Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Issues with mse, windows firewall and windows updates


  • Please log in to reply
15 replies to this topic

#1 the_r_sole

the_r_sole

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 13 August 2012 - 10:21 AM

I am running win7 (64bit)
Today I was running google chrome and was getting redirects, so I ran a malware bytes scan which identified a couple of thing, cleaned them and restarted, on restart I was getting an error with microsoft security essentials not running, I tried to start the service a couple of times and it was giving me an error, saying the service wasn't registered on this machine - so I reinstalled the software which then gave me a message that windows had encounterd a critical error and would restart in one minute - which it did, then repeated the process a few times.
I went into safe mode and ran malware bytes again (this time a full scan) which picked up a trojan sirefef.ab
on the restart everything looked fine in windows, mse was running etc, then I decided to check for windows updates and it won't let me because "the service is not running" - I also now can't start the windows firewall as "there was an error the windows firewall with advanced security snap in"
So then I tried to update mse definitions which also fails, malware bytes isnt picking anything up or mse scan.

I am assuming all these issues are related to the one trojan, this is really time critical as it is on my work machine which has certain pieces of software I don't have anywhere else, any help is greatly apprieciated.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:02 PM

Posted 13 August 2012 - 10:28 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 the_r_sole

the_r_sole
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 13 August 2012 - 01:08 PM

thanks for the help

tdsskiller:

16:40:59.0666 1888 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
16:40:59.0796 1888 ============================================================
16:40:59.0796 1888 Current date / time: 2012/08/13 16:40:59.0796
16:40:59.0796 1888 SystemInfo:
16:40:59.0796 1888
16:40:59.0796 1888 OS Version: 6.1.7601 ServicePack: 1.0
16:40:59.0796 1888 Product type: Workstation
16:40:59.0796 1888 ComputerName: BARIREID
16:40:59.0796 1888 UserName: Bari
16:40:59.0796 1888 Windows directory: C:\Windows
16:40:59.0796 1888 System windows directory: C:\Windows
16:40:59.0796 1888 Running under WOW64
16:40:59.0796 1888 Processor architecture: Intel x64
16:40:59.0796 1888 Number of processors: 6
16:40:59.0796 1888 Page size: 0x1000
16:40:59.0796 1888 Boot type: Normal boot
16:40:59.0796 1888 ============================================================
16:41:01.0036 1888 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xEC93D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000040
16:41:01.0046 1888 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:41:01.0196 1888 ============================================================
16:41:01.0196 1888 \Device\Harddisk0\DR0:
16:41:01.0196 1888 MBR partitions:
16:41:01.0196 1888 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:41:01.0196 1888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
16:41:01.0196 1888 \Device\Harddisk1\DR1:
16:41:01.0196 1888 MBR partitions:
16:41:01.0196 1888 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF8F8C1
16:41:01.0196 1888 ============================================================
16:41:01.0226 1888 C: <-> \Device\Harddisk0\DR0\Partition1
16:41:01.0286 1888 F: <-> \Device\Harddisk1\DR1\Partition0
16:41:01.0286 1888 ============================================================
16:41:01.0286 1888 Initialize success
16:41:01.0286 1888 ============================================================
16:41:24.0219 2804 ============================================================
16:41:24.0219 2804 Scan started
16:41:24.0219 2804 Mode: Manual; TDLFS;
16:41:24.0219 2804 ============================================================
16:41:25.0470 2804 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
16:41:25.0480 2804 1394ohci - ok
16:41:25.0540 2804 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
16:41:25.0540 2804 ACPI - ok
16:41:25.0580 2804 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
16:41:25.0580 2804 AcpiPmi - ok
16:41:25.0620 2804 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
16:41:25.0630 2804 adfs - ok
16:41:25.0740 2804 Adobe Version Cue CS4 (9444a3530c2e88b7ed96a566ff9ccc13) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
16:41:25.0750 2804 Adobe Version Cue CS4 - ok
16:41:25.0880 2804 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:41:25.0890 2804 AdobeFlashPlayerUpdateSvc - ok
16:41:26.0010 2804 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
16:41:26.0020 2804 adp94xx - ok
16:41:26.0070 2804 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
16:41:26.0070 2804 adpahci - ok
16:41:26.0090 2804 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
16:41:26.0100 2804 adpu320 - ok
16:41:26.0130 2804 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:41:26.0140 2804 AeLookupSvc - ok
16:41:26.0200 2804 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
16:41:26.0210 2804 AFD - ok
16:41:26.0250 2804 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
16:41:26.0250 2804 agp440 - ok
16:41:26.0280 2804 aikjnyna - ok
16:41:26.0300 2804 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:41:26.0300 2804 ALG - ok
16:41:26.0340 2804 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
16:41:26.0340 2804 aliide - ok
16:41:26.0350 2804 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
16:41:26.0360 2804 amdide - ok
16:41:26.0390 2804 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
16:41:26.0390 2804 AmdK8 - ok
16:41:26.0400 2804 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
16:41:26.0400 2804 AmdPPM - ok
16:41:26.0430 2804 amdsata (53d8d46d51d390abdb54eca623165cb7) C:\Windows\system32\DRIVERS\amdsata.sys
16:41:26.0430 2804 amdsata - ok
16:41:26.0460 2804 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
16:41:26.0460 2804 amdsbs - ok
16:41:26.0480 2804 amdxata (75c51148154e34eb3d7bb84749a758d5) C:\Windows\system32\DRIVERS\amdxata.sys
16:41:26.0480 2804 amdxata - ok
16:41:26.0520 2804 Andbus (48cd7e6520d47d62eab0e6ce3ec30c65) C:\Windows\system32\DRIVERS\lgandbus64.sys
16:41:26.0520 2804 Andbus - ok
16:41:26.0540 2804 AndDiag (08cbacc00d15dcdbbaae1a7c8f231c61) C:\Windows\system32\DRIVERS\lganddiag64.sys
16:41:26.0540 2804 AndDiag - ok
16:41:26.0570 2804 AndGps (cea9a4cd6b3a83428ce8501240833668) C:\Windows\system32\DRIVERS\lgandgps64.sys
16:41:26.0570 2804 AndGps - ok
16:41:26.0610 2804 ANDModem (e2b5663e547fa5e756b253efa8ec8286) C:\Windows\system32\DRIVERS\lgandmodem64.sys
16:41:26.0620 2804 ANDModem - ok
16:41:26.0660 2804 androidusb (9c1751b2e733471ae07561028b7d2a9b) C:\Windows\system32\Drivers\lgandadb.sys
16:41:26.0660 2804 androidusb - ok
16:41:26.0710 2804 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
16:41:26.0710 2804 AppID - ok
16:41:26.0740 2804 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:41:26.0750 2804 AppIDSvc - ok
16:41:26.0780 2804 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
16:41:26.0780 2804 Appinfo - ok
16:41:26.0860 2804 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:41:26.0860 2804 Apple Mobile Device - ok
16:41:26.0910 2804 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
16:41:26.0920 2804 AppMgmt - ok
16:41:26.0950 2804 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
16:41:26.0960 2804 arc - ok
16:41:26.0990 2804 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
16:41:26.0990 2804 arcsas - ok
16:41:27.0110 2804 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:41:27.0130 2804 aspnet_state - ok
16:41:27.0160 2804 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:41:27.0160 2804 AsyncMac - ok
16:41:27.0200 2804 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
16:41:27.0200 2804 atapi - ok
16:41:27.0220 2804 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
16:41:27.0220 2804 AtiPcie - ok
16:41:27.0290 2804 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:41:27.0300 2804 AudioEndpointBuilder - ok
16:41:27.0320 2804 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:41:27.0330 2804 AudioSrv - ok
16:41:27.0370 2804 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
16:41:27.0380 2804 AxInstSV - ok
16:41:27.0430 2804 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
16:41:27.0440 2804 b06bdrv - ok
16:41:27.0460 2804 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:41:27.0470 2804 b57nd60a - ok
16:41:27.0500 2804 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:41:27.0500 2804 BDESVC - ok
16:41:27.0520 2804 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:41:27.0520 2804 Beep - ok
16:41:27.0560 2804 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
16:41:27.0560 2804 blbdrive - ok
16:41:27.0670 2804 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
16:41:27.0680 2804 Bonjour Service - ok
16:41:27.0720 2804 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
16:41:27.0730 2804 bowser - ok
16:41:27.0740 2804 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:41:27.0740 2804 BrFiltLo - ok
16:41:27.0750 2804 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:41:27.0750 2804 BrFiltUp - ok
16:41:27.0780 2804 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
16:41:27.0790 2804 Browser - ok
16:41:27.0810 2804 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:41:27.0810 2804 Brserid - ok
16:41:27.0820 2804 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:41:27.0820 2804 BrSerWdm - ok
16:41:27.0820 2804 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:41:27.0820 2804 BrUsbMdm - ok
16:41:27.0850 2804 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:41:27.0850 2804 BrUsbSer - ok
16:41:27.0930 2804 BrYNSvc (ea7e57f87d6fee5fd6c5f813c04e8cd2) C:\Program Files (x86)\Browny02\BrYNSvc.exe
16:41:27.0930 2804 BrYNSvc - ok
16:41:27.0960 2804 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
16:41:27.0960 2804 BTHMODEM - ok
16:41:28.0000 2804 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:41:28.0010 2804 bthserv - ok
16:41:28.0030 2804 catchme - ok
16:41:28.0080 2804 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:41:28.0080 2804 cdfs - ok
16:41:28.0120 2804 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
16:41:28.0120 2804 cdrom - ok
16:41:28.0190 2804 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:41:28.0190 2804 CertPropSvc - ok
16:41:28.0210 2804 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
16:41:28.0220 2804 circlass - ok
16:41:28.0260 2804 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:41:28.0270 2804 CLFS - ok
16:41:28.0320 2804 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:41:28.0330 2804 clr_optimization_v2.0.50727_32 - ok
16:41:28.0380 2804 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:41:28.0380 2804 clr_optimization_v2.0.50727_64 - ok
16:41:28.0470 2804 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:41:28.0610 2804 clr_optimization_v4.0.30319_32 - ok
16:41:28.0660 2804 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:41:28.0700 2804 clr_optimization_v4.0.30319_64 - ok
16:41:28.0740 2804 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
16:41:28.0740 2804 CmBatt - ok
16:41:28.0770 2804 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
16:41:28.0770 2804 cmdide - ok
16:41:28.0820 2804 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
16:41:28.0820 2804 CNG - ok
16:41:28.0840 2804 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
16:41:28.0840 2804 Compbatt - ok
16:41:28.0880 2804 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
16:41:28.0880 2804 CompositeBus - ok
16:41:28.0890 2804 COMSysApp - ok
16:41:28.0900 2804 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
16:41:28.0900 2804 crcdisk - ok
16:41:28.0950 2804 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
16:41:28.0950 2804 CryptSvc - ok
16:41:29.0000 2804 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
16:41:29.0010 2804 CSC - ok
16:41:29.0050 2804 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
16:41:29.0060 2804 CscService - ok
16:41:29.0110 2804 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:41:29.0120 2804 DcomLaunch - ok
16:41:29.0170 2804 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:41:29.0180 2804 defragsvc - ok
16:41:29.0250 2804 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
16:41:29.0250 2804 DfsC - ok
16:41:29.0300 2804 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
16:41:29.0300 2804 Dhcp - ok
16:41:29.0330 2804 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:41:29.0330 2804 discache - ok
16:41:29.0370 2804 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
16:41:29.0370 2804 Disk - ok
16:41:29.0410 2804 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
16:41:29.0420 2804 Dnscache - ok
16:41:29.0460 2804 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
16:41:29.0470 2804 dot3svc - ok
16:41:29.0510 2804 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
16:41:29.0510 2804 DPS - ok
16:41:29.0540 2804 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:41:29.0540 2804 drmkaud - ok
16:41:29.0600 2804 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
16:41:29.0620 2804 DXGKrnl - ok
16:41:29.0650 2804 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:41:29.0650 2804 EapHost - ok
16:41:29.0780 2804 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
16:41:29.0820 2804 ebdrv - ok
16:41:29.0910 2804 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
16:41:29.0920 2804 EFS - ok
16:41:30.0010 2804 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
16:41:30.0030 2804 ehRecvr - ok
16:41:30.0060 2804 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:41:30.0060 2804 ehSched - ok
16:41:30.0140 2804 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
16:41:30.0150 2804 elxstor - ok
16:41:30.0180 2804 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
16:41:30.0190 2804 ErrDev - ok
16:41:30.0260 2804 ES lite Service (b8fa96995726d1fa58476e352c02ad82) C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
16:41:30.0260 2804 ES lite Service - ok
16:41:30.0300 2804 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:41:30.0300 2804 EventSystem - ok
16:41:30.0320 2804 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:41:30.0330 2804 exfat - ok
16:41:30.0350 2804 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:41:30.0350 2804 fastfat - ok
16:41:30.0410 2804 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
16:41:30.0420 2804 Fax - ok
16:41:30.0450 2804 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
16:41:30.0450 2804 fdc - ok
16:41:30.0460 2804 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:41:30.0460 2804 fdPHost - ok
16:41:30.0470 2804 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:41:30.0470 2804 FDResPub - ok
16:41:30.0480 2804 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:41:30.0480 2804 FileInfo - ok
16:41:30.0490 2804 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:41:30.0490 2804 Filetrace - ok
16:41:30.0600 2804 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:41:30.0610 2804 FLEXnet Licensing Service - ok
16:41:30.0720 2804 FLEXnet Licensing Service 64 (5cee6cd43ae5844c49300ea0b1e557ee) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
16:41:30.0740 2804 FLEXnet Licensing Service 64 - ok
16:41:30.0880 2804 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
16:41:30.0880 2804 flpydisk - ok
16:41:30.0920 2804 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
16:41:30.0930 2804 FltMgr - ok
16:41:30.0990 2804 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
16:41:31.0010 2804 FontCache - ok
16:41:31.0110 2804 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:41:31.0120 2804 FontCache3.0.0.0 - ok
16:41:31.0140 2804 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:41:31.0140 2804 FsDepends - ok
16:41:31.0160 2804 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
16:41:31.0170 2804 Fs_Rec - ok
16:41:31.0230 2804 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:41:31.0230 2804 fvevol - ok
16:41:31.0260 2804 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:41:31.0260 2804 gagp30kx - ok
16:41:31.0300 2804 gdrv (7907e14f9bcf3a4689c9a74a1a873cb6) C:\Windows\gdrv.sys
16:41:31.0300 2804 gdrv - ok
16:41:31.0330 2804 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:41:31.0340 2804 GEARAspiWDM - ok
16:41:31.0390 2804 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
16:41:31.0410 2804 gpsvc - ok
16:41:31.0430 2804 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:41:31.0430 2804 hcw85cir - ok
16:41:31.0480 2804 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
16:41:31.0490 2804 HdAudAddService - ok
16:41:31.0550 2804 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
16:41:31.0550 2804 HDAudBus - ok
16:41:31.0560 2804 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
16:41:31.0560 2804 HidBatt - ok
16:41:31.0580 2804 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
16:41:31.0580 2804 HidBth - ok
16:41:31.0580 2804 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
16:41:31.0580 2804 HidIr - ok
16:41:31.0610 2804 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
16:41:31.0610 2804 hidserv - ok
16:41:31.0660 2804 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
16:41:31.0660 2804 HidUsb - ok
16:41:31.0690 2804 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
16:41:31.0700 2804 hkmsvc - ok
16:41:31.0740 2804 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
16:41:31.0740 2804 HomeGroupListener - ok
16:41:31.0790 2804 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
16:41:31.0790 2804 HomeGroupProvider - ok
16:41:31.0850 2804 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
16:41:31.0850 2804 HpSAMD - ok
16:41:31.0900 2804 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
16:41:31.0910 2804 HTTP - ok
16:41:31.0940 2804 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
16:41:31.0940 2804 hwpolicy - ok
16:41:32.0010 2804 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
16:41:32.0010 2804 i8042prt - ok
16:41:32.0060 2804 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
16:41:32.0070 2804 iaStorV - ok
16:41:32.0180 2804 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:41:32.0200 2804 idsvc - ok
16:41:32.0230 2804 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
16:41:32.0230 2804 iirsp - ok
16:41:32.0320 2804 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
16:41:32.0330 2804 IKEEXT - ok
16:41:32.0420 2804 IntcAzAudAddService (e76fdfff07f8a2fa81ff250dda0f6bba) C:\Windows\system32\drivers\RTKVHD64.sys
16:41:32.0430 2804 IntcAzAudAddService - ok
16:41:32.0560 2804 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
16:41:32.0570 2804 intelide - ok
16:41:32.0600 2804 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
16:41:32.0610 2804 intelppm - ok
16:41:32.0640 2804 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:41:32.0640 2804 IPBusEnum - ok
16:41:32.0670 2804 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:41:32.0680 2804 IpFilterDriver - ok
16:41:32.0710 2804 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
16:41:32.0710 2804 IPMIDRV - ok
16:41:32.0730 2804 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:41:32.0740 2804 IPNAT - ok
16:41:32.0840 2804 iPod Service (755e4ba6dce627a2683bb7640553c8d6) C:\Program Files\iPod\bin\iPodService.exe
16:41:32.0850 2804 iPod Service - ok
16:41:32.0870 2804 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:41:32.0870 2804 IRENUM - ok
16:41:32.0900 2804 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
16:41:32.0900 2804 isapnp - ok
16:41:32.0940 2804 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
16:41:32.0950 2804 iScsiPrt - ok
16:41:32.0990 2804 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
16:41:32.0990 2804 kbdclass - ok
16:41:33.0040 2804 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
16:41:33.0040 2804 kbdhid - ok
16:41:33.0070 2804 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:33.0070 2804 KeyIso - ok
16:41:33.0110 2804 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
16:41:33.0120 2804 KSecDD - ok
16:41:33.0150 2804 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
16:41:33.0150 2804 KSecPkg - ok
16:41:33.0160 2804 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:41:33.0160 2804 ksthunk - ok
16:41:33.0210 2804 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:41:33.0220 2804 KtmRm - ok
16:41:33.0280 2804 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
16:41:33.0280 2804 LanmanServer - ok
16:41:33.0320 2804 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
16:41:33.0330 2804 LanmanWorkstation - ok
16:41:33.0380 2804 LgBttPort (174803f2eea3b22165dfe0e5a1f20685) C:\Windows\system32\DRIVERS\lgbtpt64.sys
16:41:33.0380 2804 LgBttPort - ok
16:41:33.0430 2804 lgbusenum (565f93bb7c0361e61b3daea670c354d6) C:\Windows\system32\DRIVERS\lgbtbs64.sys
16:41:33.0430 2804 lgbusenum - ok
16:41:33.0470 2804 LGVMODEM (abf477857b7ced873362ec92c6ce10a7) C:\Windows\system32\DRIVERS\lgvmdm64.sys
16:41:33.0470 2804 LGVMODEM - ok
16:41:33.0570 2804 LightScribeService (71c6a95a5f0ccc87298c4dd0f2c3635a) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
16:41:33.0580 2804 LightScribeService - ok
16:41:33.0620 2804 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:41:33.0620 2804 lltdio - ok
16:41:33.0660 2804 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:41:33.0670 2804 lltdsvc - ok
16:41:33.0690 2804 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:41:33.0690 2804 lmhosts - ok
16:41:33.0740 2804 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:41:33.0750 2804 LSI_FC - ok
16:41:33.0760 2804 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:41:33.0770 2804 LSI_SAS - ok
16:41:33.0790 2804 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:41:33.0790 2804 LSI_SAS2 - ok
16:41:33.0820 2804 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:41:33.0820 2804 LSI_SCSI - ok
16:41:33.0860 2804 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:41:33.0860 2804 luafv - ok
16:41:33.0900 2804 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
16:41:33.0900 2804 Mcx2Svc - ok
16:41:33.0910 2804 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
16:41:33.0910 2804 megasas - ok
16:41:33.0930 2804 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
16:41:33.0930 2804 MegaSR - ok
16:41:34.0040 2804 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
16:41:34.0040 2804 Microsoft Office Groove Audit Service - ok
16:41:34.0070 2804 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:41:34.0070 2804 MMCSS - ok
16:41:34.0080 2804 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:41:34.0080 2804 Modem - ok
16:41:34.0110 2804 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:41:34.0110 2804 monitor - ok
16:41:34.0160 2804 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
16:41:34.0160 2804 mouclass - ok
16:41:34.0190 2804 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:41:34.0190 2804 mouhid - ok
16:41:34.0230 2804 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
16:41:34.0230 2804 mountmgr - ok
16:41:34.0310 2804 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:41:34.0310 2804 MozillaMaintenance - ok
16:41:34.0350 2804 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
16:41:34.0360 2804 MpFilter - ok
16:41:34.0400 2804 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
16:41:34.0400 2804 mpio - ok
16:41:34.0420 2804 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:41:34.0420 2804 mpsdrv - ok
16:41:34.0461 2804 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
16:41:34.0461 2804 MRxDAV - ok
16:41:34.0501 2804 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:41:34.0511 2804 mrxsmb - ok
16:41:34.0561 2804 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:41:34.0561 2804 mrxsmb10 - ok
16:41:34.0601 2804 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:41:34.0601 2804 mrxsmb20 - ok
16:41:34.0641 2804 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
16:41:34.0641 2804 msahci - ok
16:41:34.0681 2804 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
16:41:34.0691 2804 msdsm - ok
16:41:34.0721 2804 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:41:34.0731 2804 MSDTC - ok
16:41:34.0771 2804 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:41:34.0771 2804 Msfs - ok
16:41:34.0781 2804 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:41:34.0781 2804 mshidkmdf - ok
16:41:34.0821 2804 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
16:41:34.0821 2804 msisadrv - ok
16:41:34.0861 2804 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:41:34.0861 2804 MSiSCSI - ok
16:41:34.0871 2804 msiserver - ok
16:41:34.0901 2804 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:41:34.0901 2804 MSKSSRV - ok
16:41:34.0971 2804 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:41:34.0971 2804 MsMpSvc - ok
16:41:34.0971 2804 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:41:34.0981 2804 MSPCLOCK - ok
16:41:34.0981 2804 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:41:34.0991 2804 MSPQM - ok
16:41:35.0021 2804 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
16:41:35.0031 2804 MsRPC - ok
16:41:35.0041 2804 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
16:41:35.0041 2804 mssmbios - ok
16:41:35.0061 2804 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:41:35.0061 2804 MSTEE - ok
16:41:35.0271 2804 msvsmon90 (cb4a082af58d1a0969f931816d5cfb05) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
16:41:35.0311 2804 msvsmon90 - ok
16:41:35.0421 2804 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
16:41:35.0421 2804 MTConfig - ok
16:41:35.0451 2804 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:41:35.0451 2804 Mup - ok
16:41:35.0521 2804 MySQL - ok
16:41:35.0571 2804 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
16:41:35.0591 2804 napagent - ok
16:41:35.0621 2804 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:41:35.0631 2804 NativeWifiP - ok
16:41:35.0691 2804 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
16:41:35.0711 2804 NDIS - ok
16:41:35.0731 2804 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:41:35.0731 2804 NdisCap - ok
16:41:35.0761 2804 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:41:35.0761 2804 NdisTapi - ok
16:41:35.0791 2804 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
16:41:35.0791 2804 Ndisuio - ok
16:41:35.0821 2804 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
16:41:35.0831 2804 NdisWan - ok
16:41:35.0861 2804 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
16:41:35.0861 2804 NDProxy - ok
16:41:35.0881 2804 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:41:35.0881 2804 NetBIOS - ok
16:41:35.0931 2804 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
16:41:35.0931 2804 NetBT - ok
16:41:35.0971 2804 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:35.0971 2804 Netlogon - ok
16:41:36.0021 2804 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:41:36.0031 2804 Netman - ok
16:41:36.0151 2804 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0181 2804 NetMsmqActivator - ok
16:41:36.0191 2804 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0191 2804 NetPipeActivator - ok
16:41:36.0221 2804 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:41:36.0221 2804 netprofm - ok
16:41:36.0221 2804 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0221 2804 NetTcpActivator - ok
16:41:36.0231 2804 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0231 2804 NetTcpPortSharing - ok
16:41:36.0271 2804 nfqhdctx - ok
16:41:36.0311 2804 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
16:41:36.0311 2804 nfrd960 - ok
16:41:36.0371 2804 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:41:36.0371 2804 NisDrv - ok
16:41:36.0461 2804 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
16:41:36.0461 2804 NisSrv - ok
16:41:36.0511 2804 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
16:41:36.0521 2804 NlaSvc - ok
16:41:36.0531 2804 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:41:36.0541 2804 Npfs - ok
16:41:36.0561 2804 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:41:36.0561 2804 nsi - ok
16:41:36.0581 2804 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:41:36.0581 2804 nsiproxy - ok
16:41:36.0651 2804 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
16:41:36.0671 2804 Ntfs - ok
16:41:36.0771 2804 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:41:36.0771 2804 Null - ok
16:41:36.0841 2804 NVHDA (e20abd5b229760158f753ca90b97e090) C:\Windows\system32\drivers\nvhda64v.sys
16:41:36.0841 2804 NVHDA - ok
16:41:37.0251 2804 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:41:37.0311 2804 nvlddmkm - ok
16:41:37.0441 2804 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
16:41:37.0441 2804 nvraid - ok
16:41:37.0481 2804 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
16:41:37.0481 2804 nvstor - ok
16:41:37.0551 2804 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
16:41:37.0571 2804 nvsvc - ok
16:41:37.0721 2804 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
16:41:37.0751 2804 nvUpdatusService - ok
16:41:37.0851 2804 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
16:41:37.0851 2804 nv_agp - ok
16:41:37.0921 2804 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:41:37.0931 2804 odserv - ok
16:41:37.0971 2804 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
16:41:37.0971 2804 ohci1394 - ok
16:41:38.0011 2804 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:41:38.0011 2804 ose - ok
16:41:38.0061 2804 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:41:38.0071 2804 p2pimsvc - ok
16:41:38.0101 2804 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:41:38.0121 2804 p2psvc - ok
16:41:38.0151 2804 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
16:41:38.0151 2804 Parport - ok
16:41:38.0181 2804 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
16:41:38.0191 2804 partmgr - ok
16:41:38.0211 2804 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:41:38.0221 2804 PcaSvc - ok
16:41:38.0261 2804 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
16:41:38.0271 2804 pci - ok
16:41:38.0301 2804 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
16:41:38.0301 2804 pciide - ok
16:41:38.0311 2804 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
16:41:38.0321 2804 pcmcia - ok
16:41:38.0341 2804 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:41:38.0341 2804 pcw - ok
16:41:38.0421 2804 PDFProFiltSrvPP (c1c3baf078be5a14384a4ba2d730817d) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
16:41:38.0431 2804 PDFProFiltSrvPP - ok
16:41:38.0481 2804 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:41:38.0491 2804 PEAUTH - ok
16:41:38.0561 2804 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
16:41:38.0571 2804 PeerDistSvc - ok
16:41:38.0631 2804 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:41:38.0641 2804 PerfHost - ok
16:41:38.0781 2804 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
16:41:38.0801 2804 pla - ok
16:41:38.0861 2804 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
16:41:38.0871 2804 PlugPlay - ok
16:41:38.0901 2804 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:41:38.0901 2804 PNRPAutoReg - ok
16:41:38.0921 2804 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:41:38.0921 2804 PNRPsvc - ok
16:41:39.0001 2804 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
16:41:39.0001 2804 Point64 - ok
16:41:39.0051 2804 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
16:41:39.0061 2804 PolicyAgent - ok
16:41:39.0091 2804 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:41:39.0101 2804 Power - ok
16:41:39.0141 2804 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
16:41:39.0141 2804 PptpMiniport - ok
16:41:39.0171 2804 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
16:41:39.0171 2804 Processor - ok
16:41:39.0211 2804 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
16:41:39.0211 2804 ProfSvc - ok
16:41:39.0241 2804 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:39.0251 2804 ProtectedStorage - ok
16:41:39.0301 2804 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
16:41:39.0301 2804 Psched - ok
16:41:39.0371 2804 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
16:41:39.0391 2804 ql2300 - ok
16:41:39.0531 2804 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
16:41:39.0531 2804 ql40xx - ok
16:41:39.0581 2804 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:41:39.0581 2804 QWAVE - ok
16:41:39.0601 2804 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:41:39.0601 2804 QWAVEdrv - ok
16:41:39.0611 2804 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:41:39.0611 2804 RasAcd - ok
16:41:39.0641 2804 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:41:39.0641 2804 RasAgileVpn - ok
16:41:39.0661 2804 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:41:39.0661 2804 RasAuto - ok
16:41:39.0711 2804 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:41:39.0711 2804 Rasl2tp - ok
16:41:39.0791 2804 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
16:41:39.0801 2804 RasMan - ok
16:41:39.0831 2804 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:41:39.0831 2804 RasPppoe - ok
16:41:39.0851 2804 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:41:39.0851 2804 RasSstp - ok
16:41:39.0901 2804 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
16:41:39.0911 2804 rdbss - ok
16:41:39.0941 2804 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
16:41:39.0941 2804 rdpbus - ok
16:41:39.0951 2804 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:41:39.0951 2804 RDPCDD - ok
16:41:39.0991 2804 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
16:41:40.0001 2804 RDPDR - ok
16:41:40.0021 2804 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:41:40.0031 2804 RDPENCDD - ok
16:41:40.0061 2804 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:41:40.0061 2804 RDPREFMP - ok
16:41:40.0121 2804 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
16:41:40.0131 2804 RDPWD - ok
16:41:40.0181 2804 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
16:41:40.0191 2804 rdyboost - ok
16:41:40.0231 2804 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:41:40.0231 2804 RemoteAccess - ok
16:41:40.0271 2804 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:41:40.0271 2804 RemoteRegistry - ok
16:41:40.0291 2804 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:41:40.0291 2804 RpcEptMapper - ok
16:41:40.0311 2804 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:41:40.0311 2804 RpcLocator - ok
16:41:40.0351 2804 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:41:40.0351 2804 RpcSs - ok
16:41:40.0391 2804 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:41:40.0391 2804 rspndr - ok
16:41:40.0421 2804 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
16:41:40.0421 2804 RTL8167 - ok
16:41:40.0451 2804 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
16:41:40.0451 2804 s3cap - ok
16:41:40.0481 2804 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:40.0481 2804 SamSs - ok
16:41:40.0511 2804 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
16:41:40.0511 2804 sbp2port - ok
16:41:40.0541 2804 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:41:40.0551 2804 SCardSvr - ok
16:41:40.0601 2804 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys
16:41:40.0601 2804 SCDEmu - ok
16:41:40.0631 2804 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
16:41:40.0631 2804 scfilter - ok
16:41:40.0701 2804 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
16:41:40.0721 2804 Schedule - ok
16:41:40.0751 2804 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:41:40.0751 2804 SCPolicySvc - ok
16:41:40.0791 2804 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
16:41:40.0791 2804 SDRSVC - ok
16:41:40.0851 2804 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:41:40.0851 2804 secdrv - ok
16:41:40.0881 2804 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
16:41:40.0891 2804 seclogon - ok
16:41:40.0921 2804 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
16:41:40.0921 2804 SENS - ok
16:41:40.0931 2804 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:41:40.0941 2804 SensrSvc - ok
16:41:40.0961 2804 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
16:41:40.0961 2804 Serenum - ok
16:41:40.0991 2804 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
16:41:40.0991 2804 Serial - ok
16:41:41.0031 2804 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
16:41:41.0031 2804 sermouse - ok
16:41:41.0071 2804 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
16:41:41.0081 2804 SessionEnv - ok
16:41:41.0111 2804 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
16:41:41.0111 2804 sffdisk - ok
16:41:41.0141 2804 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
16:41:41.0141 2804 sffp_mmc - ok
16:41:41.0151 2804 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
16:41:41.0161 2804 sffp_sd - ok
16:41:41.0181 2804 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
16:41:41.0181 2804 sfloppy - ok
16:41:41.0231 2804 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
16:41:41.0241 2804 ShellHWDetection - ok
16:41:41.0271 2804 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:41:41.0281 2804 SiSRaid2 - ok
16:41:41.0291 2804 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
16:41:41.0301 2804 SiSRaid4 - ok
16:41:41.0401 2804 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
16:41:41.0401 2804 SkypeUpdate - ok
16:41:41.0431 2804 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:41:41.0431 2804 Smb - ok
16:41:41.0471 2804 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:41:41.0481 2804 SNMPTRAP - ok
16:41:41.0491 2804 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:41:41.0491 2804 spldr - ok
16:41:41.0541 2804 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
16:41:41.0551 2804 Spooler - ok
16:41:41.0691 2804 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
16:41:41.0731 2804 sppsvc - ok
16:41:41.0841 2804 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:41:41.0841 2804 sppuinotify - ok
16:41:41.0911 2804 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
16:41:41.0911 2804 srv - ok
16:41:41.0931 2804 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
16:41:41.0941 2804 srv2 - ok
16:41:41.0951 2804 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
16:41:41.0961 2804 srvnet - ok
16:41:41.0991 2804 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:41:42.0001 2804 SSDPSRV - ok
16:41:42.0001 2804 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:41:42.0001 2804 SstpSvc - ok
16:41:42.0101 2804 Stereo Service (29662881a46db66730c62a4f1bfa3dc2) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:41:42.0101 2804 Stereo Service - ok
16:41:42.0121 2804 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
16:41:42.0131 2804 stexstor - ok
16:41:42.0201 2804 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
16:41:42.0201 2804 StillCam - ok
16:41:42.0261 2804 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
16:41:42.0271 2804 stisvc - ok
16:41:42.0371 2804 stllssvr (fca9459e4d877942dfd032cbee8f2107) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
16:41:42.0381 2804 stllssvr - ok
16:41:42.0411 2804 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
16:41:42.0411 2804 storflt - ok
16:41:42.0441 2804 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
16:41:42.0441 2804 StorSvc - ok
16:41:42.0471 2804 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
16:41:42.0481 2804 storvsc - ok
16:41:42.0501 2804 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
16:41:42.0511 2804 swenum - ok
16:41:42.0551 2804 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:41:42.0571 2804 swprv - ok
16:41:42.0651 2804 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
16:41:42.0671 2804 SysMain - ok
16:41:42.0771 2804 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
16:41:42.0781 2804 TabletInputService - ok
16:41:42.0811 2804 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
16:41:42.0821 2804 TapiSrv - ok
16:41:42.0871 2804 TBPanel - ok
16:41:42.0901 2804 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:41:42.0901 2804 TBS - ok
16:41:43.0001 2804 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
16:41:43.0021 2804 Tcpip - ok
16:41:43.0131 2804 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
16:41:43.0151 2804 TCPIP6 - ok
16:41:43.0191 2804 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
16:41:43.0191 2804 tcpipreg - ok
16:41:43.0221 2804 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:41:43.0221 2804 TDPIPE - ok
16:41:43.0251 2804 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
16:41:43.0251 2804 TDTCP - ok
16:41:43.0301 2804 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
16:41:43.0301 2804 tdx - ok
16:41:43.0341 2804 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
16:41:43.0341 2804 TermDD - ok
16:41:43.0401 2804 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
16:41:43.0421 2804 TermService - ok
16:41:43.0441 2804 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:41:43.0451 2804 Themes - ok
16:41:43.0481 2804 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:41:43.0481 2804 THREADORDER - ok
16:41:43.0501 2804 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:41:43.0501 2804 TrkWks - ok
16:41:43.0581 2804 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
16:41:43.0581 2804 TrustedInstaller - ok
16:41:43.0621 2804 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:41:43.0621 2804 tssecsrv - ok
16:41:43.0661 2804 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
16:41:43.0671 2804 TsUsbFlt - ok
16:41:43.0721 2804 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
16:41:43.0721 2804 tunnel - ok
16:41:43.0801 2804 TVService (fea2d7d286386c96e8c34b7bb2dd7873) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TVService.exe
16:41:43.0811 2804 TVService - ok
16:41:43.0831 2804 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
16:41:43.0841 2804 uagp35 - ok
16:41:43.0891 2804 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
16:41:43.0891 2804 udfs - ok
16:41:43.0931 2804 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:41:43.0931 2804 UI0Detect - ok
16:41:43.0961 2804 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
16:41:43.0961 2804 uliagpkx - ok
16:41:43.0991 2804 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
16:41:44.0001 2804 umbus - ok
16:41:44.0011 2804 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
16:41:44.0011 2804 UmPass - ok
16:41:44.0051 2804 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
16:41:44.0061 2804 UmRdpService - ok
16:41:44.0081 2804 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:41:44.0091 2804 upnphost - ok
16:41:44.0141 2804 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
16:41:44.0141 2804 USBAAPL64 - ok
16:41:44.0191 2804 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
16:41:44.0191 2804 usbaudio - ok
16:41:44.0221 2804 usbbus (c85b8247fadd432fa54fe11667c8d97d) C:\Windows\system32\DRIVERS\lgx64bus.sys
16:41:44.0221 2804 usbbus - ok
16:41:44.0261 2804 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
16:41:44.0261 2804 usbccgp - ok
16:41:44.0301 2804 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
16:41:44.0311 2804 usbcir - ok
16:41:44.0341 2804 UsbDiag (d8cdc12f5429878f23ddb3785a0fdf95) C:\Windows\system32\DRIVERS\lgx64diag.sys
16:41:44.0341 2804 UsbDiag - ok
16:41:44.0371 2804 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
16:41:44.0371 2804 usbehci - ok
16:41:44.0401 2804 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys
16:41:44.0411 2804 usbfilter - ok
16:41:44.0431 2804 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
16:41:44.0442 2804 usbhub - ok
16:41:44.0462 2804 USBModem (79fa7a22b0f6f0082f640cbc82a00fce) C:\Windows\system32\DRIVERS\lgx64modem.sys
16:41:44.0462 2804 USBModem - ok
16:41:44.0482 2804 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
16:41:44.0482 2804 usbohci - ok
16:41:44.0522 2804 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:41:44.0522 2804 usbprint - ok
16:41:44.0552 2804 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
16:41:44.0552 2804 usbscan - ok
16:41:44.0572 2804 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:41:44.0572 2804 USBSTOR - ok
16:41:44.0602 2804 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
16:41:44.0602 2804 usbuhci - ok
16:41:44.0622 2804 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:41:44.0632 2804 UxSms - ok
16:41:44.0672 2804 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:44.0672 2804 VaultSvc - ok
16:41:44.0712 2804 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
16:41:44.0712 2804 vdrvroot - ok
16:41:44.0762 2804 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
16:41:44.0772 2804 vds - ok
16:41:44.0812 2804 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:41:44.0812 2804 vga - ok
16:41:44.0822 2804 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:41:44.0832 2804 VgaSave - ok
16:41:44.0862 2804 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
16:41:44.0872 2804 vhdmp - ok
16:41:44.0912 2804 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
16:41:44.0912 2804 viaide - ok
16:41:44.0952 2804 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
16:41:44.0952 2804 vmbus - ok
16:41:44.0992 2804 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
16:41:44.0992 2804 VMBusHID - ok
16:41:45.0022 2804 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
16:41:45.0022 2804 volmgr - ok
16:41:45.0072 2804 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
16:41:45.0082 2804 volmgrx - ok
16:41:45.0122 2804 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
16:41:45.0132 2804 volsnap - ok
16:41:45.0172 2804 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
16:41:45.0182 2804 vsmraid - ok
16:41:45.0272 2804 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
16:41:45.0292 2804 VSS - ok
16:41:45.0402 2804 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
16:41:45.0402 2804 vwifibus - ok
16:41:45.0442 2804 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:41:45.0453 2804 W32Time - ok
16:41:45.0473 2804 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
16:41:45.0473 2804 WacomPen - ok
16:41:45.0523 2804 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:41:45.0523 2804 WANARP - ok
16:41:45.0533 2804 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:41:45.0533 2804 Wanarpv6 - ok
16:41:45.0613 2804 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:41:45.0623 2804 WatAdminSvc - ok
16:41:45.0683 2804 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
16:41:45.0703 2804 wbengine - ok
16:41:45.0823 2804 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:41:45.0833 2804 WbioSrvc - ok
16:41:45.0883 2804 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
16:41:45.0893 2804 wcncsvc - ok
16:41:45.0923 2804 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:41:45.0933 2804 WcsPlugInService - ok
16:41:45.0963 2804 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
16:41:45.0963 2804 Wd - ok
16:41:46.0003 2804 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:41:46.0023 2804 Wdf01000 - ok
16:41:46.0033 2804 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:41:46.0043 2804 WdiServiceHost - ok
16:41:46.0043 2804 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:41:46.0043 2804 WdiSystemHost - ok
16:41:46.0083 2804 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
16:41:46.0083 2804 WebClient - ok
16:41:46.0113 2804 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:41:46.0113 2804 Wecsvc - ok
16:41:46.0123 2804 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:41:46.0133 2804 wercplsupport - ok
16:41:46.0153 2804 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:41:46.0153 2804 WerSvc - ok
16:41:46.0203 2804 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:41:46.0213 2804 WfpLwf - ok
16:41:46.0223 2804 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:41:46.0223 2804 WIMMount - ok
16:41:46.0243 2804 WinHttpAutoProxySvc - ok
16:41:46.0283 2804 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:41:46.0283 2804 Winmgmt - ok
16:41:46.0393 2804 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
16:41:46.0413 2804 WinRM - ok
16:41:46.0523 2804 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:41:46.0543 2804 Wlansvc - ok
16:41:46.0713 2804 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:41:46.0733 2804 wlidsvc - ok
16:41:46.0803 2804 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
16:41:46.0803 2804 WmiAcpi - ok
16:41:46.0863 2804 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:41:46.0863 2804 wmiApSrv - ok
16:41:46.0933 2804 WMPNetworkSvc - ok
16:41:46.0953 2804 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:41:46.0953 2804 WPCSvc - ok
16:41:46.0993 2804 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
16:41:46.0993 2804 WPDBusEnum - ok
16:41:47.0023 2804 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:41:47.0023 2804 ws2ifsl - ok
16:41:47.0033 2804 WSearch - ok
16:41:47.0073 2804 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
16:41:47.0073 2804 WudfPf - ok
16:41:47.0113 2804 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:41:47.0113 2804 WUDFRd - ok
16:41:47.0143 2804 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
16:41:47.0153 2804 wudfsvc - ok
16:41:47.0183 2804 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:41:47.0193 2804 WwanSvc - ok
16:41:47.0213 2804 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:41:47.0413 2804 \Device\Harddisk0\DR0 - ok
16:41:47.0573 2804 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
16:41:48.0063 2804 \Device\Harddisk1\DR1 - ok
16:41:48.0073 2804 Boot (0x1200) (77fafa937902947e525eff8becd0074d) \Device\Harddisk0\DR0\Partition0
16:41:48.0073 2804 \Device\Harddisk0\DR0\Partition0 - ok
16:41:48.0093 2804 Boot (0x1200) (dbd1ab86e9b37c38ce83fcafd34b38bf) \Device\Harddisk0\DR0\Partition1
16:41:48.0093 2804 \Device\Harddisk0\DR0\Partition1 - ok
16:41:48.0103 2804 Boot (0x1200) (872c62a763c95fa42094c8312be7c879) \Device\Harddisk1\DR1\Partition0
16:41:48.0103 2804 \Device\Harddisk1\DR1\Partition0 - ok
16:41:48.0103 2804 ============================================================
16:41:48.0103 2804 Scan finished
16:41:48.0103 2804 ============================================================
16:41:48.0123 0776 Detected object count: 0
16:41:48.0123 0776 Actual detected object count: 0
16:58:15.0678 1524 Deinitialize success




aswmbr:

16:40:59.0666 1888 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
16:40:59.0796 1888 ============================================================
16:40:59.0796 1888 Current date / time: 2012/08/13 16:40:59.0796
16:40:59.0796 1888 SystemInfo:
16:40:59.0796 1888
16:40:59.0796 1888 OS Version: 6.1.7601 ServicePack: 1.0
16:40:59.0796 1888 Product type: Workstation
16:40:59.0796 1888 ComputerName: BARIREID
16:40:59.0796 1888 UserName: Bari
16:40:59.0796 1888 Windows directory: C:\Windows
16:40:59.0796 1888 System windows directory: C:\Windows
16:40:59.0796 1888 Running under WOW64
16:40:59.0796 1888 Processor architecture: Intel x64
16:40:59.0796 1888 Number of processors: 6
16:40:59.0796 1888 Page size: 0x1000
16:40:59.0796 1888 Boot type: Normal boot
16:40:59.0796 1888 ============================================================
16:41:01.0036 1888 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xEC93D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000040
16:41:01.0046 1888 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:41:01.0196 1888 ============================================================
16:41:01.0196 1888 \Device\Harddisk0\DR0:
16:41:01.0196 1888 MBR partitions:
16:41:01.0196 1888 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:41:01.0196 1888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
16:41:01.0196 1888 \Device\Harddisk1\DR1:
16:41:01.0196 1888 MBR partitions:
16:41:01.0196 1888 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF8F8C1
16:41:01.0196 1888 ============================================================
16:41:01.0226 1888 C: <-> \Device\Harddisk0\DR0\Partition1
16:41:01.0286 1888 F: <-> \Device\Harddisk1\DR1\Partition0
16:41:01.0286 1888 ============================================================
16:41:01.0286 1888 Initialize success
16:41:01.0286 1888 ============================================================
16:41:24.0219 2804 ============================================================
16:41:24.0219 2804 Scan started
16:41:24.0219 2804 Mode: Manual; TDLFS;
16:41:24.0219 2804 ============================================================
16:41:25.0470 2804 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
16:41:25.0480 2804 1394ohci - ok
16:41:25.0540 2804 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
16:41:25.0540 2804 ACPI - ok
16:41:25.0580 2804 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
16:41:25.0580 2804 AcpiPmi - ok
16:41:25.0620 2804 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
16:41:25.0630 2804 adfs - ok
16:41:25.0740 2804 Adobe Version Cue CS4 (9444a3530c2e88b7ed96a566ff9ccc13) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
16:41:25.0750 2804 Adobe Version Cue CS4 - ok
16:41:25.0880 2804 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:41:25.0890 2804 AdobeFlashPlayerUpdateSvc - ok
16:41:26.0010 2804 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
16:41:26.0020 2804 adp94xx - ok
16:41:26.0070 2804 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
16:41:26.0070 2804 adpahci - ok
16:41:26.0090 2804 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
16:41:26.0100 2804 adpu320 - ok
16:41:26.0130 2804 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:41:26.0140 2804 AeLookupSvc - ok
16:41:26.0200 2804 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
16:41:26.0210 2804 AFD - ok
16:41:26.0250 2804 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
16:41:26.0250 2804 agp440 - ok
16:41:26.0280 2804 aikjnyna - ok
16:41:26.0300 2804 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:41:26.0300 2804 ALG - ok
16:41:26.0340 2804 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
16:41:26.0340 2804 aliide - ok
16:41:26.0350 2804 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
16:41:26.0360 2804 amdide - ok
16:41:26.0390 2804 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
16:41:26.0390 2804 AmdK8 - ok
16:41:26.0400 2804 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
16:41:26.0400 2804 AmdPPM - ok
16:41:26.0430 2804 amdsata (53d8d46d51d390abdb54eca623165cb7) C:\Windows\system32\DRIVERS\amdsata.sys
16:41:26.0430 2804 amdsata - ok
16:41:26.0460 2804 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
16:41:26.0460 2804 amdsbs - ok
16:41:26.0480 2804 amdxata (75c51148154e34eb3d7bb84749a758d5) C:\Windows\system32\DRIVERS\amdxata.sys
16:41:26.0480 2804 amdxata - ok
16:41:26.0520 2804 Andbus (48cd7e6520d47d62eab0e6ce3ec30c65) C:\Windows\system32\DRIVERS\lgandbus64.sys
16:41:26.0520 2804 Andbus - ok
16:41:26.0540 2804 AndDiag (08cbacc00d15dcdbbaae1a7c8f231c61) C:\Windows\system32\DRIVERS\lganddiag64.sys
16:41:26.0540 2804 AndDiag - ok
16:41:26.0570 2804 AndGps (cea9a4cd6b3a83428ce8501240833668) C:\Windows\system32\DRIVERS\lgandgps64.sys
16:41:26.0570 2804 AndGps - ok
16:41:26.0610 2804 ANDModem (e2b5663e547fa5e756b253efa8ec8286) C:\Windows\system32\DRIVERS\lgandmodem64.sys
16:41:26.0620 2804 ANDModem - ok
16:41:26.0660 2804 androidusb (9c1751b2e733471ae07561028b7d2a9b) C:\Windows\system32\Drivers\lgandadb.sys
16:41:26.0660 2804 androidusb - ok
16:41:26.0710 2804 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
16:41:26.0710 2804 AppID - ok
16:41:26.0740 2804 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:41:26.0750 2804 AppIDSvc - ok
16:41:26.0780 2804 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
16:41:26.0780 2804 Appinfo - ok
16:41:26.0860 2804 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:41:26.0860 2804 Apple Mobile Device - ok
16:41:26.0910 2804 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
16:41:26.0920 2804 AppMgmt - ok
16:41:26.0950 2804 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
16:41:26.0960 2804 arc - ok
16:41:26.0990 2804 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
16:41:26.0990 2804 arcsas - ok
16:41:27.0110 2804 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:41:27.0130 2804 aspnet_state - ok
16:41:27.0160 2804 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:41:27.0160 2804 AsyncMac - ok
16:41:27.0200 2804 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
16:41:27.0200 2804 atapi - ok
16:41:27.0220 2804 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
16:41:27.0220 2804 AtiPcie - ok
16:41:27.0290 2804 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:41:27.0300 2804 AudioEndpointBuilder - ok
16:41:27.0320 2804 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:41:27.0330 2804 AudioSrv - ok
16:41:27.0370 2804 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
16:41:27.0380 2804 AxInstSV - ok
16:41:27.0430 2804 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
16:41:27.0440 2804 b06bdrv - ok
16:41:27.0460 2804 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:41:27.0470 2804 b57nd60a - ok
16:41:27.0500 2804 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:41:27.0500 2804 BDESVC - ok
16:41:27.0520 2804 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:41:27.0520 2804 Beep - ok
16:41:27.0560 2804 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
16:41:27.0560 2804 blbdrive - ok
16:41:27.0670 2804 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
16:41:27.0680 2804 Bonjour Service - ok
16:41:27.0720 2804 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
16:41:27.0730 2804 bowser - ok
16:41:27.0740 2804 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:41:27.0740 2804 BrFiltLo - ok
16:41:27.0750 2804 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:41:27.0750 2804 BrFiltUp - ok
16:41:27.0780 2804 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
16:41:27.0790 2804 Browser - ok
16:41:27.0810 2804 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:41:27.0810 2804 Brserid - ok
16:41:27.0820 2804 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:41:27.0820 2804 BrSerWdm - ok
16:41:27.0820 2804 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:41:27.0820 2804 BrUsbMdm - ok
16:41:27.0850 2804 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:41:27.0850 2804 BrUsbSer - ok
16:41:27.0930 2804 BrYNSvc (ea7e57f87d6fee5fd6c5f813c04e8cd2) C:\Program Files (x86)\Browny02\BrYNSvc.exe
16:41:27.0930 2804 BrYNSvc - ok
16:41:27.0960 2804 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
16:41:27.0960 2804 BTHMODEM - ok
16:41:28.0000 2804 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:41:28.0010 2804 bthserv - ok
16:41:28.0030 2804 catchme - ok
16:41:28.0080 2804 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:41:28.0080 2804 cdfs - ok
16:41:28.0120 2804 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
16:41:28.0120 2804 cdrom - ok
16:41:28.0190 2804 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:41:28.0190 2804 CertPropSvc - ok
16:41:28.0210 2804 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
16:41:28.0220 2804 circlass - ok
16:41:28.0260 2804 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:41:28.0270 2804 CLFS - ok
16:41:28.0320 2804 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:41:28.0330 2804 clr_optimization_v2.0.50727_32 - ok
16:41:28.0380 2804 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:41:28.0380 2804 clr_optimization_v2.0.50727_64 - ok
16:41:28.0470 2804 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:41:28.0610 2804 clr_optimization_v4.0.30319_32 - ok
16:41:28.0660 2804 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:41:28.0700 2804 clr_optimization_v4.0.30319_64 - ok
16:41:28.0740 2804 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
16:41:28.0740 2804 CmBatt - ok
16:41:28.0770 2804 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
16:41:28.0770 2804 cmdide - ok
16:41:28.0820 2804 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
16:41:28.0820 2804 CNG - ok
16:41:28.0840 2804 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
16:41:28.0840 2804 Compbatt - ok
16:41:28.0880 2804 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
16:41:28.0880 2804 CompositeBus - ok
16:41:28.0890 2804 COMSysApp - ok
16:41:28.0900 2804 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
16:41:28.0900 2804 crcdisk - ok
16:41:28.0950 2804 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
16:41:28.0950 2804 CryptSvc - ok
16:41:29.0000 2804 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
16:41:29.0010 2804 CSC - ok
16:41:29.0050 2804 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
16:41:29.0060 2804 CscService - ok
16:41:29.0110 2804 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:41:29.0120 2804 DcomLaunch - ok
16:41:29.0170 2804 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:41:29.0180 2804 defragsvc - ok
16:41:29.0250 2804 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
16:41:29.0250 2804 DfsC - ok
16:41:29.0300 2804 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
16:41:29.0300 2804 Dhcp - ok
16:41:29.0330 2804 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:41:29.0330 2804 discache - ok
16:41:29.0370 2804 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
16:41:29.0370 2804 Disk - ok
16:41:29.0410 2804 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
16:41:29.0420 2804 Dnscache - ok
16:41:29.0460 2804 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
16:41:29.0470 2804 dot3svc - ok
16:41:29.0510 2804 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
16:41:29.0510 2804 DPS - ok
16:41:29.0540 2804 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:41:29.0540 2804 drmkaud - ok
16:41:29.0600 2804 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
16:41:29.0620 2804 DXGKrnl - ok
16:41:29.0650 2804 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:41:29.0650 2804 EapHost - ok
16:41:29.0780 2804 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
16:41:29.0820 2804 ebdrv - ok
16:41:29.0910 2804 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
16:41:29.0920 2804 EFS - ok
16:41:30.0010 2804 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
16:41:30.0030 2804 ehRecvr - ok
16:41:30.0060 2804 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:41:30.0060 2804 ehSched - ok
16:41:30.0140 2804 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
16:41:30.0150 2804 elxstor - ok
16:41:30.0180 2804 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
16:41:30.0190 2804 ErrDev - ok
16:41:30.0260 2804 ES lite Service (b8fa96995726d1fa58476e352c02ad82) C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
16:41:30.0260 2804 ES lite Service - ok
16:41:30.0300 2804 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:41:30.0300 2804 EventSystem - ok
16:41:30.0320 2804 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:41:30.0330 2804 exfat - ok
16:41:30.0350 2804 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:41:30.0350 2804 fastfat - ok
16:41:30.0410 2804 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
16:41:30.0420 2804 Fax - ok
16:41:30.0450 2804 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
16:41:30.0450 2804 fdc - ok
16:41:30.0460 2804 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:41:30.0460 2804 fdPHost - ok
16:41:30.0470 2804 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:41:30.0470 2804 FDResPub - ok
16:41:30.0480 2804 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:41:30.0480 2804 FileInfo - ok
16:41:30.0490 2804 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:41:30.0490 2804 Filetrace - ok
16:41:30.0600 2804 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:41:30.0610 2804 FLEXnet Licensing Service - ok
16:41:30.0720 2804 FLEXnet Licensing Service 64 (5cee6cd43ae5844c49300ea0b1e557ee) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
16:41:30.0740 2804 FLEXnet Licensing Service 64 - ok
16:41:30.0880 2804 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
16:41:30.0880 2804 flpydisk - ok
16:41:30.0920 2804 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
16:41:30.0930 2804 FltMgr - ok
16:41:30.0990 2804 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
16:41:31.0010 2804 FontCache - ok
16:41:31.0110 2804 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:41:31.0120 2804 FontCache3.0.0.0 - ok
16:41:31.0140 2804 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:41:31.0140 2804 FsDepends - ok
16:41:31.0160 2804 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
16:41:31.0170 2804 Fs_Rec - ok
16:41:31.0230 2804 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:41:31.0230 2804 fvevol - ok
16:41:31.0260 2804 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:41:31.0260 2804 gagp30kx - ok
16:41:31.0300 2804 gdrv (7907e14f9bcf3a4689c9a74a1a873cb6) C:\Windows\gdrv.sys
16:41:31.0300 2804 gdrv - ok
16:41:31.0330 2804 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:41:31.0340 2804 GEARAspiWDM - ok
16:41:31.0390 2804 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
16:41:31.0410 2804 gpsvc - ok
16:41:31.0430 2804 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:41:31.0430 2804 hcw85cir - ok
16:41:31.0480 2804 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
16:41:31.0490 2804 HdAudAddService - ok
16:41:31.0550 2804 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
16:41:31.0550 2804 HDAudBus - ok
16:41:31.0560 2804 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
16:41:31.0560 2804 HidBatt - ok
16:41:31.0580 2804 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
16:41:31.0580 2804 HidBth - ok
16:41:31.0580 2804 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
16:41:31.0580 2804 HidIr - ok
16:41:31.0610 2804 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
16:41:31.0610 2804 hidserv - ok
16:41:31.0660 2804 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
16:41:31.0660 2804 HidUsb - ok
16:41:31.0690 2804 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
16:41:31.0700 2804 hkmsvc - ok
16:41:31.0740 2804 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
16:41:31.0740 2804 HomeGroupListener - ok
16:41:31.0790 2804 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
16:41:31.0790 2804 HomeGroupProvider - ok
16:41:31.0850 2804 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
16:41:31.0850 2804 HpSAMD - ok
16:41:31.0900 2804 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
16:41:31.0910 2804 HTTP - ok
16:41:31.0940 2804 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
16:41:31.0940 2804 hwpolicy - ok
16:41:32.0010 2804 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
16:41:32.0010 2804 i8042prt - ok
16:41:32.0060 2804 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
16:41:32.0070 2804 iaStorV - ok
16:41:32.0180 2804 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:41:32.0200 2804 idsvc - ok
16:41:32.0230 2804 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
16:41:32.0230 2804 iirsp - ok
16:41:32.0320 2804 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
16:41:32.0330 2804 IKEEXT - ok
16:41:32.0420 2804 IntcAzAudAddService (e76fdfff07f8a2fa81ff250dda0f6bba) C:\Windows\system32\drivers\RTKVHD64.sys
16:41:32.0430 2804 IntcAzAudAddService - ok
16:41:32.0560 2804 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
16:41:32.0570 2804 intelide - ok
16:41:32.0600 2804 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
16:41:32.0610 2804 intelppm - ok
16:41:32.0640 2804 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:41:32.0640 2804 IPBusEnum - ok
16:41:32.0670 2804 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:41:32.0680 2804 IpFilterDriver - ok
16:41:32.0710 2804 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
16:41:32.0710 2804 IPMIDRV - ok
16:41:32.0730 2804 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:41:32.0740 2804 IPNAT - ok
16:41:32.0840 2804 iPod Service (755e4ba6dce627a2683bb7640553c8d6) C:\Program Files\iPod\bin\iPodService.exe
16:41:32.0850 2804 iPod Service - ok
16:41:32.0870 2804 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:41:32.0870 2804 IRENUM - ok
16:41:32.0900 2804 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
16:41:32.0900 2804 isapnp - ok
16:41:32.0940 2804 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
16:41:32.0950 2804 iScsiPrt - ok
16:41:32.0990 2804 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
16:41:32.0990 2804 kbdclass - ok
16:41:33.0040 2804 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
16:41:33.0040 2804 kbdhid - ok
16:41:33.0070 2804 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:33.0070 2804 KeyIso - ok
16:41:33.0110 2804 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
16:41:33.0120 2804 KSecDD - ok
16:41:33.0150 2804 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
16:41:33.0150 2804 KSecPkg - ok
16:41:33.0160 2804 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:41:33.0160 2804 ksthunk - ok
16:41:33.0210 2804 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:41:33.0220 2804 KtmRm - ok
16:41:33.0280 2804 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
16:41:33.0280 2804 LanmanServer - ok
16:41:33.0320 2804 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
16:41:33.0330 2804 LanmanWorkstation - ok
16:41:33.0380 2804 LgBttPort (174803f2eea3b22165dfe0e5a1f20685) C:\Windows\system32\DRIVERS\lgbtpt64.sys
16:41:33.0380 2804 LgBttPort - ok
16:41:33.0430 2804 lgbusenum (565f93bb7c0361e61b3daea670c354d6) C:\Windows\system32\DRIVERS\lgbtbs64.sys
16:41:33.0430 2804 lgbusenum - ok
16:41:33.0470 2804 LGVMODEM (abf477857b7ced873362ec92c6ce10a7) C:\Windows\system32\DRIVERS\lgvmdm64.sys
16:41:33.0470 2804 LGVMODEM - ok
16:41:33.0570 2804 LightScribeService (71c6a95a5f0ccc87298c4dd0f2c3635a) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
16:41:33.0580 2804 LightScribeService - ok
16:41:33.0620 2804 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:41:33.0620 2804 lltdio - ok
16:41:33.0660 2804 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:41:33.0670 2804 lltdsvc - ok
16:41:33.0690 2804 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:41:33.0690 2804 lmhosts - ok
16:41:33.0740 2804 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:41:33.0750 2804 LSI_FC - ok
16:41:33.0760 2804 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:41:33.0770 2804 LSI_SAS - ok
16:41:33.0790 2804 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:41:33.0790 2804 LSI_SAS2 - ok
16:41:33.0820 2804 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:41:33.0820 2804 LSI_SCSI - ok
16:41:33.0860 2804 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:41:33.0860 2804 luafv - ok
16:41:33.0900 2804 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
16:41:33.0900 2804 Mcx2Svc - ok
16:41:33.0910 2804 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
16:41:33.0910 2804 megasas - ok
16:41:33.0930 2804 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
16:41:33.0930 2804 MegaSR - ok
16:41:34.0040 2804 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
16:41:34.0040 2804 Microsoft Office Groove Audit Service - ok
16:41:34.0070 2804 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:41:34.0070 2804 MMCSS - ok
16:41:34.0080 2804 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:41:34.0080 2804 Modem - ok
16:41:34.0110 2804 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:41:34.0110 2804 monitor - ok
16:41:34.0160 2804 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
16:41:34.0160 2804 mouclass - ok
16:41:34.0190 2804 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:41:34.0190 2804 mouhid - ok
16:41:34.0230 2804 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
16:41:34.0230 2804 mountmgr - ok
16:41:34.0310 2804 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:41:34.0310 2804 MozillaMaintenance - ok
16:41:34.0350 2804 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
16:41:34.0360 2804 MpFilter - ok
16:41:34.0400 2804 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
16:41:34.0400 2804 mpio - ok
16:41:34.0420 2804 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:41:34.0420 2804 mpsdrv - ok
16:41:34.0461 2804 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
16:41:34.0461 2804 MRxDAV - ok
16:41:34.0501 2804 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:41:34.0511 2804 mrxsmb - ok
16:41:34.0561 2804 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:41:34.0561 2804 mrxsmb10 - ok
16:41:34.0601 2804 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:41:34.0601 2804 mrxsmb20 - ok
16:41:34.0641 2804 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
16:41:34.0641 2804 msahci - ok
16:41:34.0681 2804 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
16:41:34.0691 2804 msdsm - ok
16:41:34.0721 2804 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:41:34.0731 2804 MSDTC - ok
16:41:34.0771 2804 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:41:34.0771 2804 Msfs - ok
16:41:34.0781 2804 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:41:34.0781 2804 mshidkmdf - ok
16:41:34.0821 2804 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
16:41:34.0821 2804 msisadrv - ok
16:41:34.0861 2804 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:41:34.0861 2804 MSiSCSI - ok
16:41:34.0871 2804 msiserver - ok
16:41:34.0901 2804 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:41:34.0901 2804 MSKSSRV - ok
16:41:34.0971 2804 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:41:34.0971 2804 MsMpSvc - ok
16:41:34.0971 2804 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:41:34.0981 2804 MSPCLOCK - ok
16:41:34.0981 2804 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:41:34.0991 2804 MSPQM - ok
16:41:35.0021 2804 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
16:41:35.0031 2804 MsRPC - ok
16:41:35.0041 2804 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
16:41:35.0041 2804 mssmbios - ok
16:41:35.0061 2804 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:41:35.0061 2804 MSTEE - ok
16:41:35.0271 2804 msvsmon90 (cb4a082af58d1a0969f931816d5cfb05) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
16:41:35.0311 2804 msvsmon90 - ok
16:41:35.0421 2804 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
16:41:35.0421 2804 MTConfig - ok
16:41:35.0451 2804 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:41:35.0451 2804 Mup - ok
16:41:35.0521 2804 MySQL - ok
16:41:35.0571 2804 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
16:41:35.0591 2804 napagent - ok
16:41:35.0621 2804 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:41:35.0631 2804 NativeWifiP - ok
16:41:35.0691 2804 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
16:41:35.0711 2804 NDIS - ok
16:41:35.0731 2804 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:41:35.0731 2804 NdisCap - ok
16:41:35.0761 2804 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:41:35.0761 2804 NdisTapi - ok
16:41:35.0791 2804 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
16:41:35.0791 2804 Ndisuio - ok
16:41:35.0821 2804 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
16:41:35.0831 2804 NdisWan - ok
16:41:35.0861 2804 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
16:41:35.0861 2804 NDProxy - ok
16:41:35.0881 2804 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:41:35.0881 2804 NetBIOS - ok
16:41:35.0931 2804 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
16:41:35.0931 2804 NetBT - ok
16:41:35.0971 2804 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:35.0971 2804 Netlogon - ok
16:41:36.0021 2804 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:41:36.0031 2804 Netman - ok
16:41:36.0151 2804 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0181 2804 NetMsmqActivator - ok
16:41:36.0191 2804 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0191 2804 NetPipeActivator - ok
16:41:36.0221 2804 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:41:36.0221 2804 netprofm - ok
16:41:36.0221 2804 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0221 2804 NetTcpActivator - ok
16:41:36.0231 2804 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:36.0231 2804 NetTcpPortSharing - ok
16:41:36.0271 2804 nfqhdctx - ok
16:41:36.0311 2804 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
16:41:36.0311 2804 nfrd960 - ok
16:41:36.0371 2804 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:41:36.0371 2804 NisDrv - ok
16:41:36.0461 2804 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
16:41:36.0461 2804 NisSrv - ok
16:41:36.0511 2804 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
16:41:36.0521 2804 NlaSvc - ok
16:41:36.0531 2804 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:41:36.0541 2804 Npfs - ok
16:41:36.0561 2804 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:41:36.0561 2804 nsi - ok
16:41:36.0581 2804 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:41:36.0581 2804 nsiproxy - ok
16:41:36.0651 2804 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
16:41:36.0671 2804 Ntfs - ok
16:41:36.0771 2804 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:41:36.0771 2804 Null - ok
16:41:36.0841 2804 NVHDA (e20abd5b229760158f753ca90b97e090) C:\Windows\system32\drivers\nvhda64v.sys
16:41:36.0841 2804 NVHDA - ok
16:41:37.0251 2804 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:41:37.0311 2804 nvlddmkm - ok
16:41:37.0441 2804 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
16:41:37.0441 2804 nvraid - ok
16:41:37.0481 2804 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
16:41:37.0481 2804 nvstor - ok
16:41:37.0551 2804 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
16:41:37.0571 2804 nvsvc - ok
16:41:37.0721 2804 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
16:41:37.0751 2804 nvUpdatusService - ok
16:41:37.0851 2804 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
16:41:37.0851 2804 nv_agp - ok
16:41:37.0921 2804 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:41:37.0931 2804 odserv - ok
16:41:37.0971 2804 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
16:41:37.0971 2804 ohci1394 - ok
16:41:38.0011 2804 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:41:38.0011 2804 ose - ok
16:41:38.0061 2804 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:41:38.0071 2804 p2pimsvc - ok
16:41:38.0101 2804 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:41:38.0121 2804 p2psvc - ok
16:41:38.0151 2804 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
16:41:38.0151 2804 Parport - ok
16:41:38.0181 2804 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
16:41:38.0191 2804 partmgr - ok
16:41:38.0211 2804 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:41:38.0221 2804 PcaSvc - ok
16:41:38.0261 2804 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
16:41:38.0271 2804 pci - ok
16:41:38.0301 2804 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
16:41:38.0301 2804 pciide - ok
16:41:38.0311 2804 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
16:41:38.0321 2804 pcmcia - ok
16:41:38.0341 2804 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:41:38.0341 2804 pcw - ok
16:41:38.0421 2804 PDFProFiltSrvPP (c1c3baf078be5a14384a4ba2d730817d) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
16:41:38.0431 2804 PDFProFiltSrvPP - ok
16:41:38.0481 2804 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:41:38.0491 2804 PEAUTH - ok
16:41:38.0561 2804 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
16:41:38.0571 2804 PeerDistSvc - ok
16:41:38.0631 2804 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:41:38.0641 2804 PerfHost - ok
16:41:38.0781 2804 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
16:41:38.0801 2804 pla - ok
16:41:38.0861 2804 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
16:41:38.0871 2804 PlugPlay - ok
16:41:38.0901 2804 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:41:38.0901 2804 PNRPAutoReg - ok
16:41:38.0921 2804 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:41:38.0921 2804 PNRPsvc - ok
16:41:39.0001 2804 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
16:41:39.0001 2804 Point64 - ok
16:41:39.0051 2804 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
16:41:39.0061 2804 PolicyAgent - ok
16:41:39.0091 2804 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:41:39.0101 2804 Power - ok
16:41:39.0141 2804 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
16:41:39.0141 2804 PptpMiniport - ok
16:41:39.0171 2804 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
16:41:39.0171 2804 Processor - ok
16:41:39.0211 2804 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
16:41:39.0211 2804 ProfSvc - ok
16:41:39.0241 2804 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:39.0251 2804 ProtectedStorage - ok
16:41:39.0301 2804 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
16:41:39.0301 2804 Psched - ok
16:41:39.0371 2804 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
16:41:39.0391 2804 ql2300 - ok
16:41:39.0531 2804 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
16:41:39.0531 2804 ql40xx - ok
16:41:39.0581 2804 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:41:39.0581 2804 QWAVE - ok
16:41:39.0601 2804 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:41:39.0601 2804 QWAVEdrv - ok
16:41:39.0611 2804 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:41:39.0611 2804 RasAcd - ok
16:41:39.0641 2804 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:41:39.0641 2804 RasAgileVpn - ok
16:41:39.0661 2804 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:41:39.0661 2804 RasAuto - ok
16:41:39.0711 2804 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:41:39.0711 2804 Rasl2tp - ok
16:41:39.0791 2804 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
16:41:39.0801 2804 RasMan - ok
16:41:39.0831 2804 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:41:39.0831 2804 RasPppoe - ok
16:41:39.0851 2804 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:41:39.0851 2804 RasSstp - ok
16:41:39.0901 2804 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
16:41:39.0911 2804 rdbss - ok
16:41:39.0941 2804 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
16:41:39.0941 2804 rdpbus - ok
16:41:39.0951 2804 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:41:39.0951 2804 RDPCDD - ok
16:41:39.0991 2804 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
16:41:40.0001 2804 RDPDR - ok
16:41:40.0021 2804 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:41:40.0031 2804 RDPENCDD - ok
16:41:40.0061 2804 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:41:40.0061 2804 RDPREFMP - ok
16:41:40.0121 2804 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
16:41:40.0131 2804 RDPWD - ok
16:41:40.0181 2804 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
16:41:40.0191 2804 rdyboost - ok
16:41:40.0231 2804 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:41:40.0231 2804 RemoteAccess - ok
16:41:40.0271 2804 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:41:40.0271 2804 RemoteRegistry - ok
16:41:40.0291 2804 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:41:40.0291 2804 RpcEptMapper - ok
16:41:40.0311 2804 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:41:40.0311 2804 RpcLocator - ok
16:41:40.0351 2804 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:41:40.0351 2804 RpcSs - ok
16:41:40.0391 2804 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:41:40.0391 2804 rspndr - ok
16:41:40.0421 2804 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
16:41:40.0421 2804 RTL8167 - ok
16:41:40.0451 2804 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
16:41:40.0451 2804 s3cap - ok
16:41:40.0481 2804 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:40.0481 2804 SamSs - ok
16:41:40.0511 2804 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
16:41:40.0511 2804 sbp2port - ok
16:41:40.0541 2804 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:41:40.0551 2804 SCardSvr - ok
16:41:40.0601 2804 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys
16:41:40.0601 2804 SCDEmu - ok
16:41:40.0631 2804 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
16:41:40.0631 2804 scfilter - ok
16:41:40.0701 2804 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
16:41:40.0721 2804 Schedule - ok
16:41:40.0751 2804 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:41:40.0751 2804 SCPolicySvc - ok
16:41:40.0791 2804 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
16:41:40.0791 2804 SDRSVC - ok
16:41:40.0851 2804 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:41:40.0851 2804 secdrv - ok
16:41:40.0881 2804 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
16:41:40.0891 2804 seclogon - ok
16:41:40.0921 2804 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
16:41:40.0921 2804 SENS - ok
16:41:40.0931 2804 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:41:40.0941 2804 SensrSvc - ok
16:41:40.0961 2804 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
16:41:40.0961 2804 Serenum - ok
16:41:40.0991 2804 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
16:41:40.0991 2804 Serial - ok
16:41:41.0031 2804 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
16:41:41.0031 2804 sermouse - ok
16:41:41.0071 2804 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
16:41:41.0081 2804 SessionEnv - ok
16:41:41.0111 2804 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
16:41:41.0111 2804 sffdisk - ok
16:41:41.0141 2804 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
16:41:41.0141 2804 sffp_mmc - ok
16:41:41.0151 2804 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
16:41:41.0161 2804 sffp_sd - ok
16:41:41.0181 2804 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
16:41:41.0181 2804 sfloppy - ok
16:41:41.0231 2804 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
16:41:41.0241 2804 ShellHWDetection - ok
16:41:41.0271 2804 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:41:41.0281 2804 SiSRaid2 - ok
16:41:41.0291 2804 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
16:41:41.0301 2804 SiSRaid4 - ok
16:41:41.0401 2804 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
16:41:41.0401 2804 SkypeUpdate - ok
16:41:41.0431 2804 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:41:41.0431 2804 Smb - ok
16:41:41.0471 2804 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:41:41.0481 2804 SNMPTRAP - ok
16:41:41.0491 2804 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:41:41.0491 2804 spldr - ok
16:41:41.0541 2804 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
16:41:41.0551 2804 Spooler - ok
16:41:41.0691 2804 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
16:41:41.0731 2804 sppsvc - ok
16:41:41.0841 2804 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:41:41.0841 2804 sppuinotify - ok
16:41:41.0911 2804 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
16:41:41.0911 2804 srv - ok
16:41:41.0931 2804 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
16:41:41.0941 2804 srv2 - ok
16:41:41.0951 2804 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
16:41:41.0961 2804 srvnet - ok
16:41:41.0991 2804 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:41:42.0001 2804 SSDPSRV - ok
16:41:42.0001 2804 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:41:42.0001 2804 SstpSvc - ok
16:41:42.0101 2804 Stereo Service (29662881a46db66730c62a4f1bfa3dc2) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:41:42.0101 2804 Stereo Service - ok
16:41:42.0121 2804 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
16:41:42.0131 2804 stexstor - ok
16:41:42.0201 2804 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
16:41:42.0201 2804 StillCam - ok
16:41:42.0261 2804 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
16:41:42.0271 2804 stisvc - ok
16:41:42.0371 2804 stllssvr (fca9459e4d877942dfd032cbee8f2107) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
16:41:42.0381 2804 stllssvr - ok
16:41:42.0411 2804 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
16:41:42.0411 2804 storflt - ok
16:41:42.0441 2804 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
16:41:42.0441 2804 StorSvc - ok
16:41:42.0471 2804 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
16:41:42.0481 2804 storvsc - ok
16:41:42.0501 2804 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
16:41:42.0511 2804 swenum - ok
16:41:42.0551 2804 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:41:42.0571 2804 swprv - ok
16:41:42.0651 2804 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
16:41:42.0671 2804 SysMain - ok
16:41:42.0771 2804 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
16:41:42.0781 2804 TabletInputService - ok
16:41:42.0811 2804 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
16:41:42.0821 2804 TapiSrv - ok
16:41:42.0871 2804 TBPanel - ok
16:41:42.0901 2804 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:41:42.0901 2804 TBS - ok
16:41:43.0001 2804 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
16:41:43.0021 2804 Tcpip - ok
16:41:43.0131 2804 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
16:41:43.0151 2804 TCPIP6 - ok
16:41:43.0191 2804 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
16:41:43.0191 2804 tcpipreg - ok
16:41:43.0221 2804 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:41:43.0221 2804 TDPIPE - ok
16:41:43.0251 2804 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
16:41:43.0251 2804 TDTCP - ok
16:41:43.0301 2804 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
16:41:43.0301 2804 tdx - ok
16:41:43.0341 2804 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
16:41:43.0341 2804 TermDD - ok
16:41:43.0401 2804 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
16:41:43.0421 2804 TermService - ok
16:41:43.0441 2804 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:41:43.0451 2804 Themes - ok
16:41:43.0481 2804 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:41:43.0481 2804 THREADORDER - ok
16:41:43.0501 2804 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:41:43.0501 2804 TrkWks - ok
16:41:43.0581 2804 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
16:41:43.0581 2804 TrustedInstaller - ok
16:41:43.0621 2804 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:41:43.0621 2804 tssecsrv - ok
16:41:43.0661 2804 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
16:41:43.0671 2804 TsUsbFlt - ok
16:41:43.0721 2804 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
16:41:43.0721 2804 tunnel - ok
16:41:43.0801 2804 TVService (fea2d7d286386c96e8c34b7bb2dd7873) C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\TVService.exe
16:41:43.0811 2804 TVService - ok
16:41:43.0831 2804 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
16:41:43.0841 2804 uagp35 - ok
16:41:43.0891 2804 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
16:41:43.0891 2804 udfs - ok
16:41:43.0931 2804 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:41:43.0931 2804 UI0Detect - ok
16:41:43.0961 2804 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
16:41:43.0961 2804 uliagpkx - ok
16:41:43.0991 2804 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
16:41:44.0001 2804 umbus - ok
16:41:44.0011 2804 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
16:41:44.0011 2804 UmPass - ok
16:41:44.0051 2804 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
16:41:44.0061 2804 UmRdpService - ok
16:41:44.0081 2804 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:41:44.0091 2804 upnphost - ok
16:41:44.0141 2804 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
16:41:44.0141 2804 USBAAPL64 - ok
16:41:44.0191 2804 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
16:41:44.0191 2804 usbaudio - ok
16:41:44.0221 2804 usbbus (c85b8247fadd432fa54fe11667c8d97d) C:\Windows\system32\DRIVERS\lgx64bus.sys
16:41:44.0221 2804 usbbus - ok
16:41:44.0261 2804 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
16:41:44.0261 2804 usbccgp - ok
16:41:44.0301 2804 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
16:41:44.0311 2804 usbcir - ok
16:41:44.0341 2804 UsbDiag (d8cdc12f5429878f23ddb3785a0fdf95) C:\Windows\system32\DRIVERS\lgx64diag.sys
16:41:44.0341 2804 UsbDiag - ok
16:41:44.0371 2804 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
16:41:44.0371 2804 usbehci - ok
16:41:44.0401 2804 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys
16:41:44.0411 2804 usbfilter - ok
16:41:44.0431 2804 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
16:41:44.0442 2804 usbhub - ok
16:41:44.0462 2804 USBModem (79fa7a22b0f6f0082f640cbc82a00fce) C:\Windows\system32\DRIVERS\lgx64modem.sys
16:41:44.0462 2804 USBModem - ok
16:41:44.0482 2804 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
16:41:44.0482 2804 usbohci - ok
16:41:44.0522 2804 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:41:44.0522 2804 usbprint - ok
16:41:44.0552 2804 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
16:41:44.0552 2804 usbscan - ok
16:41:44.0572 2804 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:41:44.0572 2804 USBSTOR - ok
16:41:44.0602 2804 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
16:41:44.0602 2804 usbuhci - ok
16:41:44.0622 2804 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:41:44.0632 2804 UxSms - ok
16:41:44.0672 2804 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:41:44.0672 2804 VaultSvc - ok
16:41:44.0712 2804 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
16:41:44.0712 2804 vdrvroot - ok
16:41:44.0762 2804 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
16:41:44.0772 2804 vds - ok
16:41:44.0812 2804 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:41:44.0812 2804 vga - ok
16:41:44.0822 2804 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:41:44.0832 2804 VgaSave - ok
16:41:44.0862 2804 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
16:41:44.0872 2804 vhdmp - ok
16:41:44.0912 2804 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
16:41:44.0912 2804 viaide - ok
16:41:44.0952 2804 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
16:41:44.0952 2804 vmbus - ok
16:41:44.0992 2804 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
16:41:44.0992 2804 VMBusHID - ok
16:41:45.0022 2804 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
16:41:45.0022 2804 volmgr - ok
16:41:45.0072 2804 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
16:41:45.0082 2804 volmgrx - ok
16:41:45.0122 2804 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
16:41:45.0132 2804 volsnap - ok
16:41:45.0172 2804 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
16:41:45.0182 2804 vsmraid - ok
16:41:45.0272 2804 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
16:41:45.0292 2804 VSS - ok
16:41:45.0402 2804 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
16:41:45.0402 2804 vwifibus - ok
16:41:45.0442 2804 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:41:45.0453 2804 W32Time - ok
16:41:45.0473 2804 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
16:41:45.0473 2804 WacomPen - ok
16:41:45.0523 2804 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:41:45.0523 2804 WANARP - ok
16:41:45.0533 2804 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:41:45.0533 2804 Wanarpv6 - ok
16:41:45.0613 2804 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:41:45.0623 2804 WatAdminSvc - ok
16:41:45.0683 2804 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
16:41:45.0703 2804 wbengine - ok
16:41:45.0823 2804 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:41:45.0833 2804 WbioSrvc - ok
16:41:45.0883 2804 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
16:41:45.0893 2804 wcncsvc - ok
16:41:45.0923 2804 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:41:45.0933 2804 WcsPlugInService - ok
16:41:45.0963 2804 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
16:41:45.0963 2804 Wd - ok
16:41:46.0003 2804 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:41:46.0023 2804 Wdf01000 - ok
16:41:46.0033 2804 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:41:46.0043 2804 WdiServiceHost - ok
16:41:46.0043 2804 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:41:46.0043 2804 WdiSystemHost - ok
16:41:46.0083 2804 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
16:41:46.0083 2804 WebClient - ok
16:41:46.0113 2804 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:41:46.0113 2804 Wecsvc - ok
16:41:46.0123 2804 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:41:46.0133 2804 wercplsupport - ok
16:41:46.0153 2804 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:41:46.0153 2804 WerSvc - ok
16:41:46.0203 2804 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:41:46.0213 2804 WfpLwf - ok
16:41:46.0223 2804 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:41:46.0223 2804 WIMMount - ok
16:41:46.0243 2804 WinHttpAutoProxySvc - ok
16:41:46.0283 2804 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:41:46.0283 2804 Winmgmt - ok
16:41:46.0393 2804 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
16:41:46.0413 2804 WinRM - ok
16:41:46.0523 2804 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:41:46.0543 2804 Wlansvc - ok
16:41:46.0713 2804 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:41:46.0733 2804 wlidsvc - ok
16:41:46.0803 2804 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
16:41:46.0803 2804 WmiAcpi - ok
16:41:46.0863 2804 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:41:46.0863 2804 wmiApSrv - ok
16:41:46.0933 2804 WMPNetworkSvc - ok
16:41:46.0953 2804 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:41:46.0953 2804 WPCSvc - ok
16:41:46.0993 2804 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
16:41:46.0993 2804 WPDBusEnum - ok
16:41:47.0023 2804 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:41:47.0023 2804 ws2ifsl - ok
16:41:47.0033 2804 WSearch - ok
16:41:47.0073 2804 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
16:41:47.0073 2804 WudfPf - ok
16:41:47.0113 2804 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:41:47.0113 2804 WUDFRd - ok
16:41:47.0143 2804 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
16:41:47.0153 2804 wudfsvc - ok
16:41:47.0183 2804 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:41:47.0193 2804 WwanSvc - ok
16:41:47.0213 2804 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:41:47.0413 2804 \Device\Harddisk0\DR0 - ok
16:41:47.0573 2804 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
16:41:48.0063 2804 \Device\Harddisk1\DR1 - ok
16:41:48.0073 2804 Boot (0x1200) (77fafa937902947e525eff8becd0074d) \Device\Harddisk0\DR0\Partition0
16:41:48.0073 2804 \Device\Harddisk0\DR0\Partition0 - ok
16:41:48.0093 2804 Boot (0x1200) (dbd1ab86e9b37c38ce83fcafd34b38bf) \Device\Harddisk0\DR0\Partition1
16:41:48.0093 2804 \Device\Harddisk0\DR0\Partition1 - ok
16:41:48.0103 2804 Boot (0x1200) (872c62a763c95fa42094c8312be7c879) \Device\Harddisk1\DR1\Partition0
16:41:48.0103 2804 \Device\Harddisk1\DR1\Partition0 - ok
16:41:48.0103 2804 ============================================================
16:41:48.0103 2804 Scan finished
16:41:48.0103 2804 ============================================================
16:41:48.0123 0776 Detected object count: 0
16:41:48.0123 0776 Actual detected object count: 0
16:58:15.0678 1524 Deinitialize success


eset scanner:
C:\kerries laptop\Users\kerrie\Documents\keygen.exe a variant of Win32/Keygen.AO application cleaned by deleting - quarantined
C:\Users\Bari\Downloads\cnet_SopCast_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
F:\wee laptop\my docs\work\programs\Autodesk AutoCAD 2010 [64-bit]\AAC2010_Keygen-64bits.exe a variant of Win32/Keygen.BL application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:02 PM

Posted 13 August 2012 - 01:20 PM

ASWMBR log?

#5 the_r_sole

the_r_sole
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 13 August 2012 - 01:50 PM

sorry, not sure what happened to it!

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-13 16:43:31
-----------------------------
16:43:31.611 OS Version: Windows x64 6.1.7601 Service Pack 1
16:43:31.611 Number of processors: 6 586 0xA00
16:43:31.611 ComputerName: BARIREID UserName: Bari
16:43:32.161 Initialize success
16:44:53.876 AVAST engine defs: 12081300
16:44:59.992 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
16:44:59.992 Disk 0 Vendor: SAMSUNG_ 1AJ1 Size: 476940MB BusType: 11
16:44:59.992 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000083
16:44:59.992 Disk 1 Vendor: Size: 476940MB BusType: 0
16:45:00.007 Disk 0 MBR read successfully
16:45:00.007 Disk 0 MBR scan
16:45:00.007 Disk 0 Windows 7 default MBR code
16:45:00.023 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
16:45:00.023 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 476838 MB offset 206848
16:45:00.054 Disk 0 scanning C:\Windows\system32\drivers
16:45:23.392 Service scanning
16:45:47.306 Modules scanning
16:45:47.322 Disk 0 trace - called modules:
16:45:47.353 ntoskrnl.exe CLASSPNP.SYS disk.sys amdxata.sys storport.sys hal.dll amdsata.sys
16:45:47.369 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007a00790]
16:45:47.369 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa8006b3e040]
16:45:47.384 5 amdxata.sys[fffff880011657a8] -> nt!IofCallDriver -> \Device\0000005b[0xfffffa80079199c0]
16:45:47.821 AVAST engine scan C:\Windows
16:45:55.886 AVAST engine scan C:\Windows\system32
16:49:59.450 AVAST engine scan C:\Windows\system32\drivers
16:50:09.949 AVAST engine scan C:\Users\Bari
16:54:13.028 Disk 0 MBR has been saved successfully to "C:\Users\Bari\Desktop\MBR.dat"
16:54:13.044 The log file has been saved successfully to "C:\Users\Bari\Desktop\aswMBR.txt"

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:02 PM

Posted 13 August 2012 - 08:59 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 the_r_sole

the_r_sole
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 14 August 2012 - 03:50 AM

mini toolbox:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Bari (administrator) on 14-08-2012 at 09:26:48
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : barireid
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home.gateway

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : home.gateway
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 6C-F0-49-B3-1D-3D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ecf4:ec04:4ebb:9ec5%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 14 August 2012 08:12:18
Lease Expires . . . . . . . . . . : 14 August 2012 20:12:18
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 242020425
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-2C-80-9F-6C-F0-49-B3-1D-3D
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.home.gateway:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.254

Name: google.com
Addresses: 2a00:1450:4009:809::1009
173.194.34.100
173.194.34.99
173.194.34.103
173.194.34.98
173.194.34.96
173.194.34.101
173.194.34.104
173.194.34.97
173.194.34.102
173.194.34.105
173.194.34.110


Pinging google.com [173.194.34.110] with 32 bytes of data:
Reply from 173.194.34.110: bytes=32 time=39ms TTL=55
Reply from 173.194.34.110: bytes=32 time=40ms TTL=56

Ping statistics for 173.194.34.110:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 39ms, Maximum = 40ms, Average = 39ms
Server: UnKnown
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=194ms TTL=44
Reply from 98.138.253.109: bytes=32 time=167ms TTL=45

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 167ms, Maximum = 194ms, Average = 180ms
Server: UnKnown
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...6c f0 49 b3 1d 3d ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.101 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.101 276
192.168.1.101 255.255.255.255 On-link 192.168.1.101 276
192.168.1.255 255.255.255.255 On-link 192.168.1.101 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.101 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.101 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::ecf4:ec04:4ebb:9ec5/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/13/2012 04:55:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/13/2012 04:55:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/13/2012 03:14:55 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
Could not query the status of the EventSystem service.

System Error:
A system shutdown is in progress.
.

Error: (08/13/2012 10:09:03 AM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16447 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1d88

Start Time: 01cd792b3504c3dd

Termination Time: 43

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (08/13/2012 09:39:55 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc100
Faulting module name: mshtml.dll, version: 9.0.8112.16447, time stamp: 0x4fc9d776
Exception code: 0xc0000005
Fault offset: 0x001d9aa6
Faulting process id: 0xd70
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (08/13/2012 09:11:14 AM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16447 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1f38

Start Time: 01cd79263853f432

Termination Time: 36

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id:

Error: (08/13/2012 00:31:55 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (08/13/2012 00:30:11 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Multiple requestedPrivileges elements are not allowed in manifest.

Error: (08/12/2012 00:31:16 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (08/12/2012 00:30:06 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Multiple requestedPrivileges elements are not allowed in manifest.


System errors:
=============
Error: (08/14/2012 08:12:21 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/14/2012 08:12:21 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/14/2012 08:12:21 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/14/2012 08:12:21 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/14/2012 08:12:20 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/14/2012 08:12:20 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/14/2012 08:12:20 AM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/14/2012 08:12:20 AM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/13/2012 08:09:56 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (08/13/2012 08:09:53 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.


Microsoft Office Sessions:
=========================
Error: (12/12/2011 11:08:47 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 525 seconds with 180 seconds of active time. This session ended with a crash.

Error: (11/28/2011 11:32:53 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 221 seconds with 180 seconds of active time. This session ended with a crash.

Error: (07/20/2011 09:07:36 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 964 seconds with 120 seconds of active time. This session ended with a crash.

Error: (02/19/2011 01:14:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6550.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 833 seconds with 0 seconds of active time. This session ended with a crash.

Error: (01/09/2011 09:50:54 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6548.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 268 seconds with 240 seconds of active time. This session ended with a crash.

Error: (10/22/2010 08:34:01 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 77 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.2.443)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.5.1)
Adobe Acrobat 9.5.1 - CPSID_83708
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Asset Services CS4 (Version: 4)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Creative Suite 4 Design Premium (Version: 4.0)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Fireworks CS4 (Version: 10.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 10 Plugin (Version: 10.0.2.54)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Illustrator CS4 (Version: 14.0)
Adobe InDesign CS4 (Version: 6.0)
Adobe InDesign CS4 Application Feature Set Files (Roman) (Version: 6.0)
Adobe InDesign CS4 Common Base Files (Version: 6.0)
Adobe InDesign CS4 Icon Handler (Version: 6.0)
Adobe InDesign CS4 Icon Handler x64 (Version: 6.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe SGM CS4 (Version: 3.0)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Adobe SING CS4 (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe Version Cue CS4 Server (Version: 4.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
AMD USB Filter Driver (Version: 1.0.15.94)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
AutoCAD 2010 - English (Version: 18.0.55.0)
AutoCAD 2010 Language Pack - English (Version: 18.0.55.0)
Autodesk Buzzsaw 2013.1.24.8674 (Version: 2013.1.24.8674)
Autodesk Design Review 2012 (Version: 12.0.0.93)
Autodesk Impression 3 (Version: 3.0.23698.0)
Autodesk Material Library 2012 (Version: 2.5.0.8)
Autodesk Material Library Base Resolution Image Library 2012 (Version: 2.5.0.8)
Autodesk Material Library Low Resolution Image Library 2012 (Version: 2.5.0.8)
Autodesk Material Library Medium Resolution Image Library 2012 (Version: 2.5.0.8)
Autodesk Revit Architecture 2012 (Version: 11.03.09231)
BitTorrent (Version: 7.2.1)
BitTorrentBar Toolbar (Version: 6.2.7.3)
BlogDesk 2.8 (Version: 2.8)
Bonjour (Version: 3.0.0.10)
Brother MFL-Pro Suite MFC-J6510DW (Version: 1.0.27.0)
CCleaner (Version: 3.17)
Conduit Engine (Version: )
Connect (Version: 1.0.0.1)
D3DX10 (Version: 15.4.2368.0902)
DHTML Editing Component (Version: 6.02.0001)
Dropbox (Version: 1.4.7)
EasySaver B9.1214.1 (Version: 1.00.0000)
EPSON TWAIN 5
ESET Online Scanner v3
FARO LS 1.1.406.58 (Version: 4.6.58.2)
Gassumo Outlook Android Task Synchronizer (Version: 1.0.1.0)
Google Calendar Sync
Google Chrome (Version: 21.0.1180.77)
Google SketchUp Pro 8 (Version: 3.0.3117)
HandBrake 0.9.6 (Version: 0.9.6)
iTunes (Version: 10.6.0.40)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Knauf ACS 5 (Version: 5.0.9)
kuler (Version: 2.0)
Last.fm 1.5.4.27091
LG Bluetooth Drivers (Version: 1.1)
LG On-Screen Phone (Version: 0.4.19.20110330)
LG PC Suite IV (Version: 4.3.13.20110331)
LG United Mobile Drivers (Version: 3.2.0.0)
LightScribe Applications (Version: 1.18.15.1)
LightScribe System Software (Version: 1.18.24.1)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MediaPortal (Version: 1.1.3)
MediaPortal MP-TVSeries Plugin 2.9.0 (Version: 2.9.0.1712)
MediaPortal StreamedMP Skin 1.5.5 (Version: 1.5.5.2734)
MediaPortal TV Server / Client (Version: 1.1.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.6123.5001)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (Version: 9.0.30729)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (Version: 1)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (Version: 9.0.30729)
Mozilla Firefox 13.0.1 (x86 en-GB) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MusicBrainz Picard (Version: 0.13)
MySQL Server 5.1 (Version: 5.1.38)
Nuance PaperPort 12 (Version: 12.1.0000)
Nuance PDF Viewer Plus (Version: 5.30.3290)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.78.0)
NVIDIA PhysX (Version: 9.10.0224)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.5896)
NVIDIA Update 1.3.5 (Version: 1.3.5)
NVIDIA Update Components (Version: 1.3.5)
PaperPort Image Printer 64-bit (Version: 1.00.0001)
PC Inspector File Recovery (Version: 4.0)
PDF Settings CS4 (Version: 9.0)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Pidgin (Version: 2.9.0)
Pixel Bender Toolkit (Version: 1.0)
PowerISO (Version: 4.7)
QuickTime (Version: 7.71.80.42)
RAIDar 4.3.2 (Version: 4.3.2)
Realtek Ethernet Controller Driver For Windows Vista and Later (Version: 1.00.0009)
Realtek High Definition Audio Driver (Version: 6.0.1.6066)
Revit Architecture 2012 Language Pack - English (Version: 11.03.09231)
Scansoft PDF Professional
Skype Click to Call (Version: 5.6.8442)
SkypeMate (Version: )
Skype™ 5.10 (Version: 5.10.116)
SopCast 3.4.0 (Version: 3.4.0)
Spotify (Version: 0.5.1)
Spotify (Version: 0.8.3.222.g317ab79d)
SU Podium V2 2.6
Suite Shared Configuration CS4 (Version: 1.0)
SureThing CD Labeler LightScribe Trial 5
swMSM (Version: 12.0.0.1)
TexdroDesktop (Version: 1.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Veetle TV 0.9.18 (Version: 0.9.18)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (Version: 9.0.30729.177)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (Version: 9.0.30729.177)
VLC media player 1.1.5 (Version: 1.1.5)
vShare Plugin
Vtune 7.11
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinRAR archiver

========================= Memory info: ===================================

Percentage of memory in use: 34%
Total physical RAM: 8188.16 MB
Available physical RAM: 5336.18 MB
Total Pagefile: 16374.5 MB
Available Pagefile: 12644.28 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.76 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:465.66 GB) (Free:320.03 GB) NTFS
3 Drive d: (MFL_PRO) (CDROM) (Total:0.45 GB) (Free:0 GB) CDFS
4 Drive f: () (Fixed) (Total:111.78 GB) (Free:8.82 GB) NTFS

========================= Users: ========================================

User accounts for \\BARIREID

Administrator Bari Guest
UpdatusUser


**** End of log ****

FSS:

Farbar Service Scanner Version: 06-08-2012
Ran by Bari (administrator) on 14-08-2012 at 09:28:58
Running from "C:\Users\Bari\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

adwcleaner:

# AdwCleaner v1.801 - Logfile created 08/14/2012 at 09:30:20
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Bari - BARIREID
# Boot Mode : Normal
# Running from : C:\Users\Bari\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\Bari\AppData\LocalLow\BitTorrentBar
Folder Deleted : C:\Users\Bari\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Bari\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\Bari\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Bari\AppData\LocalLow\vShare
Folder Deleted : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\Conduit
Folder Deleted : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\ConduitEngine
Folder Deleted : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\CT2790392
Folder Deleted : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
Folder Deleted : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\extensions\engine@conduit.com
Folder Deleted : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\extensions\vshare@toolbar
Folder Deleted : C:\Program Files (x86)\BitTorrentBar
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\ConduitEngine
Folder Deleted : C:\Program Files (x86)\vShare
File Deleted : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\searchplugins\web-search.xml

***** [Registry] *****

[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\vShare
Key Deleted : HKLM\SOFTWARE\BitTorrentBar
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\vsharechrome
Key Deleted : HKLM\SOFTWARE\Classes\vShare.ScriptHelpers
Key Deleted : HKLM\SOFTWARE\Classes\vShare.ScriptHelpers.1
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vShare

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{92331A23-5D65-47F0-BA6D-9B98AAA559AC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{20ED5AF7-D9C4-409E-9EB3-D2A44A77FB6D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8746DB42-3EB4-4148-AD46-5B8FF33830DA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C0D6A9A-FB91-4BEB-8C8A-52026F09A09C}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{92331A23-5D65-47F0-BA6D-9B98AAA559AC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{92331A23-5D65-47F0-BA6D-9B98AAA559AC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{88C7F2AA-F93F-432C-8F0E-B7D85967A527}]
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{20ED5AF7-D9C4-409E-9EB3-D2A44A77FB6D}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v13.0.1 (en-GB)

Profile name : default
File : C:\Users\Bari\AppData\Roaming\Mozilla\Firefox\Profiles\flmpqsag.default\prefs.js

Deleted : user_pref("CT2790392..clientLogIsEnabled", false);
Deleted : user_pref("CT2790392..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT2790392..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT2790392.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT2790392.AppTrackingLastCheckTime", "Mon Apr 25 2011 13:56:17 GMT+0100 (GMT Daylight Tim[...]
Deleted : user_pref("CT2790392.CTID", "CT2790392");
Deleted : user_pref("CT2790392.CurrentServerDate", "25-4-2011");
Deleted : user_pref("CT2790392.DialogsAlignMode", "LTR");
Deleted : user_pref("CT2790392.DialogsGetterLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylight T[...]
Deleted : user_pref("CT2790392.DownloadReferralCookieData", "");
Deleted : user_pref("CT2790392.EMailNotifierPollDate", "Mon Apr 25 2011 13:56:04 GMT+0100 (GMT Daylight Time)"[...]
Deleted : user_pref("CT2790392.FeedLastCount129313977501788460", 134);
Deleted : user_pref("CT2790392.FeedPollDate129313974171006416", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313975698350231", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313976370850190", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313976648818968", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313977444757117", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313980389131455", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313980655381977", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313980886163259", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313981234756535", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313983226631720", "Mon Apr 25 2011 13:56:06 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedPollDate129313983607725691", "Mon Apr 25 2011 13:56:06 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("CT2790392.FeedTTL129313974171006416", 10);
Deleted : user_pref("CT2790392.FeedTTL129313977444757117", 15);
Deleted : user_pref("CT2790392.FeedTTL129313980655381977", 5);
Deleted : user_pref("CT2790392.FeedTTL129313981234756535", 5);
Deleted : user_pref("CT2790392.FirstServerDate", "25-4-2011");
Deleted : user_pref("CT2790392.FirstTime", true);
Deleted : user_pref("CT2790392.FirstTimeFF3", true);
Deleted : user_pref("CT2790392.FixPageNotFoundErrors", false);
Deleted : user_pref("CT2790392.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT2790392.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT2790392.HasUserGlobalKeys", true);
Deleted : user_pref("CT2790392.Initialize", true);
Deleted : user_pref("CT2790392.InitializeCommonPrefs", true);
Deleted : user_pref("CT2790392.InstallationAndCookieDataSentCount", 1);
Deleted : user_pref("CT2790392.InstallationType", "UnknownIntegration");
Deleted : user_pref("CT2790392.InstalledDate", "Mon Apr 25 2011 13:56:04 GMT+0100 (GMT Daylight Time)");
Deleted : user_pref("CT2790392.IsGrouping", false);
Deleted : user_pref("CT2790392.IsMulticommunity", false);
Deleted : user_pref("CT2790392.IsOpenThankYouPage", true);
Deleted : user_pref("CT2790392.IsOpenUninstallPage", false);
Deleted : user_pref("CT2790392.LanguagePackLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylight Ti[...]
Deleted : user_pref("CT2790392.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT2790392.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT2790392.LastLogin_3.3.3.2", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylight Time)");
Deleted : user_pref("CT2790392.LatestVersion", "3.3.3.2");
Deleted : user_pref("CT2790392.Locale", "en");
Deleted : user_pref("CT2790392.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT2790392.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT2790392.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT2790392.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT2790392.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT279[...]
Deleted : user_pref("CT2790392.SearchInNewTabEnabled", true);
Deleted : user_pref("CT2790392.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT2790392.SearchInNewTabLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylight [...]
Deleted : user_pref("CT2790392.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT2790392.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Deleted : user_pref("CT2790392.ServiceMapLastCheckTime", "Mon Apr 25 2011 13:56:04 GMT+0100 (GMT Daylight Time[...]
Deleted : user_pref("CT2790392.SettingsLastCheckTime", "Mon Apr 25 2011 13:56:04 GMT+0100 (GMT Daylight Time)"[...]
Deleted : user_pref("CT2790392.SettingsLastUpdate", "1301829146");
Deleted : user_pref("CT2790392.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT2790392.ThirdPartyComponentsLastCheck", "Mon Apr 25 2011 13:56:04 GMT+0100 (GMT Dayligh[...]
Deleted : user_pref("CT2790392.ThirdPartyComponentsLastUpdate", "1246786978");
Deleted : user_pref("CT2790392.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2790392");
Deleted : user_pref("CT2790392.UserID", "UN85327652632038097");
Deleted : user_pref("CT2790392.WeatherNetwork", "");
Deleted : user_pref("CT2790392.WeatherPollDate", "Mon Apr 25 2011 13:56:06 GMT+0100 (GMT Daylight Time)");
Deleted : user_pref("CT2790392.WeatherUnit", "C");
Deleted : user_pref("CT2790392.alertChannelId", "1182482");
Deleted : user_pref("CT2790392.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.[...]
Deleted : user_pref("CT2790392.globalFirstTimeInfoLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Dayl[...]
Deleted : user_pref("CT2790392.isAppTrackingManagerOn", true);
Deleted : user_pref("CT2790392.myStuffEnabled", true);
Deleted : user_pref("CT2790392.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT2790392.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT2790392.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT2790392.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT2790392.testingCtid", "");
Deleted : user_pref("CT2790392.toolbarAppMetaDataLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Dayli[...]
Deleted : user_pref("CT2790392.toolbarContextMenuLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Dayli[...]
Deleted : user_pref("CT2790392.usagesFlag", 2);
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1182482/1178159/UK", "\"0\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/UK", "\"0\"")[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2790392", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3.[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2790392",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2790392/CT2790392[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"634[...]
Deleted : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Deleted : user_pref("CommunityToolbar.EngineOwner", "CT2790392");
Deleted : user_pref("CommunityToolbar.EngineOwnerGuid", "{88c7f2aa-f93f-432c-8f0e-b7d85967a527}");
Deleted : user_pref("CommunityToolbar.EngineOwnerToolbarId", "bittorrentbar");
Deleted : user_pref("CommunityToolbar.IsEngineShown", false);
Deleted : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Deleted : user_pref("CommunityToolbar.OriginalEngineOwner", "CT2790392");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{88c7f2aa-f93f-432c-8f0e-b7d85967a527}");
Deleted : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "bittorrentbar");
Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2790392,ConduitEngine");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2790392,ConduitEngine");
Deleted : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Mon Apr 25 2011 13:56:06 GMT+01[...]
Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Apr 25 2011 13:56:14 GMT+0100 (GMT D[...]
Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.locale", "en");
Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon Apr 25 2011 13:56:04 GMT+0100 (GMT Dayli[...]
Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1303303927");
Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.alert.userId", "93672254-aa18-47ea-b3a2-b529409096a1");
Deleted : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT[...]
Deleted : user_pref("CommunityToolbar.globalUserId", "b18868e9-3e35-4e91-a3d6-15056765e3e0");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon Apr 25 2011 13:56:18 GMT+0100 (GMT Daylight[...]
Deleted : user_pref("ConduitEngine.CTID", "ConduitEngine");
Deleted : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylig[...]
Deleted : user_pref("ConduitEngine.FirstServerDate", "04/25/2011 15");
Deleted : user_pref("ConduitEngine.FirstTime", true);
Deleted : user_pref("ConduitEngine.FirstTimeFF3", true);
Deleted : user_pref("ConduitEngine.FixPageNotFoundErrors", false);
Deleted : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Deleted : user_pref("ConduitEngine.HideEngineAfterRestart", true);
Deleted : user_pref("ConduitEngine.Initialize", true);
Deleted : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Deleted : user_pref("ConduitEngine.InstallationType", "UnknownIntegration");
Deleted : user_pref("ConduitEngine.InstalledDate", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylight Time)");
Deleted : user_pref("ConduitEngine.IsMulticommunity", false);
Deleted : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Deleted : user_pref("ConduitEngine.IsOpenUninstallPage", false);
Deleted : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Dayligh[...]
Deleted : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT Daylight Time)"[...]
Deleted : user_pref("ConduitEngine.PublisherContainerWidth", 0);
Deleted : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Deleted : user_pref("ConduitEngine.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=C[...]
Deleted : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Apr 25 2011 13:56:04 GMT+0100 (GMT Daylight Ti[...]
Deleted : user_pref("ConduitEngine.UserID", "UN59187920039333839");
Deleted : user_pref("ConduitEngine.engineLocale", "en-GB");
Deleted : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Apr 25 2011 13:56:05 GMT+0100 (GMT D[...]
Deleted : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Apr 25 2011 13:56:06 GMT+0100 (GMT [...]
Deleted : user_pref("ConduitEngine.initDone", true);
Deleted : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Deleted : user_pref("browser.search.selectedEngine", "Web Search...");
Deleted : user_pref("extensions.vshare@toolbar.update.enabled", false);
Deleted : user_pref("vshare.install.date", "1295049600000");
Deleted : user_pref("vshare.install.finished", "1.0.0");
Deleted : user_pref("vshare.install.guardCount", 1);
Deleted : user_pref("vshare.install.guardPopupCount", 1);
Deleted : user_pref("vshare.install.guardSPCount", 1);
Deleted : user_pref("vshare.install.guardSPPopupCount", 1);
Deleted : user_pref("vshare.install.guid", "{7cb9cf22-8c78-4c26-bd2f-98579b41b5a4}");
Deleted : user_pref("vshare.install.isDisabled", false);
Deleted : user_pref("vshare.install.isHidden", true);
Deleted : user_pref("vshare.install.laststatreq", "1309910400000");
Deleted : user_pref("vshare.install.newtab", true);
Deleted : user_pref("vshare.install.overlayVersion", 1);
Deleted : user_pref("vshare.install.userHPSettings", "hxxp://www.google.co.uk/");
Deleted : user_pref("vshare.install.userSPSettings", "");

-\\ Google Chrome v21.0.1180.77

File : C:\Users\Bari\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted : "description": "The fastest way to search the web.",

*************************

AdwCleaner[S1].txt - [20455 octets] - [14/08/2012 09:30:20]

########## EOF - C:\AdwCleaner[S1].txt - [20584 octets] ##########


thanks again for your help

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:02 PM

Posted 14 August 2012 - 05:54 AM

Download

MpsSvc
BFE
wscsvc
defender
wuauserv
BITS
Sharedaccess

Launch them ,click YES when you get UAC prompt

restart the PC


Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
reset file permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache
Repair hosts


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the FSS log

#9 the_r_sole

the_r_sole
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 14 August 2012 - 07:02 AM

ok, thanks again!

FSS

Farbar Service Scanner Version: 06-08-2012
Ran by Bari (administrator) on 14-08-2012 at 13:01:19
Running from "C:\Users\Bari\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:02 PM

Posted 14 August 2012 - 07:05 AM

Any current issues before we wrap up?

If you still have issues with MSE ,reinstall it

I went into safe mode and ran malware bytes again (this time a full scan) which picked up a trojan sirefef.ab


Can you post this log?

Edited by narenxp, 14 August 2012 - 07:06 AM.


#11 the_r_sole

the_r_sole
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 14 August 2012 - 07:51 AM

everything seems to be working fine now, many thanks - unfortunately I don't have the log from the first scan (can't find it anywhere, unless you know where it might be saved?)

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:02 PM

Posted 14 August 2012 - 07:58 AM

Launch malwarebytes

Click on LOGS tab

You should see the old logs,you can click on OPEN and post the log which detected sirefef

#13 the_r_sole

the_r_sole
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 14 August 2012 - 08:33 AM

sorry, there is nothing there as I reinstalled the software to do the scans this morning (both of which did not detect anything) is there logs in microsoft security essentials as this picked it up and hasn't been reinstalled

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:02 PM

Posted 14 August 2012 - 08:39 AM

No problem,just wanted to make sure there are no traces :thumbup2:

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#15 the_r_sole

the_r_sole
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:02 PM

Posted 14 August 2012 - 09:13 AM

great stuff, thanks for all the help, now to catch up on a days work!! :dance:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users