Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

FBI Moneypak virus


  • Please log in to reply
24 replies to this topic

#1 Kwade1875

Kwade1875

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 25 September 2012 - 01:57 PM

Before I start, thankyou for helping with this.

Yesterday while surfing the net I was hit with this warning. It blued my screen. Then a screen reading "FBI WARNING" or something like that. I do not remember exactly. It did use my Webcam to make it appear as if it was recording my face!! I have downloaded several Rootkits and Maleware removal tools. I have the Pro version of Malewarebytes. I am running Windows 7 with a 64 bit system. I am not that PC proficient but I'm not the worst!

It appears that the Malewarebytes removal tool removed a two items with the Flash Scan. Now I am able to log on in regular mode (not safe mode). It would appear that I have lost my Desktop items as well.

Thanks again for the help.

Kwade1875

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:29 PM

Posted 25 September 2012 - 01:58 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 25 September 2012 - 02:53 PM

TDSSkiller log

14:01:28.0391 1452 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
14:01:28.0905 1452 ============================================================
14:01:28.0905 1452 Current date / time: 2012/09/25 14:01:28.0905
14:01:28.0905 1452 SystemInfo:
14:01:28.0905 1452
14:01:28.0905 1452 OS Version: 6.1.7601 ServicePack: 1.0
14:01:28.0905 1452 Product type: Workstation
14:01:28.0905 1452 ComputerName: BNLC7R1
14:01:28.0905 1452 UserName: youngkx
14:01:28.0905 1452 Windows directory: C:\Windows
14:01:28.0905 1452 System windows directory: C:\Windows
14:01:28.0905 1452 Running under WOW64
14:01:28.0905 1452 Processor architecture: Intel x64
14:01:28.0905 1452 Number of processors: 4
14:01:28.0905 1452 Page size: 0x1000
14:01:28.0905 1452 Boot type: Safe boot with network
14:01:28.0905 1452 ============================================================
14:01:31.0511 1452 Drive \Device\Harddisk1\DR1 - Size: 0x3B880000 (0.93 Gb), SectorSize: 0x200, Cylinders: 0x79, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
14:01:31.0542 1452 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:01:31.0542 1452 Drive \Device\Harddisk1\DR1 - Size: 0x3B880000 (0.93 Gb), SectorSize: 0x200, Cylinders: 0x79, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:01:31.0542 1452 Drive \Device\Harddisk2\DR2 - Size: 0xF3228000 (3.80 Gb), SectorSize: 0x200, Cylinders: 0x1EF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:01:31.0542 1452 ============================================================
14:01:31.0542 1452 \Device\Harddisk1\DR1:
14:01:31.0542 1452 MBR partitions:
14:01:31.0542 1452 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x81, BlocksNum 0x1DC37F
14:01:31.0542 1452 \Device\Harddisk0\DR0:
14:01:31.0542 1452 MBR partitions:
14:01:31.0542 1452 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xB2000
14:01:31.0542 1452 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xB2800, BlocksNum 0x2537BAB0
14:01:31.0542 1452 \Device\Harddisk1\DR1:
14:01:31.0542 1452 Can't read MBR
14:01:31.0542 1452 \Device\Harddisk2\DR2:
14:01:31.0542 1452 MBR partitions:
14:01:31.0542 1452 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x23F8, BlocksNum 0x796D48
14:01:31.0542 1452 ============================================================
14:01:31.0573 1452 C: <-> \Device\Harddisk0\DR0\Partition2
14:01:31.0573 1452 ============================================================
14:01:31.0573 1452 Initialize success
14:01:31.0573 1452 ============================================================
14:01:35.0130 0252 ============================================================
14:01:35.0130 0252 Scan started
14:01:35.0130 0252 Mode: Manual;
14:01:35.0130 0252 ============================================================
14:01:35.0567 0252 ================ Scan system memory ========================
14:01:35.0567 0252 System memory - ok
14:01:35.0567 0252 ================ Scan services =============================
14:01:35.0691 0252 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:01:35.0691 0252 1394ohci - ok
14:01:35.0738 0252 [ E0065CBF1A25C015C218457D2CD522B9 ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
14:01:35.0738 0252 Acceler - ok
14:01:35.0785 0252 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:01:35.0785 0252 ACPI - ok
14:01:35.0801 0252 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:01:35.0801 0252 AcpiPmi - ok
14:01:35.0879 0252 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:01:35.0894 0252 AdobeARMservice - ok
14:01:35.0988 0252 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:01:35.0988 0252 AdobeFlashPlayerUpdateSvc - ok
14:01:36.0019 0252 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:01:36.0035 0252 adp94xx - ok
14:01:36.0050 0252 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:01:36.0050 0252 adpahci - ok
14:01:36.0066 0252 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:01:36.0066 0252 adpu320 - ok
14:01:36.0097 0252 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:01:36.0113 0252 AeLookupSvc - ok
14:01:36.0191 0252 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
14:01:36.0191 0252 AESTFilters - ok
14:01:36.0253 0252 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:01:36.0253 0252 AFD - ok
14:01:36.0284 0252 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:01:36.0284 0252 agp440 - ok
14:01:36.0331 0252 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:01:36.0331 0252 ALG - ok
14:01:36.0347 0252 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:01:36.0347 0252 aliide - ok
14:01:36.0347 0252 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:01:36.0347 0252 amdide - ok
14:01:36.0378 0252 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:01:36.0378 0252 AmdK8 - ok
14:01:36.0393 0252 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:01:36.0393 0252 AmdPPM - ok
14:01:36.0409 0252 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:01:36.0409 0252 amdsata - ok
14:01:36.0425 0252 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:01:36.0440 0252 amdsbs - ok
14:01:36.0440 0252 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:01:36.0456 0252 amdxata - ok
14:01:36.0471 0252 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:01:36.0471 0252 AppID - ok
14:01:36.0487 0252 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:01:36.0487 0252 AppIDSvc - ok
14:01:36.0503 0252 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:01:36.0503 0252 Appinfo - ok
14:01:36.0565 0252 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
14:01:36.0565 0252 AppMgmt - ok
14:01:36.0581 0252 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:01:36.0596 0252 arc - ok
14:01:36.0596 0252 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:01:36.0596 0252 arcsas - ok
14:01:36.0690 0252 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:01:36.0690 0252 aspnet_state - ok
14:01:36.0752 0252 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:01:36.0752 0252 AsyncMac - ok
14:01:36.0783 0252 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:01:36.0783 0252 atapi - ok
14:01:36.0815 0252 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:01:36.0830 0252 AudioEndpointBuilder - ok
14:01:36.0830 0252 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:01:36.0846 0252 AudioSrv - ok
14:01:36.0861 0252 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:01:36.0861 0252 AxInstSV - ok
14:01:36.0893 0252 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:01:36.0893 0252 b06bdrv - ok
14:01:36.0908 0252 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:01:36.0908 0252 b57nd60a - ok
14:01:36.0939 0252 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:01:36.0939 0252 BDESVC - ok
14:01:36.0986 0252 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:01:36.0986 0252 Beep - ok
14:01:37.0017 0252 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
14:01:37.0033 0252 BFE - ok
14:01:37.0080 0252 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
14:01:37.0127 0252 BITS - ok
14:01:37.0173 0252 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:01:37.0173 0252 blbdrive - ok
14:01:37.0220 0252 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:01:37.0220 0252 bowser - ok
14:01:37.0251 0252 [ 597FFFAC47605337B1C719B4975238F0 ] bpenum C:\Windows\system32\DRIVERS\bpenum.sys
14:01:37.0251 0252 bpenum - ok
14:01:37.0251 0252 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:01:37.0251 0252 BrFiltLo - ok
14:01:37.0267 0252 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:01:37.0267 0252 BrFiltUp - ok
14:01:37.0298 0252 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
14:01:37.0298 0252 Browser - ok
14:01:37.0314 0252 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:01:37.0314 0252 Brserid - ok
14:01:37.0329 0252 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:01:37.0329 0252 BrSerWdm - ok
14:01:37.0345 0252 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:01:37.0345 0252 BrUsbMdm - ok
14:01:37.0345 0252 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:01:37.0345 0252 BrUsbSer - ok
14:01:37.0376 0252 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
14:01:37.0376 0252 BthEnum - ok
14:01:37.0392 0252 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:01:37.0392 0252 BTHMODEM - ok
14:01:37.0423 0252 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
14:01:37.0423 0252 BthPan - ok
14:01:37.0470 0252 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
14:01:37.0470 0252 BTHPORT - ok
14:01:37.0485 0252 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:01:37.0485 0252 bthserv - ok
14:01:37.0517 0252 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
14:01:37.0517 0252 BTHUSB - ok
14:01:37.0548 0252 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:01:37.0548 0252 cdfs - ok
14:01:37.0563 0252 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:01:37.0579 0252 cdrom - ok
14:01:37.0595 0252 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:01:37.0595 0252 CertPropSvc - ok
14:01:37.0610 0252 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:01:37.0610 0252 circlass - ok
14:01:37.0641 0252 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:01:37.0657 0252 CLFS - ok
14:01:37.0719 0252 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:01:37.0719 0252 clr_optimization_v2.0.50727_32 - ok
14:01:37.0751 0252 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:01:37.0797 0252 clr_optimization_v2.0.50727_64 - ok
14:01:38.0047 0252 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:01:38.0063 0252 clr_optimization_v4.0.30319_32 - ok
14:01:38.0094 0252 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:01:38.0125 0252 clr_optimization_v4.0.30319_64 - ok
14:01:38.0172 0252 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:01:38.0172 0252 CmBatt - ok
14:01:38.0187 0252 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:01:38.0187 0252 cmdide - ok
14:01:38.0234 0252 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
14:01:38.0234 0252 CNG - ok
14:01:38.0265 0252 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:01:38.0265 0252 Compbatt - ok
14:01:38.0297 0252 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:01:38.0297 0252 CompositeBus - ok
14:01:38.0297 0252 COMSysApp - ok
14:01:38.0312 0252 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:01:38.0312 0252 crcdisk - ok
14:01:38.0343 0252 [ D8E4F20BD26D8DCA4CB67A796D7EEC84 ] Credential Vault Host Control Service C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
14:01:38.0359 0252 Credential Vault Host Control Service - ok
14:01:38.0375 0252 [ EC31C9A4D1059E599DD1DBB50B84F278 ] Credential Vault Host Storage C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
14:01:38.0375 0252 Credential Vault Host Storage - ok
14:01:38.0406 0252 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:01:38.0406 0252 CryptSvc - ok
14:01:38.0421 0252 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
14:01:38.0437 0252 CSC - ok
14:01:38.0468 0252 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
14:01:38.0484 0252 CscService - ok
14:01:38.0531 0252 [ 8CE04A5BDD2CE6E62CE02A1C27093104 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
14:01:38.0531 0252 CtClsFlt - ok
14:01:38.0562 0252 [ AFD403048B1753EB4225CA476F663350 ] cvusbdrv C:\Windows\system32\Drivers\cvusbdrv.sys
14:01:38.0562 0252 cvusbdrv - ok
14:01:38.0577 0252 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:01:38.0593 0252 DcomLaunch - ok
14:01:38.0640 0252 [ 3562C84415080B8B0C4D695A43372E3E ] dcpsysmgrsvc C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
14:01:38.0655 0252 dcpsysmgrsvc - ok
14:01:38.0687 0252 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:01:38.0687 0252 defragsvc - ok
14:01:38.0718 0252 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:01:38.0718 0252 DfsC - ok
14:01:38.0749 0252 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
14:01:38.0749 0252 Dhcp - ok
14:01:38.0780 0252 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:01:38.0780 0252 discache - ok
14:01:38.0796 0252 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:01:38.0796 0252 Disk - ok
14:01:38.0827 0252 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:01:38.0827 0252 Dnscache - ok
14:01:38.0843 0252 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:01:38.0843 0252 dot3svc - ok
14:01:38.0874 0252 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:01:38.0874 0252 DPS - ok
14:01:38.0921 0252 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:01:38.0921 0252 drmkaud - ok
14:01:38.0983 0252 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:01:38.0983 0252 DXGKrnl - ok
14:01:39.0014 0252 [ EAFCB4551836FF44EE775CEDDFA7A77E ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
14:01:39.0014 0252 e1cexpress - ok
14:01:39.0045 0252 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:01:39.0045 0252 EapHost - ok
14:01:39.0108 0252 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:01:39.0139 0252 ebdrv - ok
14:01:39.0170 0252 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:01:39.0170 0252 EFS - ok
14:01:39.0201 0252 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:01:39.0217 0252 ehRecvr - ok
14:01:39.0233 0252 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:01:39.0233 0252 ehSched - ok
14:01:39.0264 0252 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:01:39.0279 0252 elxstor - ok
14:01:39.0295 0252 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:01:39.0295 0252 ErrDev - ok
14:01:39.0342 0252 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:01:39.0342 0252 EventSystem - ok
14:01:39.0420 0252 [ 5C08B9A2BAAEC1F33C2D50FD166DEEBB ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
14:01:39.0435 0252 EvtEng - ok
14:01:39.0467 0252 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:01:39.0467 0252 exfat - ok
14:01:39.0498 0252 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:01:39.0498 0252 fastfat - ok
14:01:39.0545 0252 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:01:39.0545 0252 Fax - ok
14:01:39.0576 0252 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:01:39.0591 0252 fdc - ok
14:01:39.0607 0252 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:01:39.0607 0252 fdPHost - ok
14:01:39.0623 0252 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:01:39.0623 0252 FDResPub - ok
14:01:39.0623 0252 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:01:39.0623 0252 FileInfo - ok
14:01:39.0638 0252 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:01:39.0638 0252 Filetrace - ok
14:01:39.0654 0252 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:01:39.0654 0252 flpydisk - ok
14:01:39.0685 0252 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:01:39.0685 0252 FltMgr - ok
14:01:39.0732 0252 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
14:01:39.0747 0252 FontCache - ok
14:01:39.0794 0252 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:01:39.0794 0252 FontCache3.0.0.0 - ok
14:01:39.0825 0252 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:01:39.0825 0252 FsDepends - ok
14:01:39.0825 0252 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:01:39.0825 0252 Fs_Rec - ok
14:01:39.0872 0252 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:01:39.0888 0252 fvevol - ok
14:01:39.0903 0252 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:01:39.0903 0252 gagp30kx - ok
14:01:39.0950 0252 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:01:39.0966 0252 gpsvc - ok
14:01:39.0981 0252 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:01:39.0981 0252 hcw85cir - ok
14:01:40.0013 0252 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:01:40.0013 0252 HdAudAddService - ok
14:01:40.0044 0252 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:01:40.0044 0252 HDAudBus - ok
14:01:40.0075 0252 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:01:40.0075 0252 HidBatt - ok
14:01:40.0091 0252 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:01:40.0091 0252 HidBth - ok
14:01:40.0091 0252 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:01:40.0091 0252 HidIr - ok
14:01:40.0122 0252 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:01:40.0122 0252 hidserv - ok
14:01:40.0137 0252 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
14:01:40.0137 0252 HidUsb - ok
14:01:40.0153 0252 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:01:40.0153 0252 hkmsvc - ok
14:01:40.0184 0252 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:01:40.0184 0252 HomeGroupListener - ok
14:01:40.0200 0252 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:01:40.0215 0252 HomeGroupProvider - ok
14:01:40.0231 0252 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:01:40.0231 0252 HpSAMD - ok
14:01:40.0278 0252 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:01:40.0293 0252 HTTP - ok
14:01:40.0325 0252 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:01:40.0325 0252 hwpolicy - ok
14:01:40.0340 0252 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:01:40.0340 0252 i8042prt - ok
14:01:40.0356 0252 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:01:40.0371 0252 iaStorV - ok
14:01:40.0403 0252 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:01:40.0418 0252 idsvc - ok
14:01:40.0621 0252 [ 8CB8667F5A3B5515F2585F3254F3AAF7 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
14:01:40.0824 0252 igfx - ok
14:01:40.0871 0252 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:01:40.0871 0252 iirsp - ok
14:01:40.0902 0252 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:01:40.0917 0252 IKEEXT - ok
14:01:40.0949 0252 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
14:01:40.0949 0252 IntcDAud - ok
14:01:40.0964 0252 [ 28D387EEFAD7CC3A0BEB9C3262E83ADD ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
14:01:40.0980 0252 Intel® PROSet Monitoring Service - ok
14:01:40.0995 0252 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:01:40.0995 0252 intelide - ok
14:01:41.0027 0252 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:01:41.0027 0252 intelppm - ok
14:01:41.0042 0252 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:01:41.0042 0252 IPBusEnum - ok
14:01:41.0073 0252 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:01:41.0073 0252 IpFilterDriver - ok
14:01:41.0105 0252 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:01:41.0120 0252 iphlpsvc - ok
14:01:41.0136 0252 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:01:41.0151 0252 IPMIDRV - ok
14:01:41.0167 0252 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:01:41.0167 0252 IPNAT - ok
14:01:41.0183 0252 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:01:41.0183 0252 IRENUM - ok
14:01:41.0214 0252 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:01:41.0214 0252 isapnp - ok
14:01:41.0229 0252 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:01:41.0229 0252 iScsiPrt - ok
14:01:41.0323 0252 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
14:01:41.0323 0252 jhi_service - ok
14:01:41.0354 0252 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
14:01:41.0354 0252 kbdclass - ok
14:01:41.0385 0252 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:01:41.0385 0252 kbdhid - ok
14:01:41.0401 0252 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:01:41.0401 0252 KeyIso - ok
14:01:41.0448 0252 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:01:41.0448 0252 KSecDD - ok
14:01:41.0463 0252 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:01:41.0463 0252 KSecPkg - ok
14:01:41.0495 0252 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:01:41.0495 0252 ksthunk - ok
14:01:41.0526 0252 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:01:41.0526 0252 KtmRm - ok
14:01:41.0573 0252 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:01:41.0573 0252 LanmanServer - ok
14:01:41.0604 0252 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:01:41.0604 0252 LanmanWorkstation - ok
14:01:41.0635 0252 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:01:41.0635 0252 lltdio - ok
14:01:41.0666 0252 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:01:41.0666 0252 lltdsvc - ok
14:01:41.0682 0252 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:01:41.0682 0252 lmhosts - ok
14:01:41.0729 0252 [ 97F9EAAC985A663394CD8F54DCD3E73A ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:01:41.0744 0252 LMS - ok
14:01:41.0760 0252 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:01:41.0760 0252 LSI_FC - ok
14:01:41.0791 0252 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:01:41.0791 0252 LSI_SAS - ok
14:01:41.0807 0252 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:01:41.0807 0252 LSI_SAS2 - ok
14:01:41.0807 0252 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:01:41.0822 0252 LSI_SCSI - ok
14:01:41.0838 0252 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:01:41.0838 0252 luafv - ok
14:01:41.0885 0252 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
14:01:41.0885 0252 MBAMProtector - ok
14:01:41.0947 0252 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:01:41.0963 0252 MBAMScheduler - ok
14:01:41.0978 0252 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:01:41.0978 0252 MBAMService - ok
14:01:42.0041 0252 [ 639DA8F468552785E15F0F2FD8DB44B3 ] McAfeeEngineService C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\EngineServer.exe
14:01:42.0041 0252 McAfeeEngineService - ok
14:01:42.0056 0252 [ 1B963D79740B187795407CD03E2F7B4D ] McAfeeFramework C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
14:01:42.0056 0252 McAfeeFramework - ok
14:01:42.0072 0252 [ 4E09D8C4C861348A7F1C12A5AA9C4DE7 ] McShield C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\McShield.exe
14:01:42.0072 0252 McShield - ok
14:01:42.0087 0252 [ 3774AAD155F31D58D932861D0A4FD641 ] McTaskManager C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
14:01:42.0087 0252 McTaskManager - ok
14:01:42.0119 0252 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:01:42.0119 0252 Mcx2Svc - ok
14:01:42.0134 0252 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:01:42.0134 0252 megasas - ok
14:01:42.0150 0252 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:01:42.0150 0252 MegaSR - ok
14:01:42.0181 0252 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
14:01:42.0181 0252 MEIx64 - ok
14:01:42.0212 0252 [ E2D642A38A8DC4722F859092F731B6A3 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
14:01:42.0228 0252 mfeapfk - ok
14:01:42.0259 0252 [ AE23ED41216E160F54E5EF1A5EE325F7 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
14:01:42.0259 0252 mfeavfk - ok
14:01:42.0275 0252 [ BC76BC7129B2206098AC220B656F15B7 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
14:01:42.0275 0252 mfehidk - ok
14:01:42.0290 0252 [ C7C15D125AA697BE97087D197C9FAD08 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
14:01:42.0290 0252 mferkdet - ok
14:01:42.0306 0252 [ 41CA4C4292004486D004D357B9C19718 ] mfetdik C:\Windows\system32\drivers\mfetdik.sys
14:01:42.0306 0252 mfetdik - ok
14:01:42.0306 0252 [ C39855495E82EC6B02E6190C34A1B752 ] mfevtp C:\Windows\system32\mfevtps.exe
14:01:42.0306 0252 mfevtp - ok
14:01:42.0368 0252 Microsoft SharePoint Workspace Audit Service - ok
14:01:42.0384 0252 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:01:42.0384 0252 MMCSS - ok
14:01:42.0399 0252 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:01:42.0415 0252 Modem - ok
14:01:42.0462 0252 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:01:42.0462 0252 monitor - ok
14:01:42.0477 0252 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:01:42.0477 0252 mouclass - ok
14:01:42.0493 0252 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:01:42.0493 0252 mouhid - ok
14:01:42.0524 0252 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:01:42.0524 0252 mountmgr - ok
14:01:42.0555 0252 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:01:42.0555 0252 mpio - ok
14:01:42.0587 0252 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:01:42.0587 0252 mpsdrv - ok
14:01:42.0633 0252 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:01:42.0649 0252 MpsSvc - ok
14:01:42.0696 0252 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:01:42.0696 0252 MRxDAV - ok
14:01:42.0711 0252 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:01:42.0711 0252 mrxsmb - ok
14:01:42.0758 0252 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:01:42.0758 0252 mrxsmb10 - ok
14:01:42.0789 0252 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:01:42.0789 0252 mrxsmb20 - ok
14:01:42.0805 0252 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:01:42.0821 0252 msahci - ok
14:01:42.0821 0252 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:01:42.0821 0252 msdsm - ok
14:01:42.0836 0252 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:01:42.0836 0252 MSDTC - ok
14:01:42.0867 0252 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:01:42.0867 0252 Msfs - ok
14:01:42.0883 0252 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:01:42.0883 0252 mshidkmdf - ok
14:01:42.0914 0252 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:01:42.0914 0252 msisadrv - ok
14:01:42.0945 0252 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:01:42.0945 0252 MSiSCSI - ok
14:01:42.0945 0252 msiserver - ok
14:01:42.0961 0252 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:01:42.0961 0252 MSKSSRV - ok
14:01:42.0977 0252 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:01:42.0977 0252 MSPCLOCK - ok
14:01:42.0977 0252 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:01:42.0977 0252 MSPQM - ok
14:01:43.0008 0252 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:01:43.0008 0252 MsRPC - ok
14:01:43.0055 0252 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:01:43.0055 0252 mssmbios - ok
14:01:43.0070 0252 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:01:43.0070 0252 MSTEE - ok
14:01:43.0086 0252 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:01:43.0086 0252 MTConfig - ok
14:01:43.0101 0252 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:01:43.0101 0252 Mup - ok
14:01:43.0133 0252 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:01:43.0133 0252 napagent - ok
14:01:43.0148 0252 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:01:43.0164 0252 NativeWifiP - ok
14:01:43.0179 0252 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
14:01:43.0195 0252 NDIS - ok
14:01:43.0211 0252 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:01:43.0211 0252 NdisCap - ok
14:01:43.0226 0252 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:01:43.0226 0252 NdisTapi - ok
14:01:43.0257 0252 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:01:43.0257 0252 Ndisuio - ok
14:01:43.0289 0252 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:01:43.0289 0252 NdisWan - ok
14:01:43.0320 0252 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:01:43.0320 0252 NDProxy - ok
14:01:43.0367 0252 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:01:43.0367 0252 NetBIOS - ok
14:01:43.0382 0252 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:01:43.0382 0252 NetBT - ok
14:01:43.0429 0252 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:01:43.0429 0252 Netlogon - ok
14:01:43.0460 0252 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:01:43.0460 0252 Netman - ok
14:01:43.0476 0252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:43.0491 0252 NetMsmqActivator - ok
14:01:43.0507 0252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:43.0507 0252 NetPipeActivator - ok
14:01:43.0507 0252 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:01:43.0523 0252 netprofm - ok
14:01:43.0538 0252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:43.0538 0252 NetTcpActivator - ok
14:01:43.0538 0252 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:01:43.0538 0252 NetTcpPortSharing - ok
14:01:43.0679 0252 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
14:01:43.0803 0252 NETwNs64 - ok
14:01:43.0835 0252 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:01:43.0835 0252 nfrd960 - ok
14:01:43.0866 0252 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:01:43.0866 0252 NlaSvc - ok
14:01:43.0881 0252 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:01:43.0881 0252 Npfs - ok
14:01:43.0913 0252 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:01:43.0913 0252 nsi - ok
14:01:43.0944 0252 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:01:43.0944 0252 nsiproxy - ok
14:01:43.0991 0252 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:01:44.0006 0252 Ntfs - ok
14:01:44.0022 0252 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:01:44.0022 0252 Null - ok
14:01:44.0053 0252 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:01:44.0053 0252 nvraid - ok
14:01:44.0069 0252 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:01:44.0069 0252 nvstor - ok
14:01:44.0084 0252 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:01:44.0084 0252 nv_agp - ok
14:01:44.0131 0252 [ CAC6D16294DBA0170FC540C8694DA0E6 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
14:01:44.0131 0252 NWADI - ok
14:01:44.0147 0252 [ 1B8DEAAB7B72F19DC60C2F5467094079 ] NWRmNet_001 C:\Windows\system32\DRIVERS\NWRmNet_001.sys
14:01:44.0162 0252 NWRmNet_001 - ok
14:01:44.0193 0252 [ A66E23D2684AF82930486749584491E3 ] NWUSBModem_001 C:\Windows\system32\DRIVERS\nwusbmdm_001.sys
14:01:44.0193 0252 NWUSBModem_001 - ok
14:01:44.0209 0252 [ A66E23D2684AF82930486749584491E3 ] NWUSBPort2_001 C:\Windows\system32\DRIVERS\nwusbser2_001.sys
14:01:44.0209 0252 NWUSBPort2_001 - ok
14:01:44.0240 0252 [ A66E23D2684AF82930486749584491E3 ] NWUSBPort_001 C:\Windows\system32\DRIVERS\nwusbser_001.sys
14:01:44.0240 0252 NWUSBPort_001 - ok
14:01:44.0271 0252 [ 6F67805EBE1C879DE008ED21BFCF2F02 ] NWVZHelper C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe
14:01:44.0287 0252 NWVZHelper - ok
14:01:44.0303 0252 [ 4E37455DB16AEC75862B1D0BC35B589E ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
14:01:44.0303 0252 O2FLASH - ok
14:01:44.0334 0252 [ 6172DB160FC566CF24307941C0E94D8E ] O2MDFRDR C:\Windows\system32\DRIVERS\O2MDFw7x64.sys
14:01:44.0334 0252 O2MDFRDR - ok
14:01:44.0381 0252 [ 4635935FC972C582632BF45C26BFCB0E ] O2SDIOAssist C:\Windows\SysWOW64\srvany.exe
14:01:44.0427 0252 O2SDIOAssist - ok
14:01:44.0427 0252 [ A9C1E6B7C134FAD124338B7944FA996D ] O2SDJRDR C:\Windows\system32\DRIVERS\o2sdjw7x64.sys
14:01:44.0427 0252 O2SDJRDR - ok
14:01:44.0459 0252 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:01:44.0459 0252 ohci1394 - ok
14:01:44.0490 0252 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:01:44.0490 0252 ose - ok
14:01:44.0552 0252 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:01:44.0552 0252 ose64 - ok
14:01:44.0646 0252 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:01:44.0693 0252 osppsvc - ok
14:01:44.0724 0252 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:01:44.0724 0252 p2pimsvc - ok
14:01:44.0739 0252 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:01:44.0755 0252 p2psvc - ok
14:01:44.0786 0252 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:01:44.0786 0252 Parport - ok
14:01:44.0802 0252 [ 871EADAC56B0A4C6512BBE32753CCF79 ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:01:44.0802 0252 partmgr - ok
14:01:44.0849 0252 [ 363B3F857ABEE85767E01E3044C539CD ] PBADRV C:\Windows\system32\DRIVERS\PBADRV.sys
14:01:44.0849 0252 PBADRV - ok
14:01:44.0880 0252 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:01:44.0880 0252 PcaSvc - ok
14:01:44.0911 0252 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:01:44.0911 0252 pci - ok
14:01:44.0927 0252 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:01:44.0927 0252 pciide - ok
14:01:44.0958 0252 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:01:44.0958 0252 pcmcia - ok
14:01:44.0989 0252 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:01:44.0989 0252 pcw - ok
14:01:45.0005 0252 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:01:45.0005 0252 PEAUTH - ok
14:01:45.0036 0252 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
14:01:45.0051 0252 PeerDistSvc - ok
14:01:45.0083 0252 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:01:45.0083 0252 PerfHost - ok
14:01:45.0114 0252 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:01:45.0129 0252 pla - ok
14:01:45.0145 0252 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:01:45.0161 0252 PlugPlay - ok
14:01:45.0176 0252 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:01:45.0176 0252 PNRPAutoReg - ok
14:01:45.0192 0252 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:01:45.0192 0252 PNRPsvc - ok
14:01:45.0223 0252 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:01:45.0223 0252 PolicyAgent - ok
14:01:45.0254 0252 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:01:45.0254 0252 Power - ok
14:01:45.0301 0252 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:01:45.0301 0252 PptpMiniport - ok
14:01:45.0317 0252 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:01:45.0317 0252 Processor - ok
14:01:45.0332 0252 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
14:01:45.0348 0252 ProfSvc - ok
14:01:45.0348 0252 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:01:45.0363 0252 ProtectedStorage - ok
14:01:45.0395 0252 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:01:45.0395 0252 Psched - ok
14:01:45.0441 0252 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:01:45.0457 0252 ql2300 - ok
14:01:45.0488 0252 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:01:45.0488 0252 ql40xx - ok
14:01:45.0504 0252 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:01:45.0504 0252 QWAVE - ok
14:01:45.0519 0252 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:01:45.0519 0252 QWAVEdrv - ok
14:01:45.0535 0252 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:01:45.0535 0252 RasAcd - ok
14:01:45.0566 0252 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:01:45.0566 0252 RasAgileVpn - ok
14:01:45.0566 0252 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:01:45.0566 0252 RasAuto - ok
14:01:45.0582 0252 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:01:45.0582 0252 Rasl2tp - ok
14:01:45.0629 0252 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:01:45.0629 0252 RasMan - ok
14:01:45.0644 0252 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:01:45.0644 0252 RasPppoe - ok
14:01:45.0675 0252 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:01:45.0675 0252 RasSstp - ok
14:01:45.0738 0252 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:01:45.0738 0252 rdbss - ok
14:01:45.0753 0252 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:01:45.0753 0252 rdpbus - ok
14:01:45.0785 0252 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:01:45.0785 0252 RDPCDD - ok
14:01:45.0831 0252 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
14:01:45.0831 0252 RDPDR - ok
14:01:45.0847 0252 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:01:45.0847 0252 RDPENCDD - ok
14:01:45.0847 0252 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:01:45.0863 0252 RDPREFMP - ok
14:01:45.0878 0252 [ 15B66C206B5CB095BAB980553F38ED23 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:01:45.0878 0252 RDPWD - ok
14:01:45.0909 0252 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:01:45.0909 0252 rdyboost - ok
14:01:45.0972 0252 [ F90CC59135F2945A6EBB1670A7BBD8B3 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
14:01:45.0987 0252 RegSrvc - ok
14:01:46.0034 0252 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:01:46.0034 0252 RemoteAccess - ok
14:01:46.0050 0252 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:01:46.0050 0252 RemoteRegistry - ok
14:01:46.0097 0252 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
14:01:46.0112 0252 RFCOMM - ok
14:01:46.0112 0252 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:01:46.0112 0252 RpcEptMapper - ok
14:01:46.0143 0252 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:01:46.0143 0252 RpcLocator - ok
14:01:46.0159 0252 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
14:01:46.0159 0252 RpcSs - ok
14:01:46.0206 0252 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:01:46.0206 0252 rspndr - ok
14:01:46.0221 0252 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
14:01:46.0221 0252 s3cap - ok
14:01:46.0237 0252 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:01:46.0237 0252 SamSs - ok
14:01:46.0253 0252 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:01:46.0268 0252 sbp2port - ok
14:01:46.0284 0252 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:01:46.0284 0252 SCardSvr - ok
14:01:46.0299 0252 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:01:46.0299 0252 scfilter - ok
14:01:46.0331 0252 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:01:46.0346 0252 Schedule - ok
14:01:46.0362 0252 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:01:46.0362 0252 SCPolicySvc - ok
14:01:46.0393 0252 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
14:01:46.0393 0252 sdbus - ok
14:01:46.0424 0252 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:01:46.0424 0252 SDRSVC - ok
14:01:46.0440 0252 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:01:46.0455 0252 secdrv - ok
14:01:46.0455 0252 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:01:46.0455 0252 seclogon - ok
14:01:46.0487 0252 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:01:46.0487 0252 SENS - ok
14:01:46.0518 0252 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:01:46.0518 0252 SensrSvc - ok
14:01:46.0549 0252 [ DE3135E7ED559FC1C1B92AA7BA52CCDB ] Ser2ph C:\Windows\system32\DRIVERS\ser2ph64.sys
14:01:46.0549 0252 Ser2ph - ok
14:01:46.0611 0252 [ 052D4299E72FFFCCD9A168ADCDF5C450 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys
14:01:46.0611 0252 Ser2pl - ok
14:01:46.0627 0252 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:01:46.0627 0252 Serenum - ok
14:01:46.0658 0252 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:01:46.0658 0252 Serial - ok
14:01:46.0674 0252 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:01:46.0674 0252 sermouse - ok
14:01:46.0705 0252 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:01:46.0705 0252 SessionEnv - ok
14:01:46.0736 0252 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:01:46.0736 0252 sffdisk - ok
14:01:46.0736 0252 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:01:46.0736 0252 sffp_mmc - ok
14:01:46.0752 0252 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:01:46.0752 0252 sffp_sd - ok
14:01:46.0767 0252 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:01:46.0767 0252 sfloppy - ok
14:01:46.0783 0252 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:01:46.0783 0252 SharedAccess - ok
14:01:46.0830 0252 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:01:46.0845 0252 ShellHWDetection - ok
14:01:46.0861 0252 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:01:46.0861 0252 SiSRaid2 - ok
14:01:46.0908 0252 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:01:46.0908 0252 SiSRaid4 - ok
14:01:46.0923 0252 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:01:46.0923 0252 Smb - ok
14:01:46.0955 0252 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:01:46.0955 0252 SNMPTRAP - ok
14:01:46.0970 0252 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:01:46.0970 0252 spldr - ok
14:01:47.0001 0252 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
14:01:47.0001 0252 Spooler - ok
14:01:47.0079 0252 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:01:47.0111 0252 sppsvc - ok
14:01:47.0126 0252 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:01:47.0126 0252 sppuinotify - ok
14:01:47.0173 0252 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:01:47.0173 0252 srv - ok
14:01:47.0189 0252 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:01:47.0189 0252 srv2 - ok
14:01:47.0235 0252 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:01:47.0235 0252 srvnet - ok
14:01:47.0267 0252 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:01:47.0267 0252 SSDPSRV - ok
14:01:47.0282 0252 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:01:47.0282 0252 SstpSvc - ok
14:01:47.0313 0252 [ C8F44E5E99FF6CF2E0627139CFEC0742 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
14:01:47.0329 0252 STacSV - ok
14:01:47.0360 0252 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
14:01:47.0360 0252 stdcfltn - ok
14:01:47.0376 0252 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:01:47.0376 0252 stexstor - ok
14:01:47.0423 0252 [ 7A69C8AF123F4C6A1D63DAA7F5E2638D ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
14:01:47.0423 0252 STHDA - ok
14:01:47.0454 0252 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:01:47.0454 0252 stisvc - ok
14:01:47.0485 0252 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
14:01:47.0485 0252 storflt - ok
14:01:47.0532 0252 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
14:01:47.0532 0252 StorSvc - ok
14:01:47.0547 0252 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
14:01:47.0547 0252 storvsc - ok
14:01:47.0594 0252 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:01:47.0594 0252 swenum - ok
14:01:47.0610 0252 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:01:47.0610 0252 swprv - ok
14:01:47.0657 0252 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:01:47.0672 0252 SysMain - ok
14:01:47.0719 0252 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:01:47.0719 0252 TabletInputService - ok
14:01:47.0735 0252 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:01:47.0735 0252 TapiSrv - ok
14:01:47.0766 0252 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:01:47.0766 0252 TBS - ok
14:01:47.0828 0252 [ FC62769E7BFF2896035AEED399108162 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:01:47.0844 0252 Tcpip - ok
14:01:47.0859 0252 [ FC62769E7BFF2896035AEED399108162 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:01:47.0875 0252 TCPIP6 - ok
14:01:47.0922 0252 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:01:47.0922 0252 tcpipreg - ok
14:01:47.0953 0252 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:01:47.0953 0252 TDPIPE - ok
14:01:47.0969 0252 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:01:47.0969 0252 TDTCP - ok
14:01:48.0000 0252 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:01:48.0000 0252 tdx - ok
14:01:48.0031 0252 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:01:48.0031 0252 TermDD - ok
14:01:48.0062 0252 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:01:48.0062 0252 TermService - ok
14:01:48.0093 0252 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:01:48.0093 0252 Themes - ok
14:01:48.0125 0252 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:01:48.0125 0252 THREADORDER - ok
14:01:48.0140 0252 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:01:48.0140 0252 TrkWks - ok
14:01:48.0187 0252 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:01:48.0187 0252 TrustedInstaller - ok
14:01:48.0234 0252 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:01:48.0234 0252 tssecsrv - ok
14:01:48.0249 0252 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:01:48.0265 0252 TsUsbFlt - ok
14:01:48.0296 0252 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:01:48.0296 0252 tunnel - ok
14:01:48.0312 0252 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:01:48.0312 0252 uagp35 - ok
14:01:48.0343 0252 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:01:48.0343 0252 udfs - ok
14:01:48.0359 0252 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:01:48.0374 0252 UI0Detect - ok
14:01:48.0374 0252 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:01:48.0374 0252 uliagpkx - ok
14:01:48.0405 0252 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
14:01:48.0405 0252 umbus - ok
14:01:48.0421 0252 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:01:48.0421 0252 UmPass - ok
14:01:48.0437 0252 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
14:01:48.0437 0252 UmRdpService - ok
14:01:48.0515 0252 [ A69CD6BDB82872999D2E46F9324ADA83 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:01:48.0530 0252 UNS - ok
14:01:48.0561 0252 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:01:48.0561 0252 upnphost - ok
14:01:48.0593 0252 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:01:48.0593 0252 usbccgp - ok
14:01:48.0608 0252 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:01:48.0608 0252 usbcir - ok
14:01:48.0655 0252 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:01:48.0655 0252 usbehci - ok
14:01:48.0671 0252 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:01:48.0671 0252 usbhub - ok
14:01:48.0686 0252 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:01:48.0686 0252 usbohci - ok
14:01:48.0717 0252 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:01:48.0733 0252 usbprint - ok
14:01:48.0749 0252 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:01:48.0749 0252 usbscan - ok
14:01:48.0780 0252 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:01:48.0780 0252 USBSTOR - ok
14:01:48.0795 0252 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:01:48.0795 0252 usbuhci - ok
14:01:48.0811 0252 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
14:01:48.0811 0252 usbvideo - ok
14:01:48.0827 0252 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:01:48.0827 0252 UxSms - ok
14:01:48.0842 0252 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:01:48.0842 0252 VaultSvc - ok
14:01:48.0842 0252 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:01:48.0842 0252 vdrvroot - ok
14:01:48.0873 0252 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:01:48.0873 0252 vds - ok
14:01:48.0889 0252 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:01:48.0889 0252 vga - ok
14:01:48.0920 0252 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:01:48.0920 0252 VgaSave - ok
14:01:48.0951 0252 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:01:48.0951 0252 vhdmp - ok
14:01:48.0967 0252 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:01:48.0967 0252 viaide - ok
14:01:48.0983 0252 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
14:01:48.0983 0252 vmbus - ok
14:01:48.0998 0252 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
14:01:48.0998 0252 VMBusHID - ok
14:01:49.0029 0252 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:01:49.0029 0252 volmgr - ok
14:01:49.0045 0252 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:01:49.0061 0252 volmgrx - ok
14:01:49.0061 0252 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:01:49.0076 0252 volsnap - ok
14:01:49.0123 0252 [ CB7859F7029AC19E9B9C76AA0E5E79D2 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
14:01:49.0139 0252 vpnagent - ok
14:01:49.0139 0252 [ A6CA1C89EB232697CA6369EB55729E48 ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys
14:01:49.0139 0252 vpnva - ok
14:01:49.0170 0252 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:01:49.0170 0252 vsmraid - ok
14:01:49.0201 0252 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:01:49.0217 0252 VSS - ok
14:01:49.0232 0252 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:01:49.0232 0252 vwifibus - ok
14:01:49.0263 0252 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:01:49.0263 0252 vwififlt - ok
14:01:49.0310 0252 [ CF73B8BD8CB4F8B60171ABB67C1720F3 ] VZWConfigService C:\Program Files (x86)\Novatel Wireless\LTE Support\VZWMSConfig.exe
14:01:49.0310 0252 VZWConfigService - ok
14:01:49.0341 0252 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:01:49.0341 0252 W32Time - ok
14:01:49.0373 0252 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:01:49.0373 0252 WacomPen - ok
14:01:49.0404 0252 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:01:49.0404 0252 WANARP - ok
14:01:49.0404 0252 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:01:49.0404 0252 Wanarpv6 - ok
14:01:49.0466 0252 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:01:49.0466 0252 WatAdminSvc - ok
14:01:49.0513 0252 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:01:49.0529 0252 wbengine - ok
14:01:49.0560 0252 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:01:49.0560 0252 WbioSrvc - ok
14:01:49.0591 0252 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:01:49.0591 0252 wcncsvc - ok
14:01:49.0607 0252 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:01:49.0607 0252 WcsPlugInService - ok
14:01:49.0622 0252 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:01:49.0622 0252 Wd - ok
14:01:49.0716 0252 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
14:01:49.0716 0252 WDC_SAM - ok
14:01:49.0747 0252 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:01:49.0763 0252 Wdf01000 - ok
14:01:49.0778 0252 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:01:49.0794 0252 WdiServiceHost - ok
14:01:49.0809 0252 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:01:49.0809 0252 WdiSystemHost - ok
14:01:49.0841 0252 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:01:49.0856 0252 WebClient - ok
14:01:49.0887 0252 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:01:49.0887 0252 Wecsvc - ok
14:01:49.0919 0252 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:01:49.0934 0252 wercplsupport - ok
14:01:49.0965 0252 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:01:49.0981 0252 WerSvc - ok
14:01:49.0997 0252 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:01:49.0997 0252 WfpLwf - ok
14:01:50.0012 0252 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:01:50.0012 0252 WIMMount - ok
14:01:50.0028 0252 WinDefend - ok
14:01:50.0028 0252 WinHttpAutoProxySvc - ok
14:01:50.0153 0252 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:01:50.0184 0252 Winmgmt - ok
14:01:50.0246 0252 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:01:50.0262 0252 WinRM - ok
14:01:50.0309 0252 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
14:01:50.0324 0252 WinUsb - ok
14:01:50.0387 0252 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:01:50.0402 0252 Wlansvc - ok
14:01:50.0433 0252 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:01:50.0433 0252 WmiAcpi - ok
14:01:50.0465 0252 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:01:50.0465 0252 wmiApSrv - ok
14:01:50.0496 0252 WMPNetworkSvc - ok
14:01:50.0543 0252 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:01:50.0543 0252 WPCSvc - ok
14:01:50.0574 0252 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:01:50.0574 0252 WPDBusEnum - ok
14:01:50.0605 0252 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:01:50.0621 0252 ws2ifsl - ok
14:01:50.0636 0252 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
14:01:50.0652 0252 wscsvc - ok
14:01:50.0652 0252 WSearch - ok
14:01:50.0823 0252 [ 9DF12EDBC698B0BC353B3EF84861E430 ] wuauserv C:\Windows\system32\wuaueng.dll
14:01:50.0886 0252 wuauserv - ok
14:01:50.0901 0252 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:01:50.0901 0252 WudfPf - ok
14:01:50.0948 0252 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:01:50.0948 0252 WUDFRd - ok
14:01:50.0964 0252 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:01:50.0964 0252 wudfsvc - ok
14:01:51.0011 0252 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:01:51.0011 0252 WwanSvc - ok
14:01:51.0073 0252 [ B87E12317928739E22D2E3ACC7CCAC80 ] ZcfgSvc7 C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe
14:01:51.0089 0252 ZcfgSvc7 - ok
14:01:51.0104 0252 ================ Scan global ===============================
14:01:51.0135 0252 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:01:51.0151 0252 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:01:51.0167 0252 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:01:51.0182 0252 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:01:51.0198 0252 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:01:51.0213 0252 [Global] - ok
14:01:51.0213 0252 ================ Scan MBR ==================================
14:01:51.0213 0252 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:01:51.0229 0252 \Device\Harddisk1\DR1 - ok
14:01:51.0229 0252 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:01:51.0432 0252 \Device\Harddisk0\DR0 - ok
14:01:51.0432 0252 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:01:51.0447 0252 \Device\Harddisk1\DR1 - ok
14:01:51.0447 0252 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
14:01:53.0366 0252 \Device\Harddisk2\DR2 - ok
14:01:53.0366 0252 ================ Scan VBR ==================================
14:01:53.0366 0252 [ B8A132788E893C29F95421D382308CF8 ] \Device\Harddisk1\DR1\Partition1
14:01:53.0366 0252 \Device\Harddisk1\DR1\Partition1 - ok
14:01:53.0397 0252 [ F8455CE174BFD989BC3C280A1CA12800 ] \Device\Harddisk0\DR0\Partition1
14:01:53.0429 0252 \Device\Harddisk0\DR0\Partition1 - ok
14:01:53.0460 0252 [ 584C7F02FBCDD0DEEC9D2085540C716F ] \Device\Harddisk0\DR0\Partition2
14:01:53.0491 0252 \Device\Harddisk0\DR0\Partition2 - ok
14:01:53.0491 0252 [ 3FA049A700477890871121AF8150A5AD ] \Device\Harddisk2\DR2\Partition1
14:01:53.0491 0252 \Device\Harddisk2\DR2\Partition1 - ok
14:01:53.0491 0252 ============================================================
14:01:53.0491 0252 Scan finished
14:01:53.0491 0252 ============================================================
14:01:53.0491 1488 Detected object count: 0
14:01:53.0491 1488 Actual detected object count: 0
14:02:30.0697 1152 ============================================================
14:02:30.0697 1152 Scan started
14:02:30.0697 1152 Mode: Manual; TDLFS;
14:02:30.0697 1152 ============================================================
14:02:30.0947 1152 ================ Scan system memory ========================
14:02:30.0947 1152 System memory - ok
14:02:30.0947 1152 ================ Scan services =============================
14:02:31.0056 1152 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:02:31.0056 1152 1394ohci - ok
14:02:31.0072 1152 [ E0065CBF1A25C015C218457D2CD522B9 ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
14:02:31.0072 1152 Acceler - ok
14:02:31.0087 1152 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:02:31.0103 1152 ACPI - ok
14:02:31.0118 1152 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:02:31.0118 1152 AcpiPmi - ok
14:02:31.0181 1152 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:02:31.0181 1152 AdobeARMservice - ok
14:02:31.0243 1152 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:02:31.0243 1152 AdobeFlashPlayerUpdateSvc - ok
14:02:31.0259 1152 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:02:31.0259 1152 adp94xx - ok
14:02:31.0274 1152 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:02:31.0274 1152 adpahci - ok
14:02:31.0290 1152 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:02:31.0290 1152 adpu320 - ok
14:02:31.0321 1152 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:02:31.0321 1152 AeLookupSvc - ok
14:02:31.0384 1152 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
14:02:31.0384 1152 AESTFilters - ok
14:02:31.0415 1152 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:02:31.0415 1152 AFD - ok
14:02:31.0446 1152 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:02:31.0446 1152 agp440 - ok
14:02:31.0462 1152 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:02:31.0462 1152 ALG - ok
14:02:31.0477 1152 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:02:31.0477 1152 aliide - ok
14:02:31.0477 1152 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:02:31.0477 1152 amdide - ok
14:02:31.0493 1152 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:02:31.0508 1152 AmdK8 - ok
14:02:31.0524 1152 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:02:31.0524 1152 AmdPPM - ok
14:02:31.0540 1152 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:02:31.0540 1152 amdsata - ok
14:02:31.0555 1152 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:02:31.0571 1152 amdsbs - ok
14:02:31.0571 1152 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:02:31.0571 1152 amdxata - ok
14:02:31.0602 1152 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:02:31.0602 1152 AppID - ok
14:02:31.0618 1152 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:02:31.0618 1152 AppIDSvc - ok
14:02:31.0633 1152 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:02:31.0633 1152 Appinfo - ok
14:02:31.0649 1152 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
14:02:31.0649 1152 AppMgmt - ok
14:02:31.0664 1152 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:02:31.0664 1152 arc - ok
14:02:31.0680 1152 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:02:31.0680 1152 arcsas - ok
14:02:31.0742 1152 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:02:31.0742 1152 aspnet_state - ok
14:02:31.0774 1152 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:02:31.0774 1152 AsyncMac - ok
14:02:31.0789 1152 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:02:31.0789 1152 atapi - ok
14:02:31.0820 1152 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:02:31.0836 1152 AudioEndpointBuilder - ok
14:02:31.0852 1152 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:02:31.0852 1152 AudioSrv - ok
14:02:31.0883 1152 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:02:31.0883 1152 AxInstSV - ok
14:02:31.0914 1152 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:02:31.0914 1152 b06bdrv - ok
14:02:31.0914 1152 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:02:31.0914 1152 b57nd60a - ok
14:02:31.0945 1152 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:02:31.0945 1152 BDESVC - ok
14:02:31.0961 1152 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:02:31.0961 1152 Beep - ok
14:02:32.0008 1152 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
14:02:32.0008 1152 BFE - ok
14:02:32.0023 1152 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
14:02:32.0039 1152 BITS - ok
14:02:32.0070 1152 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:02:32.0070 1152 blbdrive - ok
14:02:32.0086 1152 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:02:32.0086 1152 bowser - ok
14:02:32.0117 1152 [ 597FFFAC47605337B1C719B4975238F0 ] bpenum C:\Windows\system32\DRIVERS\bpenum.sys
14:02:32.0117 1152 bpenum - ok
14:02:32.0117 1152 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:02:32.0117 1152 BrFiltLo - ok
14:02:32.0132 1152 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:02:32.0132 1152 BrFiltUp - ok
14:02:32.0164 1152 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
14:02:32.0164 1152 Browser - ok
14:02:32.0179 1152 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:02:32.0179 1152 Brserid - ok
14:02:32.0195 1152 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:02:32.0195 1152 BrSerWdm - ok
14:02:32.0226 1152 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:02:32.0226 1152 BrUsbMdm - ok
14:02:32.0226 1152 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:02:32.0226 1152 BrUsbSer - ok
14:02:32.0257 1152 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
14:02:32.0257 1152 BthEnum - ok
14:02:32.0273 1152 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:02:32.0273 1152 BTHMODEM - ok
14:02:32.0288 1152 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
14:02:32.0288 1152 BthPan - ok
14:02:32.0320 1152 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
14:02:32.0320 1152 BTHPORT - ok
14:02:32.0335 1152 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:02:32.0335 1152 bthserv - ok
14:02:32.0366 1152 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
14:02:32.0366 1152 BTHUSB - ok
14:02:32.0382 1152 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:02:32.0382 1152 cdfs - ok
14:02:32.0413 1152 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:02:32.0413 1152 cdrom - ok
14:02:32.0429 1152 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:02:32.0429 1152 CertPropSvc - ok
14:02:32.0444 1152 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:02:32.0444 1152 circlass - ok
14:02:32.0460 1152 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:02:32.0460 1152 CLFS - ok
14:02:32.0522 1152 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:02:32.0522 1152 clr_optimization_v2.0.50727_32 - ok
14:02:32.0569 1152 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:02:32.0569 1152 clr_optimization_v2.0.50727_64 - ok
14:02:32.0600 1152 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:02:32.0600 1152 clr_optimization_v4.0.30319_32 - ok
14:02:32.0616 1152 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:02:32.0616 1152 clr_optimization_v4.0.30319_64 - ok
14:02:32.0647 1152 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:02:32.0647 1152 CmBatt - ok
14:02:32.0678 1152 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:02:32.0678 1152 cmdide - ok
14:02:32.0710 1152 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
14:02:32.0710 1152 CNG - ok
14:02:32.0725 1152 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:02:32.0725 1152 Compbatt - ok
14:02:32.0741 1152 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:02:32.0741 1152 CompositeBus - ok
14:02:32.0741 1152 COMSysApp - ok
14:02:32.0756 1152 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:02:32.0756 1152 crcdisk - ok
14:02:32.0803 1152 [ D8E4F20BD26D8DCA4CB67A796D7EEC84 ] Credential Vault Host Control Service C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
14:02:32.0803 1152 Credential Vault Host Control Service - ok
14:02:32.0819 1152 [ EC31C9A4D1059E599DD1DBB50B84F278 ] Credential Vault Host Storage C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
14:02:32.0819 1152 Credential Vault Host Storage - ok
14:02:32.0850 1152 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:02:32.0850 1152 CryptSvc - ok
14:02:32.0866 1152 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
14:02:32.0881 1152 CSC - ok
14:02:32.0881 1152 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
14:02:32.0897 1152 CscService - ok
14:02:32.0912 1152 [ 8CE04A5BDD2CE6E62CE02A1C27093104 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
14:02:32.0912 1152 CtClsFlt - ok
14:02:32.0928 1152 [ AFD403048B1753EB4225CA476F663350 ] cvusbdrv C:\Windows\system32\Drivers\cvusbdrv.sys
14:02:32.0928 1152 cvusbdrv - ok
14:02:32.0959 1152 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:02:32.0959 1152 DcomLaunch - ok
14:02:33.0006 1152 [ 3562C84415080B8B0C4D695A43372E3E ] dcpsysmgrsvc C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
14:02:33.0006 1152 dcpsysmgrsvc - ok
14:02:33.0022 1152 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:02:33.0037 1152 defragsvc - ok
14:02:33.0068 1152 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:02:33.0068 1152 DfsC - ok
14:02:33.0084 1152 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
14:02:33.0084 1152 Dhcp - ok
14:02:33.0115 1152 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:02:33.0115 1152 discache - ok
14:02:33.0115 1152 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:02:33.0115 1152 Disk - ok
14:02:33.0146 1152 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:02:33.0146 1152 Dnscache - ok
14:02:33.0162 1152 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:02:33.0178 1152 dot3svc - ok
14:02:33.0193 1152 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:02:33.0193 1152 DPS - ok
14:02:33.0209 1152 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:02:33.0209 1152 drmkaud - ok
14:02:33.0240 1152 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:02:33.0240 1152 DXGKrnl - ok
14:02:33.0271 1152 [ EAFCB4551836FF44EE775CEDDFA7A77E ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
14:02:33.0271 1152 e1cexpress - ok
14:02:33.0302 1152 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:02:33.0302 1152 EapHost - ok
14:02:33.0365 1152 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:02:33.0380 1152 ebdrv - ok
14:02:33.0412 1152 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:02:33.0412 1152 EFS - ok
14:02:33.0443 1152 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:02:33.0443 1152 ehRecvr - ok
14:02:33.0474 1152 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:02:33.0474 1152 ehSched - ok
14:02:33.0505 1152 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:02:33.0505 1152 elxstor - ok
14:02:33.0521 1152 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:02:33.0521 1152 ErrDev - ok
14:02:33.0568 1152 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:02:33.0568 1152 EventSystem - ok
14:02:33.0630 1152 [ 5C08B9A2BAAEC1F33C2D50FD166DEEBB ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
14:02:33.0630 1152 EvtEng - ok
14:02:33.0661 1152 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:02:33.0661 1152 exfat - ok
14:02:33.0677 1152 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:02:33.0677 1152 fastfat - ok
14:02:33.0708 1152 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:02:33.0708 1152 Fax - ok
14:02:33.0724 1152 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:02:33.0724 1152 fdc - ok
14:02:33.0739 1152 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:02:33.0739 1152 fdPHost - ok
14:02:33.0755 1152 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:02:33.0755 1152 FDResPub - ok
14:02:33.0770 1152 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:02:33.0770 1152 FileInfo - ok
14:02:33.0786 1152 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:02:33.0786 1152 Filetrace - ok
14:02:33.0802 1152 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:02:33.0802 1152 flpydisk - ok
14:02:33.0817 1152 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:02:33.0817 1152 FltMgr - ok
14:02:33.0864 1152 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
14:02:33.0864 1152 FontCache - ok
14:02:33.0911 1152 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:02:33.0911 1152 FontCache3.0.0.0 - ok
14:02:33.0942 1152 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:02:33.0942 1152 FsDepends - ok
14:02:33.0958 1152 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:02:33.0958 1152 Fs_Rec - ok
14:02:33.0973 1152 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:02:33.0973 1152 fvevol - ok
14:02:33.0989 1152 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:02:33.0989 1152 gagp30kx - ok
14:02:34.0020 1152 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:02:34.0020 1152 gpsvc - ok
14:02:34.0036 1152 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:02:34.0036 1152 hcw85cir - ok
14:02:34.0067 1152 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:02:34.0067 1152 HdAudAddService - ok
14:02:34.0082 1152 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:02:34.0082 1152 HDAudBus - ok
14:02:34.0114 1152 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:02:34.0114 1152 HidBatt - ok
14:02:34.0114 1152 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:02:34.0114 1152 HidBth - ok
14:02:34.0129 1152 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:02:34.0129 1152 HidIr - ok
14:02:34.0145 1152 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:02:34.0145 1152 hidserv - ok
14:02:34.0160 1152 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
14:02:34.0176 1152 HidUsb - ok
14:02:34.0192 1152 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:02:34.0192 1152 hkmsvc - ok
14:02:34.0207 1152 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:02:34.0207 1152 HomeGroupListener - ok
14:02:34.0238 1152 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:02:34.0238 1152 HomeGroupProvider - ok
14:02:34.0254 1152 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:02:34.0254 1152 HpSAMD - ok
14:02:34.0285 1152 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:02:34.0285 1152 HTTP - ok
14:02:34.0301 1152 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:02:34.0301 1152 hwpolicy - ok
14:02:34.0316 1152 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:02:34.0316 1152 i8042prt - ok
14:02:34.0348 1152 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:02:34.0348 1152 iaStorV - ok
14:02:34.0394 1152 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:02:34.0394 1152 idsvc - ok
14:02:34.0582 1152 [ 8CB8667F5A3B5515F2585F3254F3AAF7 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
14:02:34.0644 1152 igfx - ok
14:02:34.0675 1152 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:02:34.0675 1152 iirsp - ok
14:02:34.0706 1152 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:02:34.0706 1152 IKEEXT - ok
14:02:34.0738 1152 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
14:02:34.0738 1152 IntcDAud - ok
14:02:34.0753 1152 [ 28D387EEFAD7CC3A0BEB9C3262E83ADD ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
14:02:34.0769 1152 Intel® PROSet Monitoring Service - ok
14:02:34.0784 1152 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:02:34.0784 1152 intelide - ok
14:02:34.0800 1152 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:02:34.0816 1152 intelppm - ok
14:02:34.0847 1152 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:02:34.0847 1152 IPBusEnum - ok
14:02:34.0862 1152 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:02:34.0862 1152 IpFilterDriver - ok
14:02:34.0909 1152 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:02:34.0909 1152 iphlpsvc - ok
14:02:34.0940 1152 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:02:34.0956 1152 IPMIDRV - ok
14:02:35.0018 1152 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:02:35.0018 1152 IPNAT - ok
14:02:35.0050 1152 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:02:35.0050 1152 IRENUM - ok
14:02:35.0096 1152 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:02:35.0096 1152 isapnp - ok
14:02:35.0174 1152 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:02:35.0190 1152 iScsiPrt - ok
14:02:35.0299 1152 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
14:02:35.0299 1152 jhi_service - ok
14:02:35.0299 1152 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
14:02:35.0299 1152 kbdclass - ok
14:02:35.0330 1152 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:02:35.0330 1152 kbdhid - ok
14:02:35.0346 1152 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:02:35.0346 1152 KeyIso - ok
14:02:35.0362 1152 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:02:35.0377 1152 KSecDD - ok
14:02:35.0377 1152 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:02:35.0377 1152 KSecPkg - ok
14:02:35.0408 1152 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:02:35.0408 1152 ksthunk - ok
14:02:35.0440 1152 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:02:35.0440 1152 KtmRm - ok
14:02:35.0471 1152 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:02:35.0471 1152 LanmanServer - ok
14:02:35.0486 1152 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:02:35.0486 1152 LanmanWorkstation - ok
14:02:35.0486 1152 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:02:35.0486 1152 lltdio - ok
14:02:35.0518 1152 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:02:35.0533 1152 lltdsvc - ok
14:02:35.0533 1152 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:02:35.0533 1152 lmhosts - ok
14:02:35.0580 1152 [ 97F9EAAC985A663394CD8F54DCD3E73A ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:02:35.0580 1152 LMS - ok
14:02:35.0596 1152 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:02:35.0596 1152 LSI_FC - ok
14:02:35.0627 1152 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:02:35.0627 1152 LSI_SAS - ok
14:02:35.0642 1152 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:02:35.0642 1152 LSI_SAS2 - ok
14:02:35.0658 1152 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:02:35.0658 1152 LSI_SCSI - ok
14:02:35.0658 1152 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:02:35.0674 1152 luafv - ok
14:02:35.0674 1152 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
14:02:35.0674 1152 MBAMProtector - ok
14:02:35.0736 1152 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:02:35.0736 1152 MBAMScheduler - ok
14:02:35.0752 1152 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:02:35.0767 1152 MBAMService - ok
14:02:35.0814 1152 [ 639DA8F468552785E15F0F2FD8DB44B3 ] McAfeeEngineService C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\EngineServer.exe
14:02:35.0814 1152 McAfeeEngineService - ok
14:02:35.0830 1152 [ 1B963D79740B187795407CD03E2F7B4D ] McAfeeFramework C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
14:02:35.0830 1152 McAfeeFramework - ok
14:02:35.0845 1152 [ 4E09D8C4C861348A7F1C12A5AA9C4DE7 ] McShield C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\McShield.exe
14:02:35.0845 1152 McShield - ok
14:02:35.0845 1152 [ 3774AAD155F31D58D932861D0A4FD641 ] McTaskManager C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
14:02:35.0845 1152 McTaskManager - ok
14:02:35.0876 1152 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:02:35.0876 1152 Mcx2Svc - ok
14:02:35.0908 1152 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:02:35.0908 1152 megasas - ok
14:02:35.0923 1152 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:02:35.0923 1152 MegaSR - ok
14:02:35.0939 1152 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
14:02:35.0939 1152 MEIx64 - ok
14:02:35.0970 1152 [ E2D642A38A8DC4722F859092F731B6A3 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
14:02:35.0970 1152 mfeapfk - ok
14:02:35.0986 1152 [ AE23ED41216E160F54E5EF1A5EE325F7 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
14:02:35.0986 1152 mfeavfk - ok
14:02:36.0001 1152 [ BC76BC7129B2206098AC220B656F15B7 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
14:02:36.0001 1152 mfehidk - ok
14:02:36.0017 1152 [ C7C15D125AA697BE97087D197C9FAD08 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
14:02:36.0017 1152 mferkdet - ok
14:02:36.0032 1152 [ 41CA4C4292004486D004D357B9C19718 ] mfetdik C:\Windows\system32\drivers\mfetdik.sys
14:02:36.0032 1152 mfetdik - ok
14:02:36.0048 1152 [ C39855495E82EC6B02E6190C34A1B752 ] mfevtp C:\Windows\system32\mfevtps.exe
14:02:36.0048 1152 mfevtp - ok
14:02:36.0079 1152 Microsoft SharePoint Workspace Audit Service - ok
14:02:36.0095 1152 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:02:36.0095 1152 MMCSS - ok
14:02:36.0126 1152 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:02:36.0126 1152 Modem - ok
14:02:36.0142 1152 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:02:36.0142 1152 monitor - ok
14:02:36.0157 1152 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:02:36.0157 1152 mouclass - ok
14:02:36.0173 1152 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:02:36.0173 1152 mouhid - ok
14:02:36.0204 1152 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:02:36.0204 1152 mountmgr - ok
14:02:36.0235 1152 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:02:36.0235 1152 mpio - ok
14:02:36.0266 1152 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:02:36.0266 1152 mpsdrv - ok
14:02:36.0313 1152 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:02:36.0313 1152 MpsSvc - ok
14:02:36.0344 1152 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:02:36.0344 1152 MRxDAV - ok
14:02:36.0360 1152 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:02:36.0360 1152 mrxsmb - ok
14:02:36.0391 1152 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:02:36.0391 1152 mrxsmb10 - ok
14:02:36.0407 1152 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:02:36.0407 1152 mrxsmb20 - ok
14:02:36.0422 1152 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:02:36.0422 1152 msahci - ok
14:02:36.0438 1152 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:02:36.0438 1152 msdsm - ok
14:02:36.0454 1152 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:02:36.0454 1152 MSDTC - ok
14:02:36.0469 1152 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:02:36.0469 1152 Msfs - ok
14:02:36.0485 1152 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:02:36.0485 1152 mshidkmdf - ok
14:02:36.0500 1152 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:02:36.0500 1152 msisadrv - ok
14:02:36.0547 1152 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:02:36.0547 1152 MSiSCSI - ok
14:02:36.0547 1152 msiserver - ok
14:02:36.0563 1152 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:02:36.0563 1152 MSKSSRV - ok
14:02:36.0578 1152 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:02:36.0578 1152 MSPCLOCK - ok
14:02:36.0578 1152 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:02:36.0578 1152 MSPQM - ok
14:02:36.0610 1152 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:02:36.0610 1152 MsRPC - ok
14:02:36.0625 1152 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:02:36.0625 1152 mssmbios - ok
14:02:36.0625 1152 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:02:36.0625 1152 MSTEE - ok
14:02:36.0641 1152 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:02:36.0641 1152 MTConfig - ok
14:02:36.0656 1152 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:02:36.0656 1152 Mup - ok
14:02:36.0672 1152 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:02:36.0672 1152 napagent - ok
14:02:36.0703 1152 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:02:36.0703 1152 NativeWifiP - ok
14:02:36.0734 1152 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
14:02:36.0734 1152 NDIS - ok
14:02:36.0750 1152 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:02:36.0750 1152 NdisCap - ok
14:02:36.0766 1152 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:02:36.0766 1152 NdisTapi - ok
14:02:36.0781 1152 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:02:36.0797 1152 Ndisuio - ok
14:02:36.0812 1152 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:02:36.0828 1152 NdisWan - ok
14:02:36.0844 1152 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:02:36.0844 1152 NDProxy - ok
14:02:36.0875 1152 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:02:36.0875 1152 NetBIOS - ok
14:02:36.0890 1152 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:02:36.0890 1152 NetBT - ok
14:02:36.0906 1152 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:02:36.0906 1152 Netlogon - ok
14:02:36.0922 1152 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:02:36.0922 1152 Netman - ok
14:02:36.0953 1152 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:36.0953 1152 NetMsmqActivator - ok
14:02:36.0953 1152 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:36.0953 1152 NetPipeActivator - ok
14:02:36.0968 1152 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:02:36.0968 1152 netprofm - ok
14:02:36.0968 1152 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:36.0968 1152 NetTcpActivator - ok
14:02:36.0968 1152 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:02:36.0968 1152 NetTcpPortSharing - ok
14:02:37.0109 1152 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
14:02:37.0156 1152 NETwNs64 - ok
14:02:37.0171 1152 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:02:37.0171 1152 nfrd960 - ok
14:02:37.0202 1152 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:02:37.0202 1152 NlaSvc - ok
14:02:37.0218 1152 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:02:37.0218 1152 Npfs - ok
14:02:37.0249 1152 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:02:37.0249 1152 nsi - ok
14:02:37.0265 1152 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:02:37.0265 1152 nsiproxy - ok
14:02:37.0312 1152 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:02:37.0312 1152 Ntfs - ok
14:02:37.0327 1152 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:02:37.0327 1152 Null - ok
14:02:37.0358 1152 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:02:37.0358 1152 nvraid - ok
14:02:37.0374 1152 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:02:37.0374 1152 nvstor - ok
14:02:37.0390 1152 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:02:37.0390 1152 nv_agp - ok
14:02:37.0421 1152 [ CAC6D16294DBA0170FC540C8694DA0E6 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
14:02:37.0421 1152 NWADI - ok
14:02:37.0436 1152 [ 1B8DEAAB7B72F19DC60C2F5467094079 ] NWRmNet_001 C:\Windows\system32\DRIVERS\NWRmNet_001.sys
14:02:37.0452 1152 NWRmNet_001 - ok
14:02:37.0468 1152 [ A66E23D2684AF82930486749584491E3 ] NWUSBModem_001 C:\Windows\system32\DRIVERS\nwusbmdm_001.sys
14:02:37.0468 1152 NWUSBModem_001 - ok
14:02:37.0483 1152 [ A66E23D2684AF82930486749584491E3 ] NWUSBPort2_001 C:\Windows\system32\DRIVERS\nwusbser2_001.sys
14:02:37.0483 1152 NWUSBPort2_001 - ok
14:02:37.0499 1152 [ A66E23D2684AF82930486749584491E3 ] NWUSBPort_001 C:\Windows\system32\DRIVERS\nwusbser_001.sys
14:02:37.0499 1152 NWUSBPort_001 - ok
14:02:37.0530 1152 [ 6F67805EBE1C879DE008ED21BFCF2F02 ] NWVZHelper C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe
14:02:37.0530 1152 NWVZHelper - ok
14:02:37.0546 1152 [ 4E37455DB16AEC75862B1D0BC35B589E ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
14:02:37.0546 1152 O2FLASH - ok
14:02:37.0561 1152 [ 6172DB160FC566CF24307941C0E94D8E ] O2MDFRDR C:\Windows\system32\DRIVERS\O2MDFw7x64.sys
14:02:37.0561 1152 O2MDFRDR - ok
14:02:37.0608 1152 [ 4635935FC972C582632BF45C26BFCB0E ] O2SDIOAssist C:\Windows\SysWOW64\srvany.exe
14:02:37.0608 1152 O2SDIOAssist - ok
14:02:37.0624 1152 [ A9C1E6B7C134FAD124338B7944FA996D ] O2SDJRDR C:\Windows\system32\DRIVERS\o2sdjw7x64.sys
14:02:37.0624 1152 O2SDJRDR - ok
14:02:37.0639 1152 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:02:37.0639 1152 ohci1394 - ok
14:02:37.0670 1152 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:02:37.0686 1152 ose - ok
14:02:37.0702 1152 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:02:37.0702 1152 ose64 - ok
14:02:37.0795 1152 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:02:37.0811 1152 osppsvc - ok
14:02:37.0842 1152 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:02:37.0842 1152 p2pimsvc - ok
14:02:37.0858 1152 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:02:37.0858 1152 p2psvc - ok
14:02:37.0889 1152 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:02:37.0889 1152 Parport - ok
14:02:37.0904 1152 [ 871EADAC56B0A4C6512BBE32753CCF79 ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:02:37.0904 1152 partmgr - ok
14:02:37.0920 1152 [ 363B3F857ABEE85767E01E3044C539CD ] PBADRV C:\Windows\system32\DRIVERS\PBADRV.sys
14:02:37.0920 1152 PBADRV - ok
14:02:37.0951 1152 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:02:37.0951 1152 PcaSvc - ok
14:02:37.0967 1152 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:02:37.0967 1152 pci - ok
14:02:37.0982 1152 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:02:37.0982 1152 pciide - ok
14:02:37.0998 1152 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:02:37.0998 1152 pcmcia - ok
14:02:38.0029 1152 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:02:38.0029 1152 pcw - ok
14:02:38.0045 1152 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:02:38.0045 1152 PEAUTH - ok
14:02:38.0076 1152 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
14:02:38.0092 1152 PeerDistSvc - ok
14:02:38.0107 1152 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:02:38.0107 1152 PerfHost - ok
14:02:38.0138 1152 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:02:38.0154 1152 pla - ok
14:02:38.0185 1152 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:02:38.0185 1152 PlugPlay - ok
14:02:38.0201 1152 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:02:38.0201 1152 PNRPAutoReg - ok
14:02:38.0216 1152 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:02:38.0216 1152 PNRPsvc - ok
14:02:38.0248 1152 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:02:38.0248 1152 PolicyAgent - ok
14:02:38.0263 1152 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:02:38.0263 1152 Power - ok
14:02:38.0294 1152 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:02:38.0294 1152 PptpMiniport - ok
14:02:38.0310 1152 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:02:38.0326 1152 Processor - ok
14:02:38.0341 1152 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
14:02:38.0341 1152 ProfSvc - ok
14:02:38.0357 1152 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:02:38.0357 1152 ProtectedStorage - ok
14:02:38.0372 1152 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:02:38.0372 1152 Psched - ok
14:02:38.0404 1152 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:02:38.0419 1152 ql2300 - ok
14:02:38.0435 1152 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:02:38.0435 1152 ql40xx - ok
14:02:38.0450 1152 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:02:38.0450 1152 QWAVE - ok
14:02:38.0466 1152 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:02:38.0466 1152 QWAVEdrv - ok
14:02:38.0482 1152 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:02:38.0482 1152 RasAcd - ok
14:02:38.0513 1152 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:02:38.0513 1152 RasAgileVpn - ok
14:02:38.0513 1152 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:02:38.0513 1152 RasAuto - ok
14:02:38.0544 1152 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:02:38.0544 1152 Rasl2tp - ok
14:02:38.0575 1152 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:02:38.0575 1152 RasMan - ok
14:02:38.0606 1152 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:02:38.0606 1152 RasPppoe - ok
14:02:38.0606 1152 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:02:38.0606 1152 RasSstp - ok
14:02:38.0638 1152 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:02:38.0638 1152 rdbss - ok
14:02:38.0653 1152 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:02:38.0653 1152 rdpbus - ok
14:02:38.0653 1152 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:02:38.0653 1152 RDPCDD - ok
14:02:38.0684 1152 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
14:02:38.0684 1152 RDPDR - ok
14:02:38.0684 1152 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:02:38.0684 1152 RDPENCDD - ok
14:02:38.0716 1152 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:02:38.0716 1152 RDPREFMP - ok
14:02:38.0731 1152 [ 15B66C206B5CB095BAB980553F38ED23 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:02:38.0731 1152 RDPWD - ok
14:02:38.0762 1152 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:02:38.0762 1152 rdyboost - ok
14:02:38.0794 1152 [ F90CC59135F2945A6EBB1670A7BBD8B3 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
14:02:38.0809 1152 RegSrvc - ok
14:02:38.0825 1152 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:02:38.0825 1152 RemoteAccess - ok
14:02:38.0840 1152 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:02:38.0840 1152 RemoteRegistry - ok
14:02:38.0872 1152 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
14:02:38.0872 1152 RFCOMM - ok
14:02:38.0887 1152 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:02:38.0887 1152 RpcEptMapper - ok
14:02:38.0918 1152 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:02:38.0918 1152 RpcLocator - ok
14:02:38.0950 1152 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
14:02:38.0950 1152 RpcSs - ok
14:02:38.0981 1152 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:02:38.0981 1152 rspndr - ok
14:02:38.0996 1152 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
14:02:38.0996 1152 s3cap - ok
14:02:39.0012 1152 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:02:39.0012 1152 SamSs - ok
14:02:39.0028 1152 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:02:39.0028 1152 sbp2port - ok
14:02:39.0059 1152 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:02:39.0059 1152 SCardSvr - ok
14:02:39.0074 1152 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:02:39.0074 1152 scfilter - ok
14:02:39.0106 1152 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:02:39.0106 1152 Schedule - ok
14:02:39.0137 1152 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:02:39.0137 1152 SCPolicySvc - ok
14:02:39.0152 1152 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
14:02:39.0152 1152 sdbus - ok
14:02:39.0184 1152 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:02:39.0184 1152 SDRSVC - ok
14:02:39.0215 1152 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:02:39.0215 1152 secdrv - ok
14:02:39.0215 1152 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:02:39.0215 1152 seclogon - ok
14:02:39.0246 1152 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:02:39.0246 1152 SENS - ok
14:02:39.0262 1152 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:02:39.0262 1152 SensrSvc - ok
14:02:39.0293 1152 [ DE3135E7ED559FC1C1B92AA7BA52CCDB ] Ser2ph C:\Windows\system32\DRIVERS\ser2ph64.sys
14:02:39.0293 1152 Ser2ph - ok
14:02:39.0324 1152 [ 052D4299E72FFFCCD9A168ADCDF5C450 ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys
14:02:39.0324 1152 Ser2pl - ok
14:02:39.0340 1152 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:02:39.0340 1152 Serenum - ok
14:02:39.0340 1152 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:02:39.0340 1152 Serial - ok
14:02:39.0355 1152 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:02:39.0355 1152 sermouse - ok
14:02:39.0386 1152 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:02:39.0386 1152 SessionEnv - ok
14:02:39.0418 1152 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:02:39.0418 1152 sffdisk - ok
14:02:39.0418 1152 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:02:39.0418 1152 sffp_mmc - ok
14:02:39.0418 1152 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:02:39.0418 1152 sffp_sd - ok
14:02:39.0449 1152 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:02:39.0449 1152 sfloppy - ok
14:02:39.0480 1152 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:02:39.0480 1152 SharedAccess - ok
14:02:39.0496 1152 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:02:39.0511 1152 ShellHWDetection - ok
14:02:39.0511 1152 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:02:39.0527 1152 SiSRaid2 - ok
14:02:39.0542 1152 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:02:39.0542 1152 SiSRaid4 - ok
14:02:39.0558 1152 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:02:39.0558 1152 Smb - ok
14:02:39.0589 1152 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:02:39.0589 1152 SNMPTRAP - ok
14:02:39.0589 1152 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:02:39.0589 1152 spldr - ok
14:02:39.0620 1152 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
14:02:39.0620 1152 Spooler - ok
14:02:39.0683 1152 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:02:39.0698 1152 sppsvc - ok
14:02:39.0714 1152 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:02:39.0714 1152 sppuinotify - ok
14:02:39.0761 1152 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:02:39.0761 1152 srv - ok
14:02:39.0776 1152 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:02:39.0776 1152 srv2 - ok
14:02:39.0792 1152 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:02:39.0792 1152 srvnet - ok
14:02:39.0808 1152 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:02:39.0808 1152 SSDPSRV - ok
14:02:39.0823 1152 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:02:39.0823 1152 SstpSvc - ok
14:02:39.0870 1152 [ C8F44E5E99FF6CF2E0627139CFEC0742 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
14:02:39.0870 1152 STacSV - ok
14:02:39.0886 1152 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
14:02:39.0886 1152 stdcfltn - ok
14:02:39.0932 1152 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:02:39.0932 1152 stexstor - ok
14:02:39.0948 1152 [ 7A69C8AF123F4C6A1D63DAA7F5E2638D ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
14:02:39.0948 1152 STHDA - ok
14:02:39.0979 1152 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:02:39.0979 1152 stisvc - ok
14:02:40.0026 1152 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
14:02:40.0026 1152 storflt - ok
14:02:40.0042 1152 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
14:02:40.0042 1152 StorSvc - ok
14:02:40.0057 1152 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
14:02:40.0057 1152 storvsc - ok
14:02:40.0073 1152 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:02:40.0088 1152 swenum - ok
14:02:40.0104 1152 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:02:40.0104 1152 swprv - ok
14:02:40.0151 1152 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:02:40.0151 1152 SysMain - ok
14:02:40.0182 1152 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:02:40.0182 1152 TabletInputService - ok
14:02:40.0198 1152 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:02:40.0198 1152 TapiSrv - ok
14:02:40.0229 1152 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:02:40.0229 1152 TBS - ok
14:02:40.0307 1152 [ FC62769E7BFF2896035AEED399108162 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:02:40.0307 1152 Tcpip - ok
14:02:40.0322 1152 [ FC62769E7BFF2896035AEED399108162 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:02:40.0338 1152 TCPIP6 - ok
14:02:40.0369 1152 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:02:40.0369 1152 tcpipreg - ok
14:02:40.0385 1152 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:02:40.0385 1152 TDPIPE - ok
14:02:40.0400 1152 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:02:40.0400 1152 TDTCP - ok
14:02:40.0432 1152 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:02:40.0432 1152 tdx - ok
14:02:40.0447 1152 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:02:40.0447 1152 TermDD - ok
14:02:40.0463 1152 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:02:40.0463 1152 TermService - ok
14:02:40.0494 1152 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:02:40.0494 1152 Themes - ok
14:02:40.0525 1152 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:02:40.0525 1152 THREADORDER - ok
14:02:40.0556 1152 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:02:40.0556 1152 TrkWks - ok
14:02:40.0588 1152 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:02:40.0603 1152 TrustedInstaller - ok
14:02:40.0619 1152 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:02:40.0619 1152 tssecsrv - ok
14:02:40.0650 1152 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:02:40.0650 1152 TsUsbFlt - ok
14:02:40.0681 1152 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:02:40.0681 1152 tunnel - ok
14:02:40.0697 1152 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:02:40.0697 1152 uagp35 - ok
14:02:40.0728 1152 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:02:40.0728 1152 udfs - ok
14:02:40.0744 1152 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:02:40.0744 1152 UI0Detect - ok
14:02:40.0759 1152 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:02:40.0759 1152 uliagpkx - ok
14:02:40.0790 1152 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
14:02:40.0790 1152 umbus - ok
14:02:40.0806 1152 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:02:40.0806 1152 UmPass - ok
14:02:40.0822 1152 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
14:02:40.0822 1152 UmRdpService - ok
14:02:40.0884 1152 [ A69CD6BDB82872999D2E46F9324ADA83 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:02:40.0900 1152 UNS - ok
14:02:40.0931 1152 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:02:40.0931 1152 upnphost - ok
14:02:40.0962 1152 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:02:40.0962 1152 usbccgp - ok
14:02:40.0978 1152 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:02:40.0978 1152 usbcir - ok
14:02:40.0993 1152 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:02:40.0993 1152 usbehci - ok
14:02:41.0009 1152 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:02:41.0009 1152 usbhub - ok
14:02:41.0024 1152 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:02:41.0024 1152 usbohci - ok
14:02:41.0056 1152 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:02:41.0056 1152 usbprint - ok
14:02:41.0071 1152 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:02:41.0071 1152 usbscan - ok
14:02:41.0087 1152 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:02:41.0102 1152 USBSTOR - ok
14:02:41.0102 1152 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:02:41.0102 1152 usbuhci - ok
14:02:41.0134 1152 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
14:02:41.0134 1152 usbvideo - ok
14:02:41.0165 1152 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:02:41.0165 1152 UxSms - ok
14:02:41.0165 1152 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:02:41.0165 1152 VaultSvc - ok
14:02:41.0180 1152 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:02:41.0180 1152 vdrvroot - ok
14:02:41.0196 1152 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:02:41.0212 1152 vds - ok
14:02:41.0227 1152 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:02:41.0227 1152 vga - ok
14:02:41.0227 1152 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:02:41.0243 1152 VgaSave - ok
14:02:41.0258 1152 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:02:41.0258 1152 vhdmp - ok
14:02:41.0290 1152 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:02:41.0290 1152 viaide - ok
14:02:41.0290 1152 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
14:02:41.0305 1152 vmbus - ok
14:02:41.0305 1152 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
14:02:41.0305 1152 VMBusHID - ok
14:02:41.0321 1152 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:02:41.0321 1152 volmgr - ok
14:02:41.0352 1152 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:02:41.0352 1152 volmgrx - ok
14:02:41.0368 1152 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:02:41.0368 1152 volsnap - ok
14:02:41.0430 1152 [ CB7859F7029AC19E9B9C76AA0E5E79D2 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
14:02:41.0430 1152 vpnagent - ok
14:02:41.0446 1152 [ A6CA1C89EB232697CA6369EB55729E48 ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys
14:02:41.0446 1152 vpnva - ok
14:02:41.0461 1152 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:02:41.0461 1152 vsmraid - ok
14:02:41.0508 1152 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:02:41.0524 1152 VSS - ok
14:02:41.0524 1152 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:02:41.0524 1152 vwifibus - ok
14:02:41.0555 1152 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:02:41.0570 1152 vwififlt - ok
14:02:41.0586 1152 [ CF73B8BD8CB4F8B60171ABB67C1720F3 ] VZWConfigService C:\Program Files (x86)\Novatel Wireless\LTE Support\VZWMSConfig.exe
14:02:41.0586 1152 VZWConfigService - ok
14:02:41.0602 1152 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:02:41.0617 1152 W32Time - ok
14:02:41.0633 1152 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:02:41.0633 1152 WacomPen - ok
14:02:41.0664 1152 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:02:41.0664 1152 WANARP - ok
14:02:41.0664 1152 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:02:41.0664 1152 Wanarpv6 - ok
14:02:41.0711 1152 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:02:41.0711 1152 WatAdminSvc - ok
14:02:41.0758 1152 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:02:41.0773 1152 wbengine - ok
14:02:41.0789 1152 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:02:41.0789 1152 WbioSrvc - ok
14:02:41.0820 1152 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:02:41.0820 1152 wcncsvc - ok
14:02:41.0836 1152 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:02:41.0836 1152 WcsPlugInService - ok
14:02:41.0851 1152 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:02:41.0851 1152 Wd - ok
14:02:41.0867 1152 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
14:02:41.0867 1152 WDC_SAM - ok
14:02:41.0898 1152 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:02:41.0898 1152 Wdf01000 - ok
14:02:41.0914 1152 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:02:41.0914 1152 WdiServiceHost - ok
14:02:41.0914 1152 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:02:41.0914 1152 WdiSystemHost - ok
14:02:41.0945 1152 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:02:41.0945 1152 WebClient - ok
14:02:41.0976 1152 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:02:41.0976 1152 Wecsvc - ok
14:02:41.0992 1152 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:02:41.0992 1152 wercplsupport - ok
14:02:41.0992 1152 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:02:42.0007 1152 WerSvc - ok
14:02:42.0007 1152 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:02:42.0007 1152 WfpLwf - ok
14:02:42.0023 1152 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:02:42.0023 1152 WIMMount - ok
14:02:42.0038 1152 WinDefend - ok
14:02:42.0054 1152 WinHttpAutoProxySvc - ok
14:02:42.0101 1152 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:02:42.0101 1152 Winmgmt - ok
14:02:42.0148 1152 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:02:42.0163 1152 WinRM - ok
14:02:42.0194 1152 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
14:02:42.0194 1152 WinUsb - ok
14:02:42.0226 1152 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:02:42.0226 1152 Wlansvc - ok
14:02:42.0241 1152 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:02:42.0241 1152 WmiAcpi - ok
14:02:42.0257 1152 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:02:42.0272 1152 wmiApSrv - ok
14:02:42.0288 1152 WMPNetworkSvc - ok
14:02:42.0304 1152 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:02:42.0304 1152 WPCSvc - ok
14:02:42.0319 1152 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:02:42.0319 1152 WPDBusEnum - ok
14:02:42.0335 1152 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:02:42.0335 1152 ws2ifsl - ok
14:02:42.0366 1152 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
14:02:42.0366 1152 wscsvc - ok
14:02:42.0366 1152 WSearch - ok
14:02:42.0428 1152 [ 9DF12EDBC698B0BC353B3EF84861E430 ] wuauserv C:\Windows\system32\wuaueng.dll
14:02:42.0428 1152 wuauserv - ok
14:02:42.0460 1152 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:02:42.0460 1152 WudfPf - ok
14:02:42.0475 1152 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:02:42.0475 1152 WUDFRd - ok
14:02:42.0491 1152 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:02:42.0506 1152 wudfsvc - ok
14:02:42.0553 1152 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:02:42.0553 1152 WwanSvc - ok
14:02:42.0616 1152 [ B87E12317928739E22D2E3ACC7CCAC80 ] ZcfgSvc7 C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe
14:02:42.0631 1152 ZcfgSvc7 - ok
14:02:42.0631 1152 ================ Scan global ===============================
14:02:42.0662 1152 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:02:42.0694 1152 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:02:42.0694 1152 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:02:42.0725 1152 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:02:42.0740 1152 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:02:42.0740 1152 [Global] - ok
14:02:42.0740 1152 ================ Scan MBR ==================================
14:02:44.0503 1152 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:02:44.0612 1152 \Device\Harddisk1\DR1 - ok
14:02:44.0628 1152 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:02:44.0909 1152 \Device\Harddisk0\DR0 - ok
14:02:44.0909 1152 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:02:44.0971 1152 \Device\Harddisk1\DR1 - ok
14:02:44.0987 1152 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
14:02:46.0921 1152 \Device\Harddisk2\DR2 - ok
14:02:46.0921 1152 ================ Scan VBR ==================================
14:02:46.0921 1152 [ B8A132788E893C29F95421D382308CF8 ] \Device\Harddisk1\DR1\Partition1
14:02:46.0921 1152 \Device\Harddisk1\DR1\Partition1 - ok
14:02:46.0968 1152 [ F8455CE174BFD989BC3C280A1CA12800 ] \Device\Harddisk0\DR0\Partition1
14:02:46.0968 1152 \Device\Harddisk0\DR0\Partition1 - ok
14:02:46.0984 1152 [ 584C7F02FBCDD0DEEC9D2085540C716F ] \Device\Harddisk0\DR0\Partition2
14:02:46.0984 1152 \Device\Harddisk0\DR0\Partition2 - ok
14:02:46.0984 1152 [ 3FA049A700477890871121AF8150A5AD ] \Device\Harddisk2\DR2\Partition1
14:02:46.0984 1152 \Device\Harddisk2\DR2\Partition1 - ok
14:02:46.0984 1152 ============================================================
14:02:46.0984 1152 Scan finished
14:02:46.0984 1152 ============================================================
14:02:46.0984 1664 Detected object count: 0
14:02:46.0984 1664 Actual detected object count: 0

aswMBR log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-25 14:06:30
-----------------------------
14:06:30.908 OS Version: Windows x64 6.1.7601 Service Pack 1
14:06:30.908 Number of processors: 4 586 0x2A07
14:06:30.908 ComputerName: BNLC7R1 UserName: youngkx
14:06:31.625 Initialize success
14:08:18.501 AVAST engine defs: 12092500
14:10:10.197 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
14:10:10.197 Disk 0 Vendor: Hitachi_ EC2O Size: 305245MB BusType: 8
14:10:10.197 Disk 1 \Device\Harddisk1\DR1 -> \Device\Scsi\O2SDJRDR1Port1Path0Target0Lun0
14:10:10.197 Disk 1 Vendor: Size: 305245MB BusType: 0
14:10:10.197 Disk 2 \Device\Harddisk2\DR2 -> \Device\0000007b
14:10:10.213 Disk 2 Vendor: Size: 305245MB BusType: 0
14:10:10.213 Disk 0 MBR read successfully
14:10:10.213 Disk 0 MBR scan
14:10:10.229 Disk 0 Windows 7 default MBR code
14:10:10.229 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 356 MB offset 2048
14:10:10.244 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 304887 MB offset 731136
14:10:10.260 Disk 0 scanning C:\Windows\system32\drivers
14:10:19.464 Service scanning
14:10:42.099 Modules scanning
14:10:42.099 Disk 0 trace - called modules:
14:10:42.177 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys iaStorV.sys hal.dll
14:10:42.177 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005569060]
14:10:42.177 3 CLASSPNP.SYS[fffff880017ab43f] -> nt!IofCallDriver -> [0xfffffa8005408af0]
14:10:42.177 5 stdcfltn.sys[fffff88001ac3c52] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80043ac050]
14:10:44.408 AVAST engine scan C:\Windows
14:10:45.765 AVAST engine scan C:\Windows\system32
14:12:53.171 AVAST engine scan C:\Windows\system32\drivers
14:13:03.482 AVAST engine scan C:\Users\YoungKX
14:14:10.344 AVAST engine scan C:\ProgramData
14:14:21.607 Scan finished successfully
14:15:06.005 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
14:15:06.021 The log file has been saved successfully to "C:\aswMBR.txt"

ESET online scanner

C:\Users\YoungKX\AppData\Roaming\dcsdm.dll a variant of Win32/Medfos.DS trojan cleaned by deleting - quarantined
C:\Users\YoungKX\AppData\Roaming\uieckd.dll a variant of Win32/Medfos.DT trojan cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:29 PM

Posted 25 September 2012 - 03:35 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Launch it and scan should start running.After scan gets completed,post the generated log here.

#5 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 25 September 2012 - 11:57 PM

Malwarebytes

Malwarebytes Anti-Malware (PRO) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.26.02

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
youngkx :: BNLC7R1 [administrator]

Protection: Disabled

9/25/2012 11:28:52 PM
mbam-log-2012-09-25 (23-28-52).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 335083
Time elapsed: 21 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Mini Toolbox

MiniToolBox by Farbar Version: 23-07-2012
Ran by youngkx (administrator) on 25-09-2012 at 23:52:00
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

192.168.0.10 DSI


========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6205 = Wireless Network Connection (Connected)
Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64 = Local Area Connection 2 (Hardware not present)
Intel® 82579LM Gigabit Network Connection = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection 2" forwarding=enabled advertise=enabled metric=1 nud=enabled
set interface interface="Local Area Connection 3" forwarding=disabled advertise=disabled mtu=1428 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : BNLC7R1
Primary Dns Suffix . . . . . . . : us.Borets.GC
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : us.Borets.GC
gateway.2wire.net
Borets.GC

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6205
Physical Address. . . . . . . . . : 10-0B-A9-62-38-08
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a897:11c6:ba9c:dd19%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.81(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, September 25, 2012 11:19:14 PM
Lease Expires . . . . . . . . . . : Wednesday, September 26, 2012 11:19:14 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 329287860
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-E4-4B-70-5C-26-0A-6B-86-98
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82579LM Gigabit Network Connection
Physical Address. . . . . . . . . : D4-BE-D9-17-AF-04
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{A51D3968-5ADB-4BDD-AF73-1C45883A7BA7}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {5CAE6F34-E0EA-4EA2-BBA4-A23E5AF9D2D1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 2001:4860:4002:801::100e
74.125.227.40
74.125.227.41
74.125.227.46
74.125.227.32
74.125.227.33
74.125.227.34
74.125.227.35
74.125.227.36
74.125.227.37
74.125.227.38
74.125.227.39


Pinging google.com [74.125.227.130] with 32 bytes of data:
Reply from 74.125.227.130: bytes=32 time=42ms TTL=55
Reply from 74.125.227.130: bytes=32 time=43ms TTL=55

Ping statistics for 74.125.227.130:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 42ms, Maximum = 43ms, Average = 42ms
Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=168ms TTL=44
Reply from 98.139.183.24: bytes=32 time=108ms TTL=44

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 108ms, Maximum = 168ms, Average = 138ms
Server: homeportal
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...10 0b a9 62 38 08 ......Intel® Centrino® Advanced-N 6205
10...d4 be d9 17 af 04 ......Intel® 82579LM Gigabit Network Connection
1...........................Software Loopback Interface 1
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.81 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.81 281
192.168.1.81 255.255.255.255 On-link 192.168.1.81 281
192.168.1.255 255.255.255.255 On-link 192.168.1.81 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.81 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.81 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 281 fe80::/64 On-link
12 281 fe80::a897:11c6:ba9c:dd19/128
On-link
1 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/25/2012 10:49:27 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/25/2012 06:30:24 PM) (Source: AutoEnrollment) (User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 01:28:22 PM) (Source: AutoEnrollment) (User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 00:44:47 PM) (Source: AutoEnrollment) (User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 00:04:08 PM) (Source: AutoEnrollment) (User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 11:48:09 AM) (Source: AutoEnrollment) (User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 02:51:24 AM) (Source: Application Error) (User: )
Description: Faulting application name: RootkitRevealer.exe, version: 1.71.0.0, time stamp: 0x44e255aa
Faulting module name: RootkitRevealer.exe, version: 1.71.0.0, time stamp: 0x44e255aa
Exception code: 0xc0000005
Fault offset: 0x000040cd
Faulting process id: 0x5a8
Faulting application start time: 0xRootkitRevealer.exe0
Faulting application path: RootkitRevealer.exe1
Faulting module path: RootkitRevealer.exe2
Report Id: RootkitRevealer.exe3

Error: (09/25/2012 02:48:46 AM) (Source: Application Error) (User: )
Description: Faulting application name: RootkitRevealer.exe, version: 1.71.0.0, time stamp: 0x44e255aa
Faulting module name: RootkitRevealer.exe, version: 1.71.0.0, time stamp: 0x44e255aa
Exception code: 0xc0000005
Fault offset: 0x000040cd
Faulting process id: 0x143c
Faulting application start time: 0xRootkitRevealer.exe0
Faulting application path: RootkitRevealer.exe1
Faulting module path: RootkitRevealer.exe2
Report Id: RootkitRevealer.exe3

Error: (09/25/2012 02:48:40 AM) (Source: Application Error) (User: )
Description: Faulting application name: RootkitRevealer.exe, version: 1.71.0.0, time stamp: 0x44e255aa
Faulting module name: RootkitRevealer.exe, version: 1.71.0.0, time stamp: 0x44e255aa
Exception code: 0xc0000005
Fault offset: 0x000040cd
Faulting process id: 0x188
Faulting application start time: 0xRootkitRevealer.exe0
Faulting application path: RootkitRevealer.exe1
Faulting module path: RootkitRevealer.exe2
Report Id: RootkitRevealer.exe3

Error: (09/25/2012 02:20:23 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.


System errors:
=============
Error: (09/25/2012 11:19:17 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:17 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:17 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:15 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (09/25/2012 11:19:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (09/25/2012 10:49:27 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (09/25/2012 06:30:24 PM) (Source: AutoEnrollment)(User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 01:28:22 PM) (Source: AutoEnrollment)(User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 00:44:47 PM) (Source: AutoEnrollment)(User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 00:04:08 PM) (Source: AutoEnrollment)(User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 11:48:09 AM) (Source: AutoEnrollment)(User: )
Description: US\youngkx0x8007003aThe specified server cannot perform the requested operation.

Error: (09/25/2012 02:51:24 AM) (Source: Application Error)(User: )
Description: RootkitRevealer.exe1.71.0.044e255aaRootkitRevealer.exe1.71.0.044e255aac0000005000040cd5a801cd9af286488d7cC:\Users\YoungKX\Desktop\RootkitRevealer\RootkitRevealer.exeC:\Users\YoungKX\Desktop\RootkitRevealer\RootkitRevealer.execd2c0c0b-06e5-11e2-b6fd-d4bed917af04

Error: (09/25/2012 02:48:46 AM) (Source: Application Error)(User: )
Description: RootkitRevealer.exe1.71.0.044e255aaRootkitRevealer.exe1.71.0.044e255aac0000005000040cd143c01cd9af23102cf3eC:\Users\YoungKX\Desktop\RootkitRevealer\RootkitRevealer.exeC:\Users\YoungKX\Desktop\RootkitRevealer\RootkitRevealer.exe6ec9f6a0-06e5-11e2-a133-9cb70d01a3c8

Error: (09/25/2012 02:48:40 AM) (Source: Application Error)(User: )
Description: RootkitRevealer.exe1.71.0.044e255aaRootkitRevealer.exe1.71.0.044e255aac0000005000040cd18801cd9af2253ce39eC:\Users\YoungKX\Desktop\RootkitRevealer\RootkitRevealer.exeC:\Users\YoungKX\Desktop\RootkitRevealer\RootkitRevealer.exe6b8fab0a-06e5-11e2-a133-9cb70d01a3c8

Error: (09/25/2012 02:20:23 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.


=========================== Installed Programs ============================

AccelerometerP11 (Version: 2.00.10.21)
Adobe AIR (Version: 2.7.1.19610)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.265)
Adobe Reader X (10.1.0) (Version: 10.1.0)
Angry Birds (Version: 2.0.2)
BioAPI Framework (Version: 1.0.2)
CaddieSync Express 1.2.9 (Version: 1.2.9)
CCleaner (Version: 3.22)
Cisco AnyConnect VPN Client (Version: 2.3.0254)
cwbin64a (Version: 05.04.0000)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Dell ControlVault Host Components Installer 64 bit (Version: 2.1.6.214)
Dell Data Protection | Access | Drivers (Version: 2.01.018)
Dell System Manager (Version: 1.6.00000)
Dell Webcam Central (Version: 1.40.28)
Discovery Launcher (Version: 3.60.1000)
ePadLink ePad 9.51 (Version: 9.51.00000)
ESET Online Scanner v3
HIDeGalaxTouch (Version: 2.9.0.3505)
HiJackThis (Version: 1.0.0)
IBM iSeries Access for Windows
IDT Audio (Version: 1.0.6316.0)
InstallVC90Support (Version: 1.01.0000)
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Network Connections 15.7.176.1 (Version: 15.7.176.1)
Intel® Processor Graphics (Version: 8.15.10.2266)
Intel® PROSet/Wireless WiFi Software (Version: 14.00.20110)
J Walk Windows Client (32 bit)
Java™ 7 Update 4 (64-bit) (Version: 7.0.40)
K-Lite Codec Pack 8.4.0 (Full) (Version: 8.4.0)
LIFTS (Version: 2.40.0000)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
McAfee Agent (Version: 4.0.0.1496)
McAfee VirusScan Enterprise (Version: 8.7.0)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Access database engine 2010 (English) (Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Streets & Trips 2011 (Version: 18.0.1)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
mp (Version: 05.04.0000)
mpmri (Version: 05.04.0000)
O2Micro Flash Memory Card Windows Driver (Version: 3.0.07.23)
PC-CCID (Version: 2.0.0)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.30.0)
SkyCaddie Desktop
SkyHawke CP210x USB to UART Bridge (Driver Removal)
SPBA 5.9 (Version: 5.9.4.6686)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Excel 2010 (KB2553439) 64-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 64-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2597091) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 64-Bit Edition
Update for Microsoft Outlook Social Connector (KB2583935)
Upek Touchchip Fingerprint Reader (Version: 1.2.004)
Verizon Mobile Broadband Drivers (Version: 3.13.008.003.14)
Verizon Wireless USB551L Firmware Updates (Version: 1.0.5)
VZAccess Manager (Version: 7.7.1.1)
Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (Version: 09/11/2009 1.0.1.6)

========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 3976.9 MB
Available physical RAM: 3007.1 MB
Total Pagefile: 7951.99 MB
Available Pagefile: 7072.34 MB
Total Virtual: 4095.88 MB
Available Virtual: 3979.76 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:297.74 GB) (Free:247.57 GB) NTFS
3 Drive e: () (Removable) (Total:0.93 GB) (Free:0.92 GB) FAT

========================= Users: ========================================

User accounts for \\BNLC7R1

Administrator ASPNET borets
Guest

========================= Restore Points ==================================

24-09-2012 22:47:54 Scheduled Checkpoint
25-09-2012 17:58:06 Before problem
25-09-2012 18:30:41 Installed HiJackThis

**** End of log ****

FSS

Farbar Service Scanner Version: 19-09-2012
Ran by youngkx (administrator) on 25-09-2012 at 23:55:21
Running from "C:\Users\YoungKX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7OEYV3B8"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Network
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#6 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 26 September 2012 - 12:06 AM

adware cleaner

# AdwCleaner v2.003 - Logfile created 09/26/2012 at 00:01:13
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : youngkx - BNLC7R1
# Boot Mode : Safe mode with networking
# Running from : C:\Users\YoungKX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5X3HTC64\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421


*************************

AdwCleaner[S2].txt - [1169 octets] - [25/09/2012 23:57:44]
AdwCleaner[S3].txt - [642 octets] - [26/09/2012 00:01:13]

########## EOF - C:\AdwCleaner[S3].txt - [701 octets] ##########

#7 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 26 September 2012 - 12:21 AM

Junkware Removal Tool

Junkware Removal Tool (JRT) by Thisisu
Version: 1.0.7 (09.24.2012)
OS: Windows 7 Professional x64
Ran by youngkx on Wed 09/26/2012 at 0:20:15.50
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_current_user\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}
Successfully deleted: [KEY] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}



*** Files: 0 Detections



*** Folders:

Successfully deleted: [FOLDER] "C:\Users\YoungKX\AppData\Roaming\pc cleaners"
Successfully deleted: [FOLDER] "C:\Users\YoungKX\AppData\Roaming\pcpro"



*** Ask Toolbar: - Remnants removed







*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Wed 09/26/2012 at 0:20:32.94
End of Report

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:29 PM

Posted 26 September 2012 - 06:43 AM

Please run Farbar service scanner in normal mode


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#9 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 26 September 2012 - 09:48 AM

Rkill

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 09/26/2012 at 9:36:04.
Operating System: Windows 7 Professional


Processes terminated by Rkill or while it was running:



Rkill completed on 09/26/2012 at 9:36:13.


AutoRuns

"HKLM\Software\Microsoft\Windows\CurrentVersion\Group Policy\Scripts\Startup" "" "" ""
+ "us-location-script" "" "" "File not found: \\us.borets.gc\netlogon\site.vbs"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "BCSSync" "Microsoft Office 2010 component" "Microsoft Corporation" "c:\program files\microsoft office\office14\bcssync.exe"
+ "FreeFallProtection" "FF_Protection MFC Application" "" "c:\program files (x86)\stmicroelectronics\accelerometerp11\ff_protection.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "IntelPROSet" "Intel® PROSet/Wireless Framework" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "AutoSwHIDMode" "AutoSwHIDMode MFC Application" "" "c:\program files (x86)\hidegalaxtouch\autoswhidmode.exe"
+ "CaddieSyncConduit" "CaddieSync Express (SkyCaddie)" "SkyHawke" "c:\program files (x86)\skygolf\caddiesync express\caddiesyncexpress.exe"
+ "Client Access Service" "cwbsvstr.exe" "IBM Corporation" "c:\program files (x86)\ibm\client access\cwbsvstr.exe"
+ "Dell Webcam Central" "WebcamDell2.exe" "Creative Technology Ltd" "c:\program files (x86)\dell webcam\dell webcam central\webcamdell2.exe"
+ "IMSS" "PIcon startup utility" "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\imss\piconstartup.exe"
+ "McAfeeUpdaterUI" "Common User Interface" "McAfee, Inc." "c:\program files (x86)\mcafee\common framework\udaterui.exe"
+ "NUSB3MON" "USB 3.0 Monitor" "Renesas Electronics Corporation" "c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
+ "ShStatEXE" "VirusScan tray icon" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shstat.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Dell System Manager.lnk" "Dell System Manager" "Dell Inc." "c:\program files\dell\dell system manager\dcpsysmgr.exe"
"C:\Users\YoungKX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Task Scheduler.lnk" "" "" "File not found: C:\Users\YoungKX\AppData\Roaming\Task Scheduler\Task Scheduler.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ccleaner" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner64.exe"
+ "wmcodecdspps" "" "" "File not found: C:\Users\YoungKX\AppData\Local\Microsoft\Windows\1120\wmcodecdspps.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\shext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\shext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\shext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "VirusScan" "Shell Extension" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\shext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\scriptsn.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "scriptproxy" "VSCore Script Scanner" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\scriptsn.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
"Task Scheduler" "" "" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AESTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\idt\wdm\aestsr64.exe"
+ "Credential Vault Host Control Service" "Host Control Service for Fingerprint Processing" "Broadcom Corporation" "c:\program files\broadcom corporation\broadcom ush host components\cv\bin\hostcontrolservice.exe"
+ "Credential Vault Host Storage" "Host Storage Service for Persisting CV Objects into Hard drive" "Broadcom Corporation" "c:\program files\broadcom corporation\broadcom ush host components\cv\bin\hoststorageservice.exe"
+ "dcpsysmgrsvc" "A support service required for the proper operation of Dell System Manager." "Dell Inc." "c:\program files\dell\dell system manager\dcpsysmgrsvc.exe"
+ "EvtEng" "Manages the event trace messages for all the Intel® PROSet/Wireless Software components." "Intel® Corporation" "c:\program files\intel\wifi\bin\evteng.exe"
+ "Intel® PROSet Monitoring Service" "The Intel® PROSet Monitoring Service actively monitors changes to the system and updates affected network devices to keep them running in optimal condition. Stopping this service may negatively affect the performance of the network devices on the system." "Intel Corporation" "c:\windows\system32\iprosetmonitor.exe"
+ "jhi_service" "Intel® Identity Protection Technology Host Interface Service - Allows applications to access the local Intel Identity Protection Technology" "Intel Corporation" "c:\program files (x86)\intel\services\ipt\jhi_service.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "McAfeeEngineService" "McAfee Engine Service" "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\engineserver.exe"
+ "McAfeeFramework" "Shared component framework for McAfee products" "McAfee, Inc." "c:\program files (x86)\mcafee\common framework\frameworkservice.exe"
+ "McShield" "Provides McAfee On-Access scanning protection of your computer system." "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\x64\mcshield.exe"
+ "McTaskManager" "Allows scheduling of McAfee scanning and updating activities." "McAfee, Inc." "c:\program files (x86)\mcafee\virusscan enterprise\vstskmgr.exe"
+ "mfevtp" "Provides validation trust protection services" "McAfee, Inc." "c:\windows\system32\mfevtps.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files\microsoft office\office14\groove.exe"
+ "NWVZHelper" "NWHelper Module" "Novatel Wireless Inc." "c:\program files (x86)\novatel wireless\verizon\drivers\nwhelper_001.exe"
+ "O2FLASH" "O2 Flash Memory Service" "O2Micro International" "c:\windows\system32\drivers\o2flash.exe"
+ "O2SDIOAssist" "O2Micro SDIO service" "" "c:\windows\syswow64\srvany.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "ose64" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "RegSrvc" "Provides registry access to all Intel® PROSet/Wireless Software components" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\program files\idt\wdm\stacsv64.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "vpnagent" "Cisco AnyConnect VPN Agent for Windows" "Cisco Systems, Inc." "c:\program files (x86)\cisco\cisco anyconnect vpn client\vpnagent.exe"
+ "VZWConfigService" "VZW Config Utility Service" "Novatel Wireless Inc." "c:\program files (x86)\novatel wireless\lte support\vzwmsconfig.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "ZcfgSvc7" "ZeroConfig Service for Intel® PROSet/Wireless WiFi Software" "Intel® Corporation" "c:\program files\intel\wifi\bin\zcfgsvc7.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Acceler" "Accelerometer Port I/O" "ST Microelectronics" "c:\windows\system32\drivers\accelern.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "bpenum" "Intel® WiMax Link 5050 Series Enumerator" "Intel Corporation" "c:\windows\system32\drivers\bpenum.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CtClsFlt" "Video Class Upper Filter Driver (64-bit)" "Creative Technology Ltd." "c:\windows\system32\drivers\ctclsflt.sys"
+ "cvusbdrv" "Broadcom Credential Vault USB Driver" "Broadcom Corporation" "c:\windows\system32\drivers\cvusbdrv.sys"
+ "e1cexpress" "Intel® Gigabit Adapter NDIS 6.x driver" "Intel Corporation" "c:\windows\system32\drivers\e1c62x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "mfeapfk" "Access Protection Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk" "Anti-Virus File System Filter Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfehidk" "McAfee Link Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfehidk.sys"
+ "mferkdet" "McAfee Code Analysis Driver" "McAfee, Inc." "c:\windows\system32\drivers\mferkdet.sys"
+ "mfetdik" "Anti-Virus Mini-Firewall Driver" "McAfee, Inc." "c:\windows\system32\drivers\mfetdik.sys"
+ "NETwNs64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwns64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "NWADI" "NWADI Interface Bus Enumerator" "Novatel Wireless Inc" "c:\windows\system32\drivers\nwadienum.sys"
+ "NWRmNet_001" "USB NDIS Miniport Driver" "Novatel Wireless Inc." "c:\windows\system32\drivers\nwrmnet_001.sys"
+ "NWUSBModem_001" "Novatel Wireless USB Modem/Serial Device Driver" "Novatel Wireless Inc." "c:\windows\system32\drivers\nwusbmdm_001.sys"
+ "NWUSBPort2_001" "Novatel Wireless USB Modem/Serial Device Driver" "Novatel Wireless Inc." "c:\windows\system32\drivers\nwusbser2_001.sys"
+ "NWUSBPort_001" "Novatel Wireless USB Modem/Serial Device Driver" "Novatel Wireless Inc." "c:\windows\system32\drivers\nwusbser_001.sys"
+ "O2MDFRDR" "O2Micro Media Reader Driver (AMD64)" "O2Micro " "c:\windows\system32\drivers\o2mdfw7x64.sys"
+ "O2SDJRDR" "O2Micro SD Reader Driver (AMD64)" "O2Micro " "c:\windows\system32\drivers\o2sdjw7x64.sys"
+ "PBADRV" "PBADRV" "Dell Inc" "c:\windows\system32\drivers\pbadrv.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Ser2ph" "Microsoft USB GPS driver" "Prolific Technology Inc." "c:\windows\system32\drivers\ser2ph64.sys"
+ "Ser2pl" "USB-to-Serial Cable Driver" "Prolific Technology Inc." "c:\windows\system32\drivers\ser2pl64.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stdcfltn" "Disk Class Filter Driver for Accelerometer" "ST Microelectronics" "c:\windows\system32\drivers\stdcfltn.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vpnva" "Cisco AnyConnect VPN Client Virtual Miniport Adapter for Windows" "Cisco Systems, Inc." "c:\windows\system32\drivers\vpnva64.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AC3File" "" "" "c:\program files (x86)\k-lite codec pack\filters\ac3file.ax"
+ "Creative MJPEG Decoder 2" "Decoder" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\ctmjpgdec2.ax"
+ "Creative Video Processing Filter" "Creative Video Processing Filter" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\vidprocu.ax"
+ "DC-Bass Source" "DirectShow™ Audio Decoder" "http://www.dsp-worx.de" "c:\program files (x86)\k-lite codec pack\filters\dcbasssource.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\k-lite codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\k-lite codec pack\filters\vsfilter.dll"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "File Source (Monkey Audio)" "" "" "c:\program files (x86)\k-lite codec pack\filters\monkeysource.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\k-lite codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavvideo.ax"
+ "madFlac Decoder" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madflac.ax"
+ "madFlac Source" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madflac.ax"
+ "madVR" "madshi's D3D9 based video renderer" "madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madvr\madvr.ax"
+ "MONOGRAM AMR Decoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files (x86)\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM AMR Encoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files (x86)\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM AMR Mux" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files (x86)\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM AMR Splitter" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files (x86)\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM Musepack Decoder" "mmmpcdec" "" "c:\program files (x86)\k-lite codec pack\filters\mmmpcdec.ax"
+ "MONOGRAM Musepack Splitter" "mmmpcdmx" "" "c:\program files (x86)\k-lite codec pack\filters\mmmpcdmx.ax"
+ "RadLight OptimFROG DirectShow Filter" "RLOFRDec" "RadLight" "c:\program files (x86)\k-lite codec pack\filters\rlofrdec.ax"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\program files (x86)\k-lite codec pack\filters\vp7dec.ax"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files (x86)\k-lite codec pack\filters\wavpackdsdecoder.ax"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files (x86)\k-lite codec pack\filters\wavpackdssplitter.ax"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "Provider Object" "Windows Vista and Windows 7 Credential Provider" "UPEK Inc." "c:\program files\common files\spba\provider.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters" "" "" ""
+ "Provider Filter Object" "Windows Vista and Windows 7 Credential Provider" "UPEK Inc." "c:\program files\common files\spba\provider.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
+ "spba" "PS QL Logon Kernel" "UPEK Inc." "c:\program files\common files\spba\homefus2.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PCL hpf3lw73" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3lw73.dll"
+ "Status Monitor Language Monitor for Dell Laser Printer 5100cn" "Language Monitor for x64 & Dell Laser Printer 5100cn" "Dell Inc." "c:\windows\system32\dlxcrzil.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "Cwbnetnt" "Client Access Network" "IBM Corporation" "c:\program files (x86)\ibm\client access\shared\cwbnetnt.dll"

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:29 PM

Posted 26 September 2012 - 09:57 AM

Launch Autoruns and uncheck these entries

"C:\Users\YoungKX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Task Scheduler.lnk" "" "" "File not found: C:\Users\YoungKX\AppData\Roaming\Task Scheduler\Task Scheduler.exe"
""HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "wmcodecdspps" "" "" "File not found: C:\Users\YoungKX\AppData\Local\Microsoft\Windows\1120\wmcodecdspps.exe"

Reboot to normal mode

Run malwarebytes and farbar service scanner and post the new logs

#11 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 26 September 2012 - 10:40 AM

Run Rkill 1st and then Malwarebytes?

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:29 PM

Posted 26 September 2012 - 10:42 AM

Yep :thumbup2:

#13 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 26 September 2012 - 10:44 AM

Rkill actually stopped something in program files this time.

#14 Kwade1875

Kwade1875
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:29 PM

Posted 26 September 2012 - 11:18 AM

Rkill

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 09/26/2012 at 10:29:23.
Operating System: Windows 7 Professional


Processes terminated by Rkill or while it was running:

C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe


Rkill completed on 09/26/2012 at 10:29:32.


Malwarebytes

Malwarebytes Anti-Malware (PRO) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.26.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
youngkx :: BNLC7R1 [administrator]

Protection: Enabled

9/26/2012 10:30:35 AM
mbam-log-2012-09-26 (10-30-35).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 335926
Time elapsed: 46 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:29 PM

Posted 26 September 2012 - 12:40 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP-http://support.microsoft.com/kb/310405

Vista & windows 7-http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users