Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

CPU usage very high 50-90 percent after virus removal


  • Please log in to reply
12 replies to this topic

#1 lordquas15

lordquas15

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 04 November 2012 - 01:54 AM

A few days ago I ran avast scan which detected an infection which was then removed. Now my computer is perpetually bogged down. Upon reading this topic, http://www.bleepingcomputer.com/forums/topic439491.html, I ran rkill and tdsskiller which did not find any problems. Thanks in advance to anyone who can help me with this.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 04 November 2012 - 01:47 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 lordquas15

lordquas15
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 05 November 2012 - 11:26 AM

Ok, here are the results. Thanks again.


01:36:23.0865 7008 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
01:36:24.0427 7008 ============================================================
01:36:24.0427 7008 Current date / time: 2012/11/04 01:36:24.0427
01:36:24.0427 7008 SystemInfo:
01:36:24.0427 7008
01:36:24.0427 7008 OS Version: 6.1.7601 ServicePack: 1.0
01:36:24.0427 7008 Product type: Workstation
01:36:24.0427 7008 ComputerName: BBLEYER-PC
01:36:24.0427 7008 UserName: bbleyer
01:36:24.0427 7008 Windows directory: C:\windows
01:36:24.0427 7008 System windows directory: C:\windows
01:36:24.0427 7008 Running under WOW64
01:36:24.0427 7008 Processor architecture: Intel x64
01:36:24.0427 7008 Number of processors: 4
01:36:24.0427 7008 Page size: 0x1000
01:36:24.0427 7008 Boot type: Normal boot
01:36:24.0427 7008 ============================================================
01:36:25.0192 7008 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:36:25.0192 7008 ============================================================
01:36:25.0192 7008 \Device\Harddisk0\DR0:
01:36:25.0192 7008 MBR partitions:
01:36:25.0192 7008 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x4892C000
01:36:25.0192 7008 ============================================================
01:36:25.0239 7008 C: <-> \Device\Harddisk0\DR0\Partition1
01:36:25.0239 7008 ============================================================
01:36:25.0239 7008 Initialize success
01:36:25.0239 7008 ============================================================
01:36:36.0192 3392 ============================================================
01:36:36.0192 3392 Scan started
01:36:36.0192 3392 Mode: Manual;
01:36:36.0192 3392 ============================================================
01:36:37.0440 3392 ================ Scan system memory ========================
01:36:37.0440 3392 System memory - ok
01:36:37.0440 3392 ================ Scan services =============================
01:36:37.0643 3392 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
01:36:37.0643 3392 1394ohci - ok
01:36:37.0705 3392 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
01:36:37.0705 3392 ACPI - ok
01:36:37.0752 3392 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
01:36:37.0752 3392 AcpiPmi - ok
01:36:37.0861 3392 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:36:37.0861 3392 AdobeARMservice - ok
01:36:37.0971 3392 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:36:37.0986 3392 AdobeFlashPlayerUpdateSvc - ok
01:36:38.0033 3392 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
01:36:38.0033 3392 adp94xx - ok
01:36:38.0111 3392 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
01:36:38.0127 3392 adpahci - ok
01:36:38.0142 3392 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
01:36:38.0142 3392 adpu320 - ok
01:36:38.0189 3392 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
01:36:38.0189 3392 AeLookupSvc - ok
01:36:38.0236 3392 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
01:36:38.0251 3392 AFD - ok
01:36:38.0283 3392 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
01:36:38.0283 3392 agp440 - ok
01:36:38.0314 3392 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
01:36:38.0314 3392 ALG - ok
01:36:38.0361 3392 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
01:36:38.0361 3392 aliide - ok
01:36:38.0376 3392 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
01:36:38.0376 3392 amdide - ok
01:36:38.0407 3392 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
01:36:38.0407 3392 AmdK8 - ok
01:36:38.0439 3392 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
01:36:38.0454 3392 AmdPPM - ok
01:36:38.0485 3392 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
01:36:38.0485 3392 amdsata - ok
01:36:38.0532 3392 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
01:36:38.0532 3392 amdsbs - ok
01:36:38.0579 3392 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
01:36:38.0579 3392 amdxata - ok
01:36:38.0688 3392 [ 2B85A4692D090A242777CE3EC571FF3A ] Amsp C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
01:36:38.0704 3392 Amsp - ok
01:36:38.0735 3392 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
01:36:38.0751 3392 AppID - ok
01:36:38.0782 3392 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
01:36:38.0782 3392 AppIDSvc - ok
01:36:38.0813 3392 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
01:36:38.0813 3392 Appinfo - ok
01:36:38.0891 3392 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:36:38.0891 3392 Apple Mobile Device - ok
01:36:38.0922 3392 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
01:36:38.0922 3392 arc - ok
01:36:38.0953 3392 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
01:36:38.0953 3392 arcsas - ok
01:36:39.0016 3392 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
01:36:39.0016 3392 aswFsBlk - ok
01:36:39.0078 3392 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
01:36:39.0078 3392 aswMonFlt - ok
01:36:39.0125 3392 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
01:36:39.0125 3392 aswRdr - ok
01:36:39.0172 3392 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\windows\system32\drivers\aswSnx.sys
01:36:39.0187 3392 aswSnx - ok
01:36:39.0250 3392 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\windows\system32\drivers\aswSP.sys
01:36:39.0250 3392 aswSP - ok
01:36:39.0281 3392 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
01:36:39.0281 3392 aswTdi - ok
01:36:39.0312 3392 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
01:36:39.0312 3392 AsyncMac - ok
01:36:39.0359 3392 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
01:36:39.0359 3392 atapi - ok
01:36:39.0437 3392 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
01:36:39.0453 3392 AudioEndpointBuilder - ok
01:36:39.0468 3392 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
01:36:39.0484 3392 AudioSrv - ok
01:36:39.0577 3392 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
01:36:39.0577 3392 avast! Antivirus - ok
01:36:39.0624 3392 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
01:36:39.0624 3392 AxInstSV - ok
01:36:39.0687 3392 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
01:36:39.0702 3392 b06bdrv - ok
01:36:39.0733 3392 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
01:36:39.0749 3392 b57nd60a - ok
01:36:39.0796 3392 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
01:36:39.0811 3392 BDESVC - ok
01:36:39.0827 3392 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
01:36:39.0827 3392 Beep - ok
01:36:39.0905 3392 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
01:36:39.0921 3392 BFE - ok
01:36:39.0967 3392 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
01:36:39.0983 3392 BITS - ok
01:36:40.0030 3392 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\drivers\blbdrive.sys
01:36:40.0030 3392 blbdrive - ok
01:36:40.0092 3392 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
01:36:40.0092 3392 Bonjour Service - ok
01:36:40.0123 3392 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
01:36:40.0139 3392 bowser - ok
01:36:40.0155 3392 [ 3DCB409BCBD02AB0675682F8E42A410F ] bpenum C:\windows\system32\DRIVERS\bpenum.sys
01:36:40.0155 3392 bpenum - ok
01:36:40.0201 3392 [ 6C66EEF6669B14DF4F426990A1CA5112 ] bpmp C:\windows\system32\DRIVERS\bpmp.sys
01:36:40.0217 3392 bpmp - ok
01:36:40.0264 3392 [ 2EE68405BBADE51CBE1C973FF3A1A400 ] bpusb C:\windows\system32\Drivers\bpusb.sys
01:36:40.0264 3392 bpusb - ok
01:36:40.0311 3392 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
01:36:40.0311 3392 BrFiltLo - ok
01:36:40.0342 3392 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
01:36:40.0342 3392 BrFiltUp - ok
01:36:40.0389 3392 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
01:36:40.0389 3392 Browser - ok
01:36:40.0420 3392 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
01:36:40.0435 3392 Brserid - ok
01:36:40.0467 3392 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
01:36:40.0467 3392 BrSerWdm - ok
01:36:40.0498 3392 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
01:36:40.0498 3392 BrUsbMdm - ok
01:36:40.0545 3392 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
01:36:40.0545 3392 BrUsbSer - ok
01:36:40.0576 3392 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
01:36:40.0576 3392 BTHMODEM - ok
01:36:40.0623 3392 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
01:36:40.0638 3392 bthserv - ok
01:36:40.0654 3392 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
01:36:40.0654 3392 cdfs - ok
01:36:40.0701 3392 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
01:36:40.0701 3392 cdrom - ok
01:36:40.0763 3392 [ A965B206921C55F2D1481789D609B711 ] CeKbFilter C:\windows\system32\DRIVERS\CeKbFilter.sys
01:36:40.0763 3392 CeKbFilter - ok
01:36:40.0810 3392 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
01:36:40.0810 3392 CertPropSvc - ok
01:36:40.0857 3392 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
01:36:40.0857 3392 circlass - ok
01:36:40.0888 3392 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
01:36:40.0903 3392 CLFS - ok
01:36:40.0966 3392 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:36:40.0981 3392 clr_optimization_v2.0.50727_32 - ok
01:36:41.0044 3392 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:36:41.0044 3392 clr_optimization_v2.0.50727_64 - ok
01:36:41.0122 3392 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:36:41.0138 3392 clr_optimization_v4.0.30319_32 - ok
01:36:41.0185 3392 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:36:41.0185 3392 clr_optimization_v4.0.30319_64 - ok
01:36:41.0232 3392 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\drivers\CmBatt.sys
01:36:41.0232 3392 CmBatt - ok
01:36:41.0263 3392 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
01:36:41.0263 3392 cmdide - ok
01:36:41.0310 3392 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
01:36:41.0326 3392 CNG - ok
01:36:41.0372 3392 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
01:36:41.0372 3392 Compbatt - ok
01:36:41.0388 3392 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
01:36:41.0388 3392 CompositeBus - ok
01:36:41.0404 3392 COMSysApp - ok
01:36:41.0435 3392 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
01:36:41.0450 3392 crcdisk - ok
01:36:41.0513 3392 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
01:36:41.0513 3392 CryptSvc - ok
01:36:41.0622 3392 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
01:36:41.0622 3392 cvhsvc - ok
01:36:41.0669 3392 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
01:36:41.0684 3392 DcomLaunch - ok
01:36:41.0731 3392 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
01:36:41.0731 3392 defragsvc - ok
01:36:41.0778 3392 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
01:36:41.0778 3392 DfsC - ok
01:36:41.0825 3392 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
01:36:41.0840 3392 Dhcp - ok
01:36:41.0872 3392 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
01:36:41.0872 3392 discache - ok
01:36:41.0903 3392 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
01:36:41.0918 3392 Disk - ok
01:36:41.0996 3392 [ EC9D64CC2DD8A4C6D11550F364890DB1 ] DMAgent C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
01:36:42.0012 3392 DMAgent - ok
01:36:42.0043 3392 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
01:36:42.0059 3392 Dnscache - ok
01:36:42.0106 3392 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
01:36:42.0106 3392 dot3svc - ok
01:36:42.0137 3392 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
01:36:42.0137 3392 DPS - ok
01:36:42.0168 3392 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
01:36:42.0168 3392 drmkaud - ok
01:36:42.0215 3392 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
01:36:42.0246 3392 DXGKrnl - ok
01:36:42.0262 3392 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
01:36:42.0277 3392 EapHost - ok
01:36:42.0386 3392 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
01:36:42.0480 3392 ebdrv - ok
01:36:42.0511 3392 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
01:36:42.0527 3392 EFS - ok
01:36:42.0589 3392 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
01:36:42.0605 3392 ehRecvr - ok
01:36:42.0620 3392 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
01:36:42.0620 3392 ehSched - ok
01:36:42.0667 3392 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
01:36:42.0683 3392 elxstor - ok
01:36:42.0714 3392 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
01:36:42.0714 3392 ErrDev - ok
01:36:42.0776 3392 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
01:36:42.0776 3392 EventSystem - ok
01:36:42.0870 3392 [ 7EE9F35BC1DD0CE1A4976032F9AC5162 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
01:36:42.0901 3392 EvtEng - ok
01:36:42.0932 3392 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
01:36:42.0948 3392 exfat - ok
01:36:42.0964 3392 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
01:36:42.0979 3392 fastfat - ok
01:36:43.0026 3392 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
01:36:43.0057 3392 Fax - ok
01:36:43.0088 3392 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
01:36:43.0088 3392 fdc - ok
01:36:43.0120 3392 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
01:36:43.0120 3392 fdPHost - ok
01:36:43.0151 3392 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
01:36:43.0151 3392 FDResPub - ok
01:36:43.0182 3392 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
01:36:43.0182 3392 FileInfo - ok
01:36:43.0198 3392 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
01:36:43.0198 3392 Filetrace - ok
01:36:43.0244 3392 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
01:36:43.0260 3392 flpydisk - ok
01:36:43.0276 3392 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
01:36:43.0276 3392 FltMgr - ok
01:36:43.0338 3392 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
01:36:43.0354 3392 FontCache - ok
01:36:43.0400 3392 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:36:43.0416 3392 FontCache3.0.0.0 - ok
01:36:43.0432 3392 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
01:36:43.0432 3392 FsDepends - ok
01:36:43.0463 3392 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
01:36:43.0463 3392 Fs_Rec - ok
01:36:43.0494 3392 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
01:36:43.0510 3392 fvevol - ok
01:36:43.0525 3392 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
01:36:43.0525 3392 gagp30kx - ok
01:36:43.0588 3392 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
01:36:43.0588 3392 GEARAspiWDM - ok
01:36:43.0634 3392 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
01:36:43.0650 3392 gpsvc - ok
01:36:43.0697 3392 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:36:43.0697 3392 gupdate - ok
01:36:43.0712 3392 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:36:43.0712 3392 gupdatem - ok
01:36:43.0759 3392 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
01:36:43.0775 3392 gusvc - ok
01:36:43.0806 3392 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
01:36:43.0822 3392 hcw85cir - ok
01:36:43.0853 3392 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
01:36:43.0868 3392 HdAudAddService - ok
01:36:43.0915 3392 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
01:36:43.0915 3392 HDAudBus - ok
01:36:43.0946 3392 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
01:36:43.0946 3392 HidBatt - ok
01:36:43.0978 3392 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
01:36:43.0978 3392 HidBth - ok
01:36:44.0009 3392 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
01:36:44.0009 3392 HidIr - ok
01:36:44.0056 3392 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
01:36:44.0056 3392 hidserv - ok
01:36:44.0102 3392 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
01:36:44.0102 3392 HidUsb - ok
01:36:44.0134 3392 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
01:36:44.0149 3392 hkmsvc - ok
01:36:44.0180 3392 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
01:36:44.0196 3392 HomeGroupListener - ok
01:36:44.0227 3392 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
01:36:44.0243 3392 HomeGroupProvider - ok
01:36:44.0274 3392 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
01:36:44.0274 3392 HpSAMD - ok
01:36:44.0321 3392 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
01:36:44.0336 3392 HTTP - ok
01:36:44.0368 3392 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
01:36:44.0368 3392 hwpolicy - ok
01:36:44.0399 3392 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
01:36:44.0414 3392 i8042prt - ok
01:36:44.0461 3392 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
01:36:44.0477 3392 iaStor - ok
01:36:44.0539 3392 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
01:36:44.0539 3392 iaStorV - ok
01:36:44.0602 3392 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:36:44.0617 3392 idsvc - ok
01:36:44.0976 3392 [ 370C2A8629B30F910F740387795DDC6F ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
01:36:45.0350 3392 igfx - ok
01:36:45.0428 3392 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
01:36:45.0428 3392 iirsp - ok
01:36:45.0475 3392 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
01:36:45.0506 3392 IKEEXT - ok
01:36:45.0631 3392 [ AC9AAFD18E4D52084C4AA8A38795B7E4 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
01:36:45.0709 3392 IntcAzAudAddService - ok
01:36:45.0756 3392 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
01:36:45.0772 3392 IntcDAud - ok
01:36:45.0787 3392 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
01:36:45.0787 3392 intelide - ok
01:36:45.0834 3392 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
01:36:45.0834 3392 intelppm - ok
01:36:45.0865 3392 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
01:36:45.0865 3392 IPBusEnum - ok
01:36:45.0896 3392 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
01:36:45.0896 3392 IpFilterDriver - ok
01:36:45.0943 3392 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
01:36:45.0959 3392 iphlpsvc - ok
01:36:45.0990 3392 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
01:36:45.0990 3392 IPMIDRV - ok
01:36:46.0021 3392 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
01:36:46.0021 3392 IPNAT - ok
01:36:46.0099 3392 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
01:36:46.0115 3392 iPod Service - ok
01:36:46.0162 3392 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
01:36:46.0162 3392 IRENUM - ok
01:36:46.0177 3392 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
01:36:46.0177 3392 isapnp - ok
01:36:46.0209 3392 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
01:36:46.0209 3392 iScsiPrt - ok
01:36:46.0256 3392 [ 0B44199365A69696109AB9A5855E0841 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
01:36:46.0272 3392 JMCR - ok
01:36:46.0319 3392 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
01:36:46.0319 3392 kbdclass - ok
01:36:46.0350 3392 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
01:36:46.0350 3392 kbdhid - ok
01:36:46.0381 3392 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
01:36:46.0381 3392 KeyIso - ok
01:36:46.0412 3392 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
01:36:46.0412 3392 KSecDD - ok
01:36:46.0443 3392 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
01:36:46.0443 3392 KSecPkg - ok
01:36:46.0490 3392 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
01:36:46.0490 3392 ksthunk - ok
01:36:46.0537 3392 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
01:36:46.0553 3392 KtmRm - ok
01:36:46.0584 3392 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
01:36:46.0599 3392 LanmanServer - ok
01:36:46.0615 3392 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
01:36:46.0631 3392 LanmanWorkstation - ok
01:36:46.0677 3392 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
01:36:46.0677 3392 lltdio - ok
01:36:46.0740 3392 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
01:36:46.0740 3392 lltdsvc - ok
01:36:46.0771 3392 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
01:36:46.0771 3392 lmhosts - ok
01:36:46.0865 3392 [ 50C7CE53EF461870410355F1F2E7D515 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
01:36:46.0865 3392 LMS - ok
01:36:46.0896 3392 [ 2825A71E7501CB33B3B9F856610C729D ] LPCFilter C:\windows\system32\DRIVERS\LPCFilter.sys
01:36:46.0896 3392 LPCFilter - ok
01:36:46.0943 3392 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
01:36:46.0943 3392 LSI_FC - ok
01:36:46.0974 3392 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
01:36:46.0974 3392 LSI_SAS - ok
01:36:46.0989 3392 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
01:36:47.0005 3392 LSI_SAS2 - ok
01:36:47.0021 3392 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
01:36:47.0021 3392 LSI_SCSI - ok
01:36:47.0067 3392 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
01:36:47.0067 3392 luafv - ok
01:36:47.0114 3392 [ 36EFC8C32829A27BAF0E63BFDBD5EE90 ] massfilter C:\windows\system32\drivers\massfilter.sys
01:36:47.0130 3392 massfilter - ok
01:36:47.0177 3392 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
01:36:47.0192 3392 Mcx2Svc - ok
01:36:47.0209 3392 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
01:36:47.0209 3392 megasas - ok
01:36:47.0256 3392 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
01:36:47.0256 3392 MegaSR - ok
01:36:47.0287 3392 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
01:36:47.0302 3392 MEIx64 - ok
01:36:47.0334 3392 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
01:36:47.0334 3392 MMCSS - ok
01:36:47.0365 3392 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
01:36:47.0365 3392 Modem - ok
01:36:47.0412 3392 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
01:36:47.0412 3392 monitor - ok
01:36:47.0443 3392 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
01:36:47.0443 3392 mouclass - ok
01:36:47.0474 3392 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\drivers\mouhid.sys
01:36:47.0474 3392 mouhid - ok
01:36:47.0505 3392 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
01:36:47.0505 3392 mountmgr - ok
01:36:47.0568 3392 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:36:47.0568 3392 MozillaMaintenance - ok
01:36:47.0614 3392 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
01:36:47.0630 3392 mpio - ok
01:36:47.0646 3392 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
01:36:47.0646 3392 mpsdrv - ok
01:36:47.0692 3392 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
01:36:47.0724 3392 MpsSvc - ok
01:36:47.0770 3392 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
01:36:47.0770 3392 MRxDAV - ok
01:36:47.0802 3392 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
01:36:47.0802 3392 mrxsmb - ok
01:36:47.0833 3392 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
01:36:47.0833 3392 mrxsmb10 - ok
01:36:47.0848 3392 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
01:36:47.0848 3392 mrxsmb20 - ok
01:36:47.0895 3392 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
01:36:47.0895 3392 msahci - ok
01:36:47.0911 3392 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
01:36:47.0926 3392 msdsm - ok
01:36:47.0942 3392 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
01:36:47.0958 3392 MSDTC - ok
01:36:48.0004 3392 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
01:36:48.0004 3392 Msfs - ok
01:36:48.0051 3392 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
01:36:48.0051 3392 mshidkmdf - ok
01:36:48.0082 3392 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
01:36:48.0082 3392 msisadrv - ok
01:36:48.0129 3392 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
01:36:48.0129 3392 MSiSCSI - ok
01:36:48.0145 3392 msiserver - ok
01:36:48.0192 3392 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
01:36:48.0192 3392 MSKSSRV - ok
01:36:48.0224 3392 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
01:36:48.0239 3392 MSPCLOCK - ok
01:36:48.0255 3392 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
01:36:48.0255 3392 MSPQM - ok
01:36:48.0286 3392 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
01:36:48.0302 3392 MsRPC - ok
01:36:48.0333 3392 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
01:36:48.0333 3392 mssmbios - ok
01:36:48.0380 3392 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
01:36:48.0380 3392 MSTEE - ok
01:36:48.0395 3392 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
01:36:48.0395 3392 MTConfig - ok
01:36:48.0427 3392 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
01:36:48.0427 3392 Mup - ok
01:36:48.0473 3392 [ 0CF5580F27918FFD2E165ECAFA734103 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
01:36:48.0473 3392 MyWiFiDHCPDNS - ok
01:36:48.0536 3392 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
01:36:48.0551 3392 napagent - ok
01:36:48.0598 3392 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
01:36:48.0614 3392 NativeWifiP - ok
01:36:48.0692 3392 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
01:36:48.0707 3392 NDIS - ok
01:36:48.0739 3392 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
01:36:48.0739 3392 NdisCap - ok
01:36:48.0785 3392 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
01:36:48.0785 3392 NdisTapi - ok
01:36:48.0817 3392 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
01:36:48.0817 3392 Ndisuio - ok
01:36:48.0848 3392 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
01:36:48.0848 3392 NdisWan - ok
01:36:48.0895 3392 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
01:36:48.0895 3392 NDProxy - ok
01:36:48.0941 3392 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
01:36:48.0941 3392 NetBIOS - ok
01:36:48.0957 3392 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
01:36:48.0957 3392 NetBT - ok
01:36:48.0988 3392 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
01:36:48.0988 3392 Netlogon - ok
01:36:49.0035 3392 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
01:36:49.0051 3392 Netman - ok
01:36:49.0066 3392 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
01:36:49.0082 3392 netprofm - ok
01:36:49.0129 3392 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:36:49.0129 3392 NetTcpPortSharing - ok
01:36:49.0364 3392 [ B9C587BDAA61A689883439D5AE6FE7F3 ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
01:36:49.0582 3392 NETwNs64 - ok
01:36:49.0613 3392 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
01:36:49.0613 3392 nfrd960 - ok
01:36:49.0676 3392 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
01:36:49.0691 3392 NlaSvc - ok
01:36:49.0722 3392 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
01:36:49.0722 3392 Npfs - ok
01:36:49.0754 3392 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
01:36:49.0769 3392 nsi - ok
01:36:49.0800 3392 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
01:36:49.0800 3392 nsiproxy - ok
01:36:49.0878 3392 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
01:36:49.0894 3392 Ntfs - ok
01:36:49.0925 3392 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
01:36:49.0925 3392 Null - ok
01:36:49.0956 3392 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
01:36:49.0956 3392 nusb3hub - ok
01:36:49.0988 3392 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
01:36:49.0988 3392 nusb3xhc - ok
01:36:50.0050 3392 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
01:36:50.0050 3392 nvraid - ok
01:36:50.0066 3392 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
01:36:50.0081 3392 nvstor - ok
01:36:50.0112 3392 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
01:36:50.0128 3392 nv_agp - ok
01:36:50.0159 3392 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
01:36:50.0159 3392 ohci1394 - ok
01:36:50.0190 3392 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:36:50.0190 3392 ose - ok
01:36:50.0378 3392 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
01:36:50.0487 3392 osppsvc - ok
01:36:50.0534 3392 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
01:36:50.0549 3392 p2pimsvc - ok
01:36:50.0565 3392 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
01:36:50.0580 3392 p2psvc - ok
01:36:50.0612 3392 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
01:36:50.0612 3392 Parport - ok
01:36:50.0643 3392 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
01:36:50.0658 3392 partmgr - ok
01:36:50.0690 3392 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
01:36:50.0690 3392 PcaSvc - ok
01:36:50.0721 3392 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
01:36:50.0736 3392 pci - ok
01:36:50.0752 3392 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
01:36:50.0752 3392 pciide - ok
01:36:50.0783 3392 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
01:36:50.0799 3392 pcmcia - ok
01:36:50.0814 3392 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
01:36:50.0814 3392 pcw - ok
01:36:50.0861 3392 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
01:36:50.0877 3392 PEAUTH - ok
01:36:50.0955 3392 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
01:36:50.0955 3392 PerfHost - ok
01:36:51.0002 3392 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
01:36:51.0002 3392 PGEffect - ok
01:36:51.0064 3392 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
01:36:51.0095 3392 pla - ok
01:36:51.0158 3392 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
01:36:51.0173 3392 PlugPlay - ok
01:36:51.0204 3392 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
01:36:51.0220 3392 PNRPAutoReg - ok
01:36:51.0236 3392 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
01:36:51.0251 3392 PNRPsvc - ok
01:36:51.0298 3392 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
01:36:51.0298 3392 PolicyAgent - ok
01:36:51.0360 3392 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
01:36:51.0376 3392 Power - ok
01:36:51.0407 3392 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
01:36:51.0407 3392 PptpMiniport - ok
01:36:51.0438 3392 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
01:36:51.0438 3392 Processor - ok
01:36:51.0470 3392 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
01:36:51.0485 3392 ProfSvc - ok
01:36:51.0501 3392 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
01:36:51.0516 3392 ProtectedStorage - ok
01:36:51.0548 3392 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
01:36:51.0563 3392 Psched - ok
01:36:51.0626 3392 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
01:36:51.0657 3392 ql2300 - ok
01:36:51.0704 3392 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
01:36:51.0719 3392 ql40xx - ok
01:36:51.0750 3392 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
01:36:51.0766 3392 QWAVE - ok
01:36:51.0797 3392 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
01:36:51.0797 3392 QWAVEdrv - ok
01:36:51.0813 3392 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
01:36:51.0813 3392 RasAcd - ok
01:36:51.0844 3392 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
01:36:51.0860 3392 RasAgileVpn - ok
01:36:51.0906 3392 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
01:36:51.0906 3392 RasAuto - ok
01:36:51.0953 3392 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
01:36:51.0969 3392 Rasl2tp - ok
01:36:52.0016 3392 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
01:36:52.0031 3392 RasMan - ok
01:36:52.0047 3392 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
01:36:52.0047 3392 RasPppoe - ok
01:36:52.0078 3392 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
01:36:52.0078 3392 RasSstp - ok
01:36:52.0125 3392 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
01:36:52.0125 3392 rdbss - ok
01:36:52.0156 3392 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
01:36:52.0156 3392 rdpbus - ok
01:36:52.0172 3392 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
01:36:52.0187 3392 RDPCDD - ok
01:36:52.0234 3392 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
01:36:52.0234 3392 RDPENCDD - ok
01:36:52.0250 3392 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
01:36:52.0265 3392 RDPREFMP - ok
01:36:52.0296 3392 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
01:36:52.0296 3392 RDPWD - ok
01:36:52.0328 3392 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
01:36:52.0343 3392 rdyboost - ok
01:36:52.0421 3392 [ AA9FD849C028CCB441A78061B57DB734 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
01:36:52.0437 3392 RegSrvc - ok
01:36:52.0468 3392 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
01:36:52.0484 3392 RemoteAccess - ok
01:36:52.0515 3392 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
01:36:52.0530 3392 RemoteRegistry - ok
01:36:52.0546 3392 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
01:36:52.0562 3392 RpcEptMapper - ok
01:36:52.0593 3392 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
01:36:52.0593 3392 RpcLocator - ok
01:36:52.0640 3392 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
01:36:52.0671 3392 RpcSs - ok
01:36:52.0702 3392 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
01:36:52.0718 3392 rspndr - ok
01:36:52.0749 3392 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
01:36:52.0764 3392 RTL8167 - ok
01:36:52.0780 3392 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
01:36:52.0796 3392 SamSs - ok
01:36:52.0811 3392 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
01:36:52.0811 3392 sbp2port - ok
01:36:52.0858 3392 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
01:36:52.0874 3392 SCardSvr - ok
01:36:52.0889 3392 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
01:36:52.0905 3392 scfilter - ok
01:36:52.0952 3392 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
01:36:52.0983 3392 Schedule - ok
01:36:53.0014 3392 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
01:36:53.0014 3392 SCPolicySvc - ok
01:36:53.0045 3392 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\DRIVERS\sdbus.sys
01:36:53.0061 3392 sdbus - ok
01:36:53.0092 3392 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
01:36:53.0108 3392 SDRSVC - ok
01:36:53.0139 3392 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
01:36:53.0139 3392 secdrv - ok
01:36:53.0154 3392 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
01:36:53.0170 3392 seclogon - ok
01:36:53.0201 3392 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
01:36:53.0217 3392 SENS - ok
01:36:53.0232 3392 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
01:36:53.0248 3392 SensrSvc - ok
01:36:53.0295 3392 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
01:36:53.0295 3392 Serenum - ok
01:36:53.0310 3392 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
01:36:53.0326 3392 Serial - ok
01:36:53.0373 3392 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
01:36:53.0373 3392 sermouse - ok
01:36:53.0420 3392 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
01:36:53.0435 3392 SessionEnv - ok
01:36:53.0451 3392 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
01:36:53.0451 3392 sffdisk - ok
01:36:53.0482 3392 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
01:36:53.0482 3392 sffp_mmc - ok
01:36:53.0513 3392 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
01:36:53.0513 3392 sffp_sd - ok
01:36:53.0560 3392 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
01:36:53.0560 3392 sfloppy - ok
01:36:53.0622 3392 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
01:36:53.0638 3392 Sftfs - ok
01:36:53.0700 3392 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
01:36:53.0716 3392 sftlist - ok
01:36:53.0763 3392 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
01:36:53.0778 3392 Sftplay - ok
01:36:53.0794 3392 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
01:36:53.0810 3392 Sftredir - ok
01:36:53.0825 3392 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
01:36:53.0841 3392 Sftvol - ok
01:36:53.0888 3392 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
01:36:53.0888 3392 sftvsa - ok
01:36:53.0934 3392 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
01:36:53.0934 3392 SharedAccess - ok
01:36:53.0997 3392 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
01:36:54.0012 3392 ShellHWDetection - ok
01:36:54.0028 3392 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
01:36:54.0028 3392 SiSRaid2 - ok
01:36:54.0075 3392 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
01:36:54.0075 3392 SiSRaid4 - ok
01:36:54.0137 3392 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
01:36:54.0137 3392 SkypeUpdate - ok
01:36:54.0184 3392 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
01:36:54.0184 3392 Smb - ok
01:36:54.0231 3392 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
01:36:54.0246 3392 SNMPTRAP - ok
01:36:54.0278 3392 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
01:36:54.0278 3392 spldr - ok
01:36:54.0324 3392 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
01:36:54.0340 3392 Spooler - ok
01:36:54.0449 3392 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
01:36:54.0496 3392 sppsvc - ok
01:36:54.0512 3392 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
01:36:54.0527 3392 sppuinotify - ok
01:36:54.0558 3392 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
01:36:54.0574 3392 srv - ok
01:36:54.0605 3392 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
01:36:54.0605 3392 srv2 - ok
01:36:54.0652 3392 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
01:36:54.0652 3392 srvnet - ok
01:36:54.0699 3392 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
01:36:54.0714 3392 SSDPSRV - ok
01:36:54.0730 3392 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
01:36:54.0746 3392 SstpSvc - ok
01:36:54.0761 3392 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
01:36:54.0761 3392 stexstor - ok
01:36:54.0808 3392 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
01:36:54.0824 3392 stisvc - ok
01:36:54.0855 3392 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
01:36:54.0855 3392 swenum - ok
01:36:54.0886 3392 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
01:36:54.0902 3392 swprv - ok
01:36:54.0980 3392 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
01:36:55.0011 3392 SynTP - ok
01:36:55.0089 3392 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
01:36:55.0120 3392 SysMain - ok
01:36:55.0151 3392 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
01:36:55.0151 3392 TabletInputService - ok
01:36:55.0182 3392 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
01:36:55.0198 3392 TapiSrv - ok
01:36:55.0214 3392 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
01:36:55.0229 3392 TBS - ok
01:36:55.0292 3392 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
01:36:55.0323 3392 Tcpip - ok
01:36:55.0385 3392 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
01:36:55.0401 3392 TCPIP6 - ok
01:36:55.0448 3392 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
01:36:55.0448 3392 tcpipreg - ok
01:36:55.0510 3392 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
01:36:55.0510 3392 tdcmdpst - ok
01:36:55.0526 3392 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
01:36:55.0541 3392 TDPIPE - ok
01:36:55.0557 3392 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
01:36:55.0572 3392 TDTCP - ok
01:36:55.0588 3392 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
01:36:55.0604 3392 tdx - ok
01:36:55.0619 3392 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
01:36:55.0619 3392 TermDD - ok
01:36:55.0666 3392 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
01:36:55.0682 3392 TermService - ok
01:36:55.0697 3392 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
01:36:55.0713 3392 Themes - ok
01:36:55.0760 3392 [ C013F6ACAA9761F571BD28DADA7C157D ] Thpdrv C:\windows\system32\DRIVERS\thpdrv.sys
01:36:55.0775 3392 Thpdrv - ok
01:36:55.0791 3392 [ B4E609047434ED948AF7BDEF2FA66E38 ] Thpevm C:\windows\system32\DRIVERS\Thpevm.SYS
01:36:55.0806 3392 Thpevm - ok
01:36:55.0838 3392 [ 9B032A63A0553A2D872815C64A0288BE ] Thpsrv C:\windows\system32\ThpSrv.exe
01:36:55.0853 3392 Thpsrv - ok
01:36:55.0869 3392 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
01:36:55.0884 3392 THREADORDER - ok
01:36:55.0931 3392 [ 83E91963C4452BE6899503CF9EBFD3ED ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
01:36:55.0931 3392 TMachInfo - ok
01:36:55.0978 3392 [ C08008F29117BAC9CE14DCAC24D83071 ] tmactmon C:\windows\system32\DRIVERS\tmactmon.sys
01:36:55.0978 3392 tmactmon - ok
01:36:56.0025 3392 [ ACAA22BF6AF50000AD0694DFE96BAD88 ] tmcomm C:\windows\system32\DRIVERS\tmcomm.sys
01:36:56.0025 3392 tmcomm - ok
01:36:56.0056 3392 [ AB53AC18F62B116B16A3C4A2AF5D68E4 ] tmevtmgr C:\windows\system32\DRIVERS\tmevtmgr.sys
01:36:56.0056 3392 tmevtmgr - ok
01:36:56.0103 3392 [ E1B7C525E5022A6BCA62BD480ED9BB5B ] tmtdi C:\windows\system32\DRIVERS\tmtdi.sys
01:36:56.0103 3392 tmtdi - ok
01:36:56.0134 3392 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\windows\system32\TODDSrv.exe
01:36:56.0134 3392 TODDSrv - ok
01:36:56.0212 3392 [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
01:36:56.0228 3392 TosCoSrv - ok
01:36:56.0259 3392 [ D33D5588576B04FC489DCCC66E98F546 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
01:36:56.0274 3392 TOSHIBA eco Utility Service - ok
01:36:56.0321 3392 [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
01:36:56.0321 3392 TOSHIBA HDD SSD Alert Service - ok
01:36:56.0384 3392 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
01:36:56.0384 3392 tos_sps64 - ok
01:36:56.0446 3392 [ D65C6B0C070534336B72005391B6168A ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
01:36:56.0462 3392 TPCHSrv - ok
01:36:56.0508 3392 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
01:36:56.0524 3392 TrkWks - ok
01:36:56.0586 3392 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
01:36:56.0586 3392 TrustedInstaller - ok
01:36:56.0618 3392 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
01:36:56.0618 3392 tssecsrv - ok
01:36:56.0664 3392 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
01:36:56.0664 3392 TsUsbFlt - ok
01:36:56.0696 3392 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
01:36:56.0696 3392 TsUsbGD - ok
01:36:56.0727 3392 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
01:36:56.0727 3392 tunnel - ok
01:36:56.0774 3392 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
01:36:56.0774 3392 TVALZ - ok
01:36:56.0805 3392 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
01:36:56.0805 3392 TVALZFL - ok
01:36:56.0836 3392 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
01:36:56.0836 3392 uagp35 - ok
01:36:56.0867 3392 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
01:36:56.0883 3392 udfs - ok
01:36:56.0930 3392 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
01:36:56.0930 3392 UI0Detect - ok
01:36:56.0976 3392 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
01:36:56.0976 3392 uliagpkx - ok
01:36:57.0023 3392 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
01:36:57.0023 3392 umbus - ok
01:36:57.0054 3392 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
01:36:57.0054 3392 UmPass - ok
01:36:57.0195 3392 [ 374EBDA379A8F38E0CFC2211611E7167 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
01:36:57.0273 3392 UNS - ok
01:36:57.0320 3392 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
01:36:57.0335 3392 upnphost - ok
01:36:57.0366 3392 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
01:36:57.0366 3392 usbccgp - ok
01:36:57.0413 3392 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
01:36:57.0429 3392 usbcir - ok
01:36:57.0460 3392 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
01:36:57.0460 3392 usbehci - ok
01:36:57.0491 3392 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
01:36:57.0507 3392 usbhub - ok
01:36:57.0538 3392 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
01:36:57.0538 3392 usbohci - ok
01:36:57.0569 3392 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
01:36:57.0569 3392 usbprint - ok
01:36:57.0600 3392 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
01:36:57.0600 3392 USBSTOR - ok
01:36:57.0632 3392 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
01:36:57.0632 3392 usbuhci - ok
01:36:57.0678 3392 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
01:36:57.0678 3392 usbvideo - ok
01:36:57.0725 3392 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
01:36:57.0725 3392 UxSms - ok
01:36:57.0756 3392 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
01:36:57.0756 3392 VaultSvc - ok
01:36:57.0803 3392 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
01:36:57.0803 3392 vdrvroot - ok
01:36:57.0850 3392 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
01:36:57.0866 3392 vds - ok
01:36:57.0897 3392 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
01:36:57.0897 3392 vga - ok
01:36:57.0928 3392 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
01:36:57.0928 3392 VgaSave - ok
01:36:57.0959 3392 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
01:36:57.0959 3392 vhdmp - ok
01:36:58.0006 3392 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
01:36:58.0006 3392 viaide - ok
01:36:58.0022 3392 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
01:36:58.0037 3392 volmgr - ok
01:36:58.0068 3392 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
01:36:58.0068 3392 volmgrx - ok
01:36:58.0115 3392 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
01:36:58.0131 3392 volsnap - ok
01:36:58.0162 3392 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
01:36:58.0162 3392 vsmraid - ok
01:36:58.0240 3392 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
01:36:58.0287 3392 VSS - ok
01:36:58.0302 3392 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
01:36:58.0318 3392 vwifibus - ok
01:36:58.0350 3392 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
01:36:58.0350 3392 vwififlt - ok
01:36:58.0366 3392 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
01:36:58.0366 3392 vwifimp - ok
01:36:58.0397 3392 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
01:36:58.0413 3392 W32Time - ok
01:36:58.0444 3392 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
01:36:58.0444 3392 WacomPen - ok
01:36:58.0491 3392 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
01:36:58.0491 3392 WANARP - ok
01:36:58.0506 3392 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
01:36:58.0506 3392 Wanarpv6 - ok
01:36:58.0600 3392 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
01:36:58.0631 3392 WatAdminSvc - ok
01:36:58.0693 3392 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
01:36:58.0740 3392 wbengine - ok
01:36:58.0756 3392 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
01:36:58.0771 3392 WbioSrvc - ok
01:36:58.0803 3392 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
01:36:58.0818 3392 wcncsvc - ok
01:36:58.0849 3392 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
01:36:58.0865 3392 WcsPlugInService - ok
01:36:58.0881 3392 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
01:36:58.0896 3392 Wd - ok
01:36:58.0927 3392 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
01:36:58.0943 3392 Wdf01000 - ok
01:36:58.0974 3392 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
01:36:58.0974 3392 WdiServiceHost - ok
01:36:58.0990 3392 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
01:36:59.0005 3392 WdiSystemHost - ok
01:36:59.0052 3392 [ 5E1640435DD54D00451156CA5340B109 ] wdkmd C:\windows\system32\DRIVERS\WDKMD.sys
01:36:59.0052 3392 wdkmd - ok
01:36:59.0099 3392 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
01:36:59.0115 3392 WebClient - ok
01:36:59.0146 3392 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
01:36:59.0146 3392 Wecsvc - ok
01:36:59.0177 3392 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
01:36:59.0193 3392 wercplsupport - ok
01:36:59.0239 3392 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
01:36:59.0255 3392 WerSvc - ok
01:36:59.0302 3392 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
01:36:59.0302 3392 WfpLwf - ok
01:36:59.0380 3392 [ 64DE79BF805724F0606FE7B3B2F13784 ] WiMAXAppSrv C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
01:36:59.0411 3392 WiMAXAppSrv - ok
01:36:59.0427 3392 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
01:36:59.0427 3392 WIMMount - ok
01:36:59.0458 3392 WinDefend - ok
01:36:59.0473 3392 WinHttpAutoProxySvc - ok
01:36:59.0536 3392 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
01:36:59.0536 3392 Winmgmt - ok
01:36:59.0629 3392 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
01:36:59.0676 3392 WinRM - ok
01:36:59.0739 3392 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
01:36:59.0754 3392 WinUsb - ok
01:36:59.0801 3392 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
01:36:59.0832 3392 Wlansvc - ok
01:36:59.0895 3392 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:36:59.0895 3392 wlcrasvc - ok
01:36:59.0988 3392 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:37:00.0051 3392 wlidsvc - ok
01:37:00.0066 3392 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
01:37:00.0066 3392 WmiAcpi - ok
01:37:00.0113 3392 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
01:37:00.0113 3392 wmiApSrv - ok
01:37:00.0160 3392 WMPNetworkSvc - ok
01:37:00.0191 3392 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
01:37:00.0191 3392 WPCSvc - ok
01:37:00.0222 3392 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
01:37:00.0238 3392 WPDBusEnum - ok
01:37:00.0269 3392 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
01:37:00.0269 3392 ws2ifsl - ok
01:37:00.0316 3392 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
01:37:00.0331 3392 wscsvc - ok
01:37:00.0331 3392 WSearch - ok
01:37:00.0442 3392 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
01:37:00.0535 3392 wuauserv - ok
01:37:00.0566 3392 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
01:37:00.0566 3392 WudfPf - ok
01:37:00.0613 3392 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
01:37:00.0629 3392 WUDFRd - ok
01:37:00.0660 3392 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
01:37:00.0676 3392 wudfsvc - ok
01:37:00.0691 3392 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
01:37:00.0707 3392 WwanSvc - ok
01:37:00.0754 3392 ================ Scan global ===============================
01:37:00.0785 3392 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
01:37:00.0816 3392 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
01:37:00.0847 3392 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
01:37:00.0894 3392 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
01:37:00.0925 3392 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
01:37:00.0941 3392 [Global] - ok
01:37:00.0941 3392 ================ Scan MBR ==================================
01:37:00.0956 3392 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
01:37:01.0190 3392 \Device\Harddisk0\DR0 - ok
01:37:01.0190 3392 ================ Scan VBR ==================================
01:37:01.0222 3392 [ E920AEA737FD2A6994E32745ED31703C ] \Device\Harddisk0\DR0\Partition1
01:37:01.0222 3392 \Device\Harddisk0\DR0\Partition1 - ok
01:37:01.0222 3392 ============================================================
01:37:01.0222 3392 Scan finished
01:37:01.0222 3392 ============================================================
01:37:01.0253 1440 Detected object count: 0
01:37:01.0253 1440 Actual detected object count: 0
13:15:57.0206 2084 ============================================================
13:15:57.0206 2084 Scan started
13:15:57.0206 2084 Mode: Manual; TDLFS;
13:15:57.0206 2084 ============================================================
13:15:57.0736 2084 ================ Scan system memory ========================
13:15:57.0736 2084 System memory - ok
13:15:57.0752 2084 ================ Scan services =============================
13:15:57.0986 2084 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:15:57.0986 2084 1394ohci - ok
13:15:58.0033 2084 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
13:15:58.0033 2084 ACPI - ok
13:15:58.0111 2084 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:15:58.0111 2084 AcpiPmi - ok
13:15:58.0204 2084 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:15:58.0204 2084 AdobeARMservice - ok
13:15:58.0360 2084 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:15:58.0360 2084 AdobeFlashPlayerUpdateSvc - ok
13:15:58.0423 2084 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
13:15:58.0438 2084 adp94xx - ok
13:15:58.0501 2084 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
13:15:58.0516 2084 adpahci - ok
13:15:58.0532 2084 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
13:15:58.0532 2084 adpu320 - ok
13:15:58.0594 2084 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:15:58.0594 2084 AeLookupSvc - ok
13:15:58.0641 2084 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
13:15:58.0657 2084 AFD - ok
13:15:58.0688 2084 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
13:15:58.0688 2084 agp440 - ok
13:15:58.0719 2084 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
13:15:58.0719 2084 ALG - ok
13:15:58.0766 2084 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
13:15:58.0766 2084 aliide - ok
13:15:58.0797 2084 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
13:15:58.0797 2084 amdide - ok
13:15:58.0828 2084 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
13:15:58.0828 2084 AmdK8 - ok
13:15:58.0859 2084 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
13:15:58.0859 2084 AmdPPM - ok
13:15:58.0891 2084 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
13:15:58.0906 2084 amdsata - ok
13:15:58.0937 2084 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
13:15:58.0937 2084 amdsbs - ok
13:15:58.0969 2084 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:15:58.0969 2084 amdxata - ok
13:15:59.0062 2084 [ 2B85A4692D090A242777CE3EC571FF3A ] Amsp C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
13:15:59.0062 2084 Amsp - ok
13:15:59.0109 2084 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
13:15:59.0109 2084 AppID - ok
13:15:59.0140 2084 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:15:59.0140 2084 AppIDSvc - ok
13:15:59.0171 2084 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
13:15:59.0171 2084 Appinfo - ok
13:15:59.0234 2084 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:15:59.0234 2084 Apple Mobile Device - ok
13:15:59.0265 2084 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
13:15:59.0265 2084 arc - ok
13:15:59.0296 2084 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
13:15:59.0296 2084 arcsas - ok
13:15:59.0359 2084 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
13:15:59.0359 2084 aswFsBlk - ok
13:15:59.0421 2084 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
13:15:59.0421 2084 aswMonFlt - ok
13:15:59.0452 2084 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
13:15:59.0452 2084 aswRdr - ok
13:15:59.0499 2084 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\windows\system32\drivers\aswSnx.sys
13:15:59.0530 2084 aswSnx - ok
13:15:59.0577 2084 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\windows\system32\drivers\aswSP.sys
13:15:59.0593 2084 aswSP - ok
13:15:59.0624 2084 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
13:15:59.0624 2084 aswTdi - ok
13:15:59.0655 2084 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:15:59.0655 2084 AsyncMac - ok
13:15:59.0702 2084 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
13:15:59.0702 2084 atapi - ok
13:15:59.0764 2084 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:15:59.0780 2084 AudioEndpointBuilder - ok
13:15:59.0811 2084 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
13:15:59.0811 2084 AudioSrv - ok
13:15:59.0905 2084 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:15:59.0905 2084 avast! Antivirus - ok
13:15:59.0951 2084 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
13:15:59.0951 2084 AxInstSV - ok
13:16:00.0014 2084 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
13:16:00.0014 2084 b06bdrv - ok
13:16:00.0045 2084 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
13:16:00.0061 2084 b57nd60a - ok
13:16:00.0092 2084 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
13:16:00.0107 2084 BDESVC - ok
13:16:00.0123 2084 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
13:16:00.0123 2084 Beep - ok
13:16:00.0170 2084 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
13:16:00.0201 2084 BFE - ok
13:16:00.0263 2084 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
13:16:00.0295 2084 BITS - ok
13:16:00.0326 2084 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\drivers\blbdrive.sys
13:16:00.0326 2084 blbdrive - ok
13:16:00.0388 2084 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:16:00.0404 2084 Bonjour Service - ok
13:16:00.0419 2084 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:16:00.0435 2084 bowser - ok
13:16:00.0497 2084 [ 3DCB409BCBD02AB0675682F8E42A410F ] bpenum C:\windows\system32\DRIVERS\bpenum.sys
13:16:00.0497 2084 bpenum - ok
13:16:00.0544 2084 [ 6C66EEF6669B14DF4F426990A1CA5112 ] bpmp C:\windows\system32\DRIVERS\bpmp.sys
13:16:00.0544 2084 bpmp - ok
13:16:00.0591 2084 [ 2EE68405BBADE51CBE1C973FF3A1A400 ] bpusb C:\windows\system32\Drivers\bpusb.sys
13:16:00.0591 2084 bpusb - ok
13:16:00.0638 2084 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
13:16:00.0638 2084 BrFiltLo - ok
13:16:00.0653 2084 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
13:16:00.0653 2084 BrFiltUp - ok
13:16:00.0731 2084 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
13:16:00.0731 2084 Browser - ok
13:16:00.0763 2084 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:16:00.0778 2084 Brserid - ok
13:16:00.0809 2084 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:16:00.0809 2084 BrSerWdm - ok
13:16:00.0841 2084 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:16:00.0841 2084 BrUsbMdm - ok
13:16:00.0872 2084 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:16:00.0872 2084 BrUsbSer - ok
13:16:00.0903 2084 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
13:16:00.0903 2084 BTHMODEM - ok
13:16:00.0950 2084 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
13:16:00.0950 2084 bthserv - ok
13:16:00.0965 2084 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:16:00.0965 2084 cdfs - ok
13:16:01.0012 2084 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
13:16:01.0028 2084 cdrom - ok
13:16:01.0090 2084 [ A965B206921C55F2D1481789D609B711 ] CeKbFilter C:\windows\system32\DRIVERS\CeKbFilter.sys
13:16:01.0090 2084 CeKbFilter - ok
13:16:01.0121 2084 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
13:16:01.0121 2084 CertPropSvc - ok
13:16:01.0168 2084 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
13:16:01.0168 2084 circlass - ok
13:16:01.0215 2084 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
13:16:01.0215 2084 CLFS - ok
13:16:01.0293 2084 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:16:01.0293 2084 clr_optimization_v2.0.50727_32 - ok
13:16:01.0355 2084 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:16:01.0371 2084 clr_optimization_v2.0.50727_64 - ok
13:16:01.0449 2084 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:16:01.0449 2084 clr_optimization_v4.0.30319_32 - ok
13:16:01.0496 2084 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:16:01.0496 2084 clr_optimization_v4.0.30319_64 - ok
13:16:01.0543 2084 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\drivers\CmBatt.sys
13:16:01.0543 2084 CmBatt - ok
13:16:01.0558 2084 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
13:16:01.0558 2084 cmdide - ok
13:16:01.0621 2084 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
13:16:01.0636 2084 CNG - ok
13:16:01.0667 2084 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
13:16:01.0667 2084 Compbatt - ok
13:16:01.0699 2084 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
13:16:01.0699 2084 CompositeBus - ok
13:16:01.0714 2084 COMSysApp - ok
13:16:01.0745 2084 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
13:16:01.0745 2084 crcdisk - ok
13:16:01.0792 2084 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
13:16:01.0792 2084 CryptSvc - ok
13:16:01.0917 2084 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
13:16:01.0933 2084 cvhsvc - ok
13:16:01.0995 2084 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
13:16:02.0011 2084 DcomLaunch - ok
13:16:02.0042 2084 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
13:16:02.0042 2084 defragsvc - ok
13:16:02.0073 2084 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:16:02.0073 2084 DfsC - ok
13:16:02.0120 2084 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
13:16:02.0120 2084 Dhcp - ok
13:16:02.0167 2084 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
13:16:02.0167 2084 discache - ok
13:16:02.0198 2084 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
13:16:02.0198 2084 Disk - ok
13:16:02.0276 2084 [ EC9D64CC2DD8A4C6D11550F364890DB1 ] DMAgent C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
13:16:02.0276 2084 DMAgent - ok
13:16:02.0338 2084 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
13:16:02.0338 2084 Dnscache - ok
13:16:02.0369 2084 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
13:16:02.0385 2084 dot3svc - ok
13:16:02.0432 2084 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
13:16:02.0432 2084 DPS - ok
13:16:02.0463 2084 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:16:02.0494 2084 drmkaud - ok
13:16:02.0557 2084 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:16:02.0572 2084 DXGKrnl - ok
13:16:02.0619 2084 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
13:16:02.0635 2084 EapHost - ok
13:16:02.0744 2084 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
13:16:02.0837 2084 ebdrv - ok
13:16:02.0884 2084 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
13:16:02.0884 2084 EFS - ok
13:16:02.0962 2084 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:16:02.0978 2084 ehRecvr - ok
13:16:02.0993 2084 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
13:16:02.0993 2084 ehSched - ok
13:16:03.0040 2084 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
13:16:03.0056 2084 elxstor - ok
13:16:03.0071 2084 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
13:16:03.0071 2084 ErrDev - ok
13:16:03.0149 2084 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
13:16:03.0149 2084 EventSystem - ok
13:16:03.0259 2084 [ 7EE9F35BC1DD0CE1A4976032F9AC5162 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
13:16:03.0290 2084 EvtEng - ok
13:16:03.0337 2084 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
13:16:03.0337 2084 exfat - ok
13:16:03.0368 2084 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
13:16:03.0368 2084 fastfat - ok
13:16:03.0430 2084 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
13:16:03.0446 2084 Fax - ok
13:16:03.0477 2084 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
13:16:03.0477 2084 fdc - ok
13:16:03.0508 2084 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
13:16:03.0508 2084 fdPHost - ok
13:16:03.0524 2084 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
13:16:03.0539 2084 FDResPub - ok
13:16:03.0555 2084 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:16:03.0555 2084 FileInfo - ok
13:16:03.0571 2084 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:16:03.0571 2084 Filetrace - ok
13:16:03.0602 2084 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
13:16:03.0602 2084 flpydisk - ok
13:16:03.0633 2084 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:16:03.0649 2084 FltMgr - ok
13:16:03.0695 2084 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
13:16:03.0727 2084 FontCache - ok
13:16:03.0758 2084 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:16:03.0758 2084 FontCache3.0.0.0 - ok
13:16:03.0805 2084 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:16:03.0805 2084 FsDepends - ok
13:16:03.0851 2084 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:16:03.0851 2084 Fs_Rec - ok
13:16:03.0883 2084 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:16:03.0898 2084 fvevol - ok
13:16:03.0914 2084 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
13:16:03.0914 2084 gagp30kx - ok
13:16:03.0976 2084 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
13:16:03.0976 2084 GEARAspiWDM - ok
13:16:04.0039 2084 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
13:16:04.0054 2084 gpsvc - ok
13:16:04.0117 2084 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:16:04.0132 2084 gupdate - ok
13:16:04.0148 2084 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:16:04.0148 2084 gupdatem - ok
13:16:04.0195 2084 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:16:04.0210 2084 gusvc - ok
13:16:04.0226 2084 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:16:04.0241 2084 hcw85cir - ok
13:16:04.0273 2084 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:16:04.0288 2084 HdAudAddService - ok
13:16:04.0319 2084 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
13:16:04.0319 2084 HDAudBus - ok
13:16:04.0351 2084 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
13:16:04.0366 2084 HidBatt - ok
13:16:04.0382 2084 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
13:16:04.0382 2084 HidBth - ok
13:16:04.0413 2084 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
13:16:04.0429 2084 HidIr - ok
13:16:04.0460 2084 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
13:16:04.0475 2084 hidserv - ok
13:16:04.0522 2084 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
13:16:04.0522 2084 HidUsb - ok
13:16:04.0553 2084 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
13:16:04.0569 2084 hkmsvc - ok
13:16:04.0585 2084 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:16:04.0600 2084 HomeGroupListener - ok
13:16:04.0631 2084 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:16:04.0631 2084 HomeGroupProvider - ok
13:16:04.0678 2084 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:16:04.0678 2084 HpSAMD - ok
13:16:04.0725 2084 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
13:16:04.0741 2084 HTTP - ok
13:16:04.0756 2084 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:16:04.0772 2084 hwpolicy - ok
13:16:04.0803 2084 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
13:16:04.0803 2084 i8042prt - ok
13:16:04.0865 2084 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
13:16:04.0881 2084 iaStor - ok
13:16:04.0928 2084 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:16:04.0943 2084 iaStorV - ok
13:16:04.0990 2084 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:16:05.0021 2084 idsvc - ok
13:16:05.0411 2084 [ 370C2A8629B30F910F740387795DDC6F ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
13:16:05.0817 2084 igfx - ok
13:16:05.0895 2084 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
13:16:05.0911 2084 iirsp - ok
13:16:05.0957 2084 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
13:16:05.0973 2084 IKEEXT - ok
13:16:06.0098 2084 [ AC9AAFD18E4D52084C4AA8A38795B7E4 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
13:16:06.0191 2084 IntcAzAudAddService - ok
13:16:06.0238 2084 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
13:16:06.0238 2084 IntcDAud - ok
13:16:06.0269 2084 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
13:16:06.0269 2084 intelide - ok
13:16:06.0316 2084 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:16:06.0316 2084 intelppm - ok
13:16:06.0347 2084 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:16:06.0363 2084 IPBusEnum - ok
13:16:06.0379 2084 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:16:06.0394 2084 IpFilterDriver - ok
13:16:06.0441 2084 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:16:06.0457 2084 iphlpsvc - ok
13:16:06.0519 2084 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:16:06.0535 2084 IPMIDRV - ok
13:16:06.0581 2084 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:16:06.0581 2084 IPNAT - ok
13:16:06.0644 2084 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:16:06.0675 2084 iPod Service - ok
13:16:06.0706 2084 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
13:16:06.0706 2084 IRENUM - ok
13:16:06.0722 2084 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
13:16:06.0722 2084 isapnp - ok
13:16:06.0753 2084 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:16:06.0769 2084 iScsiPrt - ok
13:16:06.0800 2084 [ 0B44199365A69696109AB9A5855E0841 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
13:16:06.0800 2084 JMCR - ok
13:16:06.0862 2084 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
13:16:06.0862 2084 kbdclass - ok
13:16:06.0893 2084 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
13:16:06.0893 2084 kbdhid - ok
13:16:06.0925 2084 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
13:16:06.0940 2084 KeyIso - ok
13:16:06.0956 2084 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:16:06.0956 2084 KSecDD - ok
13:16:06.0987 2084 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:16:06.0987 2084 KSecPkg - ok
13:16:07.0018 2084 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
13:16:07.0034 2084 ksthunk - ok
13:16:07.0065 2084 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
13:16:07.0081 2084 KtmRm - ok
13:16:07.0127 2084 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
13:16:07.0127 2084 LanmanServer - ok
13:16:07.0143 2084 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:16:07.0159 2084 LanmanWorkstation - ok
13:16:07.0221 2084 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:16:07.0221 2084 lltdio - ok
13:16:07.0268 2084 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
13:16:07.0283 2084 lltdsvc - ok
13:16:07.0315 2084 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
13:16:07.0315 2084 lmhosts - ok
13:16:07.0393 2084 [ 50C7CE53EF461870410355F1F2E7D515 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
13:16:07.0393 2084 LMS - ok
13:16:07.0439 2084 [ 2825A71E7501CB33B3B9F856610C729D ] LPCFilter C:\windows\system32\DRIVERS\LPCFilter.sys
13:16:07.0439 2084 LPCFilter - ok
13:16:07.0502 2084 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
13:16:07.0517 2084 LSI_FC - ok
13:16:07.0533 2084 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
13:16:07.0533 2084 LSI_SAS - ok
13:16:07.0595 2084 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
13:16:07.0595 2084 LSI_SAS2 - ok
13:16:07.0627 2084 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
13:16:07.0627 2084 LSI_SCSI - ok
13:16:07.0673 2084 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
13:16:07.0673 2084 luafv - ok
13:16:07.0736 2084 [ 36EFC8C32829A27BAF0E63BFDBD5EE90 ] massfilter C:\windows\system32\drivers\massfilter.sys
13:16:07.0736 2084 massfilter - ok
13:16:07.0783 2084 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:16:07.0783 2084 Mcx2Svc - ok
13:16:07.0814 2084 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
13:16:07.0814 2084 megasas - ok
13:16:07.0845 2084 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
13:16:07.0861 2084 MegaSR - ok
13:16:07.0892 2084 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
13:16:07.0892 2084 MEIx64 - ok
13:16:07.0923 2084 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
13:16:07.0939 2084 MMCSS - ok
13:16:07.0954 2084 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
13:16:07.0954 2084 Modem - ok
13:16:08.0001 2084 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:16:08.0001 2084 monitor - ok
13:16:08.0032 2084 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
13:16:08.0032 2084 mouclass - ok
13:16:08.0079 2084 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\drivers\mouhid.sys
13:16:08.0079 2084 mouhid - ok
13:16:08.0110 2084 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:16:08.0110 2084 mountmgr - ok
13:16:08.0173 2084 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:16:08.0188 2084 MozillaMaintenance - ok
13:16:08.0219 2084 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
13:16:08.0235 2084 mpio - ok
13:16:08.0266 2084 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:16:08.0266 2084 mpsdrv - ok
13:16:08.0313 2084 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
13:16:08.0344 2084 MpsSvc - ok
13:16:08.0375 2084 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:16:08.0391 2084 MRxDAV - ok
13:16:08.0422 2084 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:16:08.0422 2084 mrxsmb - ok
13:16:08.0453 2084 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:16:08.0453 2084 mrxsmb10 - ok
13:16:08.0500 2084 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:16:08.0500 2084 mrxsmb20 - ok
13:16:08.0547 2084 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
13:16:08.0547 2084 msahci - ok
13:16:08.0563 2084 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:16:08.0578 2084 msdsm - ok
13:16:08.0594 2084 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
13:16:08.0594 2084 MSDTC - ok
13:16:08.0625 2084 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
13:16:08.0641 2084 Msfs - ok
13:16:08.0672 2084 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:16:08.0687 2084 mshidkmdf - ok
13:16:08.0703 2084 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:16:08.0703 2084 msisadrv - ok
13:16:08.0734 2084 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:16:08.0750 2084 MSiSCSI - ok
13:16:08.0750 2084 msiserver - ok
13:16:08.0781 2084 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:16:08.0781 2084 MSKSSRV - ok
13:16:08.0828 2084 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:16:08.0828 2084 MSPCLOCK - ok
13:16:08.0859 2084 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:16:08.0859 2084 MSPQM - ok
13:16:08.0906 2084 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:16:08.0921 2084 MsRPC - ok
13:16:08.0953 2084 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
13:16:08.0953 2084 mssmbios - ok
13:16:08.0984 2084 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:16:08.0984 2084 MSTEE - ok
13:16:08.0999 2084 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
13:16:08.0999 2084 MTConfig - ok
13:16:09.0031 2084 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
13:16:09.0031 2084 Mup - ok
13:16:09.0077 2084 [ 0CF5580F27918FFD2E165ECAFA734103 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
13:16:09.0077 2084 MyWiFiDHCPDNS - ok
13:16:09.0124 2084 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
13:16:09.0140 2084 napagent - ok
13:16:09.0187 2084 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:16:09.0202 2084 NativeWifiP - ok
13:16:09.0265 2084 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
13:16:09.0296 2084 NDIS - ok
13:16:09.0327 2084 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:16:09.0327 2084 NdisCap - ok
13:16:09.0358 2084 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:16:09.0374 2084 NdisTapi - ok
13:16:09.0405 2084 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:16:09.0405 2084 Ndisuio - ok
13:16:09.0436 2084 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:16:09.0436 2084 NdisWan - ok
13:16:09.0452 2084 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:16:09.0467 2084 NDProxy - ok
13:16:09.0499 2084 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:16:09.0499 2084 NetBIOS - ok
13:16:09.0530 2084 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:16:09.0545 2084 NetBT - ok
13:16:09.0561 2084 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
13:16:09.0561 2084 Netlogon - ok
13:16:09.0608 2084 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
13:16:09.0623 2084 Netman - ok
13:16:09.0639 2084 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
13:16:09.0655 2084 netprofm - ok
13:16:09.0686 2084 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:16:09.0686 2084 NetTcpPortSharing - ok
13:16:09.0951 2084 [ B9C587BDAA61A689883439D5AE6FE7F3 ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
13:16:10.0216 2084 NETwNs64 - ok
13:16:10.0294 2084 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
13:16:10.0294 2084 nfrd960 - ok
13:16:10.0357 2084 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
13:16:10.0372 2084 NlaSvc - ok
13:16:10.0403 2084 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
13:16:10.0403 2084 Npfs - ok
13:16:10.0435 2084 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
13:16:10.0450 2084 nsi - ok
13:16:10.0466 2084 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:16:10.0481 2084 nsiproxy - ok
13:16:10.0559 2084 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:16:10.0591 2084 Ntfs - ok
13:16:10.0622 2084 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
13:16:10.0637 2084 Null - ok
13:16:10.0653 2084 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
13:16:10.0653 2084 nusb3hub - ok
13:16:10.0684 2084 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
13:16:10.0684 2084 nusb3xhc - ok
13:16:10.0715 2084 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
13:16:10.0731 2084 nvraid - ok
13:16:10.0747 2084 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
13:16:10.0747 2084 nvstor - ok
13:16:10.0793 2084 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:16:10.0793 2084 nv_agp - ok
13:16:10.0825 2084 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:16:10.0825 2084 ohci1394 - ok
13:16:10.0856 2084 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:16:10.0856 2084 ose - ok
13:16:11.0059 2084 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:16:11.0215 2084 osppsvc - ok
13:16:11.0246 2084 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:16:11.0277 2084 p2pimsvc - ok
13:16:11.0308 2084 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
13:16:11.0324 2084 p2psvc - ok
13:16:11.0339 2084 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
13:16:11.0355 2084 Parport - ok
13:16:11.0386 2084 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
13:16:11.0386 2084 partmgr - ok
13:16:11.0417 2084 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
13:16:11.0433 2084 PcaSvc - ok
13:16:11.0464 2084 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
13:16:11.0480 2084 pci - ok
13:16:11.0495 2084 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
13:16:11.0495 2084 pciide - ok
13:16:11.0527 2084 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
13:16:11.0527 2084 pcmcia - ok
13:16:11.0558 2084 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
13:16:11.0558 2084 pcw - ok
13:16:11.0620 2084 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:16:11.0636 2084 PEAUTH - ok
13:16:11.0698 2084 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
13:16:11.0698 2084 PerfHost - ok
13:16:11.0745 2084 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
13:16:11.0761 2084 PGEffect - ok
13:16:11.0807 2084 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
13:16:11.0854 2084 pla - ok
13:16:11.0917 2084 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:16:11.0932 2084 PlugPlay - ok
13:16:11.0948 2084 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:16:11.0963 2084 PNRPAutoReg - ok
13:16:11.0979 2084 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:16:11.0995 2084 PNRPsvc - ok
13:16:12.0026 2084 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:16:12.0041 2084 PolicyAgent - ok
13:16:12.0088 2084 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
13:16:12.0104 2084 Power - ok
13:16:12.0135 2084 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:16:12.0151 2084 PptpMiniport - ok
13:16:12.0166 2084 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
13:16:12.0166 2084 Processor - ok
13:16:12.0213 2084 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
13:16:12.0213 2084 ProfSvc - ok
13:16:12.0244 2084 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
13:16:12.0244 2084 ProtectedStorage - ok
13:16:12.0275 2084 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:16:12.0275 2084 Psched - ok
13:16:12.0338 2084 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
13:16:12.0385 2084 ql2300 - ok
13:16:12.0431 2084 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
13:16:12.0447 2084 ql40xx - ok
13:16:12.0478 2084 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
13:16:12.0494 2084 QWAVE - ok
13:16:12.0509 2084 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:16:12.0509 2084 QWAVEdrv - ok
13:16:12.0525 2084 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:16:12.0541 2084 RasAcd - ok
13:16:12.0572 2084 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:16:12.0572 2084 RasAgileVpn - ok
13:16:12.0603 2084 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
13:16:12.0619 2084 RasAuto - ok
13:16:12.0665 2084 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:16:12.0665 2084 Rasl2tp - ok
13:16:12.0712 2084 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
13:16:12.0728 2084 RasMan - ok
13:16:12.0743 2084 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:16:12.0743 2084 RasPppoe - ok
13:16:12.0759 2084 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:16:12.0775 2084 RasSstp - ok
13:16:12.0806 2084 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:16:12.0806 2084 rdbss - ok
13:16:12.0837 2084 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
13:16:12.0837 2084 rdpbus - ok
13:16:12.0868 2084 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:16:12.0868 2084 RDPCDD - ok
13:16:12.0899 2084 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:16:12.0915 2084 RDPENCDD - ok
13:16:12.0946 2084 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:16:12.0946 2084 RDPREFMP - ok
13:16:12.0977 2084 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:16:12.0993 2084 RDPWD - ok
13:16:13.0024 2084 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:16:13.0024 2084 rdyboost - ok
13:16:13.0102 2084 [ AA9FD849C028CCB441A78061B57DB734 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
13:16:13.0118 2084 RegSrvc - ok
13:16:13.0149 2084 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
13:16:13.0165 2084 RemoteAccess - ok
13:16:13.0196 2084 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
13:16:13.0211 2084 RemoteRegistry - ok
13:16:13.0227 2084 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:16:13.0243 2084 RpcEptMapper - ok
13:16:13.0258 2084 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
13:16:13.0258 2084 RpcLocator - ok
13:16:13.0305 2084 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
13:16:13.0321 2084 RpcSs - ok
13:16:13.0352 2084 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:16:13.0352 2084 rspndr - ok
13:16:13.0399 2084 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
13:16:13.0399 2084 RTL8167 - ok
13:16:13.0430 2084 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
13:16:13.0430 2084 SamSs - ok
13:16:13.0461 2084 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:16:13.0461 2084 sbp2port - ok
13:16:13.0492 2084 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
13:16:13.0508 2084 SCardSvr - ok
13:16:13.0539 2084 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:16:13.0539 2084 scfilter - ok
13:16:13.0601 2084 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
13:16:13.0633 2084 Schedule - ok
13:16:13.0664 2084 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
13:16:13.0664 2084 SCPolicySvc - ok
13:16:13.0695 2084 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\DRIVERS\sdbus.sys
13:16:13.0695 2084 sdbus - ok
13:16:13.0726 2084 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:16:13.0742 2084 SDRSVC - ok
13:16:13.0773 2084 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:16:13.0773 2084 secdrv - ok
13:16:13.0804 2084 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
13:16:13.0804 2084 seclogon - ok
13:16:13.0820 2084 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
13:16:13.0835 2084 SENS - ok
13:16:13.0867 2084 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
13:16:13.0882 2084 SensrSvc - ok
13:16:13.0913 2084 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
13:16:13.0913 2084 Serenum - ok
13:16:13.0945 2084 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
13:16:13.0960 2084 Serial - ok
13:16:13.0991 2084 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
13:16:13.0991 2084 sermouse - ok
13:16:14.0038 2084 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
13:16:14.0038 2084 SessionEnv - ok
13:16:14.0054 2084 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:16:14.0069 2084 sffdisk - ok
13:16:14.0101 2084 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:16:14.0101 2084 sffp_mmc - ok
13:16:14.0116 2084 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:16:14.0116 2084 sffp_sd - ok
13:16:14.0132 2084 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
13:16:14.0147 2084 sfloppy - ok
13:16:14.0194 2084 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
13:16:14.0210 2084 Sftfs - ok
13:16:14.0272 2084 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
13:16:14.0288 2084 sftlist - ok
13:16:14.0335 2084 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
13:16:14.0350 2084 Sftplay - ok
13:16:14.0381 2084 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
13:16:14.0381 2084 Sftredir - ok
13:16:14.0413 2084 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
13:16:14.0413 2084 Sftvol - ok
13:16:14.0459 2084 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
13:16:14.0475 2084 sftvsa - ok
13:16:14.0491 2084 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
13:16:14.0506 2084 SharedAccess - ok
13:16:14.0537 2084 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:16:14.0553 2084 ShellHWDetection - ok
13:16:14.0584 2084 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
13:16:14.0584 2084 SiSRaid2 - ok
13:16:14.0615 2084 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
13:16:14.0631 2084 SiSRaid4 - ok
13:16:14.0678 2084 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:16:14.0693 2084 SkypeUpdate - ok
13:16:14.0709 2084 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
13:16:14.0709 2084 Smb - ok
13:16:14.0756 2084 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:16:14.0771 2084 SNMPTRAP - ok
13:16:14.0803 2084 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
13:16:14.0803 2084 spldr - ok
13:16:14.0834 2084 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
13:16:14.0865 2084 Spooler - ok
13:16:14.0990 2084 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
13:16:15.0099 2084 sppsvc - ok
13:16:15.0115 2084 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
13:16:15.0130 2084 sppuinotify - ok
13:16:15.0161 2084 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
13:16:15.0177 2084 srv - ok
13:16:15.0193 2084 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:16:15.0208 2084 srv2 - ok
13:16:15.0255 2084 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:16:15.0255 2084 srvnet - ok
13:16:15.0286 2084 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:16:15.0302 2084 SSDPSRV - ok
13:16:15.0317 2084 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
13:16:15.0333 2084 SstpSvc - ok
13:16:15.0349 2084 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
13:16:15.0349 2084 stexstor - ok
13:16:15.0395 2084 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
13:16:15.0427 2084 stisvc - ok
13:16:15.0458 2084 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
13:16:15.0458 2084 swenum - ok
13:16:15.0505 2084 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
13:16:15.0520 2084 swprv - ok
13:16:15.0598 2084 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:16:15.0629 2084 SynTP - ok
13:16:15.0707 2084 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
13:16:15.0754 2084 SysMain - ok
13:16:15.0785 2084 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
13:16:15.0785 2084 TabletInputService - ok
13:16:15.0817 2084 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
13:16:15.0832 2084 TapiSrv - ok
13:16:15.0848 2084 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
13:16:15.0863 2084 TBS - ok
13:16:15.0957 2084 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:16:16.0004 2084 Tcpip - ok
13:16:16.0082 2084 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:16:16.0129 2084 TCPIP6 - ok
13:16:16.0144 2084 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:16:16.0160 2084 tcpipreg - ok
13:16:16.0222 2084 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
13:16:16.0222 2084 tdcmdpst - ok
13:16:16.0238 2084 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:16:16.0238 2084 TDPIPE - ok
13:16:16.0269 2084 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:16:16.0269 2084 TDTCP - ok
13:16:16.0316 2084 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:16:16.0316 2084 tdx - ok
13:16:16.0331 2084 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
13:16:16.0347 2084 TermDD - ok
13:16:16.0394 2084 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
13:16:16.0409 2084 TermService - ok
13:16:16.0441 2084 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
13:16:16.0441 2084 Themes - ok
13:16:16.0519 2084 [ C013F6ACAA9761F571BD28DADA7C157D ] Thpdrv C:\windows\system32\DRIVERS\thpdrv.sys
13:16:16.0519 2084 Thpdrv - ok
13:16:16.0534 2084 [ B4E609047434ED948AF7BDEF2FA66E38 ] Thpevm C:\windows\system32\DRIVERS\Thpevm.SYS
13:16:16.0550 2084 Thpevm - ok
13:16:16.0581 2084 [ 9B032A63A0553A2D872815C64A0288BE ] Thpsrv C:\windows\system32\ThpSrv.exe
13:16:16.0597 2084 Thpsrv - ok
13:16:16.0628 2084 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
13:16:16.0628 2084 THREADORDER - ok
13:16:16.0690 2084 [ 83E91963C4452BE6899503CF9EBFD3ED ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
13:16:16.0706 2084 TMachInfo - ok
13:16:16.0753 2084 [ C08008F29117BAC9CE14DCAC24D83071 ] tmactmon C:\windows\system32\DRIVERS\tmactmon.sys
13:16:16.0753 2084 tmactmon - ok
13:16:16.0799 2084 [ ACAA22BF6AF50000AD0694DFE96BAD88 ] tmcomm C:\windows\system32\DRIVERS\tmcomm.sys
13:16:16.0815 2084 tmcomm - ok
13:16:16.0846 2084 [ AB53AC18F62B116B16A3C4A2AF5D68E4 ] tmevtmgr C:\windows\system32\DRIVERS\tmevtmgr.sys
13:16:16.0846 2084 tmevtmgr - ok
13:16:16.0893 2084 [ E1B7C525E5022A6BCA62BD480ED9BB5B ] tmtdi C:\windows\system32\DRIVERS\tmtdi.sys
13:16:16.0893 2084 tmtdi - ok
13:16:16.0924 2084 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\windows\system32\TODDSrv.exe
13:16:16.0940 2084 TODDSrv - ok
13:16:17.0018 2084 [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
13:16:17.0033 2084 TosCoSrv - ok
13:16:17.0065 2084 [ D33D5588576B04FC489DCCC66E98F546 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
13:16:17.0065 2084 TOSHIBA eco Utility Service - ok
13:16:17.0127 2084 [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
13:16:17.0127 2084 TOSHIBA HDD SSD Alert Service - ok
13:16:17.0189 2084 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
13:16:17.0205 2084 tos_sps64 - ok
13:16:17.0267 2084 [ D65C6B0C070534336B72005391B6168A ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
13:16:17.0283 2084 TPCHSrv - ok
13:16:17.0314 2084 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
13:16:17.0330 2084 TrkWks - ok
13:16:17.0392 2084 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:16:17.0392 2084 TrustedInstaller - ok
13:16:17.0423 2084 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:16:17.0423 2084 tssecsrv - ok
13:16:17.0470 2084 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:16:17.0470 2084 TsUsbFlt - ok
13:16:17.0486 2084 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
13:16:17.0486 2084 TsUsbGD - ok
13:16:17.0548 2084 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:16:17.0548 2084 tunnel - ok
13:16:17.0595 2084 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
13:16:17.0595 2084 TVALZ - ok
13:16:17.0626 2084 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
13:16:17.0626 2084 TVALZFL - ok
13:16:17.0657 2084 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
13:16:17.0657 2084 uagp35 - ok
13:16:17.0689 2084 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:16:17.0704 2084 udfs - ok
13:16:17.0735 2084 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
13:16:17.0751 2084 UI0Detect - ok
13:16:17.0782 2084 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:16:17.0782 2084 uliagpkx - ok
13:16:17.0829 2084 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
13:16:17.0829 2084 umbus - ok
13:16:17.0860 2084 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
13:16:17.0860 2084 UmPass - ok
13:16:18.0001 2084 [ 374EBDA379A8F38E0CFC2211611E7167 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
13:16:18.0094 2084 UNS - ok
13:16:18.0125 2084 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
13:16:18.0141 2084 upnphost - ok
13:16:18.0188 2084 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:16:18.0188 2084 usbccgp - ok
13:16:18.0219 2084 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
13:16:18.0235 2084 usbcir - ok
13:16:18.0266 2084 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
13:16:18.0266 2084 usbehci - ok
13:16:18.0297 2084 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
13:16:18.0313 2084 usbhub - ok
13:16:18.0344 2084 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
13:16:18.0344 2084 usbohci - ok
13:16:18.0375 2084 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
13:16:18.0375 2084 usbprint - ok
13:16:18.0406 2084 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:16:18.0406 2084 USBSTOR - ok
13:16:18.0437 2084 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
13:16:18.0437 2084 usbuhci - ok
13:16:18.0500 2084 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
13:16:18.0500 2084 usbvideo - ok
13:16:18.0547 2084 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
13:16:18.0547 2084 UxSms - ok
13:16:18.0562 2084 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
13:16:18.0562 2084 VaultSvc - ok
13:16:18.0593 2084 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:16:18.0609 2084 vdrvroot - ok
13:16:18.0640 2084 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
13:16:18.0656 2084 vds - ok
13:16:18.0703 2084 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:16:18.0703 2084 vga - ok
13:16:18.0718 2084 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
13:16:18.0718 2084 VgaSave - ok
13:16:18.0749 2084 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:16:18.0749 2084 vhdmp - ok
13:16:18.0781 2084 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
13:16:18.0781 2084 viaide - ok
13:16:18.0812 2084 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:16:18.0812 2084 volmgr - ok
13:16:18.0843 2084 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:16:18.0843 2084 volmgrx - ok
13:16:18.0890 2084 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
13:16:18.0890 2084 volsnap - ok
13:16:18.0921 2084 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
13:16:18.0937 2084 vsmraid - ok
13:16:18.0999 2084 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
13:16:19.0046 2084 VSS - ok
13:16:19.0077 2084 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:16:19.0077 2084 vwifibus - ok
13:16:19.0108 2084 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:16:19.0108 2084 vwififlt - ok
13:16:19.0139 2084 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
13:16:19.0139 2084 vwifimp - ok
13:16:19.0171 2084 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
13:16:19.0186 2084 W32Time - ok
13:16:19.0217 2084 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
13:16:19.0217 2084 WacomPen - ok
13:16:19.0264 2084 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:16:19.0264 2084 WANARP - ok
13:16:19.0280 2084 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:16:19.0280 2084 Wanarpv6 - ok
13:16:19.0373 2084 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:16:19.0405 2084 WatAdminSvc - ok
13:16:19.0483 2084 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
13:16:19.0529 2084 wbengine - ok
13:16:19.0561 2084 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:16:19.0576 2084 WbioSrvc - ok
13:16:19.0607 2084 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
13:16:19.0623 2084 wcncsvc - ok
13:16:19.0639 2084 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:16:19.0654 2084 WcsPlugInService - ok
13:16:19.0670 2084 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
13:16:19.0685 2084 Wd - ok
13:16:19.0717 2084 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:16:19.0732 2084 Wdf01000 - ok
13:16:19.0748 2084 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
13:16:19.0763 2084 WdiServiceHost - ok
13:16:19.0763 2084 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
13:16:19.0779 2084 WdiSystemHost - ok
13:16:19.0826 2084 [ 5E1640435DD54D00451156CA5340B109 ] wdkmd C:\windows\system32\DRIVERS\WDKMD.sys
13:16:19.0826 2084 wdkmd - ok
13:16:19.0857 2084 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
13:16:19.0873 2084 WebClient - ok
13:16:19.0904 2084 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
13:16:19.0919 2084 Wecsvc - ok
13:16:19.0935 2084 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
13:16:19.0951 2084 wercplsupport - ok
13:16:19.0982 2084 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
13:16:19.0997 2084 WerSvc - ok
13:16:20.0044 2084 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:16:20.0044 2084 WfpLwf - ok
13:16:20.0122 2084 [ 64DE79BF805724F0606FE7B3B2F13784 ] WiMAXAppSrv C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
13:16:20.0153 2084 WiMAXAppSrv - ok
13:16:20.0185 2084 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:16:20.0185 2084 WIMMount - ok
13:16:20.0200 2084 WinDefend - ok
13:16:20.0200 2084 WinHttpAutoProxySvc - ok
13:16:20.0278 2084 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:16:20.0294 2084 Winmgmt - ok
13:16:20.0372 2084 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
13:16:20.0434 2084 WinRM - ok
13:16:20.0481 2084 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
13:16:20.0497 2084 WinUsb - ok
13:16:20.0543 2084 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
13:16:20.0575 2084 Wlansvc - ok
13:16:20.0653 2084 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:16:20.0653 2084 wlcrasvc - ok
13:16:20.0746 2084 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:16:20.0793 2084 wlidsvc - ok
13:16:20.0824 2084 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
13:16:20.0824 2084 WmiAcpi - ok
13:16:20.0855 2084 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:16:20.0871 2084 wmiApSrv - ok
13:16:20.0918 2084 WMPNetworkSvc - ok
13:16:20.0965 2084 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
13:16:20.0965 2084 WPCSvc - ok
13:16:20.0996 2084 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:16:21.0011 2084 WPDBusEnum - ok
13:16:21.0043 2084 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:16:21.0043 2084 ws2ifsl - ok
13:16:21.0074 2084 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
13:16:21.0089 2084 wscsvc - ok
13:16:21.0089 2084 WSearch - ok
13:16:21.0199 2084 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
13:16:21.0292 2084 wuauserv - ok
13:16:21.0323 2084 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:16:21.0323 2084 WudfPf - ok
13:16:21.0370 2084 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:16:21.0370 2084 WUDFRd - ok
13:16:21.0417 2084 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:16:21.0417 2084 wudfsvc - ok
13:16:21.0448 2084 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
13:16:21.0464 2084 WwanSvc - ok
13:16:21.0495 2084 ================ Scan global ===============================
13:16:21.0526 2084 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
13:16:21.0557 2084 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
13:16:21.0573 2084 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
13:16:21.0620 2084 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
13:16:21.0667 2084 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
13:16:21.0682 2084 [Global] - ok
13:16:21.0682 2084 ================ Scan MBR ==================================
13:16:21.0698 2084 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
13:16:21.0994 2084 \Device\Harddisk0\DR0 - ok
13:16:21.0994 2084 ================ Scan VBR ==================================
13:16:22.0025 2084 [ E920AEA737FD2A6994E32745ED31703C ] \Device\Harddisk0\DR0\Partition1
13:16:22.0025 2084 \Device\Harddisk0\DR0\Partition1 - ok
13:16:22.0025 2084 ============================================================
13:16:22.0025 2084 Scan finished
13:16:22.0025 2084 ============================================================
13:16:22.0041 6924 Detected object count: 0
13:16:22.0041 6924 Actual detected object count: 0
13:18:00.0717 0792 Deinitialize success



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-04 13:32:21
-----------------------------
13:32:21.524 OS Version: Windows x64 6.1.7601 Service Pack 1
13:32:21.524 Number of processors: 4 586 0x2A07
13:32:21.524 ComputerName: BBLEYER-PC UserName: bbleyer
13:32:22.725 Initialize success
13:32:22.881 AVAST engine defs: 12110400
13:32:31.742 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:32:31.742 Disk 0 Vendor: TOSHIBA_ GB00 Size: 610480MB BusType: 3
13:32:31.804 Disk 0 MBR read successfully
13:32:31.804 Disk 0 MBR scan
13:32:31.820 Disk 0 Windows VISTA default MBR code
13:32:31.836 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
13:32:31.851 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 594520 MB offset 3074048
13:32:31.898 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 14459 MB offset 1220651008
13:32:31.960 Disk 0 scanning C:\windows\system32\drivers
13:32:50.587 Service scanning
13:33:29.091 Modules scanning
13:33:29.106 Disk 0 trace - called modules:
13:33:29.153 ntoskrnl.exe CLASSPNP.SYS disk.sys thpdrv.sys iaStor.sys hal.dll
13:33:29.169 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007bcd060]
13:33:29.169 3 CLASSPNP.SYS[fffff88001a0143f] -> nt!IofCallDriver -> \Device\THPDRV1[0xfffffa8007bcc060]
13:33:29.184 5 thpdrv.sys[fffff88001b44cc0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005ec2050]
13:33:30.136 AVAST engine scan C:\windows
13:33:45.876 AVAST engine scan C:\windows\system32
13:36:38.171 AVAST engine scan C:\windows\system32\drivers
13:36:50.653 AVAST engine scan C:\Users\bbleyer
13:44:15.537 AVAST engine scan C:\ProgramData
13:45:01.260 Scan finished successfully
13:57:43.272 Disk 0 MBR has been saved successfully to "C:\Users\bbleyer\Downloads\MBR.dat"
13:57:43.288 The log file has been saved successfully to "C:\Users\bbleyer\Downloads\aswMBR.txt"


C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.3.8\BabylonToolbarApp.dll a variant of Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.3.8\BabylonToolbarsrv.exe probably a variant of Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR File Open Knife - Free Opener\RAR File Open Knife - Free Opener Updates.lnk LNK/URL.B trojan cleaned by deleting - quarantined
C:\Users\bbleyer\Downloads\WECPSetup.exe a variant of Win32/InstallCore.W application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 05 November 2012 - 09:25 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 lordquas15

lordquas15
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 05 November 2012 - 10:32 PM

Adware cleaner needs to restart computer so I am submitting this post so I don't lose the results of previous scans. Will have the rest in next post soon.


Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.05.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
bbleyer :: BBLEYER-PC [administrator]

Protection: Enabled

11/5/2012 8:34:53 PM
mbam-log-2012-11-05 (20-34-53).txt

Scan type: Full scan (C:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 327511
Time elapsed: 41 minute(s), 58 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


MiniToolBox by Farbar Version: 23-07-2012
Ran by bbleyer (administrator) on 05-11-2012 at 21:22:01
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 6150 = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
Intel® Centrino® WiMAX 6150 = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : bbleyer-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : clearwire-wmx.net
Description . . . . . . . . . . . : Intel® Centrino® WiMAX 6150
Physical Address. . . . . . . . . : 64-D4-DA-58-E9-B8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 40-25-C2-40-CC-D1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 40-25-C2-40-CC-D1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : B8-70-F4-63-14-7D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 6150
Physical Address. . . . . . . . . : 40-25-C2-40-CC-D0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5c8e:b765:f6c:92b2%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, November 05, 2012 6:09:23 PM
Lease Expires . . . . . . . . . . : Monday, November 05, 2012 10:12:28 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 239084994
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-7D-B1-B1-40-25-C2-40-CC-D0
DNS Servers . . . . . . . . . . . : 97.64.168.12
97.64.183.165
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:42f:336c:3f57:fffd(Preferred)
Link-local IPv6 Address . . . . . : fe80::42f:336c:3f57:fffd%18(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{A3D08F79-86E2-4021-9486-A349B92C382E}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.clearwire-wmx.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{9435F997-4218-4B78-AB9B-F4205B309968}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3875C919-FC4C-46A4-962E-DEBAEB0B978B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AA54D06E-FF89-41D4-85C0-7477BBF20806}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dsmdc-dns-dts10.mcomdc.com
Address: 97.64.168.12

Name: google.com
Addresses: 2001:4860:400a:800::1009
74.125.225.6
74.125.225.7
74.125.225.8
74.125.225.9
74.125.225.14
74.125.225.0
74.125.225.1
74.125.225.2
74.125.225.3
74.125.225.4
74.125.225.5


Pinging google.com [74.125.225.14] with 32 bytes of data:
Reply from 74.125.225.14: bytes=32 time=33ms TTL=54
Reply from 74.125.225.14: bytes=32 time=38ms TTL=54

Ping statistics for 74.125.225.14:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 33ms, Maximum = 38ms, Average = 35ms
Server: dsmdc-dns-dts10.mcomdc.com
Address: 97.64.168.12

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=91ms TTL=48
Reply from 98.138.253.109: bytes=32 time=90ms TTL=48

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 90ms, Maximum = 91ms, Average = 90ms
Server: dsmdc-dns-dts10.mcomdc.com
Address: 97.64.168.12

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 6ms, Maximum = 6ms, Average = 6ms
===========================================================================
Interface List
16...64 d4 da 58 e9 b8 ......Intel® Centrino® WiMAX 6150
15...40 25 c2 40 cc d1 ......Microsoft Virtual WiFi Miniport Adapter #2
14...40 25 c2 40 cc d1 ......Microsoft Virtual WiFi Miniport Adapter
12...b8 70 f4 63 14 7d ......Realtek PCIe FE Family Controller
11...40 25 c2 40 cc d0 ......Intel® Centrino® Wireless-N 6150
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.2 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.2 281
192.168.0.2 255.255.255.255 On-link 192.168.0.2 281
192.168.0.255 255.255.255.255 On-link 192.168.0.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.2 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 58 ::/0 On-link
1 306 ::1/128 On-link
18 58 2001::/32 On-link
18 306 2001:0:4137:9e76:42f:336c:3f57:fffd/128
On-link
11 281 fe80::/64 On-link
18 306 fe80::/64 On-link
18 306 fe80::42f:336c:3f57:fffd/128
On-link
11 281 fe80::5c8e:b765:f6c:92b2/128
On-link
1 306 ff00::/8 On-link
18 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/05/2012 07:21:15 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 90080108

Error: (11/05/2012 04:01:19 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (11/04/2012 02:35:57 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/04/2012 01:58:21 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/04/2012 01:58:15 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/04/2012 01:58:15 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/04/2012 11:25:27 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (11/04/2012 03:59:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1981

Error: (11/04/2012 03:59:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1981

Error: (11/04/2012 03:59:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (11/04/2012 00:33:58 AM) (Source: Service Control Manager) (User: )
Description: The TOSHIBA HDD Protection service terminated unexpectedly. It has done this 1 time(s).

Error: (11/02/2012 01:55:35 PM) (Source: Service Control Manager) (User: )
Description: The Client Virtualization Handler service depends on the Application Virtualization Client service which failed to start because of the following error:
%%1053

Error: (11/02/2012 01:55:31 PM) (Source: Service Control Manager) (User: )
Description: The Application Virtualization Client service failed to start due to the following error:
%%1053

Error: (11/02/2012 01:55:31 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Application Virtualization Client service to connect.

Error: (11/02/2012 09:32:14 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:30:42 AM on ?11/?2/?2012 was unexpected.

Error: (11/01/2012 08:50:37 AM) (Source: DCOM) (User: )
Description: {4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (10/29/2012 09:53:27 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:56:27 AM on ?10/?28/?2012 was unexpected.

Error: (10/23/2012 07:53:35 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (10/21/2012 09:06:23 PM) (Source: DCOM) (User: )
Description: {4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (10/19/2012 09:12:44 AM) (Source: DCOM) (User: )
Description: {4EB61BAC-A3B6-4760-9581-655041EF4D69}


Microsoft Office Sessions:
=========================
Error: (11/05/2012 07:21:15 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 90080108

Error: (11/05/2012 04:01:19 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (11/04/2012 02:35:57 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bbleyer\Downloads\esetsmartinstaller_enu.exe

Error: (11/04/2012 01:58:21 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bbleyer\Downloads\esetsmartinstaller_enu.exe

Error: (11/04/2012 01:58:15 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bbleyer\Downloads\esetsmartinstaller_enu.exe

Error: (11/04/2012 01:58:15 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bbleyer\Downloads\esetsmartinstaller_enu.exe

Error: (11/04/2012 11:25:27 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (11/04/2012 03:59:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1981

Error: (11/04/2012 03:59:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1981

Error: (11/04/2012 03:59:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


=========================== Installed Programs ============================

Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Reader X (10.1.0) (Version: 10.1.0)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 7.0.1474.0)
Babylon toolbar
Best Buy pc app (Version: 3.2.0.0)
Bonjour (Version: 3.0.0.10)
D3DX10 (Version: 15.4.2368.0902)
DealCabby (Version: 1.0921.1509)
ESET Online Scanner v3
Google Talk Plugin (Version: 3.10.2.10212)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
Graboid Video 3.26 (Version: 3.26)
Intel PROSet Wireless
Intel WiMAX Tutorial (Version: 1.5.3.1)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2353)
Intel® PROSet/Wireless WiFi Software (Version: 14.0.2000)
Intel® Rapid Storage Technology (Version: 10.1.2.1004)
Intel® Wireless Display
Intel® Wireless Display (Version: 2.0.29.0)
Intel® PROSet/Wireless WiMAX Software (Version: 6.02.1000)
iTunes (Version: 10.6.1.7)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 20 (Version: 6.0.200)
JavaFX 2.1.1 (Version: 2.1.1)
JMicron Flash Media Controller Driver (Version: 1.0.57.2)
Junk Mail filter update (Version: 15.4.3502.0922)
Label@Once 1.0 (Version: 1.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 16.0.2 (x86 en-US) (Version: 16.0.2)
Mozilla Firefox Packages
Mozilla Maintenance Service (Version: 16.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Norton Security Scan (Version: 3.7.2.5)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
QuickTime (Version: 7.72.80.56)
RAR File Open Knife - Free Opener (Version: 3.00)
Realtek Ethernet Controller Driver (Version: 7.38.113.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6305)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.34.0)
Skype™ 5.10 (Version: 5.10.116)
Spotify (Version: 0.8.5.1333.g822e0de8)
Switch Sound File Converter
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.2.11.1)
TOSHIBA Application Installer (Version: 9.0.1.1)
TOSHIBA Assist (Version: 4.02.02)
Toshiba Book Place (Version: 2.2.6775)
TOSHIBA Bulletin Board (Version: 1.6.08.64)
TOSHIBA Disc Creator (Version: 2.1.0.7 for x64)
TOSHIBA eco Utility (Version: 1.2.24.64)
TOSHIBA Face Recognition (Version: 3.1.9.64)
TOSHIBA Flash Cards Support Utility (Version: 1.63.0.12C)
TOSHIBA Hardware Setup (Version: 1.63.1.34C)
TOSHIBA HDD Protection (Version: 2.2.1.12)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.8)
TOSHIBA Media Controller (Version: 1.0.86.2)
TOSHIBA Media Controller Plug-in (Version: 1.0.6.1)
TOSHIBA PC Health Monitor (Version: 1.7.5.64)
TOSHIBA Quality Application (Version: 1.0.3)
TOSHIBA Recovery Media Creator (Version: 2.1.3.5109)
TOSHIBA ReelTime (Version: 1.7.17.64)
TOSHIBA Resolution+ Plug-in for Windows Media Player (Version: 1.1.0)
TOSHIBA Service Station (Version: 2.1.52)
TOSHIBA Sleep Utility (Version: 1.4.2.7)
TOSHIBA Supervisor Password (Version: 1.63.51.2C)
TOSHIBA Value Added Package (Version: 1.5.4.64)
TOSHIBA VIDEO PLAYER (Version: 4.00.6.08-A)
TOSHIBA Web Camera Application (Version: 2.0.0.19)
TOSHIBA Wireless Display Monitor (Version: 1.0.1)
TOSHIBA Wireless LAN Indicator (Version: 1.0.3)
ToshibaRegistration (Version: 1.0.4)
Trend Micro Titanium (Version: 1.0)
Trend Micro Titanium (Version: 2.20)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Utility Common Driver (Version: 1.0.52.2C)
VLC media player 1.0.1 (Version: 1.0.1)
Windows Essentials Media Codec Pack 4.0 [64-Bit] (Version: 4.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
ZTE USB Drivers (Version: 1.0.010)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 6050.69 MB
Available physical RAM: 3354.84 MB
Total Pagefile: 12099.57 MB
Available Pagefile: 9015.79 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.43 MB

========================= Partitions: =====================================

1 Drive c: (TI106151W0F) (Fixed) (Total:580.59 GB) (Free:529.16 GB) NTFS

========================= Users: ========================================

User accounts for \\BBLEYER-PC

Administrator bbleyer Guest

========================= Restore Points ==================================

27-09-2012 22:00:15 Windows Update
28-09-2012 03:01:00 Installed QuickTime
13-10-2012 02:04:23 Windows Update
02-11-2012 20:04:22 Removed Google Earth.
04-11-2012 06:56:56 Installed Java 7 Update 9

**** End of log ****


Farbar Service Scanner Version: 04-11-2012
Ran by bbleyer (administrator) on 05-11-2012 at 21:25:29
Running from "C:\Users\bbleyer\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================

#6 lordquas15

lordquas15
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 05 November 2012 - 10:54 PM

Ok, here's the rest:

# AdwCleaner v2.006 - Logfile created 11/05/2012 at 21:28:30
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : bbleyer - BBLEYER-PC
# Boot Mode : Normal
# Running from : C:\Users\bbleyer\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\BabylonToolbar
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\bbleyer\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\bbleyer\AppData\Roaming\Babylon
Folder Deleted : C:\Users\bbleyer\AppData\Roaming\Mozilla\Firefox\Profiles\c00zlelh.default\extensions\ffxtlbr@babylon.com

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\b
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Software
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Mozilla Firefox v16.0.2 (en-US)

Profile name : default
File : C:\Users\bbleyer\AppData\Roaming\Mozilla\Firefox\Profiles\c00zlelh.default\prefs.js

C:\Users\bbleyer\AppData\Roaming\Mozilla\Firefox\Profiles\c00zlelh.default\user.js ... Deleted !

Deleted : user_pref("extensions.BabylonToolbar.admin", false);
Deleted : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Deleted : user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
Deleted : user_pref("extensions.BabylonToolbar.autoRvrt", "false");
Deleted : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Deleted : user_pref("extensions.BabylonToolbar.excTlbr", false);
Deleted : user_pref("extensions.BabylonToolbar.id", "82c2d1db00000000000064d4da58e9b8");
Deleted : user_pref("extensions.BabylonToolbar.instlDay", "15646");
Deleted : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Deleted : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Deleted : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Deleted : user_pref("extensions.BabylonToolbar.tlbrId", "tb9");
Deleted : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=[...]
Deleted : user_pref("extensions.BabylonToolbar.vrsn", "1.8.3.8");
Deleted : user_pref("extensions.BabylonToolbar.vrsni", "1.8.3.8");
Deleted : user_pref("extensions.BabylonToolbar_i.babExt", "");
Deleted : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110803&tt=4412_1");
Deleted : user_pref("extensions.BabylonToolbar_i.newTab", false);
Deleted : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Deleted : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Deleted : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.3.815:14:38");
Deleted : user_pref("extensions.enabledAddons", "DivXWebPlayer@divx.com:2.0.2.039,wrc@avast.com:7.0.1474,{972c[...]

-\\ Google Chrome v [Unable to get version]

File : C:\Users\bbleyer\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [8805 octets] - [05/11/2012 21:28:30]

########## EOF - C:\AdwCleaner[S1].txt - [8865 octets] ##########


Junkware Removal Tool (JRT) by Thisisu
Version: 2.7.1 (11.05.2012)
OS: Windows 7 Home Premium x64
Ran by bbleyer on Mon 11/05/2012 at 21:42:06.69
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] "hkey_local_machine\software\wow6432node\microsoft\tracing\mybabylontb_rasapi32"
Successfully deleted: [KEY] "hkey_local_machine\software\wow6432node\microsoft\tracing\mybabylontb_rasmancs"



*** Files:

Successfully deleted: [FILE] "C:\users\default user\start menu\programs\startup\best buy pc app.lnk"



*** Folders:

Successfully deleted: [FOLDER] "C:\ProgramData\best buy pc app"
Successfully deleted: [FOLDER] "C:\Users\bbleyer\appdata\local\dealcabby"
Successfully deleted: [FOLDER] "C:\Program Files (x86)\playready"



*** FireFox detected and repaired

Successfully deleted: [dealcabby@jetpack] from C:\Users\bbleyer\AppData\Roaming\Mozilla\Firefox\Profiles\c00zlelh.default\extensions


*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Mon 11/05/2012 at 21:50:30.62
End of Report

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 05 November 2012 - 11:33 PM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#8 lordquas15

lordquas15
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 06 November 2012 - 12:49 AM

Ok, here is the rkill results:


Rkill 2.4.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/05/2012 11:30:35 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\windows\system32\ThpSrv.exe (PID: 2300) [WD-HEUR]
* C:\Windows\System32\ThpSrv.exe (PID: 3780) [WD-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 11/05/2012 11:30:55 PM
Execution time: 0 hours(s), 0 minute(s), and 20 seconds(s)



In the autoruns file there appears to be two different programs. One is autoruns which when opened brings up a window with several tabs including: winsock providers, codecs, boot execute, etc. and I cannot discern what to do with any of this. The second is autorunsc which when I run it it appears to conduct a very brief scan then disappears and I cannot find any sort of log for this.

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 06 November 2012 - 05:34 AM

In the autoruns file there appears to be two different programs. One is autoruns which when opened brings up a window with several tabs including: winsock providers, codecs, boot execute, etc. and I cannot discern what to do with any of this


Please read my instructions

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here



#10 lordquas15

lordquas15
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 06 November 2012 - 11:59 AM

Sorry for the confusion:


"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "HSON" "HotStartOn" "TOSHIBA Corporation" "c:\program files\toshiba\tbs\hson.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "IntelWireless" "Intel® PROSet/Wireless Framework" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe"
+ "IntelWirelessWiMAX" "Intel® PROSet/Wireless WiMAX Connection Utility" "Intel® Corporation" "c:\program files\intel\wimax\bin\wimaxcu.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "RtHDVBg" "HD Audio Background Process" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravbg64.exe"
+ "RtHDVCpl" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravcpl64.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "TCrdMain" "TOSHIBA Flash Cards Main Module" "TOSHIBA Corporation" "c:\program files\toshiba\flashcards\tcrdmain.exe"
+ "Teco" "TOSHIBA eco Utility" "TOSHIBA Corporation" "c:\program files\toshiba\teco\teco.exe"
+ "ThpSrv" "TOSHIBA HDD Protection Service" "TOSHIBA Corporation" "c:\windows\system32\thpsrv.exe"
+ "TosNC" "Message Center" "TOSHIBA Corporation" "c:\program files\toshiba\bulletinboard\tosnccore.exe"
+ "TosReelTimeMonitor" "Monitor of TOSHIBA ReelTime" "TOSHIBA Corporation" "c:\program files\toshiba\reeltime\tosreeltimemonitor.exe"
+ "TosSENotify" "" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba hdd ssd alert\toswaitsrv.exe"
+ "TosVolRegulator" " Toshiba Volume Regulator" "TOSHIBA Corporation" "c:\program files\toshiba\tosvolregulator\tosvolregulator.exe"
+ "TosWaitSrv" "" "TOSHIBA Corporation" "c:\program files\toshiba\tphm\toswaitsrv.exe"
+ "TPwrMain" "TOSHIBA Power Saver" "TOSHIBA Corporation" "c:\program files\toshiba\power saver\tpwrmain.exe"
+ "Trend Micro Client Framework" "Trend Micro Client Session Agent Monitor" "Trend Micro Inc." "c:\program files\trend micro\uniclient\uifrmwrk\uiwatchdog.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "avast" "avast! Antivirus" "AVAST Software" "c:\program files\avast software\avast\avastui.exe"
+ "HWSetup" "HWSetup" "TOSHIBA Electronics, Inc." "c:\program files\toshiba\utilities\hwsetup.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "KeNotify" "KeNotify MFC Application" "TOSHIBA CORPORATION" "c:\program files (x86)\toshiba\utilities\kenotify.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "SVPWUTIL" "SVPWUTIL Application" "TOSHIBA CORPORATION" "c:\program files (x86)\toshiba\utilities\svpwutil.exe"
+ "ToshibaServiceStation" "TOSHIBA Service Station" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba service station\toshibaservicestation.exe"
+ "TSleepSrv" "TOSHIBA Sleep Service" "TOSHIBA" "c:\program files (x86)\toshiba\toshiba sleep utility\tsleepsrv.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Google Update" "Google Installer" "Google Inc." "c:\users\bbleyer\appdata\local\google\update\googleupdate.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "Spotify Web Helper" "SpotifyWebHelper" "Spotify Ltd" "c:\users\bbleyer\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\googletoolbarnotifier.exe"
+ "uTorrent" "" "" "File not found: C:\Program Files (x86)\uTorrent\uTorrent.exe"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashsha64.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie64.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.7.7725.1624\swg64.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
+ "DealCabby" "" "" "File not found: C:\Users\bbleyer\AppData\Local\dealcabby\ie\dealcabby_20121016124501.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\5.7.7725.1624\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "TOSHIBA Media Controller Plug-in" "TOSHIBA Media Controller Plug-in " "<TOSHIBA>" "c:\program files (x86)\toshiba\toshiba media controller plug-in\toshibamediacontrollerie.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie64.dll"
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\avast! Emergency Update" "avast! Emergency Update" "AVAST Software" "c:\program files\avast software\avast\avastemupdate.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3481022763-886660274-1862456898-1000Core" "Google Installer" "Google Inc." "c:\users\bbleyer\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3481022763-886660274-1862456898-1000UA" "Google Installer" "Google Inc." "c:\users\bbleyer\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Norton Security Scan for bbleyer" "Norton Security Scan" "Symantec Corporation" "c:\program files (x86)\norton security scan\engine\3.7.2.5\nss.exe"
+ "\TOSHIBA Wireless Display Monitor" "Wireless Display Monitor" "TOSHIBA CORPORATION" "c:\program files (x86)\toshiba\widimon\widimon.exe"
+ "\Windows Codec Update Service" "WECP Auto Update Service" "MediaCodec.Org" "c:\program files (x86)\essentials codec pack\wecpupdate.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "Amsp" "Manages Trend Micro security modules" "Trend Micro Inc." "c:\program files\trend micro\amsp\coreserviceshell.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "avast! Antivirus" "Manages and implements avast! antivirus services for this computer. This includes the resident protection, the virus chest and the scheduler." "AVAST Software" "c:\program files\avast software\avast\avastsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "cvhsvc" "Client Virtualization Handler Service (unlocalized description)" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "DMAgent" "Red Bend Device Management Service for Intel® PROSet/Wireless WiMAX Software." "Red Bend Ltd." "c:\program files\intel\wimax\bin\dmagent.exe"
+ "EvtEng" "Manages the event trace messages for all the Intel® PROSet/Wireless Software components." "Intel® Corporation" "c:\program files\intel\wifi\bin\evteng.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MyWiFiDHCPDNS" "Wireless PAN DHCP and DNS Server" "" "c:\program files\intel\wifi\bin\pandhcpdns.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "RegSrvc" "Provides registry access to all Intel® PROSet/Wireless Software components" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"
+ "sftlist" "Streams and manages applications." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"
+ "sftvsa" "Monitors global service events and launches virtual services." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Thpsrv" "TOSHIBA HDD Protection Service" "TOSHIBA Corporation" "c:\windows\system32\thpsrv.exe"
+ "TMachInfo" "TOSHIBA Machine Information Service" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba service station\tmachinfo.exe"
+ "TODDSrv" "TDCSrv Application" "TOSHIBA Corporation" "c:\windows\system32\toddsrv.exe"
+ "TosCoSrv" "TOSHIBA Power Saver manages power saving settings supported by TOSHIBA. These settings will not work if the service has stopped." "TOSHIBA Corporation" "c:\program files\toshiba\power saver\toscosrv.exe"
+ "TOSHIBA eco Utility Service" "TOSHIBA eco Utility Service" "TOSHIBA Corporation" "c:\program files\toshiba\teco\tecoservice.exe"
+ "TOSHIBA HDD SSD Alert Service" "TOSHIBA HDD SSD Alert" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba hdd ssd alert\tossmartsrv.exe"
+ "TPCHSrv" "TOSHIBA PC Health Monitor" "TOSHIBA Corporation" "c:\program files\toshiba\tphm\tpchsrv.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "WiMAXAppSrv" "WiMAX SDK Service for Intel® PROSet/Wireless WiMAX Software" "Intel® Corporation" "c:\program files\intel\wimax\bin\appsrv.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "aswFsBlk" "avast! mini-filter driver (aswFsBlk)" "AVAST Software" "c:\windows\system32\drivers\aswfsblk.sys"
+ "aswMonFlt" "avast! mini-filter driver (aswMonFlt)" "AVAST Software" "c:\windows\system32\drivers\aswmonflt.sys"
+ "aswRdr" "avast! WFP Redirect driver" "AVAST Software" "c:\windows\system32\drivers\aswrdr2.sys"
+ "aswSnx" "avast! virtualization driver (aswSnx)" "AVAST Software" "c:\windows\system32\drivers\aswsnx.sys"
+ "aswSP" "avast! Self Protection" "AVAST Software" "c:\windows\system32\drivers\aswsp.sys"
+ "aswTdi" "avast! Network Shield TDI driver" "AVAST Software" "c:\windows\system32\drivers\aswtdi.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "bpenum" "Intel® WiMax Link 5050 Series Enumerator" "Intel Corporation" "c:\windows\system32\drivers\bpenum.sys"
+ "bpmp" "Intel® WiMax Link 5050 Series Driver" "Intel Corporation" "c:\windows\system32\drivers\bpmp.sys"
+ "bpusb" "Intel® WiMax Link 5050 Series Function Driver" "Intel Corporation" "c:\windows\system32\drivers\bpusb.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "CeKbFilter" "Toshiba Flash Cards Support Driver" "Compal Electronics, INC." "c:\windows\system32\drivers\cekbfilter.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "JMCR" "JMicron PCIe Flash Media Controller Driver" "JMicron Technology Corporation" "c:\windows\system32\drivers\jmcr.sys"
+ "LPCFilter" "LPCFilter" "COMPAL ELECTRONIC INC." "c:\windows\system32\drivers\lpcfilter.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "massfilter" "CDROM Filter" "MBB Incorporated" "c:\windows\system32\drivers\massfilter.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "NETwNs64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwns64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PGEffect" "TOSHIBA Universal Camera Filter Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\pgeffect.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "tdcmdpst" "TOSHIBA ODD Writing Driver for x64." "TOSHIBA Corporation." "c:\windows\system32\drivers\tdcmdpst.sys"
+ "Thpdrv" "TOSHIBA HDD Protection Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\thpdrv.sys"
+ "Thpevm" "TOSHIBA HDD Protection - Shock Sensor Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\thpevm.sys"
+ "tmactmon" "Trend Micro Activity Monitor Driver" "Trend Micro Inc." "c:\windows\system32\drivers\tmactmon.sys"
+ "tmcomm" "Trend Micro Common Engine Driver" "Trend Micro Inc." "c:\windows\system32\drivers\tmcomm.sys"
+ "tmevtmgr" "Trend Micro Event Manager Driver" "Trend Micro Inc." "c:\windows\system32\drivers\tmevtmgr.sys"
+ "tmtdi" "Trend Micro TDI Driver (amd64-fre)" "Trend Micro Inc." "c:\windows\system32\drivers\tmtdi.sys"
+ "tos_sps64" "tos_sps64" "TOSHIBA Corporation" "c:\windows\system32\drivers\tos_sps64.sys"
+ "TVALZ" "TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\tvalz_o.sys"
+ "TVALZFL" "TOSHIBA TVALZ Filter Driver for x64" "TOSHIBA Corporation" "c:\windows\system32\drivers\tvalzfl.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "wdkmd" "Intel Wireless Display Solution" "Intel Corporation" "c:\windows\system32\drivers\wdkmd.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "VIDC.FFDS" "" "" "File not found: ff_vfw.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files\playready\prdmowrapper.dll"
+ "SFVCaptureFilter" "SmartFaceVCapt" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevcapt.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DS Video Buffer Filter" "WiDiAgent.dll COM object." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\dsbuffer_video.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\essentials codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\essentials codec pack\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\essentials codec pack\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\essentials codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\essentials codec pack\ffdshow\ffdshow.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\essentials codec pack\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\essentials codec pack\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\essentials codec pack\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\essentials codec pack\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\essentials codec pack\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\essentials codec pack\haali\splitter.ax"
+ "Image Effects" "TimeStam Dynamic Link Library" "TOSHIBA CORPORATION." "c:\program files (x86)\toshiba\toshiba web camera application\pgtimefilter.dll"
+ "Intel® Media SDK AAC Encoder" "Intel® Media SDK AAC Encoder" "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\imc_aac_enc_ds.dll"
+ "Intel® Media SDK MPEG-2 Muxer" "Intel® Media SDK MPEG-2 Muxer" "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\imc_mp2_mux_ds.dll"
+ "Intel® Mux Renderer" "Intel® TS Mux / Network Renderer" "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\intelmux.dll"
+ "Intel® Network Filter" "" "" "c:\program files (x86)\common files\intel corporation\widiagent\intelnet.dll"
+ "Intel®WiDi H264 encoder" "" "" "c:\program files (x86)\common files\intel corporation\widiagent\h264_enc_filter.dll"
+ "MainConcept AAC Encoder" "AAC audio encoder filter" "MainConcept GmbH" "c:\program files (x86)\common files\intel corporation\mainconcept filters\mc_enc_aac_ds.ax"
+ "MainConcept MPEG Multiplexer-Plus" "MPEG Multiplexer-Plus DS Filter" "MainConcept GmbH" "c:\program files (x86)\common files\intel corporation\mainconcept filters\mcmpeg2mux.ax"
+ "MainConcept Network Renderer" "Network Renderer" "MainConcept GmbH" "c:\program files (x86)\common files\intel corporation\mainconcept filters\mc_net_renderer_ds.ax"
+ "MPEG Video Decoder (Gabest)" "MPEG-1/2 Decoder Filter for DirectShow" "Gabest" "c:\program files (x86)\essentials codec pack\mpeg2decfilter.ax"
+ "MS PR Source Filter" "" "" "File not found: C:\PROGRA~2\PLAYRE~1\PRSource.dll"
+ "PlayReady DMO Wrapper" "" "" "File not found: C:\PROGRA~2\PLAYRE~1\PRDMOW~1.DLL"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\realmediasplitter.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "TOSHIBA AAC Decoder" "TOSHIBA AAC Audio Decoder" "TOSHIBA Corporation" "c:\program files (x86)\common files\toshiba shared\tosrawaacdecoder.ax"
+ "TOSHIBA Audio Back Switcher" "" "" "c:\program files (x86)\toshiba\toshiba video player\tosaudiobackswitcher.ax"
+ "TOSHIBA Audio Decoder DVD" "TOSHIBA Audio Decoder DVD" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba video player\tosauddecl.ax"
+ "TOSHIBA Audio Front Switcher" "" "" "c:\program files (x86)\toshiba\toshiba video player\tosaudiofrontswitcher.ax"
+ "TOSHIBA Audio Rate Converter" "TOSHIBA Audio Rate Converter" "TOSHIBA Corporation" "c:\program files (x86)\common files\toshiba shared\tosarc.ax"
+ "TOSHIBA DualMono" "TOSHIBA DualMono" "TOSHIBA Corporation" "c:\program files (x86)\common files\toshiba shared\tosdualmono.ax"
+ "TOSHIBA DVD Navigator" "TOSHIBA DVD Navigator" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba video player\tdvdnavi.ax"
+ "TOSHIBA DVD VR Navigator" "TOSHIBA DVD Player" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba video player\tvrnavi.ax"
+ "TOSHIBA MP4 Navigator" "" "" "c:\program files (x86)\common files\toshiba shared\mp4navifilter.ax"
+ "TOSHIBA MP4-SD Navigator" "" "" "c:\program files (x86)\common files\toshiba shared\mp4navifilter.ax"
+ "TOSHIBA Progress Monitor" "TOSHIBA Progress Monitor" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba disc creator\tprogmon.ax"
+ "TOSHIBA WAV Converter" "TOSHIBA Wav Converter" "TOSHIBA Corporation" "c:\program files (x86)\toshiba\toshiba disc creator\twavconv.ax"
+ "WD Audio Filter" "WiDi Audio Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdaudiofilter.dll"
+ "WDSource Filter" "WiDi Video Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdsourcefilter.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "SmartFaceVCP" "SmartFaceVCP" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevcp.dll"
+ "tosWirelessLANIndicatorCP" "Credential Provider Dll for TOSHIBA Wireless LAN Indicator" "TOSHIBA CORPORATION" "c:\windows\system32\toswirelesslanindicatorcp.dll"
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"C:\Users\bbleyer\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Avast! antivirus monitor" "Avast! antivirus sidebar gadget." "AVAST Software" "C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget\Gadget.xml"

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 06 November 2012 - 12:54 PM

Current issues?

#12 lordquas15

lordquas15
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:12:57 PM

Posted 06 November 2012 - 02:48 PM

Everything seems to be running much smoother. Thank you much!

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:57 PM

Posted 06 November 2012 - 11:21 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users