.0233 3880 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
00:33:19.0237 3880 b57nd60a - ok
00:33:19.0270 3880 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
00:33:19.0273 3880 BDESVC - ok
00:33:19.0286 3880 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
00:33:19.0287 3880 Beep - ok
00:33:19.0359 3880 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
00:33:19.0368 3880 BFE - ok
00:33:19.0452 3880 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
00:33:19.0464 3880 BITS - ok
00:33:19.0521 3880 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
00:33:19.0522 3880 blbdrive - ok
00:33:19.0604 3880 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
00:33:19.0611 3880 Bonjour Service - ok
00:33:19.0640 3880 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
00:33:19.0642 3880 bowser - ok
00:33:19.0659 3880 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:33:19.0660 3880 BrFiltLo - ok
00:33:19.0704 3880 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:33:19.0705 3880 BrFiltUp - ok
00:33:19.0740 3880 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
00:33:19.0742 3880 Browser - ok
00:33:19.0777 3880 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
00:33:19.0781 3880 Brserid - ok
00:33:19.0800 3880 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
00:33:19.0801 3880 BrSerWdm - ok
00:33:19.0819 3880 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
00:33:19.0820 3880 BrUsbMdm - ok
00:33:19.0837 3880 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
00:33:19.0839 3880 BrUsbSer - ok
00:33:19.0863 3880 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
00:33:19.0865 3880 BTHMODEM - ok
00:33:19.0903 3880 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
00:33:19.0905 3880 bthserv - ok
00:33:19.0927 3880 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
00:33:19.0929 3880 cdfs - ok
00:33:19.0962 3880 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
00:33:19.0964 3880 cdrom - ok
00:33:19.0995 3880 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
00:33:19.0997 3880 CertPropSvc - ok
00:33:20.0028 3880 cfwids (e8ddaaf635a4ea6f24927544e97c6de8) C:\Windows\system32\drivers\cfwids.sys
00:33:20.0029 3880 cfwids - ok
00:33:20.0052 3880 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
00:33:20.0054 3880 circlass - ok
00:33:20.0089 3880 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
00:33:20.0094 3880 CLFS - ok
00:33:20.0158 3880 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:33:20.0160 3880 clr_optimization_v2.0.50727_32 - ok
00:33:20.0225 3880 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:33:20.0227 3880 clr_optimization_v2.0.50727_64 - ok
00:33:20.0295 3880 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:33:20.0298 3880 clr_optimization_v4.0.30319_32 - ok
00:33:20.0349 3880 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:33:20.0351 3880 clr_optimization_v4.0.30319_64 - ok
00:33:20.0404 3880 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
00:33:20.0405 3880 CmBatt - ok
00:33:20.0433 3880 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
00:33:20.0434 3880 cmdide - ok
00:33:20.0496 3880 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
00:33:20.0502 3880 CNG - ok
00:33:20.0531 3880 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
00:33:20.0532 3880 Compbatt - ok
00:33:20.0563 3880 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
00:33:20.0564 3880 CompositeBus - ok
00:33:20.0569 3880 COMSysApp - ok
00:33:20.0592 3880 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
00:33:20.0593 3880 crcdisk - ok
00:33:20.0636 3880 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
00:33:20.0639 3880 CryptSvc - ok
00:33:20.0675 3880 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
00:33:20.0678 3880 CtClsFlt - ok
00:33:20.0736 3880 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
00:33:20.0745 3880 DcomLaunch - ok
00:33:20.0778 3880 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
00:33:20.0782 3880 defragsvc - ok
00:33:20.0813 3880 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
00:33:20.0815 3880 DfsC - ok
00:33:20.0851 3880 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
00:33:20.0856 3880 Dhcp - ok
00:33:20.0886 3880 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
00:33:20.0887 3880 discache - ok
00:33:20.0907 3880 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
00:33:20.0909 3880 Disk - ok
00:33:20.0952 3880 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
00:33:20.0956 3880 Dnscache - ok
00:33:21.0033 3880 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
00:33:21.0035 3880 DockLoginService - ok
00:33:21.0076 3880 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
00:33:21.0080 3880 dot3svc - ok
00:33:21.0113 3880 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
00:33:21.0116 3880 DPS - ok
00:33:21.0139 3880 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
00:33:21.0140 3880 drmkaud - ok
00:33:21.0251 3880 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
00:33:21.0263 3880 DXGKrnl - ok
00:33:21.0267 3880 EagleX64 - ok
00:33:21.0296 3880 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
00:33:21.0299 3880 EapHost - ok
00:33:21.0530 3880 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
00:33:21.0551 3880 ebdrv - ok
00:33:21.0691 3880 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
00:33:21.0694 3880 EFS - ok
00:33:21.0790 3880 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
00:33:21.0799 3880 ehRecvr - ok
00:33:21.0832 3880 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
00:33:21.0833 3880 ehSched - ok
00:33:21.0907 3880 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
00:33:21.0914 3880 elxstor - ok
00:33:21.0956 3880 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
00:33:21.0957 3880 ErrDev - ok
00:33:22.0016 3880 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
00:33:22.0022 3880 EventSystem - ok
00:33:22.0195 3880 EvtEng (b56d9602db5fe1c116b1ca5efd8e2e50) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
00:33:22.0212 3880 EvtEng - ok
00:33:22.0356 3880 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
00:33:22.0359 3880 exfat - ok
00:33:22.0393 3880 FACAP (2c1d443e14f376e8331f52f135dca9ef) C:\Windows\system32\DRIVERS\facap.sys
00:33:22.0396 3880 FACAP - ok
00:33:22.0618 3880 FAService (9a58f93651f095625ac9aab754d8d6fd) c:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
00:33:22.0629 3880 FAService - ok
00:33:22.0737 3880 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
00:33:22.0740 3880 fastfat - ok
00:33:22.0809 3880 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
00:33:22.0819 3880 Fax - ok
00:33:22.0844 3880 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
00:33:22.0844 3880 fdc - ok
00:33:22.0869 3880 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
00:33:22.0871 3880 fdPHost - ok
00:33:22.0890 3880 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
00:33:22.0892 3880 FDResPub - ok
00:33:22.0919 3880 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
00:33:22.0921 3880 FileInfo - ok
00:33:22.0941 3880 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
00:33:22.0942 3880 Filetrace - ok
00:33:22.0959 3880 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
00:33:22.0961 3880 flpydisk - ok
00:33:23.0000 3880 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
00:33:23.0004 3880 FltMgr - ok
00:33:23.0100 3880 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
00:33:23.0115 3880 FontCache - ok
00:33:23.0206 3880 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:33:23.0208 3880 FontCache3.0.0.0 - ok
00:33:23.0250 3880 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
00:33:23.0252 3880 FsDepends - ok
00:33:23.0284 3880 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
00:33:23.0285 3880 Fs_Rec - ok
00:33:23.0321 3880 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
00:33:23.0325 3880 fvevol - ok
00:33:23.0359 3880 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
00:33:23.0361 3880 gagp30kx - ok
00:33:23.0397 3880 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:33:23.0398 3880 GEARAspiWDM - ok
00:33:23.0498 3880 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
00:33:23.0499 3880 GoToAssist - ok
00:33:23.0575 3880 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
00:33:23.0585 3880 gpsvc - ok
00:33:23.0600 3880 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
00:33:23.0602 3880 hcw85cir - ok
00:33:23.0627 3880 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
00:33:23.0629 3880 HDAudBus - ok
00:33:23.0657 3880 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
00:33:23.0659 3880 HECIx64 - ok
00:33:23.0677 3880 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
00:33:23.0679 3880 HidBatt - ok
00:33:23.0702 3880 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
00:33:23.0704 3880 HidBth - ok
00:33:23.0722 3880 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
00:33:23.0723 3880 HidIr - ok
00:33:23.0752 3880 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
00:33:23.0755 3880 hidserv - ok
00:33:23.0803 3880 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
00:33:23.0805 3880 HidUsb - ok
00:33:23.0842 3880 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
00:33:23.0845 3880 hkmsvc - ok
00:33:23.0886 3880 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
00:33:23.0891 3880 HomeGroupListener - ok
00:33:23.0932 3880 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
00:33:23.0937 3880 HomeGroupProvider - ok
00:33:23.0963 3880 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
00:33:23.0965 3880 HpSAMD - ok
00:33:24.0023 3880 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
00:33:24.0026 3880 HTTP - ok
00:33:24.0046 3880 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
00:33:24.0047 3880 hwpolicy - ok
00:33:24.0083 3880 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
00:33:24.0085 3880 i8042prt - ok
00:33:24.0140 3880 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\DRIVERS\iaStor.sys
00:33:24.0146 3880 iaStor - ok
00:33:24.0255 3880 IAStorDataMgrSvc (31a0e93cdf29007d6c6fffb632f375ed) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:33:24.0256 3880 IAStorDataMgrSvc - ok
00:33:24.0309 3880 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
00:33:24.0314 3880 iaStorV - ok
00:33:24.0453 3880 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:33:24.0463 3880 idsvc - ok
00:33:24.0576 3880 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
00:33:24.0577 3880 iirsp - ok
00:33:24.0661 3880 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
00:33:24.0672 3880 IKEEXT - ok
00:33:24.0847 3880 IntcAzAudAddService (491dadcc74327fabc85e0ab80af8f204) C:\Windows\system32\drivers\RTKVHD64.sys
00:33:24.0871 3880 IntcAzAudAddService - ok
00:33:24.0958 3880 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
00:33:24.0959 3880 intelide - ok
00:33:25.0015 3880 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
00:33:25.0017 3880 intelppm - ok
00:33:25.0054 3880 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
00:33:25.0057 3880 IPBusEnum - ok
00:33:25.0087 3880 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:33:25.0089 3880 IpFilterDriver - ok
00:33:25.0149 3880 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
00:33:25.0157 3880 iphlpsvc - ok
00:33:25.0189 3880 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
00:33:25.0191 3880 IPMIDRV - ok
00:33:25.0224 3880 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
00:33:25.0227 3880 IPNAT - ok
00:33:25.0334 3880 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
00:33:25.0346 3880 iPod Service - ok
00:33:25.0357 3880 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
00:33:25.0358 3880 IRENUM - ok
00:33:25.0385 3880 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
00:33:25.0387 3880 isapnp - ok
00:33:25.0430 3880 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
00:33:25.0434 3880 iScsiPrt - ok
00:33:25.0475 3880 JMCR (3926c8c55a2cd2c94888be39b4beb629) C:\Windows\system32\DRIVERS\jmcr.sys
00:33:25.0478 3880 JMCR - ok
00:33:25.0494 3880 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
00:33:25.0495 3880 kbdclass - ok
00:33:25.0520 3880 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
00:33:25.0521 3880 kbdhid - ok
00:33:25.0555 3880 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:33:25.0558 3880 KeyIso - ok
00:33:25.0592 3880 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
00:33:25.0594 3880 KSecDD - ok
00:33:25.0633 3880 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
00:33:25.0636 3880 KSecPkg - ok
00:33:25.0670 3880 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
00:33:25.0671 3880 ksthunk - ok
00:33:25.0714 3880 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
00:33:25.0721 3880 KtmRm - ok
00:33:25.0763 3880 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
00:33:25.0769 3880 LanmanServer - ok
00:33:25.0807 3880 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
00:33:25.0812 3880 LanmanWorkstation - ok
00:33:25.0834 3880 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
00:33:25.0836 3880 lltdio - ok
00:33:25.0879 3880 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
00:33:25.0885 3880 lltdsvc - ok
00:33:25.0909 3880 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
00:33:25.0911 3880 lmhosts - ok
00:33:26.0027 3880 LMS (23d990150d56b670a62b21b9abdd45ee) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:33:26.0032 3880 LMS - ok
00:33:26.0071 3880 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
00:33:26.0073 3880 LSI_FC - ok
00:33:26.0098 3880 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
00:33:26.0100 3880 LSI_SAS - ok
00:33:26.0126 3880 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:33:26.0128 3880 LSI_SAS2 - ok
00:33:26.0150 3880 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:33:26.0152 3880 LSI_SCSI - ok
00:33:26.0183 3880 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
00:33:26.0185 3880 luafv - ok
00:33:26.0277 3880 McShield (82128f909cd5148556f6deb77b340532) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
00:33:26.0280 3880 McShield - ok
00:33:26.0317 3880 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
00:33:26.0320 3880 Mcx2Svc - ok
00:33:26.0341 3880 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
00:33:26.0342 3880 megasas - ok
00:33:26.0379 3880 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
00:33:26.0383 3880 MegaSR - ok
00:33:26.0412 3880 mfeapfk (fb752feb1ed4e660ff51712892905c04) C:\Windows\system32\drivers\mfeapfk.sys
00:33:26.0415 3880 mfeapfk - ok
00:33:26.0446 3880 mfeavfk (3257cf681999a47d8c552dfbbeb7844e) C:\Windows\system32\drivers\mfeavfk.sys
00:33:26.0450 3880 mfeavfk - ok
00:33:26.0477 3880 mfefire (a6cdfc6300e214d19da765253e3e3d20) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
00:33:26.0480 3880 mfefire - ok
00:33:26.0529 3880 mfefirek (00016d7ed29a95d6f7e7b6a3f591fd2d) C:\Windows\system32\drivers\mfefirek.sys
00:33:26.0535 3880 mfefirek - ok
00:33:26.0589 3880 mfehidk (39030c98198f02a2f3a1c3166bf56253) C:\Windows\system32\drivers\mfehidk.sys
00:33:26.0597 3880 mfehidk - ok
00:33:26.0634 3880 mfenlfk (217fa02439de74844b6a39aebeed24e1) C:\Windows\system32\DRIVERS\mfenlfk.sys
00:33:26.0635 3880 mfenlfk - ok
00:33:26.0659 3880 mferkdet (8474e6ee0b5eab108cf005c6c4956e75) C:\Windows\system32\drivers\mferkdet.sys
00:33:26.0661 3880 mferkdet - ok
00:33:26.0742 3880 mfevtp (bfcdf65f8513e396889a62dc1397273f) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
00:33:26.0744 3880 mfevtp - ok
00:33:26.0775 3880 mfewfpk (d4cf36f1eba374fcc35903ae4f4e46bc) C:\Windows\system32\drivers\mfewfpk.sys
00:33:26.0779 3880 mfewfpk - ok
00:33:26.0813 3880 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:33:26.0816 3880 MMCSS - ok
00:33:26.0848 3880 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
00:33:26.0850 3880 Modem - ok
00:33:26.0872 3880 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
00:33:26.0874 3880 monitor - ok
00:33:26.0909 3880 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
00:33:26.0911 3880 mouclass - ok
00:33:26.0944 3880 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
00:33:26.0945 3880 mouhid - ok
00:33:26.0973 3880 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
00:33:26.0975 3880 mountmgr - ok
00:33:27.0069 3880 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:33:27.0072 3880 MozillaMaintenance - ok
00:33:27.0112 3880 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
00:33:27.0115 3880 mpio - ok
00:33:27.0138 3880 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
00:33:27.0139 3880 mpsdrv - ok
00:33:27.0214 3880 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
00:33:27.0225 3880 MpsSvc - ok
00:33:27.0261 3880 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
00:33:27.0262 3880 MRxDAV - ok
00:33:27.0295 3880 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:33:27.0298 3880 mrxsmb - ok
00:33:27.0336 3880 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:33:27.0340 3880 mrxsmb10 - ok
00:33:27.0367 3880 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:33:27.0370 3880 mrxsmb20 - ok
00:33:27.0402 3880 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
00:33:27.0404 3880 msahci - ok
00:33:27.0443 3880 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
00:33:27.0446 3880 msdsm - ok
00:33:27.0488 3880 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
00:33:27.0492 3880 MSDTC - ok
00:33:27.0538 3880 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
00:33:27.0540 3880 Msfs - ok
00:33:27.0564 3880 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
00:33:27.0565 3880 mshidkmdf - ok
00:33:27.0591 3880 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
00:33:27.0592 3880 msisadrv - ok
00:33:27.0631 3880 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
00:33:27.0635 3880 MSiSCSI - ok
00:33:27.0639 3880 msiserver - ok
00:33:27.0656 3880 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
00:33:27.0657 3880 MSKSSRV - ok
00:33:27.0672 3880 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
00:33:27.0673 3880 MSPCLOCK - ok
00:33:27.0686 3880 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
00:33:27.0687 3880 MSPQM - ok
00:33:27.0741 3880 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
00:33:27.0746 3880 MsRPC - ok
00:33:27.0882 3880 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
00:33:27.0883 3880 mssmbios - ok
00:33:27.0915 3880 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
00:33:27.0916 3880 MSTEE - ok
00:33:27.0973 3880 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
00:33:27.0974 3880 MTConfig - ok
00:33:28.0157 3880 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
00:33:28.0159 3880 Mup - ok
00:33:28.0865 3880 MyWiFiDHCPDNS (a9bc2302fbdf52c8af4e2fc966288d21) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
00:33:28.0870 3880 MyWiFiDHCPDNS - ok
00:33:29.0616 3880 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
00:33:29.0624 3880 napagent - ok
00:33:30.0010 3880 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
00:33:30.0015 3880 NativeWifiP - ok
00:33:30.0986 3880 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
00:33:30.0997 3880 NDIS - ok
00:33:31.0074 3880 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
00:33:31.0075 3880 NdisCap - ok
00:33:31.0106 3880 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
00:33:31.0107 3880 NdisTapi - ok
00:33:31.0341 3880 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
00:33:31.0342 3880 Ndisuio - ok
00:33:31.0474 3880 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
00:33:31.0477 3880 NdisWan - ok
00:33:31.0506 3880 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
00:33:31.0507 3880 NDProxy - ok
00:33:31.0529 3880 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
00:33:31.0530 3880 NetBIOS - ok
00:33:31.0563 3880 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
00:33:31.0564 3880 NetBT - ok
00:33:31.0587 3880 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:33:31.0588 3880 Netlogon - ok
00:33:31.0625 3880 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
00:33:31.0628 3880 Netman - ok
00:33:31.0723 3880 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:33:31.0724 3880 NetMsmqActivator - ok
00:33:31.0727 3880 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:33:31.0729 3880 NetPipeActivator - ok
00:33:31.0761 3880 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
00:33:31.0764 3880 netprofm - ok
00:33:31.0767 3880 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:33:31.0769 3880 NetTcpActivator - ok
00:33:31.0772 3880 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:33:31.0773 3880 NetTcpPortSharing - ok
00:33:32.0201 3880 NETw5s64 (18555f48844c2861d9dce8f2b7223ae5) C:\Windows\system32\DRIVERS\NETw5s64.sys
00:33:32.0237 3880 NETw5s64 - ok
00:33:32.0350 3880 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
00:33:32.0351 3880 nfrd960 - ok
00:33:32.0390 3880 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
00:33:32.0393 3880 NlaSvc - ok
00:33:32.0420 3880 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
00:33:32.0420 3880 Npfs - ok
00:33:32.0437 3880 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
00:33:32.0438 3880 nsi - ok
00:33:32.0458 3880 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
00:33:32.0459 3880 nsiproxy - ok
00:33:32.0560 3880 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
00:33:32.0568 3880 Ntfs - ok
00:33:32.0686 3880 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
00:33:32.0687 3880 Null - ok
00:33:32.0751 3880 nusb3hub (285acec1b13a15ba520aae06bacb9cff) C:\Windows\system32\DRIVERS\nusb3hub.sys
00:33:32.0753 3880 nusb3hub - ok
00:33:32.0784 3880 nusb3xhc (f6d625ff7b56bb6ea063f0d3a5bbc996) C:\Windows\system32\DRIVERS\nusb3xhc.sys
00:33:32.0787 3880 nusb3xhc - ok
00:33:32.0819 3880 NVHDA (e20abd5b229760158f753ca90b97e090) C:\Windows\system32\drivers\nvhda64v.sys
00:33:32.0822 3880 NVHDA - ok
00:33:33.0595 3880 nvlddmkm (011f0596d167d073e6813ae88e7947a9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:33:33.0645 3880 nvlddmkm - ok
00:33:33.0778 3880 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
00:33:33.0781 3880 nvraid - ok
00:33:33.0806 3880 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
00:33:33.0809 3880 nvstor - ok
00:33:33.0841 3880 nvsvc (e72422f9c55078dfa298ac7aa0a87970) C:\Windows\system32\nvvsvc.exe
00:33:33.0845 3880 nvsvc - ok
00:33:33.0881 3880 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
00:33:33.0884 3880 nv_agp - ok
00:33:33.0920 3880 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
00:33:33.0922 3880 ohci1394 - ok
00:33:34.0017 3880 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:33:34.0020 3880 ose - ok
00:33:34.0412 3880 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:33:34.0432 3880 osppsvc - ok
00:33:34.0563 3880 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:33:34.0569 3880 p2pimsvc - ok
00:33:34.0608 3880 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
00:33:34.0616 3880 p2psvc - ok
00:33:34.0667 3880 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
00:33:34.0669 3880 Parport - ok
00:33:34.0710 3880 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
00:33:34.0712 3880 partmgr - ok
00:33:34.0741 3880 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
00:33:34.0746 3880 PcaSvc - ok
00:33:34.0789 3880 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
00:33:34.0792 3880 pci - ok
00:33:34.0823 3880 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
00:33:34.0825 3880 pciide - ok
00:33:34.0856 3880 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
00:33:34.0860 3880 pcmcia - ok
00:33:34.0889 3880 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
00:33:34.0891 3880 pcw - ok
00:33:35.0038 3880 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
00:33:35.0047 3880 PEAUTH - ok
00:33:35.0133 3880 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
00:33:35.0136 3880 PerfHost - ok
00:33:35.0334 3880 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
00:33:35.0343 3880 pla - ok
00:33:35.0479 3880 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
00:33:35.0487 3880 PlugPlay - ok
00:33:35.0563 3880 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
00:33:35.0566 3880 PNRPAutoReg - ok
00:33:35.0604 3880 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:33:35.0611 3880 PNRPsvc - ok
00:33:35.0663 3880 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
00:33:35.0670 3880 PolicyAgent - ok
00:33:35.0710 3880 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
00:33:35.0715 3880 Power - ok
00:33:35.0784 3880 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
00:33:35.0787 3880 PptpMiniport - ok
00:33:35.0813 3880 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
00:33:35.0815 3880 Processor - ok
00:33:35.0861 3880 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
00:33:35.0866 3880 ProfSvc - ok
00:33:35.0911 3880 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:33:35.0913 3880 ProtectedStorage - ok
00:33:35.0949 3880 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
00:33:35.0952 3880 Psched - ok
00:33:35.0970 3880 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
00:33:35.0972 3880 PxHlpa64 - ok
00:33:35.0997 3880 qicflt (0928bd20273625622722fe1de5bbde57) C:\Windows\system32\DRIVERS\qicflt.sys
00:33:35.0999 3880 qicflt - ok
00:33:36.0111 3880 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
00:33:36.0121 3880 ql2300 - ok
00:33:36.0240 3880 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
00:33:36.0242 3880 ql40xx - ok
00:33:36.0279 3880 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
00:33:36.0284 3880 QWAVE - ok
00:33:36.0311 3880 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
00:33:36.0312 3880 QWAVEdrv - ok
00:33:36.0325 3880 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
00:33:36.0326 3880 RasAcd - ok
00:33:36.0352 3880 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
00:33:36.0353 3880 RasAgileVpn - ok
00:33:36.0376 3880 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
00:33:36.0380 3880 RasAuto - ok
00:33:36.0418 3880 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:33:36.0420 3880 Rasl2tp - ok
00:33:36.0468 3880 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
00:33:36.0475 3880 RasMan - ok
00:33:36.0496 3880 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
00:33:36.0498 3880 RasPppoe - ok
00:33:36.0512 3880 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
00:33:36.0514 3880 RasSstp - ok
00:33:36.0560 3880 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
00:33:36.0564 3880 rdbss - ok
00:33:36.0592 3880 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
00:33:36.0594 3880 rdpbus - ok
00:33:36.0625 3880 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:33:36.0627 3880 RDPCDD - ok
00:33:36.0638 3880 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
00:33:36.0640 3880 RDPENCDD - ok
00:33:36.0652 3880 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
00:33:36.0653 3880 RDPREFMP - ok
00:33:36.0702 3880 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
00:33:36.0705 3880 RDPWD - ok
00:33:36.0751 3880 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
00:33:36.0755 3880 rdyboost - ok
00:33:36.0881 3880 RegSrvc (0aa473966357c4a41b5eb19649eb6e5e) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
00:33:36.0891 3880 RegSrvc - ok
00:33:36.0966 3880 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
00:33:36.0970 3880 RemoteAccess - ok
00:33:37.0087 3880 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
00:33:37.0093 3880 RemoteRegistry - ok
00:33:37.0117 3880 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
00:33:37.0121 3880 RpcEptMapper - ok
00:33:37.0150 3880 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
00:33:37.0153 3880 RpcLocator - ok
00:33:37.0238 3880 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
00:33:37.0247 3880 RpcSs - ok
00:33:37.0324 3880 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
00:33:37.0326 3880 rspndr - ok
00:33:37.0374 3880 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
00:33:37.0379 3880 RTL8167 - ok
00:33:37.0408 3880 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:33:37.0411 3880 SamSs - ok
00:33:37.0707 3880 SBAMSvc (18530d2f605f1ec48ca20a7b184ccbcc) C:\Program Files (x86)\GFI Software\VIPRE\SBAMSvc.exe
00:33:37.0723 3880 SBAMSvc - ok
00:33:37.0851 3880 sbapifs (6e342316e72f4b6fa39c99e06373a1a3) C:\Windows\system32\DRIVERS\sbapifs.sys
00:33:37.0853 3880 sbapifs - ok
00:33:37.0888 3880 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
00:33:37.0891 3880 sbp2port - ok
00:33:37.0988 3880 SBPIMSvc (2815772894855506e94008cc0e602738) C:\Program Files (x86)\GFI Software\VIPRE\SBPIMSvc.exe
00:33:37.0991 3880 SBPIMSvc - ok
00:33:38.0024 3880 SBRE (aae41efbad69b78513875c2eb3de7008) C:\Windows\system32\drivers\SBREdrv.sys
00:33:38.0026 3880 SBRE - ok
00:33:38.0045 3880 sbwtis (f9aa83a88eabe22b29d8f293c21aaa4d) C:\Windows\system32\DRIVERS\sbwtis.sys
00:33:38.0047 3880 sbwtis - ok
00:33:38.0089 3880 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
00:33:38.0094 3880 SCardSvr - ok
00:33:38.0113 3880 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
00:33:38.0115 3880 scfilter - ok
00:33:38.0213 3880 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
00:33:38.0230 3880 Schedule - ok
00:33:38.0281 3880 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
00:33:38.0283 3880 SCPolicySvc - ok
00:33:38.0343 3880 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
00:33:38.0348 3880 SDRSVC - ok
00:33:38.0391 3880 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
00:33:38.0392 3880 secdrv - ok
00:33:38.0440 3880 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
00:33:38.0443 3880 seclogon - ok
00:33:38.0475 3880 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
00:33:38.0479 3880 SENS - ok
00:33:38.0494 3880 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
00:33:38.0498 3880 SensrSvc - ok
00:33:38.0514 3880 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
00:33:38.0515 3880 Serenum - ok
00:33:38.0544 3880 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
00:33:38.0546 3880 Serial - ok
00:33:38.0575 3880 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
00:33:38.0577 3880 sermouse - ok
00:33:38.0617 3880 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
00:33:38.0621 3880 SessionEnv - ok
00:33:38.0645 3880 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
00:33:38.0646 3880 sffdisk - ok
00:33:38.0665 3880 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
00:33:38.0666 3880 sffp_mmc - ok
00:33:38.0674 3880 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
00:33:38.0675 3880 sffp_sd - ok
00:33:38.0697 3880 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
00:33:38.0698 3880 sfloppy - ok
00:33:38.0833 3880 SftService (e1974a92ac0914a3859359a0a8c82c68) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
00:33:38.0842 3880 SftService - ok
00:33:38.0889 3880 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
00:33:38.0895 3880 SharedAccess - ok
00:33:39.0048 3880 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
00:33:39.0056 3880 ShellHWDetection - ok
00:33:39.0130 3880 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:33:39.0132 3880 SiSRaid2 - ok
00:33:39.0162 3880 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
00:33:39.0164 3880 SiSRaid4 - ok
00:33:39.0260 3880 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files (x86)\Skype\Updater\Updater.exe
00:33:39.0263 3880 SkypeUpdate - ok
00:33:39.0290 3880 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
00:33:39.0292 3880 Smb - ok
00:33:39.0331 3880 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
00:33:39.0335 3880 SNMPTRAP - ok
00:33:39.0384 3880 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
00:33:39.0385 3880 spldr - ok
00:33:39.0468 3880 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
00:33:39.0478 3880 Spooler - ok
00:33:39.0748 3880 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
00:33:39.0766 3880 sppsvc - ok
00:33:39.0886 3880 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
00:33:39.0890 3880 sppuinotify - ok
00:33:39.0983 3880 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
00:33:39.0986 3880 sprtsvc_DellSupportCenter - ok
00:33:40.0056 3880 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
00:33:40.0063 3880 srv - ok
00:33:40.0108 3880 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
00:33:40.0113 3880 srv2 - ok
00:33:40.0140 3880 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
00:33:40.0143 3880 srvnet - ok
00:33:40.0180 3880 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
00:33:40.0186 3880 SSDPSRV - ok
00:33:40.0210 3880 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
00:33:40.0215 3880 SstpSvc - ok
00:33:40.0243 3880 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\Windows\system32\DRIVERS\stdcfltn.sys
00:33:40.0244 3880 stdcfltn - ok
00:33:40.0343 3880 Stereo Service (c6539a0cb1ebff488d3d4b070c4f17f8) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
00:33:40.0347 3880 Stereo Service - ok
00:33:40.0375 3880 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
00:33:40.0376 3880 stexstor - ok
00:33:40.0441 3880 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
00:33:40.0451 3880 stisvc - ok
00:33:40.0476 3880 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
00:33:40.0476 3880 swenum - ok
00:33:40.0531 3880 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
00:33:40.0540 3880 swprv - ok
00:33:40.0653 3880 SynTP (36f506c894e1ea59c65faf6398bdf49a) C:\Windows\system32\DRIVERS\SynTP.sys
00:33:40.0671 3880 SynTP - ok
00:33:40.0886 3880 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
00:33:40.0895 3880 SysMain - ok
00:33:41.0027 3880 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
00:33:41.0032 3880 TabletInputService - ok
00:33:41.0068 3880 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
00:33:41.0075 3880 TapiSrv - ok
00:33:41.0132 3880 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
00:33:41.0136 3880 TBS - ok
00:33:41.0316 3880 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
00:33:41.0339 3880 Tcpip - ok
00:33:41.0567 3880 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
00:33:41.0582 3880 TCPIP6 - ok
00:33:41.0655 3880 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
00:33:41.0657 3880 tcpipreg - ok
00:33:41.0683 3880 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
00:33:41.0684 3880 TDPIPE - ok
00:33:41.0712 3880 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
00:33:41.0714 3880 TDTCP - ok
00:33:41.0754 3880 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
00:33:41.0757 3880 tdx - ok
00:33:41.0786 3880 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
00:33:41.0788 3880 TermDD - ok
00:33:41.0860 3880 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
00:33:41.0872 3880 TermService - ok
00:33:41.0897 3880 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
00:33:41.0898 3880 Themes - ok
00:33:41.0931 3880 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:33:41.0934 3880 THREADORDER - ok
00:33:41.0960 3880 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
00:33:41.0965 3880 TrkWks - ok
00:33:42.0015 3880 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
00:33:42.0018 3880 TrustedInstaller - ok
00:33:42.0075 3880 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:33:42.0077 3880 tssecsrv - ok
00:33:42.0112 3880 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
00:33:42.0114 3880 TsUsbFlt - ok
00:33:42.0149 3880 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
00:33:42.0152 3880 tunnel - ok
00:33:42.0176 3880 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
00:33:42.0177 3880 TurboB - ok
00:33:42.0269 3880 TurboBoost (b206be1174d5964d49a56bb6c4e0524a) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
00:33:42.0271 3880 TurboBoost - ok
00:33:42.0301 3880 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
00:33:42.0303 3880 uagp35 - ok
00:33:42.0355 3880 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
00:33:42.0360 3880 udfs - ok
00:33:42.0399 3880 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
00:33:42.0403 3880 UI0Detect - ok
00:33:42.0443 3880 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
00:33:42.0445 3880 uliagpkx - ok
00:33:42.0476 3880 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
00:33:42.0478 3880 umbus - ok
00:33:42.0497 3880 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
00:33:42.0499 3880 UmPass - ok
00:33:42.0747 3880 UNS (cbdee152d73200ee49031a26310b9d3e) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:33:42.0761 3880 UNS - ok
00:33:42.0889 3880 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
00:33:42.0897 3880 upnphost - ok
00:33:43.0049 3880 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
00:33:43.0050 3880 USBAAPL64 - ok
00:33:43.0147 3880 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
00:33:43.0149 3880 usbccgp - ok
00:33:43.0198 3880 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
00:33:43.0200 3880 usbcir - ok
00:33:43.0237 3880 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
00:33:43.0239 3880 usbehci - ok
00:33:43.0284 3880 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
00:33:43.0288 3880 usbhub - ok
00:33:43.0322 3880 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
00:33:43.0324 3880 usbohci - ok
00:33:43.0355 3880 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
00:33:43.0357 3880 usbprint - ok
00:33:43.0387 3880 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
00:33:43.0390 3880 USBSTOR - ok
00:33:43.0406 3880 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
00:33:43.0407 3880 usbuhci - ok
00:33:43.0435 3880 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
00:33:43.0438 3880 usbvideo - ok
00:33:43.0468 3880 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
00:33:43.0472 3880 UxSms - ok
00:33:43.0498 3880 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
00:33:43.0501 3880 VaultSvc - ok
00:33:43.0535 3880 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
00:33:43.0537 3880 vdrvroot - ok
00:33:43.0595 3880 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
00:33:43.0604 3880 vds - ok
00:33:43.0650 3880 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
00:33:43.0651 3880 vga - ok
00:33:43.0673 3880 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
00:33:43.0675 3880 VgaSave - ok
00:33:43.0717 3880 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
00:33:43.0720 3880 vhdmp - ok
00:33:43.0741 3880 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
00:33:43.0742 3880 viaide - ok
00:33:43.0764 3880 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
00:33:43.0766 3880 volmgr - ok
00:33:43.0815 3880 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
00:33:43.0820 3880 volmgrx - ok
00:33:43.0885 3880 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
00:33:43.0889 3880 volsnap - ok
00:33:43.0922 3880 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
00:33:43.0925 3880 vsmraid - ok
00:33:44.0053 3880 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
00:33:44.0070 3880 VSS - ok
00:33:44.0200 3880 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
00:33:44.0201 3880 vwifibus - ok
00:33:44.0270 3880 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
00:33:44.0271 3880 vwififlt - ok
00:33:44.0303 3880 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
00:33:44.0305 3880 vwifimp - ok
00:33:44.0360 3880 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
00:33:44.0368 3880 W32Time - ok
00:33:44.0401 3880 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
00:33:44.0403 3880 WacomPen - ok
00:33:44.0441 3880 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
00:33:44.0443 3880 WANARP - ok
00:33:44.0449 3880 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
00:33:44.0451 3880 Wanarpv6 - ok
00:33:44.0559 3880 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
00:33:44.0574 3880 WatAdminSvc - ok
00:33:44.0685 3880 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
00:33:44.0700 3880 wbengine - ok
00:33:44.0819 3880 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
00:33:44.0825 3880 WbioSrvc - ok
00:33:44.0878 3880 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
00:33:44.0886 3880 wcncsvc - ok
00:33:44.0903 3880 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
00:33:44.0908 3880 WcsPlugInService - ok
00:33:45.0022 3880 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
00:33:45.0023 3880 Wd - ok
00:33:45.0138 3880 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
00:33:45.0146 3880 Wdf01000 - ok
00:33:45.0172 3880 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:33:45.0177 3880 WdiServiceHost - ok
00:33:45.0183 3880 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:33:45.0187 3880 WdiSystemHost - ok
00:33:45.0238 3880 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
00:33:45.0244 3880 WebClient - ok
00:33:45.0298 3880 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
00:33:45.0304 3880 Wecsvc - ok
00:33:45.0321 3880 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
00:33:45.0326 3880 wercplsupport - ok
00:33:45.0343 3880 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
00:33:45.0345 3880 WerSvc - ok
00:33:45.0393 3880 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
00:33:45.0395 3880 WfpLwf - ok
00:33:45.0444 3880 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
00:33:45.0447 3880 WimFltr - ok
00:33:45.0466 3880 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
00:33:45.0468 3880 WIMMount - ok
00:33:45.0560 3880 WinDefend - ok
00:33:45.0575 3880 WinHttpAutoProxySvc - ok
00:33:45.0661 3880 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
00:33:45.0664 3880 Winmgmt - ok
00:33:45.0814 3880 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
00:33:45.0839 3880 WinRM - ok
00:33:45.0979 3880 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
00:33:45.0981 3880 WinUsb - ok
00:33:46.0055 3880 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
00:33:46.0068 3880 Wlansvc - ok
00:33:46.0096 3880 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
00:33:46.0096 3880 WmiAcpi - ok
00:33:46.0157 3880 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
00:33:46.0160 3880 wmiApSrv - ok
00:33:46.0212 3880 WMPNetworkSvc - ok
00:33:46.0232 3880 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
00:33:46.0236 3880 WPCSvc - ok
00:33:46.0271 3880 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
00:33:46.0276 3880 WPDBusEnum - ok
00:33:46.0298 3880 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
00:33:46.0300 3880 ws2ifsl - ok
00:33:46.0332 3880 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
00:33:46.0336 3880 wscsvc - ok
00:33:46.0343 3880 WSearch - ok
00:33:46.0519 3880 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
00:33:46.0536 3880 wuauserv - ok
00:33:46.0660 3880 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
00:33:46.0662 3880 WudfPf - ok
00:33:46.0689 3880 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:33:46.0692 3880 WUDFRd - ok
00:33:46.0725 3880 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
00:33:46.0729 3880 wudfsvc - ok
00:33:46.0777 3880 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
00:33:46.0783 3880 WwanSvc - ok
00:33:46.0815 3880 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
00:33:47.0225 3880 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
00:33:47.0225 3880 \Device\Harddisk0\DR0 - detected TDSS File System (1)
00:33:47.0230 3880 Boot (0x1200) (18ae7c98ae07d726ef8ace2808fa44c5) \Device\Harddisk0\DR0\Partition0
00:33:47.0234 3880 \Device\Harddisk0\DR0\Partition0 - ok
00:33:47.0271 3880 Boot (0x1200) (c591cca9af08efa701645c62131a8a43) \Device\Harddisk0\DR0\Partition1
00:33:47.0274 3880 \Device\Harddisk0\DR0\Partition1 - ok
00:33:47.0275 3880 ============================================================
00:33:47.0275 3880 Scan finished
00:33:47.0275 3880 ============================================================
00:33:47.0287 5684 Detected object count: 1
00:33:47.0287 5684 Actual detected object count: 1
00:33:57.0686 5684 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
00:33:57.0686 5684 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

#4 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 27 July 2012 - 11:56 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-28 00:36:03
-----------------------------
00:36:03.196 OS Version: Windows x64 6.1.7601 Service Pack 1
00:36:03.196 Number of processors: 8 586 0x1E05
00:36:03.197 ComputerName: JESSICA-PC UserName: admin
00:36:04.509 Initialize success
00:36:50.173 AVAST engine defs: 12072701
00:36:53.905 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
00:36:53.911 Disk 0 Vendor: SAMSUNG_ 2AK1 Size: 610480MB BusType: 3
00:36:53.931 Disk 0 MBR read successfully
00:36:53.937 Disk 0 MBR scan
00:36:53.947 Disk 0 Windows VISTA default MBR code
00:36:53.954 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
00:36:53.974 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 80325
00:36:53.986 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 595440 MB offset 30800325
00:36:54.012 Disk 0 scanning C:\Windows\system32\drivers
00:37:07.527 Service scanning
00:37:30.335 Modules scanning
00:37:30.353 Disk 0 trace - called modules:
00:37:30.373 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys iaStor.sys hal.dll
00:37:30.714 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800660b060]
00:37:30.725 3 CLASSPNP.SYS[fffff88001a5143f] -> nt!IofCallDriver -> [0xfffffa80064dbb70]
00:37:30.737 5 stdcfltn.sys[fffff88001d80c52] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80062ed050]
00:37:32.742 AVAST engine scan C:\Windows
00:37:35.500 AVAST engine scan C:\Windows\system32
00:41:55.493 AVAST engine scan C:\Windows\system32\drivers
00:42:10.465 AVAST engine scan C:\Users\admin
00:49:12.124 AVAST engine scan C:\ProgramData
00:50:38.954 Scan finished successfully
00:55:32.746 Disk 0 MBR has been saved successfully to "C:\Users\admin\Documents\MBR.dat"
00:55:32.787 The log file has been saved successfully to "C:\Users\admin\Documents\aswMBR.txt"

#5 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 28 July 2012 - 01:35 AM

C:\Users\Jessica\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZRMV2WS\registrybooster.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VTUOQGEN\index-functions[1].js Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\ish1040920165\defaultOffer\offer_code.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\ish1040920165\defaultOffer\offer_html.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\ish79427967\defaultOffer\offer_code.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\ish79427967\defaultOffer\offer_html.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\mia8D31.tmp\data\OFFLINE\D038292B\DBD9B16A\Launcher.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\mia8D31.tmp\data\OFFLINE\D038292B\DBD9B16A\rbmonitor.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\mia8D31.tmp\data\OFFLINE\D038292B\DBD9B16A\rbnotifier.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\mia8D31.tmp\data\OFFLINE\D038292B\DBD9B16A\rb_move_serial.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\mia8D31.tmp\data\OFFLINE\D038292B\DBD9B16A\rb_ubm.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\Local\Temp\mia8D31.tmp\data\OFFLINE\D038292B\DBD9B16A\registrybooster.exe Win32/RegistryBooster application cleaned by deleting - quarantined
C:\Users\Jessica\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\7560f91-5c1f7955 probably a variant of Java/TrojanDownloader.OpenStream.NCC trojan cleaned by deleting - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:04 PM

Posted 28 July 2012 - 02:35 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 28 July 2012 - 06:14 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by admin (administrator) on 28-07-2012 at 19:12:27
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® WiFi Link 1000 BGN = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Wireless Network Connection 2" address=192.168.16.2 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Jessica-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : carolina.rr.com

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 00-26-C7-B6-26-17
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-26-C7-B6-26-17
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : CD-DL.TEST
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F0-4D-A2-5E-CA-8C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : carolina.rr.com
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 00-26-C7-B6-26-16
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5f2:73fb:85db:fdf4%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, July 28, 2012 5:06:39 PM
Lease Expires . . . . . . . . . . : Saturday, July 28, 2012 8:06:39 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 184559303
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-8E-6C-68-F0-4D-A2-5E-CA-8C
DNS Servers . . . . . . . . . . . : 209.18.47.61
209.18.47.62
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:247d:3095:b44a:b118(Preferred)
Link-local IPv6 Address . . . . . : fe80::247d:3095:b44a:b118%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.carolina.rr.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : carolina.rr.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #8
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: google.com
Addresses: 2607:f8b0:4002:802::1000
74.125.130.100
74.125.130.101
74.125.130.102
74.125.130.113
74.125.130.138
74.125.130.139


Pinging google.com [173.194.37.71] with 32 bytes of data:
Reply from 173.194.37.71: bytes=32 time=26ms TTL=55
Reply from 173.194.37.71: bytes=32 time=27ms TTL=55

Ping statistics for 173.194.37.71:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 27ms, Average = 26ms
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=45ms TTL=53
Reply from 209.191.122.70: bytes=32 time=45ms TTL=53

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 45ms, Maximum = 45ms, Average = 45ms
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 2ms, Maximum = 3ms, Average = 2ms
===========================================================================
Interface List
14...00 26 c7 b6 26 17 ......Microsoft Virtual WiFi Miniport Adapter #2
13...00 26 c7 b6 26 17 ......Microsoft Virtual WiFi Miniport Adapter
11...f0 4d a2 5e ca 8c ......Realtek PCIe GBE Family Controller
10...00 26 c7 b6 26 16 ......Intel® WiFi Link 1000 BGN
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #8
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.6 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.6 281
192.168.0.6 255.255.255.255 On-link 192.168.0.6 281
192.168.0.255 255.255.255.255 On-link 192.168.0.6 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.6 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.6 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:9d38:953c:247d:3095:b44a:b118/128
On-link
10 281 fe80::/64 On-link
15 306 fe80::/64 On-link
10 281 fe80::5f2:73fb:85db:fdf4/128
On-link
15 306 fe80::247d:3095:b44a:b118/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/28/2012 05:06:34 PM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: The McShield scanning service cannot find any configuration in the registry

Error: (07/28/2012 03:14:05 PM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: The McShield scanning service cannot find any configuration in the registry

Error: (07/28/2012 01:31:53 PM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: The McShield scanning service cannot find any configuration in the registry

Error: (07/28/2012 00:57:21 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/28/2012 00:57:18 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/28/2012 00:14:10 AM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: The McShield scanning service cannot find any configuration in the registry

Error: (07/28/2012 00:02:38 AM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: The McShield scanning service cannot find any configuration in the registry

Error: (07/27/2012 11:59:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/27/2012 11:59:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/27/2012 05:43:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14493


System errors:
=============
Error: (07/28/2012 05:10:25 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Rapid Storage Technology service failed to start due to the following error:
%%1053

Error: (07/28/2012 05:10:25 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel® Rapid Storage Technology service to connect.

Error: (07/28/2012 05:07:34 PM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service terminated with service-specific error %%5046.

Error: (07/28/2012 03:15:05 PM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service terminated with service-specific error %%5046.

Error: (07/28/2012 03:13:57 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 3:12:33 PM on ?7/?28/?2012 was unexpected.

Error: (07/28/2012 01:32:53 PM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service terminated with service-specific error %%5046.

Error: (07/28/2012 00:17:12 AM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service depends on the Peer Networking Identity Manager service which failed to start because of the following error:
%%1053

Error: (07/28/2012 00:17:12 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Networking Identity Manager service which failed to start because of the following error:
%%1053

Error: (07/28/2012 00:17:12 AM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Identity Manager service failed to start due to the following error:
%%1053

Error: (07/28/2012 00:17:12 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Peer Networking Identity Manager service to connect.


Microsoft Office Sessions:
=========================
Error: (07/28/2012 05:06:34 PM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description:

Error: (07/28/2012 03:14:05 PM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description:

Error: (07/28/2012 01:31:53 PM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description:

Error: (07/28/2012 00:57:21 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\admin\Downloads\esetsmartinstaller_enu.exe

Error: (07/28/2012 00:57:18 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\admin\Downloads\esetsmartinstaller_enu.exe

Error: (07/28/2012 00:14:10 AM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description:

Error: (07/28/2012 00:02:38 AM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description:

Error: (07/27/2012 11:59:23 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/27/2012 11:59:23 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/27/2012 05:43:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14493


=========================== Installed Programs ============================

AccelerometerP11 (Version: 2.00.11.15)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.268)
Adobe Flash Player 11 Plugin (Version: 11.3.300.268)
Adobe Reader 9.1.2 (Version: 9.1.2)
Advanced Audio FX Engine (Version: 1.12.05)
Any Flv Converter 2.0.0
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
AutoHotkey 1.0.48.05 (Version: 1.0.48.05)
Banctec Service Agreement (Version: 2.0.0)
Bonjour (Version: 3.0.0.10)
CodeBlocks (Version: 10.05)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.48)
Dell DataSafe Online (Version: 1.2.0011)
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Support Software) (Version: 2.5.09100)
Dell Webcam Central (Version: 2.00.35)
DivX Setup (Version: 2.6.1.5)
Download Updater (AOL LLC)
ESET Online Scanner v3
Face Recognition (Version: 3.0.56.1)
GIMP 2.8.0 (Version: 2.8.0)
Google Chrome (Version: 20.0.1132.57)
GoToAssist 8.0.0.514
iCloud (Version: 1.1.0.40)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® PROSet/Wireless WiFi Software (Version: 13.02.1000)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Internet Explorer (Version: 8)
IrfanView (remove only) (Version: 4.32)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 21 (64-bit) (Version: 6.0.210)
Java™ 6 Update 33 (Version: 6.0.330)
JMicron Flash Media Controller Driver (Version: 1.0.41.2)
Junk Mail filter update (Version: 14.0.8089.726)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MapleStory
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nexon Game Manager
NVIDIA Display Control Panel (Version: 6.14.12.5939)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.5939)
Orbit Downloader
Pando Media Booster (Version: 2.3.6.0)
Plants vs. Zombies
Quickset64 (Version: 10.8.5)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.6194)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.4.0)
Roxio Burn (Version: 1.01)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.9 (Version: 5.9.123)
Synaptics Pointing Device Driver (Version: 15.1.4.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VIPRE Antivirus (Version: 5.2.5162)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Xvid Video Codec (Version: 1.3.2)

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 6076.38 MB
Available physical RAM: 3814.04 MB
Total Pagefile: 12150.95 MB
Available Pagefile: 9616.45 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.49 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:581.48 GB) (Free:505.73 GB) NTFS

========================= Users: ========================================

User accounts for \\JESSICA-PC

admin Administrator Guest
Jessica


**** End of log ****

Farbar Service Scanner Version: 26-07-2012
Ran by admin (administrator) on 28-07-2012 at 19:14:24
Running from "C:\Users\admin\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Disabled
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:04 PM

Posted 28 July 2012 - 06:16 PM

Malwarebytes log?

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#9 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 28 July 2012 - 06:28 PM

# AdwCleaner v1.703 - Logfile created 07/28/2012 at 19:15:16
# Updated 20/07/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : admin - JESSICA-PC
# Running from : C:\Users\admin\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\admin\AppData\Local\Conduit
Folder Deleted : C:\Users\Jessica\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Jessica\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\admin\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\admin\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\admin\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vhlqh8eh.default\Smartbar
Folder Deleted : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vhlqh8eh.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612}
Folder Deleted : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vhlqh8eh.default\extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Folder Deleted : C:\ProgramData\WeCareReminder
Folder Deleted : C:\Program Files (x86)\Complitly
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
File Deleted : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vhlqh8eh.default\searchplugins\Conduit.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml

***** [Registry] *****

Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=2c3e96c80000000000000026c7b62617&tlver=1.4.19.19&affID=17161 --> hxxp://www.google.com

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Jessica\AppData\Roaming\Mozilla\Firefox\Profiles\42rtrv6s.default\prefs.js

[OK] File is clean.

Profile name : default
File : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\vhlqh8eh.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v20.0.1132.57

File : C:\Users\Jessica\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted : "description": "The fastest way to search the web.",

*************************

AdwCleaner[S1].txt - [5302 octets] - [28/07/2012 19:15:16]

########## EOF - C:\AdwCleaner[S1].txt - [5430 octets] ##########

this one?:

2012/07/28 13:38:55 -0400 JESSICA-PC admin MESSAGE Starting protection
2012/07/28 13:38:55 -0400 JESSICA-PC admin MESSAGE Executing scheduled update: Daily
2012/07/28 13:38:59 -0400 JESSICA-PC admin MESSAGE Protection started successfully
2012/07/28 13:39:02 -0400 JESSICA-PC admin MESSAGE Starting IP protection
2012/07/28 13:39:04 -0400 JESSICA-PC admin MESSAGE IP Protection started successfully
2012/07/28 13:39:05 -0400 JESSICA-PC admin MESSAGE Scheduled update executed successfully: database updated from version v2012.07.03.05 to version v2012.07.28.06
2012/07/28 13:39:05 -0400 JESSICA-PC admin MESSAGE Starting database refresh
2012/07/28 13:39:05 -0400 JESSICA-PC admin MESSAGE Stopping IP protection
2012/07/28 13:40:17 -0400 JESSICA-PC admin MESSAGE IP Protection stopped
2012/07/28 13:40:19 -0400 JESSICA-PC admin MESSAGE Database refreshed successfully
2012/07/28 13:40:19 -0400 JESSICA-PC admin MESSAGE Starting IP protection
2012/07/28 13:40:21 -0400 JESSICA-PC admin MESSAGE IP Protection started successfully
2012/07/28 15:15:39 -0400 JESSICA-PC admin MESSAGE Starting protection
2012/07/28 15:15:53 -0400 JESSICA-PC admin MESSAGE Protection started successfully
2012/07/28 15:15:56 -0400 JESSICA-PC admin MESSAGE Starting IP protection
2012/07/28 15:15:59 -0400 JESSICA-PC admin MESSAGE IP Protection started successfully
2012/07/28 17:10:33 -0400 JESSICA-PC admin MESSAGE Starting protection
2012/07/28 17:10:38 -0400 JESSICA-PC admin MESSAGE Protection started successfully
2012/07/28 17:10:41 -0400 JESSICA-PC admin MESSAGE Starting IP protection
2012/07/28 17:10:43 -0400 JESSICA-PC admin MESSAGE IP Protection started successfully
2012/07/28 19:23:21 -0400 JESSICA-PC admin MESSAGE Starting protection
2012/07/28 19:23:25 -0400 JESSICA-PC admin MESSAGE Protection started successfully
2012/07/28 19:23:28 -0400 JESSICA-PC admin MESSAGE Starting IP protection
2012/07/28 19:23:30 -0400 JESSICA-PC admin MESSAGE IP Protection started successfully

#10 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 28 July 2012 - 06:29 PM

or wait is it this?:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.28.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
admin :: JESSICA-PC [administrator]

Protection: Enabled

7/28/2012 3:33:52 PM
mbam-log-2012-07-28 (15-33-52).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 376114
Time elapsed: 1 hour(s), 30 minute(s), 8 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 1
C:\Program Files (x86)\Object (PUP.FCTPlugin) -> Quarantined and deleted successfully.

Files Detected: 4
C:\Program Files (x86)\Object\enable.txt (PUP.FCTPlugin) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Object\config.ini (PUP.FCTPlugin) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Object\status2.txt (PUP.FCTPlugin) -> Quarantined and deleted successfully.
C:\rundll32.exe (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.

(end)

#11 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 28 July 2012 - 06:37 PM

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "FreeFallProtection" "FF_Protection MFC Application" "" "c:\program files (x86)\stmicroelectronics\accelerometerp11\ff_protection.exe"
+ "IntelWireless" "Intel® PROSet/Wireless Framework" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe"
+ "NVHotkey" "NVIDIA Hotkey Service, Version 259.39" "NVIDIA Corporation" "c:\windows\system32\nvhotkey.dll"
+ "QuickSet" "QuickSet" "Dell Inc." "c:\program files\dell\quickset\quickset.exe"
+ "RtHDVBg" "HD Audio Background Process" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravbg64.exe"
+ "RTHDVCPL" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rtkngui64.exe"
+ "SBRegRebootCleaner" "Registry Cleaner" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbrc.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe Reader Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe"
+ "AppleSyncNotifier" "AppleSyncNotifier" "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applesyncnotifier.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "Dell DataSafe Online" "DataSafeOnline" "" "c:\program files (x86)\dell datasafe online\datasafeonline.exe"
+ "Dell Webcam Central" "WebcamDell2.exe" "Creative Technology Ltd" "c:\program files (x86)\dell webcam\dell webcam central\webcamdell2.exe"
+ "DellSupportCenter" "Dell Support Center Updates" "SupportSoft, Inc." "c:\program files (x86)\dell support center\bin\sprtcmd.exe"
+ "Desktop Disc Tool" "Roxio Burn Launcher" "" "c:\program files (x86)\roxio\roxio burn\roxioburnlauncher.exe"
+ "DivXUpdate" "DivX Update" "" "c:\program files (x86)\divx\divx update\divxupdate.exe"
+ "FATrayAlert" "FATrayMon" "Sensible Vision " "c:\program files (x86)\sensible vision\fast access\fatraymon.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "Malwarebytes' Anti-Malware" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamgui.exe"
+ "NUSB3MON" "USB 3.0 Monitor" "Renesas Electronics Corporation" "c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "SBAMTray" "SBAMTray Application" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbamtray.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce" "" "" ""
+ "Launcher" "VistaLauncher" "Softthinks" "c:\program files (x86)\dell datasafe local backup\components\scheduler\launcher.exe"
"C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Dell Dock.lnk" "Dell Dock" "Stardock Corporation" "c:\program files\dell\delldock\delldock.exe"
+ "OneNote 2010 Screen Clipper and Launcher.lnk" "Microsoft OneNote Quick Launcher" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onenotem.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Internet Explorer" "" "" "File not found: start"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Dell" "" "" "File not found: C:\Users\admin\AppData\Local\Dell\bwjgypzh.dll"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\admin\appdata\local\google\update\googleupdate.exe"
+ "iCloudServices" "iCloud" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\icloudservices.exe"
+ "MobileDocuments" "ubd.exe" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\ubd.exe"
+ "Pando Media Booster" "Pando Media Booster" "" "c:\program files (x86)\pando networks\media booster\pmb.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler" "" "" ""
+ "Deskscapes" "" "" "File not found: C:\Program Files (x86)\Stardock\Object Desktop\DeskScapes3\deskscapes.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "FileEraserShellExt" "Secure File Eraser Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\x64\sbfe.dll"
+ "SBAMScanShellExt" "SBAM Scan Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\x64\sbamscanshellext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "FileEraserShellExt" "Secure File Eraser Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbfe.dll"
+ "SBAMScanShellExt" "SBAM Scan Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbamscanshellext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "FileEraserShellExt" "Secure File Eraser Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\x64\sbfe.dll"
+ "SBAMScanShellExt" "SBAM Scan Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\x64\sbamscanshellext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "FileEraserShellExt" "Secure File Eraser Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbfe.dll"
+ "SBAMScanShellExt" "SBAM Scan Shell Extension" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbamscanshellext.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "{D870C7B7-5A0C-40E7-B22A-422CE090CC51}" "" "" "File not found: C:\Program Files\Mediafour\XPlay 3\XPCopyHook.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DeskscapesMenu" "" "" "File not found: C:\Program Files (x86)\Stardock\Object Desktop\DeskScapes3\deskscapes.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\scriptsn.20110904230211.dll"
+ "SSOIEAddonBHO Class" "FAIESSO Application" "Sensible Vision " "c:\program files (x86)\sensible vision\fast access\x64\faiesso.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\ssv.dll"
+ "Octh Class" "Orbitcth" "Orbitdownloader.com" "c:\program files (x86)\orbitdownloader\orbitcth.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files (x86)\common files\mcafee\systemcore\scriptsn.20110904230210.dll"
+ "Skype add-on for Internet Explorer" "Skype add-on for IE" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live Sign-in Helper" "WindowsLiveLogin.dll" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Grab Pro" "Grab Pro" "" "c:\program files (x86)\orbitdownloader\grabpro.dll"
"Task Scheduler" "" "" ""
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-4046011397-990450026-2367404629-1003Core" "Google Installer" "Google Inc." "c:\users\admin\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-4046011397-990450026-2367404629-1003UA" "Google Installer" "Google Inc." "c:\users\admin\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\{04A08AFB-6032-44DE-B660-C57BDD7CBC5E}" "MapleStory" "Wizet" "c:\nexon\maplestory\maplestory.exe"
+ "\{226D8785-71BD-48CF-8373-3F24C70FC05D}" "MapleStory" "Wizet" "c:\nexon\maplestory\maplestory.exe"
+ "\{6E2F6B6F-EAB7-45C7-B6A9-CF582328775A}" "MapleStory" "Wizet" "c:\nexon\maplestory\maplestory.exe"
+ "\{9E39D7A9-DC2A-475C-9C39-89A23B289296}" "MapleStory" "Wizet" "c:\nexon\maplestory\maplestory.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AERTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\realtek\audio\hda\aertsr64.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "DockLoginService" "Dock Login Service" "Stardock Corporation" "c:\program files\dell\delldock\docklogin.exe"
+ "EvtEng" "Manages the event trace messages for all the Intel® PROSet/Wireless Software components." "Intel® Corporation" "c:\program files\intel\wifi\bin\evteng.exe"
+ "FAService" "FAService" "Sensible Vision " "c:\program files (x86)\sensible vision\fast access\faservice.exe"
+ "GoToAssist" "Citrix GoToAssist provides remote help to this PC." "Citrix Online, a division of Citrix Systems, Inc." "c:\program files (x86)\citrix\gotoassist\514\g2aservice.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "McShield" "McAfee OnAccess Scanner" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mcshield.exe"
+ "mfefire" "Provides firewall services to McAfee products" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mfefire.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\program files\common files\mcafee\systemcore\mfevtps.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MyWiFiDHCPDNS" "Wireless PAN DHCP and DNS Server" "" "c:\program files\intel\wifi\bin\pandhcpdns.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "RegSrvc" "Provides registry access to all Intel® PROSet/Wireless Software components" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"
+ "SBAMSvc" "Manages your antispyware and antivirus application" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbamsvc.exe"
+ "SBPIMSvc" "SB Recovery Service" "GFI Software" "c:\program files (x86)\gfi software\vipre\sbpimsvc.exe"
+ "SftService" "SoftThinks Agent Service" "SoftThinks SAS" "c:\program files (x86)\dell datasafe local backup\sftservice.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "sprtsvc_DellSupportCenter" "SupportSoft Sprocket Service (DellSupportCenter)" "SupportSoft, Inc." "c:\program files (x86)\dell support center\bin\sprtsvc.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "TurboBoost" "Turbo Boost Monitor Service" "Intel® Corporation" "c:\program files\intel\turboboost\turboboost.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Acceler" "Accelerometer Port I/O" "ST Microelectronics" "c:\windows\system32\drivers\accelern.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cfwids" "McAfee Personal Firewall IDS Plugin" "McAfee, Inc." "c:\windows\system32\drivers\cfwids.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CtClsFlt" "Video Class Upper Filter Driver (64-bit)" "Creative Technology Ltd." "c:\windows\system32\drivers\ctclsflt.sys"
+ "EagleX64" "" "" "File not found: C:\Windows\system32\drivers\EagleX64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "FACAP" "faCap WebCam Capture" "Sensible Vision " "c:\windows\system32\drivers\facap.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "JMCR" "JMicron JMB38X Flash Media Controller Driver" "JMicron Technology Corporation" "c:\windows\system32\drivers\jmcr.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfefirek" "McAfee Core Firewall Engine Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfefirek.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mfenlfk" "McAfee NDIS Light Filter" "McAfee, Inc." "c:\windows\system32\drivers\mfenlfk.sys"
+ "mferkdet" "McAfee Code Analysis Driver" "McAfee, Inc." "c:\windows\system32\drivers\mferkdet.sys"
+ "mfewfpk" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfewfpk.sys"
+ "NETw5s64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5s64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 259.39 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PxHlpa64" "Px Engine Device Driver for 64-bit Windows" "Sonic Solutions" "c:\windows\system32\drivers\pxhlpa64.sys"
+ "qicflt" "Win7 QicFilterDriver-64Bits" "Quanta Computer" "c:\windows\system32\drivers\qicflt.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "sbapifs" "GFI Active Protection Filter Driver" "GFI Software" "c:\windows\system32\drivers\sbapifs.sys"
+ "SBRE" "GFI Anti-Rootkit Driver" "GFI Software" "c:\windows\system32\drivers\sbredrv.sys"
+ "sbwtis" "GFI Software Transport Inspection WFP Driver" "GFI Software" "c:\windows\system32\drivers\sbwtis.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stdcfltn" "Disk Class Filter Driver for Accelerometer" "ST Microelectronics" "c:\windows\system32\drivers\stdcfltn.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "TurboB" "Turbo Boost UI Monitor driver" "" "c:\windows\system32\drivers\turbob.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.XVID" "" "" "c:\windows\system32\xvidvfw.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
+ "vidc.XVID" "" "" "c:\windows\syswow64\xvidvfw.dll"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files\divx\divx codec\divxdec.ax"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\windows\system32\xvid.ax"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Creative Correct TimeStamp Filter" "Creative Correct TimeStamp Filter" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\ctfrfix.ax"
+ "Creative H264 No Quality Control Filter" "Creative No Quality Control Filter" "Creative Technology Ltd." "c:\program files (x86)\dell webcam\dell webcam central\cth264noqc.ax"
+ "Creative MJPEG Decoder 2" "Decoder" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\ctmjpgdec2.ax"
+ "Creative Video Processing Filter" "Creative Video Processing Filter" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\vidprocu.ax"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax"
+ "QIC1802 Demux" "QIC1802 Demux" "Quanta Computer Inc." "c:\program files (x86)\dell webcam\dell webcam central\qicdemux.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\windows\syswow64\xvid.ax"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "FACredProv" "FACredProv Application" "Sensible Vision " "c:\windows\system32\facredprov.dll"
+ "FACredProv2" "FACredProv2 Application" "Sensible Vision " "c:\windows\system32\facredprov2.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters" "" "" ""
+ "FACredProvFilter" "FACredProv Application" "Sensible Vision " "c:\windows\system32\facredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "GoToAssist" "" "" "File not found: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages" "" "" ""
+ "FAPassSync" "FAPassSync" "Sensible Vision " "c:\windows\system32\fapasssync.dll"

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:04 PM

Posted 28 July 2012 - 06:56 PM

Launch autoruns and uncheck this entry

HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Dell" "" "" "File not found: C:\Users\admin\AppData\Local\Dell\bwjgypzh.dll"

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

Edited by narenxp, 28 July 2012 - 06:56 PM.


#13 jessib

jessib
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:04 PM

Posted 28 July 2012 - 07:33 PM

Thank you so much!

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:04 PM

Posted 28 July 2012 - 07:51 PM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users