Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan zeroaccess has infected my laptop.


  • Please log in to reply
30 replies to this topic

#1 FLKracker

FLKracker

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 12 August 2012 - 09:45 PM

I am running windows vista and my laptop has McAfee internet security. McAfee notified me of multiple zeroaccess trojan alerts but it said it had fixed the problem. Now I am not able to access the internet (using a different machine to post) and when I try to open microsoft excel or word I get an error message stating the license file could not be found and you need to repair the file from the control panel. Restore system does not work, says it does not see a restore point when I know one was created about a month ago. I have also noticed the computer is extremely slow. Please help thank you.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:50 PM

Posted 12 August 2012 - 10:07 PM

Uninstall mcafee.If you're able to access internet now

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 12 August 2012 - 10:08 PM.


#3 FLKracker

FLKracker
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 13 August 2012 - 04:03 PM

I tried to uninstall McAfee thru the control panel>programs and features, but I get an error message "An error occurred while trying to uninstall McAfee Internet Security. It may have already been uninstalled. Would you like to remove McAfee Internet Security from the Programs and Features list?" McAfee still can be launched and it will scan computer. Also I still cannot access the internet or any jump drives.

#4 FLKracker

FLKracker
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 13 August 2012 - 04:19 PM

Correction, I can get a jump drive to be recognized if it is plugged in before I start the computer.

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:50 PM

Posted 13 August 2012 - 09:17 PM

Copy all these tools to infected PC.Boot into safemode with networking and run scans


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

#6 FLKracker

FLKracker
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 13 August 2012 - 10:14 PM

TDSSkiller LOG

22:58:23.0723 1440 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
22:58:23.0754 1440 ============================================================
22:58:23.0754 1440 Current date / time: 2012/08/13 22:58:23.0754
22:58:23.0754 1440 SystemInfo:
22:58:23.0754 1440
22:58:23.0754 1440 OS Version: 6.0.6002 ServicePack: 2.0
22:58:23.0754 1440 Product type: Workstation
22:58:23.0754 1440 ComputerName: DARREN-PC
22:58:23.0754 1440 UserName: Darren
22:58:23.0754 1440 Windows directory: C:\Windows
22:58:23.0754 1440 System windows directory: C:\Windows
22:58:23.0754 1440 Processor architecture: Intel x86
22:58:23.0754 1440 Number of processors: 2
22:58:23.0754 1440 Page size: 0x1000
22:58:23.0754 1440 Boot type: Safe boot with network
22:58:23.0754 1440 ============================================================
22:58:25.0033 1440 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:58:25.0049 1440 Drive \Device\Harddisk1\DR1 - Size: 0x3EA00000 (0.98 Gb), SectorSize: 0x200, Cylinders: 0x7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:58:25.0049 1440 ============================================================
22:58:25.0049 1440 \Device\Harddisk0\DR0:
22:58:25.0049 1440 MBR partitions:
22:58:25.0049 1440 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x24574000
22:58:25.0049 1440 \Device\Harddisk1\DR1:
22:58:25.0049 1440 MBR partitions:
22:58:25.0049 1440 ============================================================
22:58:25.0080 1440 C: <-> \Device\Harddisk0\DR0\Partition0
22:58:25.0080 1440 ============================================================
22:58:25.0080 1440 Initialize success
22:58:25.0080 1440 ============================================================
22:59:01.0257 1576 ============================================================
22:59:01.0257 1576 Scan started
22:59:01.0257 1576 Mode: Manual; TDLFS;
22:59:01.0257 1576 ============================================================
22:59:02.0380 1576 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:59:02.0380 1576 ACPI - ok
22:59:02.0583 1576 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:59:02.0583 1576 AdobeFlashPlayerUpdateSvc - ok
22:59:02.0707 1576 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:59:02.0723 1576 adp94xx - ok
22:59:02.0848 1576 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:59:02.0848 1576 adpahci - ok
22:59:02.0957 1576 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:59:02.0957 1576 adpu160m - ok
22:59:03.0035 1576 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:59:03.0035 1576 adpu320 - ok
22:59:03.0129 1576 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
22:59:03.0144 1576 AeLookupSvc - ok
22:59:03.0238 1576 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:59:03.0238 1576 AFD - ok
22:59:03.0331 1576 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
22:59:03.0331 1576 AgereModemAudio - ok
22:59:03.0472 1576 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
22:59:03.0487 1576 AgereSoftModem - ok
22:59:03.0534 1576 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:59:03.0534 1576 agp440 - ok
22:59:03.0565 1576 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:59:03.0581 1576 aic78xx - ok
22:59:03.0643 1576 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
22:59:03.0659 1576 ALG - ok
22:59:03.0737 1576 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:59:03.0737 1576 aliide - ok
22:59:03.0768 1576 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:59:03.0768 1576 amdagp - ok
22:59:03.0846 1576 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:59:03.0846 1576 amdide - ok
22:59:03.0877 1576 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:59:03.0877 1576 AmdK7 - ok
22:59:03.0955 1576 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:59:03.0955 1576 AmdK8 - ok
22:59:03.0987 1576 Andbus (19f9b865832fc563ed8eed449cb4ff31) C:\Windows\system32\DRIVERS\lgandbus.sys
22:59:03.0987 1576 Andbus - ok
22:59:04.0049 1576 AndDiag (f7ec18db02c9fb26aed52e0e1bb98960) C:\Windows\system32\DRIVERS\lganddiag.sys
22:59:04.0065 1576 AndDiag - ok
22:59:04.0096 1576 AndGps (6d79f0c7f33dd85f50d69c7d7efec9e0) C:\Windows\system32\DRIVERS\lgandgps.sys
22:59:04.0096 1576 AndGps - ok
22:59:04.0189 1576 ANDModem (881837e816b948f7a94098add21afd7c) C:\Windows\system32\DRIVERS\lgandmodem.sys
22:59:04.0189 1576 ANDModem - ok
22:59:04.0283 1576 androidusb (919957563c857145e9c4b3acdc8eaf7d) C:\Windows\system32\Drivers\androidusb.sys
22:59:04.0283 1576 androidusb - ok
22:59:04.0392 1576 Apple Mobile Device (4b5ae15e5c73eb4dc8dbec2788230d41) C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
22:59:04.0392 1576 Apple Mobile Device - ok
22:59:04.0423 1576 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:59:04.0423 1576 arc - ok
22:59:04.0517 1576 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:59:04.0517 1576 arcsas - ok
22:59:04.0533 1576 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:59:04.0533 1576 AsyncMac - ok
22:59:04.0611 1576 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
22:59:04.0611 1576 atapi - ok
22:59:04.0813 1576 athr (d59e7a5daa08c91172e95b4f1ca6d8c3) C:\Windows\system32\DRIVERS\athr.sys
22:59:04.0860 1576 athr - ok
22:59:05.0141 1576 Ati External Event Utility (37c63181d8a1b6c948f0866bcbde406e) C:\Windows\system32\Ati2evxx.exe
22:59:05.0157 1576 Ati External Event Utility - ok
22:59:05.0578 1576 atikmdag (a2b6478963451a99c28da8133b648142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:59:05.0671 1576 atikmdag - ok
22:59:05.0843 1576 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
22:59:05.0859 1576 AtiPcie - ok
22:59:06.0046 1576 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
22:59:06.0046 1576 AudioEndpointBuilder - ok
22:59:06.0061 1576 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
22:59:06.0061 1576 Audiosrv - ok
22:59:06.0327 1576 BBSvc (37bfed63841e56f465e1a0cd32f1bcc9) C:\Program Files\Microsoft\BingBar\7.1.364.0\BBSvc.exe
22:59:06.0327 1576 BBSvc - ok
22:59:06.0451 1576 BBUpdate (b47230df549e171449b5d25cfcee9f57) C:\Program Files\Microsoft\BingBar\7.1.364.0\SeaPort.exe
22:59:06.0451 1576 BBUpdate - ok
22:59:06.0529 1576 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:59:06.0545 1576 Beep - ok
22:59:06.0670 1576 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
22:59:06.0795 1576 BITS - ok
22:59:06.0841 1576 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:59:06.0841 1576 blbdrive - ok
22:59:06.0951 1576 Bonjour Service (3f56903e124e820aeece6d471583c6c1) C:\Program Files\Bonjour\mDNSResponder.exe
22:59:06.0951 1576 Bonjour Service - ok
22:59:07.0029 1576 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:59:07.0044 1576 bowser - ok
22:59:07.0060 1576 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:59:07.0060 1576 BrFiltLo - ok
22:59:07.0153 1576 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:59:07.0153 1576 BrFiltUp - ok
22:59:07.0185 1576 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
22:59:07.0185 1576 Browser - ok
22:59:07.0263 1576 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:59:07.0278 1576 Brserid - ok
22:59:07.0309 1576 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:59:07.0309 1576 BrSerWdm - ok
22:59:07.0372 1576 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:59:07.0372 1576 BrUsbMdm - ok
22:59:07.0387 1576 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:59:07.0403 1576 BrUsbSer - ok
22:59:07.0465 1576 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:59:07.0465 1576 BTHMODEM - ok
22:59:07.0497 1576 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:59:07.0497 1576 cdfs - ok
22:59:07.0575 1576 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:59:07.0575 1576 cdrom - ok
22:59:07.0606 1576 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
22:59:07.0606 1576 CertPropSvc - ok
22:59:07.0684 1576 cfwids (1c7b1e36f3ced9e4b0b13385e627fe8b) C:\Windows\system32\drivers\cfwids.sys
22:59:07.0684 1576 cfwids - ok
22:59:07.0715 1576 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:59:07.0715 1576 circlass - ok
22:59:07.0809 1576 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:59:07.0809 1576 CLFS - ok
22:59:07.0918 1576 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:59:07.0933 1576 clr_optimization_v2.0.50727_32 - ok
22:59:08.0089 1576 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:59:08.0089 1576 clr_optimization_v4.0.30319_32 - ok
22:59:08.0121 1576 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
22:59:08.0121 1576 CmBatt - ok
22:59:08.0136 1576 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:59:08.0152 1576 cmdide - ok
22:59:08.0230 1576 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
22:59:08.0230 1576 Compbatt - ok
22:59:08.0230 1576 COMSysApp - ok
22:59:08.0323 1576 ConfigFree Service (d10d01b2dfcd8d2f32a32ed29e8da1c2) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
22:59:08.0323 1576 ConfigFree Service - ok
22:59:08.0339 1576 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:59:08.0339 1576 crcdisk - ok
22:59:08.0370 1576 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:59:08.0370 1576 Crusoe - ok
22:59:08.0464 1576 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
22:59:08.0464 1576 CryptSvc - ok
22:59:08.0589 1576 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
22:59:08.0604 1576 DcomLaunch - ok
22:59:08.0682 1576 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:59:08.0682 1576 DfsC - ok
22:59:08.0963 1576 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
22:59:09.0025 1576 DFSR - ok
22:59:09.0213 1576 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
22:59:09.0228 1576 Dhcp - ok
22:59:09.0306 1576 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:59:09.0306 1576 disk - ok
22:59:09.0353 1576 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
22:59:09.0353 1576 dot3svc - ok
22:59:09.0447 1576 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
22:59:09.0447 1576 DPS - ok
22:59:09.0525 1576 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:59:09.0525 1576 drmkaud - ok
22:59:09.0618 1576 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:59:09.0634 1576 DXGKrnl - ok
22:59:09.0696 1576 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:59:09.0696 1576 E1G60 - ok
22:59:09.0743 1576 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
22:59:09.0743 1576 EapHost - ok
22:59:09.0805 1576 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:59:09.0821 1576 Ecache - ok
22:59:09.0930 1576 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
22:59:09.0930 1576 ehRecvr - ok
22:59:10.0024 1576 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
22:59:10.0024 1576 ehSched - ok
22:59:10.0039 1576 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
22:59:10.0039 1576 ehstart - ok
22:59:10.0149 1576 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:59:10.0149 1576 elxstor - ok
22:59:10.0289 1576 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
22:59:10.0305 1576 EMDMgmt - ok
22:59:10.0351 1576 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:59:10.0351 1576 ErrDev - ok
22:59:10.0414 1576 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
22:59:10.0429 1576 EventSystem - ok
22:59:10.0507 1576 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:59:10.0523 1576 exfat - ok
22:59:10.0632 1576 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:59:10.0632 1576 fastfat - ok
22:59:10.0726 1576 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:59:10.0726 1576 fdc - ok
22:59:10.0804 1576 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
22:59:10.0819 1576 fdPHost - ok
22:59:10.0835 1576 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
22:59:10.0835 1576 FDResPub - ok
22:59:10.0851 1576 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:59:10.0851 1576 FileInfo - ok
22:59:10.0913 1576 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:59:10.0913 1576 Filetrace - ok
22:59:11.0147 1576 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:59:11.0163 1576 FLEXnet Licensing Service - ok
22:59:11.0178 1576 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:59:11.0194 1576 flpydisk - ok
22:59:11.0241 1576 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:59:11.0241 1576 FltMgr - ok
22:59:11.0334 1576 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:59:11.0334 1576 FontCache3.0.0.0 - ok
22:59:11.0412 1576 fssfltr (b0082808a6856a252f7cdd939892ce50) C:\Windows\system32\DRIVERS\fssfltr.sys
22:59:11.0412 1576 fssfltr - ok
22:59:11.0677 1576 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
22:59:11.0693 1576 fsssvc - ok
22:59:11.0896 1576 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
22:59:11.0896 1576 Fs_Rec - ok
22:59:11.0911 1576 FTDIBUS (47b9cf937ac479046da289bd5a769ce9) C:\Windows\system32\drivers\ftdibus.sys
22:59:11.0927 1576 FTDIBUS - ok
22:59:11.0989 1576 FTSER2K (216b9a2191676034999785c7f94fa5d6) C:\Windows\system32\drivers\ftser2k.sys
22:59:12.0005 1576 FTSER2K - ok
22:59:12.0099 1576 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
22:59:12.0099 1576 FwLnk - ok
22:59:12.0130 1576 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:59:12.0130 1576 gagp30kx - ok
22:59:12.0317 1576 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
22:59:12.0333 1576 GameConsoleService - ok
22:59:12.0411 1576 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:59:12.0411 1576 GEARAspiWDM - ok
22:59:12.0457 1576 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
22:59:12.0457 1576 GoogleDesktopManager-051210-111108 - ok
22:59:12.0598 1576 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
22:59:12.0613 1576 gpsvc - ok
22:59:12.0691 1576 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:59:12.0707 1576 gupdate - ok
22:59:12.0754 1576 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:59:12.0754 1576 gupdatem - ok
22:59:12.0816 1576 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:59:12.0816 1576 gusvc - ok
22:59:12.0941 1576 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
22:59:12.0941 1576 HdAudAddService - ok
22:59:13.0066 1576 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:59:13.0081 1576 HDAudBus - ok
22:59:13.0144 1576 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:59:13.0159 1576 HidBth - ok
22:59:13.0175 1576 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:59:13.0175 1576 HidIr - ok
22:59:13.0253 1576 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
22:59:13.0253 1576 hidserv - ok
22:59:13.0284 1576 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:59:13.0284 1576 HidUsb - ok
22:59:13.0378 1576 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
22:59:13.0378 1576 hkmsvc - ok
22:59:13.0456 1576 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:59:13.0456 1576 HpCISSs - ok
22:59:13.0534 1576 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
22:59:13.0549 1576 HTTP - ok
22:59:13.0596 1576 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:59:13.0596 1576 i2omp - ok
22:59:13.0627 1576 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:59:13.0627 1576 i8042prt - ok
22:59:13.0659 1576 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:59:13.0674 1576 iaStorV - ok
22:59:13.0830 1576 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
22:59:13.0846 1576 IDriverT - ok
22:59:14.0033 1576 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:59:14.0049 1576 idsvc - ok
22:59:14.0111 1576 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:59:14.0127 1576 iirsp - ok
22:59:14.0236 1576 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
22:59:14.0251 1576 IKEEXT - ok
22:59:14.0532 1576 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
22:59:14.0579 1576 IntcAzAudAddService - ok
22:59:14.0797 1576 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:59:14.0797 1576 intelide - ok
22:59:14.0813 1576 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:59:14.0813 1576 intelppm - ok
22:59:14.0938 1576 IntuitUpdateService (3dc635b66dd7412e1c9c3a77b8d78f25) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
22:59:14.0938 1576 IntuitUpdateService - ok
22:59:15.0016 1576 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
22:59:15.0016 1576 IntuitUpdateServiceV4 - ok
22:59:15.0047 1576 IO_Memory - ok
22:59:15.0187 1576 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:59:15.0203 1576 IpFilterDriver - ok
22:59:15.0203 1576 IpInIp - ok
22:59:15.0297 1576 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:59:15.0297 1576 IPMIDRV - ok
22:59:15.0343 1576 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:59:15.0343 1576 IPNAT - ok
22:59:15.0484 1576 iPod Service (31116e352808019e69eca58d1a6c66b0) C:\Program Files\iPod\bin\iPodService.exe
22:59:15.0499 1576 iPod Service - ok
22:59:15.0531 1576 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:59:15.0531 1576 IRENUM - ok
22:59:15.0655 1576 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:59:15.0655 1576 isapnp - ok
22:59:15.0780 1576 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:59:15.0780 1576 iScsiPrt - ok
22:59:15.0811 1576 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:59:15.0811 1576 iteatapi - ok
22:59:15.0858 1576 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:59:15.0889 1576 iteraid - ok
22:59:16.0092 1576 jswpsapi (957135960e7533ea5c7ea0bfb34f8efd) C:\Program Files\Jumpstart\jswpsapi.exe
22:59:16.0123 1576 jswpsapi - ok
22:59:16.0170 1576 jswpslwf (11ad410f41af42ba12e63187e3ec141a) C:\Windows\system32\DRIVERS\jswpslwf.sys
22:59:16.0170 1576 jswpslwf - ok
22:59:16.0342 1576 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:59:16.0342 1576 kbdclass - ok
22:59:16.0373 1576 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
22:59:16.0373 1576 kbdhid - ok
22:59:16.0467 1576 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:59:16.0482 1576 KeyIso - ok
22:59:16.0576 1576 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
22:59:16.0576 1576 KR10I - ok
22:59:16.0685 1576 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
22:59:16.0685 1576 KR10N - ok
22:59:16.0950 1576 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
22:59:16.0966 1576 KSecDD - ok
22:59:17.0106 1576 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
22:59:17.0106 1576 KtmRm - ok
22:59:17.0262 1576 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
22:59:17.0278 1576 LanmanServer - ok
22:59:17.0481 1576 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
22:59:17.0512 1576 LanmanWorkstation - ok
22:59:17.0621 1576 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:59:17.0621 1576 lltdio - ok
22:59:17.0715 1576 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
22:59:17.0715 1576 lltdsvc - ok
22:59:17.0777 1576 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
22:59:17.0777 1576 lmhosts - ok
22:59:17.0886 1576 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:59:17.0886 1576 LSI_FC - ok
22:59:17.0949 1576 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:59:17.0949 1576 LSI_SAS - ok
22:59:18.0073 1576 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:59:18.0089 1576 LSI_SCSI - ok
22:59:18.0151 1576 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:59:18.0167 1576 luafv - ok
22:59:18.0167 1576 lxcc_device - ok
22:59:18.0557 1576 M4-Service (f1d72877fa97d617be70aefb3a30cd91) C:\Users\Darren\Downloads\M4-Service.exe
22:59:18.0713 1576 M4-Service - ok
22:59:18.0900 1576 McAfee SiteAdvisor Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:59:18.0900 1576 McAfee SiteAdvisor Service - ok
22:59:18.0900 1576 McMPFSvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:59:18.0900 1576 McMPFSvc - ok
22:59:18.0916 1576 mcmscsvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:59:18.0916 1576 mcmscsvc - ok
22:59:18.0916 1576 McNaiAnn (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:59:18.0916 1576 McNaiAnn - ok
22:59:18.0978 1576 McNASvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:59:18.0978 1576 McNASvc - ok
22:59:19.0290 1576 McODS (135aa9e9e7047b7dc1f753205d421a26) C:\Program Files\McAfee\VirusScan\mcods.exe
22:59:19.0321 1576 McODS - ok
22:59:19.0337 1576 McProxy (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:59:19.0337 1576 McProxy - ok
22:59:19.0462 1576 McShield (593fa4c378818ece76ba64a11ad56cf2) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
22:59:19.0462 1576 McShield - ok
22:59:19.0743 1576 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
22:59:19.0743 1576 Mcx2Svc - ok
22:59:19.0945 1576 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
22:59:19.0961 1576 MDM - ok
22:59:20.0086 1576 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:59:20.0101 1576 megasas - ok
22:59:20.0320 1576 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:59:20.0335 1576 MegaSR - ok
22:59:20.0445 1576 mfeapfk (43c31bdf404a6d7a7ac1bfd5ead2a566) C:\Windows\system32\drivers\mfeapfk.sys
22:59:20.0445 1576 mfeapfk - ok
22:59:20.0710 1576 mfeavfk (c1dc5f42d3367f33b6451be78b38bd46) C:\Windows\system32\drivers\mfeavfk.sys
22:59:20.0803 1576 mfeavfk - ok
22:59:20.0881 1576 mfebopk (0435c43f4c2be01b84868ad2a906397b) C:\Windows\system32\drivers\mfebopk.sys
22:59:20.0881 1576 mfebopk - ok
22:59:21.0100 1576 mfefire (7e1f8b1bdc8240f08bd358b3a466c005) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:59:21.0100 1576 mfefire - ok
22:59:21.0147 1576 mfefirek (4ea6ff90015424517843e931448e00f1) C:\Windows\system32\drivers\mfefirek.sys
22:59:21.0162 1576 mfefirek - ok
22:59:21.0365 1576 mfehidk (d1e998748ba24a731106611d535c6bbf) C:\Windows\system32\drivers\mfehidk.sys
22:59:21.0396 1576 mfehidk - ok
22:59:21.0552 1576 mfenlfk (ac04a618aef3de0fce91c766f9e069da) C:\Windows\system32\DRIVERS\mfenlfk.sys
22:59:21.0552 1576 mfenlfk - ok
22:59:21.0708 1576 mferkdet (f454a13377f0a006d20a8c14a753c432) C:\Windows\system32\drivers\mferkdet.sys
22:59:21.0708 1576 mferkdet - ok
22:59:21.0833 1576 mfevtp (b10c4efd40810c08f4b44df2efcb54f7) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
22:59:21.0833 1576 mfevtp - ok
22:59:21.0942 1576 mfewfpk (f284337aedb7483df8a5fa840647e2b0) C:\Windows\system32\drivers\mfewfpk.sys
22:59:21.0942 1576 mfewfpk - ok
22:59:22.0051 1576 Microsoft SharePoint Workspace Audit Service - ok
22:59:22.0239 1576 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
22:59:22.0239 1576 MMCSS - ok
22:59:22.0270 1576 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:59:22.0285 1576 Modem - ok
22:59:22.0363 1576 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:59:22.0379 1576 monitor - ok
22:59:22.0441 1576 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:59:22.0441 1576 mouclass - ok
22:59:22.0488 1576 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:59:22.0488 1576 mouhid - ok
22:59:22.0504 1576 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:59:22.0519 1576 MountMgr - ok
22:59:22.0675 1576 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:59:22.0675 1576 MozillaMaintenance - ok
22:59:22.0769 1576 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:59:22.0769 1576 mpio - ok
22:59:22.0972 1576 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:59:22.0987 1576 mpsdrv - ok
22:59:23.0050 1576 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:59:23.0065 1576 Mraid35x - ok
22:59:23.0206 1576 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:59:23.0221 1576 MRxDAV - ok
22:59:23.0331 1576 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:59:23.0346 1576 mrxsmb - ok
22:59:23.0424 1576 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:59:23.0440 1576 mrxsmb10 - ok
22:59:23.0518 1576 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:59:23.0518 1576 mrxsmb20 - ok
22:59:23.0674 1576 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
22:59:23.0674 1576 msahci - ok
22:59:23.0877 1576 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:59:23.0877 1576 msdsm - ok
22:59:23.0955 1576 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
22:59:23.0955 1576 MSDTC - ok
22:59:24.0017 1576 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:59:24.0017 1576 Msfs - ok
22:59:24.0111 1576 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:59:24.0111 1576 msisadrv - ok
22:59:24.0267 1576 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
22:59:24.0267 1576 MSiSCSI - ok
22:59:24.0298 1576 msiserver - ok
22:59:24.0688 1576 MSK80Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:59:24.0688 1576 MSK80Service - ok
22:59:24.0797 1576 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:59:24.0797 1576 MSKSSRV - ok
22:59:24.0797 1576 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:59:24.0797 1576 MSPCLOCK - ok
22:59:24.0813 1576 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:59:24.0813 1576 MSPQM - ok
22:59:24.0859 1576 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:59:24.0859 1576 MsRPC - ok
22:59:24.0953 1576 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:59:24.0953 1576 mssmbios - ok
22:59:25.0031 1576 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:59:25.0047 1576 MSTEE - ok
22:59:25.0093 1576 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:59:25.0093 1576 Mup - ok
22:59:25.0171 1576 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
22:59:25.0187 1576 napagent - ok
22:59:25.0249 1576 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:59:25.0265 1576 NativeWifiP - ok
22:59:25.0359 1576 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:59:25.0374 1576 NDIS - ok
22:59:25.0437 1576 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:59:25.0437 1576 NdisTapi - ok
22:59:25.0515 1576 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:59:25.0515 1576 Ndisuio - ok
22:59:25.0530 1576 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:59:25.0530 1576 NdisWan - ok
22:59:25.0608 1576 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:59:25.0608 1576 NDProxy - ok
22:59:25.0624 1576 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:59:25.0624 1576 NetBIOS - ok
22:59:25.0717 1576 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:59:25.0717 1576 netbt - ok
22:59:25.0795 1576 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:59:25.0795 1576 Netlogon - ok
22:59:25.0889 1576 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:59:25.0889 1576 NetTcpPortSharing - ok
22:59:25.0951 1576 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:59:25.0951 1576 nfrd960 - ok
22:59:26.0061 1576 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
22:59:26.0061 1576 NlaSvc - ok
22:59:26.0092 1576 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:59:26.0092 1576 Npfs - ok
22:59:26.0154 1576 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:59:26.0154 1576 nsiproxy - ok
22:59:26.0279 1576 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:59:26.0310 1576 Ntfs - ok
22:59:26.0357 1576 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:59:26.0357 1576 ntrigdigi - ok
22:59:26.0388 1576 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:59:26.0388 1576 Null - ok
22:59:26.0451 1576 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:59:26.0451 1576 nvraid - ok
22:59:26.0482 1576 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:59:26.0482 1576 nvstor - ok
22:59:26.0560 1576 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:59:26.0560 1576 nv_agp - ok
22:59:26.0575 1576 NwlnkFlt - ok
22:59:26.0575 1576 NwlnkFwd - ok
22:59:26.0669 1576 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:59:26.0669 1576 ohci1394 - ok
22:59:26.0778 1576 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:59:26.0778 1576 ose - ok
22:59:27.0324 1576 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:59:27.0480 1576 osppsvc - ok
22:59:27.0714 1576 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:59:27.0730 1576 p2pimsvc - ok
22:59:27.0777 1576 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:59:27.0792 1576 p2psvc - ok
22:59:27.0886 1576 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:59:27.0886 1576 Parport - ok
22:59:27.0917 1576 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
22:59:27.0917 1576 partmgr - ok
22:59:28.0042 1576 Partner Service (3c6e7d73b0e9bc21d5e4b531ab7ec091) C:\ProgramData\Partner\partner.exe
22:59:28.0042 1576 Partner Service - ok
22:59:28.0104 1576 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:59:28.0104 1576 Parvdm - ok
22:59:28.0198 1576 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
22:59:28.0198 1576 PcaSvc - ok
22:59:28.0245 1576 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:59:28.0245 1576 pci - ok
22:59:28.0338 1576 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
22:59:28.0338 1576 pciide - ok
22:59:28.0401 1576 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:59:28.0401 1576 pcmcia - ok
22:59:28.0525 1576 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:59:28.0541 1576 PEAUTH - ok
22:59:28.0681 1576 pinger (6dbf2ac2bdaff355995ab25eccc4cfe1) C:\TOSHIBA\IVP\ISM\pinger.exe
22:59:28.0697 1576 pinger - ok
22:59:28.0869 1576 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
22:59:28.0900 1576 pla - ok
22:59:29.0071 1576 pneteth (088335b06f75adbcbb81575c7cae6c43) C:\Windows\system32\DRIVERS\pneteth.sys
22:59:29.0071 1576 pneteth - ok
22:59:29.0103 1576 PnkBstrA (1713d9de407313138118d501b0e3c05b) C:\Windows\system32\PnkBstrA.exe
22:59:29.0118 1576 PnkBstrA - ok
22:59:29.0196 1576 PnkBstrB (27f1be4a53441c9f1f48b9adc145b0a5) C:\Windows\system32\PnkBstrB.exe
22:59:29.0212 1576 PnkBstrB - ok
22:59:29.0352 1576 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:59:29.0352 1576 PNRPAutoReg - ok
22:59:29.0399 1576 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:59:29.0399 1576 PNRPsvc - ok
22:59:29.0477 1576 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
22:59:29.0493 1576 PolicyAgent - ok
22:59:29.0555 1576 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:59:29.0555 1576 PptpMiniport - ok
22:59:29.0571 1576 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
22:59:29.0571 1576 Processor - ok
22:59:29.0664 1576 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
22:59:29.0664 1576 ProfSvc - ok
22:59:29.0695 1576 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:59:29.0695 1576 ProtectedStorage - ok
22:59:29.0773 1576 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:59:29.0773 1576 PSched - ok
22:59:29.0851 1576 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
22:59:29.0851 1576 PxHelp20 - ok
22:59:30.0023 1576 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:59:30.0039 1576 ql2300 - ok
22:59:30.0085 1576 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:59:30.0085 1576 ql40xx - ok
22:59:30.0148 1576 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:59:30.0148 1576 QWAVEdrv - ok
22:59:30.0179 1576 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:59:30.0179 1576 RasAcd - ok
22:59:30.0257 1576 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
22:59:30.0273 1576 RasAuto - ok
22:59:30.0288 1576 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:59:30.0304 1576 Rasl2tp - ok
22:59:30.0460 1576 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
22:59:30.0475 1576 RasMan - ok
22:59:30.0507 1576 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:59:30.0507 1576 RasPppoe - ok
22:59:30.0553 1576 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:59:30.0553 1576 RasSstp - ok
22:59:30.0631 1576 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:59:30.0631 1576 rdbss - ok
22:59:30.0725 1576 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:59:30.0725 1576 RDPCDD - ok
22:59:30.0772 1576 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:59:30.0772 1576 rdpdr - ok
22:59:30.0819 1576 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:59:30.0834 1576 RDPENCDD - ok
22:59:30.0881 1576 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
22:59:30.0897 1576 RDPWD - ok
22:59:30.0975 1576 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
22:59:30.0975 1576 RemoteAccess - ok
22:59:31.0068 1576 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
22:59:31.0068 1576 RemoteRegistry - ok
22:59:31.0099 1576 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
22:59:31.0099 1576 RimUsb - ok
22:59:31.0177 1576 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
22:59:31.0177 1576 RimVSerPort - ok
22:59:31.0287 1576 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
22:59:31.0302 1576 ROOTMODEM - ok
22:59:31.0411 1576 RoxLiveShare9 - ok
22:59:31.0443 1576 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
22:59:31.0474 1576 RpcLocator - ok
22:59:31.0614 1576 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
22:59:31.0630 1576 RpcSs - ok
22:59:31.0692 1576 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:59:31.0692 1576 rspndr - ok
22:59:31.0739 1576 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:59:31.0755 1576 RTL8169 - ok
22:59:31.0817 1576 RTSTOR (d1fb9a678bd6c2b1129fcb09d5feb6dd) C:\Windows\system32\drivers\RTSTOR.SYS
22:59:31.0833 1576 RTSTOR - ok
22:59:31.0911 1576 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:59:31.0911 1576 SamSs - ok
22:59:31.0942 1576 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:59:31.0942 1576 sbp2port - ok
22:59:32.0020 1576 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
22:59:32.0035 1576 SCardSvr - ok
22:59:32.0176 1576 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
22:59:32.0191 1576 Schedule - ok
22:59:32.0269 1576 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
22:59:32.0269 1576 SCPolicySvc - ok
22:59:32.0347 1576 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
22:59:32.0347 1576 SDRSVC - ok
22:59:32.0379 1576 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:59:32.0379 1576 secdrv - ok
22:59:32.0472 1576 Sentinel (a2cc81c30bef6ac9f27055490eef6de3) C:\Windows\System32\Drivers\SENTINEL.SYS
22:59:32.0488 1576 Sentinel - ok
22:59:32.0503 1576 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
22:59:32.0503 1576 Serenum - ok
22:59:32.0581 1576 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:59:32.0581 1576 Serial - ok
22:59:32.0597 1576 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:59:32.0597 1576 sermouse - ok
22:59:32.0691 1576 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:59:32.0691 1576 sffdisk - ok
22:59:32.0706 1576 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:59:32.0706 1576 sffp_mmc - ok
22:59:32.0722 1576 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:59:32.0722 1576 sffp_sd - ok
22:59:32.0800 1576 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:59:32.0800 1576 sfloppy - ok
22:59:32.0909 1576 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
22:59:32.0925 1576 ShellHWDetection - ok
22:59:33.0003 1576 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:59:33.0003 1576 sisagp - ok
22:59:33.0034 1576 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:59:33.0034 1576 SiSRaid2 - ok
22:59:33.0065 1576 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:59:33.0065 1576 SiSRaid4 - ok
22:59:33.0517 1576 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
22:59:33.0580 1576 slsvc - ok
22:59:33.0705 1576 SmartFaceVWatchSrv (3566310df25ea5c3b2e9f50f5b50eac1) C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
22:59:33.0720 1576 SmartFaceVWatchSrv - ok
22:59:33.0876 1576 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:59:33.0876 1576 Smb - ok
22:59:33.0907 1576 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
22:59:33.0907 1576 SNMPTRAP - ok
22:59:34.0001 1576 SNTNLUSB (9de6e60ce7fd82b4985de5d9c22265ad) C:\Windows\system32\DRIVERS\SNTNLUSB.SYS
22:59:34.0001 1576 SNTNLUSB - ok
22:59:34.0095 1576 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:59:34.0095 1576 spldr - ok
22:59:34.0173 1576 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
22:59:34.0188 1576 Spooler - ok
22:59:34.0235 1576 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:59:34.0235 1576 srv - ok
22:59:34.0329 1576 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:59:34.0329 1576 srv2 - ok
22:59:34.0344 1576 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:59:34.0344 1576 srvnet - ok
22:59:34.0453 1576 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
22:59:34.0453 1576 SSDPSRV - ok
22:59:34.0531 1576 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
22:59:34.0531 1576 SstpSvc - ok
22:59:34.0625 1576 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
22:59:34.0625 1576 StillCam - ok
22:59:34.0703 1576 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
22:59:34.0719 1576 stisvc - ok
22:59:34.0812 1576 SVRPEDRV (3e4239b92139f7174a0da7d53fe5e1ab) C:\Windows\System32\sysprep\PEDrv.sys
22:59:34.0812 1576 SVRPEDRV - ok
22:59:34.0890 1576 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:59:34.0890 1576 swenum - ok
22:59:34.0953 1576 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
22:59:34.0953 1576 swprv - ok
22:59:35.0062 1576 Swupdtmr (e1292c1ed4deb17b8a9b586d22cb2061) c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
22:59:35.0062 1576 Swupdtmr - ok
22:59:35.0140 1576 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:59:35.0140 1576 Symc8xx - ok
22:59:35.0171 1576 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:59:35.0171 1576 Sym_hi - ok
22:59:35.0233 1576 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:59:35.0233 1576 Sym_u3 - ok
22:59:35.0280 1576 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
22:59:35.0296 1576 SynTP - ok
22:59:35.0358 1576 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
22:59:35.0358 1576 TabletInputService - ok
22:59:35.0421 1576 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
22:59:35.0421 1576 TapiSrv - ok
22:59:35.0467 1576 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
22:59:35.0467 1576 TBS - ok
22:59:35.0592 1576 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
22:59:35.0608 1576 Tcpip - ok
22:59:35.0623 1576 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
22:59:35.0639 1576 Tcpip6 - ok
22:59:35.0670 1576 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:59:35.0686 1576 tcpipreg - ok
22:59:35.0764 1576 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
22:59:35.0764 1576 tdcmdpst - ok
22:59:35.0795 1576 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:59:35.0795 1576 TDPIPE - ok
22:59:35.0857 1576 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:59:35.0857 1576 TDTCP - ok
22:59:35.0873 1576 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:59:35.0889 1576 tdx - ok
22:59:35.0967 1576 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:59:35.0967 1576 TermDD - ok
22:59:36.0029 1576 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
22:59:36.0045 1576 TermService - ok
22:59:36.0138 1576 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
22:59:36.0138 1576 Themes - ok
22:59:36.0216 1576 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
22:59:36.0216 1576 THREADORDER - ok
22:59:36.0341 1576 TNaviSrv (b146492a882a25a2df1db4668fced6c8) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
22:59:36.0341 1576 TNaviSrv - ok
22:59:36.0435 1576 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
22:59:36.0435 1576 TODDSrv - ok
22:59:36.0513 1576 TosCoSrv (44dbac611b11646683b5b066a049b8e4) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
22:59:36.0528 1576 TosCoSrv - ok
22:59:36.0575 1576 TOSHIBA SMART Log Service (22690dffc7f2a18279a7a0489aa02bac) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
22:59:36.0575 1576 TOSHIBA SMART Log Service - ok
22:59:36.0700 1576 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys
22:59:36.0700 1576 tos_sps32 - ok
22:59:36.0778 1576 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
22:59:36.0793 1576 TrkWks - ok
22:59:36.0887 1576 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
22:59:36.0887 1576 TrustedInstaller - ok
22:59:36.0965 1576 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:59:36.0965 1576 tssecsrv - ok
22:59:36.0981 1576 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:59:36.0981 1576 tunmp - ok
22:59:37.0012 1576 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:59:37.0012 1576 tunnel - ok
22:59:37.0090 1576 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
22:59:37.0090 1576 TVALZ - ok
22:59:37.0090 1576 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:59:37.0105 1576 uagp35 - ok
22:59:37.0152 1576 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:59:37.0152 1576 udfs - ok
22:59:37.0277 1576 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
22:59:37.0293 1576 UI0Detect - ok
22:59:37.0371 1576 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:59:37.0371 1576 uliagpkx - ok
22:59:37.0402 1576 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:59:37.0402 1576 uliahci - ok
22:59:37.0480 1576 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:59:37.0480 1576 UlSata - ok
22:59:37.0511 1576 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:59:37.0527 1576 ulsata2 - ok
22:59:37.0589 1576 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:59:37.0589 1576 umbus - ok
22:59:37.0651 1576 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
22:59:37.0651 1576 usbaudio - ok
22:59:37.0714 1576 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:59:37.0714 1576 usbccgp - ok
22:59:37.0761 1576 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:59:37.0761 1576 usbcir - ok
22:59:37.0839 1576 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:59:37.0839 1576 usbehci - ok
22:59:37.0870 1576 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:59:37.0870 1576 usbhub - ok
22:59:37.0932 1576 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
22:59:37.0932 1576 usbohci - ok
22:59:37.0963 1576 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:59:37.0963 1576 usbprint - ok
22:59:38.0041 1576 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:59:38.0041 1576 usbscan - ok
22:59:38.0073 1576 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:59:38.0073 1576 USBSTOR - ok
22:59:38.0151 1576 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:59:38.0151 1576 usbuhci - ok
22:59:38.0182 1576 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:59:38.0197 1576 usbvideo - ok
22:59:38.0307 1576 UVCFTR (8c5094a8ab24de7496c7c19942f2df04) C:\Windows\system32\Drivers\UVCFTR_S.SYS
22:59:38.0307 1576 UVCFTR - ok
22:59:38.0338 1576 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
22:59:38.0338 1576 UxSms - ok
22:59:38.0400 1576 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
22:59:38.0416 1576 vds - ok
22:59:38.0463 1576 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:59:38.0478 1576 vga - ok
22:59:38.0494 1576 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:59:38.0494 1576 VgaSave - ok
22:59:38.0509 1576 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:59:38.0509 1576 viaagp - ok
22:59:38.0572 1576 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:59:38.0572 1576 ViaC7 - ok
22:59:38.0587 1576 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:59:38.0587 1576 viaide - ok
22:59:38.0619 1576 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:59:38.0619 1576 volmgr - ok
22:59:38.0712 1576 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:59:38.0728 1576 volmgrx - ok
22:59:38.0821 1576 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:59:38.0821 1576 volsnap - ok
22:59:38.0915 1576 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:59:38.0915 1576 vsmraid - ok
22:59:39.0055 1576 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
22:59:39.0087 1576 VSS - ok
22:59:39.0133 1576 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
22:59:39.0149 1576 W32Time - ok
22:59:39.0258 1576 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:59:39.0258 1576 WacomPen - ok
22:59:39.0321 1576 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:59:39.0336 1576 Wanarp - ok
22:59:39.0383 1576 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:59:39.0383 1576 Wanarpv6 - ok
22:59:39.0399 1576 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:59:39.0399 1576 Wd - ok
22:59:39.0477 1576 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:59:39.0492 1576 Wdf01000 - ok
22:59:39.0555 1576 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:59:39.0570 1576 WdiServiceHost - ok
22:59:39.0617 1576 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:59:39.0617 1576 WdiSystemHost - ok
22:59:39.0664 1576 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
22:59:39.0679 1576 Wecsvc - ok
22:59:39.0742 1576 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
22:59:39.0742 1576 wercplsupport - ok
22:59:39.0789 1576 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
22:59:39.0789 1576 WerSvc - ok
22:59:39.0913 1576 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
22:59:39.0913 1576 Winmgmt - ok
22:59:40.0101 1576 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
22:59:40.0132 1576 WinRM - ok
22:59:40.0210 1576 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
22:59:40.0225 1576 Wlansvc - ok
22:59:40.0569 1576 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:59:40.0600 1576 wlidsvc - ok
22:59:40.0803 1576 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:59:40.0818 1576 WmiAcpi - ok
22:59:40.0881 1576 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
22:59:40.0881 1576 wmiApSrv - ok
22:59:41.0146 1576 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
22:59:41.0161 1576 WMPNetworkSvc - ok
22:59:41.0224 1576 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
22:59:41.0224 1576 WPCSvc - ok
22:59:41.0380 1576 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:59:41.0395 1576 WPFFontCache_v0400 - ok
22:59:41.0520 1576 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:59:41.0520 1576 ws2ifsl - ok
22:59:41.0536 1576 WSearch - ok
22:59:41.0567 1576 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:59:41.0567 1576 WUDFRd - ok
22:59:41.0645 1576 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
22:59:41.0676 1576 wudfsvc - ok
22:59:41.0754 1576 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
22:59:43.0018 1576 \Device\Harddisk0\DR0 - ok
22:59:43.0049 1576 MBR (0x1B8) (89ca3f6cb914c8c9cb524df29820f2cd) \Device\Harddisk1\DR1
22:59:43.0189 1576 \Device\Harddisk1\DR1 - ok
22:59:43.0205 1576 Boot (0x1200) (26bf976b68464e415bfd423acd7a3fd9) \Device\Harddisk0\DR0\Partition0
22:59:43.0221 1576 \Device\Harddisk0\DR0\Partition0 - ok
22:59:43.0221 1576 ============================================================
22:59:43.0221 1576 Scan finished
22:59:43.0221 1576 ============================================================
22:59:43.0236 1584 Detected object count: 0
22:59:43.0236 1584 Actual detected object count: 0
23:03:23.0820 0444 Deinitialize success

minitoolbox log

MiniToolBox by Farbar Version: 23-07-2012
Ran by Darren (administrator) on 13-08-2012 at 23:06:16
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Could not flush the DNS Resolver Cache: Function failed during execution.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================



# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=173.195.207.1
add address name="Local Area Connection" address=173.195.207.45


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Darren-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : PdaNet Broadband Adapter
Physical Address. . . . . . . . . : 00-26-37-BD-39-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5007EG Wireless Network Adapter
Physical Address. . . . . . . . . : 00-24-D2-2B-19-F8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-1E-33-9E-7F-C5
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{81491A02-82EE-4755-AA32-8EDA036E3CAB}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{B0F31E43-512B-499E-AAA1-E7828F7C5D43}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{1C597332-5001-475F-A0A0-C2CB35DDE4C5}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 127.0.0.1

Ping request could not find host google.com. Please check the name and try again.Server: UnKnown
Address: 127.0.0.1

Ping request could not find host yahoo.com. Please check the name and try again.Server: UnKnown
Address: 127.0.0.1

Ping request could not find host bleepingcomputer.com. Please check the name and try again.Unable to contact IP driver, error code 1753,===========================================================================
Interface List
14 ...00 26 37 bd 39 42 ...... PdaNet Broadband Adapter
11 ...00 24 d2 2b 19 f8 ...... Atheros AR5007EG Wireless Network Adapter
10 ...00 1e 33 9e 7f c5 ...... Realtek PCIe FE Family Controller
1 ........................... Software Loopback Interface 1
16 ...00 00 00 00 00 00 00 e0 isatap.{81491A02-82EE-4755-AA32-8EDA036E3CAB}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
13 ...00 00 00 00 00 00 00 e0 isatap.{B0F31E43-512B-499E-AAA1-E7828F7C5D43}
15 ...00 00 00 00 00 00 00 e0 isatap.{1C597332-5001-475F-A0A0-C2CB35DDE4C5}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 173.195.207.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [147456] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/13/2012 10:55:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/13/2012 10:55:17 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/13/2012 10:52:16 PM) (Source: Microsoft-Windows-SpoolerSpoolss) (User: NT AUTHORITY)NT AUTHORITY
Description: 0x8007000d

Error: (08/13/2012 10:50:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/13/2012 05:15:20 PM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll4

Error: (08/13/2012 05:15:19 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (08/13/2012 05:15:17 PM) (Source: Perflib) (User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL4

Error: (08/13/2012 05:15:17 PM) (Source: Perflib) (User: )
Description: LsaC:\Windows\system32\Secur32.dll4

Error: (08/13/2012 05:15:17 PM) (Source: Perflib) (User: )
Description: ESENTC:\Windows\system32\esentprf.dll4

Error: (08/13/2012 05:15:15 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4


System errors:
=============
Error: (08/13/2012 10:59:06 PM) (Source: DCOM) (User: )
Description: 1084McNaiAnn{DC7EF8E1-824F-4110-AB43-1604DA9B4F40}

Error: (08/13/2012 10:57:05 PM) (Source: Microsoft-Windows-TBS) (User: NT AUTHORITY)
Description: 0x8007000d

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: TelephonyPlugPlay

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: TelephonyPlugPlay

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: TelephonyPlugPlay

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: spldr
Wanarpv6

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: Network Location AwarenessNSI

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (08/13/2012 10:55:54 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068


Microsoft Office Sessions:
=========================
Error: (08/13/2012 10:55:54 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/13/2012 10:55:17 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/13/2012 10:52:16 PM) (Source: Microsoft-Windows-SpoolerSpoolss)(User: NT AUTHORITY)NT AUTHORITY
Description: 0x8007000d

Error: (08/13/2012 10:50:50 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/13/2012 05:15:20 PM) (Source: Perflib)(User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll4

Error: (08/13/2012 05:15:19 PM) (Source: Perflib)(User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (08/13/2012 05:15:17 PM) (Source: Perflib)(User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL4

Error: (08/13/2012 05:15:17 PM) (Source: Perflib)(User: )
Description: LsaC:\Windows\system32\Secur32.dll4

Error: (08/13/2012 05:15:17 PM) (Source: Perflib)(User: )
Description: ESENTC:\Windows\system32\esentprf.dll4

Error: (08/13/2012 05:15:15 PM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4


=========================== Installed Programs ============================

7-Zip 4.65
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Flash Player 11 Plugin (Version: 11.3.300.270)
Adobe Reader 8.1.3 (Version: 8.1.3)
Agilent E6474A-X (Version: 15.00.0023)
Analysis Reporter
Apple Application Support (Version: 1.3.1)
Apple Mobile Device Support (Version: 2.6.0.32)
Apple Software Update (Version: 2.1.1.116)
Atari Anniversary Edition
Atheros Driver Installation Program (Version: 5.2)
Atheros Wi-Fi Protected Setup Library
ATI Catalyst Install Manager (Version: 3.0.664.0)
Battlefield Play4Free
Bing Bar (Version: 7.1.364.0)
BlackBerry Desktop Software 6.0 (Version: 6.0.0.40)
Bonjour (Version: 1.0.106)
BrotherSoft Extreme Toolbar (Version: 6.3.3.3)
Camera Assistant Software for Toshiba (Version: 1.7.193.0508L)
CardRecovery 5.30
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Full Existing (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Full New (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Light (Version: 2008.0422.2139.36895)
Catalyst Control Center Graphics Previews Vista (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Czech (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Danish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Dutch (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Finnish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization French (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization German (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Greek (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Hungarian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Italian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Japanese (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Korean (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Norwegian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Polish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Portuguese (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Russian (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Spanish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Swedish (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Thai (Version: 2008.0422.2139.36895)
Catalyst Control Center Localization Turkish (Version: 2008.0422.2139.36895)
ccc-core-static (Version: 2008.0422.2139.36895)
ccc-utility (Version: 2008.0422.2139.36895)
CCC Help Chinese Standard (Version: 2008.0422.2138.36895)
CCC Help Chinese Traditional (Version: 2008.0422.2138.36895)
CCC Help Czech (Version: 2008.0422.2138.36895)
CCC Help Danish (Version: 2008.0422.2138.36895)
CCC Help Dutch (Version: 2008.0422.2138.36895)
CCC Help English (Version: 2008.0422.2138.36895)
CCC Help Finnish (Version: 2008.0422.2138.36895)
CCC Help French (Version: 2008.0422.2138.36895)
CCC Help German (Version: 2008.0422.2138.36895)
CCC Help Greek (Version: 2008.0422.2138.36895)
CCC Help Hungarian (Version: 2008.0422.2138.36895)
CCC Help Italian (Version: 2008.0422.2138.36895)
CCC Help Japanese (Version: 2008.0422.2138.36895)
CCC Help Korean (Version: 2008.0422.2138.36895)
CCC Help Norwegian (Version: 2008.0422.2138.36895)
CCC Help Polish (Version: 2008.0422.2138.36895)
CCC Help Portuguese (Version: 2008.0422.2138.36895)
CCC Help Russian (Version: 2008.0422.2138.36895)
CCC Help Spanish (Version: 2008.0422.2138.36895)
CCC Help Swedish (Version: 2008.0422.2138.36895)
CCC Help Thai (Version: 2008.0422.2138.36895)
CCC Help Turkish (Version: 2008.0422.2138.36895)
CD/DVD Drive Acoustic Silencer (Version: 2.02.03)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conduit Engine (Version: )
Coupon Printer for Windows (Version: 5.0.0.1)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DeLorme Street Atlas USA 2009 (Version: 9.00.0000)
DeLorme Topo USA 8.0 (Version: 8.091.30977)
Dev-C++ 5 beta 9 release (4.9.9.2)
Digital Copy
Dropbox (Version: 1.4.11)
eMusic Download Manager 4.1.2 (Version: 4.1.2)
FirePower for Microsoft Combat Flight Simulator 3 (Version: 1.05a English)
Flixster (Version: 1.2.2.51)
Google Chrome (Version: 21.0.1180.75)
Google Desktop (Version: 5.9.1005.12335)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.21.115)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
HP Deskjet 3050A J611 series Basic Device Software (Version: 25.0.571.0)
HP Deskjet 3050A J611 series Help (Version: 140.0.2.2)
HP Deskjet 3050A J611 series Product Improvement Study (Version: 25.0.571.0)
HP Photo Creations (Version: 1.0.0.5192)
HP Update (Version: 5.003.001.001)
IL-2 Sturmovik 1946 (Version: 1.00.0000)
Impulse® (Version: 3.30)
iTunes (Version: 9.0.2.25)
Japanese Fonts Support For Adobe Reader 8 (Version: 8.0)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
Java™ 6 Update 6 (Version: 1.6.0.60)
Junk Mail filter update (Version: 15.4.3502.0922)
Lexmark 3300 Series
LG Android Driver (Version: 1.0)
MapInfo Professional 10.5 (Version: 10.5.0)
MapXtreme v7.0.0 Runtime NCP (Version: 7.0.0)
McAfee Internet Security (Version: 11.0.678)
MechWarrior 4 Mercenaries
MechWarrior Black Knight
MechWarrior Vengeance
Memeo AutoBackup (Version: 3.00.3251)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Combat Flight Simulator 3.1
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Suite Activation Assistant (Version: 2.7)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (Version: 14.0.5120.5000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 9.7.0621)
Move Media Player
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MySQL ODBC 3.51 Driver (Version: 03.51.04)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Origin (Version: 8.2.1.458)
PdaNet for Android 3.00
Picasa 3 (Version: 3.1)
Pitney Bowes Business Insight Trial Data (Version: 10.0)
Playfin Games Toolbar (Version: 1.0.0.0)
projheartthrob
PunkBuster Services (Version: 0.990)
QuickBooks Financial Center (Version: 1.00.0000)
QuickTime (Version: 7.64.17.73)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5599)
Realtek USB 2.0 Card Reader (Version: )
RegClean Pro (Version: 6.21)
Segoe UI (Version: 15.4.2271.0615)
Sentinel Protection Installer 7.5.0 (Version: 7.5.0)
Skins (Version: 2008.0422.2139.36895)
StoneLoops of Jurassica
Synaptics Pointing Device Driver (Version: 11.2.4.0)
TOSHIBA Assist (Version: 2.01.05)
TOSHIBA ConfigFree (Version: 7.2.15)
TOSHIBA Disc Creator (Version: 2.0.1.3)
TOSHIBA DVD PLAYER (Version: 1.30.12)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Face Recognition (Version: 2.0.2.32)
TOSHIBA Games (Version: 1.0.0.50)
TOSHIBA Hardware Setup (Version: 2.00.08)
TOSHIBA Recovery Disc Creator (Version: 2.0.0.1b)
Toshiba Registration (Version: 1.00.0000)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TOSHIBA Software Upgrades (Version: 4.3)
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.00.04)
TOSHIBA Value Added Package (Version: 1.1.19)
TurboTax 2010
TurboTax 2010 WinPerFedFormset (Version: 010.000.5821)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0501)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0222)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.2783)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0449)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0211)
TurboTax 2011 wrapper (Version: 011.000.0121)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
WeatherBug (Version: 7.0.0.3)
WebEx
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinZip 16.0 (Version: 16.0.9691)
YNAB 3 (Version: 3.6.0)
YNAB 3 (Version: 3.6.0.5)
YNAB 4 version 4.1.20 (Version: 4.1.20)

========================= Memory info: ===================================

Percentage of memory in use: 17%
Total physical RAM: 2813.1 MB
Available physical RAM: 2326.11 MB
Total Pagefile: 5836.72 MB
Available Pagefile: 5538.99 MB
Total Virtual: 2047.88 MB
Available Virtual: 1965.48 MB

========================= Partitions: =====================================

1 Drive c: (SQ004720V05) (Fixed) (Total:290.73 GB) (Free:114.8 GB) NTFS
3 Drive e: () (Removable) (Total:0.98 GB) (Free:0.78 GB) FAT32

========================= Users: ========================================

User accounts for \\

Administrator Darren Guest


**** End of log ****

FSS log

Farbar Service Scanner Version: 06-08-2012
Ran by Darren (administrator) on 13-08-2012 at 23:07:58
Running from "C:\"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Network
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open Dnscache registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open Dnscache registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open Dnscache registry key. The service key does not exist.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Nsi Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open Nsi registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open Nsi registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open Nsi registry key. The service key does not exist.


Connection Status:
==============
Attempt to access Local Host IP returned error: Localhost is blocked: Other errors
LAN connected.
Attempt to access Google IP returned error: Other errors
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

PlugPlay Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open PlugPlay registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open PlugPlay registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to open SharedAccess registry key. The service key does not exist.


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:50 PM

Posted 13 August 2012 - 10:49 PM

Download

Dns cache
NSI

Launch them,click YES

Restart the PC ,post the new FSS log and check your browser

#8 FLKracker

FLKracker
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 13 August 2012 - 11:09 PM

Browser is working but the lower right icon that shows connection status says unknown and the specified service does not exist as an installed service.

new FSS log

Farbar Service Scanner Version: 06-08-2012
Ran by Darren (administrator) on 14-08-2012 at 00:01:59
Running from "C:\"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Network
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

PlugPlay Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open PlugPlay registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open PlugPlay registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to open SharedAccess registry key. The service key does not exist.


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:50 PM

Posted 13 August 2012 - 11:19 PM

Please follow my initial instructions and post the log

#10 FLKracker

FLKracker
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 14 August 2012 - 05:06 AM

new TDSSkiller log

00:28:12.0907 0964 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
00:28:13.0772 0964 ============================================================
00:28:13.0772 0964 Current date / time: 2012/08/14 00:28:13.0772
00:28:13.0772 0964 SystemInfo:
00:28:13.0772 0964
00:28:13.0772 0964 OS Version: 6.0.6002 ServicePack: 2.0
00:28:13.0772 0964 Product type: Workstation
00:28:13.0772 0964 ComputerName: DARREN-PC
00:28:13.0772 0964 UserName: Darren
00:28:13.0772 0964 Windows directory: C:\Windows
00:28:13.0772 0964 System windows directory: C:\Windows
00:28:13.0772 0964 Processor architecture: Intel x86
00:28:13.0772 0964 Number of processors: 2
00:28:13.0772 0964 Page size: 0x1000
00:28:13.0772 0964 Boot type: Safe boot with network
00:28:13.0772 0964 ============================================================
00:28:14.0937 0964 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:28:14.0937 0964 ============================================================
00:28:14.0937 0964 \Device\Harddisk0\DR0:
00:28:14.0937 0964 MBR partitions:
00:28:14.0937 0964 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x24574000
00:28:14.0937 0964 ============================================================
00:28:14.0972 0964 C: <-> \Device\Harddisk0\DR0\Partition0
00:28:14.0972 0964 ============================================================
00:28:14.0972 0964 Initialize success
00:28:14.0972 0964 ============================================================
00:28:24.0887 0972 ============================================================
00:28:24.0887 0972 Scan started
00:28:24.0887 0972 Mode: Manual; TDLFS;
00:28:24.0887 0972 ============================================================
00:28:25.0502 0972 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
00:28:25.0507 0972 ACPI - ok
00:28:25.0702 0972 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
00:28:25.0712 0972 AdobeFlashPlayerUpdateSvc - ok
00:28:25.0842 0972 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
00:28:25.0852 0972 adp94xx - ok
00:28:25.0937 0972 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
00:28:25.0942 0972 adpahci - ok
00:28:26.0032 0972 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
00:28:26.0032 0972 adpu160m - ok
00:28:26.0067 0972 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
00:28:26.0072 0972 adpu320 - ok
00:28:26.0142 0972 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
00:28:26.0147 0972 AeLookupSvc - ok
00:28:26.0242 0972 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
00:28:26.0242 0972 AFD - ok
00:28:26.0327 0972 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
00:28:26.0327 0972 AgereModemAudio - ok
00:28:26.0477 0972 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
00:28:26.0502 0972 AgereSoftModem - ok
00:28:26.0532 0972 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
00:28:26.0537 0972 agp440 - ok
00:28:26.0572 0972 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
00:28:26.0577 0972 aic78xx - ok
00:28:26.0662 0972 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
00:28:26.0667 0972 ALG - ok
00:28:26.0752 0972 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
00:28:26.0752 0972 aliide - ok
00:28:26.0787 0972 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
00:28:26.0787 0972 amdagp - ok
00:28:26.0847 0972 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
00:28:26.0852 0972 amdide - ok
00:28:26.0912 0972 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
00:28:26.0912 0972 AmdK7 - ok
00:28:26.0952 0972 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
00:28:26.0957 0972 AmdK8 - ok
00:28:27.0072 0972 Andbus (19f9b865832fc563ed8eed449cb4ff31) C:\Windows\system32\DRIVERS\lgandbus.sys
00:28:27.0072 0972 Andbus - ok
00:28:27.0102 0972 AndDiag (f7ec18db02c9fb26aed52e0e1bb98960) C:\Windows\system32\DRIVERS\lganddiag.sys
00:28:27.0102 0972 AndDiag - ok
00:28:27.0232 0972 AndGps (6d79f0c7f33dd85f50d69c7d7efec9e0) C:\Windows\system32\DRIVERS\lgandgps.sys
00:28:27.0237 0972 AndGps - ok
00:28:27.0282 0972 ANDModem (881837e816b948f7a94098add21afd7c) C:\Windows\system32\DRIVERS\lgandmodem.sys
00:28:27.0287 0972 ANDModem - ok
00:28:27.0367 0972 androidusb (919957563c857145e9c4b3acdc8eaf7d) C:\Windows\system32\Drivers\androidusb.sys
00:28:27.0367 0972 androidusb - ok
00:28:27.0522 0972 Apple Mobile Device (4b5ae15e5c73eb4dc8dbec2788230d41) C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
00:28:27.0527 0972 Apple Mobile Device - ok
00:28:27.0562 0972 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
00:28:27.0567 0972 arc - ok
00:28:27.0637 0972 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
00:28:27.0637 0972 arcsas - ok
00:28:27.0692 0972 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
00:28:27.0697 0972 AsyncMac - ok
00:28:27.0767 0972 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
00:28:27.0767 0972 atapi - ok
00:28:28.0027 0972 athr (d59e7a5daa08c91172e95b4f1ca6d8c3) C:\Windows\system32\DRIVERS\athr.sys
00:28:28.0072 0972 athr - ok
00:28:28.0282 0972 Ati External Event Utility (37c63181d8a1b6c948f0866bcbde406e) C:\Windows\system32\Ati2evxx.exe
00:28:28.0297 0972 Ati External Event Utility - ok
00:28:28.0762 0972 atikmdag (a2b6478963451a99c28da8133b648142) C:\Windows\system32\DRIVERS\atikmdag.sys
00:28:28.0867 0972 atikmdag - ok
00:28:29.0042 0972 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
00:28:29.0042 0972 AtiPcie - ok
00:28:29.0097 0972 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
00:28:29.0102 0972 AudioEndpointBuilder - ok
00:28:29.0152 0972 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
00:28:29.0157 0972 Audiosrv - ok
00:28:29.0307 0972 BBSvc (37bfed63841e56f465e1a0cd32f1bcc9) C:\Program Files\Microsoft\BingBar\7.1.364.0\BBSvc.exe
00:28:29.0312 0972 BBSvc - ok
00:28:29.0417 0972 BBUpdate (b47230df549e171449b5d25cfcee9f57) C:\Program Files\Microsoft\BingBar\7.1.364.0\SeaPort.exe
00:28:29.0422 0972 BBUpdate - ok
00:28:29.0482 0972 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
00:28:29.0482 0972 Beep - ok
00:28:29.0612 0972 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
00:28:29.0622 0972 BITS - ok
00:28:29.0652 0972 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
00:28:29.0657 0972 blbdrive - ok
00:28:29.0757 0972 Bonjour Service (3f56903e124e820aeece6d471583c6c1) C:\Program Files\Bonjour\mDNSResponder.exe
00:28:29.0762 0972 Bonjour Service - ok
00:28:29.0837 0972 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
00:28:29.0842 0972 bowser - ok
00:28:29.0932 0972 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
00:28:29.0932 0972 BrFiltLo - ok
00:28:30.0012 0972 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
00:28:30.0017 0972 BrFiltUp - ok
00:28:30.0052 0972 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
00:28:30.0052 0972 Browser - ok
00:28:30.0137 0972 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
00:28:30.0142 0972 Brserid - ok
00:28:30.0197 0972 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
00:28:30.0197 0972 BrSerWdm - ok
00:28:30.0222 0972 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
00:28:30.0222 0972 BrUsbMdm - ok
00:28:30.0282 0972 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
00:28:30.0287 0972 BrUsbSer - ok
00:28:30.0307 0972 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
00:28:30.0307 0972 BTHMODEM - ok
00:28:30.0387 0972 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
00:28:30.0387 0972 cdfs - ok
00:28:30.0422 0972 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
00:28:30.0427 0972 cdrom - ok
00:28:30.0502 0972 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
00:28:30.0502 0972 CertPropSvc - ok
00:28:30.0607 0972 cfwids (1c7b1e36f3ced9e4b0b13385e627fe8b) C:\Windows\system32\drivers\cfwids.sys
00:28:30.0607 0972 cfwids - ok
00:28:30.0692 0972 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
00:28:30.0697 0972 circlass - ok
00:28:30.0752 0972 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
00:28:30.0762 0972 CLFS - ok
00:28:30.0887 0972 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:28:30.0892 0972 clr_optimization_v2.0.50727_32 - ok
00:28:30.0992 0972 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:28:31.0002 0972 clr_optimization_v4.0.30319_32 - ok
00:28:31.0027 0972 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
00:28:31.0032 0972 CmBatt - ok
00:28:31.0097 0972 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
00:28:31.0102 0972 cmdide - ok
00:28:31.0122 0972 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
00:28:31.0127 0972 Compbatt - ok
00:28:31.0182 0972 COMSysApp - ok
00:28:31.0297 0972 ConfigFree Service (d10d01b2dfcd8d2f32a32ed29e8da1c2) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
00:28:31.0302 0972 ConfigFree Service - ok
00:28:31.0362 0972 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
00:28:31.0367 0972 crcdisk - ok
00:28:31.0397 0972 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
00:28:31.0397 0972 Crusoe - ok
00:28:31.0557 0972 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
00:28:31.0557 0972 CryptSvc - ok
00:28:31.0697 0972 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
00:28:31.0707 0972 DcomLaunch - ok
00:28:31.0822 0972 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
00:28:31.0822 0972 DfsC - ok
00:28:32.0047 0972 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
00:28:32.0102 0972 DFSR - ok
00:28:32.0297 0972 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
00:28:32.0297 0972 Dhcp - ok
00:28:32.0392 0972 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
00:28:32.0392 0972 disk - ok
00:28:32.0432 0972 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
00:28:32.0432 0972 Dnscache - ok
00:28:32.0512 0972 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
00:28:32.0517 0972 dot3svc - ok
00:28:32.0657 0972 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
00:28:32.0662 0972 DPS - ok
00:28:32.0747 0972 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
00:28:32.0747 0972 drmkaud - ok
00:28:32.0877 0972 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
00:28:32.0892 0972 DXGKrnl - ok
00:28:32.0962 0972 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
00:28:32.0967 0972 E1G60 - ok
00:28:33.0002 0972 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
00:28:33.0007 0972 EapHost - ok
00:28:33.0067 0972 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
00:28:33.0072 0972 Ecache - ok
00:28:33.0177 0972 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
00:28:33.0187 0972 ehRecvr - ok
00:28:33.0252 0972 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
00:28:33.0252 0972 ehSched - ok
00:28:33.0267 0972 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
00:28:33.0267 0972 ehstart - ok
00:28:33.0382 0972 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
00:28:33.0392 0972 elxstor - ok
00:28:33.0522 0972 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
00:28:33.0537 0972 EMDMgmt - ok
00:28:33.0587 0972 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
00:28:33.0587 0972 ErrDev - ok
00:28:33.0707 0972 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
00:28:33.0707 0972 EventSystem - ok
00:28:33.0847 0972 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
00:28:33.0852 0972 exfat - ok
00:28:33.0952 0972 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
00:28:33.0957 0972 fastfat - ok
00:28:34.0027 0972 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
00:28:34.0027 0972 fdc - ok
00:28:34.0102 0972 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
00:28:34.0102 0972 fdPHost - ok
00:28:34.0117 0972 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
00:28:34.0122 0972 FDResPub - ok
00:28:34.0142 0972 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
00:28:34.0142 0972 FileInfo - ok
00:28:34.0202 0972 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
00:28:34.0202 0972 Filetrace - ok
00:28:34.0422 0972 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
00:28:34.0447 0972 FLEXnet Licensing Service - ok
00:28:34.0477 0972 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
00:28:34.0477 0972 flpydisk - ok
00:28:34.0577 0972 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
00:28:34.0582 0972 FltMgr - ok
00:28:34.0717 0972 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
00:28:34.0717 0972 FontCache3.0.0.0 - ok
00:28:34.0792 0972 fssfltr (b0082808a6856a252f7cdd939892ce50) C:\Windows\system32\DRIVERS\fssfltr.sys
00:28:34.0797 0972 fssfltr - ok
00:28:35.0057 0972 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
00:28:35.0112 0972 fsssvc - ok
00:28:35.0287 0972 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
00:28:35.0292 0972 Fs_Rec - ok
00:28:35.0322 0972 FTDIBUS (47b9cf937ac479046da289bd5a769ce9) C:\Windows\system32\drivers\ftdibus.sys
00:28:35.0322 0972 FTDIBUS - ok
00:28:35.0397 0972 FTSER2K (216b9a2191676034999785c7f94fa5d6) C:\Windows\system32\drivers\ftser2k.sys
00:28:35.0402 0972 FTSER2K - ok
00:28:35.0482 0972 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
00:28:35.0482 0972 FwLnk - ok
00:28:35.0512 0972 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
00:28:35.0517 0972 gagp30kx - ok
00:28:35.0677 0972 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
00:28:35.0687 0972 GameConsoleService - ok
00:28:35.0767 0972 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:28:35.0767 0972 GEARAspiWDM - ok
00:28:35.0857 0972 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
00:28:35.0857 0972 GoogleDesktopManager-051210-111108 - ok
00:28:35.0987 0972 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
00:28:36.0002 0972 gpsvc - ok
00:28:36.0122 0972 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
00:28:36.0127 0972 gupdate - ok
00:28:36.0132 0972 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
00:28:36.0132 0972 gupdatem - ok
00:28:36.0227 0972 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
00:28:36.0232 0972 gusvc - ok
00:28:36.0337 0972 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
00:28:36.0342 0972 HdAudAddService - ok
00:28:36.0472 0972 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
00:28:36.0487 0972 HDAudBus - ok
00:28:36.0552 0972 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
00:28:36.0552 0972 HidBth - ok
00:28:36.0577 0972 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
00:28:36.0577 0972 HidIr - ok
00:28:36.0647 0972 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
00:28:36.0652 0972 hidserv - ok
00:28:36.0677 0972 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
00:28:36.0682 0972 HidUsb - ok
00:28:36.0797 0972 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
00:28:36.0802 0972 hkmsvc - ok
00:28:36.0837 0972 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
00:28:36.0842 0972 HpCISSs - ok
00:28:36.0972 0972 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
00:28:36.0982 0972 HTTP - ok
00:28:37.0042 0972 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
00:28:37.0042 0972 i2omp - ok
00:28:37.0102 0972 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
00:28:37.0102 0972 i8042prt - ok
00:28:37.0157 0972 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
00:28:37.0162 0972 iaStorV - ok
00:28:37.0327 0972 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
00:28:37.0332 0972 IDriverT - ok
00:28:37.0522 0972 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:28:37.0542 0972 idsvc - ok
00:28:37.0597 0972 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
00:28:37.0597 0972 iirsp - ok
00:28:37.0722 0972 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
00:28:37.0732 0972 IKEEXT - ok
00:28:38.0037 0972 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
00:28:38.0077 0972 IntcAzAudAddService - ok
00:28:38.0257 0972 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
00:28:38.0262 0972 intelide - ok
00:28:38.0297 0972 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
00:28:38.0297 0972 intelppm - ok
00:28:38.0457 0972 IntuitUpdateService (3dc635b66dd7412e1c9c3a77b8d78f25) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
00:28:38.0462 0972 IntuitUpdateService - ok
00:28:38.0567 0972 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
00:28:38.0572 0972 IntuitUpdateServiceV4 - ok
00:28:38.0642 0972 IO_Memory - ok
00:28:38.0737 0972 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:28:38.0742 0972 IpFilterDriver - ok
00:28:38.0747 0972 IpInIp - ok
00:28:38.0772 0972 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
00:28:38.0777 0972 IPMIDRV - ok
00:28:38.0847 0972 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
00:28:38.0852 0972 IPNAT - ok
00:28:38.0972 0972 iPod Service (31116e352808019e69eca58d1a6c66b0) C:\Program Files\iPod\bin\iPodService.exe
00:28:38.0987 0972 iPod Service - ok
00:28:39.0042 0972 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
00:28:39.0042 0972 IRENUM - ok
00:28:39.0072 0972 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
00:28:39.0097 0972 isapnp - ok
00:28:39.0162 0972 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
00:28:39.0162 0972 iScsiPrt - ok
00:28:39.0187 0972 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
00:28:39.0187 0972 iteatapi - ok
00:28:39.0242 0972 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
00:28:39.0247 0972 iteraid - ok
00:28:39.0442 0972 jswpsapi (957135960e7533ea5c7ea0bfb34f8efd) C:\Program Files\Jumpstart\jswpsapi.exe
00:28:39.0462 0972 jswpsapi - ok
00:28:39.0482 0972 jswpslwf (11ad410f41af42ba12e63187e3ec141a) C:\Windows\system32\DRIVERS\jswpslwf.sys
00:28:39.0487 0972 jswpslwf - ok
00:28:39.0517 0972 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
00:28:39.0517 0972 kbdclass - ok
00:28:39.0597 0972 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
00:28:39.0597 0972 kbdhid - ok
00:28:39.0612 0972 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:28:39.0612 0972 KeyIso - ok
00:28:39.0712 0972 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
00:28:39.0717 0972 KR10I - ok
00:28:39.0807 0972 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
00:28:39.0812 0972 KR10N - ok
00:28:39.0942 0972 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
00:28:39.0952 0972 KSecDD - ok
00:28:40.0032 0972 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
00:28:40.0042 0972 KtmRm - ok
00:28:40.0122 0972 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
00:28:40.0127 0972 LanmanServer - ok
00:28:40.0207 0972 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
00:28:40.0212 0972 LanmanWorkstation - ok
00:28:40.0307 0972 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
00:28:40.0307 0972 lltdio - ok
00:28:40.0352 0972 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
00:28:40.0357 0972 lltdsvc - ok
00:28:40.0422 0972 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
00:28:40.0422 0972 lmhosts - ok
00:28:40.0492 0972 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
00:28:40.0497 0972 LSI_FC - ok
00:28:40.0532 0972 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
00:28:40.0537 0972 LSI_SAS - ok
00:28:40.0602 0972 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
00:28:40.0607 0972 LSI_SCSI - ok
00:28:40.0662 0972 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
00:28:40.0662 0972 luafv - ok
00:28:40.0667 0972 lxcc_device - ok
00:28:40.0862 0972 M4-Service (f1d72877fa97d617be70aefb3a30cd91) C:\Users\Darren\Downloads\M4-Service.exe
00:28:40.0882 0972 M4-Service - ok
00:28:41.0032 0972 McAfee SiteAdvisor Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
00:28:41.0037 0972 McAfee SiteAdvisor Service - ok
00:28:41.0042 0972 McMPFSvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
00:28:41.0042 0972 McMPFSvc - ok
00:28:41.0052 0972 mcmscsvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
00:28:41.0052 0972 mcmscsvc - ok
00:28:41.0112 0972 McNaiAnn (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
00:28:41.0112 0972 McNaiAnn - ok
00:28:41.0122 0972 McNASvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
00:28:41.0122 0972 McNASvc - ok
00:28:41.0287 0972 McODS (135aa9e9e7047b7dc1f753205d421a26) C:\Program Files\McAfee\VirusScan\mcods.exe
00:28:41.0297 0972 McODS - ok
00:28:41.0332 0972 McProxy (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
00:28:41.0332 0972 McProxy - ok
00:28:41.0452 0972 McShield (593fa4c378818ece76ba64a11ad56cf2) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
00:28:41.0457 0972 McShield - ok
00:28:41.0662 0972 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
00:28:41.0667 0972 Mcx2Svc - ok
00:28:41.0792 0972 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
00:28:41.0802 0972 MDM - ok
00:28:41.0937 0972 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
00:28:41.0937 0972 megasas - ok
00:28:41.0992 0972 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
00:28:42.0002 0972 MegaSR - ok
00:28:42.0097 0972 mfeapfk (43c31bdf404a6d7a7ac1bfd5ead2a566) C:\Windows\system32\drivers\mfeapfk.sys
00:28:42.0102 0972 mfeapfk - ok
00:28:42.0212 0972 mfeavfk (c1dc5f42d3367f33b6451be78b38bd46) C:\Windows\system32\drivers\mfeavfk.sys
00:28:42.0217 0972 mfeavfk - ok
00:28:42.0297 0972 mfebopk (0435c43f4c2be01b84868ad2a906397b) C:\Windows\system32\drivers\mfebopk.sys
00:28:42.0297 0972 mfebopk - ok
00:28:42.0397 0972 mfefire (7e1f8b1bdc8240f08bd358b3a466c005) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
00:28:42.0397 0972 mfefire - ok
00:28:42.0462 0972 mfefirek (4ea6ff90015424517843e931448e00f1) C:\Windows\system32\drivers\mfefirek.sys
00:28:42.0462 0972 mfefirek - ok
00:28:42.0572 0972 mfehidk (d1e998748ba24a731106611d535c6bbf) C:\Windows\system32\drivers\mfehidk.sys
00:28:42.0582 0972 mfehidk - ok
00:28:42.0672 0972 mfenlfk (ac04a618aef3de0fce91c766f9e069da) C:\Windows\system32\DRIVERS\mfenlfk.sys
00:28:42.0677 0972 mfenlfk - ok
00:28:42.0772 0972 mferkdet (f454a13377f0a006d20a8c14a753c432) C:\Windows\system32\drivers\mferkdet.sys
00:28:42.0772 0972 mferkdet - ok
00:28:42.0877 0972 mfevtp (b10c4efd40810c08f4b44df2efcb54f7) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
00:28:42.0877 0972 mfevtp - ok
00:28:42.0987 0972 mfewfpk (f284337aedb7483df8a5fa840647e2b0) C:\Windows\system32\drivers\mfewfpk.sys
00:28:42.0987 0972 mfewfpk - ok
00:28:43.0142 0972 Microsoft SharePoint Workspace Audit Service - ok
00:28:43.0172 0972 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
00:28:43.0172 0972 MMCSS - ok
00:28:43.0257 0972 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
00:28:43.0257 0972 Modem - ok
00:28:43.0317 0972 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
00:28:43.0317 0972 monitor - ok
00:28:43.0332 0972 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
00:28:43.0332 0972 mouclass - ok
00:28:43.0352 0972 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
00:28:43.0357 0972 mouhid - ok
00:28:43.0427 0972 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
00:28:43.0432 0972 MountMgr - ok
00:28:43.0547 0972 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:28:43.0552 0972 MozillaMaintenance - ok
00:28:43.0607 0972 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
00:28:43.0612 0972 mpio - ok
00:28:43.0637 0972 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
00:28:43.0637 0972 mpsdrv - ok
00:28:43.0697 0972 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
00:28:43.0697 0972 Mraid35x - ok
00:28:43.0747 0972 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
00:28:43.0752 0972 MRxDAV - ok
00:28:43.0827 0972 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:28:43.0827 0972 mrxsmb - ok
00:28:43.0912 0972 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:28:43.0917 0972 mrxsmb10 - ok
00:28:43.0942 0972 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:28:43.0947 0972 mrxsmb20 - ok
00:28:44.0077 0972 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
00:28:44.0077 0972 msahci - ok
00:28:44.0117 0972 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
00:28:44.0117 0972 msdsm - ok
00:28:44.0252 0972 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
00:28:44.0257 0972 MSDTC - ok
00:28:44.0272 0972 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
00:28:44.0272 0972 Msfs - ok
00:28:44.0347 0972 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
00:28:44.0352 0972 msisadrv - ok
00:28:44.0387 0972 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
00:28:44.0392 0972 MSiSCSI - ok
00:28:44.0442 0972 msiserver - ok
00:28:44.0647 0972 MSK80Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
00:28:44.0647 0972 MSK80Service - ok
00:28:44.0707 0972 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
00:28:44.0707 0972 MSKSSRV - ok
00:28:44.0712 0972 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
00:28:44.0712 0972 MSPCLOCK - ok
00:28:44.0777 0972 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
00:28:44.0777 0972 MSPQM - ok
00:28:44.0817 0972 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
00:28:44.0822 0972 MsRPC - ok
00:28:44.0912 0972 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
00:28:44.0912 0972 mssmbios - ok
00:28:44.0922 0972 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
00:28:44.0927 0972 MSTEE - ok
00:28:45.0002 0972 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
00:28:45.0002 0972 Mup - ok
00:28:45.0097 0972 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
00:28:45.0107 0972 napagent - ok
00:28:45.0237 0972 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
00:28:45.0237 0972 NativeWifiP - ok
00:28:45.0327 0972 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
00:28:45.0337 0972 NDIS - ok
00:28:45.0377 0972 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
00:28:45.0377 0972 NdisTapi - ok
00:28:45.0387 0972 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
00:28:45.0392 0972 Ndisuio - ok
00:28:45.0467 0972 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
00:28:45.0472 0972 NdisWan - ok
00:28:45.0492 0972 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
00:28:45.0492 0972 NDProxy - ok
00:28:45.0582 0972 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
00:28:45.0582 0972 NetBIOS - ok
00:28:45.0652 0972 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
00:28:45.0657 0972 netbt - ok
00:28:45.0732 0972 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:28:45.0732 0972 Netlogon - ok
00:28:45.0847 0972 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:28:45.0852 0972 NetTcpPortSharing - ok
00:28:45.0937 0972 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
00:28:45.0937 0972 nfrd960 - ok
00:28:46.0042 0972 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
00:28:46.0052 0972 NlaSvc - ok
00:28:46.0122 0972 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
00:28:46.0127 0972 Npfs - ok
00:28:46.0147 0972 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
00:28:46.0147 0972 nsi - ok
00:28:46.0257 0972 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
00:28:46.0257 0972 nsiproxy - ok
00:28:46.0407 0972 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
00:28:46.0427 0972 Ntfs - ok
00:28:46.0512 0972 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
00:28:46.0517 0972 ntrigdigi - ok
00:28:46.0562 0972 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
00:28:46.0562 0972 Null - ok
00:28:46.0622 0972 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
00:28:46.0627 0972 nvraid - ok
00:28:46.0697 0972 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
00:28:46.0697 0972 nvstor - ok
00:28:46.0732 0972 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
00:28:46.0737 0972 nv_agp - ok
00:28:46.0777 0972 NwlnkFlt - ok
00:28:46.0782 0972 NwlnkFwd - ok
00:28:46.0812 0972 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
00:28:46.0817 0972 ohci1394 - ok
00:28:46.0922 0972 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:28:46.0927 0972 ose - ok
00:28:47.0507 0972 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:28:47.0682 0972 osppsvc - ok
00:28:47.0902 0972 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:28:47.0917 0972 p2pimsvc - ok
00:28:47.0962 0972 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:28:47.0967 0972 p2psvc - ok
00:28:48.0082 0972 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
00:28:48.0087 0972 Parport - ok
00:28:48.0177 0972 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
00:28:48.0177 0972 partmgr - ok
00:28:48.0282 0972 Partner Service (3c6e7d73b0e9bc21d5e4b531ab7ec091) C:\ProgramData\Partner\partner.exe
00:28:48.0287 0972 Partner Service - ok
00:28:48.0347 0972 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
00:28:48.0347 0972 Parvdm - ok
00:28:48.0442 0972 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
00:28:48.0447 0972 PcaSvc - ok
00:28:48.0487 0972 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
00:28:48.0492 0972 pci - ok
00:28:48.0617 0972 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
00:28:48.0617 0972 pciide - ok
00:28:48.0667 0972 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
00:28:48.0672 0972 pcmcia - ok
00:28:48.0847 0972 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
00:28:48.0862 0972 PEAUTH - ok
00:28:48.0997 0972 pinger (6dbf2ac2bdaff355995ab25eccc4cfe1) C:\TOSHIBA\IVP\ISM\pinger.exe
00:28:49.0002 0972 pinger - ok
00:28:49.0242 0972 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
00:28:49.0277 0972 pla - ok
00:28:49.0437 0972 pneteth (088335b06f75adbcbb81575c7cae6c43) C:\Windows\system32\DRIVERS\pneteth.sys
00:28:49.0437 0972 pneteth - ok
00:28:49.0517 0972 PnkBstrA (1713d9de407313138118d501b0e3c05b) C:\Windows\system32\PnkBstrA.exe
00:28:49.0522 0972 PnkBstrA - ok
00:28:49.0627 0972 PnkBstrB (27f1be4a53441c9f1f48b9adc145b0a5) C:\Windows\system32\PnkBstrB.exe
00:28:49.0632 0972 PnkBstrB - ok
00:28:49.0772 0972 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:28:49.0777 0972 PNRPAutoReg - ok
00:28:49.0817 0972 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:28:49.0822 0972 PNRPsvc - ok
00:28:49.0877 0972 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
00:28:49.0887 0972 PolicyAgent - ok
00:28:49.0962 0972 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
00:28:49.0962 0972 PptpMiniport - ok
00:28:49.0982 0972 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
00:28:49.0982 0972 Processor - ok
00:28:50.0082 0972 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
00:28:50.0087 0972 ProfSvc - ok
00:28:50.0177 0972 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:28:50.0177 0972 ProtectedStorage - ok
00:28:50.0257 0972 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
00:28:50.0257 0972 PSched - ok
00:28:50.0277 0972 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
00:28:50.0282 0972 PxHelp20 - ok
00:28:50.0482 0972 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
00:28:50.0502 0972 ql2300 - ok
00:28:50.0547 0972 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
00:28:50.0547 0972 ql40xx - ok
00:28:50.0607 0972 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
00:28:50.0612 0972 QWAVEdrv - ok
00:28:50.0632 0972 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
00:28:50.0632 0972 RasAcd - ok
00:28:50.0707 0972 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
00:28:50.0712 0972 RasAuto - ok
00:28:50.0742 0972 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:28:50.0742 0972 Rasl2tp - ok
00:28:50.0887 0972 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
00:28:50.0892 0972 RasMan - ok
00:28:50.0977 0972 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
00:28:50.0977 0972 RasPppoe - ok
00:28:51.0002 0972 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
00:28:51.0007 0972 RasSstp - ok
00:28:51.0147 0972 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
00:28:51.0152 0972 rdbss - ok
00:28:51.0227 0972 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:28:51.0232 0972 RDPCDD - ok
00:28:51.0272 0972 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
00:28:51.0282 0972 rdpdr - ok
00:28:51.0332 0972 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
00:28:51.0332 0972 RDPENCDD - ok
00:28:51.0487 0972 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
00:28:51.0492 0972 RDPWD - ok
00:28:51.0592 0972 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
00:28:51.0597 0972 RemoteAccess - ok
00:28:51.0682 0972 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
00:28:51.0687 0972 RemoteRegistry - ok
00:28:51.0767 0972 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
00:28:51.0772 0972 RimUsb - ok
00:28:51.0797 0972 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
00:28:51.0797 0972 RimVSerPort - ok
00:28:51.0917 0972 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
00:28:51.0917 0972 ROOTMODEM - ok
00:28:52.0012 0972 RoxLiveShare9 - ok
00:28:52.0082 0972 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
00:28:52.0087 0972 RpcLocator - ok
00:28:52.0167 0972 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
00:28:52.0172 0972 RpcSs - ok
00:28:52.0237 0972 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
00:28:52.0242 0972 rspndr - ok
00:28:52.0292 0972 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
00:28:52.0297 0972 RTL8169 - ok
00:28:52.0357 0972 RTSTOR (d1fb9a678bd6c2b1129fcb09d5feb6dd) C:\Windows\system32\drivers\RTSTOR.SYS
00:28:52.0362 0972 RTSTOR - ok
00:28:52.0442 0972 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:28:52.0442 0972 SamSs - ok
00:28:52.0482 0972 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
00:28:52.0502 0972 sbp2port - ok
00:28:52.0607 0972 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
00:28:52.0612 0972 SCardSvr - ok
00:28:52.0707 0972 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
00:28:52.0722 0972 Schedule - ok
00:28:52.0802 0972 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
00:28:52.0802 0972 SCPolicySvc - ok
00:28:52.0847 0972 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
00:28:52.0852 0972 SDRSVC - ok
00:28:52.0922 0972 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
00:28:52.0922 0972 secdrv - ok
00:28:53.0022 0972 Sentinel (a2cc81c30bef6ac9f27055490eef6de3) C:\Windows\System32\Drivers\SENTINEL.SYS
00:28:53.0027 0972 Sentinel - ok
00:28:53.0047 0972 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
00:28:53.0047 0972 Serenum - ok
00:28:53.0142 0972 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
00:28:53.0142 0972 Serial - ok
00:28:53.0177 0972 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
00:28:53.0182 0972 sermouse - ok
00:28:53.0217 0972 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
00:28:53.0222 0972 sffdisk - ok
00:28:53.0292 0972 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
00:28:53.0292 0972 sffp_mmc - ok
00:28:53.0307 0972 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
00:28:53.0307 0972 sffp_sd - ok
00:28:53.0327 0972 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
00:28:53.0332 0972 sfloppy - ok
00:28:53.0452 0972 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
00:28:53.0457 0972 ShellHWDetection - ok
00:28:53.0582 0972 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
00:28:53.0587 0972 sisagp - ok
00:28:53.0612 0972 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
00:28:53.0612 0972 SiSRaid2 - ok
00:28:53.0682 0972 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
00:28:53.0682 0972 SiSRaid4 - ok
00:28:54.0112 0972 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
00:28:54.0187 0972 slsvc - ok
00:28:54.0312 0972 SmartFaceVWatchSrv (3566310df25ea5c3b2e9f50f5b50eac1) C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatchSrv.exe
00:28:54.0312 0972 SmartFaceVWatchSrv - ok
00:28:54.0472 0972 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
00:28:54.0477 0972 Smb - ok
00:28:54.0617 0972 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
00:28:54.0617 0972 SNMPTRAP - ok
00:28:54.0707 0972 SNTNLUSB (9de6e60ce7fd82b4985de5d9c22265ad) C:\Windows\system32\DRIVERS\SNTNLUSB.SYS
00:28:54.0707 0972 SNTNLUSB - ok
00:28:54.0792 0972 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
00:28:54.0792 0972 spldr - ok
00:28:54.0837 0972 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
00:28:54.0842 0972 Spooler - ok
00:28:54.0992 0972 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
00:28:54.0997 0972 srv - ok
00:28:55.0132 0972 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
00:28:55.0137 0972 srv2 - ok
00:28:55.0167 0972 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
00:28:55.0172 0972 srvnet - ok
00:28:55.0302 0972 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
00:28:55.0312 0972 SSDPSRV - ok
00:28:55.0342 0972 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
00:28:55.0347 0972 SstpSvc - ok
00:28:55.0467 0972 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
00:28:55.0467 0972 StillCam - ok
00:28:55.0567 0972 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
00:28:55.0582 0972 stisvc - ok
00:28:55.0652 0972 SVRPEDRV (3e4239b92139f7174a0da7d53fe5e1ab) C:\Windows\System32\sysprep\PEDrv.sys
00:28:55.0657 0972 SVRPEDRV - ok
00:28:55.0677 0972 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
00:28:55.0677 0972 swenum - ok
00:28:55.0787 0972 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
00:28:55.0797 0972 swprv - ok
00:28:55.0927 0972 Swupdtmr (e1292c1ed4deb17b8a9b586d22cb2061) c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
00:28:55.0927 0972 Swupdtmr - ok
00:28:55.0967 0972 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
00:28:55.0972 0972 Symc8xx - ok
00:28:56.0092 0972 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
00:28:56.0092 0972 Sym_hi - ok
00:28:56.0122 0972 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
00:28:56.0122 0972 Sym_u3 - ok
00:28:56.0232 0972 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
00:28:56.0252 0972 SynTP - ok
00:28:56.0322 0972 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
00:28:56.0327 0972 TabletInputService - ok
00:28:56.0437 0972 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
00:28:56.0442 0972 TapiSrv - ok
00:28:56.0557 0972 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
00:28:56.0562 0972 TBS - ok
00:28:56.0772 0972 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
00:28:56.0777 0972 Tcpip - ok
00:28:56.0817 0972 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
00:28:56.0822 0972 Tcpip6 - ok
00:28:56.0892 0972 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
00:28:56.0892 0972 tcpipreg - ok
00:28:56.0922 0972 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
00:28:56.0922 0972 tdcmdpst - ok
00:28:57.0047 0972 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
00:28:57.0047 0972 TDPIPE - ok
00:28:57.0057 0972 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
00:28:57.0057 0972 TDTCP - ok
00:28:57.0092 0972 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
00:28:57.0092 0972 tdx - ok
00:28:57.0177 0972 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
00:28:57.0182 0972 TermDD - ok
00:28:57.0302 0972 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
00:28:57.0312 0972 TermService - ok
00:28:57.0447 0972 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
00:28:57.0452 0972 Themes - ok
00:28:57.0552 0972 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
00:28:57.0552 0972 THREADORDER - ok
00:28:57.0702 0972 TNaviSrv (b146492a882a25a2df1db4668fced6c8) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
00:28:57.0707 0972 TNaviSrv - ok
00:28:57.0737 0972 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
00:28:57.0747 0972 TODDSrv - ok
00:28:57.0907 0972 TosCoSrv (44dbac611b11646683b5b066a049b8e4) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
00:28:57.0937 0972 TosCoSrv - ok
00:28:57.0992 0972 TOSHIBA SMART Log Service (22690dffc7f2a18279a7a0489aa02bac) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
00:28:57.0997 0972 TOSHIBA SMART Log Service - ok
00:28:58.0167 0972 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys
00:28:58.0177 0972 tos_sps32 - ok
00:28:58.0252 0972 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
00:28:58.0257 0972 TrkWks - ok
00:28:58.0352 0972 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
00:28:58.0352 0972 TrustedInstaller - ok
00:28:58.0437 0972 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:28:58.0442 0972 tssecsrv - ok
00:28:58.0462 0972 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
00:28:58.0467 0972 tunmp - ok
00:28:58.0567 0972 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
00:28:58.0567 0972 tunnel - ok
00:28:58.0687 0972 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
00:28:58.0687 0972 TVALZ - ok
00:28:58.0752 0972 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
00:28:58.0757 0972 uagp35 - ok
00:28:58.0802 0972 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
00:28:58.0822 0972 udfs - ok
00:28:58.0882 0972 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
00:28:58.0887 0972 UI0Detect - ok
00:28:58.0967 0972 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
00:28:58.0972 0972 uliagpkx - ok
00:28:59.0007 0972 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
00:28:59.0012 0972 uliahci - ok
00:28:59.0072 0972 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
00:28:59.0077 0972 UlSata - ok
00:28:59.0152 0972 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
00:28:59.0157 0972 ulsata2 - ok
00:28:59.0182 0972 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
00:28:59.0182 0972 umbus - ok
00:28:59.0282 0972 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
00:28:59.0282 0972 usbaudio - ok
00:28:59.0362 0972 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
00:28:59.0362 0972 usbccgp - ok
00:28:59.0432 0972 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
00:28:59.0437 0972 usbcir - ok
00:28:59.0547 0972 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
00:28:59.0547 0972 usbehci - ok
00:28:59.0602 0972 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
00:28:59.0607 0972 usbhub - ok
00:28:59.0677 0972 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
00:28:59.0682 0972 usbohci - ok
00:28:59.0712 0972 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
00:28:59.0712 0972 usbprint - ok
00:28:59.0787 0972 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
00:28:59.0787 0972 usbscan - ok
00:28:59.0847 0972 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:28:59.0847 0972 USBSTOR - ok
00:28:59.0882 0972 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
00:28:59.0887 0972 usbuhci - ok
00:28:59.0967 0972 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
00:28:59.0972 0972 usbvideo - ok
00:29:00.0037 0972 UVCFTR (8c5094a8ab24de7496c7c19942f2df04) C:\Windows\system32\Drivers\UVCFTR_S.SYS
00:29:00.0037 0972 UVCFTR - ok
00:29:00.0077 0972 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
00:29:00.0082 0972 UxSms - ok
00:29:00.0237 0972 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
00:29:00.0247 0972 vds - ok
00:29:00.0317 0972 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
00:29:00.0327 0972 vga - ok
00:29:00.0382 0972 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
00:29:00.0387 0972 VgaSave - ok
00:29:00.0397 0972 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
00:29:00.0402 0972 viaagp - ok
00:29:00.0412 0972 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
00:29:00.0417 0972 ViaC7 - ok
00:29:00.0487 0972 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
00:29:00.0487 0972 viaide - ok
00:29:00.0587 0972 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
00:29:00.0592 0972 volmgr - ok
00:29:00.0697 0972 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
00:29:00.0702 0972 volmgrx - ok
00:29:00.0807 0972 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
00:29:00.0812 0972 volsnap - ok
00:29:00.0942 0972 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
00:29:00.0942 0972 vsmraid - ok
00:29:01.0082 0972 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
00:29:01.0092 0972 VSS - ok
00:29:01.0192 0972 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
00:29:01.0202 0972 W32Time - ok
00:29:01.0307 0972 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
00:29:01.0312 0972 WacomPen - ok
00:29:01.0382 0972 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
00:29:01.0387 0972 Wanarp - ok
00:29:01.0427 0972 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
00:29:01.0427 0972 Wanarpv6 - ok
00:29:01.0437 0972 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
00:29:01.0442 0972 Wd - ok
00:29:01.0512 0972 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
00:29:01.0522 0972 Wdf01000 - ok
00:29:01.0607 0972 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
00:29:01.0612 0972 WdiServiceHost - ok
00:29:01.0662 0972 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
00:29:01.0667 0972 WdiSystemHost - ok
00:29:01.0717 0972 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
00:29:01.0722 0972 Wecsvc - ok
00:29:01.0792 0972 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
00:29:01.0792 0972 wercplsupport - ok
00:29:01.0832 0972 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
00:29:01.0837 0972 WerSvc - ok
00:29:01.0977 0972 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
00:29:01.0977 0972 Winmgmt - ok
00:29:02.0172 0972 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
00:29:02.0197 0972 WinRM - ok
00:29:02.0277 0972 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
00:29:02.0292 0972 Wlansvc - ok
00:29:02.0617 0972 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:29:02.0652 0972 wlidsvc - ok
00:29:02.0832 0972 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
00:29:02.0837 0972 WmiAcpi - ok
00:29:02.0952 0972 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
00:29:02.0957 0972 wmiApSrv - ok
00:29:03.0162 0972 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
00:29:03.0182 0972 WMPNetworkSvc - ok
00:29:03.0232 0972 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
00:29:03.0237 0972 WPCSvc - ok
00:29:03.0407 0972 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
00:29:03.0427 0972 WPFFontCache_v0400 - ok
00:29:03.0502 0972 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
00:29:03.0502 0972 ws2ifsl - ok
00:29:03.0562 0972 WSearch - ok
00:29:03.0597 0972 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:29:03.0597 0972 WUDFRd - ok
00:29:03.0672 0972 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
00:29:03.0677 0972 wudfsvc - ok
00:29:03.0707 0972 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
00:29:04.0972 0972 \Device\Harddisk0\DR0 - ok
00:29:05.0002 0972 Boot (0x1200) (26bf976b68464e415bfd423acd7a3fd9) \Device\Harddisk0\DR0\Partition0
00:29:05.0002 0972 \Device\Harddisk0\DR0\Partition0 - ok
00:29:05.0002 0972 ============================================================
00:29:05.0002 0972 Scan finished
00:29:05.0002 0972 ============================================================
00:29:05.0072 1228 Detected object count: 0
00:29:05.0072 1228 Actual detected object count: 0
00:29:30.0517 0492 Deinitialize success

aswMBR log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-14 00:32:02
-----------------------------
00:32:02.052 OS Version: Windows 6.0.6002 Service Pack 2
00:32:02.052 Number of processors: 2 586 0x301
00:32:02.052 ComputerName: DARREN-PC UserName: Darren
00:32:41.862 Initialize success
00:36:18.642 AVAST engine defs: 12081301
00:36:43.722 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
00:36:43.727 Disk 0 Vendor: TOSHIBA_MK3252GSX LV010M Size: 305245MB BusType: 3
00:36:43.757 Disk 0 MBR read successfully
00:36:43.822 Disk 0 MBR scan
00:36:43.847 Disk 0 Windows VISTA default MBR code
00:36:43.882 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
00:36:43.937 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 297704 MB offset 3074048
00:36:44.022 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 6040 MB offset 612771840
00:36:44.057 Disk 0 scanning sectors +625141760
00:36:44.177 Disk 0 scanning C:\Windows\system32\drivers
00:37:01.517 Service scanning
00:37:40.417 Modules scanning
00:37:47.362 Disk 0 trace - called modules:
00:37:47.477 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS PCIIDEX.SYS msahci.sys
00:37:47.487 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85a78a58]
00:37:47.562 3 CLASSPNP.SYS[805d58b3] -> nt!IofCallDriver -> [0x8599b838]
00:37:47.567 5 acpi.sys[806106bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x859f9b98]
00:37:50.972 AVAST engine scan C:\Windows
00:37:57.007 AVAST engine scan C:\Windows\system32
00:43:37.272 AVAST engine scan C:\Windows\system32\drivers
00:43:59.077 AVAST engine scan C:\Users\Darren
00:54:41.887 File: C:\Users\Darren\AppData\Local\Temp\wpbt0.dll **INFECTED** Win32:ZAccess-HL [Trj]
01:10:22.876 File: C:\Users\Darren\Downloads\PopularScreenSavers.exe **INFECTED** Win32:Adware-gen [Adw]
01:20:08.781 AVAST engine scan C:\ProgramData
01:20:09.155 File: C:\ProgramData\2d51PeOo.exe **INFECTED** Win32:ZAccess-HL [Trj]
01:32:27.721 Scan finished successfully
02:33:10.618 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
02:33:10.618 The log file has been saved successfully to "C:\aswMBR_log.txt"

ESET list of threats

C:\Program Files\FunWebProducts\Installr\1.bin\F3EZSETP.DLL Win32/Toolbar.MyWebSearch.M application cleaned by deleting - quarantined
C:\Program Files\FunWebProducts\Installr\1.bin\F3PLUGIN.DLL Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Program Files\FunWebProducts\Installr\1.bin\NPFUNWEB.DLL Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\ProgramData\2d51PeOo.exe a variant of Win32/Kryptik.AJWX trojan cleaned by deleting - quarantined
C:\Users\Darren\ms.exe a variant of Win32/TrojanProxy.Agent.NIY trojan cleaned by deleting - quarantined
C:\Users\Darren\AppData\Local\powstak.dll a variant of Win32/TrojanProxy.Agent.NIY trojan cleaned by deleting - quarantined
C:\Users\Darren\AppData\Local\Temp\wpbt0.dll a variant of Win32/Kryptik.AJWX trojan cleaned by deleting - quarantined
C:\Users\Darren\AppData\Local\Temp\~osFBAF.tmp\rlvknlg.exe a variant of Win32/Adware.RK.AE application cleaned by deleting - quarantined
C:\Users\Darren\Documents\Mobilemate stuff\Mech_Patch\screensaver\bi1SetupWebSite.exe multiple threats cleaned by deleting - quarantined
C:\Users\Darren\Documents\Mobilemate stuff\Mech_Patch\screensaver\gf1SetupWebSite.exe multiple threats cleaned by deleting - quarantined
C:\Users\Darren\Documents\Mobilemate stuff\Mech_Patch\screensaver\ml1SetupWebSite.exe multiple threats cleaned by deleting - quarantined
C:\Users\Darren\Documents\Mobilemate stuff\Mech_Patch\screensaver\mw1SetupWebSite.exe multiple threats cleaned by deleting - quarantined
C:\Users\Darren\Downloads\PopularScreenSavers.exe Win32/Toolbar.MyWebSearch application deleted - quarantined

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:50 PM

Posted 14 August 2012 - 06:06 AM

Reboot the PC into normal mode

Update MBAM and run scan,post the log

Download

BFE
Mpssvc
wscsvc
windefend
wuauserv
Plug play
Sharedaccess

Launch them ,click YES

restart the PC

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
Reset file permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache
Repair hosts


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the FSS log

Edited by narenxp, 14 August 2012 - 06:08 AM.


#12 FLKracker

FLKracker
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 14 August 2012 - 09:42 PM

In normal mode I tried to run MBAM and recieved this error:
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

The specified service does not exist as an installed service.

I then rebooted in safe mode with networking and it ran producing below log.

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.14.07

Windows Vista Service Pack 2 x86 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Darren :: DARREN-PC [administrator]

Protection: Disabled

8/14/2012 5:42:33 PM
mbam-log-2012-08-14 (19-10-42).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 437871
Time elapsed: 1 hour(s), 23 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 10
HKCR\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3E720452-B472-4954-B7AA-33069EB53906} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47a3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\CLASSES\CLSID\{42AEDC87-2188-41FD-B9A3-0C966FEABEC1}\INPROCSERVER32 (Trojan.Zaccess) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (PUP.MyWebSearch) -> No action taken.
HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (PUP.MyWebSearch) -> No action taken.

Registry Values Detected: 1
HKCU\SOFTWARE\CLASSES\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32| (Trojan.Zaccess) -> Data: C:\Users\Darren\AppData\Local\{2c568a31-3104-02a2-2506-ad0a4c4feff6}\n. -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 4
C:\Program Files\FunWebProducts (PUP.MyWebSearch) -> No action taken.
C:\Program Files\FunWebProducts\Installr (PUP.MyWebSearch) -> No action taken.
C:\Program Files\FunWebProducts\Installr\1.bin (PUP.MyWebSearch) -> No action taken.
C:\Program Files\FunWebProducts\Installr\setups (PUP.MyWebSearch) -> No action taken.

Files Detected: 4
C:\Program Files\eMusic Download Manager\winamp_plugin.exe (Adware.BHO) -> No action taken.
C:\Users\Darren\AppData\Local\Temp\~osFBAF.tmp\rlvknlg64.exe (PUP.Adware.RelevantKnowledge) -> No action taken.
C:\Users\Darren\AppData\Local\Temp\~osFBAF.tmp\rlxf.dll (PUP.Adware.RelevantKnowledge) -> No action taken.
C:\Users\Darren\AppData\Local\Temp\~osFBAF.tmp\rlxg.dll (PUP.Adware.RelevantKnowledge) -> No action taken.

(end)


I then tried each of the files you requested in normal mode and none of them would download to my machine stating that I do not have access to perform this task. I then rebooted in safe mode with networking and they downloaded and ran.

FSS log

Farbar Service Scanner Version: 06-08-2012
Ran by Darren (administrator) on 14-08-2012 at 22:25:22
Running from "C:\"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Network
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

Something I also noticed when I bootup in normal mode the following error message appears:
Error loading C:\Users\Darren\AppData\Local\powstak.dll

The specified module could not be found.

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:50 PM

Posted 14 August 2012 - 09:45 PM

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{2c568a31-3104-02a2-2506-ad0a4c4feff6}

Click on LOOK,post the generated log

#14 FLKracker

FLKracker
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 14 August 2012 - 09:59 PM

SystemLook 30.07.11 by jpshortstuff
Log created at 22:46 on 14/08/2012 by Darren
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\System32\services.exe --a---- 279040 bytes [00:59 19/08/2009] [02:24 21/01/2008] 2B336AB6286D6C81FA02CBAB914E3C6C
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe --a---- 279040 bytes [02:24 21/01/2008] [02:24 21/01/2008] 2B336AB6286D6C81FA02CBAB914E3C6C
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe --a---- 279552 bytes [00:59 19/08/2009] [06:27 11/04/2009] D4E6D91C1349B7BFB3599A6ADA56851B

========== folderfind ==========

Searching for "{2c568a31-3104-02a2-2506-ad0a4c4feff6}"
C:\Users\Darren\AppData\Local\{2c568a31-3104-02a2-2506-ad0a4c4feff6} d--hs-- [02:24 12/01/2012]
C:\Windows\Installer\{2c568a31-3104-02a2-2506-ad0a4c4feff6} d--hs-- [02:24 12/01/2012]

-= EOF =-

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:50 PM

Posted 14 August 2012 - 10:12 PM

Update MBAM in safemode with networking,run a scan again until you get a clean log


Open your C drive

On top,click on Organize-folder and search options

Click on View tab and scroll down

Check mark Show hidden files
Uncheck Hide operating system files


Click ok,now go to

C:\Users\Darren\AppData\Local\{2c568a31-3104-02a2-2506-ad0a4c4feff6}
C:\Windows\Installer\{2c568a31-3104-02a2-2506-ad0a4c4feff6}

delete the folders

Reboot the PC and let me know if you can launch programs now




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users