Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

FBI Virus


  • Please log in to reply
18 replies to this topic

#1 macobi

macobi

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 15 November 2012 - 08:32 PM

I have a FBI virus on my computer in Internet Explorer that I need removed. The virus infected my webcam, & took a picture of me. Now my pc is locked up, I can start in Safe mode. I run Windows 7 Operating System. Please help me remove it.

BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:34 AM

Posted 15 November 2012 - 08:41 PM

Boot into safe mode with networking.

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe



Right Click it Run as Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results

Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/

Post the log here,


Update do a quick scan with Superantispyware remove all this finds reboot.
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE
post the log here.


Run a scan with Eset.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.




Please download MINITOOLBOX and run it.
http://download.bleepingcomputer.com/farbar/MiniToolBox.exe

Checkmark following boxes:


Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.



Download Adware Cleaner run it as admin Click the delete button allow it to run and post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 15 November 2012 - 09:15 PM

Remove the FBI MoneyPak Ransomware or the Reveton Trojan
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 macobi

macobi
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 15 November 2012 - 11:01 PM

tdss killer results:

20:01:34.0576 2748 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:01:35.0232 2748 ============================================================
20:01:35.0232 2748 Current date / time: 2012/11/15 20:01:35.0232
20:01:35.0232 2748 SystemInfo:
20:01:35.0232 2748
20:01:35.0232 2748 OS Version: 6.1.7601 ServicePack: 1.0
20:01:35.0232 2748 Product type: Workstation
20:01:35.0232 2748 ComputerName: RAMI
20:01:35.0232 2748 UserName: Tina
20:01:35.0232 2748 Windows directory: C:\Windows
20:01:35.0232 2748 System windows directory: C:\Windows
20:01:35.0232 2748 Running under WOW64
20:01:35.0232 2748 Processor architecture: Intel x64
20:01:35.0232 2748 Number of processors: 4
20:01:35.0232 2748 Page size: 0x1000
20:01:35.0232 2748 Boot type: Safe boot with network
20:01:35.0232 2748 ============================================================
20:01:35.0715 2748 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:01:35.0731 2748 ============================================================
20:01:35.0731 2748 \Device\Harddisk0\DR0:
20:01:35.0731 2748 MBR partitions:
20:01:35.0731 2748 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
20:01:35.0731 2748 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
20:01:35.0731 2748 ============================================================
20:01:35.0762 2748 C: <-> \Device\Harddisk0\DR0\Partition2
20:01:35.0762 2748 ============================================================
20:01:35.0762 2748 Initialize success
20:01:35.0762 2748 ============================================================
20:01:46.0604 2204 ============================================================
20:01:46.0604 2204 Scan started
20:01:46.0604 2204 Mode: Manual; TDLFS;
20:01:46.0604 2204 ============================================================
20:01:47.0088 2204 ================ Scan system memory ========================
20:01:47.0088 2204 System memory - ok
20:01:47.0088 2204 ================ Scan services =============================
20:01:47.0306 2204 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:01:47.0306 2204 1394ohci - ok
20:01:47.0353 2204 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:01:47.0353 2204 ACPI - ok
20:01:47.0400 2204 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:01:47.0400 2204 AcpiPmi - ok
20:01:47.0571 2204 [ C004F38974F4D321B4C20A240E1175C0 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
20:01:47.0571 2204 AdobeActiveFileMonitor9.0 - ok
20:01:47.0665 2204 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:01:47.0665 2204 AdobeFlashPlayerUpdateSvc - ok
20:01:47.0727 2204 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:01:47.0727 2204 adp94xx - ok
20:01:47.0774 2204 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:01:47.0774 2204 adpahci - ok
20:01:47.0790 2204 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:01:47.0790 2204 adpu320 - ok
20:01:47.0821 2204 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:01:47.0821 2204 AeLookupSvc - ok
20:01:47.0930 2204 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
20:01:47.0930 2204 AESTFilters - ok
20:01:47.0992 2204 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:01:48.0008 2204 AFD - ok
20:01:48.0039 2204 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:01:48.0039 2204 agp440 - ok
20:01:48.0086 2204 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:01:48.0086 2204 ALG - ok
20:01:48.0117 2204 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:01:48.0117 2204 aliide - ok
20:01:48.0133 2204 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:01:48.0133 2204 amdide - ok
20:01:48.0180 2204 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:01:48.0195 2204 AmdK8 - ok
20:01:48.0195 2204 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:01:48.0211 2204 AmdPPM - ok
20:01:48.0258 2204 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:01:48.0273 2204 amdsata - ok
20:01:48.0304 2204 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:01:48.0304 2204 amdsbs - ok
20:01:48.0320 2204 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:01:48.0320 2204 amdxata - ok
20:01:48.0398 2204 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:01:48.0398 2204 AppID - ok
20:01:48.0429 2204 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:01:48.0429 2204 AppIDSvc - ok
20:01:48.0460 2204 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:01:48.0476 2204 Appinfo - ok
20:01:48.0523 2204 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:01:48.0523 2204 arc - ok
20:01:48.0538 2204 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:01:48.0538 2204 arcsas - ok
20:01:48.0570 2204 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:01:48.0585 2204 AsyncMac - ok
20:01:48.0616 2204 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:01:48.0616 2204 atapi - ok
20:01:48.0679 2204 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:01:48.0710 2204 AudioEndpointBuilder - ok
20:01:48.0741 2204 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:01:48.0757 2204 AudioSrv - ok
20:01:48.0819 2204 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:01:48.0819 2204 AxInstSV - ok
20:01:48.0850 2204 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:01:48.0866 2204 b06bdrv - ok
20:01:48.0897 2204 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:01:48.0897 2204 b57nd60a - ok
20:01:49.0022 2204 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
20:01:49.0022 2204 BBSvc - ok
20:01:49.0084 2204 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
20:01:49.0084 2204 BBUpdate - ok
20:01:49.0100 2204 [ AC4E2D84DE54CD3A013AEFF0CC56095C ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
20:01:49.0100 2204 BCM42RLY - ok
20:01:49.0178 2204 [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
20:01:49.0194 2204 BCM43XX - ok
20:01:49.0240 2204 [ D224B2E6BB543F1D8F1177D57FEC2950 ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
20:01:49.0240 2204 BcmVWL - ok
20:01:49.0272 2204 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:01:49.0272 2204 BDESVC - ok
20:01:49.0318 2204 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:01:49.0318 2204 Beep - ok
20:01:49.0396 2204 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:01:49.0396 2204 BFE - ok
20:01:49.0428 2204 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:01:49.0459 2204 BITS - ok
20:01:49.0490 2204 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:01:49.0490 2204 blbdrive - ok
20:01:49.0521 2204 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:01:49.0521 2204 bowser - ok
20:01:49.0568 2204 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:01:49.0568 2204 BrFiltLo - ok
20:01:49.0584 2204 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:01:49.0584 2204 BrFiltUp - ok
20:01:49.0646 2204 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:01:49.0646 2204 Browser - ok
20:01:49.0677 2204 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:01:49.0677 2204 Brserid - ok
20:01:49.0708 2204 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:01:49.0708 2204 BrSerWdm - ok
20:01:49.0724 2204 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:01:49.0724 2204 BrUsbMdm - ok
20:01:49.0771 2204 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:01:49.0786 2204 BrUsbSer - ok
20:01:49.0802 2204 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:01:49.0802 2204 BTHMODEM - ok
20:01:49.0833 2204 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:01:49.0849 2204 bthserv - ok
20:01:49.0864 2204 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:01:49.0880 2204 cdfs - ok
20:01:49.0927 2204 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:01:49.0927 2204 cdrom - ok
20:01:49.0974 2204 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:01:49.0989 2204 CertPropSvc - ok
20:01:50.0036 2204 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\Windows\system32\drivers\cfwids.sys
20:01:50.0036 2204 cfwids - ok
20:01:50.0067 2204 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:01:50.0067 2204 circlass - ok
20:01:50.0098 2204 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:01:50.0114 2204 CLFS - ok
20:01:50.0192 2204 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:01:50.0192 2204 clr_optimization_v2.0.50727_32 - ok
20:01:50.0254 2204 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:01:50.0270 2204 clr_optimization_v2.0.50727_64 - ok
20:01:50.0395 2204 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:01:50.0410 2204 clr_optimization_v4.0.30319_32 - ok
20:01:50.0442 2204 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:01:50.0457 2204 clr_optimization_v4.0.30319_64 - ok
20:01:50.0504 2204 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:01:50.0504 2204 CmBatt - ok
20:01:50.0535 2204 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:01:50.0535 2204 cmdide - ok
20:01:50.0582 2204 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:01:50.0598 2204 CNG - ok
20:01:50.0644 2204 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:01:50.0644 2204 Compbatt - ok
20:01:50.0676 2204 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:01:50.0676 2204 CompositeBus - ok
20:01:50.0707 2204 COMSysApp - ok
20:01:50.0707 2204 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:01:50.0722 2204 crcdisk - ok
20:01:50.0754 2204 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:01:50.0769 2204 CryptSvc - ok
20:01:50.0832 2204 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:01:50.0832 2204 CtClsFlt - ok
20:01:50.0878 2204 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:01:50.0894 2204 DcomLaunch - ok
20:01:50.0925 2204 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:01:50.0941 2204 defragsvc - ok
20:01:50.0972 2204 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:01:50.0972 2204 DfsC - ok
20:01:51.0034 2204 [ 6060106CE00F32F63F1A73160E46E9D2 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
20:01:51.0034 2204 dg_ssudbus - ok
20:01:51.0097 2204 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:01:51.0097 2204 Dhcp - ok
20:01:51.0128 2204 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:01:51.0128 2204 discache - ok
20:01:51.0175 2204 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:01:51.0175 2204 Disk - ok
20:01:51.0253 2204 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:01:51.0253 2204 Dnscache - ok
20:01:51.0300 2204 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
20:01:51.0300 2204 DockLoginService - ok
20:01:51.0346 2204 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:01:51.0346 2204 dot3svc - ok
20:01:51.0393 2204 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:01:51.0393 2204 DPS - ok
20:01:51.0440 2204 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:01:51.0440 2204 drmkaud - ok
20:01:51.0487 2204 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:01:51.0487 2204 DXGKrnl - ok
20:01:51.0534 2204 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:01:51.0534 2204 EapHost - ok
20:01:51.0612 2204 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:01:51.0690 2204 ebdrv - ok
20:01:51.0721 2204 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:01:51.0721 2204 EFS - ok
20:01:51.0783 2204 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:01:51.0799 2204 ehRecvr - ok
20:01:51.0814 2204 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:01:51.0814 2204 ehSched - ok
20:01:51.0877 2204 [ D38A883309E04B9FBFFE1ACA60EA3BBF ] ElRawDisk C:\Windows\system32\drivers\ElRawDsk.sys
20:01:51.0877 2204 ElRawDisk - ok
20:01:51.0924 2204 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:01:51.0924 2204 elxstor - ok
20:01:51.0955 2204 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:01:51.0955 2204 ErrDev - ok
20:01:51.0986 2204 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:01:51.0986 2204 EventSystem - ok
20:01:52.0017 2204 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:01:52.0017 2204 exfat - ok
20:01:52.0064 2204 [ 2C1D443E14F376E8331F52F135DCA9EF ] FACAP C:\Windows\system32\DRIVERS\facap.sys
20:01:52.0064 2204 FACAP - ok
20:01:52.0173 2204 [ 2B85D60E470ACF871E4EF0DB02E26861 ] FAService C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
20:01:52.0236 2204 FAService - ok
20:01:52.0267 2204 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:01:52.0267 2204 fastfat - ok
20:01:52.0329 2204 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:01:52.0345 2204 Fax - ok
20:01:52.0392 2204 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:01:52.0392 2204 fdc - ok
20:01:52.0423 2204 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:01:52.0423 2204 fdPHost - ok
20:01:52.0438 2204 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:01:52.0438 2204 FDResPub - ok
20:01:52.0454 2204 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:01:52.0454 2204 FileInfo - ok
20:01:52.0470 2204 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:01:52.0470 2204 Filetrace - ok
20:01:52.0485 2204 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:01:52.0501 2204 flpydisk - ok
20:01:52.0516 2204 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:01:52.0532 2204 FltMgr - ok
20:01:52.0579 2204 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:01:52.0610 2204 FontCache - ok
20:01:52.0688 2204 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:01:52.0688 2204 FontCache3.0.0.0 - ok
20:01:52.0719 2204 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:01:52.0719 2204 FsDepends - ok
20:01:52.0750 2204 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:01:52.0750 2204 Fs_Rec - ok
20:01:52.0797 2204 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:01:52.0797 2204 fvevol - ok
20:01:52.0828 2204 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:01:52.0828 2204 gagp30kx - ok
20:01:52.0906 2204 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
20:01:52.0906 2204 GameConsoleService - ok
20:01:52.0953 2204 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
20:01:52.0953 2204 GoToAssist - ok
20:01:53.0016 2204 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:01:53.0031 2204 gpsvc - ok
20:01:53.0156 2204 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:01:53.0156 2204 gupdate - ok
20:01:53.0187 2204 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:01:53.0187 2204 gupdatem - ok
20:01:53.0234 2204 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:01:53.0234 2204 gusvc - ok
20:01:53.0281 2204 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:01:53.0281 2204 hcw85cir - ok
20:01:53.0328 2204 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:01:53.0343 2204 HdAudAddService - ok
20:01:53.0359 2204 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:01:53.0359 2204 HDAudBus - ok
20:01:53.0390 2204 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:01:53.0390 2204 HECIx64 - ok
20:01:53.0421 2204 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:01:53.0421 2204 HidBatt - ok
20:01:53.0437 2204 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:01:53.0437 2204 HidBth - ok
20:01:53.0452 2204 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:01:53.0468 2204 HidIr - ok
20:01:53.0484 2204 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:01:53.0484 2204 hidserv - ok
20:01:53.0530 2204 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:01:53.0530 2204 HidUsb - ok
20:01:53.0577 2204 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:01:53.0577 2204 hkmsvc - ok
20:01:53.0624 2204 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:01:53.0624 2204 HomeGroupListener - ok
20:01:53.0671 2204 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:01:53.0686 2204 HomeGroupProvider - ok
20:01:53.0718 2204 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:01:53.0718 2204 HpSAMD - ok
20:01:53.0780 2204 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:01:53.0780 2204 HTTP - ok
20:01:53.0827 2204 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:01:53.0827 2204 hwpolicy - ok
20:01:53.0874 2204 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:01:53.0874 2204 i8042prt - ok
20:01:53.0936 2204 [ 2064090C9FAAD92C090D77E50E735B2E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:01:53.0936 2204 iaStor - ok
20:01:54.0014 2204 [ A9BE186ABF28B3D3D698CB855EDF457E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:01:54.0014 2204 IAStorDataMgrSvc - ok
20:01:54.0045 2204 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:01:54.0061 2204 iaStorV - ok
20:01:54.0123 2204 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:01:54.0170 2204 idsvc - ok
20:01:54.0373 2204 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:01:54.0560 2204 igfx - ok
20:01:54.0622 2204 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:01:54.0622 2204 iirsp - ok
20:01:54.0685 2204 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:01:54.0716 2204 IKEEXT - ok
20:01:54.0747 2204 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
20:01:54.0747 2204 Impcd - ok
20:01:54.0794 2204 [ C6C1F19205DA83C801BE7C25F4E2EE07 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
20:01:54.0810 2204 IntcDAud - ok
20:01:54.0825 2204 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:01:54.0825 2204 intelide - ok
20:01:54.0872 2204 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:01:54.0872 2204 intelppm - ok
20:01:54.0966 2204 [ 4CAC1AFB2A00F7751AE3810CF222CA4D ] ioloFileInfoList C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
20:01:54.0966 2204 ioloFileInfoList - ok
20:01:54.0997 2204 [ 4CAC1AFB2A00F7751AE3810CF222CA4D ] ioloSystemService C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
20:01:54.0997 2204 ioloSystemService - ok
20:01:55.0028 2204 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:01:55.0028 2204 IPBusEnum - ok
20:01:55.0075 2204 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:01:55.0075 2204 IpFilterDriver - ok
20:01:55.0090 2204 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:01:55.0106 2204 iphlpsvc - ok
20:01:55.0137 2204 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:01:55.0137 2204 IPMIDRV - ok
20:01:55.0184 2204 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:01:55.0184 2204 IPNAT - ok
20:01:55.0215 2204 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:01:55.0215 2204 IRENUM - ok
20:01:55.0231 2204 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:01:55.0231 2204 isapnp - ok
20:01:55.0246 2204 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:01:55.0262 2204 iScsiPrt - ok
20:01:55.0309 2204 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:01:55.0309 2204 kbdclass - ok
20:01:55.0356 2204 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:01:55.0356 2204 kbdhid - ok
20:01:55.0371 2204 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:01:55.0371 2204 KeyIso - ok
20:01:55.0402 2204 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:01:55.0402 2204 KSecDD - ok
20:01:55.0418 2204 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:01:55.0434 2204 KSecPkg - ok
20:01:55.0465 2204 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:01:55.0465 2204 ksthunk - ok
20:01:55.0496 2204 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:01:55.0512 2204 KtmRm - ok
20:01:55.0574 2204 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:01:55.0574 2204 LanmanServer - ok
20:01:55.0621 2204 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:01:55.0636 2204 LanmanWorkstation - ok
20:01:55.0699 2204 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:01:55.0699 2204 lltdio - ok
20:01:55.0761 2204 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:01:55.0761 2204 lltdsvc - ok
20:01:55.0777 2204 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:01:55.0777 2204 lmhosts - ok
20:01:55.0839 2204 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:01:55.0839 2204 LMS - ok
20:01:55.0855 2204 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:01:55.0855 2204 LSI_FC - ok
20:01:55.0902 2204 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:01:55.0902 2204 LSI_SAS - ok
20:01:55.0917 2204 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:01:55.0917 2204 LSI_SAS2 - ok
20:01:55.0933 2204 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:01:55.0933 2204 LSI_SCSI - ok
20:01:55.0948 2204 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:01:55.0948 2204 luafv - ok
20:01:56.0026 2204 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:01:56.0026 2204 MBAMScheduler - ok
20:01:56.0104 2204 [ ACB01BF1A905356AB7F978C7FE852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:01:56.0104 2204 McAfee SiteAdvisor Service - ok
20:01:56.0214 2204 [ B6BD99C3E23507A732C474CAA620C0D7 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
20:01:56.0214 2204 McAWFwk - ok
20:01:56.0229 2204 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:01:56.0229 2204 McMPFSvc - ok
20:01:56.0229 2204 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:01:56.0229 2204 mcmscsvc - ok
20:01:56.0245 2204 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:01:56.0245 2204 McNaiAnn - ok
20:01:56.0292 2204 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:01:56.0292 2204 McNASvc - ok
20:01:56.0354 2204 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
20:01:56.0370 2204 McODS - ok
20:01:56.0370 2204 [ ACB01BF1A905356AB7F978C7FE852209 ] McOobeSv C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:01:56.0370 2204 McOobeSv - ok
20:01:56.0401 2204 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:01:56.0401 2204 McProxy - ok
20:01:56.0463 2204 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
20:01:56.0463 2204 McShield - ok
20:01:56.0526 2204 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:01:56.0526 2204 Mcx2Svc - ok
20:01:56.0557 2204 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:01:56.0557 2204 megasas - ok
20:01:56.0572 2204 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:01:56.0572 2204 MegaSR - ok
20:01:56.0635 2204 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
20:01:56.0635 2204 mfeapfk - ok
20:01:56.0650 2204 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
20:01:56.0650 2204 mfeavfk - ok
20:01:56.0713 2204 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
20:01:56.0713 2204 mfefire - ok
20:01:56.0744 2204 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
20:01:56.0744 2204 mfefirek - ok
20:01:56.0853 2204 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
20:01:56.0869 2204 mfehidk - ok
20:01:56.0916 2204 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
20:01:56.0916 2204 mfenlfk - ok
20:01:56.0978 2204 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
20:01:56.0978 2204 mferkdet - ok
20:01:57.0025 2204 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
20:01:57.0025 2204 mfevtp - ok
20:01:57.0087 2204 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
20:01:57.0087 2204 mfewfpk - ok
20:01:57.0118 2204 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:01:57.0118 2204 MMCSS - ok
20:01:57.0134 2204 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:01:57.0134 2204 Modem - ok
20:01:57.0165 2204 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:01:57.0165 2204 monitor - ok
20:01:57.0228 2204 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:01:57.0228 2204 mouclass - ok
20:01:57.0243 2204 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:01:57.0243 2204 mouhid - ok
20:01:57.0290 2204 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:01:57.0290 2204 mountmgr - ok
20:01:57.0337 2204 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:01:57.0337 2204 mpio - ok
20:01:57.0368 2204 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:01:57.0368 2204 mpsdrv - ok
20:01:57.0430 2204 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:01:57.0462 2204 MpsSvc - ok
20:01:57.0493 2204 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:01:57.0493 2204 MRxDAV - ok
20:01:57.0540 2204 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:01:57.0540 2204 mrxsmb - ok
20:01:57.0571 2204 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:01:57.0571 2204 mrxsmb10 - ok
20:01:57.0586 2204 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:01:57.0602 2204 mrxsmb20 - ok
20:01:57.0618 2204 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:01:57.0618 2204 msahci - ok
20:01:57.0649 2204 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:01:57.0664 2204 msdsm - ok
20:01:57.0680 2204 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:01:57.0680 2204 MSDTC - ok
20:01:57.0711 2204 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:01:57.0711 2204 Msfs - ok
20:01:57.0758 2204 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:01:57.0758 2204 mshidkmdf - ok
20:01:57.0774 2204 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:01:57.0774 2204 msisadrv - ok
20:01:57.0805 2204 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:01:57.0805 2204 MSiSCSI - ok
20:01:57.0820 2204 msiserver - ok
20:01:57.0852 2204 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:01:57.0867 2204 MSKSSRV - ok
20:01:57.0883 2204 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:01:57.0883 2204 MSPCLOCK - ok
20:01:57.0898 2204 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:01:57.0898 2204 MSPQM - ok
20:01:57.0930 2204 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:01:57.0945 2204 MsRPC - ok
20:01:57.0992 2204 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:01:57.0992 2204 mssmbios - ok
20:01:58.0008 2204 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:01:58.0008 2204 MSTEE - ok
20:01:58.0008 2204 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:01:58.0008 2204 MTConfig - ok
20:01:58.0039 2204 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:01:58.0039 2204 Mup - ok
20:01:58.0086 2204 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:01:58.0086 2204 napagent - ok
20:01:58.0117 2204 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:01:58.0132 2204 NativeWifiP - ok
20:01:58.0195 2204 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:01:58.0210 2204 NDIS - ok
20:01:58.0242 2204 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:01:58.0242 2204 NdisCap - ok
20:01:58.0273 2204 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:01:58.0273 2204 NdisTapi - ok
20:01:58.0304 2204 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:01:58.0304 2204 Ndisuio - ok
20:01:58.0351 2204 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:01:58.0351 2204 NdisWan - ok
20:01:58.0382 2204 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:01:58.0382 2204 NDProxy - ok
20:01:58.0429 2204 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:01:58.0429 2204 NetBIOS - ok
20:01:58.0460 2204 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:01:58.0460 2204 NetBT - ok
20:01:58.0491 2204 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:01:58.0491 2204 Netlogon - ok
20:01:58.0554 2204 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:01:58.0554 2204 Netman - ok
20:01:58.0569 2204 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:01:58.0600 2204 netprofm - ok
20:01:58.0632 2204 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:01:58.0632 2204 NetTcpPortSharing - ok
20:01:58.0663 2204 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:01:58.0663 2204 nfrd960 - ok
20:01:58.0710 2204 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:01:58.0725 2204 NlaSvc - ok
20:01:58.0725 2204 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:01:58.0725 2204 Npfs - ok
20:01:58.0756 2204 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:01:58.0756 2204 nsi - ok
20:01:58.0756 2204 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:01:58.0772 2204 nsiproxy - ok
20:01:58.0819 2204 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:01:58.0850 2204 Ntfs - ok
20:01:58.0866 2204 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:01:58.0866 2204 Null - ok
20:01:58.0928 2204 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:01:58.0928 2204 nvraid - ok
20:01:58.0944 2204 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:01:58.0959 2204 nvstor - ok
20:01:58.0990 2204 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:01:58.0990 2204 nv_agp - ok
20:01:59.0022 2204 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:01:59.0022 2204 ohci1394 - ok
20:01:59.0100 2204 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:01:59.0100 2204 ose - ok
20:01:59.0287 2204 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:01:59.0380 2204 osppsvc - ok
20:01:59.0396 2204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:01:59.0412 2204 p2pimsvc - ok
20:01:59.0443 2204 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:01:59.0443 2204 p2psvc - ok
20:01:59.0474 2204 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:01:59.0474 2204 Parport - ok
20:01:59.0521 2204 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:01:59.0521 2204 partmgr - ok
20:01:59.0536 2204 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:01:59.0536 2204 PcaSvc - ok
20:01:59.0552 2204 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:01:59.0568 2204 pci - ok
20:01:59.0630 2204 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:01:59.0646 2204 pciide - ok
20:01:59.0661 2204 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:01:59.0661 2204 pcmcia - ok
20:01:59.0677 2204 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:01:59.0677 2204 pcw - ok
20:01:59.0692 2204 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:01:59.0708 2204 PEAUTH - ok
20:01:59.0802 2204 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:01:59.0802 2204 PerfHost - ok
20:01:59.0864 2204 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:01:59.0895 2204 pla - ok
20:01:59.0942 2204 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:01:59.0958 2204 PlugPlay - ok
20:01:59.0973 2204 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:01:59.0973 2204 PNRPAutoReg - ok
20:01:59.0989 2204 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:01:59.0989 2204 PNRPsvc - ok
20:02:00.0004 2204 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:02:00.0020 2204 PolicyAgent - ok
20:02:00.0036 2204 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:02:00.0051 2204 Power - ok
20:02:00.0067 2204 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:02:00.0067 2204 PptpMiniport - ok
20:02:00.0098 2204 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:02:00.0098 2204 Processor - ok
20:02:00.0176 2204 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:02:00.0176 2204 ProfSvc - ok
20:02:00.0192 2204 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:02:00.0192 2204 ProtectedStorage - ok
20:02:00.0254 2204 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:02:00.0254 2204 Psched - ok
20:02:00.0285 2204 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:02:00.0285 2204 PxHlpa64 - ok
20:02:00.0332 2204 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:02:00.0363 2204 ql2300 - ok
20:02:00.0363 2204 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:02:00.0379 2204 ql40xx - ok
20:02:00.0426 2204 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:02:00.0426 2204 QWAVE - ok
20:02:00.0441 2204 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:02:00.0441 2204 QWAVEdrv - ok
20:02:00.0457 2204 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:02:00.0472 2204 RasAcd - ok
20:02:00.0504 2204 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:02:00.0504 2204 RasAgileVpn - ok
20:02:00.0504 2204 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:02:00.0504 2204 RasAuto - ok
20:02:00.0550 2204 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:02:00.0550 2204 Rasl2tp - ok
20:02:00.0644 2204 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:02:00.0644 2204 RasMan - ok
20:02:00.0660 2204 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:02:00.0675 2204 RasPppoe - ok
20:02:00.0691 2204 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:02:00.0691 2204 RasSstp - ok
20:02:00.0706 2204 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:02:00.0722 2204 rdbss - ok
20:02:00.0738 2204 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:02:00.0753 2204 rdpbus - ok
20:02:00.0769 2204 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:02:00.0769 2204 RDPCDD - ok
20:02:00.0784 2204 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:02:00.0784 2204 RDPENCDD - ok
20:02:00.0800 2204 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:02:00.0800 2204 RDPREFMP - ok
20:02:00.0847 2204 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:02:00.0847 2204 RDPWD - ok
20:02:00.0940 2204 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:02:00.0940 2204 rdyboost - ok
20:02:00.0987 2204 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:02:01.0003 2204 RemoteAccess - ok
20:02:01.0034 2204 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:02:01.0034 2204 RemoteRegistry - ok
20:02:01.0050 2204 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:02:01.0065 2204 RpcEptMapper - ok
20:02:01.0081 2204 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:02:01.0081 2204 RpcLocator - ok
20:02:01.0128 2204 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:02:01.0128 2204 RpcSs - ok
20:02:01.0159 2204 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:02:01.0159 2204 rspndr - ok
20:02:01.0190 2204 [ FD978B2BF8A9B2390DCBEF435E9C1F9F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:02:01.0206 2204 RTL8167 - ok
20:02:01.0221 2204 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:02:01.0221 2204 SamSs - ok
20:02:01.0252 2204 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:02:01.0252 2204 sbp2port - ok
20:02:01.0299 2204 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:02:01.0315 2204 SCardSvr - ok
20:02:01.0346 2204 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:02:01.0346 2204 scfilter - ok
20:02:01.0408 2204 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:02:01.0440 2204 Schedule - ok
20:02:01.0471 2204 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:02:01.0471 2204 SCPolicySvc - ok
20:02:01.0518 2204 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:02:01.0518 2204 SDRSVC - ok
20:02:01.0564 2204 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:02:01.0564 2204 secdrv - ok
20:02:01.0611 2204 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:02:01.0611 2204 seclogon - ok
20:02:01.0627 2204 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:02:01.0627 2204 SENS - ok
20:02:01.0658 2204 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:02:01.0658 2204 SensrSvc - ok
20:02:01.0674 2204 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:02:01.0689 2204 Serenum - ok
20:02:01.0689 2204 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:02:01.0705 2204 Serial - ok
20:02:01.0752 2204 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:02:01.0752 2204 sermouse - ok
20:02:01.0783 2204 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:02:01.0798 2204 SessionEnv - ok
20:02:01.0830 2204 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:02:01.0830 2204 sffdisk - ok
20:02:01.0830 2204 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:02:01.0845 2204 sffp_mmc - ok
20:02:01.0845 2204 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:02:01.0845 2204 sffp_sd - ok
20:02:01.0876 2204 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:02:01.0892 2204 sfloppy - ok
20:02:01.0954 2204 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:02:01.0970 2204 SftService - ok
20:02:02.0017 2204 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:02:02.0032 2204 SharedAccess - ok
20:02:02.0079 2204 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:02:02.0079 2204 ShellHWDetection - ok
20:02:02.0110 2204 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:02:02.0110 2204 SiSRaid2 - ok
20:02:02.0142 2204 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:02:02.0142 2204 SiSRaid4 - ok
20:02:02.0173 2204 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:02:02.0173 2204 SkypeUpdate - ok
20:02:02.0204 2204 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:02:02.0204 2204 Smb - ok
20:02:02.0251 2204 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:02:02.0251 2204 SNMPTRAP - ok
20:02:02.0282 2204 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:02:02.0282 2204 spldr - ok
20:02:02.0313 2204 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:02:02.0329 2204 Spooler - ok
20:02:02.0422 2204 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:02:02.0516 2204 sppsvc - ok
20:02:02.0547 2204 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:02:02.0547 2204 sppuinotify - ok
20:02:02.0594 2204 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:02:02.0594 2204 srv - ok
20:02:02.0641 2204 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:02:02.0641 2204 srv2 - ok
20:02:02.0656 2204 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:02:02.0656 2204 srvnet - ok
20:02:02.0703 2204 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:02:02.0703 2204 SSDPSRV - ok
20:02:02.0719 2204 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:02:02.0719 2204 SstpSvc - ok
20:02:02.0750 2204 [ 855335BF5792E56164F98C012E3D92DD ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
20:02:02.0750 2204 ssudmdm - ok
20:02:02.0812 2204 [ 463E33B1EA7AF1E6EB87B66B831DB41A ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
20:02:02.0812 2204 STacSV - ok
20:02:02.0844 2204 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:02:02.0844 2204 stexstor - ok
20:02:02.0890 2204 [ 4304B75094E106FB5423A290C95841E5 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
20:02:02.0890 2204 STHDA - ok
20:02:02.0953 2204 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:02:02.0968 2204 stisvc - ok
20:02:03.0000 2204 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:02:03.0000 2204 swenum - ok
20:02:03.0046 2204 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:02:03.0046 2204 swprv - ok
20:02:03.0093 2204 [ 8A3FBCB3D6D4710730D27DA4392A4863 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:02:03.0093 2204 SynTP - ok
20:02:03.0171 2204 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:02:03.0218 2204 SysMain - ok
20:02:03.0249 2204 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:02:03.0265 2204 TabletInputService - ok
20:02:03.0280 2204 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:02:03.0280 2204 TapiSrv - ok
20:02:03.0312 2204 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:02:03.0312 2204 TBS - ok
20:02:03.0374 2204 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:02:03.0405 2204 Tcpip - ok
20:02:03.0468 2204 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:02:03.0468 2204 TCPIP6 - ok
20:02:03.0530 2204 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:02:03.0530 2204 tcpipreg - ok
20:02:03.0546 2204 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:02:03.0546 2204 TDPIPE - ok
20:02:03.0592 2204 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:02:03.0592 2204 TDTCP - ok
20:02:03.0624 2204 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:02:03.0624 2204 tdx - ok
20:02:03.0670 2204 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:02:03.0670 2204 TermDD - ok
20:02:03.0717 2204 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:02:03.0748 2204 TermService - ok
20:02:03.0780 2204 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:02:03.0780 2204 Themes - ok
20:02:03.0795 2204 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:02:03.0795 2204 THREADORDER - ok
20:02:03.0811 2204 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:02:03.0811 2204 TrkWks - ok
20:02:03.0858 2204 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:02:03.0858 2204 TrustedInstaller - ok
20:02:03.0904 2204 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:02:03.0904 2204 tssecsrv - ok
20:02:03.0951 2204 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:02:03.0967 2204 TsUsbFlt - ok
20:02:04.0014 2204 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:02:04.0014 2204 tunnel - ok
20:02:04.0045 2204 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:02:04.0045 2204 uagp35 - ok
20:02:04.0092 2204 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:02:04.0092 2204 udfs - ok
20:02:04.0170 2204 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:02:04.0170 2204 UI0Detect - ok
20:02:04.0185 2204 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:02:04.0185 2204 uliagpkx - ok
20:02:04.0248 2204 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:02:04.0248 2204 umbus - ok
20:02:04.0279 2204 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:02:04.0279 2204 UmPass - ok
20:02:04.0404 2204 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:02:04.0450 2204 UNS - ok
20:02:04.0482 2204 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:02:04.0482 2204 upnphost - ok
20:02:04.0528 2204 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:02:04.0528 2204 usbccgp - ok
20:02:04.0575 2204 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:02:04.0575 2204 usbcir - ok
20:02:04.0591 2204 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:02:04.0591 2204 usbehci - ok
20:02:04.0622 2204 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:02:04.0622 2204 usbhub - ok
20:02:04.0638 2204 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:02:04.0653 2204 usbohci - ok
20:02:04.0684 2204 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:02:04.0684 2204 usbprint - ok
20:02:04.0700 2204 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
20:02:04.0700 2204 USBSTOR - ok
20:02:04.0716 2204 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:02:04.0716 2204 usbuhci - ok
20:02:04.0747 2204 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:02:04.0747 2204 usbvideo - ok
20:02:04.0794 2204 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:02:04.0794 2204 UxSms - ok
20:02:04.0809 2204 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:02:04.0809 2204 VaultSvc - ok
20:02:04.0825 2204 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:02:04.0825 2204 vdrvroot - ok
20:02:04.0872 2204 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:02:04.0872 2204 vds - ok
20:02:04.0934 2204 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:02:04.0934 2204 vga - ok
20:02:04.0950 2204 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:02:04.0950 2204 VgaSave - ok
20:02:04.0981 2204 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:02:04.0996 2204 vhdmp - ok
20:02:05.0012 2204 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:02:05.0012 2204 viaide - ok
20:02:05.0043 2204 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:02:05.0043 2204 volmgr - ok
20:02:05.0090 2204 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:02:05.0106 2204 volmgrx - ok
20:02:05.0137 2204 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:02:05.0137 2204 volsnap - ok
20:02:05.0168 2204 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:02:05.0184 2204 vsmraid - ok
20:02:05.0246 2204 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:02:05.0277 2204 VSS - ok
20:02:05.0293 2204 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:02:05.0293 2204 vwifibus - ok
20:02:05.0308 2204 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:02:05.0308 2204 vwififlt - ok
20:02:05.0355 2204 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:02:05.0355 2204 vwifimp - ok
20:02:05.0386 2204 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:02:05.0386 2204 W32Time - ok
20:02:05.0418 2204 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:02:05.0418 2204 WacomPen - ok
20:02:05.0480 2204 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:02:05.0480 2204 WANARP - ok
20:02:05.0496 2204 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:02:05.0496 2204 Wanarpv6 - ok
20:02:05.0574 2204 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:02:05.0605 2204 WatAdminSvc - ok
20:02:05.0683 2204 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:02:05.0714 2204 wbengine - ok
20:02:05.0745 2204 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:02:05.0761 2204 WbioSrvc - ok
20:02:05.0792 2204 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:02:05.0808 2204 wcncsvc - ok
20:02:05.0823 2204 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:02:05.0823 2204 WcsPlugInService - ok
20:02:05.0839 2204 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:02:05.0839 2204 Wd - ok
20:02:05.0870 2204 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:02:05.0870 2204 Wdf01000 - ok
20:02:05.0901 2204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:02:05.0901 2204 WdiServiceHost - ok
20:02:05.0901 2204 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:02:05.0901 2204 WdiSystemHost - ok
20:02:05.0948 2204 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:02:05.0948 2204 WebClient - ok
20:02:05.0979 2204 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:02:05.0979 2204 Wecsvc - ok
20:02:05.0995 2204 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:02:06.0010 2204 wercplsupport - ok
20:02:06.0042 2204 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:02:06.0042 2204 WerSvc - ok
20:02:06.0088 2204 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:02:06.0088 2204 WfpLwf - ok
20:02:06.0120 2204 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:02:06.0120 2204 WimFltr - ok
20:02:06.0135 2204 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:02:06.0135 2204 WIMMount - ok
20:02:06.0151 2204 WinDefend - ok
20:02:06.0151 2204 WinHttpAutoProxySvc - ok
20:02:06.0182 2204 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:02:06.0198 2204 Winmgmt - ok
20:02:06.0260 2204 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:02:06.0307 2204 WinRM - ok
20:02:06.0354 2204 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:02:06.0369 2204 WinUsb - ok
20:02:06.0385 2204 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:02:06.0416 2204 Wlansvc - ok
20:02:06.0541 2204 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:02:06.0588 2204 wlidsvc - ok
20:02:06.0634 2204 [ DE816A0624D54D68E1FB8A9028DCF81A ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
20:02:06.0634 2204 wltrysvc - ok
20:02:06.0666 2204 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:02:06.0666 2204 WmiAcpi - ok
20:02:06.0728 2204 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:02:06.0728 2204 wmiApSrv - ok
20:02:06.0744 2204 WMPNetworkSvc - ok
20:02:06.0775 2204 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:02:06.0775 2204 WPCSvc - ok
20:02:06.0806 2204 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:02:06.0822 2204 WPDBusEnum - ok
20:02:06.0837 2204 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:02:06.0837 2204 ws2ifsl - ok
20:02:06.0853 2204 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:02:06.0853 2204 wscsvc - ok
20:02:06.0853 2204 WSearch - ok
20:02:06.0962 2204 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:02:07.0040 2204 wuauserv - ok
20:02:07.0056 2204 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:02:07.0056 2204 WudfPf - ok
20:02:07.0102 2204 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:02:07.0102 2204 WUDFRd - ok
20:02:07.0149 2204 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:02:07.0149 2204 wudfsvc - ok
20:02:07.0180 2204 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:02:07.0180 2204 WwanSvc - ok
20:02:07.0212 2204 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
20:02:07.0212 2204 yukonw7 - ok
20:02:07.0258 2204 ================ Scan global ===============================
20:02:07.0290 2204 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:02:07.0336 2204 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:02:07.0352 2204 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:02:07.0414 2204 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:02:07.0430 2204 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:02:07.0430 2204 [Global] - ok
20:02:07.0430 2204 ================ Scan MBR ==================================
20:02:07.0446 2204 [ C3220EB08ADD62E3ED9F72A1F4E4B1BB ] \Device\Harddisk0\DR0
20:02:08.0038 2204 \Device\Harddisk0\DR0 - ok
20:02:08.0038 2204 ================ Scan VBR ==================================
20:02:08.0038 2204 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
20:02:08.0038 2204 \Device\Harddisk0\DR0\Partition1 - ok
20:02:08.0070 2204 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
20:02:08.0070 2204 \Device\Harddisk0\DR0\Partition2 - ok
20:02:08.0085 2204 ============================================================
20:02:08.0085 2204 Scan finished
20:02:08.0085 2204 ============================================================
20:02:08.0085 2416 Detected object count: 0
20:02:08.0085 2416 Actual detected object count: 0

malwarebytes results:

Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.16.01

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Tina :: RAMI [administrator]

Protection: Disabled

11/15/2012 7:53:50 PM
mbam-log-2012-11-15 (19-57-57).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 204866
Time elapsed: 3 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run| (Exploit.Drop.GS) -> Data: C:\Users\Tina\AppData\Local\Temp\awt43abr.exe -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 5
C:\Users\Tina\AppData\Local\Temp\asknpavbb.exe (Trojan.Agent.Mio) -> No action taken.
C:\Users\Tina\AppData\Local\Temp\msimg32.dll (Trojan.Agent.Mio) -> No action taken.
C:\Users\Tina\Downloads\6_-_Brenda_Jackson_-_Jared's_Counterfeit_Fiancee.epub.exe (PUP.Adware.Agent) -> No action taken.
C:\Users\Tina\AppData\Local\Temp\wgsdgsdgdsgsd.exe (Exploit.Drop.GS) -> No action taken.
C:\Users\Tina\AppData\Local\Temp\awt43abr.exe (Exploit.Drop.GS) -> No action taken.

(end)


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 11/15/2012 at 08:12 PM

Application Version : 5.6.1014

Core Rules Database Version : 9596
Trace Rules Database Version: 7408

Scan type : Quick Scan
Total Scan Time : 00:04:05

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 460
Memory threats detected : 0
Registry items scanned : 60902
Registry threats detected : 28
File items scanned : 10968
File threats detected : 68

Adware.Zugo
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\InprocServer32
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\InprocServer32#ThreadingModel
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\ProgID
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\Programmable
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\TypeLib
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}\VersionIndependentProgID
(x86) HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D425283-D487-4337-BAB6-AB8354A81457}
(x86) HKCR\CLSID\{9D425283-D487-4337-BAB6-AB8354A81457}
(x86) HKCR\SearchToolbarLib.CSearchToolbarImpl.1
(x86) HKCR\SearchToolbarLib.CSearchToolbarImpl.1\CLSID
(x86) HKCR\SearchToolbarLib.CSearchToolbarImpl
(x86) HKCR\SearchToolbarLib.CSearchToolbarImpl\CLSID
(x86) HKCR\SearchToolbarLib.CSearchToolbarImpl\CurVer
(x86) HKCR\TypeLib\{E43AD97A-5248-46A7-BB03-35574058224C}
C:\PROGRAM FILES (X86)\SEARCH TOOLBAR\SEARCHTOOLBAR.DLL
(x86) HKU\S-1-5-21-2091624552-2671696597-4083618310-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D425283-D487-4337-BAB6-AB8354A81457}
(x86) HKLM\Software\Microsoft\Internet Explorer\Toolbar#{9D425283-D487-4337-BAB6-AB8354A81457}
(x86) HKU\S-1-5-21-2091624552-2671696597-4083618310-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{9D425283-D487-4337-BAB6-AB8354A81457}

Browser Hijacker.Tubby
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#NoModify
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#NoRepair
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#DisplayName
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#UninstallString
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#DisplayIcon
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#DisplayVersion
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#URLInfoAbout
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#Publisher
(x86) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Toolbar#EstimatedSize

Adware.Tracking Cookie
C:\Users\Tina\AppData\Roaming\Microsoft\Windows\Cookies\BKKYUAHN.txt [ /doubleclick.net ]
C:\Users\Tina\AppData\Roaming\Microsoft\Windows\Cookies\NT3WJ4T8.txt [ /atdmt.com ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\0XDXG6ZZ.txt [ Cookie:tina@ero-advertising.com/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\2W619F5M.txt [ Cookie:tina@toplist.cz/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\GD28ZVMX.txt [ Cookie:tina@largeporntube.com/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\FEMKM0HQ.txt [ Cookie:tina@pornoxo.com/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\Z3LHJ96V.txt [ Cookie:tina@accounts.google.com/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\DQ2GRXMB.txt [ Cookie:tina@trafficholder.com/cgi-bin/traffic/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\8WUEOY2Q.txt [ Cookie:tina@www.pornoxo.com/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\QDMOH5TP.txt [ Cookie:tina@exoclick.com/ ]
C:\USERS\TINA\AppData\Roaming\Microsoft\Windows\Cookies\Low\RCCDXTCV.txt [ Cookie:tina@google.com/accounts/ ]
C:\USERS\TINA\Cookies\BKKYUAHN.txt [ Cookie:tina@doubleclick.net/ ]
C:\USERS\TINA\Cookies\NT3WJ4T8.txt [ Cookie:tina@atdmt.com/ ]
.atdmt.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.insightexpressai.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.insightexpressai.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.insightexpressai.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.insightexpressai.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
statse.webtrendslive.com [ C:\USERS\TINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

Eset results:
C:\Program Files (x86)\Search Toolbar\SearchToolbarUpdater.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\ProgramData\Tarma Installer\{DE3B7BF9-0770-4104-BC0B-B1CCCCE2F053}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Users\Tina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\71CJ8TW8\7516fd43adaa5e0b8a65a672c39845d2[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\Tina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LL864GXJ\7516fd43adaa5e0b8a65a672c39845d2[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\Tina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OJY2CXTB\7516fd43adaa5e0b8a65a672c39845d2[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\Tina\AppData\Local\Temp\jar_cache4627482244554324009.tmp a variant of Java/Exploit.CVE-2012-5076.A trojan deleted - quarantined
C:\Users\Tina\AppData\Local\Temp\jar_cache8283968225993572784.tmp a variant of Java/Exploit.CVE-2012-5076.A trojan deleted - quarantined
C:\Users\Tina\AppData\Local\Temp\SetupDataMngr_Searchqu.exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\Tina\AppData\Local\Temp\YontooSetup-Silent-PageRage_Branded.exe multiple threats cleaned by deleting - quarantined
C:\Users\Tina\AppData\Local\Temp\YontooSetup-Silent.exe multiple threats cleaned by deleting - quarantined

minitoolbox results:

MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Tina (administrator) on 15-11-2012 at 21:50:46
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================



========================= IP Configuration: ================================

DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Broadcom Virtual Wireless Adapter = Local Area Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Rami
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 1C-65-9D-B9-94-2D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom Virtual Wireless Adapter
Physical Address. . . . . . . . . : 1C-65-9D-B9-94-2D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : 1C-65-9D-B9-94-2D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5dd4:2d01:3e6b:fdff%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, November 15, 2012 8:15:34 PM
Lease Expires . . . . . . . . . . : Friday, November 16, 2012 8:15:38 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 320628125
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-8C-24-A0-F0-4D-A2-B6-BE-00
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{82BE92BD-9C68-4651-BBD8-F5B5752B9F73}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2001:4860:4002:802::1008
74.125.227.72
74.125.227.73
74.125.227.78
74.125.227.64
74.125.227.65
74.125.227.66
74.125.227.67
74.125.227.68
74.125.227.69
74.125.227.70
74.125.227.71


Pinging google.com [74.125.227.72] with 32 bytes of data:
Reply from 74.125.227.72: bytes=32 time=19ms TTL=51
Reply from 74.125.227.72: bytes=32 time=45ms TTL=51

Ping statistics for 74.125.227.72:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 19ms, Maximum = 45ms, Average = 32ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=110ms TTL=48
Reply from 72.30.38.140: bytes=32 time=118ms TTL=48

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 110ms, Maximum = 118ms, Average = 114ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...1c 65 9d b9 94 2d ......Microsoft Virtual WiFi Miniport Adapter
12...1c 65 9d b9 94 2d ......Broadcom Virtual Wireless Adapter
11...1c 65 9d b9 94 2d ......DW1501 Wireless-N WLAN Half-Mini Card
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::5dd4:2d01:3e6b:fdff/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/14/2012 09:11:45 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Description = Configured Microsoft Office Home and Student 2010; Error = 0x8007043c).

Error: (11/14/2012 09:11:42 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Description = Configured Microsoft Office Home and Student 2010; Error = 0x8007043c).

Error: (11/14/2012 08:20:00 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16450, time stamp: 0x503723f6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0xc88
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/12/2012 09:45:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/10/2012 10:36:50 PM) (Source: McLogEvent) (User: NT AUTHORITY)
Description: A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe took longer than 90000 ms to complete a request.

The process will be terminated.
Thread id : 2864 (0xb30)

Thread address : 0x000000007798135A

Thread message :

Build VSCORE.14.4.0.387 / 5400.1158
Object being scanned = \Device\HarddiskVolume3\Users\Tina\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~\WhitePages~.feed-ms
by C:\windows\system32\msfeedssync.exe
22303(16150597)(0)
22302(16150597)(0)
22301(16150597)(0)
226(16149458)(0)
223(16149458)(0)
220(16149458)(0)
7011(16148444)(0)
93(16148444)(0)

Error: (11/10/2012 10:36:50 PM) (Source: McLogEvent) (User: NT AUTHORITY)
Description: A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe took longer than 90000 ms to complete a request.

The process will be terminated.
Thread id : 2844 (0xb1c)

Thread address : 0x000000007798135A

Thread message :

Build VSCORE.14.4.0.387 / 5400.1158
Object being scanned = \Device\HarddiskVolume3\Users\Tina\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\Internet Explorer Suggested Sites~.feed-ms
by C:\windows\system32\msfeedssync.exe
22303(16150597)(0)
22302(16150597)(0)
22301(16150597)(0)
226(16149551)(0)
223(16149551)(0)
220(16149551)(0)
7011(16148537)(0)
93(16148537)(0)

Error: (11/10/2012 10:36:50 PM) (Source: McLogEvent) (User: NT AUTHORITY)
Description: A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe took longer than 90000 ms to complete a request.

The process will be terminated.
Thread id : 2856 (0xb28)

Thread address : 0x000000007798138A

Thread message :

Build VSCORE.14.4.0.387 / 5400.1158
Object being scanned = \Device\HarddiskVolume3\Users\Tina\AppData\Local\Microsoft\Feeds\FeedsStore.feedsdb-ms
by C:\windows\system32\msfeedssync.exe
226(16150565)(0)
22302(16150597)(0)
22301(16150597)(0)
226(16150565)(0)
223(16150565)(0)
220(16150565)(0)
7011(16149551)(0)
93(16149551)(0)

Error: (10/29/2012 00:16:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/29/2012 00:16:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/29/2012 00:12:33 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (11/15/2012 09:49:54 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:54 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:54 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (11/15/2012 09:49:53 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (11/14/2012 09:11:45 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Home and Student 20100x8007043c

Error: (11/14/2012 09:11:42 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Home and Student 20100x8007043c

Error: (11/14/2012 08:20:00 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16450503723f6unknown0.0.0.000000000c000000500000000c8801cdc2d5d731a8abC:\Program Files (x86)\Internet Explorer\iexplore.exeunknownf45c5b1e-2eca-11e2-8d86-d54ed2ea47f5

Error: (11/12/2012 09:45:17 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (11/10/2012 10:36:50 PM) (Source: McLogEvent)(User: NT AUTHORITY)
Description: C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe900002864 (0xb30)0x000000007798135A
Build VSCORE.14.4.0.387 / 5400.1158
Object being scanned = \Device\HarddiskVolume3\Users\Tina\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~\WhitePages~.feed-ms
by C:\windows\system32\msfeedssync.exe
22303(16150597)(0)
22302(16150597)(0)
22301(16150597)(0)
226(16149458)(0)
223(16149458)(0)
220(16149458)(0)
7011(16148444)(0)
93(16148444)(0)

Error: (11/10/2012 10:36:50 PM) (Source: McLogEvent)(User: NT AUTHORITY)
Description: C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe900002844 (0xb1c)0x000000007798135A
Build VSCORE.14.4.0.387 / 5400.1158
Object being scanned = \Device\HarddiskVolume3\Users\Tina\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\Internet Explorer Suggested Sites~.feed-ms
by C:\windows\system32\msfeedssync.exe
22303(16150597)(0)
22302(16150597)(0)
22301(16150597)(0)
226(16149551)(0)
223(16149551)(0)
220(16149551)(0)
7011(16148537)(0)
93(16148537)(0)

Error: (11/10/2012 10:36:50 PM) (Source: McLogEvent)(User: NT AUTHORITY)
Description: C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe900002856 (0xb28)0x000000007798138A
Build VSCORE.14.4.0.387 / 5400.1158
Object being scanned = \Device\HarddiskVolume3\Users\Tina\AppData\Local\Microsoft\Feeds\FeedsStore.feedsdb-ms
by C:\windows\system32\msfeedssync.exe
226(16150565)(0)
22302(16150597)(0)
22301(16150597)(0)
226(16150565)(0)
223(16150565)(0)
220(16150565)(0)
7011(16149551)(0)
93(16149551)(0)

Error: (10/29/2012 00:16:14 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (10/29/2012 00:16:14 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (10/29/2012 00:12:33 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe


=========================== Installed Programs ============================

Adobe AIR (Version: 2.5.1.17730)
Adobe Community Help (Version: 3.3.0)
Adobe Community Help (Version: 3.3.0.800)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.5.502.110)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Photoshop.com Inspiration Browser (Version: 3.07)
Adobe Reader 9.1 (Version: 9.1.0)
Adobe Reader 9.2 (Version: 9.2.0)
Advanced Audio FX Engine (Version: 1.12.05)
Amazon Kindle
Amazon MP3 Downloader 1.0.12 (Version: 1.0.12)
Amazon Send to Kindle (Version: 1.0.0.192)
Audacity 1.2.6
Back Pocket Band
Bing Bar (Version: 7.1.391.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
ConvertXtoDVD 4.1.19.365 (Version: 4.1.19.365)
Cozi (Version: 1.0.4323.24051)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.47)
Dell DataSafe Online (Version: 1.2.0011)
Dell Dock (Version: 2.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell Support Center (Version: 3.0.5621.01)
Dell Webcam Central (Version: 1.40.05)
DW WLAN Card Utility (Version: 5.60.48.35)
EA Download Manager (Version: 7.2.0.32)
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
ESET Online Scanner v3
FastAccess (Version: 2.4.97.1)
Free Mp3 Wma Converter V 2.1 (Version: 2.1.0.0)
Free Studio version 5.1.5
Google Chrome (Version: 23.0.1271.64)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
GoToAssist 8.0.0.514
Hallmark Scrapbook Studio Deluxe (Version: 3.0.0.18)
Hear & Play Song Learner Pro
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2202)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.4.1002)
Internet Explorer (Version: 8)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iolo technologies' System Mechanic (Version: 10.1.1)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 21 (64-bit) (Version: 6.0.210)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Jeopardy 2 (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
McAfee AntiVirus Plus (Version: 11.0.678)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Reader
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Musicnotes Player V1.30.3 and Viewer V1.19.0 (Version: 1.30.3)
Musicnotes Software Suite 1.5.5 (Version: 1.5.5)
Note Attack v1.36
PITCH 1.1.2.1
Python 2.7.2 (Version: 2.7.2150)
Quickset64 (Version: 10.5.0)
Rocket Piano Bonus Software (Version: 1.3)
Roxio Burn (Version: 1.01)
Samsung Kies (Version: 2.3.2.12054_20)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.5.0)
SCRABBLE (Version: 1.0.1.3)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.10 (Version: 5.10.116)
Super TextTwist (Version: 2.2.0.97)
SUPERAntiSpyware (Version: 5.6.1014)
Synaptics Pointing Device Driver (Version: 15.0.0.1)
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Wheel of Fortune 2 (Version: 2.2.0.95)
Widevine Media Transformer Plugin 5.0.0 (Version: 5.0.0.4679)
WildTangent Games (Version: 1.0.2.5)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Xilisoft Audio Converter 6 (Version: 6.1.3.1217)

========================= Devices: ================================

Name: facap, FastAccess Video Capture
Description: facap, FastAccess Video Capture
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Sensible Vision
Service: FACAP
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 20%
Total physical RAM: 5942.68 MB
Available physical RAM: 4698.22 MB
Total Pagefile: 11883.56 MB
Available Pagefile: 10640.48 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.34 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:365.01 GB) NTFS

========================= Users: ========================================

User accounts for \\RAMI

Administrator Guest Tina


**** End of log ****

adware cleaner:

# AdwCleaner v2.007 - Logfile created 11/15/2012 at 22:01:04
# Updated 06/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Tina - RAMI
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Tina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U3EYDOY7\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [750 octets] - [15/11/2012 22:01:04]
AdwCleaner[S2].txt - [4258 octets] - [15/11/2012 21:53:23]

########## EOF - C:\AdwCleaner[R1].txt - [869 octets] ##########

#5 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:34 AM

Posted 16 November 2012 - 05:05 AM

Boot into Normal Mode if Possible if not redo the scan in safemode and then update run a full scan with malwarebytes this time make sure to remove the found threats.

Post the log.

Let me know if you are able to use normal mode also follow the instructions in the link Boopme posted and we will move on from there.

#6 macobi

macobi
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 16 November 2012 - 08:57 AM

In Normal Mode my pc booted up, but 34 minutes into the scan malwarebytes stopped responding. I then booted up in Safe Mode with networking and 15 minutes into the scan malwarebytes stopped responding. Now, I rebooted in safe mode with networking and am running Malwarebytes again. I'm also downloading from boopme's link the emsisoft software.

#7 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:34 AM

Posted 16 November 2012 - 07:59 PM

:thumbup2:

Post the logs when done if you can not get malwarebytes to do a full scan then for now do a quick scan.

#8 macobi

macobi
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 16 November 2012 - 10:02 PM

Emisoft software is still downloading. I could only do a quick scan in malwarebytes. See post below.

Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.16.06

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Tina :: RAMI [administrator]

Protection: Disabled

11/16/2012 8:47:26 PM
mbam-log-2012-11-16 (20-47-26).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 204845
Time elapsed: 4 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:34 AM

Posted 16 November 2012 - 10:09 PM

When done with the emisoft tool see below.

Boot into normal mode.




Download Rkill run it post the log.
http://www.bleepingcomputer.com/download/rkill/


Run the program below as admin hit the scan button allow it to finish then hit the delete button.

http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe


Download the junkware removal tool save it to your desktop run it in safe mode post the log.
http://thisisudax.org/downloads/JRT.exe



Download Hitman Pro .

http://dl.surfright.nl/HitmanPro36.exe 32 bit

http://dl.surfright.nl/HitmanPro36_x64.exe 64 bit

Start the scan Go to setings.
Un-tick Scan for tracking Cookies.
Go back to scan Tab
Select ok
Then Next
No I only want to perform a one time scan to check this computer.
Enter your email to register.
Next.
After the scan make sure to select quarantine found threats.
Then select activate free license then follow the prompts.
Reboot your machine.

#10 macobi

macobi
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 17 November 2012 - 04:25 AM

Emsisoft Report:

Emsisoft Emergency Kit - Version 3.0
Last update: 11/16/2012 11:52:50 PM

Scan settings:

Scan type: Deep Scan
Objects: Rootkits, Memory, Traces, C:\

Detect Riskware: Off
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start: 11/16/2012 11:56:26 PM

C:\Program Files (x86)\HPSongLearner\updater.exe detected: Gen:Variant.FakeAlert.94 (B)

Scanned 487529
Found 1

Scan end: 11/17/2012 2:07:18 AM
Scan time: 2:10:52

C:\Program Files (x86)\HPSongLearner\updater.exe Quarantined Gen:Variant.FakeAlert.94 (B)

Quarantined 1

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 17 November 2012 - 09:42 AM

So will it boot normally?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 macobi

macobi
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 17 November 2012 - 12:50 PM

Yes it will boot normally. I am currently updating my software using the Secunia PSI tool.

#13 macobi

macobi
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 17 November 2012 - 01:53 PM

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/17/2012 12:04:39 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\Tina\Desktop\rkill\rkill-11-17-2012-12-04-48.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

* ALERT: ZEROACCESS rootkit symptoms found!

* HKEY_CLASSES_ROOT\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InprocServer32 [ZA Reg Hijack]
* C:\$Recycle.Bin\S-1-5-21-2091624552-2671696597-4083618310-1000\$3b99f81f31d5dbab1bcf87d0107a285a\ [ZA Dir]
* C:\$Recycle.Bin\S-1-5-21-2091624552-2671696597-4083618310-1000\$3b99f81f31d5dbab1bcf87d0107a285a\L\ [ZA Dir]
* C:\$Recycle.Bin\S-1-5-21-2091624552-2671696597-4083618310-1000\$3b99f81f31d5dbab1bcf87d0107a285a\U\ [ZA Dir]

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 11/17/2012 12:04:59 PM
Execution time: 0 hours(s), 0 minute(s), and 20 seconds(s)


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 3.1.7 (11.17.2012)
OS: Windows 7 Home Premium x64
Ran by Tina on Sat 11/17/2012 at 12:11:54.92
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Tina\AppData\Roaming\dvdvideosoft"
Successfully deleted: [Folder] "C:\Users\Tina\AppData\Roaming\dvdvideosoftiehelpers"
Successfully deleted: [Folder] "C:\Program Files (x86)\Common Files\dvdvideosoft"
Successfully deleted: [Folder] "C:\Program Files (x86)\dvdvideosoft"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 11/17/2012 at 12:17:48.38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#14 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:34 AM

Posted 17 November 2012 - 04:20 PM

Any more issues?

#15 macobi

macobi
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:08:34 AM

Posted 17 November 2012 - 04:30 PM

No more issues.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users