Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Having problems updating and restarting computer


  • This topic is locked This topic is locked
13 replies to this topic

#1 julietmonet

julietmonet

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 22 November 2012 - 05:00 PM

Hello,

I'm back unfortunately. I'm having an issue with my computer again. I noticed that I had some updates, so I when I clicked for the update to shutdown and start. It continually kept failing. The only way I got it back to working order was by restoring to a different point in time. However, every time I try and restart my computer, it goes back into the updating phase again and keeps failing. I noticed that the updates were to protect my computer from hackers so I'm not sure if a hacker is blocking these necessary updates or maybe it's just a faulty computer.

Also, before this happened I was also having freezing episodes on my computer. For instance, if I left it idle for a while it would freeze or become really slow and if I tried to play music it would skip every other second as if something else is in progress.

Please Help!



Thanks,

JulietMonet :)

BC AdBot (Login to Remove)

 


#2 Clairvoyant

Clairvoyant

  • Malware Response Team
  • 1,564 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:somewhere in time
  • Local time:10:17 PM

Posted 26 November 2012 - 05:51 PM

Hello Juliet :),

I will be helping with your computer problems.

Before to start please note the following:

  • If you have since resolved the original problem you were having, we would appreciate you letting us know
  • Do not make any changes on your own to the computer (installing/uninstall programs, deleting files, modifying the registry, running scanners or other tools, etc.) without instructions to do it
  • Please read every post completely and perform all steps in the specified order. If you can't understand something or you encounter problems please stop and let me know
  • Do not attach logs, use code or quote boxes. Just copy and paste the text unless directed otherwise
  • Even if things appear to be better, it does not mean we have finished. Follow my instructions and reply back until I tell you that your computer is clean.
  • Please reply using the Add Reply button in the lower right hand corner of your screen
  • Please track this topic by clicking on the Watch Topic button on the top right on this tread => select Immediate Email Notification => click on Proceed button
Please run DDS as described here and post the required logs


Regards

Edited by Clairvoyant, 26 November 2012 - 05:52 PM.


#3 julietmonet

julietmonet
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 27 November 2012 - 01:07 AM

DDS LOG BELOW:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16450 BrowserJavaVersion: 10.5.1
Run by Juliet at 22:04:33 on 2012-11-26
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3895.1684 [GMT -8:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\windows\system32\dldocoms.exe
C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe
C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\wbem\unsecapp.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\System32\igfxpers.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\servicing\TrustedInstaller.exe
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Dell Support Center\pcdrcui.exe
C:\windows\System32\svchost.exe -k swprv
C:\Program Files\Dell Support Center\pcdrrealtime.p5x
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\iTunes\iTunes.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files\Dell Support Center\uaclauncher.exe
C:\windows\system32\vssvc.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://yahoo.com/
BHO: SnagIt Toolbar Loader: {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB: Snagit: {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
TCP: NameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{AB2D4E52-95A4-45BC-899C-65BF6E9A93D2} : DHCPNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{AB2D4E52-95A4-45BC-899C-65BF6E9A93D2}\2375942554237383 : DHCPNameServer = 192.168.1.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: SnagIt Toolbar Loader: {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitBHO64.dll
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-TB: Snagit: {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitIEAddin64.dll
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [Stage Remote] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe -Quiet
x64-Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 PxHlpa64;PxHlpa64;C:\windows\System32\drivers\PxHlpa64.sys [2012-1-10 55856]
R1 aswSnx;aswSnx;C:\windows\System32\drivers\aswSnx.sys [2012-5-18 984144]
R1 aswSP;aswSP;C:\windows\System32\drivers\aswSP.sys [2012-5-18 370288]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2012-1-10 89600]
R2 aswFsBlk;aswFsBlk;C:\windows\System32\drivers\aswFsBlk.sys [2012-5-18 25232]
R2 aswMonFlt;aswMonFlt;C:\windows\System32\drivers\aswMonFlt.sys [2012-5-18 71600]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-11-2 44808]
R2 dldo_device;dldo_device;C:\windows\System32\dldocoms.exe -service --> C:\windows\System32\dldocoms.exe -service [?]
R2 FlipShareServer;FlipShare Server;C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe [2011-5-6 1085440]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-1-10 13336]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 NOBU;Dell DataSafe Online;C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2010-8-25 2823000]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2012-1-10 689472]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-1-10 2533400]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\windows\System32\drivers\CtClsFlt.sys [2012-1-10 176096]
R3 HECIx64;Intel® Management Engine Interface;C:\windows\System32\drivers\HECIx64.sys [2012-1-10 56344]
R3 Impcd;Impcd;C:\windows\System32\drivers\Impcd.sys [2012-1-10 158976]
R3 IntcDAud;Intel® Display Audio;C:\windows\System32\drivers\IntcDAud.sys [2012-1-10 317440]
R3 PCDSRVC{1E208CE0-FB7451FF-06020200}_0;PCDSRVC{1E208CE0-FB7451FF-06020200}_0 - PCDR Kernel Mode Service Helper Driver;C:\Program Files\Dell Support Center\pcdsrvc_x64.pkms [2012-8-17 25584]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 McMPFSvc;McAfee Personal Firewall Service;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [?]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2012-1-10 250984]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2012-2-15 52736]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2012-3-28 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-11-25 06:01:14 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2012-11-25 06:01:14 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2012-11-25 06:01:14 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2012-11-25 06:01:14 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2012-11-25 06:01:14 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2012-11-25 06:01:14 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2012-11-25 06:01:14 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2012-11-25 05:59:21 33240 ----a-w- C:\windows\System32\drivers\GEARAspiWDM.sys
2012-11-25 05:58:43 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-11-25 05:58:43 -------- d-----w- C:\Program Files\iTunes
2012-11-22 22:39:57 737072 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore-2\Microsoft.MediaCenter.Sports.UI.dll
2012-11-22 22:39:42 2876528 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2012-11-22 22:39:33 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2012-11-22 22:39:30 539984 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-11-22 05:33:53 -------- d-----w- C:\windows\System32\wbem\repositoryTempBackup.0
2012-11-02 01:07:33 737072 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2012-11-02 01:07:21 2876528 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-11-02 01:07:12 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-11-02 01:07:04 539984 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-10-29 08:34:32 -------- d-----w- C:\Users\Juliet\AppData\Local\{708C925D-16E5-4CC4-8BC5-FC8E13A1FF36}
.
==================== Find3M ====================
.
2012-10-30 22:51:55 984144 ----a-w- C:\windows\System32\drivers\aswSnx.sys
2012-10-30 22:51:55 71600 ----a-w- C:\windows\System32\drivers\aswMonFlt.sys
2012-10-30 22:51:07 41224 ----a-w- C:\windows\avastSS.scr
2012-10-25 11:12:26 94208 ----a-w- C:\windows\SysWow64\QuickTimeVR.qtx
2012-10-25 11:12:26 69632 ----a-w- C:\windows\SysWow64\QuickTime.qts
2012-10-15 15:59:28 54072 ----a-w- C:\windows\System32\drivers\aswRdr2.sys
2012-09-14 19:19:29 2048 ----a-w- C:\windows\System32\tzres.dll
2012-09-14 18:28:53 2048 ----a-w- C:\windows\SysWow64\tzres.dll
2012-09-08 00:04:46 25928 ----a-w- C:\windows\System32\drivers\mbam.sys
2012-09-03 02:49:32 73416 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-03 02:49:32 696520 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2012-08-31 18:19:35 1659760 ----a-w- C:\windows\System32\drivers\ntfs.sys
2012-08-30 18:03:45 5559664 ----a-w- C:\windows\System32\ntoskrnl.exe
2012-08-30 17:12:02 3968880 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe
2012-08-30 17:12:02 3914096 ----a-w- C:\windows\SysWow64\ntoskrnl.exe
.
============= FINISH: 22:05:17.93 ===============


ATTACH LOG BELOW:


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 3/27/2012 9:53:43 AM
System Uptime: 11/23/2012 10:16:41 AM (84 hours ago)
.
Motherboard: Dell Inc. | | 024DTD
Processor: Intel® Core™ i3 CPU M 380 @ 2.53GHz | CPU 1 | 909/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 353.25 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP88: 11/21/2012 12:32:07 AM - Windows Update
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader X (10.1.3) MUI
Advanced Audio FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
avast! Free Antivirus
Bing Rewards Client Installer
Bonjour
CCleaner
D3DX10
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Edoc Viewer
Dell Getting Started Guide
Dell MusicStage
Dell PhotoStage
Dell Product Registration
Dell Stage
Dell Stage Remote
Dell Support Center
Dell Touchpad
Dell VideoStage
Dell Webcam Central
Dell Wireless Driver Installation
DirectX 9 Runtime
FlipShare
Google Chrome
Google Update Helper
High-Definition Video Playback
IDT Audio
Intel® Control Center
Intel® Management Engine Components
Intel® Processor Graphics
Intel® Rapid Storage Technology
iTunes
Java Auto Updater
Java™ 6 Update 27 (64-bit)
Java™ 7 Update 5
JavaFX 2.1.1
Junk Mail filter update
Malwarebytes Anti-Malware version 1.65.0.1400
Mesh Runtime
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MSVCRT
MSVCRT Redists
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 10 Movie ThemePack Basic
Nero Control Center 10
Nero ControlCenter 10 Help (CHM)
Nero Core Components 10
Nero Update
PhotoShowExpress
PlayReady PC Runtime x86
Quickset64
QuickTime
RBVirtualFolder64Inst
Realtek Ethernet Controller Driver
Realtek USB 2.0 Card Reader
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Roxio File Backup
Safari
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Snagit 10.0.2
Sonic CinePlayer Decoder Pack
SyncUP
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
Vegas Movie Studio HD Platinum 11.0
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR 4.11 (32-bit)
Zinio Reader 4
.
==== Event Viewer Messages From Past Week ========
.
11/26/2012 10:05:01 PM, Error: Ntfs [55] - The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume OS.
11/24/2012 9:57:01 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Apple Mobile Device service, but this action failed with the following error: An instance of the service is already running.
11/24/2012 9:56:01 PM, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
11/24/2012 9:55:44 PM, Error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
11/23/2012 6:36:15 AM, Error: iaStor [9] - The device, \Device\Ide\iaStor0, did not respond within the timeout period.
11/23/2012 10:20:08 AM, Error: Ntfs [55] - The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume C:.
11/23/2012 10:18:17 AM, Error: Service Control Manager [7003] - The McAfee Personal Firewall Service service depends the following service: MfeFire. This service might not be installed.
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80242016: Update for User-Mode Driver Framework version 1.11 for Windows 7 for x64-based Systems (KB2685813).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80242016: Update for Kernel-Mode Driver Framework version 1.11 for Windows 7 for x64-based Systems (KB2685811).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80242016: Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2761451).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800f0816: Update for Windows 7 for x64-based Systems (KB2763523).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800f0816: Update for Windows 7 for x64-based Systems (KB2761217).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800f0816: Update for Windows 7 for x64-based Systems (KB2750841).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800f0816: Security Update for Windows 7 for x64-based Systems (KB2761226).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800f0816: Security Update for Windows 7 for x64-based Systems (KB2727528).
11/22/2012 9:39:22 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800f0816: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2729452).
11/22/2012 9:36:37 AM, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
11/22/2012 9:36:37 AM, Error: Service Control Manager [7024] - The Windows Search service terminated with service-specific error %%-1073473535.
11/22/2012 9:20:45 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Intel® Rapid Storage Technology service to connect.
11/22/2012 9:20:45 AM, Error: Service Control Manager [7000] - The Intel® Rapid Storage Technology service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/22/2012 9:19:28 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Browser service.
11/22/2012 9:19:28 AM, Error: Service Control Manager [7000] - The Computer Browser service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/22/2012 9:18:58 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.
11/22/2012 9:18:58 AM, Error: Service Control Manager [7000] - The Google Update Service (gupdate) service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/22/2012 9:16:53 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SENS service.
11/22/2012 9:16:36 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v4.0.30319_X64 service to connect.
11/22/2012 9:16:23 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service.
11/22/2012 9:15:53 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Spooler service.
11/22/2012 9:15:44 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v4.0.30319_X86 service to connect.
11/22/2012 9:14:39 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the iphlpsvc service.
11/22/2012 9:14:09 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AeLookupSvc service.
11/22/2012 9:14:09 AM, Error: Service Control Manager [7000] - The Application Experience service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/22/2012 9:13:39 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the RasMan service.
11/22/2012 2:06:23 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IKEEXT service.
11/22/2012 2:04:51 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wuauserv service.
11/22/2012 1:45:42 PM, Error: Service Control Manager [7022] - The Internet Connection Sharing (ICS) service hung on starting.
11/22/2012 1:44:08 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Bonjour Service service to connect.
11/22/2012 1:44:08 PM, Error: Service Control Manager [7000] - The Bonjour Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 11:34:03 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service.
11/21/2012 11:31:34 PM, Error: Service Control Manager [7022] - The Intel® Management & Security Application User Notification Service service hung on starting.
11/21/2012 11:29:29 PM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.
11/21/2012 11:28:39 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the eventlog service.
11/21/2012 11:27:28 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
11/21/2012 11:27:28 PM, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 11:26:25 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Media Player Network Sharing Service service to connect.
11/21/2012 11:26:25 PM, Error: Service Control Manager [7000] - The Windows Media Player Network Sharing Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 11:25:41 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Software Protection service to connect.
11/21/2012 11:25:41 PM, Error: Service Control Manager [7000] - The Software Protection service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 11:24:59 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Roxio Hard Drive Watcher 12 service to connect.
11/21/2012 11:20:41 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Intel® Management and Security Application Local Management Service service to connect.
11/21/2012 11:20:41 PM, Error: Service Control Manager [7000] - The Intel® Management and Security Application Local Management Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 11:18:50 PM, Error: Service Control Manager [7022] - The Windows Font Cache Service service hung on starting.
11/21/2012 11:16:46 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
11/21/2012 11:15:15 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service vds with arguments "" in order to run the server: {7D1933CB-86F6-4A98-8628-01BE94C9A575}
11/21/2012 11:14:45 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Virtual Disk service to connect.
11/21/2012 11:14:45 PM, Error: Service Control Manager [7000] - The Virtual Disk service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 11:04:15 PM, Error: Service Control Manager [7000] - The Background Intelligent Transfer Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 10:44:49 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avast! Antivirus service.
11/21/2012 10:44:04 PM, Error: Service Control Manager [7043] - The Windows Modules Installer service did not shut down properly after receiving a preshutdown control.
11/21/2012 10:43:33 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the gpsvc service.
11/21/2012 10:25:13 PM, Error: Service Control Manager [7001] - The Intel® Management & Security Application User Notification Service service depends on the Intel® Management and Security Application Local Management Service service which failed to start because of the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 10:24:43 PM, Error: Service Control Manager [7000] - The Windows Update service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 10:16:19 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Font Cache Service service to connect.
11/21/2012 10:16:19 PM, Error: Service Control Manager [7000] - The Windows Font Cache Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/21/2012 10:09:50 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000050 (0xfffff860034496bc, 0x0000000000000001, 0xfffff80003401fa2, 0x0000000000000005). A dump was saved in: C:\windows\MEMORY.DMP. Report Id: 112112-36457-01.
.
==== End Of File ===========================

#4 Clairvoyant

Clairvoyant

  • Malware Response Team
  • 1,564 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:somewhere in time
  • Local time:10:17 PM

Posted 29 November 2012 - 01:59 PM

Hello Juliet :),

it seems there is some problem on your HDD.

Please follow these instructions to run the checkdisk windows utility

  • Click the "Windows Orb" Start button, then click Computer.
  • Right-click on the drive that you wish to check > Properties > Tools tab
  • In the "Error checking" section, click on Check now.
  • Place a checkmark in both boxes > Start.
  • If the disk you have chosen is the Windows system disk:
  • A message will notify you that a restart is necessary ask "Do you want to check for hard disk errors the next time you start your computer?".
  • Click Schedule disk check > OK and close all windows.
  • Re-start the computer. The disk will be checked when the system boots.
  • This will take some time to run and at times may appear stalled but just let it run.
  • When the disk check is complete, the system will re-start automatically and load Windows.

A log of the disk check is recorded only if the scheduled re-start is used, and only for drives on the same HDD as the Operating System.
To open Event Viewer and view the log:

  • Click the "Windows Orb" Start button -> type "eventvwr" without the quotes -> press the <ENTER> key.
  • The Event Viewer window will open.
  • In the left pane, expand "Windows Logs" and then click on Application.
  • In the right pane, at the top, click on the column heading Source to sort the list alphabetically.
  • Look in the Source column for "Wininit", with an entry corresponding to the date and time of the disk check.
  • Click on that Wininit entry to select it.
  • On the top main menu, click Action > Copy > Copy Details as Text.
  • Paste the contents into your next reply.
then

  • Download TDSSKiller and save it to your Desktop
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan
  • If an infected file is detected, the default action will be Cure, click on Continue
  • If a suspicious file is detected, the default action will be Skip, click on Continue
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here

Regards

#5 julietmonet

julietmonet
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 01 December 2012 - 02:05 PM

I DID EXACTLY WHAT YOU SAID AS FAR AS THE DISK CHECK GOES BUT SINCE IT'S HAVING TROUBLE RESTARTING IT WONT PERFORM THE TASK. IT STILL IS TRYING TO CONFIGURE MY COMPUTER EVERY TIME I RESTART AND ENDS UP RESTARTING SEVERAL TIMES (ITSELF) TILL IT EVENTUALLY TAKES ME TO MY LOG IN SCREEN. I HOWEVER FOUND THE LATEST DISK CHECK IN HOPES THAT IT MIGHT HELP. BELOW ARE THE CONTENTS OF MY FIND...


Log Name: Application
Source: Microsoft-Windows-Wininit
Date: 11/29/2012 10:36:46 PM
Event ID: 1001
Task Category: None
Level: Information
Keywords: Classic
User: N/A
Computer: Juliet-PC
Description:


Checking file system on C:
The type of the file system is NTFS.
Volume label is OS.


One of your disks needs to be checked for consistency. You
may cancel the disk check, but it is strongly recommended
that you continue.
Windows will now check the disk.

CHKDSK is verifying files (stage 1 of 3)...
183296 file records processed.

File verification completed.
428 large file records processed.

0 bad file records processed.

0 EA records processed.

43 reparse records processed.

CHKDSK is verifying indexes (stage 2 of 3)...
The file reference 0x3000000011437 of index entry WmiPrvSD.dll of index $I30
with parent 0x1e9a is not the same as 0x41000000011437.
Deleting index entry WmiPrvSD.dll in index $I30 of file 7834.
Unable to locate the file name attribute of index entry 32C943873CC624333BD0BF2A77384240.mof
of index $I30 with parent 0x1e9b in file 0x11436.
Deleting index entry 32C943873CC624333BD0BF2A77384240.mof in index $I30 of file 7835.
Unable to locate the file name attribute of index entry 32C943~1.MOF
of index $I30 with parent 0x1e9b in file 0x11436.
Deleting index entry 32C943~1.MOF in index $I30 of file 7835.
The file reference 0x3000000011437 of index entry WmiPrvSD.dll of index $I30
with parent 0x34b3 is not the same as 0x41000000011437.
Deleting index entry WmiPrvSD.dll in index $I30 of file 13491.
236650 index entries processed.

Index verification completed.
0 unindexed files scanned.

0 unindexed files recovered.

CHKDSK is verifying security descriptors (stage 3 of 3)...
183296 file SDs/SIDs processed.

Cleaning up 31 unused index entries from index $SII of file 0x9.
Cleaning up 31 unused index entries from index $SDH of file 0x9.
Cleaning up 31 unused security descriptors.
Security descriptor verification completed.
26678 data files processed.

CHKDSK is verifying Usn Journal...
34451288 USN bytes processed.

Usn Journal verification completed.
Windows has checked the file system and found no problems.

472922135 KB total disk space.
109332224 KB in 129595 files.
75696 KB in 26679 indexes.
4 KB in bad sectors.
298639 KB in use by the system.
65536 KB occupied by the log file.
363215572 KB available on disk.

4096 bytes in each allocation unit.
118230533 total allocation units on disk.
90803893 allocation units available on disk.

Internal Info:
00 cc 02 00 7d 62 02 00 58 66 04 00 00 00 00 00 ....}b..Xf......
ea 07 00 00 2b 00 00 00 00 00 00 00 00 00 00 00 ....+...........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................

Windows has finished checking your disk.
Please wait while your computer restarts.

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Wininit" Guid="{206f6dea-d3c5-4d10-bc72-989f03c8b84b}" EventSourceName="Wininit" />
<EventID Qualifiers="16384">1001</EventID>
<Version>0</Version>
<Level>4</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2012-11-30T06:36:46.000000000Z" />
<EventRecordID>23622</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>Juliet-PC</Computer>
<Security />
</System>
<EventData>
<Data>

Checking file system on C:
The type of the file system is NTFS.
Volume label is OS.


One of your disks needs to be checked for consistency. You
may cancel the disk check, but it is strongly recommended
that you continue.
Windows will now check the disk.

CHKDSK is verifying files (stage 1 of 3)...
183296 file records processed.

File verification completed.
428 large file records processed.

0 bad file records processed.

0 EA records processed.

43 reparse records processed.

CHKDSK is verifying indexes (stage 2 of 3)...
The file reference 0x3000000011437 of index entry WmiPrvSD.dll of index $I30
with parent 0x1e9a is not the same as 0x41000000011437.
Deleting index entry WmiPrvSD.dll in index $I30 of file 7834.
Unable to locate the file name attribute of index entry 32C943873CC624333BD0BF2A77384240.mof
of index $I30 with parent 0x1e9b in file 0x11436.
Deleting index entry 32C943873CC624333BD0BF2A77384240.mof in index $I30 of file 7835.
Unable to locate the file name attribute of index entry 32C943~1.MOF
of index $I30 with parent 0x1e9b in file 0x11436.
Deleting index entry 32C943~1.MOF in index $I30 of file 7835.
The file reference 0x3000000011437 of index entry WmiPrvSD.dll of index $I30
with parent 0x34b3 is not the same as 0x41000000011437.
Deleting index entry WmiPrvSD.dll in index $I30 of file 13491.
236650 index entries processed.

Index verification completed.
0 unindexed files scanned.

0 unindexed files recovered.

CHKDSK is verifying security descriptors (stage 3 of 3)...
183296 file SDs/SIDs processed.

Cleaning up 31 unused index entries from index $SII of file 0x9.
Cleaning up 31 unused index entries from index $SDH of file 0x9.
Cleaning up 31 unused security descriptors.
Security descriptor verification completed.
26678 data files processed.

CHKDSK is verifying Usn Journal...
34451288 USN bytes processed.

Usn Journal verification completed.
Windows has checked the file system and found no problems.

472922135 KB total disk space.
109332224 KB in 129595 files.
75696 KB in 26679 indexes.
4 KB in bad sectors.
298639 KB in use by the system.
65536 KB occupied by the log file.
363215572 KB available on disk.

4096 bytes in each allocation unit.
118230533 total allocation units on disk.
90803893 allocation units available on disk.

Internal Info:
00 cc 02 00 7d 62 02 00 58 66 04 00 00 00 00 00 ....}b..Xf......
ea 07 00 00 2b 00 00 00 00 00 00 00 00 00 00 00 ....+...........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................

Windows has finished checking your disk.
Please wait while your computer restarts.
</Data>
</EventData>
</Event>



HERE IS THE TDSSKILLER REPORT:


11:03:09.0680 0584 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
11:03:10.0064 0584 ============================================================
11:03:10.0064 0584 Current date / time: 2012/12/01 11:03:10.0064
11:03:10.0064 0584 SystemInfo:
11:03:10.0064 0584
11:03:10.0064 0584 OS Version: 6.1.7601 ServicePack: 1.0
11:03:10.0064 0584 Product type: Workstation
11:03:10.0064 0584 ComputerName: JULIET-PC
11:03:10.0065 0584 UserName: Juliet
11:03:10.0065 0584 Windows directory: C:\windows
11:03:10.0065 0584 System windows directory: C:\windows
11:03:10.0065 0584 Running under WOW64
11:03:10.0065 0584 Processor architecture: Intel x64
11:03:10.0065 0584 Number of processors: 4
11:03:10.0065 0584 Page size: 0x1000
11:03:10.0065 0584 Boot type: Normal boot
11:03:10.0065 0584 ============================================================
11:03:10.0583 0584 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:03:10.0592 0584 ============================================================
11:03:10.0592 0584 \Device\Harddisk0\DR0:
11:03:10.0592 0584 MBR partitions:
11:03:10.0592 0584 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
11:03:10.0592 0584 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
11:03:10.0592 0584 ============================================================
11:03:10.0612 0584 C: <-> \Device\Harddisk0\DR0\Partition2
11:03:10.0612 0584 ============================================================
11:03:10.0612 0584 Initialize success
11:03:10.0612 0584 ============================================================
11:03:12.0203 2832 ============================================================
11:03:12.0203 2832 Scan started
11:03:12.0203 2832 Mode: Manual;
11:03:12.0203 2832 ============================================================
11:03:12.0648 2832 ================ Scan system memory ========================
11:03:12.0648 2832 System memory - ok
11:03:12.0648 2832 ================ Scan services =============================
11:03:13.0290 2832 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
11:03:13.0297 2832 1394ohci - ok
11:03:13.0326 2832 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
11:03:13.0334 2832 ACPI - ok
11:03:13.0365 2832 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
11:03:13.0369 2832 AcpiPmi - ok
11:03:13.0496 2832 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:03:13.0501 2832 AdobeARMservice - ok
11:03:13.0541 2832 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
11:03:13.0553 2832 adp94xx - ok
11:03:13.0595 2832 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
11:03:13.0604 2832 adpahci - ok
11:03:13.0626 2832 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
11:03:13.0631 2832 adpu320 - ok
11:03:13.0674 2832 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
11:03:13.0677 2832 AeLookupSvc - ok
11:03:13.0807 2832 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
11:03:13.0808 2832 AESTFilters - ok
11:03:13.0864 2832 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
11:03:13.0873 2832 AFD - ok
11:03:13.0937 2832 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
11:03:13.0940 2832 agp440 - ok
11:03:13.0967 2832 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
11:03:13.0971 2832 ALG - ok
11:03:14.0003 2832 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
11:03:14.0007 2832 aliide - ok
11:03:14.0025 2832 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
11:03:14.0029 2832 amdide - ok
11:03:14.0051 2832 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
11:03:14.0054 2832 AmdK8 - ok
11:03:14.0068 2832 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
11:03:14.0071 2832 AmdPPM - ok
11:03:14.0099 2832 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
11:03:14.0103 2832 amdsata - ok
11:03:14.0137 2832 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
11:03:14.0144 2832 amdsbs - ok
11:03:14.0163 2832 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
11:03:14.0164 2832 amdxata - ok
11:03:14.0210 2832 [ 6690E42CED5D067233ABAD42DA141213 ] ApfiltrService C:\windows\system32\DRIVERS\Apfiltr.sys
11:03:14.0216 2832 ApfiltrService - ok
11:03:14.0263 2832 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
11:03:14.0267 2832 AppID - ok
11:03:14.0299 2832 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
11:03:14.0302 2832 AppIDSvc - ok
11:03:14.0320 2832 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
11:03:14.0323 2832 Appinfo - ok
11:03:14.0416 2832 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:03:14.0419 2832 Apple Mobile Device - ok
11:03:14.0457 2832 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
11:03:14.0461 2832 arc - ok
11:03:14.0498 2832 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
11:03:14.0502 2832 arcsas - ok
11:03:14.0770 2832 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:03:14.0787 2832 aspnet_state - ok
11:03:14.0831 2832 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
11:03:14.0832 2832 aswFsBlk - ok
11:03:14.0882 2832 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
11:03:14.0884 2832 aswMonFlt - ok
11:03:14.0928 2832 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
11:03:14.0930 2832 aswRdr - ok
11:03:14.0996 2832 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\windows\system32\drivers\aswSnx.sys
11:03:15.0007 2832 aswSnx - ok
11:03:15.0045 2832 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\windows\system32\drivers\aswSP.sys
11:03:15.0051 2832 aswSP - ok
11:03:15.0310 2832 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
11:03:15.0311 2832 aswTdi - ok
11:03:15.0334 2832 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
11:03:15.0337 2832 AsyncMac - ok
11:03:15.0369 2832 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
11:03:15.0370 2832 atapi - ok
11:03:15.0611 2832 [ 5493ED5D300AFC7A9A0A87FCA08E5381 ] athr C:\windows\system32\DRIVERS\athrx.sys
11:03:15.0691 2832 athr - ok
11:03:15.0745 2832 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
11:03:15.0768 2832 AudioEndpointBuilder - ok
11:03:15.0799 2832 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
11:03:15.0805 2832 AudioSrv - ok
11:03:15.0915 2832 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
11:03:15.0916 2832 avast! Antivirus - ok
11:03:15.0983 2832 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
11:03:15.0984 2832 AxInstSV - ok
11:03:16.0028 2832 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
11:03:16.0036 2832 b06bdrv - ok
11:03:16.0076 2832 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
11:03:16.0084 2832 b57nd60a - ok
11:03:16.0124 2832 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
11:03:16.0128 2832 BDESVC - ok
11:03:16.0146 2832 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
11:03:16.0150 2832 Beep - ok
11:03:16.0204 2832 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
11:03:16.0227 2832 BFE - ok
11:03:16.0284 2832 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
11:03:16.0314 2832 BITS - ok
11:03:16.0336 2832 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
11:03:16.0339 2832 blbdrive - ok
11:03:16.0390 2832 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:03:16.0399 2832 Bonjour Service - ok
11:03:16.0437 2832 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
11:03:16.0445 2832 bowser - ok
11:03:16.0488 2832 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
11:03:16.0492 2832 BrFiltLo - ok
11:03:16.0507 2832 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
11:03:16.0510 2832 BrFiltUp - ok
11:03:16.0544 2832 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
11:03:16.0548 2832 BridgeMP - ok
11:03:16.0589 2832 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
11:03:16.0591 2832 Browser - ok
11:03:16.0625 2832 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
11:03:16.0632 2832 Brserid - ok
11:03:16.0649 2832 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
11:03:16.0653 2832 BrSerWdm - ok
11:03:16.0664 2832 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
11:03:16.0667 2832 BrUsbMdm - ok
11:03:16.0672 2832 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
11:03:16.0674 2832 BrUsbSer - ok
11:03:16.0715 2832 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
11:03:16.0719 2832 BthEnum - ok
11:03:16.0744 2832 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
11:03:16.0748 2832 BTHMODEM - ok
11:03:16.0771 2832 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
11:03:16.0775 2832 BthPan - ok
11:03:16.0844 2832 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
11:03:16.0867 2832 BTHPORT - ok
11:03:16.0903 2832 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
11:03:16.0907 2832 bthserv - ok
11:03:16.0949 2832 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
11:03:16.0950 2832 BTHUSB - ok
11:03:16.0981 2832 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
11:03:16.0986 2832 cdfs - ok
11:03:17.0021 2832 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
11:03:17.0024 2832 cdrom - ok
11:03:17.0058 2832 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
11:03:17.0060 2832 CertPropSvc - ok
11:03:17.0098 2832 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
11:03:17.0101 2832 circlass - ok
11:03:17.0124 2832 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
11:03:17.0130 2832 CLFS - ok
11:03:17.0200 2832 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:03:17.0205 2832 clr_optimization_v2.0.50727_32 - ok
11:03:17.0278 2832 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:03:17.0290 2832 clr_optimization_v2.0.50727_64 - ok
11:03:17.0368 2832 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:03:17.0421 2832 clr_optimization_v4.0.30319_32 - ok
11:03:17.0448 2832 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:03:17.0470 2832 clr_optimization_v4.0.30319_64 - ok
11:03:17.0499 2832 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
11:03:17.0501 2832 CmBatt - ok
11:03:17.0533 2832 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
11:03:17.0540 2832 cmdide - ok
11:03:17.0598 2832 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
11:03:17.0609 2832 CNG - ok
11:03:17.0633 2832 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
11:03:17.0634 2832 Compbatt - ok
11:03:17.0668 2832 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
11:03:17.0671 2832 CompositeBus - ok
11:03:17.0682 2832 COMSysApp - ok
11:03:17.0708 2832 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
11:03:17.0711 2832 crcdisk - ok
11:03:17.0769 2832 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
11:03:17.0773 2832 CryptSvc - ok
11:03:17.0837 2832 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\windows\system32\DRIVERS\CtClsFlt.sys
11:03:17.0841 2832 CtClsFlt - ok
11:03:17.0897 2832 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
11:03:17.0927 2832 DcomLaunch - ok
11:03:17.0971 2832 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
11:03:17.0978 2832 defragsvc - ok
11:03:18.0019 2832 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
11:03:18.0023 2832 DfsC - ok
11:03:18.0091 2832 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
11:03:18.0102 2832 Dhcp - ok
11:03:18.0124 2832 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
11:03:18.0127 2832 discache - ok
11:03:18.0169 2832 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
11:03:18.0172 2832 Disk - ok
11:03:18.0188 2832 dldo_device - ok
11:03:18.0244 2832 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
11:03:18.0255 2832 Dnscache - ok
11:03:18.0292 2832 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
11:03:18.0298 2832 dot3svc - ok
11:03:18.0313 2832 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
11:03:18.0318 2832 DPS - ok
11:03:18.0345 2832 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
11:03:18.0348 2832 drmkaud - ok
11:03:18.0394 2832 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
11:03:18.0408 2832 DXGKrnl - ok
11:03:18.0440 2832 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
11:03:18.0448 2832 EapHost - ok
11:03:18.0700 2832 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
11:03:18.0823 2832 ebdrv - ok
11:03:18.0886 2832 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
11:03:18.0892 2832 EFS - ok
11:03:18.0954 2832 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
11:03:18.0981 2832 ehRecvr - ok
11:03:19.0003 2832 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
11:03:19.0006 2832 ehSched - ok
11:03:19.0085 2832 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
11:03:19.0108 2832 elxstor - ok
11:03:19.0126 2832 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
11:03:19.0129 2832 ErrDev - ok
11:03:19.0178 2832 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
11:03:19.0210 2832 EventSystem - ok
11:03:19.0240 2832 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
11:03:19.0245 2832 exfat - ok
11:03:19.0274 2832 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
11:03:19.0279 2832 fastfat - ok
11:03:19.0326 2832 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
11:03:19.0346 2832 Fax - ok
11:03:19.0363 2832 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
11:03:19.0367 2832 fdc - ok
11:03:19.0401 2832 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
11:03:19.0405 2832 fdPHost - ok
11:03:19.0421 2832 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
11:03:19.0424 2832 FDResPub - ok
11:03:19.0445 2832 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
11:03:19.0448 2832 FileInfo - ok
11:03:19.0460 2832 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
11:03:19.0463 2832 Filetrace - ok
11:03:19.0571 2832 [ B8602C90D3C427D8A86CE60437615CF5 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
11:03:19.0578 2832 FlipShare Service - ok
11:03:19.0777 2832 [ AC5FB7094F31534594CAE48306972CBD ] FlipShareServer C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe
11:03:19.0792 2832 FlipShareServer - ok
11:03:19.0819 2832 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
11:03:19.0823 2832 flpydisk - ok
11:03:19.0842 2832 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
11:03:19.0846 2832 FltMgr - ok
11:03:19.0889 2832 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
11:03:19.0902 2832 FontCache - ok
11:03:19.0939 2832 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:03:19.0951 2832 FontCache3.0.0.0 - ok
11:03:19.0964 2832 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
11:03:19.0972 2832 FsDepends - ok
11:03:20.0001 2832 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
11:03:20.0002 2832 Fs_Rec - ok
11:03:20.0036 2832 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
11:03:20.0042 2832 fvevol - ok
11:03:20.0073 2832 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
11:03:20.0076 2832 gagp30kx - ok
11:03:20.0100 2832 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
11:03:20.0101 2832 GEARAspiWDM - ok
11:03:20.0158 2832 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
11:03:20.0187 2832 gpsvc - ok
11:03:20.0246 2832 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:03:20.0250 2832 gupdate - ok
11:03:20.0258 2832 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:03:20.0260 2832 gupdatem - ok
11:03:20.0297 2832 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
11:03:20.0299 2832 hcw85cir - ok
11:03:20.0338 2832 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
11:03:20.0346 2832 HdAudAddService - ok
11:03:20.0366 2832 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
11:03:20.0370 2832 HDAudBus - ok
11:03:20.0382 2832 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\windows\system32\DRIVERS\HECIx64.sys
11:03:20.0383 2832 HECIx64 - ok
11:03:20.0402 2832 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
11:03:20.0405 2832 HidBatt - ok
11:03:20.0425 2832 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
11:03:20.0429 2832 HidBth - ok
11:03:20.0446 2832 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
11:03:20.0450 2832 HidIr - ok
11:03:20.0476 2832 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
11:03:20.0480 2832 hidserv - ok
11:03:20.0503 2832 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
11:03:20.0507 2832 HidUsb - ok
11:03:20.0538 2832 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
11:03:20.0544 2832 hkmsvc - ok
11:03:20.0561 2832 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
11:03:20.0568 2832 HomeGroupListener - ok
11:03:20.0597 2832 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
11:03:20.0602 2832 HomeGroupProvider - ok
11:03:20.0637 2832 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
11:03:20.0641 2832 HpSAMD - ok
11:03:20.0696 2832 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
11:03:20.0745 2832 HTTP - ok
11:03:20.0759 2832 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
11:03:20.0761 2832 hwpolicy - ok
11:03:20.0783 2832 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
11:03:20.0786 2832 i8042prt - ok
11:03:20.0830 2832 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
11:03:20.0837 2832 iaStor - ok
11:03:20.0900 2832 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
11:03:20.0901 2832 IAStorDataMgrSvc - ok
11:03:20.0939 2832 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
11:03:20.0948 2832 iaStorV - ok
11:03:21.0075 2832 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:03:21.0127 2832 idsvc - ok
11:03:21.0758 2832 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
11:03:22.0014 2832 igfx - ok
11:03:22.0073 2832 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
11:03:22.0076 2832 iirsp - ok
11:03:22.0135 2832 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
11:03:22.0171 2832 IKEEXT - ok
11:03:22.0224 2832 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\windows\system32\DRIVERS\Impcd.sys
11:03:22.0230 2832 Impcd - ok
11:03:22.0276 2832 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
11:03:22.0283 2832 IntcDAud - ok
11:03:22.0306 2832 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
11:03:22.0309 2832 intelide - ok
11:03:22.0339 2832 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
11:03:22.0342 2832 intelppm - ok
11:03:22.0375 2832 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
11:03:22.0377 2832 IPBusEnum - ok
11:03:22.0409 2832 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
11:03:22.0411 2832 IpFilterDriver - ok
11:03:22.0474 2832 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
11:03:22.0501 2832 iphlpsvc - ok
11:03:22.0524 2832 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
11:03:22.0529 2832 IPMIDRV - ok
11:03:22.0575 2832 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
11:03:22.0577 2832 IPNAT - ok
11:03:22.0662 2832 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:03:22.0691 2832 iPod Service - ok
11:03:22.0721 2832 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
11:03:22.0724 2832 IRENUM - ok
11:03:22.0746 2832 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
11:03:22.0748 2832 isapnp - ok
11:03:22.0774 2832 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
11:03:22.0781 2832 iScsiPrt - ok
11:03:22.0808 2832 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
11:03:22.0809 2832 kbdclass - ok
11:03:22.0831 2832 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
11:03:22.0839 2832 kbdhid - ok
11:03:22.0871 2832 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
11:03:22.0874 2832 KeyIso - ok
11:03:22.0912 2832 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
11:03:22.0915 2832 KSecDD - ok
11:03:22.0928 2832 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
11:03:22.0932 2832 KSecPkg - ok
11:03:22.0955 2832 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
11:03:22.0957 2832 ksthunk - ok
11:03:22.0995 2832 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
11:03:23.0037 2832 KtmRm - ok
11:03:23.0090 2832 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
11:03:23.0102 2832 LanmanServer - ok
11:03:23.0131 2832 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
11:03:23.0140 2832 LanmanWorkstation - ok
11:03:23.0164 2832 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
11:03:23.0167 2832 lltdio - ok
11:03:23.0201 2832 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
11:03:23.0212 2832 lltdsvc - ok
11:03:23.0242 2832 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
11:03:23.0245 2832 lmhosts - ok
11:03:23.0314 2832 [ 23D990150D56B670A62B21B9ABDD45EE ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:03:23.0322 2832 LMS - ok
11:03:23.0358 2832 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
11:03:23.0361 2832 LSI_FC - ok
11:03:23.0387 2832 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
11:03:23.0390 2832 LSI_SAS - ok
11:03:23.0404 2832 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
11:03:23.0409 2832 LSI_SAS2 - ok
11:03:23.0430 2832 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
11:03:23.0436 2832 LSI_SCSI - ok
11:03:23.0470 2832 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
11:03:23.0471 2832 luafv - ok
11:03:23.0487 2832 McMPFSvc - ok
11:03:23.0515 2832 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
11:03:23.0519 2832 Mcx2Svc - ok
11:03:23.0535 2832 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
11:03:23.0538 2832 megasas - ok
11:03:23.0573 2832 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
11:03:23.0581 2832 MegaSR - ok
11:03:23.0659 2832 Microsoft SharePoint Workspace Audit Service - ok
11:03:23.0675 2832 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
11:03:23.0684 2832 MMCSS - ok
11:03:23.0710 2832 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
11:03:23.0713 2832 Modem - ok
11:03:23.0742 2832 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
11:03:23.0745 2832 monitor - ok
11:03:23.0767 2832 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
11:03:23.0768 2832 mouclass - ok
11:03:23.0784 2832 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
11:03:23.0787 2832 mouhid - ok
11:03:23.0810 2832 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
11:03:23.0812 2832 mountmgr - ok
11:03:23.0839 2832 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
11:03:23.0847 2832 mpio - ok
11:03:23.0873 2832 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
11:03:23.0876 2832 mpsdrv - ok
11:03:23.0936 2832 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
11:03:23.0974 2832 MpsSvc - ok
11:03:23.0981 2832 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
11:03:23.0984 2832 MRxDAV - ok
11:03:24.0012 2832 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
11:03:24.0016 2832 mrxsmb - ok
11:03:24.0040 2832 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
11:03:24.0049 2832 mrxsmb10 - ok
11:03:24.0068 2832 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
11:03:24.0072 2832 mrxsmb20 - ok
11:03:24.0080 2832 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
11:03:24.0081 2832 msahci - ok
11:03:24.0101 2832 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
11:03:24.0106 2832 msdsm - ok
11:03:24.0148 2832 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
11:03:24.0156 2832 MSDTC - ok
11:03:24.0198 2832 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
11:03:24.0201 2832 Msfs - ok
11:03:24.0231 2832 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
11:03:24.0234 2832 mshidkmdf - ok
11:03:24.0247 2832 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
11:03:24.0248 2832 msisadrv - ok
11:03:24.0315 2832 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
11:03:24.0327 2832 MSiSCSI - ok
11:03:24.0334 2832 msiserver - ok
11:03:24.0354 2832 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
11:03:24.0357 2832 MSKSSRV - ok
11:03:24.0362 2832 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
11:03:24.0364 2832 MSPCLOCK - ok
11:03:24.0379 2832 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
11:03:24.0381 2832 MSPQM - ok
11:03:24.0407 2832 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
11:03:24.0413 2832 MsRPC - ok
11:03:24.0428 2832 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
11:03:24.0429 2832 mssmbios - ok
11:03:24.0437 2832 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
11:03:24.0444 2832 MSTEE - ok
11:03:24.0462 2832 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
11:03:24.0466 2832 MTConfig - ok
11:03:24.0483 2832 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
11:03:24.0485 2832 Mup - ok
11:03:24.0523 2832 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
11:03:24.0545 2832 napagent - ok
11:03:24.0597 2832 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
11:03:24.0604 2832 NativeWifiP - ok
11:03:24.0733 2832 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
11:03:24.0743 2832 NAUpdate - ok
11:03:24.0886 2832 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
11:03:24.0912 2832 NDIS - ok
11:03:24.0945 2832 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
11:03:24.0946 2832 NdisCap - ok
11:03:24.0968 2832 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
11:03:24.0971 2832 NdisTapi - ok
11:03:24.0992 2832 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
11:03:24.0994 2832 Ndisuio - ok
11:03:25.0014 2832 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
11:03:25.0020 2832 NdisWan - ok
11:03:25.0041 2832 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
11:03:25.0044 2832 NDProxy - ok
11:03:25.0069 2832 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
11:03:25.0072 2832 NetBIOS - ok
11:03:25.0093 2832 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
11:03:25.0100 2832 NetBT - ok
11:03:25.0116 2832 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
11:03:25.0118 2832 Netlogon - ok
11:03:25.0161 2832 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
11:03:25.0182 2832 Netman - ok
11:03:25.0212 2832 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:03:25.0247 2832 NetMsmqActivator - ok
11:03:25.0255 2832 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:03:25.0259 2832 NetPipeActivator - ok
11:03:25.0286 2832 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
11:03:25.0295 2832 netprofm - ok
11:03:25.0303 2832 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:03:25.0307 2832 NetTcpActivator - ok
11:03:25.0324 2832 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:03:25.0326 2832 NetTcpPortSharing - ok
11:03:25.0370 2832 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
11:03:25.0375 2832 nfrd960 - ok
11:03:25.0414 2832 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
11:03:25.0426 2832 NlaSvc - ok
11:03:25.0726 2832 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
11:03:25.0751 2832 NOBU - ok
11:03:25.0766 2832 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
11:03:25.0768 2832 Npfs - ok
11:03:25.0790 2832 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
11:03:25.0794 2832 nsi - ok
11:03:25.0813 2832 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
11:03:25.0816 2832 nsiproxy - ok
11:03:25.0952 2832 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
11:03:26.0006 2832 Ntfs - ok
11:03:26.0018 2832 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
11:03:26.0021 2832 Null - ok
11:03:26.0053 2832 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
11:03:26.0057 2832 nvraid - ok
11:03:26.0077 2832 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
11:03:26.0082 2832 nvstor - ok
11:03:26.0121 2832 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
11:03:26.0124 2832 nv_agp - ok
11:03:26.0141 2832 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
11:03:26.0145 2832 ohci1394 - ok
11:03:26.0229 2832 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:03:26.0234 2832 ose - ok
11:03:26.0623 2832 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:03:26.0749 2832 osppsvc - ok
11:03:26.0806 2832 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
11:03:26.0817 2832 p2pimsvc - ok
11:03:26.0910 2832 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
11:03:26.0943 2832 p2psvc - ok
11:03:26.0964 2832 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
11:03:26.0968 2832 Parport - ok
11:03:26.0994 2832 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
11:03:26.0999 2832 partmgr - ok
11:03:27.0027 2832 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
11:03:27.0032 2832 PcaSvc - ok
11:03:27.0069 2832 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
11:03:27.0073 2832 pci - ok
11:03:27.0091 2832 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
11:03:27.0094 2832 pciide - ok
11:03:27.0118 2832 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
11:03:27.0123 2832 pcmcia - ok
11:03:27.0137 2832 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
11:03:27.0139 2832 pcw - ok
11:03:27.0165 2832 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
11:03:27.0188 2832 PEAUTH - ok
11:03:27.0365 2832 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
11:03:27.0370 2832 PerfHost - ok
11:03:27.0449 2832 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
11:03:27.0506 2832 pla - ok
11:03:27.0541 2832 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
11:03:27.0553 2832 PlugPlay - ok
11:03:27.0574 2832 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
11:03:27.0581 2832 PNRPAutoReg - ok
11:03:27.0598 2832 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
11:03:27.0604 2832 PNRPsvc - ok
11:03:27.0643 2832 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
11:03:27.0665 2832 PolicyAgent - ok
11:03:27.0710 2832 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\windows\system32\umpo.dll
11:03:27.0721 2832 Power - ok
11:03:27.0762 2832 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
11:03:27.0771 2832 PptpMiniport - ok
11:03:27.0795 2832 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
11:03:27.0798 2832 Processor - ok
11:03:27.0833 2832 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
11:03:27.0843 2832 ProfSvc - ok
11:03:27.0857 2832 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
11:03:27.0860 2832 ProtectedStorage - ok
11:03:27.0882 2832 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
11:03:27.0885 2832 Psched - ok
11:03:27.0913 2832 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
11:03:27.0914 2832 PxHlpa64 - ok
11:03:28.0003 2832 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
11:03:28.0044 2832 ql2300 - ok
11:03:28.0068 2832 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
11:03:28.0072 2832 ql40xx - ok
11:03:28.0108 2832 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
11:03:28.0117 2832 QWAVE - ok
11:03:28.0127 2832 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
11:03:28.0131 2832 QWAVEdrv - ok
11:03:28.0169 2832 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
11:03:28.0172 2832 RasAcd - ok
11:03:28.0201 2832 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
11:03:28.0204 2832 RasAgileVpn - ok
11:03:28.0245 2832 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
11:03:28.0254 2832 RasAuto - ok
11:03:28.0267 2832 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
11:03:28.0272 2832 Rasl2tp - ok
11:03:28.0288 2832 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
11:03:28.0298 2832 RasMan - ok
11:03:28.0309 2832 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
11:03:28.0312 2832 RasPppoe - ok
11:03:28.0356 2832 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
11:03:28.0359 2832 RasSstp - ok
11:03:28.0386 2832 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
11:03:28.0392 2832 rdbss - ok
11:03:28.0414 2832 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
11:03:28.0417 2832 rdpbus - ok
11:03:28.0437 2832 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
11:03:28.0439 2832 RDPCDD - ok
11:03:28.0460 2832 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
11:03:28.0463 2832 RDPENCDD - ok
11:03:28.0475 2832 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
11:03:28.0478 2832 RDPREFMP - ok
11:03:28.0511 2832 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
11:03:28.0514 2832 RDPWD - ok
11:03:28.0544 2832 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
11:03:28.0550 2832 rdyboost - ok
11:03:28.0583 2832 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
11:03:28.0590 2832 RemoteAccess - ok
11:03:28.0616 2832 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
11:03:28.0628 2832 RemoteRegistry - ok
11:03:28.0676 2832 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
11:03:28.0681 2832 RFCOMM - ok
11:03:28.0934 2832 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
11:03:28.0995 2832 RoxMediaDB12OEM - ok
11:03:29.0018 2832 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
11:03:29.0020 2832 RoxWatch12 - ok
11:03:29.0040 2832 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
11:03:29.0042 2832 RpcEptMapper - ok
11:03:29.0071 2832 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
11:03:29.0075 2832 RpcLocator - ok
11:03:29.0101 2832 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\System32\rpcss.dll
11:03:29.0109 2832 RpcSs - ok
11:03:29.0132 2832 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
11:03:29.0135 2832 rspndr - ok
11:03:29.0183 2832 [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
11:03:29.0187 2832 RSUSBSTOR - ok
11:03:29.0297 2832 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
11:03:29.0305 2832 RTL8167 - ok
11:03:29.0320 2832 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
11:03:29.0322 2832 SamSs - ok
11:03:29.0363 2832 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
11:03:29.0366 2832 sbp2port - ok
11:03:29.0413 2832 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
11:03:29.0422 2832 SCardSvr - ok
11:03:29.0435 2832 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
11:03:29.0438 2832 scfilter - ok
11:03:29.0469 2832 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
11:03:29.0509 2832 Schedule - ok
11:03:29.0528 2832 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
11:03:29.0529 2832 SCPolicySvc - ok
11:03:29.0550 2832 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
11:03:29.0556 2832 SDRSVC - ok
11:03:29.0572 2832 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
11:03:29.0575 2832 secdrv - ok
11:03:29.0590 2832 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
11:03:29.0595 2832 seclogon - ok
11:03:29.0619 2832 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
11:03:29.0627 2832 SENS - ok
11:03:29.0654 2832 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
11:03:29.0659 2832 SensrSvc - ok
11:03:29.0674 2832 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
11:03:29.0678 2832 Serenum - ok
11:03:29.0700 2832 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
11:03:29.0704 2832 Serial - ok
11:03:29.0723 2832 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
11:03:29.0725 2832 sermouse - ok
11:03:29.0770 2832 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
11:03:29.0775 2832 SessionEnv - ok
11:03:29.0781 2832 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
11:03:29.0783 2832 sffdisk - ok
11:03:29.0787 2832 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
11:03:29.0790 2832 sffp_mmc - ok
11:03:29.0796 2832 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
11:03:29.0798 2832 sffp_sd - ok
11:03:29.0815 2832 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
11:03:29.0818 2832 sfloppy - ok
11:03:29.0906 2832 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
11:03:29.0916 2832 SftService - ok
11:03:29.0983 2832 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
11:03:29.0991 2832 SharedAccess - ok
11:03:30.0023 2832 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
11:03:30.0030 2832 ShellHWDetection - ok
11:03:30.0060 2832 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
11:03:30.0063 2832 SiSRaid2 - ok
11:03:30.0098 2832 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
11:03:30.0101 2832 SiSRaid4 - ok
11:03:30.0132 2832 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
11:03:30.0135 2832 Smb - ok
11:03:30.0194 2832 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
11:03:30.0202 2832 SNMPTRAP - ok
11:03:30.0221 2832 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
11:03:30.0222 2832 spldr - ok
11:03:30.0284 2832 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
11:03:30.0307 2832 Spooler - ok
11:03:30.0502 2832 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
11:03:30.0594 2832 sppsvc - ok
11:03:30.0625 2832 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
11:03:30.0632 2832 sppuinotify - ok
11:03:30.0660 2832 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
11:03:30.0671 2832 srv - ok
11:03:30.0690 2832 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
11:03:30.0699 2832 srv2 - ok
11:03:30.0712 2832 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
11:03:30.0717 2832 srvnet - ok
11:03:30.0754 2832 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
11:03:30.0763 2832 SSDPSRV - ok
11:03:30.0789 2832 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
11:03:30.0794 2832 SstpSvc - ok
11:03:30.0846 2832 [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
11:03:30.0853 2832 STacSV - ok
11:03:30.0871 2832 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
11:03:30.0874 2832 stexstor - ok
11:03:30.0919 2832 [ EBA98394A7D58F7552C52192BD8FA7E6 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
11:03:30.0932 2832 STHDA - ok
11:03:30.0971 2832 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
11:03:31.0005 2832 stisvc - ok
11:03:31.0067 2832 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
11:03:31.0071 2832 stllssvr - ok
11:03:31.0097 2832 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
11:03:31.0099 2832 swenum - ok
11:03:31.0173 2832 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
11:03:31.0202 2832 swprv - ok
11:03:31.0285 2832 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
11:03:31.0354 2832 SysMain - ok
11:03:31.0366 2832 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
11:03:31.0372 2832 TabletInputService - ok
11:03:31.0403 2832 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
11:03:31.0411 2832 TapiSrv - ok
11:03:31.0420 2832 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
11:03:31.0423 2832 TBS - ok
11:03:31.0508 2832 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
11:03:31.0564 2832 Tcpip - ok
11:03:31.0628 2832 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
11:03:31.0646 2832 TCPIP6 - ok
11:03:31.0714 2832 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
11:03:31.0715 2832 tcpipreg - ok
11:03:31.0750 2832 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
11:03:31.0754 2832 TDPIPE - ok
11:03:31.0784 2832 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
11:03:31.0787 2832 TDTCP - ok
11:03:31.0821 2832 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
11:03:31.0825 2832 tdx - ok
11:03:31.0846 2832 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
11:03:31.0848 2832 TermDD - ok
11:03:31.0892 2832 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
11:03:31.0916 2832 TermService - ok
11:03:31.0933 2832 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
11:03:31.0942 2832 Themes - ok
11:03:31.0962 2832 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
11:03:31.0966 2832 THREADORDER - ok
11:03:31.0983 2832 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
11:03:31.0991 2832 TrkWks - ok
11:03:32.0051 2832 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
11:03:32.0056 2832 TrustedInstaller - ok
11:03:32.0068 2832 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
11:03:32.0071 2832 tssecsrv - ok
11:03:32.0100 2832 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
11:03:32.0102 2832 TsUsbFlt - ok
11:03:32.0137 2832 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
11:03:32.0141 2832 TsUsbGD - ok
11:03:32.0174 2832 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
11:03:32.0176 2832 tunnel - ok
11:03:32.0194 2832 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
11:03:32.0198 2832 uagp35 - ok
11:03:32.0216 2832 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
11:03:32.0224 2832 udfs - ok
11:03:32.0262 2832 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
11:03:32.0267 2832 UI0Detect - ok
11:03:32.0296 2832 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
11:03:32.0300 2832 uliagpkx - ok
11:03:32.0324 2832 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
11:03:32.0328 2832 umbus - ok
11:03:32.0353 2832 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
11:03:32.0356 2832 UmPass - ok
11:03:32.0558 2832 [ CBDEE152D73200EE49031A26310B9D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:03:32.0635 2832 UNS - ok
11:03:32.0660 2832 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
11:03:32.0669 2832 upnphost - ok
11:03:32.0713 2832 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
11:03:32.0717 2832 USBAAPL64 - ok
11:03:32.0750 2832 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
11:03:32.0754 2832 usbccgp - ok
11:03:32.0778 2832 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
11:03:32.0784 2832 usbcir - ok
11:03:32.0803 2832 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
11:03:32.0806 2832 usbehci - ok
11:03:32.0832 2832 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
11:03:32.0840 2832 usbhub - ok
11:03:32.0861 2832 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
11:03:32.0864 2832 usbohci - ok
11:03:32.0885 2832 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
11:03:32.0889 2832 usbprint - ok
11:03:32.0934 2832 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
11:03:32.0942 2832 usbscan - ok
11:03:32.0963 2832 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
11:03:32.0968 2832 USBSTOR - ok
11:03:32.0982 2832 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
11:03:32.0985 2832 usbuhci - ok
11:03:33.0009 2832 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
11:03:33.0014 2832 usbvideo - ok
11:03:33.0048 2832 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
11:03:33.0061 2832 UxSms - ok
11:03:33.0073 2832 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
11:03:33.0078 2832 VaultSvc - ok
11:03:33.0099 2832 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
11:03:33.0100 2832 vdrvroot - ok
11:03:33.0120 2832 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
11:03:33.0130 2832 vds - ok
11:03:33.0144 2832 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
11:03:33.0147 2832 vga - ok
11:03:33.0170 2832 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
11:03:33.0173 2832 VgaSave - ok
11:03:33.0196 2832 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
11:03:33.0202 2832 vhdmp - ok
11:03:33.0223 2832 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
11:03:33.0226 2832 viaide - ok
11:03:33.0250 2832 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
11:03:33.0254 2832 volmgr - ok
11:03:33.0276 2832 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
11:03:33.0283 2832 volmgrx - ok
11:03:33.0330 2832 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
11:03:33.0340 2832 volsnap - ok
11:03:33.0377 2832 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
11:03:33.0382 2832 vsmraid - ok
11:03:33.0448 2832 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
11:03:33.0515 2832 VSS - ok
11:03:33.0526 2832 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
11:03:33.0528 2832 vwifibus - ok
11:03:33.0549 2832 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
11:03:33.0550 2832 vwififlt - ok
11:03:33.0579 2832 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
11:03:33.0602 2832 W32Time - ok
11:03:33.0629 2832 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
11:03:33.0632 2832 WacomPen - ok
11:03:33.0674 2832 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
11:03:33.0678 2832 WANARP - ok
11:03:33.0687 2832 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
11:03:33.0690 2832 Wanarpv6 - ok
11:03:33.0859 2832 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
11:03:33.0920 2832 WatAdminSvc - ok
11:03:34.0003 2832 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
11:03:34.0073 2832 wbengine - ok
11:03:34.0105 2832 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
11:03:34.0110 2832 WbioSrvc - ok
11:03:34.0132 2832 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
11:03:34.0153 2832 wcncsvc - ok
11:03:34.0166 2832 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
11:03:34.0172 2832 WcsPlugInService - ok
11:03:34.0201 2832 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
11:03:34.0209 2832 Wd - ok
11:03:34.0239 2832 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
11:03:34.0262 2832 Wdf01000 - ok
11:03:34.0277 2832 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
11:03:34.0285 2832 WdiServiceHost - ok
11:03:34.0291 2832 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
11:03:34.0297 2832 WdiSystemHost - ok
11:03:34.0332 2832 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
11:03:34.0346 2832 WebClient - ok
11:03:34.0388 2832 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
11:03:34.0394 2832 Wecsvc - ok
11:03:34.0405 2832 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
11:03:34.0410 2832 wercplsupport - ok
11:03:34.0430 2832 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
11:03:34.0436 2832 WerSvc - ok
11:03:34.0460 2832 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
11:03:34.0462 2832 WfpLwf - ok
11:03:34.0498 2832 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
11:03:34.0505 2832 WimFltr - ok
11:03:34.0530 2832 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
11:03:34.0533 2832 WIMMount - ok
11:03:34.0555 2832 WinDefend - ok
11:03:34.0562 2832 WinHttpAutoProxySvc - ok
11:03:34.0611 2832 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
11:03:34.0618 2832 Winmgmt - ok
11:03:34.0691 2832 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
11:03:34.0774 2832 WinRM - ok
11:03:34.0835 2832 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
11:03:34.0838 2832 WinUsb - ok
11:03:34.0909 2832 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
11:03:34.0943 2832 Wlansvc - ok
11:03:35.0018 2832 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:03:35.0022 2832 wlcrasvc - ok
11:03:35.0143 2832 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:03:35.0206 2832 wlidsvc - ok
11:03:35.0231 2832 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
11:03:35.0232 2832 WmiAcpi - ok
11:03:35.0253 2832 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
11:03:35.0258 2832 wmiApSrv - ok
11:03:35.0277 2832 WMPNetworkSvc - ok
11:03:35.0300 2832 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
11:03:35.0304 2832 WPCSvc - ok
11:03:35.0326 2832 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
11:03:35.0331 2832 WPDBusEnum - ok
11:03:35.0348 2832 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
11:03:35.0351 2832 ws2ifsl - ok
11:03:35.0377 2832 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
11:03:35.0388 2832 wscsvc - ok
11:03:35.0396 2832 WSearch - ok
11:03:35.0737 2832 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
11:03:35.0763 2832 wuauserv - ok
11:03:35.0843 2832 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
11:03:35.0851 2832 WudfPf - ok
11:03:35.0885 2832 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
11:03:35.0891 2832 WUDFRd - ok
11:03:35.0913 2832 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
11:03:35.0919 2832 wudfsvc - ok
11:03:35.0949 2832 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
11:03:35.0961 2832 WwanSvc - ok
11:03:35.0974 2832 ================ Scan global ===============================
11:03:36.0001 2832 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
11:03:36.0050 2832 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
11:03:36.0069 2832 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
11:03:36.0091 2832 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
11:03:36.0110 2832 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
11:03:36.0120 2832 [Global] - ok
11:03:36.0121 2832 ================ Scan MBR ==================================
11:03:36.0138 2832 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:03:38.0585 2832 \Device\Harddisk0\DR0 - ok
11:03:38.0586 2832 ================ Scan VBR ==================================
11:03:38.0610 2832 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
11:03:38.0612 2832 \Device\Harddisk0\DR0\Partition1 - ok
11:03:38.0630 2832 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
11:03:38.0634 2832 \Device\Harddisk0\DR0\Partition2 - ok
11:03:38.0634 2832 ============================================================
11:03:38.0634 2832 Scan finished
11:03:38.0634 2832 ============================================================
11:03:38.0654 4180 Detected object count: 0
11:03:38.0654 4180 Actual detected object count: 0

#6 Clairvoyant

Clairvoyant

  • Malware Response Team
  • 1,564 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:somewhere in time
  • Local time:10:17 PM

Posted 02 December 2012 - 07:28 AM

Hello Juliet,

bad news for you. :(

It seems the HDD is damaged, so the best thing that you can do now is a backup of all your relevant files.
You have to install another HDD.

Check your warranty status, if it is still applcable you can request the replacement of the device for free, otherwise you have to buy a new one.


Regards

#7 julietmonet

julietmonet
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 02 December 2012 - 08:17 PM

What is a HDD? Is that something I could install online?

#8 Clairvoyant

Clairvoyant

  • Malware Response Team
  • 1,564 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:somewhere in time
  • Local time:10:17 PM

Posted 03 December 2012 - 02:23 PM

Hello Juliet,

unfortunately HDD it's your hard disk.:(
The problems you're experiencing are due to its fault.


Regards

#9 julietmonet

julietmonet
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 03 December 2012 - 03:02 PM

So it's not a virus it's just a faulty computer?

#10 Clairvoyant

Clairvoyant

  • Malware Response Team
  • 1,564 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:somewhere in time
  • Local time:10:17 PM

Posted 03 December 2012 - 04:01 PM

Yes, no malware here.
Your hard disk is damaged and it is VERY important that you make a backup of all your relevant data as soon as possible.

Hard disks in these conditions may stop to work suddenly, and then there is no way to retrieve your data (really there are, but they are very expensive and there is no guarantee about the retrieve of all contents).
Did you check if your warranty is still valid?

If you need assistance about backup activities and with the replacement of your hard disk please let me know.


Regards

#11 julietmonet

julietmonet
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:04:17 PM

Posted 04 December 2012 - 03:43 PM

I'm going to check today is I still have a warranty on it. I plan on cleaning out this computer completely. I backed up everything. Do you have a good cleaning system that removes everything (not the windows vista tho).. Or do you think I should remove everything and download windows again. Just so that they have a good clean area to fix.

#12 Clairvoyant

Clairvoyant

  • Malware Response Team
  • 1,564 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:somewhere in time
  • Local time:10:17 PM

Posted 06 December 2012 - 05:39 PM

Hello Juliet :),

if you want to delete all your data you may follow one of these two ways

In any case please look for your Windows registration key, you may need it after one of these activities are done.
Usually it is on the DVD box or sticked somewhere on your case.

Did you check the warranty status?


Regards

#13 Clairvoyant

Clairvoyant

  • Malware Response Team
  • 1,564 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:somewhere in time
  • Local time:10:17 PM

Posted 09 December 2012 - 08:07 AM

Hello Juliet,
are you still with us?

If you do not reply within the next 2 days this topic will be closed.


Regards

#14 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,984 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:12:17 AM

Posted 11 December 2012 - 04:21 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users