Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Wireless network dropping, McAfee and Windows Firewall problems


  • Please log in to reply
15 replies to this topic

#1 Arjay670

Arjay670

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 02:28 AM

Year and a half year old system.

I just today renewed my Mcafee subscription (lapsed several months ago, finally got paranoid enough to shell out money for it). Once I did and updated the program, my problems began, or at least I noticed them.

I am on a public network, and have never had any connection problems before. I know that it is the computer and not the internet because I tested the connection on a seperate computer, and there were never any disconnects.

My network is randomly dropping. When it does, it says that I'm connected to "unidentified network" with "no internet access" Disconnecting and reconnecting to the network has no effect. It begins working again after remaining in this state for a few minutes.

When I open McAfee Security Center, it says that my firewall is turned on on the McAfee 'home screen.' However, if I click on my firewall settings, it says my firewall is off. Clicking 'turn on' turns it on for less than a second, then it says it's off again. I saw a suggestion on another site to disable McAfee Network Agent. I did so (did not fix the problem), and while I was doing it tried to disable Mcafee Firewall. When I applied the changes, the checkbox for McAfee Firewall reselected itself.

I checked to make sure it wasn't a problem with Windows Firewall interacting with McAfee firewall. When I pick Windows Firewall under control panel, there are no options. when I click to "use recommended settings," it says Windows Firewall can't change some of my settings, with "Error code 0x80070424." By all appearances, Firewall is just gone. I am fairly sure that I didn't uninstall it.

Any help fixing this would be appreciated.

*Moderator Edit: Moved topic from Windows 7 to the more appropriate forum. ~ Queen-Evie*

Edited by Queen-Evie, 01 September 2012 - 07:39 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 AM

Posted 01 September 2012 - 03:19 AM

You may be infected


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 06:11 AM

Output:

05:11:07.0454 5452 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
05:11:07.0485 5452 ============================================================
05:11:07.0485 5452 Current date / time: 2012/09/01 05:11:07.0485
05:11:07.0485 5452 SystemInfo:
05:11:07.0485 5452
05:11:07.0485 5452 OS Version: 6.1.7600 ServicePack: 0.0
05:11:07.0485 5452 Product type: Workstation
05:11:07.0485 5452 ComputerName: MICHAEL-PC
05:11:07.0485 5452 UserName: Michael
05:11:07.0485 5452 Windows directory: C:\Windows
05:11:07.0485 5452 System windows directory: C:\Windows
05:11:07.0485 5452 Running under WOW64
05:11:07.0485 5452 Processor architecture: Intel x64
05:11:07.0485 5452 Number of processors: 4
05:11:07.0485 5452 Page size: 0x1000
05:11:07.0485 5452 Boot type: Normal boot
05:11:07.0485 5452 ============================================================
05:11:08.0078 5452 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
05:11:08.0172 5452 Drive \Device\Harddisk1\DR1 - Size: 0x746EC00000 (465.73 Gb), SectorSize: 0x200, Cylinders: 0xED7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
05:11:08.0219 5452 ============================================================
05:11:08.0219 5452 \Device\Harddisk0\DR0:
05:11:08.0219 5452 MBR partitions:
05:11:08.0219 5452 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
05:11:08.0219 5452 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B
05:11:08.0219 5452 \Device\Harddisk1\DR1:
05:11:08.0219 5452 MBR partitions:
05:11:08.0219 5452 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A375800
05:11:08.0219 5452 ============================================================
05:11:08.0250 5452 C: <-> \Device\Harddisk0\DR0\Partition2
05:11:08.0281 5452 F: <-> \Device\Harddisk1\DR1\Partition1
05:11:08.0281 5452 ============================================================
05:11:08.0281 5452 Initialize success
05:11:08.0281 5452 ============================================================
05:11:10.0652 4064 ============================================================
05:11:10.0652 4064 Scan started
05:11:10.0652 4064 Mode: Manual;
05:11:10.0652 4064 ============================================================
05:11:11.0604 4064 ================ Scan system memory ========================
05:11:11.0604 4064 System memory - ok
05:11:11.0604 4064 ================ Scan services =============================
05:11:11.0807 4064 [ 969C91060CBB5D17CB8440B5F78B4C51 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
05:11:11.0822 4064 1394ohci - ok
05:11:11.0838 4064 [ 7A505465BBB1EB8B5AD4D76E8749383B ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
05:11:11.0838 4064 Acceler - ok
05:11:11.0885 4064 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
05:11:11.0885 4064 ACPI - ok
05:11:11.0900 4064 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
05:11:11.0900 4064 AcpiPmi - ok
05:11:12.0025 4064 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
05:11:12.0025 4064 AdobeFlashPlayerUpdateSvc - ok
05:11:12.0041 4064 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
05:11:12.0056 4064 adp94xx - ok
05:11:12.0072 4064 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
05:11:12.0087 4064 adpahci - ok
05:11:12.0103 4064 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
05:11:12.0103 4064 adpu320 - ok
05:11:12.0150 4064 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
05:11:12.0150 4064 AeLookupSvc - ok
05:11:12.0212 4064 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
05:11:12.0212 4064 AERTFilters - ok
05:11:12.0259 4064 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
05:11:12.0275 4064 AFD - ok
05:11:12.0306 4064 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
05:11:12.0306 4064 agp440 - ok
05:11:12.0368 4064 [ 95BC4330FA44240CA00C641A73C7E62D ] aksdf C:\Windows\system32\drivers\aksdf.sys
05:11:12.0368 4064 aksdf - ok
05:11:12.0415 4064 [ E2E5CF34D6C56ACE5E986969A3D9B0B5 ] aksfridge C:\Windows\system32\drivers\aksfridge.sys
05:11:12.0431 4064 aksfridge - ok
05:11:12.0446 4064 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
05:11:12.0446 4064 ALG - ok
05:11:12.0462 4064 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
05:11:12.0477 4064 aliide - ok
05:11:12.0493 4064 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
05:11:12.0493 4064 amdide - ok
05:11:12.0524 4064 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
05:11:12.0524 4064 AmdK8 - ok
05:11:12.0540 4064 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
05:11:12.0540 4064 AmdPPM - ok
05:11:12.0555 4064 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
05:11:12.0571 4064 amdsata - ok
05:11:12.0587 4064 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
05:11:12.0587 4064 amdsbs - ok
05:11:12.0602 4064 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
05:11:12.0602 4064 amdxata - ok
05:11:12.0633 4064 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
05:11:12.0633 4064 AppID - ok
05:11:12.0649 4064 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
05:11:12.0649 4064 AppIDSvc - ok
05:11:12.0696 4064 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
05:11:12.0696 4064 Appinfo - ok
05:11:12.0789 4064 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
05:11:12.0789 4064 Apple Mobile Device - ok
05:11:12.0821 4064 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
05:11:12.0821 4064 arc - ok
05:11:12.0836 4064 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
05:11:12.0836 4064 arcsas - ok
05:11:12.0961 4064 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
05:11:12.0977 4064 aspnet_state - ok
05:11:12.0992 4064 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
05:11:12.0992 4064 AsyncMac - ok
05:11:13.0055 4064 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
05:11:13.0055 4064 atapi - ok
05:11:13.0117 4064 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
05:11:13.0133 4064 AudioEndpointBuilder - ok
05:11:13.0164 4064 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
05:11:13.0179 4064 AudioSrv - ok
05:11:13.0226 4064 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
05:11:13.0226 4064 AxInstSV - ok
05:11:13.0257 4064 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
05:11:13.0289 4064 b06bdrv - ok
05:11:13.0304 4064 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
05:11:13.0304 4064 b57nd60a - ok
05:11:13.0320 4064 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
05:11:13.0335 4064 BDESVC - ok
05:11:13.0367 4064 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
05:11:13.0367 4064 Beep - ok
05:11:13.0382 4064 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
05:11:13.0382 4064 blbdrive - ok
05:11:13.0429 4064 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
05:11:13.0445 4064 Bonjour Service - ok
05:11:13.0460 4064 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
05:11:13.0460 4064 bowser - ok
05:11:13.0476 4064 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
05:11:13.0476 4064 BrFiltLo - ok
05:11:13.0491 4064 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
05:11:13.0491 4064 BrFiltUp - ok
05:11:13.0523 4064 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
05:11:13.0538 4064 Browser - ok
05:11:13.0554 4064 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
05:11:13.0554 4064 Brserid - ok
05:11:13.0585 4064 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
05:11:13.0585 4064 BrSerWdm - ok
05:11:13.0601 4064 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
05:11:13.0601 4064 BrUsbMdm - ok
05:11:13.0632 4064 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
05:11:13.0647 4064 BrUsbSer - ok
05:11:13.0647 4064 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
05:11:13.0663 4064 BTHMODEM - ok
05:11:13.0694 4064 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
05:11:13.0694 4064 bthserv - ok
05:11:13.0710 4064 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
05:11:13.0710 4064 cdfs - ok
05:11:13.0741 4064 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
05:11:13.0741 4064 cdrom - ok
05:11:13.0772 4064 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
05:11:13.0772 4064 CertPropSvc - ok
05:11:13.0803 4064 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\Windows\system32\drivers\cfwids.sys
05:11:13.0803 4064 cfwids - ok
05:11:13.0819 4064 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
05:11:13.0819 4064 circlass - ok
05:11:13.0850 4064 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
05:11:13.0850 4064 CLFS - ok
05:11:13.0928 4064 [ 730BF325E4CC1E3935B81943AC6DA216 ] CLKMSVC10_9EC60124 c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
05:11:13.0944 4064 CLKMSVC10_9EC60124 - ok
05:11:13.0975 4064 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
05:11:13.0991 4064 clr_optimization_v2.0.50727_32 - ok
05:11:14.0022 4064 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
05:11:14.0037 4064 clr_optimization_v2.0.50727_64 - ok
05:11:14.0100 4064 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:11:14.0115 4064 clr_optimization_v4.0.30319_32 - ok
05:11:14.0162 4064 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
05:11:14.0193 4064 clr_optimization_v4.0.30319_64 - ok
05:11:14.0225 4064 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
05:11:14.0225 4064 CmBatt - ok
05:11:14.0240 4064 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
05:11:14.0240 4064 cmdide - ok
05:11:14.0287 4064 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
05:11:14.0303 4064 CNG - ok
05:11:14.0318 4064 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
05:11:14.0318 4064 Compbatt - ok
05:11:14.0349 4064 [ 11CC395D18FF03E95E8C6A149C84C91B ] CompFilter64 C:\Windows\system32\DRIVERS\lvbflt64.sys
05:11:14.0365 4064 CompFilter64 - ok
05:11:14.0381 4064 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
05:11:14.0381 4064 CompositeBus - ok
05:11:14.0396 4064 COMSysApp - ok
05:11:14.0427 4064 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
05:11:14.0427 4064 crcdisk - ok
05:11:14.0474 4064 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
05:11:14.0474 4064 CryptSvc - ok
05:11:14.0490 4064 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
05:11:14.0505 4064 CtClsFlt - ok
05:11:14.0552 4064 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
05:11:14.0568 4064 DcomLaunch - ok
05:11:14.0599 4064 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
05:11:14.0599 4064 defragsvc - ok
05:11:14.0615 4064 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
05:11:14.0615 4064 DfsC - ok
05:11:14.0646 4064 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
05:11:14.0646 4064 Dhcp - ok
05:11:14.0661 4064 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
05:11:14.0661 4064 discache - ok
05:11:14.0677 4064 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
05:11:14.0677 4064 Disk - ok
05:11:14.0708 4064 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
05:11:14.0724 4064 Dnscache - ok
05:11:14.0739 4064 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
05:11:14.0755 4064 dot3svc - ok
05:11:14.0771 4064 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
05:11:14.0771 4064 DPS - ok
05:11:14.0786 4064 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
05:11:14.0802 4064 drmkaud - ok
05:11:14.0817 4064 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
05:11:14.0849 4064 DXGKrnl - ok
05:11:14.0864 4064 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
05:11:14.0864 4064 EapHost - ok
05:11:14.0942 4064 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
05:11:15.0020 4064 ebdrv - ok
05:11:15.0067 4064 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
05:11:15.0067 4064 EFS - ok
05:11:15.0129 4064 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
05:11:15.0145 4064 ehRecvr - ok
05:11:15.0161 4064 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
05:11:15.0161 4064 ehSched - ok
05:11:15.0192 4064 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
05:11:15.0223 4064 elxstor - ok
05:11:15.0239 4064 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
05:11:15.0239 4064 ErrDev - ok
05:11:15.0285 4064 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
05:11:15.0301 4064 EventSystem - ok
05:11:15.0410 4064 [ B56D9602DB5FE1C116B1CA5EFD8E2E50 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
05:11:15.0473 4064 EvtEng - ok
05:11:15.0488 4064 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
05:11:15.0488 4064 exfat - ok
05:11:15.0504 4064 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
05:11:15.0519 4064 fastfat - ok
05:11:15.0551 4064 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
05:11:15.0582 4064 Fax - ok
05:11:15.0613 4064 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
05:11:15.0613 4064 fdc - ok
05:11:15.0644 4064 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
05:11:15.0644 4064 fdPHost - ok
05:11:15.0675 4064 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
05:11:15.0675 4064 FDResPub - ok
05:11:15.0691 4064 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
05:11:15.0691 4064 FileInfo - ok
05:11:15.0707 4064 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
05:11:15.0707 4064 Filetrace - ok
05:11:15.0722 4064 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
05:11:15.0738 4064 flpydisk - ok
05:11:15.0753 4064 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
05:11:15.0753 4064 FltMgr - ok
05:11:15.0785 4064 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
05:11:15.0816 4064 FontCache - ok
05:11:15.0878 4064 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
05:11:15.0894 4064 FontCache3.0.0.0 - ok
05:11:15.0909 4064 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
05:11:15.0909 4064 FsDepends - ok
05:11:15.0956 4064 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
05:11:15.0956 4064 Fs_Rec - ok
05:11:15.0972 4064 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
05:11:15.0972 4064 fvevol - ok
05:11:15.0987 4064 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
05:11:16.0003 4064 gagp30kx - ok
05:11:16.0019 4064 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
05:11:16.0019 4064 GEARAspiWDM - ok
05:11:16.0081 4064 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
05:11:16.0097 4064 GoToAssist - ok
05:11:16.0159 4064 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
05:11:16.0175 4064 gpsvc - ok
05:11:16.0237 4064 [ 78FAD9117E4527F2CA82259DA10F40BD ] hardlock C:\Windows\system32\drivers\hardlock.sys
05:11:16.0237 4064 hardlock - ok
05:11:16.0253 4064 hasplms - ok
05:11:16.0284 4064 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
05:11:16.0284 4064 hcw85cir - ok
05:11:16.0299 4064 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
05:11:16.0299 4064 HDAudBus - ok
05:11:16.0315 4064 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
05:11:16.0331 4064 HECIx64 - ok
05:11:16.0346 4064 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
05:11:16.0346 4064 HidBatt - ok
05:11:16.0362 4064 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
05:11:16.0362 4064 HidBth - ok
05:11:16.0377 4064 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
05:11:16.0377 4064 HidIr - ok
05:11:16.0409 4064 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
05:11:16.0409 4064 hidserv - ok
05:11:16.0424 4064 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
05:11:16.0424 4064 HidUsb - ok
05:11:16.0487 4064 [ FD1837DEE0A1D7F180D7B301C0656511 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
05:11:16.0487 4064 HiPatchService - ok
05:11:16.0518 4064 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
05:11:16.0518 4064 hkmsvc - ok
05:11:16.0549 4064 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
05:11:16.0549 4064 HomeGroupListener - ok
05:11:16.0611 4064 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
05:11:16.0611 4064 HomeGroupProvider - ok
05:11:16.0658 4064 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
05:11:16.0658 4064 HpSAMD - ok
05:11:16.0689 4064 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
05:11:16.0705 4064 HTTP - ok
05:11:16.0721 4064 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
05:11:16.0721 4064 hwpolicy - ok
05:11:16.0752 4064 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
05:11:16.0752 4064 i8042prt - ok
05:11:16.0783 4064 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
05:11:16.0783 4064 iaStor - ok
05:11:16.0845 4064 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
05:11:16.0845 4064 IAStorDataMgrSvc - ok
05:11:16.0877 4064 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
05:11:16.0892 4064 iaStorV - ok
05:11:16.0939 4064 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
05:11:16.0955 4064 idsvc - ok
05:11:17.0173 4064 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
05:11:17.0329 4064 igfx - ok
05:11:17.0345 4064 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
05:11:17.0360 4064 iirsp - ok
05:11:17.0392 4064 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
05:11:17.0407 4064 IKEEXT - ok
05:11:17.0454 4064 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
05:11:17.0454 4064 Impcd - ok
05:11:17.0516 4064 [ F61D360072B67F5667765A2534B672D6 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
05:11:17.0579 4064 IntcAzAudAddService - ok
05:11:17.0610 4064 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
05:11:17.0610 4064 IntcDAud - ok
05:11:17.0626 4064 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
05:11:17.0626 4064 intelide - ok
05:11:17.0657 4064 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
05:11:17.0657 4064 intelppm - ok
05:11:17.0672 4064 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
05:11:17.0672 4064 IPBusEnum - ok
05:11:17.0688 4064 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
05:11:17.0704 4064 IpFilterDriver - ok
05:11:17.0704 4064 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
05:11:17.0719 4064 IPMIDRV - ok
05:11:17.0735 4064 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
05:11:17.0735 4064 IPNAT - ok
05:11:17.0766 4064 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
05:11:17.0797 4064 iPod Service - ok
05:11:17.0813 4064 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
05:11:17.0813 4064 IRENUM - ok
05:11:17.0828 4064 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
05:11:17.0828 4064 isapnp - ok
05:11:17.0844 4064 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
05:11:17.0844 4064 iScsiPrt - ok
05:11:17.0891 4064 [ 43F319DE026E04B9CF9219A14BF24FE8 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
05:11:17.0906 4064 JMCR - ok
05:11:17.0906 4064 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
05:11:17.0922 4064 kbdclass - ok
05:11:17.0938 4064 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
05:11:17.0938 4064 kbdhid - ok
05:11:17.0953 4064 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
05:11:17.0953 4064 KeyIso - ok
05:11:17.0984 4064 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
05:11:18.0000 4064 KSecDD - ok
05:11:18.0000 4064 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
05:11:18.0016 4064 KSecPkg - ok
05:11:18.0031 4064 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
05:11:18.0031 4064 ksthunk - ok
05:11:18.0062 4064 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
05:11:18.0078 4064 KtmRm - ok
05:11:18.0140 4064 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
05:11:18.0140 4064 LanmanServer - ok
05:11:18.0172 4064 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
05:11:18.0172 4064 LanmanWorkstation - ok
05:11:18.0203 4064 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
05:11:18.0203 4064 lltdio - ok
05:11:18.0218 4064 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
05:11:18.0234 4064 lltdsvc - ok
05:11:18.0234 4064 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
05:11:18.0250 4064 lmhosts - ok
05:11:18.0312 4064 [ 23D990150D56B670A62B21B9ABDD45EE ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
05:11:18.0312 4064 LMS - ok
05:11:18.0343 4064 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
05:11:18.0343 4064 LSI_FC - ok
05:11:18.0359 4064 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
05:11:18.0359 4064 LSI_SAS - ok
05:11:18.0374 4064 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
05:11:18.0374 4064 LSI_SAS2 - ok
05:11:18.0390 4064 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
05:11:18.0390 4064 LSI_SCSI - ok
05:11:18.0406 4064 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
05:11:18.0406 4064 luafv - ok
05:11:18.0437 4064 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
05:11:18.0437 4064 LVRS64 - ok
05:11:18.0546 4064 [ EDF73BFA1BD24D74D1D64DC0ED28A7CD ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
05:11:18.0640 4064 LVUVC64 - ok
05:11:18.0749 4064 [ B6BD99C3E23507A732C474CAA620C0D7 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
05:11:18.0749 4064 McAWFwk - ok
05:11:18.0811 4064 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
05:11:18.0827 4064 McMPFSvc - ok
05:11:18.0827 4064 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:11:18.0827 4064 mcmscsvc - ok
05:11:18.0842 4064 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:11:18.0842 4064 McNaiAnn - ok
05:11:18.0858 4064 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:11:18.0858 4064 McNASvc - ok
05:11:18.0967 4064 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
05:11:18.0983 4064 McODS - ok
05:11:18.0983 4064 [ ACB01BF1A905356AB7F978C7FE852209 ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:11:18.0998 4064 McOobeSv - ok
05:11:18.0998 4064 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:11:18.0998 4064 McProxy - ok
05:11:19.0076 4064 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
05:11:19.0092 4064 McShield - ok
05:11:19.0108 4064 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
05:11:19.0123 4064 Mcx2Svc - ok
05:11:19.0139 4064 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
05:11:19.0139 4064 megasas - ok
05:11:19.0170 4064 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
05:11:19.0170 4064 MegaSR - ok
05:11:19.0201 4064 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
05:11:19.0201 4064 mfeapfk - ok
05:11:19.0217 4064 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
05:11:19.0232 4064 mfeavfk - ok
05:11:19.0248 4064 mfeavfk01 - ok
05:11:19.0264 4064 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
05:11:19.0264 4064 mfefire - ok
05:11:19.0295 4064 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
05:11:19.0310 4064 mfefirek - ok
05:11:19.0342 4064 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
05:11:19.0357 4064 mfehidk - ok
05:11:19.0373 4064 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
05:11:19.0388 4064 mfenlfk - ok
05:11:19.0388 4064 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
05:11:19.0388 4064 mferkdet - ok
05:11:19.0420 4064 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
05:11:19.0420 4064 mfevtp - ok
05:11:19.0451 4064 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
05:11:19.0451 4064 mfewfpk - ok
05:11:19.0513 4064 Microsoft SharePoint Workspace Audit Service - ok
05:11:19.0544 4064 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
05:11:19.0544 4064 MMCSS - ok
05:11:19.0591 4064 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
05:11:19.0591 4064 Modem - ok
05:11:19.0607 4064 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
05:11:19.0607 4064 monitor - ok
05:11:19.0622 4064 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
05:11:19.0622 4064 mouclass - ok
05:11:19.0654 4064 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
05:11:19.0654 4064 mouhid - ok
05:11:19.0669 4064 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
05:11:19.0669 4064 mountmgr - ok
05:11:19.0732 4064 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
05:11:19.0732 4064 MozillaMaintenance - ok
05:11:19.0747 4064 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
05:11:19.0763 4064 mpio - ok
05:11:19.0763 4064 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
05:11:19.0778 4064 mpsdrv - ok
05:11:19.0794 4064 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
05:11:19.0794 4064 MRxDAV - ok
05:11:19.0810 4064 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
05:11:19.0810 4064 mrxsmb - ok
05:11:19.0856 4064 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
05:11:19.0872 4064 mrxsmb10 - ok
05:11:19.0888 4064 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
05:11:19.0888 4064 mrxsmb20 - ok
05:11:19.0903 4064 [ BCCF16D5FB1109162380E3E28DC9E4E5 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
05:11:19.0919 4064 msahci - ok
05:11:19.0934 4064 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
05:11:19.0934 4064 msdsm - ok
05:11:19.0950 4064 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
05:11:19.0966 4064 MSDTC - ok
05:11:19.0981 4064 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
05:11:19.0981 4064 Msfs - ok
05:11:19.0997 4064 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
05:11:19.0997 4064 mshidkmdf - ok
05:11:20.0012 4064 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
05:11:20.0012 4064 msisadrv - ok
05:11:20.0044 4064 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
05:11:20.0059 4064 MSiSCSI - ok
05:11:20.0059 4064 msiserver - ok
05:11:20.0075 4064 [ ACB01BF1A905356AB7F978C7FE852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
05:11:20.0075 4064 MSK80Service - ok
05:11:20.0106 4064 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
05:11:20.0106 4064 MSKSSRV - ok
05:11:20.0122 4064 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
05:11:20.0137 4064 MSPCLOCK - ok
05:11:20.0137 4064 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
05:11:20.0137 4064 MSPQM - ok
05:11:20.0168 4064 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
05:11:20.0168 4064 MsRPC - ok
05:11:20.0200 4064 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
05:11:20.0200 4064 mssmbios - ok
05:11:20.0215 4064 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
05:11:20.0215 4064 MSTEE - ok
05:11:20.0231 4064 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
05:11:20.0231 4064 MTConfig - ok
05:11:20.0246 4064 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
05:11:20.0246 4064 Mup - ok
05:11:20.0309 4064 [ A9BC2302FBDF52C8AF4E2FC966288D21 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
05:11:20.0309 4064 MyWiFiDHCPDNS - ok
05:11:20.0356 4064 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
05:11:20.0356 4064 napagent - ok
05:11:20.0387 4064 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
05:11:20.0402 4064 NativeWifiP - ok
05:11:20.0434 4064 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
05:11:20.0465 4064 NDIS - ok
05:11:20.0480 4064 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
05:11:20.0480 4064 NdisCap - ok
05:11:20.0512 4064 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
05:11:20.0512 4064 NdisTapi - ok
05:11:20.0527 4064 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
05:11:20.0527 4064 Ndisuio - ok
05:11:20.0543 4064 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
05:11:20.0558 4064 NdisWan - ok
05:11:20.0558 4064 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
05:11:20.0574 4064 NDProxy - ok
05:11:20.0590 4064 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
05:11:20.0590 4064 NetBIOS - ok
05:11:20.0605 4064 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
05:11:20.0605 4064 NetBT - ok
05:11:20.0621 4064 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
05:11:20.0621 4064 Netlogon - ok
05:11:20.0636 4064 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
05:11:20.0652 4064 Netman - ok
05:11:20.0699 4064 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:11:20.0761 4064 NetMsmqActivator - ok
05:11:20.0761 4064 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:11:20.0761 4064 NetPipeActivator - ok
05:11:20.0777 4064 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
05:11:20.0792 4064 netprofm - ok
05:11:20.0792 4064 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:11:20.0792 4064 NetTcpActivator - ok
05:11:20.0792 4064 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:11:20.0792 4064 NetTcpPortSharing - ok
05:11:20.0933 4064 [ 18555F48844C2861D9DCE8F2B7223AE5 ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
05:11:21.0089 4064 NETw5s64 - ok
05:11:21.0120 4064 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
05:11:21.0120 4064 nfrd960 - ok
05:11:21.0151 4064 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
05:11:21.0167 4064 NlaSvc - ok
05:11:21.0292 4064 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
05:11:21.0385 4064 NOBU - ok
05:11:21.0401 4064 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
05:11:21.0401 4064 Npfs - ok
05:11:21.0416 4064 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
05:11:21.0416 4064 nsi - ok
05:11:21.0432 4064 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
05:11:21.0432 4064 nsiproxy - ok
05:11:21.0479 4064 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
05:11:21.0541 4064 Ntfs - ok
05:11:21.0541 4064 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
05:11:21.0557 4064 Null - ok
05:11:21.0588 4064 [ 285ACEC1B13A15BA520AAE06BACB9CFF ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
05:11:21.0588 4064 nusb3hub - ok
05:11:21.0619 4064 [ F6D625FF7B56BB6EA063F0D3A5BBC996 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
05:11:21.0619 4064 nusb3xhc - ok
05:11:21.0916 4064 [ 536D174CB5CD021906E6035F40993493 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
05:11:22.0134 4064 nvlddmkm - ok
05:11:22.0150 4064 [ 1CA55B50DBF7559ECC4F0F036EDC29EC ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
05:11:22.0150 4064 nvpciflt - ok
05:11:22.0181 4064 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
05:11:22.0181 4064 nvraid - ok
05:11:22.0196 4064 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
05:11:22.0196 4064 nvstor - ok
05:11:22.0243 4064 [ 2C800281A92D5AB221B54DF2D8B1A27D ] nvsvc C:\Windows\system32\nvvsvc.exe
05:11:22.0243 4064 nvsvc - ok
05:11:22.0337 4064 [ 938CAF13EA28D7CF4A30826274944B23 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
05:11:22.0368 4064 nvUpdatusService - ok
05:11:22.0399 4064 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
05:11:22.0399 4064 nv_agp - ok
05:11:22.0399 4064 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
05:11:22.0415 4064 ohci1394 - ok
05:11:22.0493 4064 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
05:11:22.0493 4064 ose - ok
05:11:22.0649 4064 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
05:11:22.0742 4064 osppsvc - ok
05:11:22.0774 4064 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
05:11:22.0774 4064 p2pimsvc - ok
05:11:22.0805 4064 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
05:11:22.0820 4064 p2psvc - ok
05:11:22.0836 4064 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
05:11:22.0852 4064 Parport - ok
05:11:22.0898 4064 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
05:11:22.0898 4064 partmgr - ok
05:11:22.0914 4064 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
05:11:22.0914 4064 PcaSvc - ok
05:11:22.0976 4064 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
05:11:22.0992 4064 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
05:11:23.0023 4064 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
05:11:23.0023 4064 pci - ok
05:11:23.0039 4064 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
05:11:23.0054 4064 pciide - ok
05:11:23.0070 4064 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
05:11:23.0070 4064 pcmcia - ok
05:11:23.0101 4064 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
05:11:23.0101 4064 pcw - ok
05:11:23.0117 4064 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
05:11:23.0148 4064 PEAUTH - ok
05:11:23.0226 4064 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
05:11:23.0226 4064 PerfHost - ok
05:11:23.0288 4064 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
05:11:23.0320 4064 pla - ok
05:11:23.0335 4064 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
05:11:23.0351 4064 PlugPlay - ok
05:11:23.0366 4064 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
05:11:23.0366 4064 PNRPAutoReg - ok
05:11:23.0382 4064 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
05:11:23.0398 4064 PNRPsvc - ok
05:11:23.0444 4064 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
05:11:23.0444 4064 PolicyAgent - ok
05:11:23.0476 4064 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
05:11:23.0476 4064 Power - ok
05:11:23.0522 4064 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
05:11:23.0522 4064 PptpMiniport - ok
05:11:23.0538 4064 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
05:11:23.0554 4064 Processor - ok
05:11:23.0585 4064 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
05:11:23.0600 4064 ProfSvc - ok
05:11:23.0647 4064 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
05:11:23.0647 4064 ProtectedStorage - ok
05:11:23.0678 4064 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
05:11:23.0678 4064 Psched - ok
05:11:23.0694 4064 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
05:11:23.0694 4064 PxHlpa64 - ok
05:11:23.0725 4064 [ 0928BD20273625622722FE1DE5BBDE57 ] qicflt C:\Windows\system32\DRIVERS\qicflt.sys
05:11:23.0725 4064 qicflt - ok
05:11:23.0788 4064 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
05:11:23.0819 4064 ql2300 - ok
05:11:23.0834 4064 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
05:11:23.0834 4064 ql40xx - ok
05:11:23.0866 4064 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
05:11:23.0866 4064 QWAVE - ok
05:11:23.0881 4064 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
05:11:23.0881 4064 QWAVEdrv - ok
05:11:23.0912 4064 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
05:11:23.0912 4064 RasAcd - ok
05:11:23.0959 4064 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
05:11:23.0959 4064 RasAgileVpn - ok
05:11:23.0975 4064 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
05:11:23.0975 4064 RasAuto - ok
05:11:23.0990 4064 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
05:11:23.0990 4064 Rasl2tp - ok
05:11:24.0037 4064 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
05:11:24.0037 4064 RasMan - ok
05:11:24.0053 4064 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
05:11:24.0068 4064 RasPppoe - ok
05:11:24.0068 4064 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
05:11:24.0084 4064 RasSstp - ok
05:11:24.0100 4064 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
05:11:24.0100 4064 rdbss - ok
05:11:24.0115 4064 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
05:11:24.0115 4064 rdpbus - ok
05:11:24.0131 4064 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
05:11:24.0131 4064 RDPCDD - ok
05:11:24.0146 4064 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
05:11:24.0162 4064 RDPENCDD - ok
05:11:24.0162 4064 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
05:11:24.0162 4064 RDPREFMP - ok
05:11:24.0209 4064 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
05:11:24.0209 4064 RDPWD - ok
05:11:24.0240 4064 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
05:11:24.0240 4064 rdyboost - ok
05:11:24.0318 4064 [ 0AA473966357C4A41B5EB19649EB6E5E ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
05:11:24.0334 4064 RegSrvc - ok
05:11:24.0380 4064 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
05:11:24.0380 4064 RemoteAccess - ok
05:11:24.0396 4064 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
05:11:24.0396 4064 RemoteRegistry - ok
05:11:24.0505 4064 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
05:11:24.0536 4064 RoxMediaDB12OEM - ok
05:11:24.0568 4064 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
05:11:24.0568 4064 RoxWatch12 - ok
05:11:24.0599 4064 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
05:11:24.0599 4064 RpcEptMapper - ok
05:11:24.0630 4064 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
05:11:24.0630 4064 RpcLocator - ok
05:11:24.0677 4064 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
05:11:24.0677 4064 RpcSs - ok
05:11:24.0708 4064 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
05:11:24.0708 4064 rspndr - ok
05:11:24.0739 4064 [ 4B42BC58294E83A6A92EC8B88C14C4A3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
05:11:24.0739 4064 RTL8167 - ok
05:11:24.0755 4064 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
05:11:24.0755 4064 SamSs - ok
05:11:24.0786 4064 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
05:11:24.0802 4064 sbp2port - ok
05:11:24.0817 4064 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
05:11:24.0817 4064 SCardSvr - ok
05:11:24.0833 4064 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
05:11:24.0833 4064 scfilter - ok
05:11:24.0880 4064 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
05:11:24.0895 4064 Schedule - ok
05:11:24.0926 4064 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
05:11:24.0926 4064 SCPolicySvc - ok
05:11:24.0942 4064 [ 84E00908975FAF79E91282ED8FB88C2F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
05:11:24.0942 4064 sdbus - ok
05:11:24.0973 4064 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
05:11:24.0973 4064 SDRSVC - ok
05:11:24.0989 4064 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
05:11:24.0989 4064 secdrv - ok
05:11:25.0036 4064 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
05:11:25.0051 4064 seclogon - ok
05:11:25.0067 4064 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
05:11:25.0082 4064 SENS - ok
05:11:25.0082 4064 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
05:11:25.0098 4064 SensrSvc - ok
05:11:25.0114 4064 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
05:11:25.0114 4064 Serenum - ok
05:11:25.0129 4064 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
05:11:25.0129 4064 Serial - ok
05:11:25.0160 4064 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
05:11:25.0160 4064 sermouse - ok
05:11:25.0207 4064 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
05:11:25.0207 4064 SessionEnv - ok
05:11:25.0223 4064 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
05:11:25.0223 4064 sffdisk - ok
05:11:25.0238 4064 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
05:11:25.0238 4064 sffp_mmc - ok
05:11:25.0254 4064 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
05:11:25.0254 4064 sffp_sd - ok
05:11:25.0270 4064 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
05:11:25.0270 4064 sfloppy - ok
05:11:25.0348 4064 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
05:11:25.0363 4064 SftService - ok
05:11:25.0394 4064 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
05:11:25.0410 4064 ShellHWDetection - ok
05:11:25.0426 4064 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
05:11:25.0426 4064 SiSRaid2 - ok
05:11:25.0441 4064 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
05:11:25.0441 4064 SiSRaid4 - ok
05:11:25.0613 4064 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
05:11:25.0691 4064 Skype C2C Service - ok
05:11:25.0738 4064 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
05:11:25.0738 4064 SkypeUpdate - ok
05:11:25.0753 4064 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
05:11:25.0769 4064 Smb - ok
05:11:25.0800 4064 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
05:11:25.0816 4064 SNMPTRAP - ok
05:11:25.0831 4064 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
05:11:25.0831 4064 spldr - ok
05:11:25.0878 4064 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
05:11:25.0894 4064 Spooler - ok
05:11:26.0003 4064 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
05:11:26.0096 4064 sppsvc - ok
05:11:26.0143 4064 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
05:11:26.0143 4064 sppuinotify - ok
05:11:26.0190 4064 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
05:11:26.0206 4064 srv - ok
05:11:26.0237 4064 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
05:11:26.0252 4064 srv2 - ok
05:11:26.0268 4064 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
05:11:26.0268 4064 srvnet - ok
05:11:26.0284 4064 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
05:11:26.0284 4064 SSDPSRV - ok
05:11:26.0299 4064 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
05:11:26.0299 4064 SstpSvc - ok
05:11:26.0315 4064 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
05:11:26.0315 4064 stdcfltn - ok
05:11:26.0346 4064 Steam Client Service - ok
05:11:26.0424 4064 [ 66F60D8A26B665EC9D8D2F07ADDEF22D ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
05:11:26.0440 4064 Stereo Service - ok
05:11:26.0440 4064 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
05:11:26.0455 4064 stexstor - ok
05:11:26.0471 4064 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
05:11:26.0486 4064 stisvc - ok
05:11:26.0502 4064 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
05:11:26.0518 4064 stllssvr - ok
05:11:26.0518 4064 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
05:11:26.0518 4064 swenum - ok
05:11:26.0533 4064 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
05:11:26.0549 4064 swprv - ok
05:11:26.0580 4064 [ 36F506C894E1EA59C65FAF6398BDF49A ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
05:11:26.0611 4064 SynTP - ok
05:11:26.0642 4064 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
05:11:26.0689 4064 SysMain - ok
05:11:26.0689 4064 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
05:11:26.0705 4064 TabletInputService - ok
05:11:26.0720 4064 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
05:11:26.0720 4064 TapiSrv - ok
05:11:26.0736 4064 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
05:11:26.0736 4064 TBS - ok
05:11:26.0814 4064 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
05:11:26.0861 4064 Tcpip - ok
05:11:26.0908 4064 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
05:11:26.0939 4064 TCPIP6 - ok
05:11:26.0939 4064 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
05:11:26.0954 4064 tcpipreg - ok
05:11:26.0970 4064 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
05:11:26.0970 4064 TDPIPE - ok
05:11:27.0001 4064 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
05:11:27.0001 4064 TDTCP - ok
05:11:27.0017 4064 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
05:11:27.0017 4064 tdx - ok
05:11:27.0048 4064 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
05:11:27.0048 4064 TermDD - ok
05:11:27.0079 4064 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
05:11:27.0095 4064 TermService - ok
05:11:27.0110 4064 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
05:11:27.0110 4064 Themes - ok
05:11:27.0157 4064 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
05:11:27.0157 4064 THREADORDER - ok
05:11:27.0173 4064 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
05:11:27.0173 4064 TrkWks - ok
05:11:27.0220 4064 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
05:11:27.0235 4064 TrustedInstaller - ok
05:11:27.0251 4064 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
05:11:27.0251 4064 tssecsrv - ok
05:11:27.0282 4064 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
05:11:27.0282 4064 tunnel - ok
05:11:27.0298 4064 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
05:11:27.0313 4064 TurboB - ok
05:11:27.0360 4064 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
05:11:27.0360 4064 TurboBoost - ok
05:11:27.0376 4064 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
05:11:27.0391 4064 uagp35 - ok
05:11:27.0407 4064 [ 31BA4A33AFAB6A69EA092B18017F737F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
05:11:27.0422 4064 udfs - ok
05:11:27.0438 4064 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
05:11:27.0438 4064 UI0Detect - ok
05:11:27.0469 4064 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
05:11:27.0469 4064 uliagpkx - ok
05:11:27.0485 4064 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
05:11:27.0485 4064 umbus - ok
05:11:27.0500 4064 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
05:11:27.0500 4064 UmPass - ok
05:11:27.0547 4064 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
05:11:27.0547 4064 UMVPFSrv - ok
05:11:27.0688 4064 [ CBDEE152D73200EE49031A26310B9D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
05:11:27.0750 4064 UNS - ok
05:11:27.0797 4064 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
05:11:27.0797 4064 upnphost - ok
05:11:27.0844 4064 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
05:11:27.0844 4064 USBAAPL64 - ok
05:11:27.0859 4064 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
05:11:27.0859 4064 usbaudio - ok
05:11:27.0875 4064 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
05:11:27.0875 4064 usbccgp - ok
05:11:27.0890 4064 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
05:11:27.0906 4064 usbcir - ok
05:11:27.0937 4064 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\drivers\usbehci.sys
05:11:27.0937 4064 usbehci - ok
05:11:27.0968 4064 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
05:11:27.0984 4064 usbhub - ok
05:11:28.0000 4064 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
05:11:28.0000 4064 usbohci - ok
05:11:28.0015 4064 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
05:11:28.0015 4064 usbprint - ok
05:11:28.0031 4064 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
05:11:28.0031 4064 USBSTOR - ok
05:11:28.0046 4064 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
05:11:28.0046 4064 usbuhci - ok
05:11:28.0062 4064 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
05:11:28.0062 4064 usbvideo - ok
05:11:28.0078 4064 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
05:11:28.0078 4064 UxSms - ok
05:11:28.0093 4064 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
05:11:28.0093 4064 VaultSvc - ok
05:11:28.0109 4064 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
05:11:28.0109 4064 vdrvroot - ok
05:11:28.0156 4064 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
05:11:28.0187 4064 vds - ok
05:11:28.0202 4064 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
05:11:28.0202 4064 vga - ok
05:11:28.0218 4064 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
05:11:28.0218 4064 VgaSave - ok
05:11:28.0234 4064 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
05:11:28.0249 4064 vhdmp - ok
05:11:28.0249 4064 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
05:11:28.0265 4064 viaide - ok
05:11:28.0280 4064 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
05:11:28.0280 4064 volmgr - ok
05:11:28.0296 4064 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
05:11:28.0296 4064 volmgrx - ok
05:11:28.0327 4064 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
05:11:28.0327 4064 volsnap - ok
05:11:28.0343 4064 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
05:11:28.0358 4064 vsmraid - ok
05:11:28.0390 4064 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
05:11:28.0405 4064 VSS - ok
05:11:28.0452 4064 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
05:11:28.0468 4064 vwifibus - ok
05:11:28.0483 4064 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
05:11:28.0483 4064 vwififlt - ok
05:11:28.0514 4064 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
05:11:28.0530 4064 vwifimp - ok
05:11:28.0546 4064 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
05:11:28.0561 4064 W32Time - ok
05:11:28.0577 4064 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
05:11:28.0577 4064 WacomPen - ok
05:11:28.0592 4064 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
05:11:28.0608 4064 WANARP - ok
05:11:28.0624 4064 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
05:11:28.0624 4064 Wanarpv6 - ok
05:11:28.0686 4064 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
05:11:28.0717 4064 WatAdminSvc - ok
05:11:28.0780 4064 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
05:11:28.0811 4064 wbengine - ok
05:11:28.0842 4064 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
05:11:28.0842 4064 WbioSrvc - ok
05:11:28.0858 4064 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
05:11:28.0858 4064 wcncsvc - ok
05:11:28.0873 4064 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
05:11:28.0873 4064 WcsPlugInService - ok
05:11:28.0889 4064 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
05:11:28.0904 4064 Wd - ok
05:11:28.0904 4064 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
05:11:28.0904 4064 WDC_SAM - ok
05:11:28.0936 4064 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
05:11:28.0951 4064 Wdf01000 - ok
05:11:28.0967 4064 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
05:11:28.0982 4064 WdiServiceHost - ok
05:11:28.0982 4064 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
05:11:28.0982 4064 WdiSystemHost - ok
05:11:28.0998 4064 [ FE31110E39A0B11ABAE1BA43A2DC94F9 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
05:11:28.0998 4064 wdkmd - ok
05:11:29.0029 4064 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
05:11:29.0029 4064 WebClient - ok
05:11:29.0045 4064 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
05:11:29.0060 4064 Wecsvc - ok
05:11:29.0060 4064 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
05:11:29.0076 4064 wercplsupport - ok
05:11:29.0092 4064 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
05:11:29.0107 4064 WerSvc - ok
05:11:29.0123 4064 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
05:11:29.0123 4064 WfpLwf - ok
05:11:29.0138 4064 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
05:11:29.0138 4064 WimFltr - ok
05:11:29.0154 4064 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
05:11:29.0154 4064 WIMMount - ok
05:11:29.0170 4064 WinHttpAutoProxySvc - ok
05:11:29.0216 4064 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
05:11:29.0232 4064 Winmgmt - ok
05:11:29.0294 4064 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
05:11:29.0310 4064 WinRM - ok
05:11:29.0357 4064 [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
05:11:29.0357 4064 WinUsb - ok
05:11:29.0404 4064 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
05:11:29.0435 4064 Wlansvc - ok
05:11:29.0482 4064 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
05:11:29.0528 4064 wlcrasvc - ok
05:11:29.0669 4064 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
05:11:29.0716 4064 wlidsvc - ok
05:11:29.0731 4064 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
05:11:29.0731 4064 WmiAcpi - ok
05:11:29.0778 4064 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
05:11:29.0778 4064 wmiApSrv - ok
05:11:29.0809 4064 WMPNetworkSvc - ok
05:11:29.0840 4064 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
05:11:29.0840 4064 WPCSvc - ok
05:11:29.0856 4064 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
05:11:29.0872 4064 WPDBusEnum - ok
05:11:29.0903 4064 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
05:11:29.0903 4064 ws2ifsl - ok
05:11:29.0903 4064 WSearch - ok
05:11:29.0934 4064 [ C63907207B837A5C05CF6D1606AA0008 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
05:11:29.0934 4064 WudfPf - ok
05:11:29.0950 4064 [ D885A873D733020F8B9B9FF4B1666158 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
05:11:29.0950 4064 WUDFRd - ok
05:11:29.0981 4064 [ 27B9BEE5AAC00139E3A3AF5D6227A0DC ] wudfsvc C:\Windows\System32\WUDFSvc.dll
05:11:29.0981 4064 wudfsvc - ok
05:11:29.0996 4064 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
05:11:30.0012 4064 WwanSvc - ok
05:11:30.0106 4064 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
05:11:30.0121 4064 YahooAUService - ok
05:11:30.0152 4064 ================ Scan global ===============================
05:11:30.0184 4064 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
05:11:30.0230 4064 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
05:11:30.0262 4064 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
05:11:30.0293 4064 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
05:11:30.0355 4064 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
05:11:30.0355 4064 [Global] - ok
05:11:30.0355 4064 ================ Scan MBR ==================================
05:11:30.0371 4064 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
05:11:30.0714 4064 \Device\Harddisk0\DR0 - ok
05:11:30.0714 4064 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
05:11:30.0714 4064 \Device\Harddisk1\DR1 - ok
05:11:30.0714 4064 ================ Scan VBR ==================================
05:11:30.0730 4064 [ 52F15AA795808D160E064CBA8459E4FF ] \Device\Harddisk0\DR0\Partition1
05:11:30.0730 4064 \Device\Harddisk0\DR0\Partition1 - ok
05:11:30.0745 4064 [ FC0C0B61E609C2299173874299BAA568 ] \Device\Harddisk0\DR0\Partition2
05:11:30.0745 4064 \Device\Harddisk0\DR0\Partition2 - ok
05:11:30.0745 4064 [ A7DEB1C04CA082D91A2B87A0C4959728 ] \Device\Harddisk1\DR1\Partition1
05:11:30.0745 4064 \Device\Harddisk1\DR1\Partition1 - ok
05:11:30.0745 4064 ============================================================
05:11:30.0745 4064 Scan finished
05:11:30.0745 4064 ============================================================
05:11:30.0761 5000 Detected object count: 0
05:11:30.0761 5000 Actual detected object count: 0
05:12:12.0382 5200 ============================================================
05:12:12.0382 5200 Scan started
05:12:12.0382 5200 Mode: Manual; TDLFS;
05:12:12.0382 5200 ============================================================
05:12:12.0928 5200 ================ Scan system memory ========================
05:12:12.0928 5200 System memory - ok
05:12:12.0928 5200 ================ Scan services =============================
05:12:13.0068 5200 [ 969C91060CBB5D17CB8440B5F78B4C51 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
05:12:13.0068 5200 1394ohci - ok
05:12:13.0084 5200 [ 7A505465BBB1EB8B5AD4D76E8749383B ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
05:12:13.0084 5200 Acceler - ok
05:12:13.0099 5200 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
05:12:13.0099 5200 ACPI - ok
05:12:13.0115 5200 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
05:12:13.0115 5200 AcpiPmi - ok
05:12:13.0224 5200 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
05:12:13.0224 5200 AdobeFlashPlayerUpdateSvc - ok
05:12:13.0255 5200 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
05:12:13.0255 5200 adp94xx - ok
05:12:13.0271 5200 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
05:12:13.0271 5200 adpahci - ok
05:12:13.0286 5200 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
05:12:13.0302 5200 adpu320 - ok
05:12:13.0333 5200 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
05:12:13.0349 5200 AeLookupSvc - ok
05:12:13.0396 5200 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
05:12:13.0396 5200 AERTFilters - ok
05:12:13.0442 5200 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
05:12:13.0442 5200 AFD - ok
05:12:13.0458 5200 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
05:12:13.0458 5200 agp440 - ok
05:12:13.0505 5200 [ 95BC4330FA44240CA00C641A73C7E62D ] aksdf C:\Windows\system32\drivers\aksdf.sys
05:12:13.0505 5200 aksdf - ok
05:12:13.0567 5200 [ E2E5CF34D6C56ACE5E986969A3D9B0B5 ] aksfridge C:\Windows\system32\drivers\aksfridge.sys
05:12:13.0567 5200 aksfridge - ok
05:12:13.0583 5200 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
05:12:13.0583 5200 ALG - ok
05:12:13.0598 5200 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
05:12:13.0598 5200 aliide - ok
05:12:13.0614 5200 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
05:12:13.0614 5200 amdide - ok
05:12:13.0630 5200 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
05:12:13.0630 5200 AmdK8 - ok
05:12:13.0661 5200 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
05:12:13.0661 5200 AmdPPM - ok
05:12:13.0676 5200 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
05:12:13.0676 5200 amdsata - ok
05:12:13.0692 5200 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
05:12:13.0692 5200 amdsbs - ok
05:12:13.0708 5200 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
05:12:13.0708 5200 amdxata - ok
05:12:13.0723 5200 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
05:12:13.0723 5200 AppID - ok
05:12:13.0739 5200 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
05:12:13.0739 5200 AppIDSvc - ok
05:12:13.0786 5200 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
05:12:13.0786 5200 Appinfo - ok
05:12:13.0879 5200 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
05:12:13.0879 5200 Apple Mobile Device - ok
05:12:13.0910 5200 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
05:12:13.0910 5200 arc - ok
05:12:13.0926 5200 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
05:12:13.0926 5200 arcsas - ok
05:12:14.0020 5200 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
05:12:14.0020 5200 aspnet_state - ok
05:12:14.0035 5200 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
05:12:14.0035 5200 AsyncMac - ok
05:12:14.0051 5200 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
05:12:14.0051 5200 atapi - ok
05:12:14.0066 5200 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
05:12:14.0082 5200 AudioEndpointBuilder - ok
05:12:14.0098 5200 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
05:12:14.0113 5200 AudioSrv - ok
05:12:14.0144 5200 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
05:12:14.0144 5200 AxInstSV - ok
05:12:14.0160 5200 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
05:12:14.0176 5200 b06bdrv - ok
05:12:14.0191 5200 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
05:12:14.0191 5200 b57nd60a - ok
05:12:14.0207 5200 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
05:12:14.0207 5200 BDESVC - ok
05:12:14.0222 5200 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
05:12:14.0222 5200 Beep - ok
05:12:14.0238 5200 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
05:12:14.0238 5200 blbdrive - ok
05:12:14.0285 5200 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
05:12:14.0285 5200 Bonjour Service - ok
05:12:14.0300 5200 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
05:12:14.0300 5200 bowser - ok
05:12:14.0316 5200 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
05:12:14.0316 5200 BrFiltLo - ok
05:12:14.0332 5200 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
05:12:14.0332 5200 BrFiltUp - ok
05:12:14.0363 5200 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
05:12:14.0378 5200 Browser - ok
05:12:14.0394 5200 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
05:12:14.0394 5200 Brserid - ok
05:12:14.0410 5200 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
05:12:14.0410 5200 BrSerWdm - ok
05:12:14.0425 5200 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
05:12:14.0425 5200 BrUsbMdm - ok
05:12:14.0441 5200 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
05:12:14.0441 5200 BrUsbSer - ok
05:12:14.0456 5200 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
05:12:14.0456 5200 BTHMODEM - ok
05:12:14.0488 5200 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
05:12:14.0488 5200 bthserv - ok
05:12:14.0503 5200 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
05:12:14.0503 5200 cdfs - ok
05:12:14.0519 5200 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
05:12:14.0519 5200 cdrom - ok
05:12:14.0534 5200 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
05:12:14.0534 5200 CertPropSvc - ok
05:12:14.0550 5200 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\Windows\system32\drivers\cfwids.sys
05:12:14.0550 5200 cfwids - ok
05:12:14.0566 5200 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
05:12:14.0566 5200 circlass - ok
05:12:14.0597 5200 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
05:12:14.0597 5200 CLFS - ok
05:12:14.0675 5200 [ 730BF325E4CC1E3935B81943AC6DA216 ] CLKMSVC10_9EC60124 c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
05:12:14.0675 5200 CLKMSVC10_9EC60124 - ok
05:12:14.0722 5200 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
05:12:14.0722 5200 clr_optimization_v2.0.50727_32 - ok
05:12:14.0753 5200 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
05:12:14.0753 5200 clr_optimization_v2.0.50727_64 - ok
05:12:14.0831 5200 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:12:14.0831 5200 clr_optimization_v4.0.30319_32 - ok
05:12:14.0862 5200 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
05:12:14.0878 5200 clr_optimization_v4.0.30319_64 - ok
05:12:14.0893 5200 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
05:12:14.0893 5200 CmBatt - ok
05:12:14.0909 5200 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
05:12:14.0909 5200 cmdide - ok
05:12:14.0956 5200 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
05:12:14.0956 5200 CNG - ok
05:12:14.0987 5200 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
05:12:14.0987 5200 Compbatt - ok
05:12:15.0018 5200 [ 11CC395D18FF03E95E8C6A149C84C91B ] CompFilter64 C:\Windows\system32\DRIVERS\lvbflt64.sys
05:12:15.0018 5200 CompFilter64 - ok
05:12:15.0034 5200 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
05:12:15.0034 5200 CompositeBus - ok
05:12:15.0049 5200 COMSysApp - ok
05:12:15.0049 5200 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
05:12:15.0065 5200 crcdisk - ok
05:12:15.0096 5200 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
05:12:15.0096 5200 CryptSvc - ok
05:12:15.0112 5200 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
05:12:15.0112 5200 CtClsFlt - ok
05:12:15.0174 5200 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
05:12:15.0174 5200 DcomLaunch - ok
05:12:15.0221 5200 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
05:12:15.0221 5200 defragsvc - ok
05:12:15.0236 5200 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
05:12:15.0236 5200 DfsC - ok
05:12:15.0268 5200 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
05:12:15.0268 5200 Dhcp - ok
05:12:15.0283 5200 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
05:12:15.0283 5200 discache - ok
05:12:15.0299 5200 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
05:12:15.0299 5200 Disk - ok
05:12:15.0314 5200 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
05:12:15.0314 5200 Dnscache - ok
05:12:15.0330 5200 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
05:12:15.0330 5200 dot3svc - ok
05:12:15.0377 5200 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
05:12:15.0392 5200 DPS - ok
05:12:15.0408 5200 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
05:12:15.0408 5200 drmkaud - ok
05:12:15.0439 5200 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
05:12:15.0455 5200 DXGKrnl - ok
05:12:15.0470 5200 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
05:12:15.0470 5200 EapHost - ok
05:12:15.0548 5200 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
05:12:15.0564 5200 ebdrv - ok
05:12:15.0611 5200 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
05:12:15.0611 5200 EFS - ok
05:12:15.0673 5200 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
05:12:15.0673 5200 ehRecvr - ok
05:12:15.0689 5200 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
05:12:15.0689 5200 ehSched - ok
05:12:15.0720 5200 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
05:12:15.0720 5200 elxstor - ok
05:12:15.0736 5200 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
05:12:15.0736 5200 ErrDev - ok
05:12:15.0782 5200 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
05:12:15.0782 5200 EventSystem - ok
05:12:15.0876 5200 [ B56D9602DB5FE1C116B1CA5EFD8E2E50 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
05:12:15.0892 5200 EvtEng - ok
05:12:15.0923 5200 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
05:12:15.0923 5200 exfat - ok
05:12:15.0954 5200 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
05:12:15.0954 5200 fastfat - ok
05:12:15.0985 5200 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
05:12:15.0985 5200 Fax - ok
05:12:16.0016 5200 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
05:12:16.0016 5200 fdc - ok
05:12:16.0016 5200 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
05:12:16.0016 5200 fdPHost - ok
05:12:16.0048 5200 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
05:12:16.0048 5200 FDResPub - ok
05:12:16.0063 5200 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
05:12:16.0063 5200 FileInfo - ok
05:12:16.0079 5200 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
05:12:16.0079 5200 Filetrace - ok
05:12:16.0094 5200 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
05:12:16.0094 5200 flpydisk - ok
05:12:16.0110 5200 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
05:12:16.0110 5200 FltMgr - ok
05:12:16.0141 5200 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
05:12:16.0157 5200 FontCache - ok
05:12:16.0219 5200 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
05:12:16.0219 5200 FontCache3.0.0.0 - ok
05:12:16.0219 5200 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
05:12:16.0219 5200 FsDepends - ok
05:12:16.0266 5200 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
05:12:16.0266 5200 Fs_Rec - ok
05:12:16.0282 5200 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
05:12:16.0282 5200 fvevol - ok
05:12:16.0313 5200 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
05:12:16.0313 5200 gagp30kx - ok
05:12:16.0328 5200 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
05:12:16.0328 5200 GEARAspiWDM - ok
05:12:16.0391 5200 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
05:12:16.0391 5200 GoToAssist - ok
05:12:16.0453 5200 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
05:12:16.0469 5200 gpsvc - ok
05:12:16.0484 5200 [ 78FAD9117E4527F2CA82259DA10F40BD ] hardlock C:\Windows\system32\drivers\hardlock.sys
05:12:16.0484 5200 hardlock - ok
05:12:16.0484 5200 hasplms - ok
05:12:16.0516 5200 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
05:12:16.0516 5200 hcw85cir - ok
05:12:16.0531 5200 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
05:12:16.0531 5200 HDAudBus - ok
05:12:16.0531 5200 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
05:12:16.0531 5200 HECIx64 - ok
05:12:16.0547 5200 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
05:12:16.0547 5200 HidBatt - ok
05:12:16.0562 5200 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
05:12:16.0562 5200 HidBth - ok
05:12:16.0578 5200 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
05:12:16.0578 5200 HidIr - ok
05:12:16.0594 5200 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
05:12:16.0609 5200 hidserv - ok
05:12:16.0625 5200 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
05:12:16.0625 5200 HidUsb - ok
05:12:16.0656 5200 [ FD1837DEE0A1D7F180D7B301C0656511 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
05:12:16.0656 5200 HiPatchService - ok
05:12:16.0687 5200 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
05:12:16.0687 5200 hkmsvc - ok
05:12:16.0703 5200 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
05:12:16.0718 5200 HomeGroupListener - ok
05:12:16.0750 5200 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
05:12:16.0765 5200 HomeGroupProvider - ok
05:12:16.0781 5200 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
05:12:16.0781 5200 HpSAMD - ok
05:12:16.0812 5200 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
05:12:16.0828 5200 HTTP - ok
05:12:16.0843 5200 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
05:12:16.0843 5200 hwpolicy - ok
05:12:16.0859 5200 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
05:12:16.0859 5200 i8042prt - ok
05:12:16.0874 5200 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
05:12:16.0874 5200 iaStor - ok
05:12:16.0937 5200 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
05:12:16.0937 5200 IAStorDataMgrSvc - ok
05:12:16.0968 5200 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
05:12:16.0968 5200 iaStorV - ok
05:12:17.0030 5200 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
05:12:17.0030 5200 idsvc - ok
05:12:17.0233 5200 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
05:12:17.0280 5200 igfx - ok
05:12:17.0280 5200 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
05:12:17.0280 5200 iirsp - ok
05:12:17.0327 5200 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
05:12:17.0327 5200 IKEEXT - ok
05:12:17.0342 5200 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
05:12:17.0342 5200 Impcd - ok
05:12:17.0420 5200 [ F61D360072B67F5667765A2534B672D6 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
05:12:17.0436 5200 IntcAzAudAddService - ok
05:12:17.0452 5200 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
05:12:17.0452 5200 IntcDAud - ok
05:12:17.0467 5200 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
05:12:17.0467 5200 intelide - ok
05:12:17.0498 5200 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
05:12:17.0498 5200 intelppm - ok
05:12:17.0514 5200 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
05:12:17.0514 5200 IPBusEnum - ok
05:12:17.0530 5200 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
05:12:17.0530 5200 IpFilterDriver - ok
05:12:17.0545 5200 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
05:12:17.0545 5200 IPMIDRV - ok
05:12:17.0576 5200 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
05:12:17.0576 5200 IPNAT - ok
05:12:17.0623 5200 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
05:12:17.0623 5200 iPod Service - ok
05:12:17.0639 5200 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
05:12:17.0639 5200 IRENUM - ok
05:12:17.0654 5200 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
05:12:17.0654 5200 isapnp - ok
05:12:17.0670 5200 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
05:12:17.0670 5200 iScsiPrt - ok
05:12:17.0686 5200 [ 43F319DE026E04B9CF9219A14BF24FE8 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
05:12:17.0686 5200 JMCR - ok
05:12:17.0701 5200 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
05:12:17.0701 5200 kbdclass - ok
05:12:17.0717 5200 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
05:12:17.0717 5200 kbdhid - ok
05:12:17.0732 5200 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
05:12:17.0732 5200 KeyIso - ok
05:12:17.0779 5200 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
05:12:17.0779 5200 KSecDD - ok
05:12:17.0795 5200 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
05:12:17.0795 5200 KSecPkg - ok
05:12:17.0810 5200 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
05:12:17.0810 5200 ksthunk - ok
05:12:17.0842 5200 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
05:12:17.0857 5200 KtmRm - ok
05:12:17.0904 5200 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
05:12:17.0904 5200 LanmanServer - ok
05:12:17.0935 5200 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
05:12:17.0935 5200 LanmanWorkstation - ok
05:12:17.0951 5200 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
05:12:17.0951 5200 lltdio - ok
05:12:17.0966 5200 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
05:12:17.0966 5200 lltdsvc - ok
05:12:17.0998 5200 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
05:12:17.0998 5200 lmhosts - ok
05:12:18.0044 5200 [ 23D990150D56B670A62B21B9ABDD45EE ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
05:12:18.0060 5200 LMS - ok
05:12:18.0076 5200 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
05:12:18.0076 5200 LSI_FC - ok
05:12:18.0091 5200 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
05:12:18.0091 5200 LSI_SAS - ok
05:12:18.0107 5200 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
05:12:18.0107 5200 LSI_SAS2 - ok
05:12:18.0122 5200 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
05:12:18.0122 5200 LSI_SCSI - ok
05:12:18.0138 5200 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
05:12:18.0138 5200 luafv - ok
05:12:18.0169 5200 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
05:12:18.0169 5200 LVRS64 - ok
05:12:18.0278 5200 [ EDF73BFA1BD24D74D1D64DC0ED28A7CD ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
05:12:18.0294 5200 LVUVC64 - ok
05:12:18.0372 5200 [ B6BD99C3E23507A732C474CAA620C0D7 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
05:12:18.0388 5200 McAWFwk - ok
05:12:18.0450 5200 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
05:12:18.0450 5200 McMPFSvc - ok
05:12:18.0466 5200 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:12:18.0466 5200 mcmscsvc - ok
05:12:18.0481 5200 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:12:18.0481 5200 McNaiAnn - ok
05:12:18.0497 5200 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:12:18.0497 5200 McNASvc - ok
05:12:18.0590 5200 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
05:12:18.0590 5200 McODS - ok
05:12:18.0606 5200 [ ACB01BF1A905356AB7F978C7FE852209 ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:12:18.0606 5200 McOobeSv - ok
05:12:18.0622 5200 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
05:12:18.0622 5200 McProxy - ok
05:12:18.0684 5200 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
05:12:18.0684 5200 McShield - ok
05:12:18.0715 5200 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
05:12:18.0715 5200 Mcx2Svc - ok
05:12:18.0731 5200 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
05:12:18.0731 5200 megasas - ok
05:12:18.0746 5200 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
05:12:18.0746 5200 MegaSR - ok
05:12:18.0778 5200 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
05:12:18.0778 5200 mfeapfk - ok
05:12:18.0809 5200 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
05:12:18.0809 5200 mfeavfk - ok
05:12:18.0824 5200 mfeavfk01 - ok
05:12:18.0840 5200 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
05:12:18.0840 5200 mfefire - ok
05:12:18.0871 5200 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
05:12:18.0887 5200 mfefirek - ok
05:12:18.0902 5200 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
05:12:18.0918 5200 mfehidk - ok
05:12:18.0918 5200 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
05:12:18.0918 5200 mfenlfk - ok
05:12:18.0934 5200 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
05:12:18.0934 5200 mferkdet - ok
05:12:18.0949 5200 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
05:12:18.0949 5200 mfevtp - ok
05:12:18.0965 5200 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
05:12:18.0980 5200 mfewfpk - ok
05:12:19.0043 5200 Microsoft SharePoint Workspace Audit Service - ok
05:12:19.0074 5200 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
05:12:19.0074 5200 MMCSS - ok
05:12:19.0105 5200 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
05:12:19.0105 5200 Modem - ok
05:12:19.0121 5200 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
05:12:19.0121 5200 monitor - ok
05:12:19.0136 5200 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
05:12:19.0136 5200 mouclass - ok
05:12:19.0152 5200 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
05:12:19.0152 5200 mouhid - ok
05:12:19.0168 5200 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
05:12:19.0168 5200 mountmgr - ok
05:12:19.0199 5200 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
05:12:19.0199 5200 MozillaMaintenance - ok
05:12:19.0214 5200 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
05:12:19.0214 5200 mpio - ok
05:12:19.0230 5200 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
05:12:19.0230 5200 mpsdrv - ok
05:12:19.0246 5200 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
05:12:19.0261 5200 MRxDAV - ok
05:12:19.0277 5200 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
05:12:19.0277 5200 mrxsmb - ok
05:12:19.0324 5200 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
05:12:19.0324 5200 mrxsmb10 - ok
05:12:19.0339 5200 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
05:12:19.0339 5200 mrxsmb20 - ok
05:12:19.0386 5200 [ BCCF16D5FB1109162380E3E28DC9E4E5 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
05:12:19.0386 5200 msahci - ok
05:12:19.0402 5200 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
05:12:19.0402 5200 msdsm - ok
05:12:19.0433 5200 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
05:12:19.0433 5200 MSDTC - ok
05:12:19.0464 5200 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
05:12:19.0464 5200 Msfs - ok
05:12:19.0480 5200 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
05:12:19.0480 5200 mshidkmdf - ok
05:12:19.0480 5200 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
05:12:19.0495 5200 msisadrv - ok
05:12:19.0511 5200 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
05:12:19.0511 5200 MSiSCSI - ok
05:12:19.0526 5200 msiserver - ok
05:12:19.0542 5200 [ ACB01BF1A905356AB7F978C7FE852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
05:12:19.0542 5200 MSK80Service - ok
05:12:19.0558 5200 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
05:12:19.0558 5200 MSKSSRV - ok
05:12:19.0573 5200 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
05:12:19.0573 5200 MSPCLOCK - ok
05:12:19.0573 5200 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
05:12:19.0589 5200 MSPQM - ok
05:12:19.0604 5200 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
05:12:19.0604 5200 MsRPC - ok
05:12:19.0604 5200 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
05:12:19.0604 5200 mssmbios - ok
05:12:19.0620 5200 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
05:12:19.0620 5200 MSTEE - ok
05:12:19.0636 5200 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
05:12:19.0636 5200 MTConfig - ok
05:12:19.0667 5200 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
05:12:19.0667 5200 Mup - ok
05:12:19.0698 5200 [ A9BC2302FBDF52C8AF4E2FC966288D21 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
05:12:19.0698 5200 MyWiFiDHCPDNS - ok
05:12:19.0745 5200 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
05:12:19.0745 5200 napagent - ok
05:12:19.0760 5200 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
05:12:19.0776 5200 NativeWifiP - ok
05:12:19.0792 5200 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
05:12:19.0807 5200 NDIS - ok
05:12:19.0838 5200 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
05:12:19.0838 5200 NdisCap - ok
05:12:19.0854 5200 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
05:12:19.0854 5200 NdisTapi - ok
05:12:19.0870 5200 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
05:12:19.0870 5200 Ndisuio - ok
05:12:19.0885 5200 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
05:12:19.0885 5200 NdisWan - ok
05:12:19.0901 5200 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
05:12:19.0901 5200 NDProxy - ok
05:12:19.0901 5200 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
05:12:19.0901 5200 NetBIOS - ok
05:12:19.0916 5200 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
05:12:19.0916 5200 NetBT - ok
05:12:19.0932 5200 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
05:12:19.0932 5200 Netlogon - ok
05:12:19.0948 5200 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
05:12:19.0963 5200 Netman - ok
05:12:19.0994 5200 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:12:19.0994 5200 NetMsmqActivator - ok
05:12:20.0010 5200 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:12:20.0010 5200 NetPipeActivator - ok
05:12:20.0041 5200 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
05:12:20.0041 5200 netprofm - ok
05:12:20.0072 5200 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:12:20.0072 5200 NetTcpActivator - ok
05:12:20.0072 5200 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:12:20.0072 5200 NetTcpPortSharing - ok
05:12:20.0213 5200 [ 18555F48844C2861D9DCE8F2B7223AE5 ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
05:12:20.0260 5200 NETw5s64 - ok
05:12:20.0260 5200 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
05:12:20.0260 5200 nfrd960 - ok
05:12:20.0291 5200 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
05:12:20.0291 5200 NlaSvc - ok
05:12:20.0416 5200 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
05:12:20.0431 5200 NOBU - ok
05:12:20.0447 5200 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
05:12:20.0462 5200 Npfs - ok
05:12:20.0478 5200 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
05:12:20.0478 5200 nsi - ok
05:12:20.0494 5200 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
05:12:20.0494 5200 nsiproxy - ok
05:12:20.0525 5200 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
05:12:20.0540 5200 Ntfs - ok
05:12:20.0556 5200 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
05:12:20.0556 5200 Null - ok
05:12:20.0572 5200 [ 285ACEC1B13A15BA520AAE06BACB9CFF ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
05:12:20.0572 5200 nusb3hub - ok
05:12:20.0603 5200 [ F6D625FF7B56BB6EA063F0D3A5BBC996 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
05:12:20.0603 5200 nusb3xhc - ok
05:12:20.0806 5200 [ 536D174CB5CD021906E6035F40993493 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
05:12:20.0868 5200 nvlddmkm - ok
05:12:20.0884 5200 [ 1CA55B50DBF7559ECC4F0F036EDC29EC ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
05:12:20.0899 5200 nvpciflt - ok
05:12:20.0915 5200 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
05:12:20.0915 5200 nvraid - ok
05:12:20.0930 5200 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
05:12:20.0930 5200 nvstor - ok
05:12:20.0977 5200 [ 2C800281A92D5AB221B54DF2D8B1A27D ] nvsvc C:\Windows\system32\nvvsvc.exe
05:12:20.0977 5200 nvsvc - ok
05:12:21.0071 5200 [ 938CAF13EA28D7CF4A30826274944B23 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
05:12:21.0086 5200 nvUpdatusService - ok
05:12:21.0118 5200 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
05:12:21.0118 5200 nv_agp - ok
05:12:21.0133 5200 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
05:12:21.0133 5200 ohci1394 - ok
05:12:21.0211 5200 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
05:12:21.0211 5200 ose - ok
05:12:21.0352 5200 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
05:12:21.0367 5200 osppsvc - ok
05:12:21.0383 5200 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
05:12:21.0398 5200 p2pimsvc - ok
05:12:21.0414 5200 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
05:12:21.0414 5200 p2psvc - ok
05:12:21.0445 5200 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
05:12:21.0445 5200 Parport - ok
05:12:21.0476 5200 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
05:12:21.0492 5200 partmgr - ok
05:12:21.0492 5200 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
05:12:21.0508 5200 PcaSvc - ok
05:12:21.0539 5200 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
05:12:21.0539 5200 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
05:12:21.0586 5200 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
05:12:21.0586 5200 pci - ok
05:12:21.0601 5200 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
05:12:21.0601 5200 pciide - ok
05:12:21.0617 5200 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
05:12:21.0617 5200 pcmcia - ok
05:12:21.0648 5200 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
05:12:21.0648 5200 pcw - ok
05:12:21.0664 5200 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
05:12:21.0679 5200 PEAUTH - ok
05:12:21.0757 5200 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
05:12:21.0757 5200 PerfHost - ok
05:12:21.0820 5200 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
05:12:21.0835 5200 pla - ok
05:12:21.0866 5200 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
05:12:21.0882 5200 PlugPlay - ok
05:12:21.0898 5200 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
05:12:21.0898 5200 PNRPAutoReg - ok
05:12:21.0913 5200 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
05:12:21.0929 5200 PNRPsvc - ok
05:12:21.0960 5200 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
05:12:21.0976 5200 PolicyAgent - ok
05:12:21.0991 5200 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
05:12:21.0991 5200 Power - ok
05:12:22.0038 5200 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
05:12:22.0038 5200 PptpMiniport - ok
05:12:22.0054 5200 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
05:12:22.0054 5200 Processor - ok
05:12:22.0100 5200 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
05:12:22.0100 5200 ProfSvc - ok
05:12:22.0147 5200 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
05:12:22.0147 5200 ProtectedStorage - ok
05:12:22.0147 5200 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
05:12:22.0163 5200 Psched - ok
05:12:22.0163 5200 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
05:12:22.0163 5200 PxHlpa64 - ok
05:12:22.0178 5200 [ 0928BD20273625622722FE1DE5BBDE57 ] qicflt C:\Windows\system32\DRIVERS\qicflt.sys
05:12:22.0178 5200 qicflt - ok
05:12:22.0225 5200 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
05:12:22.0241 5200 ql2300 - ok
05:12:22.0272 5200 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
05:12:22.0272 5200 ql40xx - ok
05:12:22.0288 5200 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
05:12:22.0303 5200 QWAVE - ok
05:12:22.0303 5200 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
05:12:22.0303 5200 QWAVEdrv - ok
05:12:22.0334 5200 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
05:12:22.0334 5200 RasAcd - ok
05:12:22.0366 5200 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
05:12:22.0366 5200 RasAgileVpn - ok
05:12:22.0381 5200 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
05:12:22.0381 5200 RasAuto - ok
05:12:22.0412 5200 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
05:12:22.0412 5200 Rasl2tp - ok
05:12:22.0444 5200 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
05:12:22.0459 5200 RasMan - ok
05:12:22.0475 5200 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
05:12:22.0475 5200 RasPppoe - ok
05:12:22.0490 5200 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
05:12:22.0490 5200 RasSstp - ok
05:12:22.0506 5200 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
05:12:22.0522 5200 rdbss - ok
05:12:22.0522 5200 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
05:12:22.0522 5200 rdpbus - ok
05:12:22.0537 5200 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
05:12:22.0537 5200 RDPCDD - ok
05:12:22.0553 5200 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
05:12:22.0553 5200 RDPENCDD - ok
05:12:22.0568 5200 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
05:12:22.0568 5200 RDPREFMP - ok
05:12:22.0600 5200 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
05:12:22.0600 5200 RDPWD - ok
05:12:22.0631 5200 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
05:12:22.0631 5200 rdyboost - ok
05:12:22.0693 5200 [ 0AA473966357C4A41B5EB19649EB6E5E ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
05:12:22.0709 5200 RegSrvc - ok
05:12:22.0724 5200 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
05:12:22.0740 5200 RemoteAccess - ok
05:12:22.0756 5200 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
05:12:22.0771 5200 RemoteRegistry - ok
05:12:22.0865 5200 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
05:12:22.0880 5200 RoxMediaDB12OEM - ok
05:12:22.0896 5200 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
05:12:22.0912 5200 RoxWatch12 - ok
05:12:22.0927 5200 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
05:12:22.0927 5200 RpcEptMapper - ok
05:12:22.0943 5200 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
05:12:22.0943 5200 RpcLocator - ok
05:12:23.0005 5200 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
05:12:23.0005 5200 RpcSs - ok
05:12:23.0021 5200 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
05:12:23.0021 5200 rspndr - ok
05:12:23.0036 5200 [ 4B42BC58294E83A6A92EC8B88C14C4A3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
05:12:23.0036 5200 RTL8167 - ok
05:12:23.0052 5200 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
05:12:23.0052 5200 SamSs - ok
05:12:23.0083 5200 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
05:12:23.0083 5200 sbp2port - ok
05:12:23.0099 5200 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
05:12:23.0099 5200 SCardSvr - ok
05:12:23.0114 5200 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
05:12:23.0114 5200 scfilter - ok
05:12:23.0161 5200 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
05:12:23.0177 5200 Schedule - ok
05:12:23.0208 5200 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
05:12:23.0208 5200 SCPolicySvc - ok
05:12:23.0224 5200 [ 84E00908975FAF79E91282ED8FB88C2F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
05:12:23.0224 5200 sdbus - ok
05:12:23.0255 5200 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
05:12:23.0255 5200 SDRSVC - ok
05:12:23.0270 5200 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
05:12:23.0270 5200 secdrv - ok
05:12:23.0317 5200 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
05:12:23.0317 5200 seclogon - ok
05:12:23.0333 5200 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
05:12:23.0333 5200 SENS - ok
05:12:23.0348 5200 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
05:12:23.0348 5200 SensrSvc - ok
05:12:23.0364 5200 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
05:12:23.0364 5200 Serenum - ok
05:12:23.0380 5200 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
05:12:23.0380 5200 Serial - ok
05:12:23.0395 5200 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
05:12:23.0395 5200 sermouse - ok
05:12:23.0411 5200 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
05:12:23.0411 5200 SessionEnv - ok
05:12:23.0426 5200 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
05:12:23.0426 5200 sffdisk - ok
05:12:23.0442 5200 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
05:12:23.0442 5200 sffp_mmc - ok
05:12:23.0458 5200 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
05:12:23.0458 5200 sffp_sd - ok
05:12:23.0473 5200 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
05:12:23.0473 5200 sfloppy - ok
05:12:23.0536 5200 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
05:12:23.0551 5200 SftService - ok
05:12:23.0582 5200 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
05:12:23.0598 5200 ShellHWDetection - ok
05:12:23.0614 5200 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
05:12:23.0614 5200 SiSRaid2 - ok
05:12:23.0629 5200 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
05:12:23.0629 5200 SiSRaid4 - ok
05:12:23.0801 5200 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
05:12:23.0816 5200 Skype C2C Service - ok
05:12:23.0848 5200 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
05:12:23.0848 5200 SkypeUpdate - ok
05:12:23.0863 5200 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
05:12:23.0863 5200 Smb - ok
05:12:23.0894 5200 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
05:12:23.0894 5200 SNMPTRAP - ok
05:12:23.0894 5200 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
05:12:23.0894 5200 spldr - ok
05:12:23.0957 5200 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
05:12:23.0972 5200 Spooler - ok
05:12:24.0066 5200 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
05:12:24.0082 5200 sppsvc - ok
05:12:24.0097 5200 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
05:12:24.0113 5200 sppuinotify - ok
05:12:24.0144 5200 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
05:12:24.0160 5200 srv - ok
05:12:24.0175 5200 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
05:12:24.0175 5200 srv2 - ok
05:12:24.0206 5200 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
05:12:24.0206 5200 srvnet - ok
05:12:24.0222 5200 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
05:12:24.0222 5200 SSDPSRV - ok
05:12:24.0238 5200 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
05:12:24.0238 5200 SstpSvc - ok
05:12:24.0238 5200 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
05:12:24.0238 5200 stdcfltn - ok
05:12:24.0269 5200 Steam Client Service - ok
05:12:24.0347 5200 [ 66F60D8A26B665EC9D8D2F07ADDEF22D ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
05:12:24.0347 5200 Stereo Service - ok
05:12:24.0362 5200 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
05:12:24.0362 5200 stexstor - ok
05:12:24.0394 5200 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
05:12:24.0394 5200 stisvc - ok
05:12:24.0425 5200 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
05:12:24.0425 5200 stllssvr - ok
05:12:24.0440 5200 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
05:12:24.0440 5200 swenum - ok
05:12:24.0456 5200 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
05:12:24.0456 5200 swprv - ok
05:12:24.0487 5200 [ 36F506C894E1EA59C65FAF6398BDF49A ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
05:12:24.0503 5200 SynTP - ok
05:12:24.0550 5200 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
05:12:24.0565 5200 SysMain - ok
05:12:24.0581 5200 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
05:12:24.0581 5200 TabletInputService - ok
05:12:24.0596 5200 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
05:12:24.0596 5200 TapiSrv - ok
05:12:24.0612 5200 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
05:12:24.0612 5200 TBS - ok
05:12:24.0674 5200 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
05:12:24.0690 5200 Tcpip - ok
05:12:24.0737 5200 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
05:12:24.0752 5200 TCPIP6 - ok
05:12:24.0752 5200 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
05:12:24.0768 5200 tcpipreg - ok
05:12:24.0784 5200 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
05:12:24.0784 5200 TDPIPE - ok
05:12:24.0815 5200 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
05:12:24.0815 5200 TDTCP - ok
05:12:24.0830 5200 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
05:12:24.0830 5200 tdx - ok
05:12:24.0846 5200 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
05:12:24.0846 5200 TermDD - ok
05:12:24.0877 5200 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
05:12:24.0877 5200 TermService - ok
05:12:24.0893 5200 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
05:12:24.0893 5200 Themes - ok
05:12:24.0940 5200 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
05:12:24.0940 5200 THREADORDER - ok
05:12:24.0971 5200 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
05:12:24.0971 5200 TrkWks - ok
05:12:25.0018 5200 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
05:12:25.0018 5200 TrustedInstaller - ok
05:12:25.0033 5200 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
05:12:25.0049 5200 tssecsrv - ok
05:12:25.0049 5200 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
05:12:25.0049 5200 tunnel - ok
05:12:25.0064 5200 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
05:12:25.0064 5200 TurboB - ok
05:12:25.0127 5200 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
05:12:25.0127 5200 TurboBoost - ok
05:12:25.0142 5200 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
05:12:25.0142 5200 uagp35 - ok
05:12:25.0174 5200 [ 31BA4A33AFAB6A69EA092B18017F737F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
05:12:25.0174 5200 udfs - ok
05:12:25.0205 5200 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
05:12:25.0205 5200 UI0Detect - ok
05:12:25.0220 5200 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
05:12:25.0220 5200 uliagpkx - ok
05:12:25.0236 5200 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
05:12:25.0252 5200 umbus - ok
05:12:25.0267 5200 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
05:12:25.0267 5200 UmPass - ok
05:12:25.0298 5200 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
05:12:25.0298 5200 UMVPFSrv - ok
05:12:25.0439 5200 [ CBDEE152D73200EE49031A26310B9D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
05:12:25.0470 5200 UNS - ok
05:12:25.0517 5200 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
05:12:25.0517 5200 upnphost - ok
05:12:25.0564 5200 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
05:12:25.0564 5200 USBAAPL64 - ok
05:12:25.0579 5200 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
05:12:25.0579 5200 usbaudio - ok
05:12:25.0595 5200 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
05:12:25.0595 5200 usbccgp - ok
05:12:25.0626 5200 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
05:12:25.0626 5200 usbcir - ok
05:12:25.0657 5200 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\drivers\usbehci.sys
05:12:25.0673 5200 usbehci - ok
05:12:25.0688 5200 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
05:12:25.0688 5200 usbhub - ok
05:12:25.0704 5200 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
05:12:25.0704 5200 usbohci - ok
05:12:25.0720 5200 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
05:12:25.0720 5200 usbprint - ok
05:12:25.0735 5200 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
05:12:25.0735 5200 USBSTOR - ok
05:12:25.0751 5200 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
05:12:25.0751 5200 usbuhci - ok
05:12:25.0766 5200 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
05:12:25.0766 5200 usbvideo - ok
05:12:25.0782 5200 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
05:12:25.0782 5200 UxSms - ok
05:12:25.0798 5200 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
05:12:25.0798 5200 VaultSvc - ok
05:12:25.0813 5200 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
05:12:25.0813 5200 vdrvroot - ok
05:12:25.0860 5200 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
05:12:25.0876 5200 vds - ok
05:12:25.0891 5200 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
05:12:25.0891 5200 vga - ok
05:12:25.0938 5200 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
05:12:25.0938 5200 VgaSave - ok
05:12:25.0954 5200 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
05:12:25.0954 5200 vhdmp - ok
05:12:25.0969 5200 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
05:12:25.0969 5200 viaide - ok
05:12:25.0985 5200 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
05:12:25.0985 5200 volmgr - ok
05:12:26.0000 5200 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
05:12:26.0016 5200 volmgrx - ok
05:12:26.0032 5200 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
05:12:26.0032 5200 volsnap - ok
05:12:26.0047 5200 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
05:12:26.0047 5200 vsmraid - ok
05:12:26.0094 5200 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
05:12:26.0110 5200 VSS - ok
05:12:26.0156 5200 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
05:12:26.0156 5200 vwifibus - ok
05:12:26.0172 5200 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
05:12:26.0172 5200 vwififlt - ok
05:12:26.0188 5200 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
05:12:26.0188 5200 vwifimp - ok
05:12:26.0203 5200 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
05:12:26.0203 5200 W32Time - ok
05:12:26.0234 5200 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
05:12:26.0234 5200 WacomPen - ok
05:12:26.0250 5200 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
05:12:26.0250 5200 WANARP - ok
05:12:26.0250 5200 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
05:12:26.0250 5200 Wanarpv6 - ok
05:12:26.0312 5200 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
05:12:26.0328 5200 WatAdminSvc - ok
05:12:26.0359 5200 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
05:12:26.0390 5200 wbengine - ok
05:12:26.0406 5200 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
05:12:26.0406 5200 WbioSrvc - ok
05:12:26.0422 5200 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
05:12:26.0422 5200 wcncsvc - ok
05:12:26.0437 5200 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
05:12:26.0437 5200 WcsPlugInService - ok
05:12:26.0453 5200 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
05:12:26.0453 5200 Wd - ok
05:12:26.0468 5200 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
05:12:26.0468 5200 WDC_SAM - ok
05:12:26.0500 5200 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
05:12:26.0500 5200 Wdf01000 - ok
05:12:26.0515 5200 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
05:12:26.0515 5200 WdiServiceHost - ok
05:12:26.0531 5200 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
05:12:26.0531 5200 WdiSystemHost - ok
05:12:26.0546 5200 [ FE31110E39A0B11ABAE1BA43A2DC94F9 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
05:12:26.0546 5200 wdkmd - ok
05:12:26.0578 5200 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
05:12:26.0578 5200 WebClient - ok
05:12:26.0593 5200 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
05:12:26.0609 5200 Wecsvc - ok
05:12:26.0640 5200 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
05:12:26.0640 5200 wercplsupport - ok
05:12:26.0656 5200 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
05:12:26.0656 5200 WerSvc - ok
05:12:26.0671 5200 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
05:12:26.0671 5200 WfpLwf - ok
05:12:26.0687 5200 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
05:12:26.0687 5200 WimFltr - ok
05:12:26.0702 5200 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
05:12:26.0702 5200 WIMMount - ok
05:12:26.0718 5200 WinHttpAutoProxySvc - ok
05:12:26.0749 5200 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
05:12:26.0765 5200 Winmgmt - ok
05:12:26.0812 5200 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
05:12:26.0843 5200 WinRM - ok
05:12:26.0874 5200 [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
05:12:26.0874 5200 WinUsb - ok
05:12:26.0890 5200 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
05:12:26.0890 5200 Wlansvc - ok
05:12:26.0921 5200 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
05:12:26.0921 5200 wlcrasvc - ok
05:12:27.0061 5200 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
05:12:27.0077 5200 wlidsvc - ok
05:12:27.0092 5200 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
05:12:27.0092 5200 WmiAcpi - ok
05:12:27.0139 5200 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
05:12:27.0139 5200 wmiApSrv - ok
05:12:27.0170 5200 WMPNetworkSvc - ok
05:12:27.0186 5200 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
05:12:27.0186 5200 WPCSvc - ok
05:12:27.0217 5200 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
05:12:27.0217 5200 WPDBusEnum - ok
05:12:27.0248 5200 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
05:12:27.0248 5200 ws2ifsl - ok
05:12:27.0248 5200 WSearch - ok
05:12:27.0295 5200 [ C63907207B837A5C05CF6D1606AA0008 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
05:12:27.0311 5200 WudfPf - ok
05:12:27.0326 5200 [ D885A873D733020F8B9B9FF4B1666158 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
05:12:27.0326 5200 WUDFRd - ok
05:12:27.0342 5200 [ 27B9BEE5AAC00139E3A3AF5D6227A0DC ] wudfsvc C:\Windows\System32\WUDFSvc.dll
05:12:27.0358 5200 wudfsvc - ok
05:12:27.0373 5200 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
05:12:27.0373 5200 WwanSvc - ok
05:12:27.0467 5200 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
05:12:27.0467 5200 YahooAUService - ok
05:12:27.0482 5200 ================ Scan global ===============================
05:12:27.0545 5200 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
05:12:27.0592 5200 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
05:12:27.0623 5200 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
05:12:27.0654 5200 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
05:12:27.0701 5200 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
05:12:27.0701 5200 [Global] - ok
05:12:27.0701 5200 ================ Scan MBR ==================================
05:12:27.0716 5200 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
05:12:28.0138 5200 \Device\Harddisk0\DR0 - ok
05:12:28.0138 5200 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
05:12:28.0543 5200 \Device\Harddisk1\DR1 - ok
05:12:28.0543 5200 ================ Scan VBR ==================================
05:12:28.0559 5200 [ 52F15AA795808D160E064CBA8459E4FF ] \Device\Harddisk0\DR0\Partition1
05:12:28.0559 5200 \Device\Harddisk0\DR0\Partition1 - ok
05:12:28.0590 5200 [ FC0C0B61E609C2299173874299BAA568 ] \Device\Harddisk0\DR0\Partition2
05:12:28.0606 5200 \Device\Harddisk0\DR0\Partition2 - ok
05:12:28.0606 5200 [ A7DEB1C04CA082D91A2B87A0C4959728 ] \Device\Harddisk1\DR1\Partition1
05:12:28.0606 5200 \Device\Harddisk1\DR1\Partition1 - ok
05:12:28.0606 5200 ============================================================
05:12:28.0606 5200 Scan finished
05:12:28.0606 5200 ============================================================
05:12:28.0621 4048 Detected object count: 0
05:12:28.0621 4048 Actual detected object count: 0


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-01 03:39:03
-----------------------------
03:39:03.101 OS Version: Windows x64 6.1.7600
03:39:03.101 Number of processors: 4 586 0x2505
03:39:03.101 ComputerName: MICHAEL-PC UserName: Michael
03:39:07.500 Initialize success
03:40:48.769 AVAST engine defs: 12083102
03:59:11.667 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
03:59:11.667 Disk 0 Vendor: ST950042 D005 Size: 476940MB BusType: 3
03:59:11.683 Disk 0 MBR read successfully
03:59:11.683 Disk 0 MBR scan
03:59:11.698 Disk 0 Windows VISTA default MBR code
03:59:11.698 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
03:59:11.714 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 80325
03:59:11.730 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461899 MB offset 30800325
03:59:11.776 Disk 0 scanning C:\Windows\system32\drivers
03:59:28.680 Service scanning
03:59:53.936 Modules scanning
03:59:53.936 Disk 0 trace - called modules:
03:59:53.967 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys iaStor.sys hal.dll
03:59:53.983 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006b6d790]
03:59:53.998 3 CLASSPNP.SYS[fffff88001a0143f] -> nt!IofCallDriver -> [0xfffffa80069d5cb0]
03:59:53.998 5 stdcfltn.sys[fffff88001b37c52] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006822050]
03:59:57.571 AVAST engine scan C:\Windows
04:00:00.441 AVAST engine scan C:\Windows\system32
04:02:52.271 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
04:02:55.422 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
04:05:12.882 AVAST engine scan C:\Windows\system32\drivers
04:05:28.194 AVAST engine scan C:\Users\Michael
04:22:39.665 File: C:\Users\Michael\AppData\Local\Temp\9724.tmp **INFECTED** Win32:Alureon-AVK [Trj]
04:22:40.398 File: C:\Users\Michael\AppData\Local\Temp\A90F.tmp **INFECTED** Win32:Alureon-AVK [Trj]
04:27:51.915 File: C:\Users\Michael\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\14933d87-2fb4a13c **INFECTED** Win32:Sirefef-AJZ [Trj]
04:46:42.730 AVAST engine scan C:\ProgramData
05:10:00.793 Scan finished successfully
05:41:43.963 Disk 0 MBR has been saved successfully to "C:\Users\Michael\Desktop\MBR.dat"
05:41:43.973 The log file has been saved successfully to "C:\Users\Michael\Desktop\aswMBR.txt"


ESET results
C:\ProgramData\Microsoft\Windows\DRM\92CF.tmp Win64/Olmarik.AH trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\92D0.tmp Win64/Olmarik.AH trojan cleaned by deleting - quarantined
C:\Users\Michael\AppData\Local\Temp\9724.tmp Win32/Olmarik.AYD trojan cleaned by deleting - quarantined
C:\Users\Michael\AppData\Local\Temp\A90F.tmp Win32/Olmarik.AYD trojan cleaned by deleting - quarantined
C:\Users\Michael\AppData\Local\Temp\YontooSetup-S.exe Win32/Adware.Yontoo application cleaned by deleting - quarantined
C:\Users\Michael\AppData\LocalLow\... a variant of Win32/Kryptik.ALEK trojan cleaned by deleting - quarantined
C:\Users\Michael\Downloads\installe... Win32/Toggle application cleaned by deleting - quarantined
C:\Users\Michael\Downloads\Wolve... multiple threats cleaned by deleting - quarantined
Operating memory a variant of Win32/Sirefef.EZ trojan

((yes, I have the full filenames, I cleaned it up a little to make it more readable when I pasted it here))

Thank you for the help so far.

Edited by Arjay670, 01 September 2012 - 06:28 AM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 AM

Posted 01 September 2012 - 08:35 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 03:11 PM

When you say to scan once in regular mode, do you mean the quick scan that it says is the recommended setting?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 AM

Posted 01 September 2012 - 03:18 PM

Rull a full scan

#7 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 03:39 PM

Thank you

#8 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 07:09 PM

Farbar Service Scanner Version: 06-08-2012
Ran by Michael (administrator) on 01-09-2012 at 20:07:13
Running from "C:\Users\Michael\Desktop"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-15 19:30] - [2011-12-27 23:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-12 05:31] - [2012-03-30 07:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 20:09] - [2009-07-13 21:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 19:36] - [2009-07-13 21:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-06-12 16:37] - [2012-04-24 01:59] - 0182272 ____A (Microsoft Corporation) F02786B66375292E58C8777082D4396D

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


# AdwCleaner v2.000 - Logfile created 09/01/2012 at 20:04:14
# Updated 30/08/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Michael - MICHAEL-PC
# Boot Mode : Normal
# Running from : C:\Users\Michael\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.xpt
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\ProgramData\Tarma Installer

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\SweetIm
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\Software\SweetIm
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-21-3689842529-2528608719-3668920486-1000\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0 (en-US)

Profile name : default
File : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\gh0phfnu.default\prefs.js

C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\gh0phfnu.default\user.js ... Deleted !

Deleted : user_pref("aol_toolbar.surf.date", "2");
Deleted : user_pref("aol_toolbar.surf.lastDate", "28");
Deleted : user_pref("aol_toolbar.surf.lastMonth", "1");
Deleted : user_pref("aol_toolbar.surf.lastYear", "2011");
Deleted : user_pref("aol_toolbar.surf.month", "2");
Deleted : user_pref("aol_toolbar.surf.prevMonth", "0");
Deleted : user_pref("aol_toolbar.surf.total", "2");
Deleted : user_pref("aol_toolbar.surf.week", "2");
Deleted : user_pref("aol_toolbar.surf.year", "2");

-\\ Opera v12.2.1578.0

File : C:\Users\Michael\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [4699 octets] - [01/09/2012 20:04:14]

########## EOF - C:\AdwCleaner[S1].txt - [4759 octets] ##########

#9 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 08:00 PM

Based on similar problems on this forum, ran Services Repair. New FSS log:

Farbar Service Scanner Version: 06-08-2012
Ran by Michael (administrator) on 01-09-2012 at 20:56:14
Running from "C:\Users\Michael\Desktop"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-15 19:30] - [2011-12-27 23:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-12 05:31] - [2012-03-30 07:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 20:09] - [2009-07-13 21:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 19:36] - [2009-07-13 21:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-06-12 16:37] - [2012-04-24 01:59] - 0182272 ____A (Microsoft Corporation) F02786B66375292E58C8777082D4396D

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


Ran rkill based on other advice on this forum. rkill log:

Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/01/2012 08:58:39 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* C:\Users\Michael\Desktop\FSS.exe (PID: 5328) [UP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings.

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\Michael\Desktop\rkill\rkill-09-01-2012-08-58-51.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001
* C:\Windows\assembly\GAC_32\Desktop.ini [ZA File]
* C:\Windows\assembly\GAC_64\Desktop.ini [ZA File]

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

* AppMgmt [Missing Service]
* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]

* atapi => \SystemRoot\system32\DRIVERS\atapi.sys [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/01/2012 08:59:03 PM
Execution time: 0 hours(s), 0 minute(s), and 23 seconds(s)

Edited by Arjay670, 01 September 2012 - 08:04 PM.


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 AM

Posted 01 September 2012 - 08:11 PM

Do not run any tools without my instructions..You didnot post your malwarebytes log yet.

#11 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 08:27 PM

Sorry, missed those.

First Malwarebytes log:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.01.03

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Michael :: MICHAEL-PC [administrator]

Protection: Enabled

9/1/2012 9:54:21 AM
mbam-log-2012-09-01 (09-54-21).txt

Scan type: Full scan (C:\|D:\|Y:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 533366
Time elapsed: 3 hour(s), 5 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|winupd (Trojan.Agent) -> Data: C:\Users\Michael\AppData\Local\Temp:winupd.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Second Malwarebytes log:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.01.03

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Michael :: MICHAEL-PC [administrator]

Protection: Enabled

9/1/2012 4:39:55 PM
mbam-log-2012-09-01 (16-39-55).txt

Scan type: Full scan (C:\|D:\|Y:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 531786
Time elapsed: 2 hour(s), 48 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


minitoolbox log:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Michael (administrator) on 01-09-2012 at 21:24:35
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

0.0.0.0 nw2master.bioware.com

========================= IP Configuration: ================================

Intel® WiFi Link 1000 BGN = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Michael-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 8C-A9-82-1B-78-59
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 8C-A9-82-1B-78-59
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 8C-A9-82-1B-78-58
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::6dc8:fbdf:a606:a56f%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, September 01, 2012 8:54:29 PM
Lease Expires . . . . . . . . . . : Wednesday, October 09, 2148 3:53:11 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 244099458
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-F2-E2-0A-F0-4D-A2-6C-B9-DD
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : CD-DL.TEST
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F0-4D-A2-6C-B9-DD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.CD-DL.TEST:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.colubris.lan:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2cba:1355:b70f:2c33(Preferred)
Link-local IPv6 Address . . . . . : fe80::2cba:1355:b70f:2c33%23(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.2.1

Name: google.com
Addresses: 2001:4860:400a:800::1006
74.125.225.6
74.125.225.7
74.125.225.8
74.125.225.9
74.125.225.14
74.125.225.0
74.125.225.1
74.125.225.2
74.125.225.3
74.125.225.4
74.125.225.5


Pinging google.com [74.125.225.40] with 32 bytes of data:
Reply from 74.125.225.40: bytes=32 time=108ms TTL=56
Reply from 74.125.225.40: bytes=32 time=35ms TTL=56

Ping statistics for 74.125.225.40:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 35ms, Maximum = 108ms, Average = 71ms
Server: UnKnown
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=146ms TTL=48
Reply from 98.139.183.24: bytes=32 time=75ms TTL=48

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 75ms, Maximum = 146ms, Average = 110ms
Server: UnKnown
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 5ms, Average = 4ms
===========================================================================
Interface List
15...8c a9 82 1b 78 59 ......Microsoft Virtual WiFi Miniport Adapter #2
14...8c a9 82 1b 78 59 ......Microsoft Virtual WiFi Miniport Adapter
13...8c a9 82 1b 78 58 ......Intel® WiFi Link 1000 BGN
11...f0 4d a2 6c b9 dd ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
23...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.2 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.2 281
192.168.2.2 255.255.255.255 On-link 192.168.2.2 281
192.168.2.255 255.255.255.255 On-link 192.168.2.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.2 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
23 58 ::/0 On-link
1 306 ::1/128 On-link
23 58 2001::/32 On-link
23 306 2001:0:4137:9e76:2cba:1355:b70f:2c33/128
On-link
13 281 fe80::/64 On-link
23 306 fe80::/64 On-link
23 306 fe80::2cba:1355:b70f:2c33/128
On-link
13 281 fe80::6dc8:fbdf:a606:a56f/128
On-link
1 306 ff00::/8 On-link
23 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/01/2012 09:20:22 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (09/01/2012 10:00:10 AM) (Source: PC-Doctor) (User: )
Description: (844) Asapi: (10:00:10:4970)(844) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (09/01/2012 10:00:10 AM) (Source: PC-Doctor) (User: )
Description: (844) Asapi: (10:00:10:4820)(844) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (09/01/2012 08:52:08 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15600

Error: (09/01/2012 08:52:08 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15600

Error: (09/01/2012 08:52:08 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/01/2012 07:55:33 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (09/01/2012 07:53:44 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (09/01/2012 06:06:36 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (09/01/2012 06:06:36 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.


System errors:
=============
Error: (09/01/2012 08:54:55 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (09/01/2012 08:48:16 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/01/2012 08:48:16 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/01/2012 08:28:07 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/01/2012 08:28:07 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/01/2012 08:06:13 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/01/2012 08:06:13 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/01/2012 08:05:32 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (09/01/2012 08:05:31 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (09/01/2012 08:05:31 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.


Microsoft Office Sessions:
=========================
Error: (09/01/2012 09:20:22 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (09/01/2012 10:00:10 AM) (Source: PC-Doctor)(User: )
Description: (844) Asapi: (10:00:10:4970)(844) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (09/01/2012 10:00:10 AM) (Source: PC-Doctor)(User: )
Description: (844) Asapi: (10:00:10:4820)(844) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (09/01/2012 08:52:08 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15600

Error: (09/01/2012 08:52:08 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15600

Error: (09/01/2012 08:52:08 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/01/2012 07:55:33 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestc:\Users\Michael\AppData\Local\Opera\Opera\temporary_downloads\esetsmartinstaller_enu.exe

Error: (09/01/2012 07:53:44 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (09/01/2012 06:06:36 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabThe data is invalid.

Error: (09/01/2012 06:06:36 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabThe data is invalid.


=========================== Installed Programs ============================

AccelerometerP11 (Version: 2.00.11.15)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Reader 9.5.1 (Version: 9.5.1)
Advanced Audio FX Engine (Version: 1.12.05)
AIM 7
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
AviSynth 2.5
BitTorrent (Version: 7.6.1)
Bonjour (Version: 3.0.0.10)
CameraHelperMsi (Version: 13.25.1010.0)
CDisplay 1.8
Consumer In-Home Service Agreement (Version: 2.0.0)
CyberLink PowerDVD 9.6 (Version: 9.6.1.3522)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.47)
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell MusicStage (Version: 1.3.31.0)
Dell PhotoStage (Version: 1.5.0.19)
Dell Support Center (Version: 3.0.5621.01)
Dell Webcam Central (Version: 2.00.35)
DirectX 9 Runtime (Version: 1.00.0000)
Download Manager 2.3.10 (Version: 2.3.10)
DVDFab 8.1.3.2 (31/10/2011) Qt
eBay (Version: 1.4.0)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
GameSpy Arcade
GoToAssist 8.0.0.514
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2189)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® PROSet/Wireless WiFi Software (Version: 13.02.1000)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Intel® Wireless Display (Version: 1.2.20.0)
Internet Explorer (Version: 8)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 23 (64-bit) (Version: 6.0.230)
Java™ 6 Update 24 (Version: 6.0.240)
JMicron Flash Media Controller Driver (Version: 1.0.52.4)
Junk Mail filter update (Version: 15.4.3502.0922)
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.20.1166.0)
LWS Gallery (Version: 13.20.1166.0)
LWS Help_main (Version: 13.25.1016.0)
LWS Launcher (Version: 13.20.1166.0)
LWS Motion Detection (Version: 13.20.1176.0)
LWS Pictures And Video (Version: 13.25.1010.0)
LWS Twitter (Version: 13.20.1166.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.25.1005.0)
LWS Webcam Software (Version: 13.20.1168.0)
LWS WLM Plugin (Version: 1.20.1166.0)
LWS YouTube Plugin (Version: 13.20.1166.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee SecurityCenter (Version: 11.0.678)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (Version: 3.5.30730.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Reader
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
mIRC (Version: 7.25)
Mozilla Firefox 15.0 (x86 en-US) (Version: 15.0)
Mozilla Maintenance Service (Version: 15.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Neverwinter Nights 2: Platinum
Neverwinter Nights 2: Platinum - Map Editor
NVIDIA Display Control Panel (Version: 6.14.12.5951)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.5951)
NVIDIA Updatus (Version: 1.0.3)
Opera 12.02 (Version: 12.02.1578)
PhotoShowExpress (Version: 2.0.063)
Quickset64 (Version: 10.8.5)
QuickTime (Version: 7.72.80.56)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6240)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Skype Click to Call (Version: 6.2.10687)
Skype™ 5.10 (Version: 5.10.116)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.1.4.0)
Team Fortress 2
Tribes 2 (Version: 1.0.0.0)
Tribes: Ascend
Trillian
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Vampire: The Masquerade - Bloodlines
Videora iPod Converter 6 (Version: 6)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
Yahoo! Software Update

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 5876.3 MB
Available physical RAM: 3685.38 MB
Total Pagefile: 11750.7 MB
Available Pagefile: 9070.79 MB
Total Virtual: 4095.88 MB
Available Virtual: 3965.63 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:300.37 GB) NTFS

========================= Users: ========================================

User accounts for \\MICHAEL-PC

Administrator Guest Michael
UpdatusUser


**** End of log ****

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 AM

Posted 01 September 2012 - 08:29 PM

Run RKILL again and post the new log

Edited by narenxp, 01 September 2012 - 08:48 PM.


#13 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 08:45 PM

Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/01/2012 09:43:41 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

* AppMgmt [Missing Service]
* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]

* atapi => \SystemRoot\system32\DRIVERS\atapi.sys [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/01/2012 09:43:53 PM
Execution time: 0 hours(s), 0 minute(s), and 11 seconds(s)

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:23 AM

Posted 01 September 2012 - 08:48 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#15 Arjay670

Arjay670
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:23 AM

Posted 01 September 2012 - 08:56 PM

Thank you so much!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users