Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan/Rootkit virus?


  • Please log in to reply
18 replies to this topic

#1 ironcitycats

ironcitycats

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 28 August 2012 - 09:18 PM

Good evening,

I'm having some trouble and hope you all can help as you have once before. Appears I have some sort of virus as I discovered after running my weekly Malwarebytes scan. The symptoms involved are I am getting website redirects on Firefox and IE. Also, Adobe Flash player keeps wanting to install or update every 20 minutes or so.

My PC is Windows Vista Service Pack 2. Any help would be greatly appreciated as always. Malwarebytes has finished running but I didn't want to do anything further til I got professional advice. Thanks in advance.

P.S. This is what Malwarebytes comes up with:

Trojan.Dropper.BCMiner
Rootkit.OAccess
Rootkit.OAccess

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 28 August 2012 - 09:18 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 ironcitycats

ironcitycats
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 29 August 2012 - 10:09 AM

Hi narenxp, thanks for your quick response. The requested info is below.

23:16:04.0449 0864 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
23:16:04.0745 0864 ============================================================
23:16:04.0745 0864 Current date / time: 2012/08/28 23:16:04.0745
23:16:04.0745 0864 SystemInfo:
23:16:04.0745 0864
23:16:04.0745 0864 OS Version: 6.0.6002 ServicePack: 2.0
23:16:04.0745 0864 Product type: Workstation
23:16:04.0745 0864 ComputerName: MATT-PC
23:16:04.0745 0864 UserName: Matt
23:16:04.0745 0864 Windows directory: C:\Windows
23:16:04.0745 0864 System windows directory: C:\Windows
23:16:04.0745 0864 Running under WOW64
23:16:04.0745 0864 Processor architecture: Intel x64
23:16:04.0745 0864 Number of processors: 2
23:16:04.0745 0864 Page size: 0x1000
23:16:04.0745 0864 Boot type: Normal boot
23:16:04.0745 0864 ============================================================
23:16:05.0697 0864 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:16:05.0713 0864 ============================================================
23:16:05.0713 0864 \Device\Harddisk0\DR0:
23:16:05.0713 0864 MBR partitions:
23:16:05.0713 0864 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000
23:16:05.0713 0864 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x38566000
23:16:05.0713 0864 ============================================================
23:16:05.0744 0864 C: <-> \Device\Harddisk0\DR0\Partition2
23:16:05.0775 0864 D: <-> \Device\Harddisk0\DR0\Partition1
23:16:05.0775 0864 ============================================================
23:16:05.0775 0864 Initialize success
23:16:05.0775 0864 ============================================================
23:16:42.0638 2356 ============================================================
23:16:42.0638 2356 Scan started
23:16:42.0638 2356 Mode: Manual; TDLFS;
23:16:42.0638 2356 ============================================================
23:16:44.0135 2356 ================ Scan system memory ========================
23:16:44.0135 2356 System memory - ok
23:16:44.0135 2356 ================ Scan services =============================
23:16:44.0276 2356 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
23:16:44.0276 2356 ACPI - ok
23:16:44.0338 2356 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:16:44.0338 2356 Suspicious file (NoAccess): C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe. md5: 62B7936F9036DD6ED36E6A7EFA805DC0
23:16:44.0338 2356 AdobeARMservice ( LockedFile.Multi.Generic ) - warning
23:16:44.0338 2356 AdobeARMservice - detected LockedFile.Multi.Generic (1)
23:16:44.0385 2356 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:16:44.0385 2356 adp94xx - ok
23:16:44.0401 2356 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:16:44.0401 2356 adpahci - ok
23:16:44.0432 2356 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
23:16:44.0432 2356 adpu160m - ok
23:16:44.0463 2356 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:16:44.0463 2356 adpu320 - ok
23:16:44.0494 2356 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:16:44.0494 2356 AeLookupSvc - ok
23:16:44.0510 2356 [ 0D7A11395C0A33D9E7587CDB9866EFAD ] AERTFilters C:\Windows\system32\AERTSr64.exe
23:16:44.0541 2356 AERTFilters - ok
23:16:44.0572 2356 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
23:16:44.0588 2356 AFD - ok
23:16:44.0603 2356 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:16:44.0603 2356 agp440 - ok
23:16:44.0635 2356 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
23:16:44.0635 2356 aic78xx - ok
23:16:44.0650 2356 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
23:16:44.0650 2356 ALG - ok
23:16:44.0666 2356 [ 9544C2C55541C0C6BFD7B489D0E7D430 ] aliide C:\Windows\system32\drivers\aliide.sys
23:16:44.0666 2356 aliide - ok
23:16:44.0759 2356 [ 2AED9A422EA1574C7D7EF9359A417718 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:16:44.0759 2356 AMD External Events Utility - ok
23:16:44.0775 2356 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
23:16:44.0775 2356 amdide - ok
23:16:44.0791 2356 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:16:44.0791 2356 AmdK8 - ok
23:16:45.0025 2356 [ BFA5E854959D5546D8834CA61F4AD075 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:16:45.0181 2356 amdkmdag - ok
23:16:45.0212 2356 [ 92D664FFFCD9E742FB25254F7F458D88 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:16:45.0212 2356 amdkmdap - ok
23:16:45.0243 2356 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
23:16:45.0243 2356 Appinfo - ok
23:16:45.0274 2356 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
23:16:45.0274 2356 arc - ok
23:16:45.0305 2356 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:16:45.0305 2356 arcsas - ok
23:16:45.0337 2356 ASPI - ok
23:16:45.0368 2356 aspnet_state - ok
23:16:45.0415 2356 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:16:45.0415 2356 AsyncMac - ok
23:16:45.0446 2356 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
23:16:45.0446 2356 atapi - ok
23:16:45.0617 2356 [ BFA5E854959D5546D8834CA61F4AD075 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:16:45.0664 2356 atikmdag - ok
23:16:45.0695 2356 [ 54494B93BB5AD74C807100144EC30D64 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
23:16:45.0695 2356 atksgt - ok
23:16:45.0742 2356 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:16:45.0742 2356 AudioEndpointBuilder - ok
23:16:45.0758 2356 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:16:45.0758 2356 AudioSrv - ok
23:16:45.0758 2356 Beep - ok
23:16:45.0773 2356 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
23:16:45.0773 2356 blbdrive - ok
23:16:45.0820 2356 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:16:45.0820 2356 bowser - ok
23:16:45.0836 2356 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
23:16:45.0851 2356 BrFiltLo - ok
23:16:45.0867 2356 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
23:16:45.0867 2356 BrFiltUp - ok
23:16:45.0883 2356 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
23:16:45.0883 2356 Browser - ok
23:16:45.0914 2356 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
23:16:45.0914 2356 Brserid - ok
23:16:45.0929 2356 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
23:16:45.0929 2356 BrSerWdm - ok
23:16:45.0945 2356 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
23:16:45.0945 2356 BrUsbMdm - ok
23:16:45.0961 2356 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
23:16:45.0961 2356 BrUsbSer - ok
23:16:45.0976 2356 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:16:45.0976 2356 BTHMODEM - ok
23:16:46.0023 2356 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:16:46.0023 2356 cdfs - ok
23:16:46.0039 2356 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:16:46.0054 2356 cdrom - ok
23:16:46.0070 2356 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
23:16:46.0070 2356 CertPropSvc - ok
23:16:46.0085 2356 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
23:16:46.0085 2356 circlass - ok
23:16:46.0117 2356 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
23:16:46.0132 2356 CLFS - ok
23:16:46.0148 2356 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:16:46.0148 2356 clr_optimization_v2.0.50727_32 - ok
23:16:46.0210 2356 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:16:46.0210 2356 clr_optimization_v2.0.50727_64 - ok
23:16:46.0304 2356 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:16:46.0304 2356 clr_optimization_v4.0.30319_32 - ok
23:16:46.0335 2356 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:16:46.0335 2356 clr_optimization_v4.0.30319_64 - ok
23:16:46.0351 2356 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:16:46.0351 2356 cmdide - ok
23:16:46.0366 2356 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
23:16:46.0366 2356 Compbatt - ok
23:16:46.0366 2356 COMSysApp - ok
23:16:46.0397 2356 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:16:46.0397 2356 crcdisk - ok
23:16:46.0444 2356 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:16:46.0444 2356 CryptSvc - ok
23:16:46.0491 2356 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
23:16:46.0522 2356 DcomLaunch - ok
23:16:46.0538 2356 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:16:46.0538 2356 DfsC - ok
23:16:46.0631 2356 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
23:16:46.0694 2356 DFSR - ok
23:16:46.0725 2356 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
23:16:46.0725 2356 Dhcp - ok
23:16:46.0756 2356 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
23:16:46.0756 2356 disk - ok
23:16:46.0772 2356 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:16:46.0772 2356 Dnscache - ok
23:16:46.0850 2356 [ DB29915209770D8B59654345EC2D943A ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
23:16:46.0850 2356 DockLoginService - ok
23:16:46.0881 2356 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
23:16:46.0881 2356 dot3svc - ok
23:16:46.0912 2356 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
23:16:46.0912 2356 DPS - ok
23:16:46.0928 2356 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:16:46.0928 2356 drmkaud - ok
23:16:46.0975 2356 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
23:16:46.0990 2356 dtsoftbus01 - ok
23:16:47.0021 2356 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:16:47.0037 2356 DXGKrnl - ok
23:16:47.0068 2356 [ 17D40652EF3E55EEAE187A89DF40965A ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys
23:16:47.0084 2356 e1express - ok
23:16:47.0099 2356 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
23:16:47.0115 2356 E1G60 - ok
23:16:47.0131 2356 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
23:16:47.0131 2356 EapHost - ok
23:16:47.0146 2356 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
23:16:47.0146 2356 Ecache - ok
23:16:47.0209 2356 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:16:47.0209 2356 ehRecvr - ok
23:16:47.0209 2356 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
23:16:47.0209 2356 ehSched - ok
23:16:47.0240 2356 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
23:16:47.0240 2356 ehstart - ok
23:16:47.0271 2356 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:16:47.0271 2356 elxstor - ok
23:16:47.0318 2356 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
23:16:47.0318 2356 EMDMgmt - ok
23:16:47.0333 2356 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:16:47.0333 2356 ErrDev - ok
23:16:47.0365 2356 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
23:16:47.0365 2356 EventSystem - ok
23:16:47.0396 2356 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
23:16:47.0411 2356 exfat - ok
23:16:47.0443 2356 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:16:47.0443 2356 fastfat - ok
23:16:47.0443 2356 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:16:47.0443 2356 fdc - ok
23:16:47.0458 2356 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
23:16:47.0458 2356 fdPHost - ok
23:16:47.0474 2356 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
23:16:47.0474 2356 FDResPub - ok
23:16:47.0505 2356 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:16:47.0505 2356 FileInfo - ok
23:16:47.0521 2356 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:16:47.0521 2356 Filetrace - ok
23:16:47.0567 2356 [ 0B9167ADFE8E42B6B4C5E929BFBC7080 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
23:16:47.0583 2356 FlipShare Service - ok
23:16:47.0599 2356 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:16:47.0599 2356 flpydisk - ok
23:16:47.0630 2356 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:16:47.0630 2356 FltMgr - ok
23:16:47.0645 2356 flyyloim - ok
23:16:47.0708 2356 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
23:16:47.0739 2356 FontCache - ok
23:16:47.0786 2356 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:16:47.0786 2356 FontCache3.0.0.0 - ok
23:16:47.0833 2356 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:16:47.0833 2356 Fs_Rec - ok
23:16:47.0848 2356 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:16:47.0848 2356 gagp30kx - ok
23:16:47.0911 2356 [ 311ACFCDD2C9A99481E91FA4CB028D70 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
23:16:47.0926 2356 GameConsoleService - ok
23:16:47.0957 2356 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
23:16:47.0973 2356 gpsvc - ok
23:16:48.0020 2356 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:16:48.0020 2356 gupdate - ok
23:16:48.0051 2356 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:16:48.0051 2356 gupdatem - ok
23:16:48.0098 2356 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
23:16:48.0098 2356 hamachi - ok
23:16:48.0129 2356 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:16:48.0129 2356 HdAudAddService - ok
23:16:48.0176 2356 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:16:48.0191 2356 HDAudBus - ok
23:16:48.0191 2356 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:16:48.0207 2356 HidBth - ok
23:16:48.0207 2356 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
23:16:48.0223 2356 HidIr - ok
23:16:48.0238 2356 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\System32\hidserv.dll
23:16:48.0254 2356 hidserv - ok
23:16:48.0269 2356 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:16:48.0269 2356 HidUsb - ok
23:16:48.0301 2356 [ C6FF685E2EA55C3AC5C90B9E7D6930C0 ] hitmanpro35 C:\Windows\system32\drivers\hitmanpro35.sys
23:16:48.0301 2356 hitmanpro35 - ok
23:16:48.0332 2356 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
23:16:48.0332 2356 hkmsvc - ok
23:16:48.0347 2356 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
23:16:48.0347 2356 HpCISSs - ok
23:16:48.0394 2356 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:16:48.0410 2356 HTTP - ok
23:16:48.0425 2356 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
23:16:48.0425 2356 i2omp - ok
23:16:48.0457 2356 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:16:48.0457 2356 i8042prt - ok
23:16:48.0488 2356 [ 07FB761600EFF44AF02C35B8B57E5863 ] iaStor C:\Windows\system32\drivers\iastor.sys
23:16:48.0503 2356 iaStor - ok
23:16:48.0519 2356 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
23:16:48.0535 2356 iaStorV - ok
23:16:48.0597 2356 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:16:48.0597 2356 IDriverT - ok
23:16:48.0644 2356 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:16:48.0659 2356 idsvc - ok
23:16:48.0722 2356 [ 5CAB9D1AB5C9384D28DFF89DBE7A72BB ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
23:16:48.0722 2356 IHA_MessageCenter - ok
23:16:48.0753 2356 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:16:48.0753 2356 iirsp - ok
23:16:48.0800 2356 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
23:16:48.0800 2356 IKEEXT - ok
23:16:48.0831 2356 [ 0DD17D4B59D0EC40E3C86A505BB0B6DD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:16:48.0862 2356 IntcAzAudAddService - ok
23:16:48.0878 2356 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\DRIVERS\intelide.sys
23:16:48.0878 2356 intelide - ok
23:16:48.0893 2356 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:16:48.0893 2356 intelppm - ok
23:16:48.0925 2356 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:16:48.0925 2356 IPBusEnum - ok
23:16:48.0956 2356 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:16:48.0956 2356 IpFilterDriver - ok
23:16:48.0956 2356 IpInIp - ok
23:16:48.0987 2356 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
23:16:48.0987 2356 IPMIDRV - ok
23:16:49.0018 2356 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
23:16:49.0018 2356 IPNAT - ok
23:16:49.0049 2356 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:16:49.0049 2356 IRENUM - ok
23:16:49.0081 2356 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:16:49.0081 2356 isapnp - ok
23:16:49.0112 2356 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:16:49.0112 2356 iScsiPrt - ok
23:16:49.0127 2356 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
23:16:49.0127 2356 iteatapi - ok
23:16:49.0159 2356 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
23:16:49.0159 2356 iteraid - ok
23:16:49.0174 2356 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:16:49.0174 2356 kbdclass - ok
23:16:49.0205 2356 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:16:49.0205 2356 kbdhid - ok
23:16:49.0221 2356 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
23:16:49.0221 2356 KeyIso - ok
23:16:49.0252 2356 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:16:49.0268 2356 KSecDD - ok
23:16:49.0283 2356 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:16:49.0283 2356 ksthunk - ok
23:16:49.0299 2356 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
23:16:49.0299 2356 KtmRm - ok
23:16:49.0315 2356 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:16:49.0315 2356 LanmanServer - ok
23:16:49.0361 2356 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:16:49.0361 2356 LanmanWorkstation - ok
23:16:49.0377 2356 [ 47901EADCA0971A997ED926F0EC316C4 ] LicCtrlService C:\Windows\runservice.exe
23:16:49.0377 2356 LicCtrlService - ok
23:16:49.0393 2356 [ 8E4CA9AFD55EF6B509C80A8715ABF8C6 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
23:16:49.0393 2356 lirsgt - ok
23:16:49.0408 2356 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:16:49.0408 2356 lltdio - ok
23:16:49.0424 2356 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:16:49.0439 2356 lltdsvc - ok
23:16:49.0455 2356 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:16:49.0455 2356 lmhosts - ok
23:16:49.0486 2356 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:16:49.0486 2356 LSI_FC - ok
23:16:49.0502 2356 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:16:49.0502 2356 LSI_SAS - ok
23:16:49.0517 2356 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:16:49.0517 2356 LSI_SCSI - ok
23:16:49.0533 2356 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
23:16:49.0533 2356 luafv - ok
23:16:49.0580 2356 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
23:16:49.0580 2356 LVRS64 - ok
23:16:49.0705 2356 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
23:16:49.0798 2356 LVUVC64 - ok
23:16:49.0814 2356 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:16:49.0814 2356 Mcx2Svc - ok
23:16:49.0845 2356 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
23:16:49.0845 2356 megasas - ok
23:16:49.0876 2356 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
23:16:49.0892 2356 MegaSR - ok
23:16:49.0907 2356 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
23:16:49.0907 2356 MMCSS - ok
23:16:49.0923 2356 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
23:16:49.0923 2356 Modem - ok
23:16:49.0954 2356 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:16:49.0954 2356 monitor - ok
23:16:49.0954 2356 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:16:49.0954 2356 mouclass - ok
23:16:49.0985 2356 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:16:49.0985 2356 mouhid - ok
23:16:50.0001 2356 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
23:16:50.0001 2356 MountMgr - ok
23:16:50.0017 2356 movfhdsd - ok
23:16:50.0048 2356 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:16:50.0048 2356 MozillaMaintenance - ok
23:16:50.0063 2356 [ C177A7EBF5E8A0B596F618870516CAB8 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
23:16:50.0079 2356 MpFilter - ok
23:16:50.0095 2356 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
23:16:50.0095 2356 mpio - ok
23:16:50.0126 2356 [ 8FBF6B31FE8AF1833D93C5913D5B4D55 ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys
23:16:50.0126 2356 MpNWMon - ok
23:16:50.0141 2356 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:16:50.0141 2356 mpsdrv - ok
23:16:50.0157 2356 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
23:16:50.0157 2356 Mraid35x - ok
23:16:50.0188 2356 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:16:50.0188 2356 MRxDAV - ok
23:16:50.0204 2356 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:16:50.0204 2356 mrxsmb - ok
23:16:50.0235 2356 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:16:50.0251 2356 mrxsmb10 - ok
23:16:50.0251 2356 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:16:50.0251 2356 mrxsmb20 - ok
23:16:50.0266 2356 [ 730B784962D22D2C6481EAE2370E7C8C ] msahci C:\Windows\system32\drivers\msahci.sys
23:16:50.0266 2356 msahci - ok
23:16:50.0297 2356 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:16:50.0297 2356 msdsm - ok
23:16:50.0313 2356 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
23:16:50.0313 2356 MSDTC - ok
23:16:50.0329 2356 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:16:50.0329 2356 Msfs - ok
23:16:50.0344 2356 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:16:50.0344 2356 msisadrv - ok
23:16:50.0375 2356 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:16:50.0375 2356 MSiSCSI - ok
23:16:50.0375 2356 msiserver - ok
23:16:50.0407 2356 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:16:50.0407 2356 MSKSSRV - ok
23:16:50.0422 2356 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:16:50.0422 2356 MSPCLOCK - ok
23:16:50.0438 2356 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:16:50.0438 2356 MSPQM - ok
23:16:50.0469 2356 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:16:50.0469 2356 MsRPC - ok
23:16:50.0485 2356 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:16:50.0485 2356 mssmbios - ok
23:16:50.0500 2356 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:16:50.0500 2356 MSTEE - ok
23:16:50.0516 2356 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
23:16:50.0516 2356 Mup - ok
23:16:50.0563 2356 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
23:16:50.0563 2356 napagent - ok
23:16:50.0609 2356 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:16:50.0609 2356 NativeWifiP - ok
23:16:50.0656 2356 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:16:50.0672 2356 NDIS - ok
23:16:50.0703 2356 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:16:50.0703 2356 NdisTapi - ok
23:16:50.0719 2356 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:16:50.0719 2356 Ndisuio - ok
23:16:50.0734 2356 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:16:50.0734 2356 NdisWan - ok
23:16:50.0750 2356 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:16:50.0750 2356 NDProxy - ok
23:16:50.0765 2356 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:16:50.0765 2356 NetBIOS - ok
23:16:50.0781 2356 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
23:16:50.0781 2356 netbt - ok
23:16:50.0797 2356 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
23:16:50.0797 2356 Netlogon - ok
23:16:50.0828 2356 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
23:16:50.0828 2356 Netman - ok
23:16:50.0875 2356 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:50.0875 2356 NetMsmqActivator - ok
23:16:50.0875 2356 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:50.0875 2356 NetPipeActivator - ok
23:16:50.0906 2356 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
23:16:50.0921 2356 netprofm - ok
23:16:50.0921 2356 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:50.0921 2356 NetTcpActivator - ok
23:16:50.0921 2356 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:50.0921 2356 NetTcpPortSharing - ok
23:16:50.0968 2356 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:16:50.0968 2356 nfrd960 - ok
23:16:50.0984 2356 [ 5F7D72CBCDD025AF1F38FDEEE5646968 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
23:16:50.0984 2356 NisDrv - ok
23:16:51.0046 2356 [ 566DDD5D82520DA01D75F81428AC4C38 ] NisSrv c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
23:16:51.0046 2356 NisSrv - ok
23:16:51.0062 2356 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
23:16:51.0062 2356 NlaSvc - ok
23:16:51.0062 2356 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:16:51.0062 2356 Npfs - ok
23:16:51.0077 2356 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
23:16:51.0077 2356 nsi - ok
23:16:51.0093 2356 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:16:51.0093 2356 nsiproxy - ok
23:16:51.0140 2356 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:16:51.0155 2356 Ntfs - ok
23:16:51.0171 2356 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
23:16:51.0171 2356 Null - ok
23:16:51.0187 2356 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:16:51.0187 2356 nvraid - ok
23:16:51.0202 2356 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:16:51.0202 2356 nvstor - ok
23:16:51.0218 2356 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:16:51.0218 2356 nv_agp - ok
23:16:51.0233 2356 NwlnkFlt - ok
23:16:51.0233 2356 NwlnkFwd - ok
23:16:51.0265 2356 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
23:16:51.0265 2356 ohci1394 - ok
23:16:51.0296 2356 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:16:51.0296 2356 ose - ok
23:16:51.0343 2356 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
23:16:51.0358 2356 p2pimsvc - ok
23:16:51.0358 2356 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
23:16:51.0374 2356 p2psvc - ok
23:16:51.0389 2356 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
23:16:51.0389 2356 Parport - ok
23:16:51.0421 2356 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:16:51.0421 2356 partmgr - ok
23:16:51.0436 2356 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
23:16:51.0436 2356 PcaSvc - ok
23:16:51.0452 2356 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
23:16:51.0467 2356 pci - ok
23:16:51.0467 2356 [ 2657F6C0B78C36D95034BE109336E382 ] pciide C:\Windows\system32\drivers\pciide.sys
23:16:51.0467 2356 pciide - ok
23:16:51.0483 2356 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:16:51.0483 2356 pcmcia - ok
23:16:51.0514 2356 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:16:51.0530 2356 PEAUTH - ok
23:16:51.0592 2356 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:16:51.0608 2356 PerfHost - ok
23:16:51.0655 2356 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
23:16:51.0686 2356 pla - ok
23:16:51.0717 2356 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:16:51.0717 2356 PlugPlay - ok
23:16:51.0733 2356 PnkBstrA - ok
23:16:51.0733 2356 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
23:16:51.0748 2356 PNRPAutoReg - ok
23:16:51.0748 2356 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
23:16:51.0764 2356 PNRPsvc - ok
23:16:51.0795 2356 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:16:51.0811 2356 PolicyAgent - ok
23:16:51.0857 2356 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:16:51.0857 2356 PptpMiniport - ok
23:16:51.0873 2356 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
23:16:51.0873 2356 Processor - ok
23:16:51.0889 2356 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
23:16:51.0904 2356 ProfSvc - ok
23:16:51.0904 2356 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
23:16:51.0904 2356 ProtectedStorage - ok
23:16:51.0935 2356 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
23:16:51.0935 2356 PSched - ok
23:16:51.0951 2356 [ 46851BC18322DA70F3F2299A1007C479 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
23:16:51.0951 2356 PxHlpa64 - ok
23:16:51.0998 2356 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:16:52.0013 2356 ql2300 - ok
23:16:52.0029 2356 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:16:52.0029 2356 ql40xx - ok
23:16:52.0045 2356 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
23:16:52.0045 2356 QWAVE - ok
23:16:52.0076 2356 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:16:52.0076 2356 QWAVEdrv - ok
23:16:52.0310 2356 [ BFA5E854959D5546D8834CA61F4AD075 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
23:16:52.0372 2356 R300 - ok
23:16:52.0388 2356 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:16:52.0388 2356 RasAcd - ok
23:16:52.0388 2356 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
23:16:52.0388 2356 RasAuto - ok
23:16:52.0403 2356 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:16:52.0403 2356 Rasl2tp - ok
23:16:52.0419 2356 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
23:16:52.0419 2356 RasMan - ok
23:16:52.0450 2356 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:16:52.0450 2356 RasPppoe - ok
23:16:52.0466 2356 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:16:52.0466 2356 RasSstp - ok
23:16:52.0481 2356 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:16:52.0481 2356 rdbss - ok
23:16:52.0497 2356 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:16:52.0497 2356 RDPCDD - ok
23:16:52.0528 2356 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
23:16:52.0528 2356 rdpdr - ok
23:16:52.0528 2356 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:16:52.0528 2356 RDPENCDD - ok
23:16:52.0575 2356 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:16:52.0575 2356 RDPWD - ok
23:16:52.0606 2356 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:16:52.0606 2356 RemoteAccess - ok
23:16:52.0622 2356 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:16:52.0637 2356 RemoteRegistry - ok
23:16:52.0653 2356 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
23:16:52.0653 2356 RpcLocator - ok
23:16:52.0669 2356 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
23:16:52.0669 2356 RpcSs - ok
23:16:52.0684 2356 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:16:52.0684 2356 rspndr - ok
23:16:52.0700 2356 [ B263B3AEBCDE2210D1CC25756601B8EA ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
23:16:52.0700 2356 RTL8169 - ok
23:16:52.0731 2356 [ 5532C4BF15173270757A75B46BAEB960 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
23:16:52.0731 2356 RtNdPt60 - ok
23:16:52.0731 2356 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
23:16:52.0731 2356 SamSs - ok
23:16:52.0747 2356 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:16:52.0747 2356 sbp2port - ok
23:16:52.0778 2356 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:16:52.0778 2356 SCardSvr - ok
23:16:52.0809 2356 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
23:16:52.0825 2356 Schedule - ok
23:16:52.0856 2356 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:16:52.0856 2356 SCPolicySvc - ok
23:16:52.0871 2356 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:16:52.0871 2356 SDRSVC - ok
23:16:52.0887 2356 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:16:52.0903 2356 secdrv - ok
23:16:52.0903 2356 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
23:16:52.0903 2356 seclogon - ok
23:16:52.0918 2356 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\system32\sens.dll
23:16:52.0918 2356 SENS - ok
23:16:52.0934 2356 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:16:52.0934 2356 Serenum - ok
23:16:52.0949 2356 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
23:16:52.0965 2356 Serial - ok
23:16:52.0965 2356 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:16:52.0981 2356 sermouse - ok
23:16:52.0996 2356 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
23:16:52.0996 2356 SessionEnv - ok
23:16:53.0012 2356 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:16:53.0012 2356 sffdisk - ok
23:16:53.0027 2356 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:16:53.0027 2356 sffp_mmc - ok
23:16:53.0043 2356 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:16:53.0043 2356 sffp_sd - ok
23:16:53.0059 2356 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:16:53.0059 2356 sfloppy - ok
23:16:53.0090 2356 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:16:53.0090 2356 ShellHWDetection - ok
23:16:53.0105 2356 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
23:16:53.0105 2356 SiSRaid2 - ok
23:16:53.0121 2356 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:16:53.0121 2356 SiSRaid4 - ok
23:16:53.0199 2356 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
23:16:53.0199 2356 SkypeUpdate - ok
23:16:53.0277 2356 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
23:16:53.0308 2356 slsvc - ok
23:16:53.0339 2356 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
23:16:53.0339 2356 SLUINotify - ok
23:16:53.0371 2356 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:16:53.0371 2356 Smb - ok
23:16:53.0386 2356 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:16:53.0386 2356 SNMPTRAP - ok
23:16:53.0402 2356 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
23:16:53.0402 2356 spldr - ok
23:16:53.0449 2356 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
23:16:53.0449 2356 Spooler - ok
23:16:53.0480 2356 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
23:16:53.0480 2356 srv - ok
23:16:53.0511 2356 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:16:53.0511 2356 srv2 - ok
23:16:53.0542 2356 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:16:53.0542 2356 srvnet - ok
23:16:53.0558 2356 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:16:53.0558 2356 SSDPSRV - ok
23:16:53.0589 2356 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:16:53.0589 2356 SstpSvc - ok
23:16:53.0620 2356 Steam Client Service - ok
23:16:53.0651 2356 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
23:16:53.0667 2356 stisvc - ok
23:16:53.0729 2356 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
23:16:53.0729 2356 stllssvr - ok
23:16:53.0761 2356 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:16:53.0761 2356 swenum - ok
23:16:53.0792 2356 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
23:16:53.0807 2356 swprv - ok
23:16:53.0823 2356 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
23:16:53.0823 2356 Symc8xx - ok
23:16:53.0839 2356 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
23:16:53.0839 2356 Sym_hi - ok
23:16:53.0854 2356 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
23:16:53.0854 2356 Sym_u3 - ok
23:16:53.0885 2356 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
23:16:53.0901 2356 SysMain - ok
23:16:53.0901 2356 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:16:53.0901 2356 TabletInputService - ok
23:16:53.0932 2356 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:16:53.0948 2356 TapiSrv - ok
23:16:53.0963 2356 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
23:16:53.0963 2356 TBS - ok
23:16:54.0010 2356 [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:16:54.0041 2356 Tcpip - ok
23:16:54.0073 2356 [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
23:16:54.0073 2356 Tcpip6 - ok
23:16:54.0119 2356 [ FD8FDE859E38E40A20085EBB0C22B416 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:16:54.0119 2356 tcpipreg - ok
23:16:54.0135 2356 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:16:54.0135 2356 TDPIPE - ok
23:16:54.0151 2356 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:16:54.0151 2356 TDTCP - ok
23:16:54.0182 2356 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:16:54.0182 2356 tdx - ok
23:16:54.0213 2356 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:16:54.0213 2356 TermDD - ok
23:16:54.0244 2356 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
23:16:54.0260 2356 TermService - ok
23:16:54.0260 2356 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
23:16:54.0275 2356 Themes - ok
23:16:54.0275 2356 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
23:16:54.0275 2356 THREADORDER - ok
23:16:54.0291 2356 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
23:16:54.0291 2356 TrkWks - ok
23:16:54.0338 2356 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:16:54.0338 2356 TrustedInstaller - ok
23:16:54.0353 2356 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:16:54.0353 2356 tssecsrv - ok
23:16:54.0385 2356 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
23:16:54.0385 2356 tunmp - ok
23:16:54.0416 2356 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:16:54.0416 2356 tunnel - ok
23:16:54.0431 2356 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:16:54.0431 2356 uagp35 - ok
23:16:54.0463 2356 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:16:54.0463 2356 udfs - ok
23:16:54.0494 2356 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:16:54.0494 2356 UI0Detect - ok
23:16:54.0509 2356 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:16:54.0509 2356 uliagpkx - ok
23:16:54.0525 2356 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
23:16:54.0541 2356 uliahci - ok
23:16:54.0572 2356 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
23:16:54.0572 2356 UlSata - ok
23:16:54.0603 2356 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
23:16:54.0603 2356 ulsata2 - ok
23:16:54.0634 2356 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:16:54.0634 2356 umbus - ok
23:16:54.0712 2356 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
23:16:54.0728 2356 UMVPFSrv - ok
23:16:54.0743 2356 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
23:16:54.0743 2356 upnphost - ok
23:16:54.0775 2356 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:16:54.0775 2356 usbaudio - ok
23:16:54.0806 2356 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:16:54.0806 2356 usbccgp - ok
23:16:54.0821 2356 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:16:54.0821 2356 usbcir - ok
23:16:54.0868 2356 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:16:54.0868 2356 usbehci - ok
23:16:54.0884 2356 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:16:54.0884 2356 usbhub - ok
23:16:54.0899 2356 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:16:54.0899 2356 usbohci - ok
23:16:54.0915 2356 [ ACFEE697AF477021BB3EC78C5431FED2 ] usbprint C:\Windows\system32\drivers\usbprint.sys
23:16:54.0915 2356 usbprint - ok
23:16:54.0931 2356 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:16:54.0931 2356 USBSTOR - ok
23:16:54.0946 2356 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:16:54.0946 2356 usbuhci - ok
23:16:54.0993 2356 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:16:54.0993 2356 usbvideo - ok
23:16:55.0040 2356 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
23:16:55.0040 2356 UxSms - ok
23:16:55.0055 2356 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
23:16:55.0071 2356 vds - ok
23:16:55.0087 2356 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:16:55.0087 2356 vga - ok
23:16:55.0118 2356 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:16:55.0118 2356 VgaSave - ok
23:16:55.0133 2356 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
23:16:55.0133 2356 viaide - ok
23:16:55.0149 2356 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:16:55.0149 2356 volmgr - ok
23:16:55.0180 2356 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:16:55.0180 2356 volmgrx - ok
23:16:55.0196 2356 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:16:55.0196 2356 volsnap - ok
23:16:55.0211 2356 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:16:55.0211 2356 vsmraid - ok
23:16:55.0258 2356 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
23:16:55.0289 2356 VSS - ok
23:16:55.0305 2356 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
23:16:55.0321 2356 W32Time - ok
23:16:55.0336 2356 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:16:55.0336 2356 WacomPen - ok
23:16:55.0352 2356 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
23:16:55.0352 2356 Wanarp - ok
23:16:55.0352 2356 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:16:55.0352 2356 Wanarpv6 - ok
23:16:55.0383 2356 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:16:55.0399 2356 wcncsvc - ok
23:16:55.0414 2356 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:16:55.0414 2356 WcsPlugInService - ok
23:16:55.0445 2356 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
23:16:55.0445 2356 Wd - ok
23:16:55.0477 2356 [ D02E7E4567DA1E7582FBF6A91144B0DF ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:16:55.0492 2356 Wdf01000 - ok
23:16:55.0508 2356 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:16:55.0508 2356 WdiServiceHost - ok
23:16:55.0508 2356 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:16:55.0508 2356 WdiSystemHost - ok
23:16:55.0523 2356 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
23:16:55.0523 2356 WebClient - ok
23:16:55.0570 2356 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:16:55.0586 2356 Wecsvc - ok
23:16:55.0586 2356 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:16:55.0586 2356 wercplsupport - ok
23:16:55.0601 2356 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
23:16:55.0617 2356 WerSvc - ok
23:16:55.0617 2356 WinHttpAutoProxySvc - ok
23:16:55.0679 2356 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:16:55.0679 2356 Winmgmt - ok
23:16:55.0773 2356 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
23:16:55.0804 2356 WinRM - ok
23:16:55.0835 2356 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:16:55.0851 2356 Wlansvc - ok
23:16:55.0913 2356 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:16:55.0960 2356 wlidsvc - ok
23:16:55.0976 2356 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:16:55.0976 2356 WmiAcpi - ok
23:16:55.0991 2356 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:16:55.0991 2356 wmiApSrv - ok
23:16:56.0007 2356 WMPNetworkSvc - ok
23:16:56.0038 2356 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:16:56.0038 2356 WPCSvc - ok
23:16:56.0054 2356 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:16:56.0054 2356 WPDBusEnum - ok
23:16:56.0179 2356 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:16:56.0194 2356 WPFFontCache_v0400 - ok
23:16:56.0225 2356 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:16:56.0225 2356 ws2ifsl - ok
23:16:56.0225 2356 WSearch - ok
23:16:56.0272 2356 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:16:56.0272 2356 WUDFRd - ok
23:16:56.0303 2356 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:16:56.0319 2356 wudfsvc - ok
23:16:56.0350 2356 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
23:16:56.0366 2356 YahooAUService - ok
23:16:56.0366 2356 ================ Scan global ===============================
23:16:56.0397 2356 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
23:16:56.0428 2356 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
23:16:56.0444 2356 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
23:16:56.0475 2356 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
23:16:56.0475 2356 [Global] - ok
23:16:56.0475 2356 ================ Scan MBR ==================================
23:16:56.0491 2356 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:16:56.0756 2356 \Device\Harddisk0\DR0 - ok
23:16:56.0756 2356 ================ Scan VBR ==================================
23:16:56.0787 2356 [ 97709B63323680EB5E62E01122034DD2 ] \Device\Harddisk0\DR0\Partition1
23:16:56.0787 2356 \Device\Harddisk0\DR0\Partition1 - ok
23:16:56.0803 2356 [ 03346A10449D1AAFE2F06AAA83B3B47B ] \Device\Harddisk0\DR0\Partition2
23:16:56.0803 2356 \Device\Harddisk0\DR0\Partition2 - ok
23:16:56.0803 2356 ============================================================
23:16:56.0803 2356 Scan finished
23:16:56.0803 2356 ============================================================
23:16:56.0803 3696 Detected object count: 1
23:16:56.0803 3696 Actual detected object count: 1
23:19:14.0098 3696 AdobeARMservice ( LockedFile.Multi.Generic ) - skipped by user
23:19:14.0098 3696 AdobeARMservice ( LockedFile.Multi.Generic ) - User select action: Skip


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-28 23:24:20
-----------------------------
23:24:20.620 OS Version: Windows x64 6.0.6002 Service Pack 2
23:24:20.620 Number of processors: 2 586 0x170A
23:24:20.620 ComputerName: MATT-PC UserName: Matt
23:24:22.134 Initialize success
23:36:28.758 AVAST engine defs: 12082803
08:16:54.591 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
08:16:54.591 Disk 0 Vendor: WDC_WD5000AAKS-75A7B2 01.03B01 Size: 476940MB BusType: 3
08:16:54.607 Disk 0 MBR read successfully
08:16:54.607 Disk 0 MBR scan
08:16:54.622 Disk 0 Windows VISTA default MBR code
08:16:54.622 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 62 MB offset 63
08:16:54.653 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15360 MB offset 129024
08:16:54.669 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 461516 MB offset 31586304
08:16:54.685 Disk 0 scanning C:\Windows\system32\drivers
08:17:03.171 Service scanning
08:17:20.471 Modules scanning
08:17:20.471 Disk 0 trace - called modules:
08:17:20.503 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
08:17:20.503 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b6d790]
08:17:20.503 3 CLASSPNP.SYS[fffffa6000ba1c33] -> nt!IofCallDriver -> [0xfffffa80048a4930]
08:17:20.518 5 acpi.sys[fffffa60008fafde] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80048b5060]
08:17:23.092 AVAST engine scan C:\Windows
08:17:26.477 AVAST engine scan C:\Windows\system32
08:19:18.969 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
08:19:22.666 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
08:21:51.656 AVAST engine scan C:\Windows\system32\drivers
08:22:17.740 AVAST engine scan C:\Users\Matt
09:21:44.313 AVAST engine scan C:\ProgramData
09:25:14.428 Scan finished successfully
09:25:34.458 Disk 0 MBR has been saved successfully to "C:\Users\Matt\Desktop\MBR.dat"
09:25:34.458 The log file has been saved successfully to "C:\Users\Matt\Desktop\aswMBR.txt"


C:\Users\Matt\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\4c772605-30908e1c Java/Exploit.Agent.AG trojan
Operating memory a variant of Win32/Sirefef.EZ trojan

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 29 August 2012 - 10:22 AM

Download a new copy of TDSSkiller and run a scan and post the log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 ironcitycats

ironcitycats
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 29 August 2012 - 11:11 AM

When Tddskiller scans, it detects a threat "Locked file. Service: AdobeARMservice"

Should I skip, copy to quarantine or delete?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 29 August 2012 - 11:33 AM

Skip it

#7 ironcitycats

ironcitycats
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 29 August 2012 - 03:45 PM

12:08:16.0127 2280 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
12:08:16.0564 2280 ============================================================
12:08:16.0564 2280 Current date / time: 2012/08/29 12:08:16.0564
12:08:16.0564 2280 SystemInfo:
12:08:16.0564 2280
12:08:16.0564 2280 OS Version: 6.0.6002 ServicePack: 2.0
12:08:16.0564 2280 Product type: Workstation
12:08:16.0564 2280 ComputerName: MATT-PC
12:08:16.0564 2280 UserName: Matt
12:08:16.0564 2280 Windows directory: C:\Windows
12:08:16.0564 2280 System windows directory: C:\Windows
12:08:16.0564 2280 Running under WOW64
12:08:16.0564 2280 Processor architecture: Intel x64
12:08:16.0564 2280 Number of processors: 2
12:08:16.0564 2280 Page size: 0x1000
12:08:16.0564 2280 Boot type: Normal boot
12:08:16.0564 2280 ============================================================
12:08:18.0077 2280 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:08:18.0093 2280 ============================================================
12:08:18.0093 2280 \Device\Harddisk0\DR0:
12:08:18.0140 2280 MBR partitions:
12:08:18.0140 2280 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000
12:08:18.0140 2280 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x38566000
12:08:18.0140 2280 ============================================================
12:08:18.0202 2280 C: <-> \Device\Harddisk0\DR0\Partition2
12:08:18.0249 2280 D: <-> \Device\Harddisk0\DR0\Partition1
12:08:18.0249 2280 ============================================================
12:08:18.0249 2280 Initialize success
12:08:18.0249 2280 ============================================================
12:08:51.0009 1036 ============================================================
12:08:51.0009 1036 Scan started
12:08:51.0009 1036 Mode: Manual;
12:08:51.0009 1036 ============================================================
12:08:51.0758 1036 ================ Scan system memory ========================
12:08:51.0758 1036 System memory - ok
12:08:51.0758 1036 ================ Scan services =============================
12:08:51.0914 1036 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
12:08:51.0929 1036 ACPI - ok
12:08:51.0976 1036 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:08:51.0976 1036 Suspicious file (NoAccess): C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe. md5: 62B7936F9036DD6ED36E6A7EFA805DC0
12:08:51.0976 1036 AdobeARMservice ( LockedFile.Multi.Generic ) - warning
12:08:51.0976 1036 AdobeARMservice - detected LockedFile.Multi.Generic (1)
12:08:52.0023 1036 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:08:52.0039 1036 adp94xx - ok
12:08:52.0054 1036 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:08:52.0054 1036 adpahci - ok
12:08:52.0070 1036 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
12:08:52.0070 1036 adpu160m - ok
12:08:52.0101 1036 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:08:52.0101 1036 adpu320 - ok
12:08:52.0148 1036 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:08:52.0148 1036 AeLookupSvc - ok
12:08:52.0163 1036 [ 0D7A11395C0A33D9E7587CDB9866EFAD ] AERTFilters C:\Windows\system32\AERTSr64.exe
12:08:52.0179 1036 AERTFilters - ok
12:08:52.0195 1036 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
12:08:52.0210 1036 AFD - ok
12:08:52.0241 1036 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:08:52.0241 1036 agp440 - ok
12:08:52.0257 1036 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
12:08:52.0257 1036 aic78xx - ok
12:08:52.0288 1036 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
12:08:52.0288 1036 ALG - ok
12:08:52.0304 1036 [ 9544C2C55541C0C6BFD7B489D0E7D430 ] aliide C:\Windows\system32\drivers\aliide.sys
12:08:52.0304 1036 aliide - ok
12:08:52.0382 1036 [ 2AED9A422EA1574C7D7EF9359A417718 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:08:52.0382 1036 AMD External Events Utility - ok
12:08:52.0397 1036 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
12:08:52.0397 1036 amdide - ok
12:08:52.0429 1036 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:08:52.0429 1036 AmdK8 - ok
12:08:52.0694 1036 [ BFA5E854959D5546D8834CA61F4AD075 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:08:52.0865 1036 amdkmdag - ok
12:08:52.0912 1036 [ 92D664FFFCD9E742FB25254F7F458D88 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:08:52.0912 1036 amdkmdap - ok
12:08:52.0943 1036 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
12:08:52.0943 1036 Appinfo - ok
12:08:52.0959 1036 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
12:08:52.0975 1036 arc - ok
12:08:52.0990 1036 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:08:52.0990 1036 arcsas - ok
12:08:53.0021 1036 ASPI - ok
12:08:53.0053 1036 aspnet_state - ok
12:08:53.0099 1036 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:08:53.0099 1036 AsyncMac - ok
12:08:53.0115 1036 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
12:08:53.0115 1036 atapi - ok
12:08:53.0302 1036 [ BFA5E854959D5546D8834CA61F4AD075 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:08:53.0365 1036 atikmdag - ok
12:08:53.0427 1036 [ 54494B93BB5AD74C807100144EC30D64 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
12:08:53.0443 1036 atksgt - ok
12:08:53.0474 1036 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:08:53.0474 1036 AudioEndpointBuilder - ok
12:08:53.0489 1036 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:08:53.0489 1036 AudioSrv - ok
12:08:53.0489 1036 Beep - ok
12:08:53.0521 1036 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
12:08:53.0521 1036 blbdrive - ok
12:08:53.0552 1036 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:08:53.0552 1036 bowser - ok
12:08:53.0567 1036 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
12:08:53.0583 1036 BrFiltLo - ok
12:08:53.0599 1036 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
12:08:53.0599 1036 BrFiltUp - ok
12:08:53.0614 1036 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
12:08:53.0614 1036 Browser - ok
12:08:53.0645 1036 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
12:08:53.0645 1036 Brserid - ok
12:08:53.0661 1036 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
12:08:53.0661 1036 BrSerWdm - ok
12:08:53.0677 1036 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
12:08:53.0677 1036 BrUsbMdm - ok
12:08:53.0692 1036 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
12:08:53.0692 1036 BrUsbSer - ok
12:08:53.0708 1036 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:08:53.0708 1036 BTHMODEM - ok
12:08:53.0755 1036 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:08:53.0755 1036 cdfs - ok
12:08:53.0770 1036 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:08:53.0786 1036 cdrom - ok
12:08:53.0786 1036 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
12:08:53.0786 1036 CertPropSvc - ok
12:08:53.0801 1036 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
12:08:53.0801 1036 circlass - ok
12:08:53.0848 1036 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
12:08:53.0848 1036 CLFS - ok
12:08:53.0879 1036 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:08:53.0879 1036 clr_optimization_v2.0.50727_32 - ok
12:08:53.0911 1036 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:08:53.0926 1036 clr_optimization_v2.0.50727_64 - ok
12:08:54.0020 1036 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:08:54.0035 1036 clr_optimization_v4.0.30319_32 - ok
12:08:54.0051 1036 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:08:54.0067 1036 clr_optimization_v4.0.30319_64 - ok
12:08:54.0082 1036 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:08:54.0082 1036 cmdide - ok
12:08:54.0098 1036 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:08:54.0098 1036 Compbatt - ok
12:08:54.0098 1036 COMSysApp - ok
12:08:54.0129 1036 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:08:54.0129 1036 crcdisk - ok
12:08:54.0176 1036 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:08:54.0176 1036 CryptSvc - ok
12:08:54.0223 1036 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
12:08:54.0223 1036 DcomLaunch - ok
12:08:54.0254 1036 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:08:54.0254 1036 DfsC - ok
12:08:54.0316 1036 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
12:08:54.0394 1036 DFSR - ok
12:08:54.0425 1036 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
12:08:54.0425 1036 Dhcp - ok
12:08:54.0457 1036 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
12:08:54.0457 1036 disk - ok
12:08:54.0488 1036 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:08:54.0488 1036 Dnscache - ok
12:08:54.0550 1036 [ DB29915209770D8B59654345EC2D943A ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
12:08:54.0550 1036 DockLoginService - ok
12:08:54.0597 1036 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
12:08:54.0597 1036 dot3svc - ok
12:08:54.0628 1036 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
12:08:54.0628 1036 DPS - ok
12:08:54.0644 1036 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:08:54.0644 1036 drmkaud - ok
12:08:54.0706 1036 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:08:54.0706 1036 dtsoftbus01 - ok
12:08:54.0815 1036 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:08:55.0003 1036 DXGKrnl - ok
12:08:55.0049 1036 [ 17D40652EF3E55EEAE187A89DF40965A ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys
12:08:55.0049 1036 e1express - ok
12:08:55.0096 1036 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
12:08:55.0112 1036 E1G60 - ok
12:08:55.0159 1036 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
12:08:55.0159 1036 EapHost - ok
12:08:55.0174 1036 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
12:08:55.0174 1036 Ecache - ok
12:08:55.0221 1036 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:08:55.0237 1036 ehRecvr - ok
12:08:55.0237 1036 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
12:08:55.0237 1036 ehSched - ok
12:08:55.0283 1036 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
12:08:55.0283 1036 ehstart - ok
12:08:55.0315 1036 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:08:55.0330 1036 elxstor - ok
12:08:55.0393 1036 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
12:08:55.0393 1036 EMDMgmt - ok
12:08:55.0408 1036 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:08:55.0408 1036 ErrDev - ok
12:08:55.0439 1036 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
12:08:55.0439 1036 EventSystem - ok
12:08:55.0471 1036 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
12:08:55.0471 1036 exfat - ok
12:08:55.0517 1036 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:08:55.0517 1036 fastfat - ok
12:08:55.0549 1036 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:08:55.0564 1036 fdc - ok
12:08:55.0595 1036 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
12:08:55.0595 1036 fdPHost - ok
12:08:55.0627 1036 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
12:08:55.0627 1036 FDResPub - ok
12:08:55.0673 1036 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:08:55.0689 1036 FileInfo - ok
12:08:55.0705 1036 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:08:55.0720 1036 Filetrace - ok
12:08:55.0907 1036 [ 0B9167ADFE8E42B6B4C5E929BFBC7080 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
12:08:55.0970 1036 FlipShare Service - ok
12:08:56.0001 1036 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:08:56.0001 1036 flpydisk - ok
12:08:56.0235 1036 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:08:56.0391 1036 FltMgr - ok
12:08:56.0391 1036 flyyloim - ok
12:08:56.0609 1036 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
12:08:56.0781 1036 FontCache - ok
12:08:56.0953 1036 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:08:56.0953 1036 FontCache3.0.0.0 - ok
12:08:57.0031 1036 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:08:57.0046 1036 Fs_Rec - ok
12:08:57.0077 1036 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:08:57.0093 1036 gagp30kx - ok
12:08:57.0202 1036 [ 311ACFCDD2C9A99481E91FA4CB028D70 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
12:08:57.0218 1036 GameConsoleService - ok
12:08:57.0311 1036 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
12:08:57.0405 1036 gpsvc - ok
12:08:57.0514 1036 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:08:57.0545 1036 gupdate - ok
12:08:57.0639 1036 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:08:57.0639 1036 gupdatem - ok
12:08:57.0701 1036 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
12:08:57.0701 1036 hamachi - ok
12:08:57.0795 1036 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:08:57.0795 1036 HdAudAddService - ok
12:08:57.0967 1036 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:08:58.0201 1036 HDAudBus - ok
12:08:58.0247 1036 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:08:58.0263 1036 HidBth - ok
12:08:58.0263 1036 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
12:08:58.0263 1036 HidIr - ok
12:08:58.0294 1036 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\System32\hidserv.dll
12:08:58.0310 1036 hidserv - ok
12:08:58.0325 1036 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:08:58.0325 1036 HidUsb - ok
12:08:58.0341 1036 [ C6FF685E2EA55C3AC5C90B9E7D6930C0 ] hitmanpro35 C:\Windows\system32\drivers\hitmanpro35.sys
12:08:58.0341 1036 hitmanpro35 - ok
12:08:58.0372 1036 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
12:08:58.0372 1036 hkmsvc - ok
12:08:58.0403 1036 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
12:08:58.0403 1036 HpCISSs - ok
12:08:58.0466 1036 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:08:58.0544 1036 HTTP - ok
12:08:58.0575 1036 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
12:08:58.0575 1036 i2omp - ok
12:08:58.0622 1036 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:08:58.0669 1036 i8042prt - ok
12:08:58.0731 1036 [ 07FB761600EFF44AF02C35B8B57E5863 ] iaStor C:\Windows\system32\drivers\iastor.sys
12:08:58.0793 1036 iaStor - ok
12:08:58.0934 1036 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
12:08:58.0981 1036 iaStorV - ok
12:08:59.0043 1036 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
12:08:59.0043 1036 IDriverT - ok
12:08:59.0121 1036 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:08:59.0199 1036 idsvc - ok
12:08:59.0308 1036 [ 5CAB9D1AB5C9384D28DFF89DBE7A72BB ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
12:08:59.0308 1036 IHA_MessageCenter - ok
12:08:59.0371 1036 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:08:59.0371 1036 iirsp - ok
12:08:59.0449 1036 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
12:08:59.0527 1036 IKEEXT - ok
12:08:59.0589 1036 [ 0DD17D4B59D0EC40E3C86A505BB0B6DD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:08:59.0683 1036 IntcAzAudAddService - ok
12:08:59.0714 1036 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\DRIVERS\intelide.sys
12:08:59.0745 1036 intelide - ok
12:08:59.0761 1036 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:08:59.0792 1036 intelppm - ok
12:08:59.0823 1036 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:08:59.0854 1036 IPBusEnum - ok
12:08:59.0917 1036 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:08:59.0963 1036 IpFilterDriver - ok
12:08:59.0963 1036 IpInIp - ok
12:09:00.0026 1036 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
12:09:00.0041 1036 IPMIDRV - ok
12:09:00.0088 1036 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
12:09:00.0088 1036 IPNAT - ok
12:09:00.0151 1036 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:09:00.0151 1036 IRENUM - ok
12:09:00.0213 1036 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:09:00.0213 1036 isapnp - ok
12:09:00.0244 1036 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
12:09:00.0291 1036 iScsiPrt - ok
12:09:00.0322 1036 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
12:09:00.0338 1036 iteatapi - ok
12:09:00.0385 1036 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
12:09:00.0400 1036 iteraid - ok
12:09:00.0463 1036 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:09:00.0478 1036 kbdclass - ok
12:09:00.0509 1036 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:09:00.0509 1036 kbdhid - ok
12:09:00.0541 1036 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
12:09:00.0541 1036 KeyIso - ok
12:09:00.0587 1036 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:09:00.0634 1036 KSecDD - ok
12:09:00.0665 1036 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:09:00.0665 1036 ksthunk - ok
12:09:00.0712 1036 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
12:09:00.0759 1036 KtmRm - ok
12:09:00.0806 1036 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\System32\srvsvc.dll
12:09:00.0868 1036 LanmanServer - ok
12:09:00.0977 1036 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:09:01.0024 1036 LanmanWorkstation - ok
12:09:01.0071 1036 [ 47901EADCA0971A997ED926F0EC316C4 ] LicCtrlService C:\Windows\runservice.exe
12:09:01.0087 1036 LicCtrlService - ok
12:09:01.0149 1036 [ 8E4CA9AFD55EF6B509C80A8715ABF8C6 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
12:09:01.0180 1036 lirsgt - ok
12:09:01.0211 1036 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:09:01.0243 1036 lltdio - ok
12:09:01.0321 1036 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:09:01.0414 1036 lltdsvc - ok
12:09:01.0492 1036 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:09:01.0508 1036 lmhosts - ok
12:09:01.0555 1036 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:09:01.0601 1036 LSI_FC - ok
12:09:01.0633 1036 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:09:01.0664 1036 LSI_SAS - ok
12:09:01.0711 1036 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:09:01.0757 1036 LSI_SCSI - ok
12:09:01.0835 1036 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
12:09:01.0851 1036 luafv - ok
12:09:01.0929 1036 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
12:09:02.0085 1036 LVRS64 - ok
12:09:02.0522 1036 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
12:09:03.0895 1036 LVUVC64 - ok
12:09:03.0973 1036 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:09:04.0004 1036 Mcx2Svc - ok
12:09:04.0082 1036 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
12:09:04.0082 1036 megasas - ok
12:09:04.0175 1036 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
12:09:04.0300 1036 MegaSR - ok
12:09:04.0363 1036 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
12:09:04.0378 1036 MMCSS - ok
12:09:04.0425 1036 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
12:09:04.0425 1036 Modem - ok
12:09:04.0456 1036 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:09:04.0503 1036 monitor - ok
12:09:04.0550 1036 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:09:04.0581 1036 mouclass - ok
12:09:04.0690 1036 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:09:04.0721 1036 mouhid - ok
12:09:04.0753 1036 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
12:09:04.0784 1036 MountMgr - ok
12:09:04.0831 1036 movfhdsd - ok
12:09:04.0909 1036 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:09:04.0909 1036 MozillaMaintenance - ok
12:09:04.0940 1036 [ C177A7EBF5E8A0B596F618870516CAB8 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
12:09:04.0940 1036 MpFilter - ok
12:09:04.0971 1036 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
12:09:05.0018 1036 mpio - ok
12:09:05.0065 1036 [ 8FBF6B31FE8AF1833D93C5913D5B4D55 ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys
12:09:05.0080 1036 MpNWMon - ok
12:09:05.0111 1036 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:09:05.0143 1036 mpsdrv - ok
12:09:05.0205 1036 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
12:09:05.0205 1036 Mraid35x - ok
12:09:05.0236 1036 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:09:05.0236 1036 MRxDAV - ok
12:09:05.0267 1036 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:09:05.0267 1036 mrxsmb - ok
12:09:05.0299 1036 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:09:05.0299 1036 mrxsmb10 - ok
12:09:05.0314 1036 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:09:05.0314 1036 mrxsmb20 - ok
12:09:05.0330 1036 [ 730B784962D22D2C6481EAE2370E7C8C ] msahci C:\Windows\system32\drivers\msahci.sys
12:09:05.0330 1036 msahci - ok
12:09:05.0361 1036 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:09:05.0361 1036 msdsm - ok
12:09:05.0377 1036 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
12:09:05.0377 1036 MSDTC - ok
12:09:05.0938 1036 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:09:05.0938 1036 Msfs - ok
12:09:05.0969 1036 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:09:06.0188 1036 msisadrv - ok
12:09:06.0235 1036 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:09:06.0235 1036 MSiSCSI - ok
12:09:06.0235 1036 msiserver - ok
12:09:06.0250 1036 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:09:06.0250 1036 MSKSSRV - ok
12:09:06.0281 1036 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:09:06.0281 1036 MSPCLOCK - ok
12:09:06.0281 1036 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:09:06.0281 1036 MSPQM - ok
12:09:06.0313 1036 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:09:06.0313 1036 MsRPC - ok
12:09:06.0328 1036 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:09:06.0328 1036 mssmbios - ok
12:09:06.0344 1036 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:09:06.0344 1036 MSTEE - ok
12:09:06.0359 1036 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
12:09:06.0359 1036 Mup - ok
12:09:06.0391 1036 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
12:09:06.0406 1036 napagent - ok
12:09:06.0437 1036 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:09:06.0437 1036 NativeWifiP - ok
12:09:06.0484 1036 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:09:06.0500 1036 NDIS - ok
12:09:06.0531 1036 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:09:06.0531 1036 NdisTapi - ok
12:09:06.0547 1036 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:09:06.0547 1036 Ndisuio - ok
12:09:06.0562 1036 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:09:06.0578 1036 NdisWan - ok
12:09:06.0578 1036 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:09:06.0578 1036 NDProxy - ok
12:09:06.0593 1036 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:09:06.0593 1036 NetBIOS - ok
12:09:06.0609 1036 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
12:09:06.0609 1036 netbt - ok
12:09:06.0609 1036 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
12:09:06.0625 1036 Netlogon - ok
12:09:06.0656 1036 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
12:09:06.0734 1036 Netman - ok
12:09:06.0781 1036 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:06.0781 1036 NetMsmqActivator - ok
12:09:06.0796 1036 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:06.0796 1036 NetPipeActivator - ok
12:09:06.0812 1036 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
12:09:06.0843 1036 netprofm - ok
12:09:06.0859 1036 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:06.0859 1036 NetTcpActivator - ok
12:09:06.0859 1036 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:06.0859 1036 NetTcpPortSharing - ok
12:09:06.0921 1036 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:09:06.0921 1036 nfrd960 - ok
12:09:06.0937 1036 [ 5F7D72CBCDD025AF1F38FDEEE5646968 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:09:06.0937 1036 NisDrv - ok
12:09:07.0077 1036 [ 566DDD5D82520DA01D75F81428AC4C38 ] NisSrv c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
12:09:07.0124 1036 NisSrv - ok
12:09:07.0155 1036 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
12:09:07.0155 1036 NlaSvc - ok
12:09:07.0186 1036 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:09:07.0186 1036 Npfs - ok
12:09:07.0202 1036 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
12:09:07.0202 1036 nsi - ok
12:09:07.0217 1036 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:09:07.0217 1036 nsiproxy - ok
12:09:07.0280 1036 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:09:07.0311 1036 Ntfs - ok
12:09:07.0327 1036 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
12:09:07.0327 1036 Null - ok
12:09:07.0358 1036 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:09:07.0358 1036 nvraid - ok
12:09:07.0373 1036 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:09:07.0373 1036 nvstor - ok
12:09:07.0389 1036 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:09:07.0389 1036 nv_agp - ok
12:09:07.0389 1036 NwlnkFlt - ok
12:09:07.0389 1036 NwlnkFwd - ok
12:09:07.0420 1036 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
12:09:07.0420 1036 ohci1394 - ok
12:09:07.0451 1036 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:09:07.0451 1036 ose - ok
12:09:07.0498 1036 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
12:09:07.0514 1036 p2pimsvc - ok
12:09:07.0514 1036 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
12:09:07.0529 1036 p2psvc - ok
12:09:07.0545 1036 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
12:09:07.0545 1036 Parport - ok
12:09:07.0576 1036 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:09:07.0576 1036 partmgr - ok
12:09:07.0607 1036 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
12:09:07.0607 1036 PcaSvc - ok
12:09:07.0607 1036 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
12:09:07.0623 1036 pci - ok
12:09:07.0623 1036 [ 2657F6C0B78C36D95034BE109336E382 ] pciide C:\Windows\system32\drivers\pciide.sys
12:09:07.0623 1036 pciide - ok
12:09:07.0654 1036 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:09:07.0654 1036 pcmcia - ok
12:09:07.0685 1036 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:09:07.0701 1036 PEAUTH - ok
12:09:08.0107 1036 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:09:08.0107 1036 PerfHost - ok
12:09:08.0153 1036 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
12:09:08.0185 1036 pla - ok
12:09:08.0216 1036 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:09:08.0216 1036 PlugPlay - ok
12:09:08.0216 1036 PnkBstrA - ok
12:09:08.0325 1036 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
12:09:08.0325 1036 PNRPAutoReg - ok
12:09:08.0481 1036 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
12:09:08.0481 1036 PNRPsvc - ok
12:09:08.0543 1036 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:09:08.0543 1036 PolicyAgent - ok
12:09:08.0590 1036 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:09:08.0590 1036 PptpMiniport - ok
12:09:08.0606 1036 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
12:09:08.0606 1036 Processor - ok
12:09:08.0637 1036 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
12:09:08.0637 1036 ProfSvc - ok
12:09:08.0653 1036 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
12:09:08.0653 1036 ProtectedStorage - ok
12:09:08.0684 1036 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
12:09:08.0746 1036 PSched - ok
12:09:08.0777 1036 [ 46851BC18322DA70F3F2299A1007C479 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
12:09:08.0777 1036 PxHlpa64 - ok
12:09:08.0809 1036 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:09:08.0840 1036 ql2300 - ok
12:09:08.0871 1036 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:09:08.0871 1036 ql40xx - ok
12:09:08.0887 1036 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
12:09:08.0887 1036 QWAVE - ok
12:09:08.0902 1036 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:09:08.0902 1036 QWAVEdrv - ok
12:09:09.0323 1036 [ BFA5E854959D5546D8834CA61F4AD075 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
12:09:09.0370 1036 R300 - ok
12:09:09.0401 1036 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:09:09.0401 1036 RasAcd - ok
12:09:09.0417 1036 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
12:09:09.0417 1036 RasAuto - ok
12:09:09.0433 1036 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:09:09.0433 1036 Rasl2tp - ok
12:09:09.0448 1036 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
12:09:09.0448 1036 RasMan - ok
12:09:09.0464 1036 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:09:09.0464 1036 RasPppoe - ok
12:09:09.0495 1036 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:09:09.0495 1036 RasSstp - ok
12:09:09.0511 1036 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:09:09.0511 1036 rdbss - ok
12:09:09.0526 1036 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:09:09.0526 1036 RDPCDD - ok
12:09:09.0557 1036 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
12:09:09.0557 1036 rdpdr - ok
12:09:09.0557 1036 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:09:09.0557 1036 RDPENCDD - ok
12:09:09.0620 1036 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:09:09.0620 1036 RDPWD - ok
12:09:09.0635 1036 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:09:09.0635 1036 RemoteAccess - ok
12:09:09.0667 1036 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:09:09.0667 1036 RemoteRegistry - ok
12:09:09.0682 1036 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
12:09:09.0682 1036 RpcLocator - ok
12:09:09.0713 1036 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
12:09:09.0713 1036 RpcSs - ok
12:09:09.0729 1036 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:09:09.0729 1036 rspndr - ok
12:09:09.0745 1036 [ B263B3AEBCDE2210D1CC25756601B8EA ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
12:09:09.0745 1036 RTL8169 - ok
12:09:09.0776 1036 [ 5532C4BF15173270757A75B46BAEB960 ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
12:09:09.0776 1036 RtNdPt60 - ok
12:09:09.0776 1036 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
12:09:09.0776 1036 SamSs - ok
12:09:09.0807 1036 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:09:09.0807 1036 sbp2port - ok
12:09:09.0823 1036 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:09:09.0838 1036 SCardSvr - ok
12:09:09.0869 1036 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
12:09:09.0869 1036 Schedule - ok
12:09:09.0885 1036 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:09:09.0885 1036 SCPolicySvc - ok
12:09:09.0901 1036 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:09:09.0901 1036 SDRSVC - ok
12:09:10.0135 1036 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:09:10.0135 1036 secdrv - ok
12:09:10.0150 1036 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
12:09:10.0150 1036 seclogon - ok
12:09:10.0150 1036 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\system32\sens.dll
12:09:10.0150 1036 SENS - ok
12:09:10.0166 1036 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
12:09:10.0166 1036 Serenum - ok
12:09:10.0181 1036 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
12:09:10.0181 1036 Serial - ok
12:09:10.0197 1036 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:09:10.0197 1036 sermouse - ok
12:09:10.0244 1036 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
12:09:10.0244 1036 SessionEnv - ok
12:09:10.0259 1036 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:09:10.0259 1036 sffdisk - ok
12:09:10.0275 1036 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:09:10.0275 1036 sffp_mmc - ok
12:09:10.0291 1036 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:09:10.0291 1036 sffp_sd - ok
12:09:10.0306 1036 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:09:10.0306 1036 sfloppy - ok
12:09:10.0337 1036 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:09:10.0337 1036 ShellHWDetection - ok
12:09:10.0353 1036 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
12:09:10.0353 1036 SiSRaid2 - ok
12:09:10.0369 1036 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:09:10.0369 1036 SiSRaid4 - ok
12:09:10.0447 1036 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:09:10.0447 1036 SkypeUpdate - ok
12:09:10.0525 1036 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
12:09:10.0556 1036 slsvc - ok
12:09:10.0603 1036 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
12:09:10.0603 1036 SLUINotify - ok
12:09:10.0634 1036 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:09:10.0634 1036 Smb - ok
12:09:10.0649 1036 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:09:10.0649 1036 SNMPTRAP - ok
12:09:10.0665 1036 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
12:09:10.0681 1036 spldr - ok
12:09:10.0712 1036 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
12:09:10.0712 1036 Spooler - ok
12:09:10.0743 1036 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
12:09:10.0743 1036 srv - ok
12:09:10.0759 1036 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:09:10.0774 1036 srv2 - ok
12:09:10.0774 1036 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:09:10.0774 1036 srvnet - ok
12:09:10.0790 1036 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:09:10.0790 1036 SSDPSRV - ok
12:09:10.0837 1036 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:09:10.0837 1036 SstpSvc - ok
12:09:10.0852 1036 Steam Client Service - ok
12:09:10.0883 1036 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
12:09:10.0899 1036 stisvc - ok
12:09:10.0930 1036 [ 1D0063597C3666404FCF97698ABEB019 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
12:09:10.0946 1036 stllssvr - ok
12:09:10.0961 1036 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:09:10.0977 1036 swenum - ok
12:09:11.0008 1036 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
12:09:11.0008 1036 swprv - ok
12:09:11.0024 1036 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
12:09:11.0024 1036 Symc8xx - ok
12:09:11.0039 1036 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
12:09:11.0039 1036 Sym_hi - ok
12:09:11.0055 1036 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
12:09:11.0055 1036 Sym_u3 - ok
12:09:11.0086 1036 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
12:09:11.0102 1036 SysMain - ok
12:09:11.0117 1036 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:09:11.0133 1036 TabletInputService - ok
12:09:11.0164 1036 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:09:11.0164 1036 TapiSrv - ok
12:09:11.0180 1036 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
12:09:11.0180 1036 TBS - ok
12:09:11.0227 1036 [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:09:11.0258 1036 Tcpip - ok
12:09:11.0289 1036 [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
12:09:11.0289 1036 Tcpip6 - ok
12:09:11.0336 1036 [ FD8FDE859E38E40A20085EBB0C22B416 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:09:11.0336 1036 tcpipreg - ok
12:09:11.0351 1036 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:09:11.0351 1036 TDPIPE - ok
12:09:11.0367 1036 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:09:11.0383 1036 TDTCP - ok
12:09:11.0414 1036 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:09:11.0414 1036 tdx - ok
12:09:11.0429 1036 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:09:11.0429 1036 TermDD - ok
12:09:11.0461 1036 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
12:09:11.0476 1036 TermService - ok
12:09:11.0523 1036 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
12:09:11.0523 1036 Themes - ok
12:09:11.0523 1036 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
12:09:11.0523 1036 THREADORDER - ok
12:09:11.0554 1036 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
12:09:11.0554 1036 TrkWks - ok
12:09:11.0601 1036 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:09:11.0601 1036 TrustedInstaller - ok
12:09:11.0617 1036 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:09:11.0617 1036 tssecsrv - ok
12:09:11.0648 1036 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
12:09:11.0648 1036 tunmp - ok
12:09:11.0679 1036 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:09:11.0679 1036 tunnel - ok
12:09:11.0695 1036 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:09:11.0695 1036 uagp35 - ok
12:09:11.0726 1036 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:09:11.0726 1036 udfs - ok
12:09:11.0757 1036 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:09:11.0757 1036 UI0Detect - ok
12:09:11.0773 1036 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:09:11.0773 1036 uliagpkx - ok
12:09:11.0788 1036 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
12:09:11.0804 1036 uliahci - ok
12:09:11.0835 1036 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
12:09:11.0835 1036 UlSata - ok
12:09:11.0866 1036 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
12:09:11.0866 1036 ulsata2 - ok
12:09:11.0897 1036 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:09:11.0897 1036 umbus - ok
12:09:11.0975 1036 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
12:09:11.0991 1036 UMVPFSrv - ok
12:09:12.0007 1036 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
12:09:12.0007 1036 upnphost - ok
12:09:12.0038 1036 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:09:12.0038 1036 usbaudio - ok
12:09:12.0069 1036 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:09:12.0069 1036 usbccgp - ok
12:09:12.0085 1036 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:09:12.0100 1036 usbcir - ok
12:09:12.0116 1036 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:09:12.0116 1036 usbehci - ok
12:09:12.0131 1036 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:09:12.0131 1036 usbhub - ok
12:09:12.0147 1036 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:09:12.0147 1036 usbohci - ok
12:09:12.0163 1036 [ ACFEE697AF477021BB3EC78C5431FED2 ] usbprint C:\Windows\system32\drivers\usbprint.sys
12:09:12.0163 1036 usbprint - ok
12:09:12.0194 1036 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:09:12.0194 1036 USBSTOR - ok
12:09:12.0194 1036 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:09:12.0209 1036 usbuhci - ok
12:09:12.0225 1036 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:09:12.0241 1036 usbvideo - ok
12:09:12.0272 1036 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
12:09:12.0272 1036 UxSms - ok
12:09:12.0303 1036 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
12:09:12.0319 1036 vds - ok
12:09:12.0350 1036 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:09:12.0350 1036 vga - ok
12:09:12.0365 1036 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:09:12.0365 1036 VgaSave - ok
12:09:12.0381 1036 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
12:09:12.0381 1036 viaide - ok
12:09:12.0397 1036 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:09:12.0412 1036 volmgr - ok
12:09:12.0443 1036 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:09:12.0443 1036 volmgrx - ok
12:09:12.0475 1036 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:09:12.0475 1036 volsnap - ok
12:09:12.0490 1036 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:09:12.0490 1036 vsmraid - ok
12:09:12.0537 1036 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
12:09:12.0553 1036 VSS - ok
12:09:12.0599 1036 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
12:09:12.0599 1036 W32Time - ok
12:09:12.0615 1036 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:09:12.0615 1036 WacomPen - ok
12:09:12.0646 1036 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
12:09:12.0646 1036 Wanarp - ok
12:09:12.0646 1036 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:09:12.0646 1036 Wanarpv6 - ok
12:09:12.0693 1036 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:09:12.0709 1036 wcncsvc - ok
12:09:12.0771 1036 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:09:12.0771 1036 WcsPlugInService - ok
12:09:12.0802 1036 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
12:09:12.0802 1036 Wd - ok
12:09:12.0833 1036 [ D02E7E4567DA1E7582FBF6A91144B0DF ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:09:12.0849 1036 Wdf01000 - ok
12:09:12.0880 1036 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:09:12.0880 1036 WdiServiceHost - ok
12:09:12.0896 1036 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:09:12.0896 1036 WdiSystemHost - ok
12:09:12.0927 1036 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
12:09:12.0943 1036 WebClient - ok
12:09:13.0005 1036 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:09:13.0005 1036 Wecsvc - ok
12:09:13.0021 1036 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:09:13.0021 1036 wercplsupport - ok
12:09:13.0036 1036 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
12:09:13.0036 1036 WerSvc - ok
12:09:13.0036 1036 WinHttpAutoProxySvc - ok
12:09:13.0099 1036 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:09:13.0099 1036 Winmgmt - ok
12:09:13.0192 1036 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
12:09:13.0223 1036 WinRM - ok
12:09:13.0270 1036 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:09:13.0286 1036 Wlansvc - ok
12:09:13.0489 1036 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:09:13.0535 1036 wlidsvc - ok
12:09:13.0582 1036 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:09:13.0582 1036 WmiAcpi - ok
12:09:13.0613 1036 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:09:13.0613 1036 wmiApSrv - ok
12:09:13.0613 1036 WMPNetworkSvc - ok
12:09:13.0645 1036 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:09:13.0645 1036 WPCSvc - ok
12:09:13.0676 1036 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:09:13.0676 1036 WPDBusEnum - ok
12:09:13.0847 1036 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:09:13.0863 1036 WPFFontCache_v0400 - ok
12:09:13.0894 1036 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:09:13.0894 1036 ws2ifsl - ok
12:09:13.0910 1036 WSearch - ok
12:09:13.0941 1036 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:09:13.0957 1036 WUDFRd - ok
12:09:13.0988 1036 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:09:13.0988 1036 wudfsvc - ok
12:09:14.0035 1036 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
12:09:14.0050 1036 YahooAUService - ok
12:09:14.0050 1036 ================ Scan global ===============================
12:09:14.0081 1036 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
12:09:14.0113 1036 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
12:09:14.0128 1036 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
12:09:14.0175 1036 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
12:09:14.0175 1036 [Global] - ok
12:09:14.0175 1036 ================ Scan MBR ==================================
12:09:14.0191 1036 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:09:14.0674 1036 \Device\Harddisk0\DR0 - ok
12:09:14.0674 1036 ================ Scan VBR ==================================
12:09:14.0721 1036 [ 97709B63323680EB5E62E01122034DD2 ] \Device\Harddisk0\DR0\Partition1
12:09:14.0721 1036 \Device\Harddisk0\DR0\Partition1 - ok
12:09:14.0721 1036 [ 03346A10449D1AAFE2F06AAA83B3B47B ] \Device\Harddisk0\DR0\Partition2
12:09:14.0721 1036 \Device\Harddisk0\DR0\Partition2 - ok
12:09:14.0721 1036 ============================================================
12:09:14.0721 1036 Scan finished
12:09:14.0721 1036 ============================================================
12:09:14.0737 3308 Detected object count: 1
12:09:14.0737 3308 Actual detected object count: 1
12:54:30.0915 3308 AdobeARMservice ( LockedFile.Multi.Generic ) - skipped by user
12:54:30.0915 3308 AdobeARMservice ( LockedFile.Multi.Generic ) - User select action: Skip


MiniToolBox by Farbar Version: 23-07-2012
Ran by Matt (administrator) on 29-08-2012 at 16:24:38
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
The following helper DLL cannot be loaded: IFMON.DLL.
The following command was not found: int ip dump.

Windows IP Configuration

Host Name . . . . . . . . . . . . : Matt-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-21-70-4A-E9-66
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::94ad:3643:c152:e10c%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.10.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, August 29, 2012 2:45:24 PM
Lease Expires . . . . . . . . . . : Thursday, August 30, 2012 2:45:23 PM
Default Gateway . . . . . . . . . : 192.168.10.1
DHCP Server . . . . . . . . . . . : 192.168.10.1
DHCPv6 IAID . . . . . . . . . . . : 251666800
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-53-D6-E5-00-21-70-4A-E9-66
DNS Servers . . . . . . . . . . . : 192.168.10.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{79BB65C3-AA0E-4B31-8765-9E8BE58DBADF}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Pinging google.com [74.125.226.233] with 32 bytes of data:Reply from 74.125.226.233: bytes=32 time=36ms TTL=55Reply from 74.125.226.233: bytes=32 time=36ms TTL=55Ping statistics for 74.125.226.233: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 36ms, Maximum = 36ms, Average = 36msPinging yahoo.com [98.138.253.109] with 32 bytes of data:Reply from 98.138.253.109: bytes=32 time=192ms TTL=53Reply from 98.138.253.109: bytes=32 time=85ms TTL=50Ping statistics for 98.138.253.109: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 85ms, Maximum = 192ms, Average = 138msPinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:Reply from 208.43.87.2: Destination host unreachable.Reply from 208.43.87.2: Destination host unreachable.Ping statistics for 208.43.87.2: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Pinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
11 ...00 21 70 4a e9 66 ...... Realtek PCIe GBE Family Controller
1 ........................... Software Loopback Interface 1
12 ...00 00 00 00 00 00 00 e0 isatap.{79BB65C3-AA0E-4B31-8765-9E8BE58DBADF}
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.10.1 192.168.10.8 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.10.0 255.255.255.0 On-link 192.168.10.8 276
192.168.10.8 255.255.255.255 On-link 192.168.10.8 276
192.168.10.255 255.255.255.255 On-link 192.168.10.8 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.10.8 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.10.8 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
11 276 fe80::94ad:3643:c152:e10c/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/29/2012 04:26:22 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e39f, exception code 0xc0000138, fault offset 0x0006f52f,
process id 0x754, application start time 0xnslookup.exe0.

Error: (08/29/2012 04:25:04 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e39f, exception code 0xc0000138, fault offset 0x0006f52f,
process id 0xcb8, application start time 0xnslookup.exe0.

Error: (08/29/2012 04:24:48 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e39f, exception code 0xc0000138, fault offset 0x0006f52f,
process id 0xd70, application start time 0xnslookup.exe0.

Error: (08/29/2012 02:45:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2012 10:32:02 AM) (Source: Application Error) (User: )
Description: Faulting application svchost.exe, version 6.0.6001.18000, time stamp 0x47918b89, faulting module mshtml.dll, version 9.0.8112.16448, time stamp 0x4feba927, exception code 0xc00000fd, fault offset 0x00415570,
process id 0xf8c, application start time 0xsvchost.exe0.

Error: (08/29/2012 09:26:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (08/29/2012 09:25:58 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (08/29/2012 09:25:58 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (08/29/2012 08:19:05 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (08/28/2012 08:31:35 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/29/2012 04:15:47 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:44 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:41 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:39 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:25 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:23 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:21 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:18 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:10 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (08/29/2012 04:15:08 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.


Microsoft Office Sessions:
=========================
Error: (08/29/2012 04:26:22 PM) (Source: Application Error)(User: )
Description: nslookup.exe6.0.6002.1800549e01d63ntdll.dll6.0.6002.185414ec3e39fc00001380006f52f75401cd862460e1c4a6

Error: (08/29/2012 04:25:04 PM) (Source: Application Error)(User: )
Description: nslookup.exe6.0.6002.1800549e01d63ntdll.dll6.0.6002.185414ec3e39fc00001380006f52fcb801cd86245eecf986

Error: (08/29/2012 04:24:48 PM) (Source: Application Error)(User: )
Description: nslookup.exe6.0.6002.1800549e01d63ntdll.dll6.0.6002.185414ec3e39fc00001380006f52fd7001cd862452fa80c6

Error: (08/29/2012 02:45:33 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/29/2012 10:32:02 AM) (Source: Application Error)(User: )
Description: svchost.exe6.0.6001.1800047918b89mshtml.dll9.0.8112.164484feba927c00000fd00415570f8c01cd85f06bbb7910

Error: (08/29/2012 09:26:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifestC:\Users\Matt\Downloads\esetsmartinstaller_enu.exe

Error: (08/29/2012 09:25:58 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifestC:\Users\Matt\Downloads\esetsmartinstaller_enu.exe

Error: (08/29/2012 09:25:58 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifestC:\Users\Matt\Downloads\esetsmartinstaller_enu.exe

Error: (08/29/2012 08:19:05 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifestC:\Users\Matt\Downloads\esetsmartinstaller_enu.exe

Error: (08/28/2012 08:31:35 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

Akamai NetSession Interface
AMD APP SDK Runtime (Version: 10.0.898.1)
AMD Catalyst Install Manager (Version: 3.0.868.0)
ccc-utility64 (Version: 2008.0728.2151.37274)
ccc-utility64 (Version: 2011.0707.2346.40825)
ccc-utility64 (Version: 2012.0309.43.976)
Dell Dock (Version: 1.0.0)
Dell Edoc Viewer (Version: 1.0.0)
LWS VideoEffects (Version: 13.30.1379.0)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
TeamSpeak 3 Client
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinRAR 4.11 (64-bit) (Version: 4.11.0)

========================= Memory info: ===================================

Percentage of memory in use: 61%
Total physical RAM: 4094.26 MB
Available physical RAM: 1561.35 MB
Total Pagefile: 8393.82 MB
Available Pagefile: 5823.2 MB
Total Virtual: 4095.88 MB
Available Virtual: 3996.25 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:450.7 GB) (Free:191.91 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:15 GB) (Free:7.26 GB) NTFS

========================= Users: ========================================

User accounts for \\MATT-PC

Administrator ASPNET Guest
Matt


**** End of log ****



Farbar Service Scanner Version: 06-08-2012
Ran by Matt (administrator) on 29-08-2012 at 16:29:06
Running from "C:\Users\Matt\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to open SharedAccess registry key. The service key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2010-06-15 02:22] - [2009-04-11 03:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-16 00:06] - [2012-01-03 10:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-09 06:57] - [2012-03-30 08:45] - 1422720 ____A (Microsoft Corporation) AC8D5728E6AD6A7C4819D9A67008337A

C:\Windows\System32\dnsrslvr.dll
[2011-04-14 22:52] - [2011-03-02 12:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2010-06-15 02:21] - [2009-04-11 03:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2010-06-15 02:23] - [2009-04-11 03:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2010-06-15 02:21] - [2009-04-11 03:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2010-06-15 02:22] - [2009-04-11 03:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-06-14 00:01] - [2012-04-23 12:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****


# AdwCleaner v1.801 - Logfile created 08/29/2012 at 16:30:40
# Updated 14/08/2012 by Xplode
# Operating system : Windows ™ Vista Home Premium Service Pack 2 (64 bits)
# User : Matt - MATT-PC
# Boot Mode : Normal
# Running from : C:\Users\Matt\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Users\Matt\AppData\Local\AskToolbar
Deleted on reboot : C:\Users\Matt\AppData\LocalLow\AskToolbar
Deleted on reboot : C:\ProgramData\Trymedia
Deleted on reboot : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
File Deleted : C:\Users\Public\Desktop\eBay.lnk

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[x64] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
[x64] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
[x64] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\4sk4ypf9.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2735 octets] - [29/08/2012 16:30:40]

########## EOF - C:\AdwCleaner[S1].txt - [2863 octets] ##########

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 29 August 2012 - 03:49 PM

Malwarebytes log?


Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
reset file permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the new FSS log

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#9 ironcitycats

ironcitycats
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 29 August 2012 - 03:51 PM

Sorry about that... here it is

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.29.05

Windows Vista Service Pack 2 x64 NTFS
Internet Explorer 9.0.8112.16421
Matt :: MATT-PC [administrator]

8/29/2012 2:47:23 PM
mbam-log-2012-08-29 (14-47-23).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 519088
Time elapsed: 1 hour(s), 33 minute(s), 9 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#10 ironcitycats

ironcitycats
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 29 August 2012 - 04:40 PM

Here is the new FSS file and Rkill after running Windows repair tool...

Farbar Service Scanner Version: 06-08-2012
Ran by Matt (administrator) on 29-08-2012 at 17:36:44
Running from "C:\Users\Matt\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2010-06-15 02:22] - [2009-04-11 03:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-16 00:06] - [2012-01-03 10:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-09 06:57] - [2012-03-30 08:45] - 1422720 ____A (Microsoft Corporation) AC8D5728E6AD6A7C4819D9A67008337A

C:\Windows\System32\dnsrslvr.dll
[2011-04-14 22:52] - [2011-03-02 12:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2010-06-15 02:21] - [2009-04-11 03:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2010-06-15 02:23] - [2009-04-11 03:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2010-06-15 02:21] - [2009-04-11 03:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2010-06-15 02:22] - [2009-04-11 03:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-06-14 00:01] - [2012-04-23 12:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2010-06-15 02:23] - [2009-04-11 03:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****



Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/29/2012 05:38:30 PM in x64 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* C:\Windows\runservice.exe (PID: 1332) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\exefile\shell\runas\command\\IsolatedCommand was changed. It was reset to "%1" %*!


Performing miscellaneous checks.
* C:\Windows\assembly\GAC_32\Desktop.ini [ZA File]
* C:\Windows\assembly\GAC_64\Desktop.ini [ZA File]

Checking Windows Service Integrity:

* BITS [Missing Service]
* iphlpsvc [Missing Service]
* WinDefend [Missing Service]
* wuauserv [Missing Service]

* msiserver => %systemroot%\system32\msiexec.exe /V [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 08/29/2012 05:38:44 PM
Execution time: 0 hours(s), 0 minute(s), and 14 seconds(s)

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 29 August 2012 - 04:51 PM

Run RKILL again and post the new log

Edited by narenxp, 29 August 2012 - 04:59 PM.


#12 ironcitycats

ironcitycats
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 29 August 2012 - 04:57 PM

RogueKiller V8.0.0 [08/26/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows Vista (6.0.6002 Service Pack 2) 64 bits version
Started in : Normal mode
User : Matt [Admin rights]
Mode : Scan -- Date : 08/29/2012 17:56:50

¤¤¤ Bad processes : 1 ¤¤¤
[SVCHOST] svchost.exe -- C:\Windows\SysWOW64\svchost.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

˙ž1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000AAKS-75A7B2 ATA Device +++++
--- User ---
[MBR] 6e5202b924cc4983417374a41be90a7f
[BSP] a728b1d7551bab7d154456b68bf4972c : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 62 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 129024 | Size: 15360 Mo
2 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 31586304 | Size: 461516 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 29 August 2012 - 04:59 PM

Run RKILL again and post the new log

#14 ironcitycats

ironcitycats
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 29 August 2012 - 05:01 PM

Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/29/2012 06:01:09 PM in x64 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.
* No issues found.

Checking Windows Service Integrity:

* BITS [Missing Service]
* iphlpsvc [Missing Service]
* WinDefend [Missing Service]
* wuauserv [Missing Service]

* msiserver => %systemroot%\system32\msiexec.exe /V [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 08/29/2012 06:01:14 PM
Execution time: 0 hours(s), 0 minute(s), and 4 seconds(s)

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 29 August 2012 - 05:04 PM

Download

defender
wuauserv
BITS

Launch them ,click YES when you get UAC prompt

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vista/Turn-System-Restore-on-or-off

Update your flash player

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

Edited by narenxp, 29 August 2012 - 05:08 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users