Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Failed to connect to a windows service


  • Please log in to reply
51 replies to this topic

#1 sippenhaft

sippenhaft

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Joisey
  • Local time:02:14 AM

Posted 02 November 2012 - 09:31 PM

Have not done much with the computer, there where some windows updates over the past week or so...

Turn on computer and it loads pretty normal. A few times it took a long time.
In the incon tray notification pops up and says:
Faild to connect to a windows serivce.
Group Policy CLient service....prevents users from logging on ... as an admin look in event log.

This is my home/personal computer and there are NO other users?!?
Not sure what the hec this error is.
It goes away after a minute and the computer runs fine.

I have Avast internet security, malewarebytes running. Did scans with same with negative results.
Also ran TDSSKILLER, Superantispyware, and spybot also with negative results (other than cookies)

After starting a thread in another area, I also did the following: http://www.bleepingcomputer.com/forums/topic473784.html/page__pid__2885151#entry2885151

So I used ESET and ran the scan.
It found 5 items (and deleted them...), however, all the items it found, I know what they are and I installed them. (I have log if you want to see it)
Also ran SCANNOW in command prompt window and it found no errors...

Googled and goggled some more...tried to change/add a registry setting to delay the Group Policy Timeout as seen in this workaround: http://support.microsoft.com/kb/2421599

but the issue is still here...

Specs:
Windows 7 Home Premium 64bit

any ideas? :blink:

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:14 AM

Posted 02 November 2012 - 09:54 PM

This is a case of profile corruption

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

If scan comes out clean

Follow the steps given here

http://windows.microsoft.com/is-IS/windows7/fix-a-corrupted-user-profile

Edited by narenxp, 03 November 2012 - 08:21 AM.


#3 sippenhaft

sippenhaft
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Joisey
  • Local time:02:14 AM

Posted 03 November 2012 - 09:01 AM

TDSSKILLER scan = Negative results. Log Attached at bottom

Created new profiles and followed instructions on how to fix profie...When I logged into the new accounts to start the process of coping and pasting files, the same error pops up in the icon tray of the new accounts.

Followed instructions anyway, and obviously....issue is still here.

09:55:40.0467 0388 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
09:55:40.0732 0388 ============================================================
09:55:40.0732 0388 Current date / time: 2012/11/03 09:55:40.0732
09:55:40.0732 0388 SystemInfo:
09:55:40.0732 0388
09:55:40.0732 0388 OS Version: 6.1.7601 ServicePack: 1.0
09:55:40.0732 0388 Product type: Workstation
09:55:40.0732 0388 ComputerName: STEVE-PC
09:55:40.0732 0388 UserName: Steve
09:55:40.0732 0388 Windows directory: C:\Windows
09:55:40.0732 0388 System windows directory: C:\Windows
09:55:40.0732 0388 Running under WOW64
09:55:40.0732 0388 Processor architecture: Intel x64
09:55:40.0732 0388 Number of processors: 6
09:55:40.0732 0388 Page size: 0x1000
09:55:40.0732 0388 Boot type: Normal boot
09:55:40.0732 0388 ============================================================
09:55:41.0091 0388 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3F161, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000048
09:55:41.0106 0388 ============================================================
09:55:41.0106 0388 \Device\Harddisk0\DR0:
09:55:41.0106 0388 MBR partitions:
09:55:41.0106 0388 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:55:41.0106 0388 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xE8DD5800
09:55:41.0106 0388 ============================================================
09:55:41.0122 0388 C: <-> \Device\Harddisk0\DR0\Partition2
09:55:41.0122 0388 ============================================================
09:55:41.0122 0388 Initialize success
09:55:41.0122 0388 ============================================================
09:56:05.0817 4720 ============================================================
09:56:05.0817 4720 Scan started
09:56:05.0817 4720 Mode: Manual; TDLFS;
09:56:05.0817 4720 ============================================================
09:56:06.0207 4720 ================ Scan system memory ========================
09:56:06.0207 4720 System memory - ok
09:56:06.0207 4720 ================ Scan services =============================
09:56:06.0316 4720 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
09:56:06.0316 4720 !SASCORE - ok
09:56:06.0441 4720 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:56:06.0441 4720 1394ohci - ok
09:56:06.0488 4720 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:56:06.0503 4720 ACPI - ok
09:56:06.0519 4720 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:56:06.0519 4720 AcpiPmi - ok
09:56:06.0644 4720 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:56:06.0644 4720 AdobeFlashPlayerUpdateSvc - ok
09:56:06.0675 4720 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:56:06.0675 4720 adp94xx - ok
09:56:06.0690 4720 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:56:06.0706 4720 adpahci - ok
09:56:06.0722 4720 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:56:06.0722 4720 adpu320 - ok
09:56:06.0737 4720 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:56:06.0753 4720 AeLookupSvc - ok
09:56:06.0784 4720 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
09:56:06.0784 4720 AFD - ok
09:56:06.0800 4720 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:56:06.0800 4720 agp440 - ok
09:56:06.0815 4720 [ 94C0972B06C75456ED574DD46417B1D8 ] aksdf C:\Windows\system32\DRIVERS\aksdf.sys
09:56:06.0831 4720 aksdf - ok
09:56:06.0846 4720 [ 7B0BC062CA6ABAB23F88EA483B5A538E ] aksfridge C:\Windows\system32\DRIVERS\aksfridge.sys
09:56:06.0846 4720 aksfridge - ok
09:56:06.0878 4720 [ A56F1B0F967AEF8A82D7771E6D166DEF ] akshasp C:\Windows\system32\DRIVERS\akshasp.sys
09:56:06.0878 4720 akshasp - ok
09:56:06.0893 4720 [ 67DFF8C8F95CB21C9C3380DD4C0387F2 ] akshhl C:\Windows\system32\DRIVERS\akshhl.sys
09:56:06.0893 4720 akshhl - ok
09:56:06.0893 4720 [ A9A09BC526E614CE9F29BB23C2A76CED ] aksusb C:\Windows\system32\DRIVERS\aksusb.sys
09:56:06.0909 4720 aksusb - ok
09:56:06.0924 4720 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
09:56:06.0924 4720 ALG - ok
09:56:06.0940 4720 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
09:56:06.0940 4720 aliide - ok
09:56:06.0971 4720 [ A359974EAAC83A435497C52F62A2E590 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
09:56:06.0971 4720 AMD External Events Utility - ok
09:56:06.0987 4720 AMD FUEL Service - ok
09:56:07.0018 4720 [ DD27F6C3DE9BFE50635C721E09EDC5DD ] AMD Reservation Manager C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
09:56:07.0018 4720 AMD Reservation Manager - ok
09:56:07.0034 4720 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
09:56:07.0034 4720 amdide - ok
09:56:07.0049 4720 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
09:56:07.0049 4720 amdiox64 - ok
09:56:07.0065 4720 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:56:07.0065 4720 AmdK8 - ok
09:56:07.0236 4720 [ 60216B0E704584DE6D5A9F59E9C34C47 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
09:56:07.0377 4720 amdkmdag - ok
09:56:07.0408 4720 [ 6B4E9261B613B047A9A145F328889968 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
09:56:07.0408 4720 amdkmdap - ok
09:56:07.0424 4720 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:56:07.0424 4720 AmdPPM - ok
09:56:07.0439 4720 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:56:07.0439 4720 amdsata - ok
09:56:07.0455 4720 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:56:07.0455 4720 amdsbs - ok
09:56:07.0455 4720 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:56:07.0455 4720 amdxata - ok
09:56:07.0502 4720 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
09:56:07.0502 4720 AppID - ok
09:56:07.0517 4720 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:56:07.0517 4720 AppIDSvc - ok
09:56:07.0548 4720 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
09:56:07.0564 4720 Appinfo - ok
09:56:07.0580 4720 [ 301AA64F9643BC453D90A66C4C0E7204 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
09:56:07.0580 4720 AppleCharger - ok
09:56:07.0595 4720 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
09:56:07.0595 4720 AppleChargerSrv - ok
09:56:07.0626 4720 [ 1B1A533F3BE2A540C8F58F14B2886A97 ] appliand C:\Windows\system32\DRIVERS\appliand.sys
09:56:07.0626 4720 appliand - ok
09:56:07.0642 4720 [ 1B1A533F3BE2A540C8F58F14B2886A97 ] appliandMP C:\Windows\system32\DRIVERS\appliand.sys
09:56:07.0642 4720 appliandMP - ok
09:56:07.0658 4720 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
09:56:07.0673 4720 arc - ok
09:56:07.0689 4720 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:56:07.0689 4720 arcsas - ok
09:56:07.0767 4720 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:56:07.0767 4720 aspnet_state - ok
09:56:07.0798 4720 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
09:56:07.0814 4720 aswFsBlk - ok
09:56:07.0845 4720 [ 9FFC732E12FF53E05FE9E02C8C00CE87 ] aswFW C:\Windows\system32\drivers\aswFW.sys
09:56:07.0845 4720 aswFW - ok
09:56:07.0876 4720 [ 6B91E6D483AADB3FC4E13E2355200611 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
09:56:07.0876 4720 aswKbd - ok
09:56:07.0938 4720 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
09:56:07.0938 4720 aswMonFlt - ok
09:56:07.0954 4720 [ 518B8D447A1975AB46DA093A2E743256 ] aswNdis C:\Windows\system32\DRIVERS\aswNdis.sys
09:56:07.0954 4720 aswNdis - ok
09:56:08.0001 4720 [ 5A832BBB1B563B6B3FDA46239B630037 ] aswNdis2 C:\Windows\system32\drivers\aswNdis2.sys
09:56:08.0016 4720 aswNdis2 - ok
09:56:08.0048 4720 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
09:56:08.0048 4720 aswRdr - ok
09:56:08.0110 4720 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
09:56:08.0126 4720 aswSnx - ok
09:56:08.0172 4720 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
09:56:08.0172 4720 aswSP - ok
09:56:08.0204 4720 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
09:56:08.0204 4720 aswTdi - ok
09:56:08.0235 4720 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:56:08.0235 4720 AsyncMac - ok
09:56:08.0282 4720 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
09:56:08.0282 4720 atapi - ok
09:56:08.0344 4720 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:56:08.0360 4720 AudioEndpointBuilder - ok
09:56:08.0391 4720 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:56:08.0391 4720 AudioSrv - ok
09:56:08.0438 4720 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:56:08.0438 4720 avast! Antivirus - ok
09:56:08.0438 4720 [ BC0E07A768A0A14C48E3CE1875F2C377 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
09:56:08.0438 4720 avast! Firewall - ok
09:56:08.0484 4720 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:56:08.0484 4720 AxInstSV - ok
09:56:08.0500 4720 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
09:56:08.0516 4720 b06bdrv - ok
09:56:08.0531 4720 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:56:08.0531 4720 b57nd60a - ok
09:56:08.0625 4720 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
09:56:08.0625 4720 BBSvc - ok
09:56:08.0656 4720 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
09:56:08.0656 4720 BBUpdate - ok
09:56:08.0718 4720 [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
09:56:08.0718 4720 BCUService - ok
09:56:08.0750 4720 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
09:56:08.0750 4720 BDESVC - ok
09:56:08.0765 4720 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
09:56:08.0765 4720 Beep - ok
09:56:08.0796 4720 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
09:56:08.0812 4720 BFE - ok
09:56:08.0843 4720 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
09:56:08.0859 4720 BITS - ok
09:56:08.0874 4720 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:56:08.0874 4720 blbdrive - ok
09:56:08.0906 4720 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:56:08.0906 4720 bowser - ok
09:56:08.0921 4720 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:56:08.0921 4720 BrFiltLo - ok
09:56:08.0921 4720 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:56:08.0937 4720 BrFiltUp - ok
09:56:08.0937 4720 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
09:56:08.0937 4720 BridgeMP - ok
09:56:08.0968 4720 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
09:56:08.0968 4720 Browser - ok
09:56:08.0999 4720 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:56:08.0999 4720 Brserid - ok
09:56:09.0015 4720 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:56:09.0015 4720 BrSerWdm - ok
09:56:09.0030 4720 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:56:09.0030 4720 BrUsbMdm - ok
09:56:09.0030 4720 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:56:09.0030 4720 BrUsbSer - ok
09:56:09.0046 4720 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:56:09.0046 4720 BTHMODEM - ok
09:56:09.0062 4720 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
09:56:09.0062 4720 bthserv - ok
09:56:09.0077 4720 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:56:09.0077 4720 cdfs - ok
09:56:09.0108 4720 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
09:56:09.0108 4720 cdrom - ok
09:56:09.0140 4720 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
09:56:09.0140 4720 CertPropSvc - ok
09:56:09.0155 4720 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:56:09.0155 4720 circlass - ok
09:56:09.0171 4720 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
09:56:09.0186 4720 CLFS - ok
09:56:09.0327 4720 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:56:09.0327 4720 clr_optimization_v2.0.50727_32 - ok
09:56:09.0358 4720 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:56:09.0358 4720 clr_optimization_v2.0.50727_64 - ok
09:56:09.0405 4720 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:56:09.0405 4720 clr_optimization_v4.0.30319_32 - ok
09:56:09.0420 4720 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:56:09.0420 4720 clr_optimization_v4.0.30319_64 - ok
09:56:09.0436 4720 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:56:09.0452 4720 CmBatt - ok
09:56:09.0467 4720 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:56:09.0467 4720 cmdide - ok
09:56:09.0514 4720 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
09:56:09.0514 4720 CNG - ok
09:56:09.0545 4720 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:56:09.0545 4720 Compbatt - ok
09:56:09.0561 4720 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:56:09.0561 4720 CompositeBus - ok
09:56:09.0561 4720 COMSysApp - ok
09:56:09.0608 4720 [ CCB09EB78E047C931708149992C2E435 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
09:56:09.0608 4720 cpuz135 - ok
09:56:09.0623 4720 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:56:09.0623 4720 crcdisk - ok
09:56:09.0686 4720 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
09:56:09.0686 4720 Creative ALchemy AL6 Licensing Service - ok
09:56:09.0717 4720 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
09:56:09.0717 4720 Creative Audio Engine Licensing Service - ok
09:56:09.0732 4720 [ D03466C36EF0E5C7694FF38B45271D9D ] Creative Media Toolbox 6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe
09:56:09.0732 4720 Creative Media Toolbox 6 Licensing Service - ok
09:56:09.0764 4720 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:56:09.0764 4720 CryptSvc - ok
09:56:09.0779 4720 [ 148C9C111291C41D6B2ABFB6FBB43856 ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
09:56:09.0779 4720 CT20XUT - ok
09:56:09.0795 4720 [ 148C9C111291C41D6B2ABFB6FBB43856 ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
09:56:09.0795 4720 CT20XUT.SYS - ok
09:56:09.0826 4720 [ 397FBD4454E5B2FB77E55D1013DF548C ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
09:56:09.0826 4720 ctac32k - ok
09:56:09.0857 4720 [ 50A8CD4DF066FE57D0C473A2645988CC ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
09:56:09.0857 4720 ctaud2k - ok
09:56:09.0904 4720 [ 5CE3D0E1D1B3832EE052CFC442EEE0FA ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
09:56:09.0904 4720 CTAudSvcService - ok
09:56:09.0966 4720 [ 6F9C3C6C78F5296F4BC7102FB0F7CB65 ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
09:56:09.0982 4720 CTEXFIFX - ok
09:56:10.0013 4720 [ 6F9C3C6C78F5296F4BC7102FB0F7CB65 ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
09:56:10.0013 4720 CTEXFIFX.SYS - ok
09:56:10.0029 4720 [ AE78CA7EE865A28AC841211DB655ACF3 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
09:56:10.0029 4720 CTHWIUT - ok
09:56:10.0029 4720 [ AE78CA7EE865A28AC841211DB655ACF3 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
09:56:10.0029 4720 CTHWIUT.SYS - ok
09:56:10.0044 4720 [ 757776E207CA5E71E4A16BD1260AE1F2 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
09:56:10.0044 4720 ctprxy2k - ok
09:56:10.0060 4720 [ 9B111EE2F488A8D9C21A13ED4C777795 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
09:56:10.0060 4720 ctsfm2k - ok
09:56:10.0154 4720 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
09:56:10.0154 4720 cvhsvc - ok
09:56:10.0200 4720 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:56:10.0200 4720 DcomLaunch - ok
09:56:10.0232 4720 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
09:56:10.0232 4720 defragsvc - ok
09:56:10.0263 4720 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:56:10.0263 4720 DfsC - ok
09:56:10.0310 4720 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
09:56:10.0325 4720 Dhcp - ok
09:56:10.0356 4720 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
09:56:10.0356 4720 discache - ok
09:56:10.0388 4720 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:56:10.0388 4720 Disk - ok
09:56:10.0434 4720 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:56:10.0434 4720 Dnscache - ok
09:56:10.0481 4720 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
09:56:10.0481 4720 dot3svc - ok
09:56:10.0497 4720 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
09:56:10.0497 4720 DPS - ok
09:56:10.0512 4720 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:56:10.0512 4720 drmkaud - ok
09:56:10.0575 4720 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:56:10.0575 4720 DXGKrnl - ok
09:56:10.0606 4720 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
09:56:10.0606 4720 EapHost - ok
09:56:10.0684 4720 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
09:56:10.0715 4720 ebdrv - ok
09:56:10.0746 4720 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
09:56:10.0746 4720 EFS - ok
09:56:10.0793 4720 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:56:10.0793 4720 ehRecvr - ok
09:56:10.0809 4720 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
09:56:10.0824 4720 ehSched - ok
09:56:10.0840 4720 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:56:10.0840 4720 elxstor - ok
09:56:10.0871 4720 [ 683DCAF0D4EFC3F95A32E8924849202D ] emupia C:\Windows\system32\drivers\emupia2k.sys
09:56:10.0871 4720 emupia - ok
09:56:10.0887 4720 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:56:10.0902 4720 ErrDev - ok
09:56:10.0918 4720 [ B8FA96995726D1FA58476E352C02AD82 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
09:56:10.0918 4720 ES lite Service - ok
09:56:10.0965 4720 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
09:56:10.0965 4720 EventSystem - ok
09:56:10.0980 4720 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
09:56:10.0996 4720 exfat - ok
09:56:10.0996 4720 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:56:10.0996 4720 fastfat - ok
09:56:11.0027 4720 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
09:56:11.0043 4720 Fax - ok
09:56:11.0058 4720 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:56:11.0058 4720 fdc - ok
09:56:11.0074 4720 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
09:56:11.0074 4720 fdPHost - ok
09:56:11.0090 4720 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
09:56:11.0090 4720 FDResPub - ok
09:56:11.0090 4720 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:56:11.0105 4720 FileInfo - ok
09:56:11.0105 4720 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:56:11.0105 4720 Filetrace - ok
09:56:11.0152 4720 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
09:56:11.0152 4720 FLEXnet Licensing Service - ok
09:56:11.0168 4720 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:56:11.0168 4720 flpydisk - ok
09:56:11.0183 4720 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:56:11.0183 4720 FltMgr - ok
09:56:11.0230 4720 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
09:56:11.0230 4720 FontCache - ok
09:56:11.0277 4720 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:56:11.0277 4720 FontCache3.0.0.0 - ok
09:56:11.0292 4720 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:56:11.0308 4720 FsDepends - ok
09:56:11.0339 4720 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:56:11.0339 4720 Fs_Rec - ok
09:56:11.0355 4720 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:56:11.0355 4720 fvevol - ok
09:56:11.0370 4720 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:56:11.0370 4720 gagp30kx - ok
09:56:11.0402 4720 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
09:56:11.0402 4720 gdrv - ok
09:56:11.0417 4720 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
09:56:11.0433 4720 gpsvc - ok
09:56:11.0480 4720 [ 076F366B87575ADC7D152C7A34ACB3DC ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
09:56:11.0495 4720 ha20x22k - ok
09:56:11.0526 4720 [ 4A7533EB52DC9D1847E7F78DEE1CE322 ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
09:56:11.0558 4720 ha20x2k - ok
09:56:11.0589 4720 [ 78FAD9117E4527F2CA82259DA10F40BD ] Hardlock C:\Windows\system32\drivers\hardlock.sys
09:56:11.0589 4720 Hardlock - ok
09:56:11.0604 4720 hasplms - ok
09:56:11.0604 4720 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:56:11.0604 4720 hcw85cir - ok
09:56:11.0651 4720 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:56:11.0651 4720 HdAudAddService - ok
09:56:11.0667 4720 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:56:11.0667 4720 HDAudBus - ok
09:56:11.0667 4720 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:56:11.0682 4720 HidBatt - ok
09:56:11.0682 4720 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:56:11.0682 4720 HidBth - ok
09:56:11.0698 4720 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:56:11.0698 4720 HidIr - ok
09:56:11.0714 4720 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
09:56:11.0714 4720 hidserv - ok
09:56:11.0745 4720 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:56:11.0745 4720 HidUsb - ok
09:56:11.0776 4720 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:56:11.0792 4720 hkmsvc - ok
09:56:11.0838 4720 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:56:11.0838 4720 HomeGroupListener - ok
09:56:11.0885 4720 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:56:11.0901 4720 HomeGroupProvider - ok
09:56:11.0916 4720 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:56:11.0916 4720 HpSAMD - ok
09:56:11.0979 4720 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:56:11.0979 4720 HTTP - ok
09:56:12.0010 4720 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:56:12.0010 4720 hwpolicy - ok
09:56:12.0026 4720 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
09:56:12.0026 4720 i8042prt - ok
09:56:12.0057 4720 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:56:12.0057 4720 iaStorV - ok
09:56:12.0104 4720 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:56:12.0119 4720 idsvc - ok
09:56:12.0119 4720 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:56:12.0135 4720 iirsp - ok
09:56:12.0150 4720 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
09:56:12.0166 4720 IKEEXT - ok
09:56:12.0228 4720 [ 0ADF714079AE174A39D69036143E4C50 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
09:56:12.0260 4720 IntcAzAudAddService - ok
09:56:12.0260 4720 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
09:56:12.0260 4720 intelide - ok
09:56:12.0275 4720 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:56:12.0275 4720 intelppm - ok
09:56:12.0291 4720 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:56:12.0306 4720 IPBusEnum - ok
09:56:12.0322 4720 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:56:12.0322 4720 IpFilterDriver - ok
09:56:12.0353 4720 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:56:12.0353 4720 iphlpsvc - ok
09:56:12.0369 4720 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:56:12.0369 4720 IPMIDRV - ok
09:56:12.0369 4720 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:56:12.0384 4720 IPNAT - ok
09:56:12.0384 4720 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:56:12.0400 4720 IRENUM - ok
09:56:12.0400 4720 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:56:12.0400 4720 isapnp - ok
09:56:12.0431 4720 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:56:12.0431 4720 iScsiPrt - ok
09:56:12.0494 4720 [ F3A41EC4C6506E76E07A219B3A1DF8D2 ] JMB36X C:\Windows\SysWOW64\XSrvSetup.exe
09:56:12.0494 4720 JMB36X - ok
09:56:12.0509 4720 [ 1C368C1A2733DCC5B8E15420AA2B0F6D ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
09:56:12.0509 4720 JRAID - ok
09:56:12.0525 4720 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
09:56:12.0525 4720 kbdclass - ok
09:56:12.0540 4720 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
09:56:12.0556 4720 kbdhid - ok
09:56:12.0556 4720 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
09:56:12.0556 4720 KeyIso - ok
09:56:12.0603 4720 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:56:12.0603 4720 KSecDD - ok
09:56:12.0634 4720 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:56:12.0634 4720 KSecPkg - ok
09:56:12.0650 4720 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:56:12.0650 4720 ksthunk - ok
09:56:12.0681 4720 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
09:56:12.0696 4720 KtmRm - ok
09:56:12.0712 4720 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
09:56:12.0712 4720 LanmanServer - ok
09:56:12.0743 4720 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:56:12.0759 4720 LanmanWorkstation - ok
09:56:12.0774 4720 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:56:12.0774 4720 lltdio - ok
09:56:12.0806 4720 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:56:12.0806 4720 lltdsvc - ok
09:56:12.0821 4720 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:56:12.0821 4720 lmhosts - ok
09:56:12.0852 4720 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:56:12.0852 4720 LSI_FC - ok
09:56:12.0868 4720 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:56:12.0868 4720 LSI_SAS - ok
09:56:12.0884 4720 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:56:12.0884 4720 LSI_SAS2 - ok
09:56:12.0899 4720 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:56:12.0899 4720 LSI_SCSI - ok
09:56:12.0915 4720 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
09:56:12.0915 4720 luafv - ok
09:56:12.0977 4720 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
09:56:12.0977 4720 MBAMProtector - ok
09:56:13.0040 4720 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
09:56:13.0040 4720 MBAMScheduler - ok
09:56:13.0071 4720 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
09:56:13.0071 4720 MBAMService - ok
09:56:13.0102 4720 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:56:13.0102 4720 Mcx2Svc - ok
09:56:13.0118 4720 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:56:13.0133 4720 megasas - ok
09:56:13.0149 4720 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:56:13.0149 4720 MegaSR - ok
09:56:13.0196 4720 [ 780D96F551833E0DCFE0A33B02B774E8 ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
09:56:13.0196 4720 MemeoBackgroundService - ok
09:56:13.0211 4720 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
09:56:13.0227 4720 MMCSS - ok
09:56:13.0242 4720 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
09:56:13.0242 4720 Modem - ok
09:56:13.0258 4720 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:56:13.0258 4720 monitor - ok
09:56:13.0274 4720 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
09:56:13.0274 4720 mouclass - ok
09:56:13.0289 4720 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:56:13.0289 4720 mouhid - ok
09:56:13.0305 4720 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:56:13.0305 4720 mountmgr - ok
09:56:13.0383 4720 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
09:56:13.0383 4720 MpFilter - ok
09:56:13.0414 4720 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
09:56:13.0430 4720 mpio - ok
09:56:13.0445 4720 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:56:13.0445 4720 mpsdrv - ok
09:56:13.0508 4720 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
09:56:13.0523 4720 MpsSvc - ok
09:56:13.0554 4720 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:56:13.0570 4720 MRxDAV - ok
09:56:13.0601 4720 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:56:13.0601 4720 mrxsmb - ok
09:56:13.0632 4720 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:56:13.0648 4720 mrxsmb10 - ok
09:56:13.0664 4720 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:56:13.0664 4720 mrxsmb20 - ok
09:56:13.0679 4720 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
09:56:13.0679 4720 msahci - ok
09:56:13.0710 4720 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:56:13.0710 4720 msdsm - ok
09:56:13.0726 4720 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
09:56:13.0726 4720 MSDTC - ok
09:56:13.0742 4720 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:56:13.0742 4720 Msfs - ok
09:56:13.0757 4720 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:56:13.0757 4720 mshidkmdf - ok
09:56:13.0773 4720 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:56:13.0773 4720 msisadrv - ok
09:56:13.0804 4720 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:56:13.0804 4720 MSiSCSI - ok
09:56:13.0804 4720 msiserver - ok
09:56:13.0820 4720 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:56:13.0835 4720 MSKSSRV - ok
09:56:13.0898 4720 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
09:56:13.0898 4720 MsMpSvc - ok
09:56:13.0913 4720 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:56:13.0913 4720 MSPCLOCK - ok
09:56:13.0929 4720 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:56:13.0944 4720 MSPQM - ok
09:56:13.0976 4720 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:56:13.0991 4720 MsRPC - ok
09:56:14.0007 4720 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:56:14.0007 4720 mssmbios - ok
09:56:14.0022 4720 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:56:14.0022 4720 MSTEE - ok
09:56:14.0038 4720 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:56:14.0038 4720 MTConfig - ok
09:56:14.0054 4720 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
09:56:14.0054 4720 Mup - ok
09:56:14.0069 4720 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
09:56:14.0085 4720 napagent - ok
09:56:14.0100 4720 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:56:14.0116 4720 NativeWifiP - ok
09:56:14.0163 4720 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:56:14.0178 4720 NDIS - ok
09:56:14.0194 4720 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:56:14.0194 4720 NdisCap - ok
09:56:14.0210 4720 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:56:14.0210 4720 NdisTapi - ok
09:56:14.0241 4720 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:56:14.0256 4720 Ndisuio - ok
09:56:14.0256 4720 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:56:14.0272 4720 NdisWan - ok
09:56:14.0303 4720 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:56:14.0303 4720 NDProxy - ok
09:56:14.0303 4720 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:56:14.0303 4720 NetBIOS - ok
09:56:14.0319 4720 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:56:14.0319 4720 NetBT - ok
09:56:14.0334 4720 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
09:56:14.0334 4720 Netlogon - ok
09:56:14.0366 4720 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
09:56:14.0381 4720 Netman - ok
09:56:14.0412 4720 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:56:14.0428 4720 NetMsmqActivator - ok
09:56:14.0428 4720 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:56:14.0428 4720 NetPipeActivator - ok
09:56:14.0475 4720 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
09:56:14.0490 4720 netprofm - ok
09:56:14.0506 4720 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:56:14.0506 4720 NetTcpActivator - ok
09:56:14.0506 4720 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:56:14.0506 4720 NetTcpPortSharing - ok
09:56:14.0537 4720 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
09:56:14.0537 4720 nfrd960 - ok
09:56:14.0584 4720 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
09:56:14.0584 4720 NisDrv - ok
09:56:14.0600 4720 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
09:56:14.0615 4720 NisSrv - ok
09:56:14.0631 4720 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:56:14.0631 4720 NlaSvc - ok
09:56:14.0646 4720 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:56:14.0646 4720 Npfs - ok
09:56:14.0662 4720 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
09:56:14.0662 4720 nsi - ok
09:56:14.0678 4720 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:56:14.0678 4720 nsiproxy - ok
09:56:14.0740 4720 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:56:14.0771 4720 Ntfs - ok
09:56:14.0802 4720 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
09:56:14.0802 4720 Null - ok
09:56:14.0818 4720 [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
09:56:14.0818 4720 nusb3hub - ok
09:56:14.0849 4720 [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
09:56:14.0849 4720 nusb3xhc - ok
09:56:14.0865 4720 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
09:56:14.0880 4720 NVENETFD - ok
09:56:15.0083 4720 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:56:15.0270 4720 nvlddmkm - ok
09:56:15.0333 4720 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:56:15.0333 4720 nvraid - ok
09:56:15.0348 4720 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:56:15.0348 4720 nvstor - ok
09:56:15.0364 4720 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:56:15.0364 4720 nv_agp - ok
09:56:15.0380 4720 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:56:15.0380 4720 ohci1394 - ok
09:56:15.0426 4720 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:56:15.0442 4720 ose - ok
09:56:15.0567 4720 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:56:15.0629 4720 osppsvc - ok
09:56:15.0660 4720 [ A29A80A1CF63D0DC27EEFCAF27D34664 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
09:56:15.0660 4720 ossrv - ok
09:56:15.0692 4720 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:56:15.0707 4720 p2pimsvc - ok
09:56:15.0738 4720 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
09:56:15.0754 4720 p2psvc - ok
09:56:15.0785 4720 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:56:15.0785 4720 Parport - ok
09:56:15.0816 4720 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:56:15.0816 4720 partmgr - ok
09:56:15.0832 4720 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:56:15.0848 4720 PcaSvc - ok
09:56:15.0863 4720 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
09:56:15.0863 4720 pci - ok
09:56:15.0879 4720 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
09:56:15.0879 4720 pciide - ok
09:56:15.0910 4720 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:56:15.0910 4720 pcmcia - ok
09:56:15.0926 4720 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
09:56:15.0926 4720 pcw - ok
09:56:15.0941 4720 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:56:15.0957 4720 PEAUTH - ok
09:56:15.0972 4720 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:56:15.0988 4720 PerfHost - ok
09:56:16.0050 4720 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
09:56:16.0082 4720 pla - ok
09:56:16.0113 4720 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:56:16.0128 4720 PlugPlay - ok
09:56:16.0160 4720 PnkBstrA - ok
09:56:16.0175 4720 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:56:16.0191 4720 PNRPAutoReg - ok
09:56:16.0191 4720 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:56:16.0206 4720 PNRPsvc - ok
09:56:16.0222 4720 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:56:16.0222 4720 PolicyAgent - ok
09:56:16.0253 4720 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
09:56:16.0253 4720 Power - ok
09:56:16.0300 4720 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:56:16.0300 4720 PptpMiniport - ok
09:56:16.0331 4720 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:56:16.0331 4720 Processor - ok
09:56:16.0378 4720 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
09:56:16.0394 4720 ProfSvc - ok
09:56:16.0409 4720 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:56:16.0409 4720 ProtectedStorage - ok
09:56:16.0440 4720 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:56:16.0440 4720 Psched - ok
09:56:16.0487 4720 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:56:16.0534 4720 ql2300 - ok
09:56:16.0550 4720 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:56:16.0550 4720 ql40xx - ok
09:56:16.0565 4720 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
09:56:16.0581 4720 QWAVE - ok
09:56:16.0581 4720 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:56:16.0596 4720 QWAVEdrv - ok
09:56:16.0596 4720 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:56:16.0596 4720 RasAcd - ok
09:56:16.0612 4720 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:56:16.0612 4720 RasAgileVpn - ok
09:56:16.0628 4720 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
09:56:16.0643 4720 RasAuto - ok
09:56:16.0659 4720 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:56:16.0659 4720 Rasl2tp - ok
09:56:16.0674 4720 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
09:56:16.0674 4720 RasMan - ok
09:56:16.0690 4720 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:56:16.0690 4720 RasPppoe - ok
09:56:16.0706 4720 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:56:16.0706 4720 RasSstp - ok
09:56:16.0721 4720 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:56:16.0737 4720 rdbss - ok
09:56:16.0737 4720 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:56:16.0752 4720 rdpbus - ok
09:56:16.0752 4720 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:56:16.0752 4720 RDPCDD - ok
09:56:16.0768 4720 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:56:16.0768 4720 RDPENCDD - ok
09:56:16.0784 4720 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:56:16.0784 4720 RDPREFMP - ok
09:56:16.0846 4720 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:56:16.0846 4720 RdpVideoMiniport - ok
09:56:16.0877 4720 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:56:16.0893 4720 RDPWD - ok
09:56:16.0924 4720 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:56:16.0924 4720 rdyboost - ok
09:56:16.0940 4720 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:56:16.0940 4720 RemoteAccess - ok
09:56:16.0955 4720 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:56:16.0955 4720 RemoteRegistry - ok
09:56:16.0986 4720 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:56:16.0986 4720 RpcEptMapper - ok
09:56:17.0002 4720 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
09:56:17.0002 4720 RpcLocator - ok
09:56:17.0033 4720 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
09:56:17.0033 4720 RpcSs - ok
09:56:17.0049 4720 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:56:17.0049 4720 rspndr - ok
09:56:17.0080 4720 [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
09:56:17.0080 4720 RTHDMIAzAudService - ok
09:56:17.0111 4720 [ 4FBDA07EF0A3097CE14C5CABF723B278 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
09:56:17.0111 4720 RTL8167 - ok
09:56:17.0142 4720 [ 45C0B193065219189772A038E6C29D49 ] SaiH0762 C:\Windows\system32\DRIVERS\SaiH0762.sys
09:56:17.0158 4720 SaiH0762 - ok
09:56:17.0174 4720 [ 25B1A43D221DEB3B22C8785648302B2E ] SaiNtBus C:\Windows\system32\drivers\SaiBus.sys
09:56:17.0174 4720 SaiNtBus - ok
09:56:17.0189 4720 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
09:56:17.0189 4720 SamSs - ok
09:56:17.0220 4720 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
09:56:17.0220 4720 SASDIFSV - ok
09:56:17.0236 4720 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
09:56:17.0236 4720 SASKUTIL - ok
09:56:17.0267 4720 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:56:17.0267 4720 sbp2port - ok
09:56:17.0361 4720 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
09:56:17.0361 4720 SBSDWSCService - ok
09:56:17.0392 4720 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:56:17.0392 4720 SCardSvr - ok
09:56:17.0423 4720 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:56:17.0439 4720 scfilter - ok
09:56:17.0486 4720 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
09:56:17.0517 4720 Schedule - ok
09:56:17.0548 4720 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
09:56:17.0548 4720 SCPolicySvc - ok
09:56:17.0564 4720 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:56:17.0564 4720 SDRSVC - ok
09:56:17.0595 4720 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:56:17.0595 4720 secdrv - ok
09:56:17.0626 4720 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
09:56:17.0626 4720 seclogon - ok
09:56:17.0642 4720 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
09:56:17.0642 4720 SENS - ok
09:56:17.0642 4720 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:56:17.0657 4720 SensrSvc - ok
09:56:17.0673 4720 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:56:17.0673 4720 Serenum - ok
09:56:17.0688 4720 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:56:17.0688 4720 Serial - ok
09:56:17.0704 4720 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:56:17.0704 4720 sermouse - ok
09:56:17.0751 4720 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
09:56:17.0751 4720 SessionEnv - ok
09:56:17.0798 4720 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:56:17.0798 4720 sffdisk - ok
09:56:17.0813 4720 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:56:17.0813 4720 sffp_mmc - ok
09:56:17.0829 4720 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:56:17.0829 4720 sffp_sd - ok
09:56:17.0844 4720 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:56:17.0844 4720 sfloppy - ok
09:56:17.0891 4720 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
09:56:17.0891 4720 Sftfs - ok
09:56:17.0938 4720 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
09:56:17.0954 4720 sftlist - ok
09:56:18.0000 4720 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
09:56:18.0000 4720 Sftplay - ok
09:56:18.0016 4720 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
09:56:18.0016 4720 Sftredir - ok
09:56:18.0032 4720 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
09:56:18.0032 4720 Sftvol - ok
09:56:18.0047 4720 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
09:56:18.0047 4720 sftvsa - ok
09:56:18.0078 4720 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:56:18.0078 4720 SharedAccess - ok
09:56:18.0110 4720 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:56:18.0110 4720 ShellHWDetection - ok
09:56:18.0125 4720 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:56:18.0125 4720 SiSRaid2 - ok
09:56:18.0141 4720 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:56:18.0156 4720 SiSRaid4 - ok
09:56:18.0156 4720 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:56:18.0172 4720 Smb - ok
09:56:18.0188 4720 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:56:18.0188 4720 SNMPTRAP - ok
09:56:18.0188 4720 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
09:56:18.0188 4720 spldr - ok
09:56:18.0234 4720 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
09:56:18.0250 4720 Spooler - ok
09:56:18.0359 4720 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
09:56:18.0437 4720 sppsvc - ok
09:56:18.0453 4720 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:56:18.0468 4720 sppuinotify - ok
09:56:18.0500 4720 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
09:56:18.0515 4720 srv - ok
09:56:18.0562 4720 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:56:18.0578 4720 srv2 - ok
09:56:18.0640 4720 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:56:18.0656 4720 srvnet - ok
09:56:18.0671 4720 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:56:18.0687 4720 SSDPSRV - ok
09:56:18.0749 4720 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:56:18.0765 4720 SstpSvc - ok
09:56:18.0796 4720 Steam Client Service - ok
09:56:18.0827 4720 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:56:18.0827 4720 stexstor - ok
09:56:18.0843 4720 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
09:56:18.0858 4720 stisvc - ok
09:56:18.0890 4720 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
09:56:18.0890 4720 swenum - ok
09:56:18.0968 4720 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
09:56:18.0983 4720 SwitchBoard - ok
09:56:18.0999 4720 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
09:56:19.0014 4720 swprv - ok
09:56:19.0061 4720 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
09:56:19.0108 4720 SysMain - ok
09:56:19.0108 4720 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:56:19.0124 4720 TabletInputService - ok
09:56:19.0139 4720 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:56:19.0139 4720 TapiSrv - ok
09:56:19.0155 4720 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
09:56:19.0155 4720 TBS - ok
09:56:19.0217 4720 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:56:19.0280 4720 Tcpip - ok
09:56:19.0326 4720 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:56:19.0342 4720 TCPIP6 - ok
09:56:19.0358 4720 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:56:19.0358 4720 tcpipreg - ok
09:56:19.0373 4720 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:56:19.0373 4720 TDPIPE - ok
09:56:19.0404 4720 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:56:19.0404 4720 TDTCP - ok
09:56:19.0451 4720 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:56:19.0451 4720 tdx - ok
09:56:19.0482 4720 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
09:56:19.0482 4720 TermDD - ok
09:56:19.0514 4720 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
09:56:19.0529 4720 TermService - ok
09:56:19.0545 4720 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
09:56:19.0545 4720 Themes - ok
09:56:19.0560 4720 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
09:56:19.0560 4720 THREADORDER - ok
09:56:19.0576 4720 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
09:56:19.0576 4720 TrkWks - ok
09:56:19.0607 4720 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:56:19.0607 4720 TrustedInstaller - ok
09:56:19.0607 4720 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:56:19.0607 4720 tssecsrv - ok
09:56:19.0638 4720 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:56:19.0638 4720 TsUsbFlt - ok
09:56:19.0685 4720 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:56:19.0685 4720 tunnel - ok
09:56:19.0701 4720 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:56:19.0701 4720 uagp35 - ok
09:56:19.0716 4720 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:56:19.0732 4720 udfs - ok
09:56:19.0748 4720 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:56:19.0748 4720 UI0Detect - ok
09:56:19.0763 4720 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:56:19.0779 4720 uliagpkx - ok
09:56:19.0779 4720 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:56:19.0779 4720 umbus - ok
09:56:19.0795 4720 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:56:19.0810 4720 UmPass - ok
09:56:19.0826 4720 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
09:56:19.0826 4720 upnphost - ok
09:56:19.0857 4720 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:56:19.0857 4720 usbccgp - ok
09:56:19.0873 4720 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:56:19.0888 4720 usbcir - ok
09:56:19.0904 4720 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:56:19.0904 4720 usbehci - ok
09:56:19.0919 4720 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:56:19.0919 4720 usbhub - ok
09:56:19.0935 4720 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
09:56:19.0951 4720 usbohci - ok
09:56:19.0966 4720 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:56:19.0966 4720 usbprint - ok
09:56:19.0966 4720 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:56:19.0966 4720 USBSTOR - ok
09:56:19.0982 4720 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
09:56:19.0982 4720 usbuhci - ok
09:56:19.0997 4720 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
09:56:19.0997 4720 UxSms - ok
09:56:20.0013 4720 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
09:56:20.0013 4720 VaultSvc - ok
09:56:20.0029 4720 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:56:20.0029 4720 vdrvroot - ok
09:56:20.0044 4720 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
09:56:20.0060 4720 vds - ok
09:56:20.0075 4720 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:56:20.0075 4720 vga - ok
09:56:20.0075 4720 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
09:56:20.0091 4720 VgaSave - ok
09:56:20.0107 4720 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:56:20.0107 4720 vhdmp - ok
09:56:20.0122 4720 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
09:56:20.0122 4720 viaide - ok
09:56:20.0138 4720 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:56:20.0138 4720 volmgr - ok
09:56:20.0169 4720 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:56:20.0185 4720 volmgrx - ok
09:56:20.0200 4720 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:56:20.0216 4720 volsnap - ok
09:56:20.0231 4720 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:56:20.0247 4720 vsmraid - ok
09:56:20.0278 4720 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
09:56:20.0309 4720 VSS - ok
09:56:20.0341 4720 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
09:56:20.0341 4720 vwifibus - ok
09:56:20.0341 4720 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
09:56:20.0356 4720 W32Time - ok
09:56:20.0372 4720 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:56:20.0372 4720 WacomPen - ok
09:56:20.0387 4720 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:56:20.0387 4720 WANARP - ok
09:56:20.0387 4720 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:56:20.0387 4720 Wanarpv6 - ok
09:56:20.0419 4720 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
09:56:20.0434 4720 WatAdminSvc - ok
09:56:20.0465 4720 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
09:56:20.0497 4720 wbengine - ok
09:56:20.0497 4720 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:56:20.0512 4720 WbioSrvc - ok
09:56:20.0512 4720 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:56:20.0528 4720 wcncsvc - ok
09:56:20.0543 4720 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:56:20.0543 4720 WcsPlugInService - ok
09:56:20.0559 4720 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:56:20.0559 4720 Wd - ok
09:56:20.0590 4720 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:56:20.0590 4720 Wdf01000 - ok
09:56:20.0606 4720 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:56:20.0606 4720 WdiServiceHost - ok
09:56:20.0606 4720 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:56:20.0606 4720 WdiSystemHost - ok
09:56:20.0621 4720 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
09:56:20.0621 4720 WebClient - ok
09:56:20.0637 4720 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:56:20.0653 4720 Wecsvc - ok
09:56:20.0653 4720 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:56:20.0653 4720 wercplsupport - ok
09:56:20.0668 4720 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
09:56:20.0684 4720 WerSvc - ok
09:56:20.0684 4720 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:56:20.0684 4720 WfpLwf - ok
09:56:20.0699 4720 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:56:20.0699 4720 WIMMount - ok
09:56:20.0715 4720 WinDefend - ok
09:56:20.0715 4720 WinHttpAutoProxySvc - ok
09:56:20.0731 4720 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:56:20.0731 4720 Winmgmt - ok
09:56:20.0793 4720 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
09:56:20.0840 4720 WinRM - ok
09:56:20.0887 4720 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
09:56:20.0887 4720 WinUsb - ok
09:56:20.0918 4720 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
09:56:20.0933 4720 Wlansvc - ok
09:56:21.0027 4720 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:56:21.0043 4720 wlidsvc - ok
09:56:21.0058 4720 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:56:21.0058 4720 WmiAcpi - ok
09:56:21.0074 4720 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:56:21.0074 4720 wmiApSrv - ok
09:56:21.0089 4720 WMPNetworkSvc - ok
09:56:21.0152 4720 [ 83B6CA03C846FCD47F9883D77D1EB27B ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
09:56:21.0152 4720 WMZuneComm - ok
09:56:21.0167 4720 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:56:21.0183 4720 WPCSvc - ok
09:56:21.0183 4720 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:56:21.0199 4720 WPDBusEnum - ok
09:56:21.0214 4720 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:56:21.0214 4720 ws2ifsl - ok
09:56:21.0230 4720 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
09:56:21.0230 4720 wscsvc - ok
09:56:21.0230 4720 WSearch - ok
09:56:21.0323 4720 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
09:56:21.0386 4720 wuauserv - ok
09:56:21.0401 4720 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:56:21.0401 4720 WudfPf - ok
09:56:21.0448 4720 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:56:21.0448 4720 WUDFRd - ok
09:56:21.0479 4720 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:56:21.0495 4720 wudfsvc - ok
09:56:21.0495 4720 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
09:56:21.0495 4720 WwanSvc - ok
09:56:21.0635 4720 [ 67B787C34FB2888D01B130AE007042D8 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
09:56:21.0760 4720 ZuneNetworkSvc - ok
09:56:21.0823 4720 [ 4D89FC1C20CF655739EFAC5DA81A67BC ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
09:56:21.0823 4720 ZuneWlanCfgSvc - ok
09:56:21.0838 4720 ================ Scan global ===============================
09:56:21.0854 4720 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
09:56:21.0901 4720 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
09:56:21.0916 4720 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
09:56:21.0932 4720 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
09:56:21.0963 4720 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
09:56:21.0963 4720 [Global] - ok
09:56:21.0963 4720 ================ Scan MBR ==================================
09:56:21.0963 4720 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:56:22.0291 4720 \Device\Harddisk0\DR0 - ok
09:56:22.0291 4720 ================ Scan VBR ==================================
09:56:22.0291 4720 [ 52A9703936A81F1657B7775754C5FB17 ] \Device\Harddisk0\DR0\Partition1
09:56:22.0291 4720 \Device\Harddisk0\DR0\Partition1 - ok
09:56:22.0322 4720 [ 59127E02D33D9A80847D573F6CCC6A6A ] \Device\Harddisk0\DR0\Partition2
09:56:22.0322 4720 \Device\Harddisk0\DR0\Partition2 - ok
09:56:22.0322 4720 ============================================================
09:56:22.0322 4720 Scan finished
09:56:22.0322 4720 ============================================================
09:56:22.0337 4856 Detected object count: 0
09:56:22.0337 4856 Actual detected object count: 0

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:14 AM

Posted 03 November 2012 - 12:37 PM

Download

mini toolbox

Checkmark following boxes:

List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#5 sippenhaft

sippenhaft
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Joisey
  • Local time:02:14 AM

Posted 03 November 2012 - 05:11 PM

OK....

MINITOOLBOX:
MiniToolBox by Farbar Version: 23-07-2012
Ran by Steve (administrator) on 03-11-2012 at 15:14:22
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/03/2012 10:23:54 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/03/2012 10:23:37 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/03/2012 10:22:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/03/2012 10:21:32 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.FlightSimulator.SimConnect&#x20;,processorArchitecture="x86",publicKeyToken="67c7c14424d61b5b",type="win32",version="10.0.60905.0"1".
Dependent Assembly Microsoft.FlightSimulator.SimConnect&#x20;,processorArchitecture="x86",publicKeyToken="67c7c14424d61b5b",type="win32",version="10.0.60905.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/03/2012 09:49:13 AM) (Source: ESENT) (User: )
Description: WinMail (4652) WindowsMail0: The backup has been stopped because it was halted by the client or the connection with the client failed.

Error: (11/03/2012 09:48:24 AM) (Source: ESENT) (User: )
Description: WinMail (3420) WindowsMail0: The backup has been stopped because it was halted by the client or the connection with the client failed.

Error: (11/02/2012 06:26:24 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/02/2012 06:26:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/02/2012 06:25:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/02/2012 06:23:31 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.FlightSimulator.SimConnect&#x20;,processorArchitecture="x86",publicKeyToken="67c7c14424d61b5b",type="win32",version="10.0.60905.0"1".
Dependent Assembly Microsoft.FlightSimulator.SimConnect&#x20;,processorArchitecture="x86",publicKeyToken="67c7c14424d61b5b",type="win32",version="10.0.60905.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (11/03/2012 09:38:48 AM) (Source: Service Control Manager) (User: )
Description: The Group Policy Client service failed to start due to the following error:
%%1053

Error: (11/03/2012 09:38:48 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (120000 milliseconds) while waiting for the Group Policy Client service to connect.

Error: (11/03/2012 09:37:39 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (11/03/2012 09:24:00 AM) (Source: Service Control Manager) (User: )
Description: The Group Policy Client service failed to start due to the following error:
%%1053

Error: (11/03/2012 09:24:00 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (120000 milliseconds) while waiting for the Group Policy Client service to connect.

Error: (11/03/2012 00:59:28 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (11/02/2012 10:22:27 PM) (Source: Service Control Manager) (User: )
Description: The Group Policy Client service failed to start due to the following error:
%%1053

Error: (11/02/2012 10:22:27 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (120000 milliseconds) while waiting for the Group Policy Client service to connect.

Error: (11/02/2012 09:10:36 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (11/02/2012 03:31:24 PM) (Source: Service Control Manager) (User: )
Description: The Group Policy Client service failed to start due to the following error:
%%1053


Microsoft Office Sessions:
=========================
Error: (11/03/2012 10:23:54 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (11/03/2012 10:23:37 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe

Error: (11/03/2012 10:22:50 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (11/03/2012 10:21:32 AM) (Source: SideBySide)(User: )
Description: Microsoft.FlightSimulator.SimConnect&#x20;,processorArchitecture="x86",publicKeyToken="67c7c14424d61b5b",type="win32",version="10.0.60905.0"C:\Program Files (x86)\Saitek\DirectOutput\SaiFlightSimX.exe.Manifest

Error: (11/03/2012 09:49:13 AM) (Source: ESENT)(User: )
Description: WinMail4652WindowsMail0:

Error: (11/03/2012 09:48:24 AM) (Source: ESENT)(User: )
Description: WinMail3420WindowsMail0:

Error: (11/02/2012 06:26:24 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (11/02/2012 06:26:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe

Error: (11/02/2012 06:25:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (11/02/2012 06:23:31 PM) (Source: SideBySide)(User: )
Description: Microsoft.FlightSimulator.SimConnect&#x20;,processorArchitecture="x86",publicKeyToken="67c7c14424d61b5b",type="win32",version="10.0.60905.0"C:\Program Files (x86)\Saitek\DirectOutput\SaiFlightSimX.exe.Manifest


=========================== Installed Programs ============================

Adobe Acrobat 9 Pro - English, Franšais, Deutsch (Version: 9.5.2)
Adobe Acrobat 9.5.2 - CPSID_83708
Adobe AIR (Version: 3.1.0.4880)
Adobe Community Help (Version: 3.5.23)
Adobe Creative Suite 5 Web Premium (Version: 5.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Media Player (Version: 1.8)
Advanced DHTML Popup Pro Footer Plugin (Version: 1.01.0102)
Advanced DHTML Popup Pro Images Plugin (Version: 1.00.0100)
Advanced DHTML Popup Pro Video Plugin (Version: 1.00.0100)
Advanced DHTML Popup Ult Footer Plugin (Version: 1.10.0301)
Advanced DHTML Popup Ult Images Plugin (Version: 1.00.0300)
Advanced DHTML Popup Ult Video Plugin (Version: 1.00.0300)
Advanced DHTML Popup Ultimate V3 (Version: 3.41.02.76)
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2011.0126.1749.31909)
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
Applian Director (Version: 2.0)
Applian Director (Version: 4)
ATI Catalyst Install Manager (Version: 3.0.812.0)
ATI Catalyst Registration (Version: 3.00.0000)
ATI Stream SDK v2 Developer (Version: 2.3.0.0)
Auto-MBL (Version: 3.0.0.96)
avast! Internet Security (Version: 7.0.1474.0)
Beyond Compare Version 3.3.3
Bing Bar (Version: 7.1.361.0)
Browser Configuration Utility (Version: 1.1.18.0)
Canopus Codec Option (Version: 3.04)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.0126.1749.31909)
Catalyst Control Center InstallProxy (Version: 2011.0126.1749.31909)
ccc-core-static (Version: 2011.0126.1749.31909)
ccc-utility64 (Version: 2011.0126.1749.31909)
CCC Help English (Version: 2011.0126.1748.31909)
CCleaner (Version: 3.24)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
Coupons.com Toolbar (Version: 6.2.7.3)
CPUID CPU-Z 1.57
Creative 3DMIDI Player (Version: 1.11)
Creative Audio Control Panel (Version: 3.00)
Creative Diagnostics (Version: 5.11)
Creative Media Toolbox 6 (Shared Components) (Version: 2.80.12)
Creative Media Toolbox 6 (Version: 6.02)
Creative MediaSource 5 (Version: 5.26)
Creative Software AutoUpdate (Version: 1.40)
Creative Sound Blaster Properties x64 Edition (Version: 1.02)
Creative System Information (Version: 1.10)
Creative WaveStudio 7 (Version: 7.14)
D3DX10 (Version: 15.4.2368.0902)
DCS A-10C (Version: 1.1.0.8)
Dolby Digital Live Pack (Version: 3.00)
DTS Connect Pack (Version: 1.00)
DVD Shrink 3.2
DVDFab 8.1.1.2 (08/08/2011) Qt
DVDFab Decrypter 3.0.8.6
EasySaver B9.1214.1 (Version: 1.00.0000)
ESET Online Scanner v3
FileZilla Client 3.5.3 (Version: 3.5.3)
FlamingText Gimp 2.0
Fraps (remove only)
Freecorder 5 (Version: 5.11)
Gigabyte Raid Configurer (Version: 1.00.0001)
HiJackThis (Version: 1.0.0)
IrfanView (remove only) (Version: 4.32)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 35 (Version: 6.0.350)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Memeo Instant Backup (Version: 4.60.0.7923)
MFZ0 codec (Remove Only)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Combat Flight Simulator 3.1
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2010 - English (Version: 14.0.5130.5001)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Morpheus Photo Animation Suite v3.15
Mozilla Firefox (3.6.15) (Version: 3.6.15 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.18.0)
ON_OFF Charge B10.0427.1 (Version: 1.00.0001)
OpenAL
Origin (Version: 8.1.2.444)
PDF Settings CS5 (Version: 10.0)
PDF to PNG
ProCoder 3 (Version: 3.05.91)
PunkBuster Services (Version: 0.986)
Qtracker (Version: 4.71)
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.18.322.2010)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.6034)
Realtek High Definition Audio Driver (Version: 6.0.1.6083)
Replay Converter 4 (Version: 4.07)
Replay Media Catcher 4 (Version: 4.1.6)
Replay Video Capture 5 (Version: 5.4.2)
Saitek DirectOutput 5.7.0.24 (Version: 5.7.0.24)
Saitek SST Programming Software (Version: 1.00.0000)
Screen Capture Review And Management (SCRAM)
Setup (Version: 2.01.01)
Shareaza 2.6.0.0 (Version: 2.6.0.0)
Simfatic Forms 3.1.4.231 (Version: 3.1.4.231)
Sound Blaster X-Fi (Version: 1.0)
SoundFont Bank Manager (Version: 3.21)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.5.1016)
TeamSpeak 3 Client (Version: 3.0.9.2)
The Lord of the Rings FREE Trial (Version: 1.00.0000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Windows Phone Intro Video (ENU) (Version: 04.07.0975.00)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
WMV9/VC-1 Video Playback (Version: 1.00.0000)
Wolfenstein - Enemy Territory
World of Tanks v.0.7.1
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)
Zwei-Stein 4 Version 0.960

========================= Memory info: ===================================

Percentage of memory in use: 27%
Total physical RAM: 8189.55 MB
Available physical RAM: 5969.52 MB
Total Pagefile: 16377.3 MB
Available Pagefile: 13830.28 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.06 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:1862.92 GB) (Free:1535.65 GB) NTFS

========================= Users: ========================================

User accounts for \\STEVE-PC

Administrator Guest Steve

========================= Restore Points ==================================

21-10-2012 18:42:52 Windows Update
24-10-2012 18:47:05 Windows Update
28-10-2012 02:26:35 Windows Update
29-10-2012 17:00:42 Windows Update
01-11-2012 01:17:22 ComboFix created restore point
02-11-2012 19:42:03 Windows Update

**** End of log ****



FARBAR:
Farbar Service Scanner Version: 03-11-2012
Ran by Steve (administrator) on 03-11-2012 at 18:07:43
Running from "C:\Users\Steve\Desktop\SECURITY"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


Rkill:
Rkill 2.4.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/03/2012 06:08:49 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

 ■1
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

20 out of 15296 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 11/03/2012 06:08:58 PM
Execution time: 0 hours(s), 0 minute(s), and 9 seconds(s)


:busy:

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:14 AM

Posted 03 November 2012 - 05:49 PM

You have a restore point on

21-10-2012 18:42:52 Windows Update


Try a system restore to this date and let me know if that helps.

#7 sippenhaft

sippenhaft
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Joisey
  • Local time:02:14 AM

Posted 03 November 2012 - 07:21 PM

System Restore to that date FAILED.

Popup said I can try another date but it did not complete the restore.
Reason Details:
Source: %SystemRoot%/registration
Destination ComPlusStaging

Should I try another date?

:dance:

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:14 AM

Posted 03 November 2012 - 07:52 PM

If possible try a date before 21-10-2012

#9 sippenhaft

sippenhaft
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Joisey
  • Local time:02:14 AM

Posted 04 November 2012 - 06:58 AM

No dates earlier...I click the show more dates box and now it only goes to 10/27/2012

Anyway to see more dates?

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:14 AM

Posted 04 November 2012 - 08:13 AM

I dont think that will work.

Do you get this error in test account?

#11 sippenhaft

sippenhaft
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Joisey
  • Local time:02:14 AM

Posted 04 November 2012 - 08:46 AM

yes...

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:14 AM

Posted 04 November 2012 - 09:18 AM

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
Reset file permissions
Register system files
Remove Policies Set By Infections
Repair Winsock & DNS Cache



Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Any changes?

Edited by narenxp, 04 November 2012 - 09:25 AM.


#13 wood36

wood36

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:14 AM

Posted 05 November 2012 - 12:13 PM

We have seen the same issue in our corporate environment, starting Thursday last week. So far we have had 3 Windows 7 Pro X64 laptops generate this error. Attempts to start the group policy client service have failed. However I believe the access denied to start the service is by design, it is only supposed to be managed by the system The gpsvc.dll is the same version as a working machine. Dated 11/20/2010.

The one thing in commmon seems to be that these machines were patched last week, and after a reboot they started seeing the error. There seems to have been patches released last week, which is odd since it was not patch tuesday.

Tried the repair tool. No luck. Going to try and install every patch back to 10/1, and see if makes a differnece.

#14 sippenhaft

sippenhaft
  • Topic Starter

  • Members
  • 115 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Joisey
  • Local time:02:14 AM

Posted 05 November 2012 - 01:16 PM

Ran repair tool....Error still there. <_<

@ WOOD36, at least I know its not just me! :clapping: Odd thing is mine is a person HOME edition of Win 7, yours is for a company...Lets see if anyone else starts having (or is having ) the same issue...

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:14 AM

Posted 05 November 2012 - 09:34 PM

Press Windows+R key and type

eventvwr and click ok

On left side,Expand Windows logs and select system logs

On right side click on Filter current log

Under Event level checkmark ERROR

Under Event source select service control manager and click ok

Now double click on errors related to Group policy client.Click on DETAILS tab and post the content of it here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users