Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 Firewall Appears to Be Not Workinh


  • Please log in to reply
9 replies to this topic

#1 Gaye

Gaye

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 28 November 2012 - 08:32 PM

Mod Edit: Moved to the Am I Infected forum ~boopme


When I click on Windows Firewall, I see it in red and saying "Windows Firewall is not using the recommended settings to protect your computer," and when I click on "use recommended settings," I get "Windows Firewall can't change some of your settings. Error code 0x80070424."

Windows updates are working fine as is Windows Essential Securities. I am also running the subscription (paid) version of Malwarebytes so I assume my computer is clean.

Any hyoup yu can provide will be appreciated.

Gaye

Edited by boopme, 28 November 2012 - 08:36 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:03 PM

Posted 28 November 2012 - 08:33 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Gaye

Gaye
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 01 December 2012 - 05:00 PM

I got through all of the requested downloads and scans. Here are the results.

Thank you so much for helping me!

TDSKiller Log File Report:

10:26:18.0320 8228 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:26:19.0350 8228 ============================================================
10:26:19.0350 8228 Current date / time: 2012/12/01 10:26:19.0350
10:26:19.0350 8228 SystemInfo:
10:26:19.0350 8228
10:26:19.0350 8228 OS Version: 6.1.7601 ServicePack: 1.0
10:26:19.0350 8228 Product type: Workstation
10:26:19.0350 8228 ComputerName: WHITEPOINT
10:26:19.0350 8228 UserName: Gaye Levy
10:26:19.0350 8228 Windows directory: C:\Windows
10:26:19.0351 8228 System windows directory: C:\Windows
10:26:19.0351 8228 Running under WOW64
10:26:19.0351 8228 Processor architecture: Intel x64
10:26:19.0351 8228 Number of processors: 4
10:26:19.0351 8228 Page size: 0x1000
10:26:19.0351 8228 Boot type: Normal boot
10:26:19.0351 8228 ============================================================
10:26:23.0289 8228 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:26:23.0382 8228 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1115E00 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x1D1C11, SectorsPerTrack: 0x20, TracksPerCylinder: 0x40, Type 'W'
10:26:23.0386 8228 ============================================================
10:26:23.0386 8228 \Device\Harddisk0\DR0:
10:26:23.0386 8228 MBR partitions:
10:26:23.0386 8228 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
10:26:23.0386 8228 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0xC4BB82E
10:26:23.0398 8228 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xE23A072, BlocksNum 0x3C61CE4F
10:26:23.0398 8228 \Device\Harddisk1\DR1:
10:26:23.0399 8228 MBR partitions:
10:26:23.0399 8228 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E074C1
10:26:23.0399 8228 ============================================================
10:26:23.0414 8228 S: <-> \Device\Harddisk1\DR1\Partition1
10:26:23.0463 8228 C: <-> \Device\Harddisk0\DR0\Partition2
10:26:23.0597 8228 E: <-> \Device\Harddisk0\DR0\Partition3
10:26:23.0597 8228 ============================================================
10:26:23.0598 8228 Initialize success
10:26:23.0598 8228 ============================================================
10:26:40.0929 4408 ============================================================
10:26:40.0929 4408 Scan started
10:26:40.0929 4408 Mode: Manual; TDLFS;
10:26:40.0929 4408 ============================================================
10:26:41.0463 4408 ================ Scan system memory ========================
10:26:41.0463 4408 System memory - ok
10:26:41.0464 4408 ================ Scan services =============================
10:26:41.0732 4408 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:26:41.0748 4408 1394ohci - ok
10:26:41.0787 4408 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:26:41.0792 4408 ACPI - ok
10:26:41.0878 4408 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:26:41.0879 4408 AcpiPmi - ok
10:26:42.0002 4408 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:26:42.0018 4408 AdobeFlashPlayerUpdateSvc - ok
10:26:42.0071 4408 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:26:42.0078 4408 adp94xx - ok
10:26:42.0122 4408 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:26:42.0128 4408 adpahci - ok
10:26:42.0162 4408 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:26:42.0165 4408 adpu320 - ok
10:26:42.0225 4408 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:26:42.0226 4408 AeLookupSvc - ok
10:26:42.0283 4408 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
10:26:42.0285 4408 AESTFilters - ok
10:26:42.0363 4408 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:26:42.0370 4408 AFD - ok
10:26:42.0555 4408 [ F8D4D4406374F1F591D041D3E936C768 ] AffinegyService C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
10:26:42.0563 4408 AffinegyService - ok
10:26:42.0626 4408 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:26:42.0627 4408 agp440 - ok
10:26:42.0974 4408 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
10:26:42.0974 4408 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
10:26:42.0982 4408 Akamai ( HiddenFile.Multi.Generic ) - warning
10:26:42.0982 4408 Akamai - detected HiddenFile.Multi.Generic (1)
10:26:43.0023 4408 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:26:43.0025 4408 ALG - ok
10:26:43.0087 4408 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:26:43.0089 4408 aliide - ok
10:26:43.0119 4408 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:26:43.0121 4408 amdide - ok
10:26:43.0155 4408 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:26:43.0156 4408 AmdK8 - ok
10:26:43.0191 4408 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:26:43.0193 4408 AmdPPM - ok
10:26:43.0236 4408 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:26:43.0239 4408 amdsata - ok
10:26:43.0262 4408 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:26:43.0265 4408 amdsbs - ok
10:26:43.0293 4408 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:26:43.0294 4408 amdxata - ok
10:26:43.0362 4408 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
10:26:43.0363 4408 AppHostSvc - ok
10:26:43.0453 4408 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:26:43.0471 4408 AppID - ok
10:26:43.0513 4408 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:26:43.0514 4408 AppIDSvc - ok
10:26:43.0572 4408 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:26:43.0573 4408 Appinfo - ok
10:26:43.0652 4408 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:26:43.0654 4408 Apple Mobile Device - ok
10:26:43.0703 4408 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:26:43.0705 4408 arc - ok
10:26:43.0732 4408 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:26:43.0753 4408 arcsas - ok
10:26:43.0897 4408 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:26:43.0899 4408 aspnet_state - ok
10:26:43.0920 4408 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:26:43.0921 4408 AsyncMac - ok
10:26:43.0955 4408 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:26:43.0955 4408 atapi - ok
10:26:43.0999 4408 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:26:44.0008 4408 AudioEndpointBuilder - ok
10:26:44.0021 4408 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:26:44.0026 4408 AudioSrv - ok
10:26:44.0068 4408 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:26:44.0070 4408 AxInstSV - ok
10:26:44.0149 4408 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:26:44.0156 4408 b06bdrv - ok
10:26:44.0212 4408 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:26:44.0217 4408 b57nd60a - ok
10:26:44.0309 4408 [ AC4E2D84DE54CD3A013AEFF0CC56095C ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
10:26:44.0324 4408 BCM42RLY - ok
10:26:44.0393 4408 [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
10:26:44.0421 4408 BCM43XX - ok
10:26:44.0532 4408 [ D224B2E6BB543F1D8F1177D57FEC2950 ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
10:26:44.0533 4408 BcmVWL - ok
10:26:44.0562 4408 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:26:44.0564 4408 BDESVC - ok
10:26:44.0586 4408 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:26:44.0588 4408 Beep - ok
10:26:44.0675 4408 [ 9BB84C554D7429F0A2CDF4EA1836F233 ] Belkin Local Backup Service C:\Program Files\Belkin\Belkin USB Print and Storage Center\BkBackupScheduler.exe
10:26:44.0678 4408 Belkin Local Backup Service - ok
10:26:44.0724 4408 [ E62A04D615A8CAC83601E1F07C010D3C ] Belkin Network USB Helper C:\Program Files\Belkin\Belkin USB Print and Storage Center\Bkapcs.exe
10:26:44.0725 4408 Belkin Network USB Helper - ok
10:26:44.0800 4408 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:26:44.0809 4408 BFE - ok
10:26:44.0882 4408 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
10:26:44.0896 4408 BITS - ok
10:26:44.0939 4408 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:26:44.0940 4408 blbdrive - ok
10:26:45.0049 4408 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:26:45.0056 4408 Bonjour Service - ok
10:26:45.0082 4408 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:26:45.0084 4408 bowser - ok
10:26:45.0235 4408 [ C6C3336581BE530381E933FAD497CE7F ] BRA_Scheduler C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
10:26:45.0237 4408 BRA_Scheduler - ok
10:26:45.0261 4408 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:26:45.0263 4408 BrFiltLo - ok
10:26:45.0381 4408 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:26:45.0383 4408 BrFiltUp - ok
10:26:45.0410 4408 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
10:26:45.0412 4408 BridgeMP - ok
10:26:45.0451 4408 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:26:45.0454 4408 Browser - ok
10:26:45.0486 4408 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\system32\DRIVERS\BrSerId.sys
10:26:45.0490 4408 Brserid - ok
10:26:45.0510 4408 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:26:45.0511 4408 BrSerWdm - ok
10:26:45.0525 4408 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:26:45.0527 4408 BrUsbMdm - ok
10:26:45.0539 4408 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\DRIVERS\BrUsbSer.sys
10:26:45.0541 4408 BrUsbSer - ok
10:26:45.0568 4408 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:26:45.0570 4408 BTHMODEM - ok
10:26:45.0598 4408 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:26:45.0599 4408 bthserv - ok
10:26:46.0206 4408 [ BCB2E1D61E0B31729C5A9DDD09AC5073 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
10:26:46.0321 4408 CarboniteService - ok
10:26:46.0355 4408 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:26:46.0357 4408 cdfs - ok
10:26:46.0405 4408 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:26:46.0408 4408 cdrom - ok
10:26:46.0436 4408 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:26:46.0437 4408 CertPropSvc - ok
10:26:46.0464 4408 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:26:46.0465 4408 circlass - ok
10:26:46.0493 4408 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:\Windows\system32\CISVC.EXE
10:26:46.0493 4408 CISVC - ok
10:26:46.0533 4408 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:26:46.0538 4408 CLFS - ok
10:26:46.0603 4408 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:26:46.0618 4408 clr_optimization_v2.0.50727_32 - ok
10:26:46.0674 4408 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:26:46.0684 4408 clr_optimization_v2.0.50727_64 - ok
10:26:46.0736 4408 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:26:46.0739 4408 clr_optimization_v4.0.30319_32 - ok
10:26:46.0763 4408 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:26:46.0766 4408 clr_optimization_v4.0.30319_64 - ok
10:26:46.0803 4408 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:26:46.0804 4408 CmBatt - ok
10:26:46.0852 4408 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:26:46.0853 4408 cmdide - ok
10:26:46.0897 4408 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
10:26:46.0903 4408 CNG - ok
10:26:46.0943 4408 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:26:46.0943 4408 Compbatt - ok
10:26:46.0972 4408 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:26:46.0973 4408 CompositeBus - ok
10:26:46.0987 4408 COMSysApp - ok
10:26:47.0013 4408 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:26:47.0014 4408 crcdisk - ok
10:26:47.0053 4408 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:26:47.0057 4408 CryptSvc - ok
10:26:47.0091 4408 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
10:26:47.0094 4408 CtClsFlt - ok
10:26:47.0146 4408 [ 76E02DB615A03801D698199A2BC4A06A ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
10:26:47.0147 4408 dc3d - ok
10:26:47.0201 4408 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:26:47.0209 4408 DcomLaunch - ok
10:26:47.0261 4408 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:26:47.0266 4408 defragsvc - ok
10:26:47.0296 4408 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:26:47.0298 4408 DfsC - ok
10:26:47.0341 4408 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:26:47.0346 4408 Dhcp - ok
10:26:47.0377 4408 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:26:47.0379 4408 discache - ok
10:26:47.0409 4408 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:26:47.0411 4408 Disk - ok
10:26:47.0438 4408 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:26:47.0442 4408 Dnscache - ok
10:26:47.0499 4408 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
10:26:47.0501 4408 DockLoginService - ok
10:26:47.0556 4408 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:26:47.0560 4408 dot3svc - ok
10:26:47.0587 4408 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:26:47.0590 4408 DPS - ok
10:26:47.0632 4408 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:26:47.0633 4408 drmkaud - ok
10:26:47.0675 4408 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:26:47.0687 4408 DXGKrnl - ok
10:26:47.0750 4408 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:26:47.0753 4408 EapHost - ok
10:26:47.0869 4408 [ 1428AF5504E8D8B353F5136BDECC20CC ] EaseUS Agent C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
10:26:47.0871 4408 EaseUS Agent - ok
10:26:47.0980 4408 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:26:48.0015 4408 ebdrv - ok
10:26:48.0049 4408 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:26:48.0051 4408 EFS - ok
10:26:48.0115 4408 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:26:48.0124 4408 ehRecvr - ok
10:26:48.0146 4408 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:26:48.0148 4408 ehSched - ok
10:26:48.0180 4408 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:26:48.0188 4408 elxstor - ok
10:26:48.0239 4408 [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv C:\Windows\system32\epmntdrv.sys
10:26:48.0256 4408 epmntdrv - ok
10:26:48.0293 4408 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:26:48.0311 4408 ErrDev - ok
10:26:48.0376 4408 [ 268999A7B9AE8F1AB0BF833C264FF2D7 ] EUBAKUP C:\Windows\system32\drivers\eubakup.sys
10:26:48.0376 4408 EUBAKUP - ok
10:26:48.0410 4408 EUBAKUP0 - ok
10:26:48.0427 4408 [ BBB7392DDC92D653AFBF2F93354DB9F2 ] EUBKMON C:\Windows\system32\drivers\EUBKMON.sys
10:26:48.0428 4408 EUBKMON - ok
10:26:48.0433 4408 EUBKMON0 - ok
10:26:48.0458 4408 [ 97CD68DB973DE9C17BE205DD2DE21563 ] EUDISK C:\Windows\system32\drivers\eudisk.sys
10:26:48.0475 4408 EUDISK - ok
10:26:48.0510 4408 [ F5CA6DA167B70478C5AC745BE27AB33E ] EUDSKACS C:\Windows\system32\drivers\eudskacs.sys
10:26:48.0528 4408 EUDSKACS - ok
10:26:48.0566 4408 [ 8CD7997A5A9098F110B14FEAE80FC348 ] EUFDDISK C:\Windows\system32\drivers\EuFdDisk.sys
10:26:48.0585 4408 EUFDDISK - ok
10:26:48.0625 4408 [ 6791502D2E6CB3CA67E43FE003E29E0A ] EUFS C:\Windows\system32\drivers\eufs.sys
10:26:48.0627 4408 EUFS - ok
10:26:48.0683 4408 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
10:26:48.0700 4408 EuGdiDrv - ok
10:26:48.0740 4408 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:26:48.0745 4408 EventSystem - ok
10:26:48.0782 4408 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:26:48.0785 4408 exfat - ok
10:26:48.0839 4408 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:26:48.0842 4408 fastfat - ok
10:26:48.0888 4408 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:26:48.0897 4408 Fax - ok
10:26:48.0921 4408 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:26:48.0922 4408 fdc - ok
10:26:48.0939 4408 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:26:48.0941 4408 fdPHost - ok
10:26:48.0958 4408 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:26:48.0959 4408 FDResPub - ok
10:26:48.0989 4408 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:26:48.0990 4408 FileInfo - ok
10:26:49.0001 4408 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:26:49.0003 4408 Filetrace - ok
10:26:49.0097 4408 [ B8602C90D3C427D8A86CE60437615CF5 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
10:26:49.0104 4408 FlipShare Service - ok
10:26:49.0185 4408 [ AC5FB7094F31534594CAE48306972CBD ] FlipShareServer C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe
10:26:49.0195 4408 FlipShareServer - ok
10:26:49.0211 4408 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:26:49.0213 4408 flpydisk - ok
10:26:49.0243 4408 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:26:49.0247 4408 FltMgr - ok
10:26:49.0318 4408 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
10:26:49.0332 4408 FontCache - ok
10:26:49.0384 4408 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:26:49.0385 4408 FontCache3.0.0.0 - ok
10:26:49.0421 4408 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:26:49.0422 4408 FsDepends - ok
10:26:49.0456 4408 [ B16B626996C74B564005BA855C5DEE90 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:26:49.0458 4408 fssfltr - ok
10:26:49.0485 4408 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:26:49.0487 4408 Fs_Rec - ok
10:26:49.0513 4408 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:26:49.0515 4408 fvevol - ok
10:26:49.0537 4408 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:26:49.0539 4408 gagp30kx - ok
10:26:49.0590 4408 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
10:26:49.0594 4408 GameConsoleService - ok
10:26:49.0641 4408 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:26:49.0642 4408 GEARAspiWDM - ok
10:26:49.0694 4408 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:26:49.0702 4408 gpsvc - ok
10:26:49.0737 4408 [ 922D79BFE60E6277DAA15DFD2A751F4D ] Guard Agent C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe
10:26:49.0739 4408 Guard Agent - ok
10:26:49.0833 4408 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:26:49.0835 4408 gupdate - ok
10:26:49.0867 4408 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:26:49.0867 4408 gupdatem - ok
10:26:49.0901 4408 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:26:49.0902 4408 hcw85cir - ok
10:26:49.0977 4408 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:26:49.0983 4408 HdAudAddService - ok
10:26:50.0025 4408 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:26:50.0028 4408 HDAudBus - ok
10:26:50.0058 4408 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:26:50.0060 4408 HECIx64 - ok
10:26:50.0081 4408 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:26:50.0083 4408 HidBatt - ok
10:26:50.0104 4408 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:26:50.0106 4408 HidBth - ok
10:26:50.0127 4408 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:26:50.0128 4408 HidIr - ok
10:26:50.0149 4408 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
10:26:50.0151 4408 hidserv - ok
10:26:50.0185 4408 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:26:50.0186 4408 HidUsb - ok
10:26:50.0215 4408 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:26:50.0218 4408 hkmsvc - ok
10:26:50.0271 4408 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:26:50.0275 4408 HomeGroupListener - ok
10:26:50.0308 4408 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:26:50.0312 4408 HomeGroupProvider - ok
10:26:50.0338 4408 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:26:50.0340 4408 HpSAMD - ok
10:26:50.0397 4408 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:26:50.0413 4408 HTTP - ok
10:26:50.0468 4408 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:26:50.0469 4408 hwpolicy - ok
10:26:50.0508 4408 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:26:50.0510 4408 i8042prt - ok
10:26:50.0577 4408 [ 2064090C9FAAD92C090D77E50E735B2E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
10:26:50.0583 4408 iaStor - ok
10:26:50.0652 4408 [ A9BE186ABF28B3D3D698CB855EDF457E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:26:50.0653 4408 IAStorDataMgrSvc - ok
10:26:50.0698 4408 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:26:50.0705 4408 iaStorV - ok
10:26:50.0769 4408 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:26:50.0780 4408 idsvc - ok
10:26:52.0040 4408 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:26:52.0268 4408 igfx - ok
10:26:52.0457 4408 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:26:52.0458 4408 iirsp - ok
10:26:52.0515 4408 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:26:52.0529 4408 IKEEXT - ok
10:26:52.0594 4408 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
10:26:52.0597 4408 Impcd - ok
10:26:52.0746 4408 [ C6C1F19205DA83C801BE7C25F4E2EE07 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:26:52.0749 4408 IntcDAud - ok
10:26:52.0764 4408 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:26:52.0765 4408 intelide - ok
10:26:52.0798 4408 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:26:52.0800 4408 intelppm - ok
10:26:52.0918 4408 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
10:26:52.0925 4408 IntuitUpdateService - ok
10:26:52.0996 4408 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
10:26:52.0998 4408 IntuitUpdateServiceV4 - ok
10:26:53.0033 4408 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:26:53.0036 4408 IPBusEnum - ok
10:26:53.0083 4408 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:26:53.0085 4408 IpFilterDriver - ok
10:26:53.0131 4408 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:26:53.0133 4408 IPMIDRV - ok
10:26:53.0184 4408 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:26:53.0196 4408 IPNAT - ok
10:26:53.0301 4408 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:26:53.0313 4408 iPod Service - ok
10:26:53.0347 4408 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:26:53.0349 4408 IRENUM - ok
10:26:53.0392 4408 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:26:53.0396 4408 isapnp - ok
10:26:53.0450 4408 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:26:53.0455 4408 iScsiPrt - ok
10:26:53.0484 4408 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:26:53.0486 4408 kbdclass - ok
10:26:53.0520 4408 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:26:53.0522 4408 kbdhid - ok
10:26:53.0540 4408 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:26:53.0542 4408 KeyIso - ok
10:26:53.0569 4408 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:26:53.0571 4408 KSecDD - ok
10:26:53.0595 4408 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:26:53.0598 4408 KSecPkg - ok
10:26:53.0623 4408 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:26:53.0624 4408 ksthunk - ok
10:26:53.0668 4408 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:26:53.0674 4408 KtmRm - ok
10:26:53.0708 4408 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
10:26:53.0713 4408 LanmanServer - ok
10:26:53.0754 4408 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:26:53.0758 4408 LanmanWorkstation - ok
10:26:53.0799 4408 [ BECBD7CD46776B8739EE18061F45A581 ] LEqdUsb C:\Windows\system32\DRIVERS\LEqdUsb.Sys
10:26:53.0800 4408 LEqdUsb - ok
10:26:53.0844 4408 [ 21D6BD7D62C270059EB8E2B1D4095880 ] LHidEqd C:\Windows\system32\DRIVERS\LHidEqd.Sys
10:26:53.0845 4408 LHidEqd - ok
10:26:53.0873 4408 [ B6552D382FF070B4ED34CBD6737277C0 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
10:26:53.0875 4408 LHidFilt - ok
10:26:53.0899 4408 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:26:53.0901 4408 lltdio - ok
10:26:53.0940 4408 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:26:53.0944 4408 lltdsvc - ok
10:26:53.0962 4408 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:26:53.0963 4408 lmhosts - ok
10:26:53.0990 4408 [ 73C1F563AB73D459DFFE682D66476558 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
10:26:53.0992 4408 LMouFilt - ok
10:26:54.0066 4408 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:26:54.0070 4408 LMS - ok
10:26:54.0105 4408 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:26:54.0108 4408 LSI_FC - ok
10:26:54.0114 4408 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:26:54.0116 4408 LSI_SAS - ok
10:26:54.0140 4408 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:26:54.0142 4408 LSI_SAS2 - ok
10:26:54.0154 4408 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:26:54.0156 4408 LSI_SCSI - ok
10:26:54.0177 4408 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:26:54.0179 4408 luafv - ok
10:26:54.0212 4408 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
10:26:54.0217 4408 LVRS64 - ok
10:26:54.0357 4408 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
10:26:54.0498 4408 LVUVC64 - ok
10:26:54.0555 4408 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:26:54.0556 4408 MBAMProtector - ok
10:26:54.0620 4408 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:26:54.0626 4408 MBAMScheduler - ok
10:26:54.0674 4408 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:26:54.0682 4408 MBAMService - ok
10:26:54.0723 4408 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:26:54.0726 4408 Mcx2Svc - ok
10:26:54.0741 4408 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:26:54.0743 4408 megasas - ok
10:26:54.0773 4408 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:26:54.0777 4408 MegaSR - ok
10:26:54.0804 4408 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:26:54.0806 4408 MMCSS - ok
10:26:54.0817 4408 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:26:54.0818 4408 Modem - ok
10:26:54.0847 4408 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:26:54.0849 4408 monitor - ok
10:26:54.0874 4408 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:26:54.0875 4408 mouclass - ok
10:26:54.0893 4408 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:26:54.0895 4408 mouhid - ok
10:26:54.0935 4408 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:26:54.0936 4408 mountmgr - ok
10:26:54.0979 4408 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
10:26:54.0982 4408 MpFilter - ok
10:26:55.0004 4408 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:26:55.0007 4408 mpio - ok
10:26:55.0038 4408 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:26:55.0039 4408 mpsdrv - ok
10:26:55.0061 4408 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:26:55.0064 4408 MRxDAV - ok
10:26:55.0083 4408 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:26:55.0086 4408 mrxsmb - ok
10:26:55.0113 4408 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:26:55.0117 4408 mrxsmb10 - ok
10:26:55.0149 4408 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:26:55.0151 4408 mrxsmb20 - ok
10:26:55.0172 4408 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:26:55.0172 4408 msahci - ok
10:26:55.0201 4408 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:26:55.0204 4408 msdsm - ok
10:26:55.0234 4408 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:26:55.0237 4408 MSDTC - ok
10:26:55.0276 4408 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:26:55.0277 4408 Msfs - ok
10:26:55.0297 4408 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:26:55.0298 4408 mshidkmdf - ok
10:26:55.0317 4408 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:26:55.0318 4408 msisadrv - ok
10:26:55.0349 4408 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:26:55.0352 4408 MSiSCSI - ok
10:26:55.0357 4408 msiserver - ok
10:26:55.0384 4408 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:26:55.0386 4408 MSKSSRV - ok
10:26:55.0457 4408 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:26:55.0457 4408 MsMpSvc - ok
10:26:55.0484 4408 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:26:55.0485 4408 MSPCLOCK - ok
10:26:55.0497 4408 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:26:55.0498 4408 MSPQM - ok
10:26:55.0522 4408 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:26:55.0527 4408 MsRPC - ok
10:26:55.0556 4408 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:26:55.0558 4408 mssmbios - ok
10:26:55.0592 4408 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:26:55.0593 4408 MSTEE - ok
10:26:55.0620 4408 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:26:55.0622 4408 MTConfig - ok
10:26:55.0635 4408 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:26:55.0636 4408 Mup - ok
10:26:55.0668 4408 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:26:55.0675 4408 napagent - ok
10:26:55.0727 4408 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:26:55.0733 4408 NativeWifiP - ok
10:26:55.0790 4408 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:26:55.0802 4408 NDIS - ok
10:26:55.0822 4408 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:26:55.0824 4408 NdisCap - ok
10:26:55.0855 4408 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:26:55.0856 4408 NdisTapi - ok
10:26:55.0884 4408 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:26:55.0886 4408 Ndisuio - ok
10:26:55.0914 4408 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:26:55.0916 4408 NdisWan - ok
10:26:55.0955 4408 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:26:55.0956 4408 NDProxy - ok
10:26:55.0985 4408 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:26:55.0986 4408 NetBIOS - ok
10:26:56.0010 4408 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:26:56.0013 4408 NetBT - ok
10:26:56.0036 4408 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:26:56.0037 4408 Netlogon - ok
10:26:56.0066 4408 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:26:56.0071 4408 Netman - ok
10:26:56.0101 4408 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:56.0103 4408 NetMsmqActivator - ok
10:26:56.0108 4408 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:56.0109 4408 NetPipeActivator - ok
10:26:56.0131 4408 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:26:56.0137 4408 netprofm - ok
10:26:56.0141 4408 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:26:56.0142 4408 NetTcpActivator - ok
10:26:56.0175 4408 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:26:56.0188 4408 NetTcpPortSharing - ok
10:26:56.0223 4408 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:26:56.0225 4408 nfrd960 - ok
10:26:56.0251 4408 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:26:56.0253 4408 NisDrv - ok
10:26:56.0300 4408 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
10:26:56.0305 4408 NisSrv - ok
10:26:56.0342 4408 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:26:56.0347 4408 NlaSvc - ok
10:26:56.0363 4408 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:26:56.0364 4408 Npfs - ok
10:26:56.0390 4408 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:26:56.0392 4408 nsi - ok
10:26:56.0421 4408 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:26:56.0422 4408 nsiproxy - ok
10:26:56.0587 4408 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:26:56.0631 4408 Ntfs - ok
10:26:56.0709 4408 [ 4C08A14D04E62963E96E0BB57BBC953B ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
10:26:56.0710 4408 NuidFltr - ok
10:26:56.0725 4408 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:26:56.0726 4408 Null - ok
10:26:56.0766 4408 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:26:56.0769 4408 nvraid - ok
10:26:56.0844 4408 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:26:56.0856 4408 nvstor - ok
10:26:56.0896 4408 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:26:56.0899 4408 nv_agp - ok
10:26:56.0938 4408 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:26:56.0940 4408 ohci1394 - ok
10:26:57.0016 4408 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:26:57.0019 4408 ose - ok
10:26:57.0617 4408 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:26:57.0729 4408 osppsvc - ok
10:26:57.0784 4408 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:26:57.0788 4408 p2pimsvc - ok
10:26:57.0824 4408 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:26:57.0830 4408 p2psvc - ok
10:26:57.0851 4408 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:26:57.0853 4408 Parport - ok
10:26:57.0872 4408 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:26:57.0873 4408 partmgr - ok
10:26:57.0886 4408 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:26:57.0889 4408 PcaSvc - ok
10:26:57.0903 4408 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:26:57.0905 4408 pci - ok
10:26:57.0923 4408 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:26:57.0925 4408 pciide - ok
10:26:57.0945 4408 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:26:57.0948 4408 pcmcia - ok
10:26:57.0958 4408 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:26:57.0959 4408 pcw - ok
10:26:57.0979 4408 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:26:57.0996 4408 PEAUTH - ok
10:26:58.0058 4408 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:26:58.0060 4408 PerfHost - ok
10:26:58.0115 4408 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:26:58.0133 4408 pla - ok
10:26:58.0192 4408 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:26:58.0211 4408 PlugPlay - ok
10:26:58.0239 4408 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:26:58.0242 4408 PNRPAutoReg - ok
10:26:58.0261 4408 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:26:58.0264 4408 PNRPsvc - ok
10:26:58.0296 4408 [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
10:26:58.0298 4408 Point64 - ok
10:26:58.0336 4408 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:26:58.0343 4408 PolicyAgent - ok
10:26:58.0396 4408 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:26:58.0401 4408 Power - ok
10:26:58.0458 4408 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:26:58.0461 4408 PptpMiniport - ok
10:26:58.0497 4408 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:26:58.0499 4408 Processor - ok
10:26:58.0571 4408 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:26:58.0580 4408 ProfSvc - ok
10:26:58.0598 4408 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:26:58.0600 4408 ProtectedStorage - ok
10:26:58.0633 4408 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:26:58.0636 4408 Psched - ok
10:26:58.0679 4408 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:26:58.0680 4408 PxHlpa64 - ok
10:26:58.0740 4408 [ DEE107066B957D9846D5036A5D40ED0C ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
10:26:58.0741 4408 QBCFMonitorService - ok
10:26:58.0806 4408 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
10:26:58.0808 4408 QBFCService - ok
10:26:58.0899 4408 [ 78AFB70DBE365BD6140E6740792AC3EA ] QBVSS C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
10:26:58.0916 4408 QBVSS - ok
10:26:58.0985 4408 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:26:59.0004 4408 ql2300 - ok
10:26:59.0031 4408 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:26:59.0033 4408 ql40xx - ok
10:26:59.0060 4408 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:26:59.0064 4408 QWAVE - ok
10:26:59.0077 4408 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:26:59.0078 4408 QWAVEdrv - ok
10:26:59.0089 4408 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:26:59.0090 4408 RasAcd - ok
10:26:59.0119 4408 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:26:59.0121 4408 RasAgileVpn - ok
10:26:59.0155 4408 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:26:59.0158 4408 RasAuto - ok
10:26:59.0183 4408 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:26:59.0185 4408 Rasl2tp - ok
10:26:59.0210 4408 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:26:59.0214 4408 RasMan - ok
10:26:59.0229 4408 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:26:59.0231 4408 RasPppoe - ok
10:26:59.0244 4408 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:26:59.0246 4408 RasSstp - ok
10:26:59.0270 4408 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:26:59.0273 4408 rdbss - ok
10:26:59.0293 4408 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:26:59.0294 4408 rdpbus - ok
10:26:59.0320 4408 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:26:59.0321 4408 RDPCDD - ok
10:26:59.0328 4408 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:26:59.0329 4408 RDPENCDD - ok
10:26:59.0343 4408 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:26:59.0344 4408 RDPREFMP - ok
10:26:59.0371 4408 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:26:59.0374 4408 RDPWD - ok
10:26:59.0424 4408 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:26:59.0427 4408 rdyboost - ok
10:26:59.0473 4408 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:26:59.0475 4408 RemoteAccess - ok
10:26:59.0494 4408 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:26:59.0497 4408 RemoteRegistry - ok
10:26:59.0514 4408 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:26:59.0516 4408 RpcEptMapper - ok
10:26:59.0595 4408 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:26:59.0597 4408 RpcLocator - ok
10:26:59.0636 4408 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
10:26:59.0643 4408 RpcSs - ok
10:26:59.0680 4408 [ 2ABD2B3BA2EF0C3BA82284C2A5E28675 ] RRNetCap C:\Windows\system32\DRIVERS\rrnetcap.sys
10:26:59.0682 4408 RRNetCap - ok
10:26:59.0704 4408 [ 2ABD2B3BA2EF0C3BA82284C2A5E28675 ] RRNetCapMP C:\Windows\system32\DRIVERS\rrnetcap.sys
10:26:59.0705 4408 RRNetCapMP - ok
10:26:59.0737 4408 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:26:59.0739 4408 rspndr - ok
10:26:59.0785 4408 [ 30F463768D5143BFD7B2DF822B53CF4D ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
10:26:59.0789 4408 RSUSBSTOR - ok
10:26:59.0841 4408 [ 4F10B2E09EA1C620E45BCE20C6EFD8D5 ] rsvcdwdr C:\Windows\system32\DRIVERS\rsvcdwdr.sys
10:26:59.0843 4408 rsvcdwdr - ok
10:26:59.0892 4408 [ FD978B2BF8A9B2390DCBEF435E9C1F9F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:26:59.0897 4408 RTL8167 - ok
10:26:59.0918 4408 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:26:59.0920 4408 SamSs - ok
10:26:59.0958 4408 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:26:59.0960 4408 sbp2port - ok
10:26:59.0984 4408 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:26:59.0990 4408 SCardSvr - ok
10:27:00.0021 4408 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:27:00.0022 4408 scfilter - ok
10:27:00.0051 4408 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:27:00.0062 4408 Schedule - ok
10:27:00.0079 4408 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:27:00.0080 4408 SCPolicySvc - ok
10:27:00.0146 4408 [ 54196CDAC7E1D81D71C652E100B99E77 ] ScsiAccess C:\Program Files (x86)\Photodex\ProShowGold\ScsiAccess.exe
10:27:00.0149 4408 ScsiAccess - ok
10:27:00.0181 4408 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:27:00.0185 4408 SDRSVC - ok
10:27:00.0211 4408 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:27:00.0212 4408 secdrv - ok
10:27:00.0232 4408 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:27:00.0234 4408 seclogon - ok
10:27:00.0263 4408 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:27:00.0266 4408 SENS - ok
10:27:00.0284 4408 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:27:00.0287 4408 SensrSvc - ok
10:27:00.0308 4408 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:27:00.0309 4408 Serenum - ok
10:27:00.0340 4408 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:27:00.0342 4408 Serial - ok
10:27:00.0371 4408 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:27:00.0373 4408 sermouse - ok
10:27:00.0406 4408 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:27:00.0410 4408 SessionEnv - ok
10:27:00.0436 4408 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:27:00.0438 4408 sffdisk - ok
10:27:00.0452 4408 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:27:00.0453 4408 sffp_mmc - ok
10:27:00.0489 4408 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:27:00.0490 4408 sffp_sd - ok
10:27:00.0520 4408 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:27:00.0521 4408 sfloppy - ok
10:27:00.0587 4408 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
10:27:00.0596 4408 SftService - ok
10:27:00.0667 4408 [ 43ADBE70270DFD40EBDA4DD0E492B5FB ] SgtSch2Svc C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
10:27:00.0675 4408 SgtSch2Svc - ok
10:27:00.0718 4408 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:27:00.0726 4408 ShellHWDetection - ok
10:27:00.0772 4408 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:27:00.0774 4408 SiSRaid2 - ok
10:27:00.0811 4408 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:27:00.0813 4408 SiSRaid4 - ok
10:27:00.0884 4408 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:27:00.0887 4408 SkypeUpdate - ok
10:27:00.0900 4408 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:27:00.0902 4408 Smb - ok
10:27:00.0939 4408 [ 8AC15211EB4BF019AAB0022781CC8AD0 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
10:27:00.0942 4408 snapman - ok
10:27:00.0972 4408 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:27:00.0974 4408 SNMPTRAP - ok
10:27:01.0016 4408 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
10:27:01.0018 4408 Sony SCSI Helper Service - ok
10:27:01.0043 4408 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:27:01.0044 4408 spldr - ok
10:27:01.0068 4408 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:27:01.0084 4408 Spooler - ok
10:27:01.0162 4408 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:27:01.0219 4408 sppsvc - ok
10:27:01.0248 4408 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:27:01.0250 4408 sppuinotify - ok
10:27:01.0293 4408 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:27:01.0302 4408 srv - ok
10:27:01.0331 4408 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:27:01.0338 4408 srv2 - ok
10:27:01.0354 4408 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:27:01.0356 4408 srvnet - ok
10:27:01.0372 4408 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:27:01.0376 4408 SSDPSRV - ok
10:27:01.0391 4408 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:27:01.0394 4408 SstpSvc - ok
10:27:01.0464 4408 [ 463E33B1EA7AF1E6EB87B66B831DB41A ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
10:27:01.0479 4408 STacSV - ok
10:27:01.0519 4408 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:27:01.0521 4408 stexstor - ok
10:27:01.0562 4408 [ 4304B75094E106FB5423A290C95841E5 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
10:27:01.0569 4408 STHDA - ok
10:27:01.0609 4408 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
10:27:01.0610 4408 StillCam - ok
10:27:01.0638 4408 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:27:01.0647 4408 stisvc - ok
10:27:01.0680 4408 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:27:01.0681 4408 swenum - ok
10:27:01.0742 4408 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:27:01.0751 4408 swprv - ok
10:27:01.0789 4408 [ 52EB25BD8AB4E331028C48B178441B36 ] sxuptp C:\Windows\system32\DRIVERS\sxuptp.sys
10:27:01.0816 4408 sxuptp - ok
10:27:01.0862 4408 [ 8A3FBCB3D6D4710730D27DA4392A4863 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:27:01.0866 4408 SynTP - ok
10:27:01.0915 4408 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
10:27:01.0934 4408 SysMain - ok
10:27:01.0957 4408 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:27:01.0973 4408 TabletInputService - ok
10:27:01.0998 4408 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:27:02.0005 4408 TapiSrv - ok
10:27:02.0053 4408 [ 93F0F5EF8A4CA261372DF98B31B2BD05 ] tbhsd C:\Windows\system32\drivers\tbhsd.sys
10:27:02.0055 4408 tbhsd - ok
10:27:02.0081 4408 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:27:02.0083 4408 TBS - ok
10:27:02.0150 4408 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:27:02.0168 4408 Tcpip - ok
10:27:02.0202 4408 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:27:02.0212 4408 TCPIP6 - ok
10:27:02.0246 4408 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:27:02.0248 4408 tcpipreg - ok
10:27:02.0318 4408 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:27:02.0320 4408 TDPIPE - ok
10:27:02.0369 4408 [ AC1FC18D04B92BAC16CBD85DE2A08A0B ] tdrpman C:\Windows\system32\DRIVERS\tdrpman.sys
10:27:02.0386 4408 tdrpman - ok
10:27:02.0431 4408 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:27:02.0433 4408 TDTCP - ok
10:27:02.0468 4408 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:27:02.0470 4408 tdx - ok
10:27:02.0507 4408 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:27:02.0509 4408 TermDD - ok
10:27:02.0551 4408 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:27:02.0563 4408 TermService - ok
10:27:02.0583 4408 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:27:02.0585 4408 Themes - ok
10:27:02.0603 4408 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:27:02.0605 4408 THREADORDER - ok
10:27:02.0625 4408 [ 3E24B7FE52BC455DA8D6E2CC2B4CA23F ] tifsfilter C:\Windows\system32\DRIVERS\tifsfilt.sys
10:27:02.0626 4408 tifsfilter - ok
10:27:02.0669 4408 [ EC4FD4D147985A97E881729E808E6F34 ] timounter C:\Windows\system32\DRIVERS\timntr.sys
10:27:02.0677 4408 timounter - ok
10:27:02.0751 4408 [ 75EA1A81C9BD03F2A768901EC9DB2816 ] TivoBeacon2 C:\Program Files (x86)\TiVo\Desktop\TiVoBeacon.exe
10:27:02.0765 4408 TivoBeacon2 - ok
10:27:02.0812 4408 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:27:02.0824 4408 TrkWks - ok
10:27:02.0862 4408 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:27:02.0865 4408 TrustedInstaller - ok
10:27:02.0889 4408 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:27:02.0890 4408 tssecsrv - ok
10:27:02.0933 4408 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:27:02.0935 4408 TsUsbFlt - ok
10:27:02.0977 4408 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:27:02.0980 4408 tunnel - ok
10:27:03.0009 4408 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
10:27:03.0026 4408 TurboB - ok
10:27:03.0081 4408 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
10:27:03.0083 4408 TurboBoost - ok
10:27:03.0121 4408 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:27:03.0123 4408 uagp35 - ok
10:27:03.0161 4408 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:27:03.0166 4408 udfs - ok
10:27:03.0206 4408 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:27:03.0223 4408 UI0Detect - ok
10:27:03.0258 4408 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:27:03.0260 4408 uliagpkx - ok
10:27:03.0284 4408 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:27:03.0287 4408 umbus - ok
10:27:03.0308 4408 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:27:03.0310 4408 UmPass - ok
10:27:03.0391 4408 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
10:27:03.0398 4408 UMVPFSrv - ok
10:27:03.0608 4408 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:27:03.0650 4408 UNS - ok
10:27:03.0676 4408 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:27:03.0680 4408 upnphost - ok
10:27:03.0715 4408 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:27:03.0717 4408 USBAAPL64 - ok
10:27:03.0745 4408 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:27:03.0747 4408 usbaudio - ok
10:27:03.0788 4408 [ C85B8247FADD432FA54FE11667C8D97D ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
10:27:03.0789 4408 usbbus - ok
10:27:03.0819 4408 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:27:03.0821 4408 usbccgp - ok
10:27:03.0863 4408 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:27:03.0866 4408 usbcir - ok
10:27:03.0895 4408 [ D8CDC12F5429878F23DDB3785A0FDF95 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
10:27:03.0896 4408 UsbDiag - ok
10:27:03.0922 4408 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:27:03.0924 4408 usbehci - ok
10:27:03.0956 4408 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:27:03.0960 4408 usbhub - ok
10:27:03.0988 4408 [ 79FA7A22B0F6F0082F640CBC82A00FCE ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
10:27:03.0990 4408 USBModem - ok
10:27:04.0008 4408 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:27:04.0010 4408 usbohci - ok
10:27:04.0039 4408 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:27:04.0040 4408 usbprint - ok
10:27:04.0072 4408 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:27:04.0084 4408 usbscan - ok
10:27:04.0109 4408 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:27:04.0111 4408 USBSTOR - ok
10:27:04.0147 4408 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:27:04.0148 4408 usbuhci - ok
10:27:04.0204 4408 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
10:27:04.0206 4408 usbvideo - ok
10:27:04.0222 4408 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:27:04.0224 4408 UxSms - ok
10:27:04.0228 4408 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:27:04.0230 4408 VaultSvc - ok
10:27:04.0268 4408 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:27:04.0269 4408 vdrvroot - ok
10:27:04.0301 4408 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:27:04.0307 4408 vds - ok
10:27:04.0337 4408 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:27:04.0339 4408 vga - ok
10:27:04.0349 4408 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:27:04.0351 4408 VgaSave - ok
10:27:04.0407 4408 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:27:04.0410 4408 vhdmp - ok
10:27:04.0434 4408 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:27:04.0435 4408 viaide - ok
10:27:04.0459 4408 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:27:04.0460 4408 volmgr - ok
10:27:04.0483 4408 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:27:04.0487 4408 volmgrx - ok
10:27:04.0520 4408 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:27:04.0523 4408 volsnap - ok
10:27:04.0557 4408 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:27:04.0559 4408 vsmraid - ok
10:27:04.0602 4408 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:27:04.0621 4408 VSS - ok
10:27:04.0643 4408 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:27:04.0644 4408 vwifibus - ok
10:27:04.0657 4408 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:27:04.0659 4408 vwififlt - ok
10:27:04.0695 4408 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
10:27:04.0696 4408 vwifimp - ok
10:27:04.0749 4408 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:27:04.0758 4408 W32Time - ok
10:27:04.0860 4408 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
10:27:04.0879 4408 W3SVC - ok
10:27:04.0899 4408 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:27:04.0900 4408 WacomPen - ok
10:27:04.0939 4408 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:27:04.0941 4408 WANARP - ok
10:27:04.0946 4408 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:27:04.0947 4408 Wanarpv6 - ok
10:27:04.0957 4408 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
10:27:04.0961 4408 WAS - ok
10:27:05.0044 4408 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:27:05.0062 4408 WatAdminSvc - ok
10:27:05.0104 4408 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:27:05.0120 4408 wbengine - ok
10:27:05.0153 4408 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:27:05.0157 4408 WbioSrvc - ok
10:27:05.0190 4408 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:27:05.0195 4408 wcncsvc - ok
10:27:05.0207 4408 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:27:05.0210 4408 WcsPlugInService - ok
10:27:05.0251 4408 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:27:05.0263 4408 Wd - ok
10:27:05.0302 4408 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:27:05.0309 4408 Wdf01000 - ok
10:27:05.0319 4408 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:27:05.0322 4408 WdiServiceHost - ok
10:27:05.0325 4408 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:27:05.0327 4408 WdiSystemHost - ok
10:27:05.0358 4408 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:27:05.0361 4408 WebClient - ok
10:27:05.0381 4408 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:27:05.0385 4408 Wecsvc - ok
10:27:05.0400 4408 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:27:05.0403 4408 wercplsupport - ok
10:27:05.0443 4408 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:27:05.0446 4408 WerSvc - ok
10:27:05.0472 4408 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:27:05.0474 4408 WfpLwf - ok
10:27:05.0505 4408 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
10:27:05.0508 4408 WimFltr - ok
10:27:05.0535 4408 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:27:05.0536 4408 WIMMount - ok
10:27:05.0565 4408 WinHttpAutoProxySvc - ok
10:27:05.0621 4408 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:27:05.0626 4408 Winmgmt - ok
10:27:05.0694 4408 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:27:05.0720 4408 WinRM - ok
10:27:05.0778 4408 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:27:05.0780 4408 WinUsb - ok
10:27:05.0822 4408 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:27:05.0841 4408 Wlansvc - ok
10:27:05.0965 4408 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:27:05.0993 4408 wlidsvc - ok
10:27:06.0046 4408 [ DE816A0624D54D68E1FB8A9028DCF81A ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
10:27:06.0048 4408 wltrysvc - ok
10:27:06.0077 4408 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:27:06.0078 4408 WmiAcpi - ok
10:27:06.0121 4408 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:27:06.0123 4408 wmiApSrv - ok
10:27:06.0146 4408 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:27:06.0148 4408 WPCSvc - ok
10:27:06.0166 4408 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:27:06.0169 4408 WPDBusEnum - ok
10:27:06.0196 4408 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:27:06.0197 4408 ws2ifsl - ok
10:27:06.0241 4408 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
10:27:06.0245 4408 wscsvc - ok
10:27:06.0277 4408 WSearch - ok
10:27:06.0360 4408 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:27:06.0384 4408 wuauserv - ok
10:27:06.0417 4408 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:27:06.0419 4408 WudfPf - ok
10:27:06.0447 4408 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:27:06.0450 4408 WUDFRd - ok
10:27:06.0505 4408 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:27:06.0509 4408 wudfsvc - ok
10:27:06.0541 4408 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:27:06.0546 4408 WwanSvc - ok
10:27:06.0589 4408 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
10:27:06.0595 4408 yukonw7 - ok
10:27:06.0643 4408 ================ Scan global ===============================
10:27:06.0675 4408 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:27:06.0702 4408 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:27:06.0712 4408 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:27:06.0749 4408 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:27:06.0835 4408 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:27:06.0887 4408 [Global] - ok
10:27:06.0888 4408 ================ Scan MBR ==================================
10:27:06.0929 4408 [ C3220EB08ADD62E3ED9F72A1F4E4B1BB ] \Device\Harddisk0\DR0
10:27:08.0701 4408 \Device\Harddisk0\DR0 - ok
10:27:08.0707 4408 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
10:27:08.0934 4408 \Device\Harddisk1\DR1 - ok
10:27:08.0935 4408 ================ Scan VBR ==================================
10:27:08.0953 4408 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
10:27:08.0966 4408 \Device\Harddisk0\DR0\Partition1 - ok
10:27:08.0986 4408 [ 4F2F739EA71BA71BB896A135337400C9 ] \Device\Harddisk0\DR0\Partition2
10:27:09.0001 4408 \Device\Harddisk0\DR0\Partition2 - ok
10:27:09.0025 4408 [ DAC00C3567646B289B833380EB6BDDB6 ] \Device\Harddisk0\DR0\Partition3
10:27:09.0040 4408 \Device\Harddisk0\DR0\Partition3 - ok
10:27:09.0045 4408 [ 6ED9C3CBA4E34A6B927A6D278C8EDD0D ] \Device\Harddisk1\DR1\Partition1
10:27:09.0048 4408 \Device\Harddisk1\DR1\Partition1 - ok
10:27:09.0049 4408 ============================================================
10:27:09.0049 4408 Scan finished
10:27:09.0049 4408 ============================================================
10:27:09.0061 6452 Detected object count: 1
10:27:09.0061 6452 Actual detected object count: 1
10:27:15.0390 6452 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
10:27:15.0390 6452 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
10:27:31.0218 5944 ============================================================
10:27:31.0218 5944 Scan started
10:27:31.0218 5944 Mode: Manual; TDLFS;
10:27:31.0218 5944 ============================================================
10:27:31.0904 5944 ================ Scan system memory ========================
10:27:31.0904 5944 System memory - ok
10:27:31.0907 5944 ================ Scan services =============================
10:27:32.0018 5944 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:27:32.0020 5944 1394ohci - ok
10:27:32.0060 5944 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:27:32.0063 5944 ACPI - ok
10:27:32.0085 5944 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:27:32.0085 5944 AcpiPmi - ok
10:27:32.0153 5944 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:27:32.0155 5944 AdobeFlashPlayerUpdateSvc - ok
10:27:32.0190 5944 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:27:32.0194 5944 adp94xx - ok
10:27:32.0217 5944 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:27:32.0220 5944 adpahci - ok
10:27:32.0235 5944 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:27:32.0237 5944 adpu320 - ok
10:27:32.0276 5944 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:27:32.0277 5944 AeLookupSvc - ok
10:27:32.0357 5944 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
10:27:32.0359 5944 AESTFilters - ok
10:27:32.0395 5944 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:27:32.0400 5944 AFD - ok
10:27:32.0618 5944 [ F8D4D4406374F1F591D041D3E936C768 ] AffinegyService C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
10:27:32.0623 5944 AffinegyService - ok
10:27:32.0655 5944 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:27:32.0656 5944 agp440 - ok
10:27:32.0792 5944 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
10:27:32.0792 5944 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
10:27:32.0800 5944 Akamai ( HiddenFile.Multi.Generic ) - warning
10:27:32.0800 5944 Akamai - detected HiddenFile.Multi.Generic (1)
10:27:32.0831 5944 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:27:32.0831 5944 ALG - ok
10:27:32.0861 5944 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:27:32.0861 5944 aliide - ok
10:27:32.0882 5944 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:27:32.0883 5944 amdide - ok
10:27:32.0907 5944 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:27:32.0908 5944 AmdK8 - ok
10:27:32.0921 5944 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:27:32.0922 5944 AmdPPM - ok
10:27:32.0944 5944 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:27:32.0945 5944 amdsata - ok
10:27:32.0958 5944 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:27:32.0960 5944 amdsbs - ok
10:27:32.0979 5944 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:27:32.0979 5944 amdxata - ok
10:27:33.0025 5944 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
10:27:33.0026 5944 AppHostSvc - ok
10:27:33.0061 5944 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:27:33.0061 5944 AppID - ok
10:27:33.0098 5944 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:27:33.0099 5944 AppIDSvc - ok
10:27:33.0124 5944 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:27:33.0125 5944 Appinfo - ok
10:27:33.0182 5944 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:27:33.0183 5944 Apple Mobile Device - ok
10:27:33.0211 5944 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:27:33.0212 5944 arc - ok
10:27:33.0228 5944 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:27:33.0229 5944 arcsas - ok
10:27:33.0317 5944 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:27:33.0318 5944 aspnet_state - ok
10:27:33.0339 5944 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:27:33.0340 5944 AsyncMac - ok
10:27:33.0374 5944 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:27:33.0375 5944 atapi - ok
10:27:33.0408 5944 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:27:33.0414 5944 AudioEndpointBuilder - ok
10:27:33.0426 5944 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:27:33.0431 5944 AudioSrv - ok
10:27:33.0465 5944 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:27:33.0465 5944 AxInstSV - ok
10:27:33.0490 5944 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:27:33.0492 5944 b06bdrv - ok
10:27:33.0509 5944 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:27:33.0511 5944 b57nd60a - ok
10:27:33.0539 5944 [ AC4E2D84DE54CD3A013AEFF0CC56095C ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
10:27:33.0540 5944 BCM42RLY - ok
10:27:33.0612 5944 [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
10:27:33.0633 5944 BCM43XX - ok
10:27:33.0651 5944 [ D224B2E6BB543F1D8F1177D57FEC2950 ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
10:27:33.0652 5944 BcmVWL - ok
10:27:33.0670 5944 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:27:33.0671 5944 BDESVC - ok
10:27:33.0695 5944 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:27:33.0695 5944 Beep - ok
10:27:33.0740 5944 [ 9BB84C554D7429F0A2CDF4EA1836F233 ] Belkin Local Backup Service C:\Program Files\Belkin\Belkin USB Print and Storage Center\BkBackupScheduler.exe
10:27:33.0741 5944 Belkin Local Backup Service - ok
10:27:33.0755 5944 [ E62A04D615A8CAC83601E1F07C010D3C ] Belkin Network USB Helper C:\Program Files\Belkin\Belkin USB Print and Storage Center\Bkapcs.exe
10:27:33.0756 5944 Belkin Network USB Helper - ok
10:27:33.0798 5944 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:27:33.0803 5944 BFE - ok
10:27:33.0845 5944 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
10:27:33.0852 5944 BITS - ok
10:27:33.0880 5944 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:27:33.0881 5944 blbdrive - ok
10:27:33.0923 5944 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:27:33.0926 5944 Bonjour Service - ok
10:27:33.0946 5944 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:27:33.0947 5944 bowser - ok
10:27:33.0988 5944 [ C6C3336581BE530381E933FAD497CE7F ] BRA_Scheduler C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
10:27:33.0988 5944 BRA_Scheduler - ok
10:27:34.0003 5944 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:27:34.0004 5944 BrFiltLo - ok
10:27:34.0023 5944 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:27:34.0024 5944 BrFiltUp - ok
10:27:34.0040 5944 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
10:27:34.0041 5944 BridgeMP - ok
10:27:34.0071 5944 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:27:34.0073 5944 Browser - ok
10:27:34.0095 5944 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\system32\DRIVERS\BrSerId.sys
10:27:34.0098 5944 Brserid - ok
10:27:34.0118 5944 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:27:34.0120 5944 BrSerWdm - ok
10:27:34.0134 5944 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:27:34.0135 5944 BrUsbMdm - ok
10:27:34.0148 5944 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\DRIVERS\BrUsbSer.sys
10:27:34.0148 5944 BrUsbSer - ok
10:27:34.0176 5944 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:27:34.0177 5944 BTHMODEM - ok
10:27:34.0195 5944 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:27:34.0196 5944 bthserv - ok
10:27:34.0346 5944 [ BCB2E1D61E0B31729C5A9DDD09AC5073 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
10:27:34.0382 5944 CarboniteService - ok
10:27:34.0409 5944 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:27:34.0410 5944 cdfs - ok
10:27:34.0437 5944 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:27:34.0438 5944 cdrom - ok
10:27:34.0468 5944 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:27:34.0468 5944 CertPropSvc - ok
10:27:34.0496 5944 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:27:34.0496 5944 circlass - ok
10:27:34.0524 5944 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:\Windows\system32\CISVC.EXE
10:27:34.0525 5944 CISVC - ok
10:27:34.0555 5944 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:27:34.0557 5944 CLFS - ok
10:27:34.0612 5944 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:27:34.0613 5944 clr_optimization_v2.0.50727_32 - ok
10:27:34.0650 5944 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:27:34.0652 5944 clr_optimization_v2.0.50727_64 - ok
10:27:34.0690 5944 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:27:34.0691 5944 clr_optimization_v4.0.30319_32 - ok
10:27:34.0706 5944 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:27:34.0709 5944 clr_optimization_v4.0.30319_64 - ok
10:27:34.0735 5944 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:27:34.0735 5944 CmBatt - ok
10:27:34.0762 5944 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:27:34.0763 5944 cmdide - ok
10:27:34.0796 5944 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
10:27:34.0799 5944 CNG - ok
10:27:34.0808 5944 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:27:34.0808 5944 Compbatt - ok
10:27:34.0826 5944 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:27:34.0827 5944 CompositeBus - ok
10:27:34.0831 5944 COMSysApp - ok
10:27:34.0856 5944 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:27:34.0856 5944 crcdisk - ok
10:27:34.0885 5944 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:27:34.0887 5944 CryptSvc - ok
10:27:34.0912 5944 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
10:27:34.0913 5944 CtClsFlt - ok
10:27:34.0944 5944 [ 76E02DB615A03801D698199A2BC4A06A ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
10:27:34.0945 5944 dc3d - ok
10:27:34.0977 5944 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:27:34.0981 5944 DcomLaunch - ok
10:27:35.0015 5944 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:27:35.0018 5944 defragsvc - ok
10:27:35.0051 5944 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:27:35.0052 5944 DfsC - ok
10:27:35.0073 5944 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:27:35.0075 5944 Dhcp - ok
10:27:35.0099 5944 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:27:35.0099 5944 discache - ok
10:27:35.0108 5944 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:27:35.0109 5944 Disk - ok
10:27:35.0137 5944 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:27:35.0139 5944 Dnscache - ok
10:27:35.0198 5944 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
10:27:35.0200 5944 DockLoginService - ok
10:27:35.0232 5944 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:27:35.0234 5944 dot3svc - ok
10:27:35.0252 5944 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:27:35.0254 5944 DPS - ok
10:27:35.0275 5944 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:27:35.0276 5944 drmkaud - ok
10:27:35.0317 5944 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:27:35.0326 5944 DXGKrnl - ok
10:27:35.0360 5944 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:27:35.0362 5944 EapHost - ok
10:27:35.0457 5944 [ 1428AF5504E8D8B353F5136BDECC20CC ] EaseUS Agent C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
10:27:35.0458 5944 EaseUS Agent - ok
10:27:35.0549 5944 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:27:35.0575 5944 ebdrv - ok
10:27:35.0604 5944 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:27:35.0605 5944 EFS - ok
10:27:35.0656 5944 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:27:35.0660 5944 ehRecvr - ok
10:27:35.0679 5944 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:27:35.0680 5944 ehSched - ok
10:27:35.0712 5944 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:27:35.0715 5944 elxstor - ok
10:27:35.0750 5944 [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv C:\Windows\system32\epmntdrv.sys
10:27:35.0750 5944 epmntdrv - ok
10:27:35.0781 5944 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:27:35.0782 5944 ErrDev - ok
10:27:35.0819 5944 [ 268999A7B9AE8F1AB0BF833C264FF2D7 ] EUBAKUP C:\Windows\system32\drivers\eubakup.sys
10:27:35.0820 5944 EUBAKUP - ok
10:27:35.0825 5944 EUBAKUP0 - ok
10:27:35.0838 5944 [ BBB7392DDC92D653AFBF2F93354DB9F2 ] EUBKMON C:\Windows\system32\drivers\EUBKMON.sys
10:27:35.0839 5944 EUBKMON - ok
10:27:35.0843 5944 EUBKMON0 - ok
10:27:35.0858 5944 [ 97CD68DB973DE9C17BE205DD2DE21563 ] EUDISK C:\Windows\system32\drivers\eudisk.sys
10:27:35.0859 5944 EUDISK - ok
10:27:35.0887 5944 [ F5CA6DA167B70478C5AC745BE27AB33E ] EUDSKACS C:\Windows\system32\drivers\eudskacs.sys
10:27:35.0887 5944 EUDSKACS - ok
10:27:35.0898 5944 [ 8CD7997A5A9098F110B14FEAE80FC348 ] EUFDDISK C:\Windows\system32\drivers\EuFdDisk.sys
10:27:35.0900 5944 EUFDDISK - ok
10:27:35.0925 5944 [ 6791502D2E6CB3CA67E43FE003E29E0A ] EUFS C:\Windows\system32\drivers\eufs.sys
10:27:35.0925 5944 EUFS - ok
10:27:35.0972 5944 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
10:27:35.0973 5944 EuGdiDrv - ok
10:27:36.0007 5944 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:27:36.0011 5944 EventSystem - ok
10:27:36.0026 5944 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:27:36.0028 5944 exfat - ok
10:27:36.0050 5944 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:27:36.0052 5944 fastfat - ok
10:27:36.0088 5944 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:27:36.0093 5944 Fax - ok
10:27:36.0109 5944 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:27:36.0110 5944 fdc - ok
10:27:36.0128 5944 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:27:36.0129 5944 fdPHost - ok
10:27:36.0146 5944 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:27:36.0147 5944 FDResPub - ok
10:27:36.0167 5944 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:27:36.0168 5944 FileInfo - ok
10:27:36.0179 5944 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:27:36.0179 5944 Filetrace - ok
10:27:36.0231 5944 [ B8602C90D3C427D8A86CE60437615CF5 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
10:27:36.0234 5944 FlipShare Service - ok
10:27:36.0296 5944 [ AC5FB7094F31534594CAE48306972CBD ] FlipShareServer C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe
10:27:36.0307 5944 FlipShareServer - ok
10:27:36.0322 5944 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:27:36.0323 5944 flpydisk - ok
10:27:36.0354 5944 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:27:36.0357 5944 FltMgr - ok
10:27:36.0398 5944 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
10:27:36.0408 5944 FontCache - ok
10:27:36.0451 5944 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:27:36.0451 5944 FontCache3.0.0.0 - ok
10:27:36.0498 5944 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:27:36.0499 5944 FsDepends - ok
10:27:36.0534 5944 [ B16B626996C74B564005BA855C5DEE90 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:27:36.0536 5944 fssfltr - ok
10:27:36.0563 5944 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:27:36.0564 5944 Fs_Rec - ok
10:27:36.0591 5944 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:27:36.0593 5944 fvevol - ok
10:27:36.0604 5944 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:27:36.0605 5944 gagp30kx - ok
10:27:36.0657 5944 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
10:27:36.0659 5944 GameConsoleService - ok
10:27:36.0686 5944 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:27:36.0686 5944 GEARAspiWDM - ok
10:27:36.0727 5944 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:27:36.0731 5944 gpsvc - ok
10:27:36.0760 5944 [ 922D79BFE60E6277DAA15DFD2A751F4D ] Guard Agent C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe
10:27:36.0760 5944 Guard Agent - ok
10:27:36.0799 5944 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:36.0801 5944 gupdate - ok
10:27:36.0807 5944 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:27:36.0809 5944 gupdatem - ok
10:27:36.0835 5944 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:27:36.0835 5944 hcw85cir - ok
10:27:36.0866 5944 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:27:36.0868 5944 HdAudAddService - ok
10:27:36.0892 5944 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:27:36.0894 5944 HDAudBus - ok
10:27:36.0914 5944 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:27:36.0915 5944 HECIx64 - ok
10:27:36.0926 5944 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:27:36.0927 5944 HidBatt - ok
10:27:36.0949 5944 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:27:36.0950 5944 HidBth - ok
10:27:36.0971 5944 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:27:36.0972 5944 HidIr - ok
10:27:36.0994 5944 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
10:27:36.0995 5944 hidserv - ok
10:27:37.0018 5944 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:27:37.0019 5944 HidUsb - ok
10:27:37.0049 5944 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:27:37.0051 5944 hkmsvc - ok
10:27:37.0083 5944 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:27:37.0085 5944 HomeGroupListener - ok
10:27:37.0108 5944 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:27:37.0111 5944 HomeGroupProvider - ok
10:27:37.0127 5944 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:27:37.0128 5944 HpSAMD - ok
10:27:37.0175 5944 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:27:37.0180 5944 HTTP - ok
10:27:37.0202 5944 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:27:37.0203 5944 hwpolicy - ok
10:27:37.0230 5944 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:27:37.0231 5944 i8042prt - ok
10:27:37.0265 5944 [ 2064090C9FAAD92C090D77E50E735B2E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
10:27:37.0269 5944 iaStor - ok
10:27:37.0342 5944 [ A9BE186ABF28B3D3D698CB855EDF457E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:27:37.0343 5944 IAStorDataMgrSvc - ok
10:27:37.0388 5944 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:27:37.0391 5944 iaStorV - ok
10:27:37.0460 5944 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:27:37.0466 5944 idsvc - ok
10:27:37.0728 5944 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:27:37.0785 5944 igfx - ok
10:27:37.0816 5944 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:27:37.0817 5944 iirsp - ok
10:27:37.0864 5944 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:27:37.0873 5944 IKEEXT - ok
10:27:37.0919 5944 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
10:27:37.0921 5944 Impcd - ok
10:27:37.0950 5944 [ C6C1F19205DA83C801BE7C25F4E2EE07 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:27:37.0952 5944 IntcDAud - ok
10:27:37.0968 5944 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:27:37.0968 5944 intelide - ok
10:27:37.0980 5944 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:27:37.0981 5944 intelppm - ok
10:27:38.0055 5944 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
10:27:38.0056 5944 IntuitUpdateService - ok
10:27:38.0101 5944 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
10:27:38.0101 5944 IntuitUpdateServiceV4 - ok
10:27:38.0137 5944 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:27:38.0139 5944 IPBusEnum - ok
10:27:38.0176 5944 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:27:38.0177 5944 IpFilterDriver - ok
10:27:38.0213 5944 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:27:38.0214 5944 IPMIDRV - ok
10:27:38.0244 5944 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:27:38.0245 5944 IPNAT - ok
10:27:38.0293 5944 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:27:38.0300 5944 iPod Service - ok
10:27:38.0319 5944 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:27:38.0319 5944 IRENUM - ok
10:27:38.0353 5944 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:27:38.0353 5944 isapnp - ok
10:27:38.0366 5944 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:27:38.0369 5944 iScsiPrt - ok
10:27:38.0389 5944 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:27:38.0390 5944 kbdclass - ok
10:27:38.0414 5944 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:27:38.0415 5944 kbdhid - ok
10:27:38.0423 5944 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:27:38.0424 5944 KeyIso - ok
10:27:38.0452 5944 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:27:38.0452 5944 KSecDD - ok
10:27:38.0489 5944 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:27:38.0491 5944 KSecPkg - ok
10:27:38.0506 5944 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:27:38.0506 5944 ksthunk - ok
10:27:38.0539 5944 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:27:38.0542 5944 KtmRm - ok
10:27:38.0580 5944 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
10:27:38.0584 5944 LanmanServer - ok
10:27:38.0604 5944 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:27:38.0606 5944 LanmanWorkstation - ok
10:27:38.0637 5944 [ BECBD7CD46776B8739EE18061F45A581 ] LEqdUsb C:\Windows\system32\DRIVERS\LEqdUsb.Sys
10:27:38.0638 5944 LEqdUsb - ok
10:27:38.0660 5944 [ 21D6BD7D62C270059EB8E2B1D4095880 ] LHidEqd C:\Windows\system32\DRIVERS\LHidEqd.Sys
10:27:38.0661 5944 LHidEqd - ok
10:27:38.0678 5944 [ B6552D382FF070B4ED34CBD6737277C0 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
10:27:38.0678 5944 LHidFilt - ok
10:27:38.0693 5944 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:27:38.0694 5944 lltdio - ok
10:27:38.0745 5944 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:27:38.0747 5944 lltdsvc - ok
10:27:38.0767 5944 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:27:38.0768 5944 lmhosts - ok
10:27:38.0784 5944 [ 73C1F563AB73D459DFFE682D66476558 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
10:27:38.0785 5944 LMouFilt - ok
10:27:38.0837 5944 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:27:38.0838 5944 LMS - ok
10:27:38.0866 5944 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:27:38.0867 5944 LSI_FC - ok
10:27:38.0873 5944 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:27:38.0874 5944 LSI_SAS - ok
10:27:38.0890 5944 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:27:38.0890 5944 LSI_SAS2 - ok
10:27:38.0902 5944 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:27:38.0904 5944 LSI_SCSI - ok
10:27:38.0926 5944 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:27:38.0927 5944 luafv - ok
10:27:38.0951 5944 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
10:27:38.0953 5944 LVRS64 - ok
10:27:39.0072 5944 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
10:27:39.0098 5944 LVUVC64 - ok
10:27:39.0127 5944 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:27:39.0127 5944 MBAMProtector - ok
10:27:39.0181 5944 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:27:39.0185 5944 MBAMScheduler - ok
10:27:39.0223 5944 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:27:39.0229 5944 MBAMService - ok
10:27:39.0262 5944 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:27:39.0264 5944 Mcx2Svc - ok
10:27:39.0280 5944 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:27:39.0281 5944 megasas - ok
10:27:39.0312 5944 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:27:39.0314 5944 MegaSR - ok
10:27:39.0331 5944 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:27:39.0333 5944 MMCSS - ok
10:27:39.0356 5944 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:27:39.0357 5944 Modem - ok
10:27:39.0386 5944 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:27:39.0387 5944 monitor - ok
10:27:39.0413 5944 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:27:39.0414 5944 mouclass - ok
10:27:39.0421 5944 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:27:39.0421 5944 mouhid - ok
10:27:39.0451 5944 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:27:39.0452 5944 mountmgr - ok
10:27:39.0485 5944 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
10:27:39.0486 5944 MpFilter - ok
10:27:39.0509 5944 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:27:39.0510 5944 mpio - ok
10:27:39.0521 5944 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:27:39.0521 5944 mpsdrv - ok
10:27:39.0544 5944 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:27:39.0545 5944 MRxDAV - ok
10:27:39.0566 5944 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:27:39.0567 5944 mrxsmb - ok
10:27:39.0595 5944 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:27:39.0597 5944 mrxsmb10 - ok
10:27:39.0610 5944 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:27:39.0611 5944 mrxsmb20 - ok
10:27:39.0633 5944 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:27:39.0633 5944 msahci - ok
10:27:39.0662 5944 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:27:39.0663 5944 msdsm - ok
10:27:39.0684 5944 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:27:39.0685 5944 MSDTC - ok
10:27:39.0715 5944 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:27:39.0715 5944 Msfs - ok
10:27:39.0725 5944 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:27:39.0725 5944 mshidkmdf - ok
10:27:39.0734 5944 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:27:39.0735 5944 msisadrv - ok
10:27:39.0765 5944 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:27:39.0766 5944 MSiSCSI - ok
10:27:39.0771 5944 msiserver - ok
10:27:39.0790 5944 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:27:39.0790 5944 MSKSSRV - ok
10:27:39.0840 5944 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:27:39.0841 5944 MsMpSvc - ok
10:27:39.0856 5944 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:27:39.0857 5944 MSPCLOCK - ok
10:27:39.0869 5944 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:27:39.0869 5944 MSPQM - ok
10:27:39.0894 5944 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:27:39.0897 5944 MsRPC - ok
10:27:39.0917 5944 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:27:39.0918 5944 mssmbios - ok
10:27:39.0953 5944 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:27:39.0954 5944 MSTEE - ok
10:27:39.0970 5944 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:27:39.0971 5944 MTConfig - ok
10:27:39.0985 5944 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:27:39.0986 5944 Mup - ok
10:27:40.0017 5944 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:27:40.0022 5944 napagent - ok
10:27:40.0044 5944 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:27:40.0047 5944 NativeWifiP - ok
10:27:40.0084 5944 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:27:40.0091 5944 NDIS - ok
10:27:40.0106 5944 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:27:40.0106 5944 NdisCap - ok
10:27:40.0138 5944 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:27:40.0139 5944 NdisTapi - ok
10:27:40.0168 5944 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:27:40.0169 5944 Ndisuio - ok
10:27:40.0198 5944 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:27:40.0199 5944 NdisWan - ok
10:27:40.0228 5944 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:27:40.0229 5944 NDProxy - ok
10:27:40.0257 5944 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:27:40.0258 5944 NetBIOS - ok
10:27:40.0283 5944 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:27:40.0286 5944 NetBT - ok
10:27:40.0297 5944 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:27:40.0299 5944 Netlogon - ok
10:27:40.0328 5944 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:27:40.0332 5944 Netman - ok
10:27:40.0363 5944 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0364 5944 NetMsmqActivator - ok
10:27:40.0370 5944 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0371 5944 NetPipeActivator - ok
10:27:40.0393 5944 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:27:40.0400 5944 netprofm - ok
10:27:40.0406 5944 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:27:40.0407 5944 NetTcpActivator - ok
10:27:40.0436 5944 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:27:40.0437 5944 NetTcpPortSharing - ok
10:27:40.0462 5944 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:27:40.0463 5944 nfrd960 - ok
10:27:40.0490 5944 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:27:40.0491 5944 NisDrv - ok
10:27:40.0505 5944 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
10:27:40.0506 5944 NisSrv - ok
10:27:40.0536 5944 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:27:40.0538 5944 NlaSvc - ok
10:27:40.0546 5944 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:27:40.0547 5944 Npfs - ok
10:27:40.0574 5944 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:27:40.0575 5944 nsi - ok
10:27:40.0582 5944 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:27:40.0583 5944 nsiproxy - ok
10:27:40.0638 5944 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:27:40.0647 5944 Ntfs - ok
10:27:40.0671 5944 [ 4C08A14D04E62963E96E0BB57BBC953B ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
10:27:40.0672 5944 NuidFltr - ok
10:27:40.0686 5944 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:27:40.0687 5944 Null - ok
10:27:40.0716 5944 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:27:40.0717 5944 nvraid - ok
10:27:40.0750 5944 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:27:40.0752 5944 nvstor - ok
10:27:40.0781 5944 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:27:40.0782 5944 nv_agp - ok
10:27:40.0812 5944 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:27:40.0813 5944 ohci1394 - ok
10:27:40.0866 5944 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:27:40.0867 5944 ose - ok
10:27:41.0001 5944 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:27:41.0025 5944 osppsvc - ok
10:27:41.0057 5944 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:27:41.0060 5944 p2pimsvc - ok
10:27:41.0087 5944 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:27:41.0089 5944 p2psvc - ok
10:27:41.0114 5944 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:27:41.0115 5944 Parport - ok
10:27:41.0135 5944 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:27:41.0135 5944 partmgr - ok
10:27:41.0149 5944 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:27:41.0151 5944 PcaSvc - ok
10:27:41.0166 5944 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:27:41.0167 5944 pci - ok
10:27:41.0187 5944 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:27:41.0187 5944 pciide - ok
10:27:41.0208 5944 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:27:41.0209 5944 pcmcia - ok
10:27:41.0221 5944 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:27:41.0222 5944 pcw - ok
10:27:41.0243 5944 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:27:41.0247 5944 PEAUTH - ok
10:27:41.0299 5944 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:27:41.0300 5944 PerfHost - ok
10:27:41.0355 5944 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:27:41.0366 5944 pla - ok
10:27:41.0399 5944 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:27:41.0404 5944 PlugPlay - ok
10:27:41.0425 5944 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:27:41.0426 5944 PNRPAutoReg - ok
10:27:41.0446 5944 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:27:41.0450 5944 PNRPsvc - ok
10:27:41.0481 5944 [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
10:27:41.0482 5944 Point64 - ok
10:27:41.0521 5944 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:27:41.0525 5944 PolicyAgent - ok
10:27:41.0559 5944 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:27:41.0562 5944 Power - ok
10:27:41.0599 5944 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:27:41.0601 5944 PptpMiniport - ok
10:27:41.0627 5944 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:27:41.0628 5944 Processor - ok
10:27:41.0656 5944 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:27:41.0659 5944 ProfSvc - ok
10:27:41.0673 5944 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:27:41.0674 5944 ProtectedStorage - ok
10:27:41.0696 5944 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:27:41.0698 5944 Psched - ok
10:27:41.0720 5944 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:27:41.0721 5944 PxHlpa64 - ok
10:27:41.0748 5944 [ DEE107066B957D9846D5036A5D40ED0C ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
10:27:41.0748 5944 QBCFMonitorService - ok
10:27:41.0803 5944 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
10:27:41.0804 5944 QBFCService - ok
10:27:41.0879 5944 [ 78AFB70DBE365BD6140E6740792AC3EA ] QBVSS C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
10:27:41.0885 5944 QBVSS - ok
10:27:41.0923 5944 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:27:41.0931 5944 ql2300 - ok
10:27:41.0962 5944 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:27:41.0962 5944 ql40xx - ok
10:27:41.0991 5944 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:27:41.0993 5944 QWAVE - ok
10:27:42.0007 5944 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:27:42.0008 5944 QWAVEdrv - ok
10:27:42.0019 5944 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:27:42.0020 5944 RasAcd - ok
10:27:42.0039 5944 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:27:42.0039 5944 RasAgileVpn - ok
10:27:42.0052 5944 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:27:42.0054 5944 RasAuto - ok
10:27:42.0080 5944 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:27:42.0081 5944 Rasl2tp - ok
10:27:42.0107 5944 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:27:42.0110 5944 RasMan - ok
10:27:42.0126 5944 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:27:42.0127 5944 RasPppoe - ok
10:27:42.0141 5944 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:27:42.0142 5944 RasSstp - ok
10:27:42.0167 5944 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:27:42.0169 5944 rdbss - ok
10:27:42.0190 5944 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:27:42.0190 5944 rdpbus - ok
10:27:42.0206 5944 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:27:42.0207 5944 RDPCDD - ok
10:27:42.0213 5944 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:27:42.0213 5944 RDPENCDD - ok
10:27:42.0229 5944 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:27:42.0230 5944 RDPREFMP - ok
10:27:42.0257 5944 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:27:42.0258 5944 RDPWD - ok
10:27:42.0287 5944 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:27:42.0289 5944 rdyboost - ok
10:27:42.0314 5944 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:27:42.0315 5944 RemoteAccess - ok
10:27:42.0335 5944 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:27:42.0337 5944 RemoteRegistry - ok
10:27:42.0355 5944 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:27:42.0357 5944 RpcEptMapper - ok
10:27:42.0381 5944 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:27:42.0382 5944 RpcLocator - ok
10:27:42.0410 5944 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
10:27:42.0413 5944 RpcSs - ok
10:27:42.0444 5944 [ 2ABD2B3BA2EF0C3BA82284C2A5E28675 ] RRNetCap C:\Windows\system32\DRIVERS\rrnetcap.sys
10:27:42.0444 5944 RRNetCap - ok
10:27:42.0448 5944 [ 2ABD2B3BA2EF0C3BA82284C2A5E28675 ] RRNetCapMP C:\Windows\system32\DRIVERS\rrnetcap.sys
10:27:42.0448 5944 RRNetCapMP - ok
10:27:42.0478 5944 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:27:42.0479 5944 rspndr - ok
10:27:42.0505 5944 [ 30F463768D5143BFD7B2DF822B53CF4D ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
10:27:42.0506 5944 RSUSBSTOR - ok
10:27:42.0538 5944 [ 4F10B2E09EA1C620E45BCE20C6EFD8D5 ] rsvcdwdr C:\Windows\system32\DRIVERS\rsvcdwdr.sys
10:27:42.0539 5944 rsvcdwdr - ok
10:27:42.0578 5944 [ FD978B2BF8A9B2390DCBEF435E9C1F9F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:27:42.0580 5944 RTL8167 - ok
10:27:42.0593 5944 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:27:42.0595 5944 SamSs - ok
10:27:42.0622 5944 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:27:42.0623 5944 sbp2port - ok
10:27:42.0648 5944 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:27:42.0650 5944 SCardSvr - ok
10:27:42.0685 5944 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:27:42.0686 5944 scfilter - ok
10:27:42.0820 5944 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:27:42.0832 5944 Schedule - ok
10:27:42.0854 5944 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:27:42.0856 5944 SCPolicySvc - ok
10:27:42.0909 5944 [ 54196CDAC7E1D81D71C652E100B99E77 ] ScsiAccess C:\Program Files (x86)\Photodex\ProShowGold\ScsiAccess.exe
10:27:42.0911 5944 ScsiAccess - ok
10:27:42.0934 5944 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:27:42.0935 5944 SDRSVC - ok
10:27:42.0963 5944 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:27:42.0964 5944 secdrv - ok
10:27:42.0985 5944 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:27:42.0987 5944 seclogon - ok
10:27:43.0016 5944 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:27:43.0018 5944 SENS - ok
10:27:43.0037 5944 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:27:43.0039 5944 SensrSvc - ok
10:27:43.0050 5944 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:27:43.0050 5944 Serenum - ok
10:27:43.0070 5944 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:27:43.0072 5944 Serial - ok
10:27:43.0091 5944 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:27:43.0092 5944 sermouse - ok
10:27:43.0125 5944 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:27:43.0128 5944 SessionEnv - ok
10:27:43.0156 5944 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:27:43.0156 5944 sffdisk - ok
10:27:43.0171 5944 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:27:43.0172 5944 sffp_mmc - ok
10:27:43.0208 5944 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:27:43.0209 5944 sffp_sd - ok
10:27:43.0228 5944 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:27:43.0229 5944 sfloppy - ok
10:27:43.0284 5944 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
10:27:43.0290 5944 SftService - ok
10:27:43.0342 5944 [ 43ADBE70270DFD40EBDA4DD0E492B5FB ] SgtSch2Svc C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
10:27:43.0347 5944 SgtSch2Svc - ok
10:27:43.0382 5944 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:27:43.0386 5944 ShellHWDetection - ok
10:27:43.0414 5944 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:27:43.0414 5944 SiSRaid2 - ok
10:27:43.0430 5944 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:27:43.0431 5944 SiSRaid4 - ok
10:27:43.0471 5944 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:27:43.0472 5944 SkypeUpdate - ok
10:27:43.0478 5944 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:27:43.0480 5944 Smb - ok
10:27:43.0515 5944 [ 8AC15211EB4BF019AAB0022781CC8AD0 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
10:27:43.0516 5944 snapman - ok
10:27:43.0548 5944 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:27:43.0549 5944 SNMPTRAP - ok
10:27:43.0581 5944 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
10:27:43.0581 5944 Sony SCSI Helper Service - ok
10:27:43.0596 5944 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:27:43.0597 5944 spldr - ok
10:27:43.0633 5944 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:27:43.0639 5944 Spooler - ok
10:27:43.0730 5944 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:27:43.0751 5944 sppsvc - ok
10:27:43.0779 5944 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:27:43.0780 5944 sppuinotify - ok
10:27:43.0810 5944 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:27:43.0813 5944 srv - ok
10:27:43.0839 5944 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:27:43.0841 5944 srv2 - ok
10:27:43.0851 5944 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:27:43.0852 5944 srvnet - ok
10:27:43.0869 5944 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:27:43.0871 5944 SSDPSRV - ok
10:27:43.0889 5944 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:27:43.0890 5944 SstpSvc - ok
10:27:43.0950 5944 [ 463E33B1EA7AF1E6EB87B66B831DB41A ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
10:27:43.0951 5944 STacSV - ok
10:27:43.0972 5944 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:27:43.0973 5944 stexstor - ok
10:27:44.0003 5944 [ 4304B75094E106FB5423A290C95841E5 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
10:27:44.0006 5944 STHDA - ok
10:27:44.0029 5944 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
10:27:44.0029 5944 StillCam - ok
10:27:44.0056 5944 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:27:44.0061 5944 stisvc - ok
10:27:44.0088 5944 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:27:44.0089 5944 swenum - ok
10:27:44.0130 5944 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:27:44.0137 5944 swprv - ok
10:27:44.0176 5944 [ 52EB25BD8AB4E331028C48B178441B36 ] sxuptp C:\Windows\system32\DRIVERS\sxuptp.sys
10:27:44.0178 5944 sxuptp - ok
10:27:44.0205 5944 [ 8A3FBCB3D6D4710730D27DA4392A4863 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:27:44.0207 5944 SynTP - ok
10:27:44.0263 5944 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
10:27:44.0278 5944 SysMain - ok
10:27:44.0299 5944 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:27:44.0301 5944 TabletInputService - ok
10:27:44.0318 5944 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:27:44.0321 5944 TapiSrv - ok
10:27:44.0351 5944 [ 93F0F5EF8A4CA261372DF98B31B2BD05 ] tbhsd C:\Windows\system32\drivers\tbhsd.sys
10:27:44.0351 5944 tbhsd - ok
10:27:44.0368 5944 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:27:44.0370 5944 TBS - ok
10:27:44.0432 5944 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:27:44.0444 5944 Tcpip - ok
10:27:44.0468 5944 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:27:44.0477 5944 TCPIP6 - ok
10:27:44.0522 5944 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:27:44.0523 5944 tcpipreg - ok
10:27:44.0561 5944 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:27:44.0562 5944 TDPIPE - ok
10:27:44.0601 5944 [ AC1FC18D04B92BAC16CBD85DE2A08A0B ] tdrpman C:\Windows\system32\DRIVERS\tdrpman.sys
10:27:44.0605 5944 tdrpman - ok
10:27:44.0628 5944 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:27:44.0629 5944 TDTCP - ok
10:27:44.0654 5944 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:27:44.0656 5944 tdx - ok
10:27:44.0682 5944 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:27:44.0683 5944 TermDD - ok
10:27:44.0725 5944 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:27:44.0731 5944 TermService - ok
10:27:44.0757 5944 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:27:44.0759 5944 Themes - ok
10:27:44.0778 5944 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:27:44.0779 5944 THREADORDER - ok
10:27:44.0799 5944 [ 3E24B7FE52BC455DA8D6E2CC2B4CA23F ] tifsfilter C:\Windows\system32\DRIVERS\tifsfilt.sys
10:27:44.0800 5944 tifsfilter - ok
10:27:44.0844 5944 [ EC4FD4D147985A97E881729E808E6F34 ] timounter C:\Windows\system32\DRIVERS\timntr.sys
10:27:44.0847 5944 timounter - ok
10:27:44.0915 5944 [ 75EA1A81C9BD03F2A768901EC9DB2816 ] TivoBeacon2 C:\Program Files (x86)\TiVo\Desktop\TiVoBeacon.exe
10:27:44.0926 5944 TivoBeacon2 - ok
10:27:44.0954 5944 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:27:44.0955 5944 TrkWks - ok
10:27:44.0992 5944 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:27:44.0994 5944 TrustedInstaller - ok
10:27:45.0008 5944 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:27:45.0009 5944 tssecsrv - ok
10:27:45.0031 5944 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:27:45.0031 5944 TsUsbFlt - ok
10:27:45.0052 5944 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:27:45.0053 5944 tunnel - ok
10:27:45.0073 5944 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
10:27:45.0073 5944 TurboB - ok
10:27:45.0123 5944 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
10:27:45.0124 5944 TurboBoost - ok
10:27:45.0151 5944 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:27:45.0153 5944 uagp35 - ok
10:27:45.0192 5944 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:27:45.0195 5944 udfs - ok
10:27:45.0226 5944 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:27:45.0228 5944 UI0Detect - ok
10:27:45.0256 5944 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:27:45.0257 5944 uliagpkx - ok
10:27:45.0271 5944 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:27:45.0272 5944 umbus - ok
10:27:45.0283 5944 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:27:45.0284 5944 UmPass - ok
10:27:45.0344 5944 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
10:27:45.0349 5944 UMVPFSrv - ok
10:27:45.0481 5944 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:27:45.0499 5944 UNS - ok
10:27:45.0529 5944 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:27:45.0532 5944 upnphost - ok
10:27:45.0557 5944 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:27:45.0557 5944 USBAAPL64 - ok
10:27:45.0587 5944 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:27:45.0588 5944 usbaudio - ok
10:27:45.0608 5944 [ C85B8247FADD432FA54FE11667C8D97D ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
10:27:45.0608 5944 usbbus - ok
10:27:45.0639 5944 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:27:45.0640 5944 usbccgp - ok
10:27:45.0672 5944 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:27:45.0673 5944 usbcir - ok
10:27:45.0703 5944 [ D8CDC12F5429878F23DDB3785A0FDF95 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
10:27:45.0704 5944 UsbDiag - ok
10:27:45.0731 5944 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:27:45.0732 5944 usbehci - ok
10:27:45.0754 5944 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:27:45.0756 5944 usbhub - ok
10:27:45.0775 5944 [ 79FA7A22B0F6F0082F640CBC82A00FCE ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
10:27:45.0775 5944 USBModem - ok
10:27:45.0795 5944 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:27:45.0796 5944 usbohci - ok
10:27:45.0825 5944 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:27:45.0826 5944 usbprint - ok
10:27:45.0859 5944 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:27:45.0859 5944 usbscan - ok
10:27:45.0884 5944 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:27:45.0886 5944 USBSTOR - ok
10:27:45.0911 5944 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:27:45.0912 5944 usbuhci - ok
10:27:45.0946 5944 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
10:27:45.0948 5944 usbvideo - ok
10:27:45.0965 5944 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:27:45.0967 5944 UxSms - ok
10:27:45.0972 5944 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:27:45.0973 5944 VaultSvc - ok
10:27:45.0988 5944 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:27:45.0989 5944 vdrvroot - ok
10:27:46.0023 5944 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:27:46.0028 5944 vds - ok
10:27:46.0057 5944 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:27:46.0058 5944 vga - ok
10:27:46.0069 5944 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:27:46.0070 5944 VgaSave - ok
10:27:46.0083 5944 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:27:46.0084 5944 vhdmp - ok
10:27:46.0110 5944 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:27:46.0110 5944 viaide - ok
10:27:46.0124 5944 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:27:46.0125 5944 volmgr - ok
10:27:46.0158 5944 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:27:46.0160 5944 volmgrx - ok
10:27:46.0196 5944 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:27:46.0199 5944 volsnap - ok
10:27:46.0222 5944 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:27:46.0224 5944 vsmraid - ok
10:27:46.0280 5944 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:27:46.0293 5944 VSS - ok
10:27:46.0307 5944 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:27:46.0308 5944 vwifibus - ok
10:27:46.0322 5944 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:27:46.0323 5944 vwififlt - ok
10:27:46.0349 5944 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
10:27:46.0349 5944 vwifimp - ok
10:27:46.0380 5944 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:27:46.0385 5944 W32Time - ok
10:27:46.0447 5944 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
10:27:46.0452 5944 W3SVC - ok
10:27:46.0475 5944 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:27:46.0475 5944 WacomPen - ok
10:27:46.0504 5944 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:27:46.0505 5944 WANARP - ok
10:27:46.0510 5944 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:27:46.0511 5944 Wanarpv6 - ok
10:27:46.0521 5944 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
10:27:46.0525 5944 WAS - ok
10:27:46.0585 5944 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:27:46.0595 5944 WatAdminSvc - ok
10:27:46.0647 5944 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:27:46.0658 5944 wbengine - ok
10:27:46.0685 5944 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:27:46.0687 5944 WbioSrvc - ok
10:27:46.0710 5944 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:27:46.0712 5944 wcncsvc - ok
10:27:46.0728 5944 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:27:46.0729 5944 WcsPlugInService - ok
10:27:46.0760 5944 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:27:46.0760 5944 Wd - ok
10:27:46.0835 5944 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:27:46.0843 5944 Wdf01000 - ok
10:27:46.0862 5944 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:27:46.0864 5944 WdiServiceHost - ok
10:27:46.0868 5944 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:27:46.0870 5944 WdiSystemHost - ok
10:27:46.0901 5944 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:27:46.0903 5944 WebClient - ok
10:27:46.0924 5944 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:27:46.0926 5944 Wecsvc - ok
10:27:46.0943 5944 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:27:46.0945 5944 wercplsupport - ok
10:27:46.0975 5944 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:27:46.0977 5944 WerSvc - ok
10:27:46.0993 5944 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:27:46.0993 5944 WfpLwf - ok
10:27:47.0014 5944 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
10:27:47.0016 5944 WimFltr - ok
10:27:47.0044 5944 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:27:47.0045 5944 WIMMount - ok
10:27:47.0055 5944 WinHttpAutoProxySvc - ok
10:27:47.0108 5944 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:27:47.0109 5944 Winmgmt - ok
10:27:47.0174 5944 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:27:47.0191 5944 WinRM - ok
10:27:47.0221 5944 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:27:47.0222 5944 WinUsb - ok
10:27:47.0264 5944 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:27:47.0271 5944 Wlansvc - ok
10:27:47.0389 5944 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:27:47.0405 5944 wlidsvc - ok
10:27:47.0456 5944 [ DE816A0624D54D68E1FB8A9028DCF81A ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
10:27:47.0457 5944 wltrysvc - ok
10:27:47.0475 5944 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:27:47.0476 5944 WmiAcpi - ok
10:27:47.0508 5944 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:27:47.0510 5944 wmiApSrv - ok
10:27:47.0533 5944 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:27:47.0535 5944 WPCSvc - ok
10:27:47.0565 5944 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:27:47.0567 5944 WPDBusEnum - ok
10:27:47.0594 5944 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:27:47.0595 5944 ws2ifsl - ok
10:27:47.0607 5944 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
10:27:47.0608 5944 wscsvc - ok
10:27:47.0612 5944 WSearch - ok
10:27:47.0670 5944 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:27:47.0684 5944 wuauserv - ok
10:27:47.0705 5944 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:27:47.0706 5944 WudfPf - ok
10:27:47.0724 5944 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:27:47.0725 5944 WUDFRd - ok
10:27:47.0748 5944 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:27:47.0750 5944 wudfsvc - ok
10:27:47.0770 5944 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:27:47.0773 5944 WwanSvc - ok
10:27:47.0809 5944 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
10:27:47.0812 5944 yukonw7 - ok
10:27:47.0821 5944 ================ Scan global ===============================
10:27:47.0862 5944 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:27:47.0889 5944 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:27:47.0895 5944 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:27:47.0915 5944 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:27:47.0945 5944 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:27:47.0947 5944 [Global] - ok
10:27:47.0948 5944 ================ Scan MBR ==================================
10:27:47.0962 5944 [ C3220EB08ADD62E3ED9F72A1F4E4B1BB ] \Device\Harddisk0\DR0
10:27:48.0258 5944 \Device\Harddisk0\DR0 - ok
10:27:48.0264 5944 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
10:27:48.0476 5944 \Device\Harddisk1\DR1 - ok
10:27:48.0477 5944 ================ Scan VBR ==================================
10:27:48.0480 5944 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
10:27:48.0483 5944 \Device\Harddisk0\DR0\Partition1 - ok
10:27:48.0498 5944 [ 4F2F739EA71BA71BB896A135337400C9 ] \Device\Harddisk0\DR0\Partition2
10:27:48.0501 5944 \Device\Harddisk0\DR0\Partition2 - ok
10:27:48.0515 5944 [ DAC00C3567646B289B833380EB6BDDB6 ] \Device\Harddisk0\DR0\Partition3
10:27:48.0517 5944 \Device\Harddisk0\DR0\Partition3 - ok
10:27:48.0522 5944 [ 6ED9C3CBA4E34A6B927A6D278C8EDD0D ] \Device\Harddisk1\DR1\Partition1
10:27:48.0525 5944 \Device\Harddisk1\DR1\Partition1 - ok
10:27:48.0527 5944 ============================================================
10:27:48.0527 5944 Scan finished
10:27:48.0527 5944 ============================================================
10:27:48.0536 6704 Detected object count: 1
10:27:48.0537 6704 Actual detected object count: 1
10:28:08.0014 6704 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
10:28:08.0014 6704 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip


ASWMBR LOG:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-01 10:30:38
-----------------------------
10:30:38.055 OS Version: Windows x64 6.1.7601 Service Pack 1
10:30:38.056 Number of processors: 4 586 0x2505
10:30:38.057 ComputerName: WHITEPOINT UserName: Gaye Levy
10:30:38.679 Initialize success
10:32:58.598 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:32:58.603 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 610480MB BusType: 3
10:32:58.607 Disk 1 \Device\Harddisk1\DR1 -> \Device\000000ac
10:32:58.610 Disk 1 Vendor: Size: 610480MB BusType: 0
10:32:58.632 Disk 0 MBR read successfully
10:32:58.637 Disk 0 MBR scan
10:32:58.640 Disk 0 Windows 7 default MBR code
10:32:58.651 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 100 MB offset 2048
10:32:58.659 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
10:32:58.680 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 100727 MB offset 30926848
10:32:58.683 Disk 0 Partition - 00 0F Extended LBA 494649 MB offset 237215795
10:32:58.730 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 494649 MB offset 237215858
10:32:58.761 Disk 0 scanning C:\Windows\system32\drivers
10:33:06.753 Service scanning
10:33:24.273 Modules scanning
10:33:24.289 Disk 0 trace - called modules:
10:33:24.311 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
10:33:24.317 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80064bf060]
10:33:24.321 3 CLASSPNP.SYS[fffff8800118e43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006258050]
10:33:24.326 Scan finished successfully
10:34:46.715 Disk 0 MBR has been saved successfully to "E:\My Documents\01. My PDFs\!!2012-12\MBR.dat"
10:34:46.773 The log file has been saved successfully to "E:\My Documents\01. My PDFs\!!2012-12\aswMBR.txt"

---
ESET Online Scanner:

E:\My Documents\My Downloads\Nero 9\NERO 9 Installation Disc\Nero 9\unit_app_75\Toolbar.exe Win32/Toolbar.AskSBar application
E:\My Documents\My Downloads\Nero 9\NERO 9 Installation Disc\Nero BackItUp 4\unit_app_75\Toolbar.exe Win32/Toolbar.AskSBar application
E:\My Documents\My Downloads\Nero 9\NERO 9 Installation Disc\Nero MediaHome 4 Trial\unit_app_75\Toolbar.exe Win32/Toolbar.AskSBar application
S:\Goodsync E\My Documents\My Downloads\Nero 9\NERO 9 Installation Disc\Nero 9\unit_app_75\Toolbar.exe Win32/Toolbar.AskSBar application
S:\Goodsync E\My Documents\My Downloads\Nero 9\NERO 9 Installation Disc\Nero BackItUp 4\unit_app_75\Toolbar.exe Win32/Toolbar.AskSBar application
S:\Goodsync E\My Documents\My Downloads\Nero 9\NERO 9 Installation Disc\Nero MediaHome 4 Trial\unit_app_75\Toolbar.exe Win32/Toolbar.AskSBar application

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:03 PM

Posted 01 December 2012 - 05:18 PM

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 Gaye

Gaye
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 01 December 2012 - 06:35 PM

Here are all of the logs:

Mini Toolbox:

MiniToolBox by Farbar Version: 25-11-2012
Ran by Gaye Levy (administrator) on 01-12-2012 at 15:15:44
Running from "C:\Users\Gaye Levy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\03OA2D5U"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Broadcom Virtual Wireless Adapter = Local Area Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Whitepoint
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : westell.com

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 1C-65-9D-F1-42-65
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom Virtual Wireless Adapter
Physical Address. . . . . . . . . : 1C-65-9D-F1-42-65
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : westell.com
Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : 1C-65-9D-F1-42-65
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::489b:c00a:a290:83c3%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.169(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, December 01, 2012 2:21:03 PM
Lease Expires . . . . . . . . . . : Sunday, December 02, 2012 2:21:06 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 219964829
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-CB-B5-68-F0-4D-A2-D0-62-15
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.westell.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 23:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{8BD9FBCC-40D9-4747-A693-BEADB906E784}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{7DD77464-DA97-4E6D-B1BC-97878DDEF587}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #8
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dslrouter.westell.com
Address: 192.168.0.1

Name: google.com
Addresses: 2607:f8b0:4000:800::1005
74.125.227.104
74.125.227.105
74.125.227.110
74.125.227.96
74.125.227.97
74.125.227.98
74.125.227.99
74.125.227.100
74.125.227.101
74.125.227.102
74.125.227.103


Pinging google.com [74.125.227.103] with 32 bytes of data:
Reply from 74.125.227.103: bytes=32 time=93ms TTL=52
Reply from 74.125.227.103: bytes=32 time=85ms TTL=52

Ping statistics for 74.125.227.103:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 85ms, Maximum = 93ms, Average = 89ms
Server: dslrouter.westell.com
Address: 192.168.0.1

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=96ms TTL=49
Reply from 72.30.38.140: bytes=32 time=291ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 96ms, Maximum = 291ms, Average = 193ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 5ms, Average = 4ms
===========================================================================
Interface List
13...1c 65 9d f1 42 65 ......Microsoft Virtual WiFi Miniport Adapter
12...1c 65 9d f1 42 65 ......Broadcom Virtual Wireless Adapter
11...1c 65 9d f1 42 65 ......DW1501 Wireless-N WLAN Half-Mini Card
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
34...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
35...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
36...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
38...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #8
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.169 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.169 281
192.168.0.169 255.255.255.255 On-link 192.168.0.169 281
192.168.0.255 255.255.255.255 On-link 192.168.0.169 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.169 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.169 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::489b:c00a:a290:83c3/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog


Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.


Details:
0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800))

Error: (12/01/2012 02:23:54 PM) (Source: ESENT) (User: )
Description: Windows (4320) Windows: Error -1811 occurred while opening logfile C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0094D.log.


System errors:
=============
Error: (12/01/2012 03:13:07 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (12/01/2012 03:13:07 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (12/01/2012 03:12:05 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (12/01/2012 03:12:05 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (12/01/2012 03:08:43 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (12/01/2012 03:06:09 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (12/01/2012 03:06:09 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (12/01/2012 03:05:12 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (12/01/2012 03:05:12 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (12/01/2012 02:59:03 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service)(User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/01/2012 02:23:55 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service)(User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service)(User: )
Description:
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (12/01/2012 02:23:54 PM) (Source: Windows Search Service)(User: )
Description:
Details:
0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800))

Error: (12/01/2012 02:23:54 PM) (Source: ESENT)(User: )
Description: Windows4320Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0094D.log-1811


CodeIntegrity Errors:
===================================
Date: 2012-11-13 16:32:21.542
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:32:21.392
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:32:21.272
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:32:21.142
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:32:21.022
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:32:20.902
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:28:49.929
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:28:49.809
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:28:49.678
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 16:28:49.568
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech\SetPoint\lgscroll.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
ABBYY FineReader for ScanSnap ™ 4.1 (Version: 8.02.650.72520)
ActiveState ActivePython 2.7.1.4 (32-bit) (Version: 2.7.4)
Adobe Acrobat X Standard - English, Français, Deutsch (Version: 10.0.0)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Advanced Audio FX Engine (Version: 1.12.05)
Akamai NetSession Interface
Akamai NetSession Interface Service
Amazon Kindle
AnswerWorks 5.0 English Runtime (Version: 5.0.7)
Apple Application Support (Version: 2.3)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Atlantis Quest
Audials (Version: 8.0.54900.0)
Audials TV (Version: 1.3.10803.300)
Belarc Advisor 8.1
Belkin Setup and Router Monitor
Belkin USB Print and Storage Center (Version: 1.1.4)
Bonjour (Version: 3.0.0.10)
BRAdmin Professional 3 (Version: 3.40.0006)
Brother MFL-Pro Suite MFC-8660DN MFC-8860DN (Version: 1.0.0.0)
calibre (Version: 0.9.2)
Carbonite (Version: 5.2.3 build 2094 (Jun-04-2012))
CardMinder (Version: V4.1L50)
CardMinder V4.1 (Version: 4.1.40.1)
CCleaner (Version: 3.24)
CDDRV_Installer (Version: 4.60)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Clipboard Live (Version: 1.0.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Core FTP LE
Coupon Printer for Windows (Version: 5.0.0.1)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.48)
Dell Dock (Version: 2.0)
Dell Driver Download Manager (Version: 2.1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell Support Center (Version: 3.2.6032.55)
Dell System Detect (Version: 3.3.2.0)
Dell Webcam Central (Version: 1.40.05)
Dropbox (Version: 1.4.7)
DVD Decrypter (Remove Only)
DVD Shrink 3.2
DVDFab 8.0.6.8 (05/01/2011)
DW WLAN Card Utility (Version: 5.60.48.35)
EASEUS Partition Master 8.0.1 Professional
EaseUS Todo Backup Free 4.5 (Version: 4.5)
ESET Online Scanner v3
Evernote v. 4.4 (Version: 4.4.0.4848)
FastStone Photo Resizer 3.1 (Version: 3.1)
FileHippo.com Update Checker
Flickr Uploadr 3.2.1
FlipShare (Version: 5.12.3.0)
GoodSync (Version: 8.9.9.2)
Google Update Helper (Version: 1.3.21.123)
iCloud (Version: 2.0.2.187)
IconRestorer 1.0.8.1 SR1
Ideal DVD Copy V4.1.2
IDT Audio (Version: 1.0.6289.0)
ieSpell (Version: 2.6.4 (build 573))
iLinc 11 Client
Image Resizer Powertoy Clone for Windows (64 bit) (Version: 2.1)
ImgBurn (Version: 2.5.7.0)
Imtech Find & Replace Live Writer Plugin (Version: 1.0.0)
Insert Link Plugin (Version: 1.0.0)
Insert Links Smartly (WLW Plugin) (Version: 1.0.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2202)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.4.1002)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Internet Explorer (Version: 8)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iTunes (Version: 10.7.0.21)
Java 7 Update 6 (64-bit) (Version: 7.0.60)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
Junk Mail filter update (Version: 16.4.3505.0912)
KhalInstallWrapper (Version: 2.00.0000)
Kyodai Mahjongg 2006 v1.42
LG Outlook Sync (Version: 1.1.0.1)
LG United Mobile Drivers (Version: 3.3.0.0)
Logitech SetPoint (Version: 4.80)
Logitech Unifying Software 2.00 (Version: 2.00.43)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MasterCook Deluxe 8 (Version: 8.00.000)
Maximized Software TiViTunes (Version: 1.5)
MDO Desktop
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000)
Microsoft Digital Image Suite 2006 (Version: 11.0.0422)
Microsoft Digital Image Suite 2006 Editor (Version: 11.0.0422)
Microsoft Digital Image Suite 2006 Library (Version: 11.0.0422)
Microsoft Expression Blend SDK for .NET 4 (Version: 2.0.20525.0)
Microsoft Expression Blend SDK for Silverlight 4 (Version: 2.0.20525.0)
Microsoft Expression Encoder 4 Screen Capture Codec (Version: 4.0.1639.0)
Microsoft Expression Studio 4 (Version: 4.0.20525.0)
Microsoft Expression Web 4 (Version: 4.0.1303.0)
Microsoft Expression Web 4 Service Pack 2
Microsoft IntelliPoint 8.0 (Version: 8.0.225.0)
Microsoft Money Plus (Version: 17)
Microsoft Money Shared Libraries (Version: 17.0.0.3817)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Outlook Social Connector Provider for Facebook 32-bit (Version: 14.0.5117.5000)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (Version: 14.0.5120.5000)
Microsoft Primary Interoperability Assemblies 2005 (Version: 8.0.50727.42)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50401.0)
Microsoft SkyDrive (Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Microsoft Web Platform Installer 3.0 (Version: 3.0.4)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mobipocket Reader 6.2 (Version: 6.2.608)
Module 06 - Article Marketing (Version: 2.00)
Movie Maker (Version: 16.4.3505.0912)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
My Toolbar
Netflix in Windows Media Center (Version: 3.3.101.0)
OverDrive Media Console (Version: 3.2.20)
Paint.NET v3.5.10 (Version: 3.60.0)
Paste Title (Windows Live Writer Plug-in) (Version: 1.0.1)
Photo Gallery (Version: 16.4.3505.0912)
Photodex Presenter
Plants vs. Zombies
ProShow Gold
Python 2.7 pycrypto-2.3 (Version: 2.3.0)
QuickBooks (Version: 21.0.4012.904)
QuickBooks Premier: Accountant Edition 2011 (Version: 21.0.4012.904)
Quicken 2010 (Version: 19.1.1.27)
Quicken 2011 (Version: 20.1.8.6)
Quickset64 (Version: 10.5.0)
QuickTime (Version: 7.73.80.64)
Reader Library by Sony (Version: 3.3.00.07130)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30109)
RegVac Registry Cleaner 5.02 (Registered Version)
Revo Uninstaller 1.92 (Version: 1.92)
Riot - Radical Image Optimization Tool
RoboForm 7-8-2-5 (All Users) (Version: 7-8-2-5)
Roxio Burn (Version: 1.01)
ScanSnap (Version: 5.1.41.1)
ScanSnap (Version: 5.1.61.1)
ScanSnap Manager (Version: V5.1L61)
ScanSnap Organizer (Version: 4.1.41.1)
ScanSnap Organizer (Version: 4.1.60.2)
ScanSnap Organizer (Version: V4.1L60)
Seagate DiscWizard (Version: 11.0.8326)
Simple CSS 2.1
Skype Click to Call (Version: 5.11.9874)
Skype Toolbar for Outlook (Version: 1.0.4693)
Skype™ 6.0 (Version: 6.0.126)
Synaptics Pointing Device Driver (Version: 15.0.0.1)
TiVo Desktop 2.8.2 (Version: 2.8.412.369)
TiVoPlayList v0.70
TurboTax 2010
TurboTax 2010 WinPerFedFormset (Version: 010.000.5108)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0501)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0219)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.3351)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0496)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0222)
TurboTax 2011 wrapper (Version: 011.000.0121)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Video Mover
VideoReDo TVSuite Version 3.1.4.549
ViewSonic Monitor Drivers
Visual Studio 2005 Tools for Office Second Edition Runtime
VLC media player 1.1.7 (Version: 1.1.7)
WildTangent Games (Version: 1.0.0.71)
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Mail (Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
Windows Live Writer (Version: 16.4.3505.0912)
Windows Live Writer Resources (Version: 16.4.3505.0912)
WinPatrol (Version: 24.5.2012)
WinPatrol (Version: 25.0.2012.5)
WPF Toolkit February 2010 (Version 3.5.50211.1) (Version: 3.5.50211.1)
XHeader (Version: 1.215)
XSitePro2 (Version: 2.501)
Zuma's Revenge!

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 5942.68 MB
Available physical RAM: 3183.74 MB
Total Pagefile: 11883.56 MB
Available Pagefile: 8825.63 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.03 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:98.37 GB) (Free:12.41 GB) NTFS
3 Drive e: (Data) (Fixed) (Total:483.06 GB) (Free:70.11 GB) NTFS
4 Drive s: (Seagate) (Fixed) (Total:1863.01 GB) (Free:709.24 GB) NTFS

========================= Users: ========================================

User accounts for \\WHITEPOINT

Administrator Gaye Levy Guest
Shelly Ayon

========================= Restore Points ==================================

14-11-2012 00:27:31 Windows Update
15-11-2012 22:19:02 Windows Update
18-11-2012 05:00:12 Windows Backup
19-11-2012 00:28:20 Windows Update
22-11-2012 20:32:43 Windows Update
25-11-2012 23:54:43 Windows Update
28-11-2012 05:28:45 Windows Update
28-11-2012 21:08:56 Installed ScanSnap Manager
28-11-2012 21:12:06 Installed ScanSnap Organizer
28-11-2012 21:13:50 Installed CardMinder
28-11-2012 21:15:34 Installed ABBYY FineReader for ScanSnap ™ 4.1
28-11-2012 21:20:41 Installed Evernote v. 4.4
28-11-2012 21:37:07 Installed ScanSnap Organizer
28-11-2012 21:38:24 Installed CardMinder
28-11-2012 21:41:29 Installed ScanSnap Manager
28-11-2012 21:55:07 Removed Adobe Acrobat X Pro - English, Français, Deutsch.
28-11-2012 22:12:32 Installed Adobe Acrobat X Standard - English, Français, Deutsch.
28-11-2012 22:34:28 Revo Uninstaller's restore point - Adobe Acrobat X Standard - English, Français, Deutsch
28-11-2012 22:35:07 Removed Adobe Acrobat X Standard - English, Français, Deutsch.
28-11-2012 23:18:31 Installed Adobe Acrobat X Standard - English, Français, Deutsch.

**** End of log ****

Farbar Service Scanner:

Farbar Service Scanner Version: 01-12-2012 02
Ran by Gaye Levy (administrator) on 01-12-2012 at 15:17:58
Running from "C:\Users\Gaye Levy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YH9R80BN"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
Unable to retrieve ServiceDll of WinDefend. The value does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to retrieve start type of iphlpsvc. The value does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to retrieve ImagePath of iphlpsvc. The value does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to retrieve ServiceDll of iphlpsvc. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Adware Cleaner:

# AdwCleaner v2.010 - Logfile created 12/01/2012 at 15:20:09
# Updated 29/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Gaye Levy - WHITEPOINT
# Boot Mode : Normal
# Running from : C:\Users\Gaye Levy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XD8MQI01\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Ilivid
Folder Deleted : C:\ProgramData\~0
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\Users\Gaye Levy\AppData\Local\Ilivid Player

***** [Registry] *****

Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EA582743-9076-4178-9AA6-7393FDF4D5CE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA582743-9076-4178-9AA6-7393FDF4D5CE}
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKLM\SOFTWARE\Classes\AlxSSB.AlxTBSSB
Key Deleted : HKLM\SOFTWARE\Classes\AlxSSB.AlxTBSSB.1
Key Deleted : HKLM\SOFTWARE\Classes\AlxTB2.ToolBarProxy
Key Deleted : HKLM\SOFTWARE\Classes\AlxTB2.ToolBarProxy.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1F02FB61-2BE5-4C16-8199-AEAA16EB0342}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{33D0AD98-3347-4A54-8929-5163EBEB9F72}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92E5039E-FF1E-4AFB-8F24-87592D20C383}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DA9FC525-41ED-4C00-B046-946DA7CDD305}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{20E1481B-E285-4ABC-ADC7-AE24842B81CD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{51F04BD6-3888-4849-864C-617FAE709CE0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{69A72A8A-84ED-4a75-8CE7-263DBEF3E5D3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B3EAD50C-ECB0-459A-9EDA-F505AB99675B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E57091A7-B5F0-4C42-9329-72ED3E59ED31}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EA582743-9076-4178-9AA6-7393FDF4D5CE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0923E315-2D8B-48CE-A37C-AE9A42F9711C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1A1BBE49-C6F1-40EA-9D2F-262F0AF6DDE3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2022154E-7E3E-4809-871E-1B45A6FC7058}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{292ECB89-350E-45D2-816F-52C15305B144}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{36CC2180-B6BF-4951-9578-6B0C40044AAA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{44A36944-22C6-4A08-BC7C-161F3E540DBF}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{51F04BD6-3888-4849-864C-617FAE709CE0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6247DD2C-8CF9-4041-A235-93691D71B8B4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{835BED79-DF7E-4096-B355-ED43FA2EA87B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8C953EC4-8CFA-44FB-B32E-1249E5505091}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8E863BD6-50DE-47D0-A6F1-3C1F6DB72451}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9DD36F1E-5111-41C5-ADED-A2A11A2FF3E4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A2FB8217-E320-434E-BA79-513E357AD54F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A9CEBBF4-9129-479A-9231-E833ED3D3A8F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AFD4D1F9-167C-4884-95AE-B5A9797B0D16}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B3EAD50C-ECB0-459A-9EDA-F505AB99675B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C47788B1-9604-4D7A-A684-F4D450F2D7D2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{CA3B41D0-D4C1-4808-B248-75DA27238828}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D4A2FF6C-087F-4D40-8DFE-92AAD484BFB8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D88B9D5C-A9CF-4C69-906D-1CCA5D85A2EF}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E4E394E0-D331-431F-B76D-E3A19193D5F6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F83AF01C-AA2F-469F-8BE7-D178FB15FD07}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E57091A7-B5F0-4C42-9329-72ED3E59ED31}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0923E315-2D8B-48CE-A37C-AE9A42F9711C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1A1BBE49-C6F1-40EA-9D2F-262F0AF6DDE3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2022154E-7E3E-4809-871E-1B45A6FC7058}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{292ECB89-350E-45D2-816F-52C15305B144}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{36CC2180-B6BF-4951-9578-6B0C40044AAA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44A36944-22C6-4A08-BC7C-161F3E540DBF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6247DD2C-8CF9-4041-A235-93691D71B8B4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{835BED79-DF7E-4096-B355-ED43FA2EA87B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8E863BD6-50DE-47D0-A6F1-3C1F6DB72451}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9DD36F1E-5111-41C5-ADED-A2A11A2FF3E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A2FB8217-E320-434E-BA79-513E357AD54F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A9CEBBF4-9129-479A-9231-E833ED3D3A8F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AFD4D1F9-167C-4884-95AE-B5A9797B0D16}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B3EAD50C-ECB0-459A-9EDA-F505AB99675B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C47788B1-9604-4D7A-A684-F4D450F2D7D2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA3B41D0-D4C1-4808-B248-75DA27238828}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D4A2FF6C-087F-4D40-8DFE-92AAD484BFB8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D88B9D5C-A9CF-4C69-906D-1CCA5D85A2EF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F83AF01C-AA2F-469F-8BE7-D178FB15FD07}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EA582743-9076-4178-9AA6-7393FDF4D5CE}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [7143 octets] - [01/12/2012 15:20:09]

########## EOF - C:\AdwCleaner[S1].txt - [7203 octets] ##########


Junkware Removal Tool:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 3.7.2 (12.01.2012:2)
OS: Windows 7 Home Premium x64
Ran by Gaye Levy on Sat 12/01/2012 at 15:29:00.47
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


~~~ Services

~~~ Registry Values


~~~ Registry Keys

Successfully deleted: [Registry Key] "hkey_current_user\software\billp studios\detected\startup"

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\Gaye Levy\AppData\Roaming\dvdvideosoft"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 12/01/2012 at 15:33:27.36
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:03 PM

Posted 02 December 2012 - 11:05 AM

Malwarebytes log?

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#7 Gaye

Gaye
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 02 December 2012 - 03:52 PM

Here are the next set of results. Windows Firewall now seems to be running. Does everything look okay to you?

Gaye



Here is the malwarebytes log:


2012/12/01 00:08:05 -0800 WHITEPOINT Gaye Levy MESSAGE Executing scheduled update: Daily
2012/12/01 00:08:14 -0800 WHITEPOINT Gaye Levy MESSAGE Scheduled update executed successfully: database updated from version v2012.11.30.05 to version v2012.12.01.04
2012/12/01 00:08:14 -0800 WHITEPOINT Gaye Levy MESSAGE Starting database refresh
2012/12/01 00:08:14 -0800 WHITEPOINT Gaye Levy MESSAGE Stopping IP protection
2012/12/01 00:08:15 -0800 WHITEPOINT Gaye Levy MESSAGE IP Protection stopped successfully
2012/12/01 00:08:17 -0800 WHITEPOINT Gaye Levy MESSAGE Database refreshed successfully
2012/12/01 00:08:17 -0800 WHITEPOINT Gaye Levy MESSAGE Starting IP protection
2012/12/01 00:08:18 -0800 WHITEPOINT Gaye Levy MESSAGE IP Protection started successfully
2012/12/01 05:00:00 -0800 WHITEPOINT Gaye Levy MESSAGE Executing scheduled scan: Quick Scan | Daily | Silent | -remove | -terminate
2012/12/01 05:00:00 -0800 WHITEPOINT Gaye Levy MESSAGE Scheduled scan executed successfully
2012/12/01 14:26:48 -0800 WHITEPOINT Gaye Levy MESSAGE Starting protection
2012/12/01 14:26:49 -0800 WHITEPOINT Gaye Levy MESSAGE Protection started successfully
2012/12/01 14:26:49 -0800 WHITEPOINT Gaye Levy MESSAGE Starting IP protection
2012/12/01 14:26:51 -0800 WHITEPOINT Gaye Levy MESSAGE IP Protection started successfully
2012/12/01 15:23:54 -0800 WHITEPOINT Gaye Levy MESSAGE Starting protection
2012/12/01 15:23:55 -0800 WHITEPOINT Gaye Levy MESSAGE Protection started successfully
2012/12/01 15:23:55 -0800 WHITEPOINT Gaye Levy MESSAGE Starting IP protection
2012/12/01 15:23:57 -0800 WHITEPOINT Gaye Levy MESSAGE IP Protection started successfully
2012/12/01 16:08:05 -0800 WHITEPOINT Gaye Levy MESSAGE Starting protection
2012/12/01 16:08:07 -0800 WHITEPOINT Gaye Levy MESSAGE Protection started successfully
2012/12/01 16:08:07 -0800 WHITEPOINT Gaye Levy MESSAGE Starting IP protection
2012/12/01 16:08:09 -0800 WHITEPOINT Gaye Levy MESSAGE IP Protection started successfully


Run the services repair tool:

After running this and rebooting, Windows Firewall came up. Yay!

Farbar Service Scanner:

Farbar Service Scanner Version: 01-12-2012 02
Ran by Gaye Levy (administrator) on 02-12-2012 at 12:29:49
Running from "C:\Users\Gaye Levy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YK7TZSCZ"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Yahoo.com is offline


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

RKILL Log:

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/02/2012 12:43:16 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\SSDriver\fi5110\SsWiaChecker.exe (PID: 3996) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\exefile\shell\open\command\\IsolatedCommand was changed. It was reset to "%1" %*!

* HKLM\Software\Classes\exefile\shell\runas\command\\IsolatedCommand was changed. It was reset to "%1" %*!


Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* WMPNetworkSvc [Missing ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 12/02/2012 12:43:33 PM
Execution time: 0 hours(s), 0 minute(s), and 17 seconds(s)

Autoruns:

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Broadcom Wireless Manager UI" "DW WLAN Card Wireless Network Tray Applet" "Dell Inc." "c:\program files\dell\dw wlan card\wltray.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "IntelliPoint" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "Kernel and Hardware Abstraction Layer" "Logitech KHAL Main Process" "Logitech, Inc." "c:\windows\khalmnpr.exe"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "QuickSet" "QuickSet" "Dell Inc." "c:\program files\dell\quickset\quickset.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Acrobat Assistant 8.0" "AcroTray" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 10.0\acrobat\acrotray.exe"
+ "Adobe Acrobat Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\acrobat 10.0\acrobat\acrobat_sl.exe"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "Carbonite Backup" "Carbonite User Interface" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carboniteui.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "Intuit SyncManager" "IntuitSyncManager" "Intuit Inc. All rights reserved." "c:\program files (x86)\common files\intuit\sync\intuitsyncmanager.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "ScanSnap WIA Service Checker" "ScanSnap WIA Service Checker" "PFU LIMITED" "c:\windows\ssdriver\fi5110\sswiachecker.exe"
+ "WinPatrol" "WinPatrol System Monitor" "BillP Studios" "c:\program files (x86)\billp studios\winpatrol\winpatrol.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "CardMinder Viewer.lnk" "CardMinder Viewer" "PFU LIMITED" "c:\program files (x86)\pfu\scansnap\cardminder\cardlauncher.exe"
+ "Conversion to PDF with ScanSnap Organizer.lnk" "PfuSsOrgOcrChk Application" "PFU LIMITED" "c:\program files (x86)\pfu\scansnap\organizer\pfussorgocrchk.exe"
+ "ScanSnap Manager.lnk" "ScanSnap Manager" "PFU LIMITED" "c:\program files (x86)\pfu\scansnap\driver\pfussmon.exe"
"C:\Users\Gaye Levy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropbox.exe"
+ "Fujitsu S1500 Registration.lnk" "Product Registration" "Leader Technologies/Fujitsu" "c:\program files (x86)\fujitsu\leadertech\fujitsuwebview-release.exe"
+ "IconRestorer.lnk" "Desktop Icon Restorer" "FSL - Freesoftland" "c:\program files (x86)\fsl\iconrestorer\iconrestorer.exe"
+ "OneNote 2010 Screen Clipper and Launcher.lnk" "Microsoft OneNote Quick Launcher" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onenotem.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe Acrobat Synchronizer" "Adobe Collaboration Synchronizer 10.0" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\acrobat 10.0\acrobat\adobecollabsync.exe"
+ "Akamai NetSession Interface" "Akamai NetSession Client" "Akamai Technologies, Inc." "c:\users\gaye levy\appdata\local\akamai\netsession_win.exe"
+ "RoboForm" "RoboForm TaskBar Icon" "Siber Systems" "c:\program files (x86)\siber systems\ai roboform\robotaskbaricon.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "TivoNotify" "TiVo Notify Service Process" "TiVo Inc." "c:\program files (x86)\tivo\desktop\tivonotify.exe"
+ "TivoServer" "TiVo Server Service Process" "TiVo Inc." "c:\program files (x86)\tivo\desktop\tivoserver.exe"
+ "TivoTransfer" "TiVo Transfer Service" "TiVo Inc." "c:\program files (x86)\tivo\desktop\tivotransfer.exe"
+ "TranscodingService" "TiVo Transcoding Service" "TiVo Inc." "c:\program files (x86)\tivo\desktop\plus\transcodingservice.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 10.0\acrobat elements\contextmenu64.dll"
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files\carbonite\carbonite backup\carbonitense.dll"
+ "PhotoStreamsExt" "" "" "c:\program files\common files\apple\internet services\shellstreams64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 10.0\acrobat elements\contextmenu.dll"
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carbonitense.dll"
+ "PhotoStreamsExt" "ShellStreams.dll" "Apple Inc." "c:\program files (x86)\common files\apple\internet services\shellstreams.dll"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files\carbonite\carbonite backup\carbonitense.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carbonitense.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files\carbonite\carbonite backup\carbonitense.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carbonitense.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 10.0\acrobat elements\contextmenu64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 10.0\acrobat elements\contextmenu.dll"
"HKLM\Software\Classes\Folder\ShellEx\PropertySheetHandlers" "" "" ""
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files\carbonite\carbonite backup\carbonitense.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\PropertySheetHandlers" "" "" ""
+ "Carbonite" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carbonitense.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ " SkyDrive1" "Microsoft SkyDrive Shell Extension" "Microsoft Corporation" "c:\users\gaye levy\appdata\local\microsoft\skydrive\16.4.6013.0910\amd64\skydriveshell64.dll"
+ " SkyDrive2" "Microsoft SkyDrive Shell Extension" "Microsoft Corporation" "c:\users\gaye levy\appdata\local\microsoft\skydrive\16.4.6013.0910\amd64\skydriveshell64.dll"
+ " SkyDrive3" "Microsoft SkyDrive Shell Extension" "Microsoft Corporation" "c:\users\gaye levy\appdata\local\microsoft\skydrive\16.4.6013.0910\amd64\skydriveshell64.dll"
+ "Carbonite.Green" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files\carbonite\carbonite backup\carbonitense.dll"
+ "Carbonite.Partial" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files\carbonite\carbonite backup\carbonitense.dll"
+ "Carbonite.Yellow" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files\carbonite\carbonite backup\carbonitense.dll"
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext64.14.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ " SkyDrive1" "Microsoft SkyDrive Shell Extension" "Microsoft Corporation" "c:\users\gaye levy\appdata\local\microsoft\skydrive\16.4.6013.0910\skydriveshell.dll"
+ " SkyDrive2" "Microsoft SkyDrive Shell Extension" "Microsoft Corporation" "c:\users\gaye levy\appdata\local\microsoft\skydrive\16.4.6013.0910\skydriveshell.dll"
+ " SkyDrive3" "Microsoft SkyDrive Shell Extension" "Microsoft Corporation" "c:\users\gaye levy\appdata\local\microsoft\skydrive\16.4.6013.0910\skydriveshell.dll"
+ "Carbonite.Green" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carbonitense.dll"
+ "Carbonite.Partial" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carbonitense.dll"
+ "Carbonite.Yellow" "Carbonite Explorer Extensions" "Carbonite, Inc." "c:\program files (x86)\carbonite\carbonite backup\carbonitense.dll"
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\gaye levy\appdata\roaming\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "RoboForm Toolbar Helper" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Conversion Toolbar Helper" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "RoboForm Toolbar Helper" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "SmartSelect Class" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "&RoboForm Toolbar" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "&RoboForm Toolbar" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll"
+ "Adobe PDF" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Fill Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Password Generator" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"
+ "RoboForm TaskBar Icon" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"
+ "Save Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform-x64.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Add to Evernote 4" "" "" "File not found: C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204"
+ "Fill Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll"
+ "ieSpell" "" "" "File not found: C:\Program Files (x86)\ieSpell\iespell.dll/SPELLCHECK.HTM"
+ "ieSpell Options" "" "" "File not found: C:\Program Files (x86)\ieSpell\iespell.dll/SPELLOPTION.HTM"
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Password Generator" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll"
+ "RoboForm TaskBar Icon" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll"
+ "Save Forms" "RoboForm Main Module" "Siber Systems Inc." "c:\program files (x86)\siber systems\ai roboform\roboform.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.5 r502" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Microsoft_Hardware_Launch_IPoint_exe" "IPoint.exe" "Microsoft Corporation" "c:\program files\microsoft intellipoint\ipoint.exe"
+ "\PCDEventLauncher" "PC-Doctor Module" "PC-Doctor, Inc." "c:\program files\dell support center\sessionchecker.exe"
+ "\Run RoboForm TaskBar Icon" "RoboForm TaskBar Icon" "Siber Systems" "c:\program files (x86)\siber systems\ai roboform\robotaskbaricon.exe"
+ "\SidebarExecute" "" "" "File not found: C:\Program Files (x86)\Windows Sidebar\sidebar.exe"
+ "\SystemToolsDailyTest" "" "" "File not found: uaclauncher.exe"
+ "\{5F6010C8-60E5-41f3-BF5B-C3AF5DBE12D4}" "" "" "File not found: C:\ProgramData\Carbonite\Carbonite Backup\CarboniteUpgrade.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AESTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\idt\wdm\aestsr64.exe"
+ "AffinegyService" "Affinegy Mobility Management support" "Affinegy, Inc." "c:\program files (x86)\belkin\router setup and monitor\belkinservice.exe"
+ "Akamai" "Provides networking protocol and file transfer technologies. If the service is stopped, those applications that depend on the service may fail to transfer files or otherwise function properly." "Akamai Technologies, Inc." "c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Belkin Local Backup Service" "Belkin Local Backup Service" "" "c:\program files\belkin\belkin usb print and storage center\bkbackupscheduler.exe"
+ "Belkin Network USB Helper" "Belkin Network USB Helper" "" "c:\program files\belkin\belkin usb print and storage center\bkapcs.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "BRA_Scheduler" "Maintains an up-to-date list of information for the devices managed by the Brother BRAdmin Professional software." "" "c:\program files (x86)\brother\bradmin professional 3\bratimer.exe"
+ "CarboniteService" "Carbonite Backup Service" "Carbonite, Inc. (www.carbonite.com)" "c:\program files\carbonite\carbonite backup\carboniteservice.exe"
+ "DockLoginService" "Dock Login Service" "Stardock Corporation" "c:\program files\dell\delldock\docklogin.exe"
+ "EaseUS Agent" "Provides service to backup files and image disks." "CHENGDU YIWO Tech Development Co., Ltd" "c:\program files (x86)\easeus\todo backup\bin\agent.exe"
+ "FlipShare Service" "FlipShare Service" "" "c:\program files (x86)\flip video\flipshare\flipshareservice.exe"
+ "FlipShareServer" "Server responsible for enabling you to share Flip Media" "" "c:\program files (x86)\flip video\flipshareserver\flipshareserver.exe"
+ "GameConsoleService" "GameConsole management services" "WildTangent, Inc." "c:\program files (x86)\wildtangent\dell games\dell game console\gameconsoleservice.exe"
+ "Guard Agent" "Monitor EaseUS Todo Backup agent." "CHENGDU YIWO Tech Development Co., Ltd" "c:\program files (x86)\easeus\todo backup\bin\guardagent.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "IntuitUpdateService" "Helps Intuit applications automatically update themselves." "Intuit Inc." "c:\program files (x86)\common files\intuit\update service\intuitupdateservice.exe"
+ "IntuitUpdateServiceV4" "Helps Intuit applications automatically update themselves." "Intuit Inc." "c:\program files (x86)\common files\intuit\update service v4\intuitupdateservice.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\nissrv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "QBCFMonitorService" "QuickBooks Company File Monitoring Service" "Intuit" "c:\program files (x86)\common files\intuit\quickbooks\qbcfmonitorservice.exe"
+ "QBFCService" "QuickBooks FCS module" "Intuit Inc." "c:\program files (x86)\common files\intuit\quickbooks\fcs\intuit.quickbooks.fcs.exe"
+ "QBVSS" "Enables standard users to access Intuit Data Protect service." "Intuit Inc." "c:\program files (x86)\common files\intuit\dataprotect\qbidpservice.exe"
+ "ScsiAccess" "" "" "c:\program files (x86)\photodex\proshowgold\scsiaccess.exe"
+ "SftService" "SoftThinks Agent Service" "SoftThinks SAS" "c:\program files (x86)\dell datasafe local backup\sftservice.exe"
+ "SgtSch2Svc" "Provides task scheduling for Seagate DiscWizard." "Seagate" "c:\program files (x86)\common files\seagate\schedule2\schedul2.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Sony SCSI Helper Service" "SCSI Helper Service" "Sony Corporation" "c:\program files (x86)\common files\sony shared\fsk\sonyscsihelperservice.exe"
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\program files\idt\wdm\stacsv64.exe"
+ "TurboBoost" "Turbo Boost Monitor Service" "Intel® Corporation" "c:\program files\intel\turboboost\turboboost.exe"
+ "UMVPFSrv" "UMVPF is a user mode Logitech driver" "Logitech Inc." "c:\program files (x86)\common files\logishrd\lvmvfm\umvpfsrv.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "wltrysvc" "Provides automatic configuration for the 802.11 adapter using the Broadcom supplicant." "Dell Inc." "c:\program files\dell\dw wlan card\wltrysvc.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BCM42RLY" "Broadcom iLine10™ PCI Network Adapter Proxy Protocol Driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcm42rly.sys"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl664.sys"
+ "BcmVWL" "Broadcom 802.11 Network Adapter Virtual Wireless Driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmvwl64.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CtClsFlt" "Video Class Upper Filter Driver (64-bit)" "Creative Technology Ltd." "c:\windows\system32\drivers\ctclsflt.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "epmntdrv" "" "" "c:\windows\system32\epmntdrv.sys"
+ "EUBAKUP" "Disk Backup Driver" "CHENGDU YIWO Tech Development Co., Ltd" "c:\windows\system32\drivers\eubakup.sys"
+ "EUBAKUP0" "" "" "File not found: C:\Windows\System32\Drivers\EUBAKUP0.sys"
+ "EUBKMON" "" "" "c:\windows\system32\drivers\eubkmon.sys"
+ "EUBKMON0" "" "" "File not found: C:\Windows\System32\Drivers\EUBKMON0.sys"
+ "EUDSKACS" "Disk Access Driver" "CHENGDU YIWO Tech Development Co., Ltd" "c:\windows\system32\drivers\eudskacs.sys"
+ "EUFDDISK" "Disk Backup Image Preview Driver" "CHENGDU YIWO Tech Development Co., Ltd" "c:\windows\system32\drivers\eufddisk.sys"
+ "EuGdiDrv" "" "" "c:\windows\system32\eugdidrv.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "Impcd" "Intel® Turbo Boost Technology Driver" "Intel Corporation" "c:\windows\system32\drivers\impcd.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "LEqdUsb" "Logitech Equad USB Driver." "Logitech, Inc." "c:\windows\system32\drivers\leqdusb.sys"
+ "LHidEqd" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhideqd.sys"
+ "LHidFilt" "Logitech HID Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lhidfilt.sys"
+ "LMouFilt" "Logitech Mouse Filter Driver." "Logitech, Inc." "c:\windows\system32\drivers\lmoufilt.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "LVRS64" "Logitech Kernel Audio Improvement Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvrs64.sys"
+ "LVUVC64" "Logitech USB Video Class Driver" "Logitech Inc." "c:\windows\system32\drivers\lvuvc64.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PxHlpa64" "Px Engine Device Driver for 64-bit Windows" "Sonic Solutions" "c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RRNetCap" "Intermediate Filter Driver" "RapidSolution Software AG" "c:\windows\system32\drivers\rrnetcap.sys"
+ "RRNetCapMP" "Intermediate Filter Driver" "RapidSolution Software AG" "c:\windows\system32\drivers\rrnetcap.sys"
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys"
+ "rsvcdwdr" "Virtual CD Writer Driver" "RapidSolution Software AG" "c:\windows\system32\drivers\rsvcdwdr.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "snapman" "Acronis Snapshot API" "Acronis" "c:\windows\system32\drivers\snapman.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys"
+ "sxuptp" "SXUPTP Driver" "silex technology, Inc." "c:\windows\system32\drivers\sxuptp.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "tbhsd" "Tunebite High-Speed Dubbing" "RapidSolution Software AG" "c:\windows\system32\drivers\tbhsd.sys"
+ "tdrpman" "Acronis Try&Decide and Restore Points Volume Filter Driver" "Acronis" "c:\windows\system32\drivers\tdrpman.sys"
+ "tifsfilter" "Acronis True Image File System Filter" "Acronis" "c:\windows\system32\drivers\tifsfilt.sys"
+ "timounter" "Acronis True Image Backup Archive Explorer" "Acronis" "c:\windows\system32\drivers\timntr.sys"
+ "TurboB" "Turbo Boost UI Monitor driver" "" "c:\windows\system32\drivers\turbob.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "usbbus" "LG CDMA USB Multi function Driver" "LG Electronics Inc." "c:\windows\system32\drivers\lgx64bus.sys"
+ "UsbDiag" "LGE CDMA USB Serial Port" "LG Electronics Inc." "c:\windows\system32\drivers\lgx64diag.sys"
+ "USBModem" "LGE CDMA Modem Support" "LG Electronics Inc." "c:\windows\system32\drivers\lgx64modem.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "yukonw7" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcod64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\syswow64\lvcodec2.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "3GPPShow" "viscom3gpenc.dll" "Viscom Software www.viscomsoft.com" "c:\program files\xsitepro2\viscom3gpenc.dll"
+ "AC3Filter" "ac3filter" "" "c:\program files (x86)\rapidsolution\audials 8\ac3filter.ax"
+ "Audio Grabber" "" "" "c:\program files (x86)\photodex\proshowgold\audiograbber.ax"
+ "Capture File Writer" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Creative MJPEG Decoder 2" "Decoder" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\ctmjpgdec2.ax"
+ "Creative Video Processing Filter" "Creative Video Processing Filter" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\vidprocu.ax"
+ "CustomFrameGrabber Filter" "Viscom Frame" "Viscom Software www.viscomsoft.com" "c:\program files\xsitepro2\viscomframe.dll"
+ "Dump" "Audio Encoder" "Viscom Software" "c:\program files\xsitepro2\viscomaudioencoder.dll"
+ "Expression Encoder Screen Codec 2" "Expression Encoder Screen Capture" "Microsoft Corporation" "c:\program files (x86)\microsoft expression\encoder 4\microsoft.expression.encoder.eescreen.codec.dll"
+ "Extractor" "Stream Data Extractor Filter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\fsk\extractor.ax"
+ "Flip Video Decoder" "FlipDSVideoDecoder" "MyCompanyName" "c:\program files (x86)\flip video\flipshare\flipdsvideodecoder.ax"
+ "Flip Video Decoder Mpeg4" "FlipDSVideoDecoder" "MyCompanyName" "c:\program files (x86)\flip video\flipshare\flipdsmpeg4decoder.ax"
+ "FLVShow" "flv encoder" "Viscom Software www.viscomsoft.com" "c:\program files\xsitepro2\viscomflvenc.dll"
+ "Image Effects" "Audio Data" "Viscom Software" "c:\program files\xsitepro2\viscomaudiodata.dll"
+ "iPodShow" "viscomdata1.dll" "Viscom Software Viscom Software" "c:\program files\xsitepro2\viscomdata1.dll"
+ "PDFrameGrabFilter" "FrameGrabFilter" "" "c:\program files (x86)\flip video\flipshare\framegrabfilter.ax"
+ "PDT IPP AAC Encoder" "" "" "c:\program files (x86)\flip video\flipshare\ipp6_0_aacencoder.ax"
+ "PDT IPP H264 Encoder" "IPPH264Encoder" "" "c:\program files (x86)\flip video\flipshare\ipph264encoder.ax"
+ "PDT IPP MP4 Muxer" "IPPMP4Muxer" "" "c:\program files (x86)\flip video\flipshare\ippmp4muxer.ax"
+ "PDT IPP MP4 Splitter" "IPPMp4Splitter" "" "c:\program files (x86)\flip video\flipshare\ippmp4splitter.ax"
+ "PDT IPP MPEG Audio Decoder" "IPPMPEGAudioDecoder" "" "c:\program files (x86)\flip video\flipshare\ippmpegaudiodecoder.ax"
+ "PDT Resize and Letterbox Filter" "PurpleComposite" "" "c:\program files (x86)\flip video\flipshare\purplecomposite.ax"
+ "Photodex NULL renderer" "" "" "c:\program files (x86)\photodex\proshowgold\nullfilter.ax"
+ "PIX Photo Story Source Filter" "Photo Story DShow Filters Dll" "Microsoft Corporation" "c:\program files (x86)\microsoft digital image 2006\pixpssourcefilter.dll"
+ "PIX Photo Story WAV Dest" "Photo Story DShow Filters Dll" "Microsoft Corporation" "c:\program files (x86)\microsoft digital image 2006\pixwavdest.dll"
+ "PSPShow" "visomdata2.dll" "Viscom Software www.viscomsoft.com" "c:\program files\xsitepro2\viscomdata2.dll"
+ "QuickTime Source Filter" "QuickTime Decoder" "Viscom Software www.viscomsoft.com" "c:\program files\xsitepro2\viscomqtde.dll"
+ "Record Queue" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "TextImageTrans Filter" "Tranform Filter" "Viscom Software www.viscomsoft.com" "c:\program files\xsitepro2\viscomtran.dll"
+ "TiVo DirectShow Source Filter" "TiVo DirectShow Source Filter" "TiVo Inc." "c:\program files (x86)\tivo\desktop\plus\tivodirectshowfilter.dll"
+ "Tivo MovSource Filter" "TiVo Desktop MOV Source Filter" "TiVo Inc." "c:\program files (x86)\tivo\desktop\plus\tivomovsource.ax"
+ "Video Grabber" "" "" "c:\program files (x86)\photodex\proshowgold\grabfilt.ax"
+ "Video Grabber" "" "" "c:\program files (x86)\photodex\proshowgold\videograbber.ax"
+ "WAV Dest" "" "Viscom Software" "c:\program files\xsitepro2\viscomwave.dll"
+ "WM VIH2 Fix" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Photo Gallery Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{7ED96837-96F0-4812-B211-F13C24117ED3}\Instance" "" "" ""
+ "Photoshop Codec" "PSDCodec" "Microsoft Corporation" "c:\program files (x86)\microsoft expression\common\imaging\4.0.360.0\psdcodec.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Adobe PDF Port Monitor" "Adobe PDF Port Monitor DLL" "Adobe Systems Inc" "c:\windows\system32\adobepdf.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Authentication Packages" "" "" ""
+ "relog_ap" "Acronis Relogon Authentication Package" "Acronis" "c:\windows\system32\relog_ap.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "BCMLogon" "DW WLAN Card Logon Provider" "Dell Inc." "c:\windows\system32\bcmlogon.dll"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:03 PM

Posted 02 December 2012 - 05:07 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#9 Gaye

Gaye
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 05 December 2012 - 12:57 PM

Thank you so much for patiently getting me through this. I am grateful. Is there somewhere that I can make a donation to the site?

Best,
Gaye

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:03 PM

Posted 05 December 2012 - 08:31 PM

You're most welcome :)

Bleepingcomputer as a site doesnt receive donations




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users