Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

New laptop keeps doing BSOD


  • Please log in to reply
25 replies to this topic

#1 kaolite

kaolite

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 08 January 2013 - 10:46 PM

Sigh, my laptop again is giving me issues.

New Dell Inspiron laptop with Win 8. I hit a browser link that apparently had a virus. Comodo blocked most of it but it said some couldnt. I ran Malware Bytes and TDSSKiller. Both found nothing. Ive run my anti virus and other things. Everything comes back normal.

Dell gave me an update which Comodo said had malware on it but since it was from Dell I did the update. Ran malware byte again, found nothing.

It was fine for about 3 days and just now it BSOD death. I think it was the DRIVER NOT LESS THAN EQUAL (I think)

Whats causing this and how can I fix it?

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:05 AM

Posted 09 January 2013 - 11:04 PM

Hi

When do you get the BSOD - before or after the windows splash screen loads?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 kaolite

kaolite
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 10 January 2013 - 12:16 AM

After, usually it's in the middle of me doing something and boom, says Windows has encountered an error and needs to restart.

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:05 AM

Posted 10 January 2013 - 08:08 AM

Hi

Do you get the BSOD in Safe mode also?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 kaolite

kaolite
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 10 January 2013 - 10:58 AM

I have not been able to get Win 8 to boot into safe mode, I hit f8 and Shift f8 and it always boots normally. It just happened again and the error I got was DRIVER IRQL NOT LESS OR EQUAL.

After doing some reading I found that 3rd party virus software like Avast or Norton might be conflicting with the system. I had McAfee trial when I got the comp but after the trial I didnt renew I dled AVG. Since the BSOD has been happening around the time I installed AVG I decided to uninstall it and turn on Windows Defender. Well I uninstalled AVG just fine but Defender will not turn back on, even if I run as Admin. It says Windows Defender is turned off and not protecting your computer. I dont have any 3rd party virus software anymore so Im not sure why I cant turn WD back on.

DOnt know if this has anything to do with my BSOD but thought Id include it.

Edited by kaolite, 10 January 2013 - 12:08 PM.


#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:05 AM

Posted 10 January 2013 - 12:34 PM

Hi

Please note the following:

..In previous versions of Windows you were able to access the advanced startup options menu by clicking on the F8 key when Windows started. In Windows 8, though, they removed this capability in order to offer a faster boot experience. Due to this you need to access the advanced startup options menu through a different method that is described..


Then follow the instructions here, and ignore the link for "Advanced Startup options menu"

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 kaolite

kaolite
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 10 January 2013 - 06:56 PM

I had it in Safe mode for a while today and it didnt do it.

#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:05 AM

Posted 10 January 2013 - 08:20 PM

Ok that points to probably being a software issue.

Please do the following next:

----------

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.


:step2:

Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.


:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.


:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 kaolite

kaolite
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 11 January 2013 - 11:36 AM

I actually think I was able to fix it thru the Advanced Start Up Options, since I ran that it hasnt happened again. Since I dont want to take up your time looking at something that might be fixed, do you still want me to run those apps?

#10 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:05 AM

Posted 11 January 2013 - 11:54 AM

Yes, please run those as I described. We might as well check for indications of malware now.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#11 kaolite

kaolite
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 11 January 2013 - 10:08 PM

TDSSKiller

21:59:27.0589 3752 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:59:27.0589 3752 UEFI system
21:59:28.0824 3752 ============================================================
21:59:28.0824 3752 Current date / time: 2013/01/11 21:59:28.0824
21:59:28.0824 3752 SystemInfo:
21:59:28.0824 3752
21:59:28.0824 3752 OS Version: 6.2.9200 ServicePack: 0.0
21:59:28.0824 3752 Product type: Workstation
21:59:28.0824 3752 ComputerName: BUBBA
21:59:28.0824 3752 UserName: Brittany
21:59:28.0824 3752 Windows directory: C:\Windows
21:59:28.0824 3752 System windows directory: C:\Windows
21:59:28.0824 3752 Running under WOW64
21:59:28.0824 3752 Processor architecture: Intel x64
21:59:28.0824 3752 Number of processors: 8
21:59:28.0824 3752 Page size: 0x1000
21:59:28.0824 3752 Boot type: Normal boot
21:59:28.0824 3752 ============================================================
21:59:29.0871 3752 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:59:29.0871 3752 Drive \Device\Harddisk1\DR2 - Size: 0x1D9C00000 (7.40 Gb), SectorSize: 0x200, Cylinders: 0x3C6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:59:29.0871 3752 ============================================================
21:59:29.0871 3752 \Device\Harddisk0\DR0:
21:59:29.0886 3752 GPT partitions:
21:59:29.0886 3752 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {81E61458-C35B-4389-A5B7-02A76CDA1C94}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xFA000
21:59:29.0886 3752 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {796BADD3-6BBF-4D9F-B631-466EB71A4965}, UniqueGUID: {9EC02A78-C19A-4C30-8B28-68EA4082935A}, Name: Basic data partition, StartLBA 0xFA800, BlocksNum 0x14000
21:59:29.0886 3752 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {861371CB-D0A7-41C1-8C0C-01EC56E57C56}, Name: Microsoft reserved partition, StartLBA 0x10E800, BlocksNum 0x40000
21:59:29.0886 3752 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {3C677A1D-9B93-419E-BAFE-259159357B12}, Name: Basic data partition, StartLBA 0x14E800, BlocksNum 0xFA000
21:59:29.0886 3752 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {720A7228-D61C-4A6F-B056-E862E899C4D9}, Name: Basic data partition, StartLBA 0x248800, BlocksNum 0x7337C800
21:59:29.0886 3752 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {B0635968-60CD-4DC7-81F5-3701DFD3D149}, Name: Microsoft recovery partition, StartLBA 0x735C5000, BlocksNum 0x11415B0
21:59:29.0886 3752 MBR partitions:
21:59:29.0886 3752 \Device\Harddisk1\DR2:
21:59:29.0886 3752 MBR partitions:
21:59:29.0886 3752 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0xECC000
21:59:29.0886 3752 ============================================================
21:59:29.0917 3752 C: <-> \Device\Harddisk0\DR0\Partition5
21:59:29.0917 3752 ============================================================
21:59:29.0917 3752 Initialize success
21:59:29.0917 3752 ============================================================
21:59:48.0860 10508 ============================================================
21:59:48.0860 10508 Scan started
21:59:48.0860 10508 Mode: Manual; SigCheck; TDLFS;
21:59:48.0860 10508 ============================================================
21:59:51.0641 10508 ================ Scan system memory ========================
21:59:51.0641 10508 System memory - ok
21:59:51.0641 10508 ================ Scan services =============================
21:59:52.0188 10508 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
21:59:52.0282 10508 1394ohci - ok
21:59:52.0298 10508 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys
21:59:52.0345 10508 3ware - ok
21:59:52.0407 10508 [ A3BDA4D1186C8F47FA1BC8E91F197537 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:59:52.0438 10508 ACPI - ok
21:59:52.0454 10508 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys
21:59:52.0470 10508 acpiex - ok
21:59:52.0470 10508 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
21:59:52.0532 10508 acpipagr - ok
21:59:52.0548 10508 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
21:59:52.0579 10508 AcpiPmi - ok
21:59:52.0595 10508 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys
21:59:52.0641 10508 acpitime - ok
21:59:52.0735 10508 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:59:52.0766 10508 AdobeFlashPlayerUpdateSvc - ok
21:59:52.0782 10508 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:59:52.0845 10508 adp94xx - ok
21:59:52.0860 10508 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:59:52.0923 10508 adpahci - ok
21:59:52.0923 10508 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:59:52.0970 10508 adpu320 - ok
21:59:53.0001 10508 [ AB34A3211A1D2AB977DE00CD7BC5A464 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:59:53.0063 10508 AeLookupSvc - ok
21:59:53.0079 10508 [ 9E975BDC89C83900B2C534C4E1B018F8 ] AFD C:\Windows\system32\drivers\afd.sys
21:59:53.0126 10508 AFD - ok
21:59:53.0141 10508 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:59:53.0188 10508 agp440 - ok
21:59:53.0188 10508 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe
21:59:53.0235 10508 ALG - ok
21:59:53.0282 10508 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
21:59:53.0485 10508 AllUserInstallAgent - ok
21:59:53.0548 10508 [ FB88D16B55F788EEB7590584FE2D8F1A ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
21:59:53.0595 10508 AmdK8 - ok
21:59:53.0595 10508 [ 81402FF3373CE4DF77D5C874E369A985 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
21:59:53.0642 10508 AmdPPM - ok
21:59:53.0642 10508 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:59:53.0688 10508 amdsata - ok
21:59:53.0688 10508 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
21:59:53.0735 10508 amdsbs - ok
21:59:53.0751 10508 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:59:53.0782 10508 amdxata - ok
21:59:53.0813 10508 [ FB88245C1815EB1588DBC364A8D24522 ] AMPPAL C:\Windows\System32\drivers\AMPPAL.sys
21:59:53.0860 10508 AMPPAL - ok
21:59:53.0870 10508 [ FB88245C1815EB1588DBC364A8D24522 ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
21:59:53.0880 10508 AMPPALP - ok
21:59:53.0950 10508 [ A73CEA1B1B0A4F6D10BFD3B9AD9DC5F9 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
21:59:53.0970 10508 AMPPALR3 - ok
21:59:54.0000 10508 [ 91C148FEFDF53E8B0A58CDF2466DCDC1 ] ApfiltrService C:\Windows\System32\drivers\Apfiltr.sys
21:59:54.0060 10508 ApfiltrService - ok
21:59:54.0070 10508 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys
21:59:54.0110 10508 AppID - ok
21:59:54.0140 10508 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:59:54.0170 10508 AppIDSvc - ok
21:59:54.0190 10508 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\Windows\System32\appinfo.dll
21:59:54.0280 10508 Appinfo - ok
21:59:54.0480 10508 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys
21:59:54.0600 10508 arc - ok
21:59:54.0720 10508 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:59:54.0790 10508 arcsas - ok
21:59:54.0810 10508 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:59:54.0850 10508 AsyncMac - ok
21:59:54.0860 10508 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys
21:59:54.0900 10508 atapi - ok
21:59:54.0980 10508 [ 81C712A88D62B7B30AE961BBE2B88547 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
21:59:55.0050 10508 AudioEndpointBuilder - ok
21:59:55.0110 10508 [ 19F399667D97F9C144AC1FA74D2D881B ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:59:55.0170 10508 Audiosrv - ok
21:59:55.0180 10508 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:59:55.0210 10508 AxInstSV - ok
21:59:55.0340 10508 [ 45C6EC94DE3D466B4B452EA0E3870321 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
21:59:55.0450 10508 b06bdrv - ok
21:59:55.0470 10508 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
21:59:55.0540 10508 BasicDisplay - ok
21:59:55.0540 10508 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
21:59:55.0580 10508 BasicRender - ok
21:59:55.0590 10508 [ 5BEC02F0A82187227E7457F4600DDFDA ] BDESVC C:\Windows\System32\bdesvc.dll
21:59:55.0630 10508 BDESVC - ok
21:59:55.0640 10508 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys
21:59:55.0690 10508 Beep - ok
21:59:55.0710 10508 [ 407F85D5387EDBB665A7969DF4D4712B ] BFE C:\Windows\System32\bfe.dll
21:59:55.0750 10508 BFE - ok
21:59:55.0810 10508 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll
21:59:55.0830 10508 BITS - ok
21:59:55.0930 10508 [ 4AF14827F1584D084BC136A51FAA8397 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
21:59:55.0970 10508 Bluetooth Device Monitor - ok
21:59:55.0980 10508 [ BC89A4C6A2A9C65E8E88AD0B3BF180FD ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
21:59:56.0000 10508 Bluetooth OBEX Service - ok
21:59:56.0000 10508 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:59:56.0010 10508 bowser - ok
21:59:56.0020 10508 [ 88F6F0E54F37F99FE7D5513B7623E444 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
21:59:56.0030 10508 BrokerInfrastructure - ok
21:59:56.0120 10508 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll
21:59:56.0190 10508 Browser - ok
21:59:56.0220 10508 [ 351075A2ADDF86F5C4BA10CA27E8973D ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
21:59:56.0290 10508 BthAvrcpTg - ok
21:59:56.0310 10508 [ 20BACDB113A0195EA5DCB8F3A660BD9A ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:59:56.0380 10508 BthEnum - ok
21:59:56.0410 10508 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
21:59:56.0450 10508 BthHFEnum - ok
21:59:56.0500 10508 [ 531D83EA26C5FFAA79F0A1DC3B0698CF ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
21:59:56.0550 10508 bthhfhid - ok
21:59:56.0570 10508 [ 42201C346F0B8C458E1E9CDE04D68A2C ] BthLEEnum C:\Windows\system32\DRIVERS\BthLEEnum.sys
21:59:56.0610 10508 BthLEEnum - ok
21:59:56.0620 10508 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
21:59:56.0670 10508 BTHMODEM - ok
21:59:56.0680 10508 [ 091BB978E9504D0AD14586929431A957 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:59:56.0720 10508 BthPan - ok
21:59:56.0750 10508 [ 8BD82AE3B077665AFDFAEA6ED5B3937F ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
21:59:56.0880 10508 BTHPORT - ok
21:59:56.0900 10508 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll
21:59:56.0990 10508 bthserv - ok
21:59:57.0000 10508 [ 9310C81BE4D5EA33798A99355BB53E94 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
21:59:57.0010 10508 BTHSSecurityMgr - ok
21:59:57.0010 10508 [ 100E21C77568CF4CB7817A2BC3F91B98 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
21:59:57.0080 10508 BTHUSB - ok
21:59:57.0100 10508 [ 0E39863E0568BAF18DA8A49F0C5D55EB ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
21:59:57.0140 10508 btmaux - ok
21:59:57.0160 10508 [ 1134650C2F97611ACCDB02BC904AD35D ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
21:59:57.0210 10508 btmhsf - ok
21:59:57.0220 10508 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:59:57.0260 10508 cdfs - ok
21:59:57.0260 10508 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys
21:59:57.0300 10508 cdrom - ok
21:59:57.0320 10508 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll
21:59:57.0360 10508 CertPropSvc - ok
21:59:57.0380 10508 CFRMD - ok
21:59:57.0410 10508 [ 45B5A89DC41577282E5BF41B1165EA71 ] cfwids C:\Windows\system32\drivers\cfwids.sys
21:59:57.0480 10508 cfwids - ok
21:59:57.0500 10508 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys
21:59:57.0560 10508 circlass - ok
21:59:57.0560 10508 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys
21:59:57.0580 10508 CLFS - ok
21:59:57.0680 10508 [ 6418CDEFE65E496EAAE5D923475796DF ] CLPSLauncher C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
21:59:57.0690 10508 CLPSLauncher - ok
21:59:57.0710 10508 [ 075CCE75090786F124573A788C8656E6 ] CLVirtualDrive C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
21:59:57.0760 10508 CLVirtualDrive - ok
21:59:57.0760 10508 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
21:59:57.0820 10508 CmBatt - ok
21:59:57.0900 10508 [ 3BDA76E29E76588F093A47181934FEB4 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
21:59:57.0950 10508 cmdAgent - ok
21:59:57.0970 10508 [ 434109CE0697AA1DE7DB8484377E4E17 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
21:59:57.0980 10508 cmdGuard - ok
21:59:58.0010 10508 [ BA3E52F9EB797821E06F2CB8BD4F4001 ] cmdHlp C:\Windows\system32\DRIVERS\cmdhlp.sys
21:59:58.0050 10508 cmdHlp - ok
21:59:58.0090 10508 [ 1894FD2D5966A81D3B07A7C4D8724D59 ] CNG C:\Windows\system32\Drivers\cng.sys
21:59:58.0110 10508 CNG - ok
21:59:58.0110 10508 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
21:59:58.0210 10508 CompositeBus - ok
21:59:58.0210 10508 COMSysApp - ok
21:59:58.0220 10508 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys
21:59:58.0280 10508 condrv - ok
21:59:58.0310 10508 [ BAC3B9819BFD603290AC0A2C87D605D3 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
21:59:58.0320 10508 cphs - ok
21:59:58.0350 10508 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:59:58.0380 10508 CryptSvc - ok
21:59:58.0450 10508 [ E8A676D196E9A4DED7A6C74DEA90FA4E ] dam C:\Windows\system32\drivers\dam.sys
21:59:58.0550 10508 dam - ok
21:59:58.0600 10508 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll
21:59:58.0620 10508 DcomLaunch - ok
21:59:58.0640 10508 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll
21:59:58.0660 10508 defragsvc - ok
21:59:58.0700 10508 [ 18B5C959CBE24D4D4C2381EFB87611DE ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
21:59:58.0750 10508 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - warning
21:59:58.0750 10508 DellDigitalDelivery - detected UnsignedFile.Multi.Generic (1)
21:59:58.0770 10508 [ DC253191A553DACA7684CFB5B03A4268 ] DellRbtn C:\Windows\System32\drivers\DellRbtn.sys
21:59:58.0830 10508 DellRbtn - ok
21:59:58.0850 10508 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
21:59:58.0900 10508 DeviceAssociationService - ok
21:59:58.0930 10508 [ D7A3877D9E126E21925DA873677C1D65 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
21:59:58.0970 10508 DeviceInstall - ok
21:59:58.0990 10508 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
21:59:59.0010 10508 Dfsc - ok
21:59:59.0060 10508 [ 6DBE7FE196F8E9D212DCC34EDDF7C3C1 ] Dhcp C:\Windows\system32\dhcpcore.dll
21:59:59.0140 10508 Dhcp - ok
21:59:59.0140 10508 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys
21:59:59.0200 10508 discache - ok
21:59:59.0210 10508 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys
21:59:59.0220 10508 disk - ok
21:59:59.0240 10508 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
21:59:59.0280 10508 dmvsc - ok
21:59:59.0310 10508 [ 9ACE7E657107EB51E5E89FD883F2FD2D ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:59:59.0340 10508 Dnscache - ok
21:59:59.0350 10508 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll
21:59:59.0400 10508 dot3svc - ok
21:59:59.0410 10508 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll
21:59:59.0430 10508 DPS - ok
21:59:59.0520 10508 [ 02F0870C07872CC506C33E79883082B3 ] DragonUpdater C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
21:59:59.0560 10508 DragonUpdater - ok
21:59:59.0580 10508 [ 013C53A30F896F00C563FD53E695AEF4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:59:59.0630 10508 drmkaud - ok
21:59:59.0690 10508 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
21:59:59.0710 10508 DsmSvc - ok
21:59:59.0740 10508 [ C58425E4F1E115BB271FBF3FC348AB11 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:59:59.0830 10508 DXGKrnl - ok
21:59:59.0840 10508 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll
21:59:59.0910 10508 Eaphost - ok
22:00:00.0170 10508 [ C815C4FAE6A816DFB58975F3D0396692 ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:00:00.0260 10508 ebdrv - ok
22:00:00.0290 10508 [ 6E0E63801FBEF27995107B8269BCFAAD ] EFS C:\Windows\System32\lsass.exe
22:00:00.0300 10508 EFS - ok
22:00:00.0310 10508 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
22:00:00.0370 10508 EhStorClass - ok
22:00:00.0390 10508 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
22:00:00.0430 10508 EhStorTcgDrv - ok
22:00:00.0490 10508 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys
22:00:00.0660 10508 ErrDev - ok
22:00:00.0700 10508 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll
22:00:00.0720 10508 EventSystem - ok
22:00:00.0790 10508 [ E67E289FA8AA393223AD7F9AFB738FD6 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
22:00:00.0806 10508 EvtEng - ok
22:00:00.0822 10508 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys
22:00:00.0915 10508 exfat - ok
22:00:00.0947 10508 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:00:00.0978 10508 fastfat - ok
22:00:01.0025 10508 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe
22:00:01.0103 10508 Fax - ok
22:00:01.0119 10508 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys
22:00:01.0165 10508 fdc - ok
22:00:01.0181 10508 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll
22:00:01.0275 10508 fdPHost - ok
22:00:01.0275 10508 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll
22:00:01.0337 10508 FDResPub - ok
22:00:01.0369 10508 [ DFC2156EEC9E0CBC4F8311983567E3AA ] fhsvc C:\Windows\system32\fhsvc.dll
22:00:01.0431 10508 fhsvc - ok
22:00:01.0478 10508 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:00:01.0494 10508 FileInfo - ok
22:00:01.0540 10508 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:00:01.0665 10508 Filetrace - ok
22:00:01.0697 10508 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
22:00:01.0744 10508 flpydisk - ok
22:00:01.0759 10508 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:00:01.0790 10508 FltMgr - ok
22:00:01.0837 10508 [ 305CB1E16576F436BC8797E629A3D46D ] FontCache C:\Windows\system32\FntCache.dll
22:00:01.0884 10508 FontCache - ok
22:00:01.0962 10508 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:00:01.0978 10508 FontCache3.0.0.0 - ok
22:00:01.0994 10508 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:00:02.0025 10508 FsDepends - ok
22:00:02.0025 10508 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:00:02.0087 10508 Fs_Rec - ok
22:00:02.0134 10508 [ 79E687A2829B9EBDF488F78260651094 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:00:02.0165 10508 fvevol - ok
22:00:02.0197 10508 [ 3EF3FCCC0E70EEC5C2AD996F32BBA642 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
22:00:02.0244 10508 FxPPM - ok
22:00:02.0275 10508 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:00:02.0337 10508 gagp30kx - ok
22:00:02.0447 10508 [ 24B6902AE2735C7C8ED6670E5E323EC9 ] GeekBuddyRSP C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
22:00:02.0494 10508 GeekBuddyRSP - ok
22:00:02.0509 10508 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
22:00:02.0541 10508 gencounter - ok
22:00:02.0587 10508 [ A1F17108F3ED752D2614D767792327C5 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
22:00:02.0634 10508 GPIOClx0101 - ok
22:00:02.0681 10508 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll
22:00:02.0712 10508 gpsvc - ok
22:00:02.0728 10508 [ 8D6810577E9C4F56DCB8E9BACAC7287B ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
22:00:02.0822 10508 HDAudBus - ok
22:00:02.0837 10508 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
22:00:02.0900 10508 HidBatt - ok
22:00:02.0900 10508 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\Windows\System32\drivers\hidbth.sys
22:00:02.0947 10508 HidBth - ok
22:00:02.0962 10508 [ AC0526C4E3A7954F750B8F8D95EFB340 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
22:00:03.0009 10508 hidi2c - ok
22:00:03.0025 10508 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys
22:00:03.0087 10508 HidIr - ok
22:00:03.0181 10508 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll
22:00:03.0275 10508 hidserv - ok
22:00:03.0306 10508 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
22:00:03.0322 10508 HidUsb - ok
22:00:03.0322 10508 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
22:00:03.0369 10508 HipShieldK - ok
22:00:03.0384 10508 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:00:03.0431 10508 hkmsvc - ok
22:00:03.0462 10508 [ 6CC1AD7B0E071C317B7FB8FC6AEF0EDA ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:00:03.0509 10508 HomeGroupListener - ok
22:00:03.0541 10508 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:00:03.0587 10508 HomeGroupProvider - ok
22:00:03.0603 10508 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:00:03.0650 10508 HpSAMD - ok
22:00:03.0681 10508 [ 47DBBF38E00C3F7404B71F6509241EF1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:00:03.0728 10508 HTTP - ok
22:00:03.0775 10508 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:00:03.0853 10508 hwpolicy - ok
22:00:03.0869 10508 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
22:00:03.0916 10508 hyperkbd - ok
22:00:03.0916 10508 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
22:00:03.0962 10508 HyperVideo - ok
22:00:03.0978 10508 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
22:00:04.0041 10508 i8042prt - ok
22:00:04.0166 10508 [ 459016E8A4FA6426EDB5A9456A6E5E58 ] iaStorA C:\Windows\system32\drivers\iaStorA.sys
22:00:04.0212 10508 iaStorA - ok
22:00:04.0291 10508 [ 584068E03829BC5C63F54B05E6244E97 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:00:04.0291 10508 IAStorDataMgrSvc ( UnsignedFile.Multi.Generic ) - warning
22:00:04.0291 10508 IAStorDataMgrSvc - detected UnsignedFile.Multi.Generic (1)
22:00:04.0322 10508 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:00:04.0384 10508 iaStorV - ok
22:00:04.0431 10508 [ 43E864824FCEBEE7119E1572B2703EB9 ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
22:00:04.0462 10508 iBtFltCoex - ok
22:00:04.0541 10508 [ ABEFA4BD23329FD9BD47496BF2E58774 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
22:00:04.0572 10508 IconMan_R ( UnsignedFile.Multi.Generic ) - warning
22:00:04.0572 10508 IconMan_R - detected UnsignedFile.Multi.Generic (1)
22:00:04.0994 10508 [ 87B67C33144BE5A68D20D9BE4D528E43 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:00:05.0119 10508 igfx - ok
22:00:05.0134 10508 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:00:05.0166 10508 iirsp - ok
22:00:05.0213 10508 [ 45EACE8D94B9CEC746A85154892C4FDC ] IKEEXT C:\Windows\System32\ikeext.dll
22:00:05.0228 10508 IKEEXT - ok
22:00:05.0275 10508 [ 9F39926D5E56E5128505FE416CDC31A6 ] inspect C:\Windows\system32\DRIVERS\inspect.sys
22:00:05.0306 10508 inspect - ok
22:00:05.0322 10508 [ FD2032D2EAE8D7F3381EBA5FA3E7FEEA ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
22:00:05.0369 10508 intaud_WaveExtensible - ok
22:00:05.0463 10508 [ F5495B38BFB9149925F54F65AB40EFBF ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:00:05.0525 10508 IntcDAud - ok
22:00:05.0603 10508 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
22:00:05.0619 10508 Intel® Capability Licensing Service Interface - ok
22:00:05.0650 10508 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys
22:00:05.0713 10508 intelide - ok
22:00:05.0759 10508 [ F9E126AA767E2E6E3128434A43C9F713 ] intelppm C:\Windows\System32\drivers\intelppm.sys
22:00:05.0869 10508 intelppm - ok
22:00:05.0884 10508 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:00:05.0931 10508 IpFilterDriver - ok
22:00:06.0072 10508 [ CAC5202757EF68C4849B0DFFA75F6D3C ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:00:06.0134 10508 iphlpsvc - ok
22:00:06.0134 10508 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
22:00:06.0181 10508 IPMIDRV - ok
22:00:06.0181 10508 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:00:06.0228 10508 IPNAT - ok
22:00:06.0228 10508 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:00:06.0275 10508 IRENUM - ok
22:00:06.0291 10508 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:00:06.0353 10508 isapnp - ok
22:00:06.0400 10508 [ F5F0DE1B7F256997501EECECE9648108 ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
22:00:06.0478 10508 iScsiPrt - ok
22:00:06.0509 10508 [ C59B9CE2855E667809F9E63C20FC44A5 ] iwdbus C:\Windows\System32\drivers\iwdbus.sys
22:00:06.0588 10508 iwdbus - ok
22:00:06.0713 10508 [ 78ABBE558F57144047F10A0F50FE4B2F ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
22:00:06.0728 10508 jhi_service - ok
22:00:06.0728 10508 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
22:00:06.0931 10508 kbdclass - ok
22:00:06.0963 10508 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
22:00:07.0025 10508 kbdhid - ok
22:00:07.0025 10508 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
22:00:07.0056 10508 kdnic - ok
22:00:07.0072 10508 [ 6E0E63801FBEF27995107B8269BCFAAD ] KeyIso C:\Windows\system32\lsass.exe
22:00:07.0072 10508 KeyIso - ok
22:00:07.0103 10508 [ A4751040DB14E30E61A4E47481C77274 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:00:07.0119 10508 KSecDD - ok
22:00:07.0213 10508 [ E427D299CFE267A2465D3AAF81440ED9 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:00:07.0275 10508 KSecPkg - ok
22:00:07.0275 10508 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:00:07.0400 10508 ksthunk - ok
22:00:07.0494 10508 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll
22:00:07.0603 10508 KtmRm - ok
22:00:07.0697 10508 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll
22:00:07.0760 10508 LanmanServer - ok
22:00:07.0838 10508 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:00:07.0900 10508 LanmanWorkstation - ok
22:00:07.0916 10508 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:00:07.0994 10508 lltdio - ok
22:00:08.0072 10508 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:00:08.0119 10508 lltdsvc - ok
22:00:08.0135 10508 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:00:08.0166 10508 lmhosts - ok
22:00:08.0275 10508 [ 2C24DC448DBE8DB9BE1441B824C57E79 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:00:08.0291 10508 LMS - ok
22:00:08.0322 10508 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:00:08.0416 10508 LSI_SAS - ok
22:00:08.0416 10508 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:00:08.0463 10508 LSI_SAS2 - ok
22:00:08.0478 10508 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:00:08.0525 10508 LSI_SCSI - ok
22:00:08.0541 10508 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
22:00:08.0588 10508 LSI_SSS - ok
22:00:08.0588 10508 [ 8FEFDCEE40B75FD23B4BC60DA6576113 ] LSM C:\Windows\System32\lsm.dll
22:00:08.0603 10508 LSM - ok
22:00:08.0619 10508 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys
22:00:08.0635 10508 luafv - ok
22:00:08.0791 10508 [ 1E3AF124A3405EEE594BB9FFD4640F48 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
22:00:08.0853 10508 McAWFwk - ok
22:00:08.0931 10508 [ C121367D21599367F2ADB9C11B7BABAA ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:00:08.0947 10508 McMPFSvc - ok
22:00:08.0947 10508 [ C121367D21599367F2ADB9C11B7BABAA ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:00:08.0947 10508 mcmscsvc - ok
22:00:08.0963 10508 [ C121367D21599367F2ADB9C11B7BABAA ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:00:08.0963 10508 McNaiAnn - ok
22:00:08.0978 10508 [ C121367D21599367F2ADB9C11B7BABAA ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:00:08.0978 10508 McNASvc - ok
22:00:09.0150 10508 [ B26B99CE6218CC586B727CBA7C923233 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
22:00:09.0166 10508 McODS - ok
22:00:09.0166 10508 [ C121367D21599367F2ADB9C11B7BABAA ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:00:09.0181 10508 McOobeSv - ok
22:00:09.0181 10508 [ C121367D21599367F2ADB9C11B7BABAA ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:00:09.0197 10508 McProxy - ok
22:00:09.0244 10508 [ 4DEC9B5BEDAA97B1FF6A3923E1C4F58A ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
22:00:09.0260 10508 McShield - ok
22:00:09.0275 10508 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys
22:00:09.0322 10508 megasas - ok
22:00:09.0322 10508 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:00:09.0385 10508 MegaSR - ok
22:00:09.0416 10508 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\System32\drivers\HECIx64.sys
22:00:09.0447 10508 MEIx64 - ok
22:00:09.0510 10508 [ B574522827D94126C03975FD53F0B26B ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
22:00:09.0556 10508 mfeapfk - ok
22:00:09.0603 10508 [ B393753ECE9A9E2307CB1984ACF3DA9D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
22:00:09.0666 10508 mfeavfk - ok
22:00:09.0681 10508 mfeavfk01 - ok
22:00:09.0697 10508 [ FC3A202C302AFECDC9F14F28A29080A8 ] mfeelamk C:\Windows\system32\drivers\mfeelamk.sys
22:00:09.0760 10508 mfeelamk - ok
22:00:09.0775 10508 [ 97C398750C8E80A48EB63999546F796E ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:00:09.0775 10508 mfefire - ok
22:00:09.0791 10508 [ C52A1ABF03DD219375EA0F6A8BE941C3 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
22:00:09.0853 10508 mfefirek - ok
22:00:09.0869 10508 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
22:00:09.0900 10508 mfehidk - ok
22:00:09.0900 10508 [ D2A941C82A0A9227CD6F47AD40A40F69 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
22:00:09.0947 10508 mferkdet - ok
22:00:09.0963 10508 [ 04D48692EFF181DA46DD8EA8BE9FFB2B ] mfevtp C:\Windows\system32\mfevtps.exe
22:00:09.0994 10508 mfevtp - ok
22:00:10.0010 10508 [ 1631E2DA6C4B47D97ECA94842836592E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
22:00:10.0025 10508 mfewfpk - ok
22:00:10.0056 10508 Microsoft SharePoint Workspace Audit Service - ok
22:00:10.0088 10508 [ DBD28A7997CF7303E610989C565C9B29 ] MMCSS C:\Windows\system32\mmcss.dll
22:00:10.0103 10508 MMCSS - ok
22:00:10.0135 10508 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys
22:00:10.0197 10508 Modem - ok
22:00:10.0228 10508 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:00:10.0275 10508 monitor - ok
22:00:10.0400 10508 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys
22:00:10.0447 10508 mouclass - ok
22:00:10.0494 10508 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\Windows\System32\drivers\mouhid.sys
22:00:10.0525 10508 mouhid - ok
22:00:10.0635 10508 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:00:10.0697 10508 mountmgr - ok
22:00:10.0760 10508 [ 730A519505621DF46BCBF9CDAC9FB6AD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:00:10.0822 10508 MozillaMaintenance - ok
22:00:10.0838 10508 [ 36BF4D86F166ACBC14F0B8B8F90CBCEA ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:00:10.0900 10508 mpsdrv - ok
22:00:10.0932 10508 [ 411EA973A1961C287927DF13891EB41E ] MpsSvc C:\Windows\system32\mpssvc.dll
22:00:10.0947 10508 MpsSvc - ok
22:00:10.0963 10508 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:00:11.0010 10508 MRxDAV - ok
22:00:11.0041 10508 [ 1EEAA5A62E8C49DDF58798F06F78BFFA ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:00:11.0088 10508 mrxsmb - ok
22:00:11.0088 10508 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:00:11.0103 10508 mrxsmb10 - ok
22:00:11.0103 10508 [ BFBE1EA55ECC15733933D429E384BCA4 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:00:11.0119 10508 mrxsmb20 - ok
22:00:11.0150 10508 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
22:00:11.0197 10508 MsBridge - ok
22:00:11.0213 10508 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe
22:00:11.0275 10508 MSDTC - ok
22:00:11.0275 10508 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:00:11.0291 10508 Msfs - ok
22:00:11.0307 10508 [ 62435ABF8D6199659D451DFBC94E773C ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
22:00:11.0338 10508 msgpiowin32 - ok
22:00:11.0353 10508 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:00:11.0400 10508 mshidkmdf - ok
22:00:11.0400 10508 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
22:00:11.0447 10508 mshidumdf - ok
22:00:11.0447 10508 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:00:11.0463 10508 msisadrv - ok
22:00:11.0478 10508 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:00:11.0510 10508 MSiSCSI - ok
22:00:11.0510 10508 msiserver - ok
22:00:11.0525 10508 [ C121367D21599367F2ADB9C11B7BABAA ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:00:11.0541 10508 MSK80Service - ok
22:00:11.0541 10508 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:00:11.0588 10508 MSKSSRV - ok
22:00:11.0588 10508 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
22:00:11.0603 10508 MsLldp - ok
22:00:11.0635 10508 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:00:11.0682 10508 MSPCLOCK - ok
22:00:11.0697 10508 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:00:11.0728 10508 MSPQM - ok
22:00:11.0885 10508 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:00:11.0978 10508 MsRPC - ok
22:00:11.0994 10508 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
22:00:12.0025 10508 mssmbios - ok
22:00:12.0041 10508 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:00:12.0088 10508 MSTEE - ok
22:00:12.0103 10508 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
22:00:12.0135 10508 MTConfig - ok
22:00:12.0150 10508 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys
22:00:12.0166 10508 Mup - ok
22:00:12.0166 10508 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys
22:00:12.0228 10508 mvumis - ok
22:00:12.0260 10508 [ 431F065E2A99FC3C670BD20694117C8B ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
22:00:12.0291 10508 MyWiFiDHCPDNS - ok
22:00:12.0322 10508 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll
22:00:12.0338 10508 napagent - ok
22:00:12.0385 10508 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:00:12.0432 10508 NativeWifiP - ok
22:00:12.0478 10508 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll
22:00:12.0510 10508 NcaSvc - ok
22:00:12.0510 10508 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
22:00:12.0541 10508 NcdAutoSetup - ok
22:00:12.0572 10508 [ EAB473DFB958489D3145FE4DD5F5E77B ] NDIS C:\Windows\system32\drivers\ndis.sys
22:00:12.0635 10508 NDIS - ok
22:00:12.0650 10508 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:00:12.0666 10508 NdisCap - ok
22:00:12.0682 10508 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
22:00:12.0682 10508 NdisImPlatform - ok
22:00:12.0682 10508 [ 8757D4A9701F9F4B59978839F46C32A7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:00:12.0728 10508 NdisTapi - ok
22:00:12.0728 10508 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:00:12.0775 10508 Ndisuio - ok
22:00:12.0775 10508 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:00:12.0822 10508 NdisWan - ok
22:00:12.0885 10508 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
22:00:12.0900 10508 NDISWANLEGACY - ok
22:00:12.0932 10508 [ FC891984160AAD8D3F047888C6BF1467 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:00:13.0072 10508 NDProxy - ok
22:00:13.0072 10508 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys
22:00:13.0119 10508 Ndu - ok
22:00:13.0119 10508 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:00:13.0166 10508 NetBIOS - ok
22:00:13.0182 10508 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:00:13.0229 10508 NetBT - ok
22:00:13.0291 10508 [ 6E0E63801FBEF27995107B8269BCFAAD ] Netlogon C:\Windows\system32\lsass.exe
22:00:13.0322 10508 Netlogon - ok
22:00:13.0400 10508 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll
22:00:13.0432 10508 Netman - ok
22:00:13.0447 10508 [ 20F6FD63E6D456114BC8056D62792786 ] netprofm C:\Windows\System32\netprofmsvc.dll
22:00:13.0463 10508 netprofm - ok
22:00:13.0510 10508 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:00:13.0604 10508 NetTcpPortSharing - ok
22:00:13.0697 10508 [ A92DECBD3D9624F298A49A2B25EDE3B0 ] NETwNe64 C:\Windows\system32\DRIVERS\NETwew00.sys
22:00:13.0744 10508 NETwNe64 - ok
22:00:13.0760 10508 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:00:13.0807 10508 nfrd960 - ok
22:00:13.0822 10508 [ 05B42A91867DA3FF71C59747DC785996 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:00:13.0854 10508 NlaSvc - ok
22:00:13.0869 10508 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:00:13.0885 10508 Npfs - ok
22:00:13.0885 10508 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
22:00:13.0932 10508 npsvctrig - ok
22:00:13.0963 10508 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll
22:00:14.0025 10508 nsi - ok
22:00:14.0025 10508 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:00:14.0072 10508 nsiproxy - ok
22:00:14.0104 10508 [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:00:14.0166 10508 Ntfs - ok
22:00:14.0166 10508 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys
22:00:14.0213 10508 Null - ok
22:00:14.0979 10508 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:00:15.0119 10508 nvlddmkm - ok
22:00:15.0150 10508 [ 918841B2454F4F2BD94479692079490B ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
22:00:15.0197 10508 nvpciflt - ok
22:00:15.0229 10508 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:00:15.0275 10508 nvraid - ok
22:00:15.0275 10508 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:00:15.0322 10508 nvstor - ok
22:00:15.0338 10508 [ 17DE7BC5906A7D80A4F86EF67F21F8DB ] NvStUSB C:\Windows\System32\drivers\nvstusb.sys
22:00:15.0400 10508 NvStUSB - ok
22:00:15.0447 10508 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
22:00:15.0463 10508 nvsvc - ok
22:00:15.0526 10508 [ 249357999355A998AA94A3673C3367EB ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
22:00:15.0541 10508 nvUpdatusService - ok
22:00:15.0541 10508 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:00:15.0588 10508 nv_agp - ok
22:00:15.0635 10508 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:00:15.0682 10508 ose - ok
22:00:15.0791 10508 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:00:15.0869 10508 osppsvc - ok
22:00:15.0916 10508 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:00:15.0947 10508 p2pimsvc - ok
22:00:15.0963 10508 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll
22:00:16.0010 10508 p2psvc - ok
22:00:16.0026 10508 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys
22:00:16.0072 10508 Parport - ok
22:00:16.0088 10508 [ C1D7BA7F0DE487DFEEB51BF8D3EC5562 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:00:16.0088 10508 partmgr - ok
22:00:16.0135 10508 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:00:16.0166 10508 PcaSvc - ok
22:00:16.0182 10508 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys
22:00:16.0182 10508 pci - ok
22:00:16.0197 10508 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys
22:00:16.0244 10508 pciide - ok
22:00:16.0260 10508 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:00:16.0322 10508 pcmcia - ok
22:00:16.0322 10508 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys
22:00:16.0338 10508 pcw - ok
22:00:16.0338 10508 [ 674B0AAFB88A04D313B032C623F6AC9A ] pdc C:\Windows\system32\drivers\pdc.sys
22:00:16.0354 10508 pdc - ok
22:00:16.0604 10508 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:00:16.0729 10508 PEAUTH - ok
22:00:16.0807 10508 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:00:16.0869 10508 PerfHost - ok
22:00:16.0901 10508 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll
22:00:16.0963 10508 pla - ok
22:00:16.0994 10508 [ D7A3877D9E126E21925DA873677C1D65 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:00:17.0010 10508 PlugPlay - ok
22:00:17.0010 10508 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:00:17.0057 10508 PNRPAutoReg - ok
22:00:17.0057 10508 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:00:17.0072 10508 PNRPsvc - ok
22:00:17.0104 10508 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:00:17.0151 10508 PolicyAgent - ok
22:00:17.0151 10508 [ AAD0C7235F804728373026EEFFDBCA6C ] Power C:\Windows\system32\umpo.dll
22:00:17.0182 10508 Power - ok
22:00:17.0213 10508 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:00:17.0244 10508 PptpMiniport - ok
22:00:17.0338 10508 [ 9D59831262CAD44E709D695FC9D5E7AB ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
22:00:17.0401 10508 PrintNotify - ok
22:00:17.0401 10508 [ 8DA167F8967AB35A2487095CB1B879A0 ] Processor C:\Windows\System32\drivers\processr.sys
22:00:17.0452 10508 Processor - ok
22:00:17.0472 10508 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll
22:00:17.0512 10508 ProfSvc - ok
22:00:17.0532 10508 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:00:17.0542 10508 Psched - ok
22:00:17.0562 10508 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll
22:00:17.0602 10508 QWAVE - ok
22:00:17.0672 10508 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:00:17.0732 10508 QWAVEdrv - ok
22:00:17.0752 10508 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:00:17.0802 10508 RasAcd - ok
22:00:17.0842 10508 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:00:17.0912 10508 RasAgileVpn - ok
22:00:17.0972 10508 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll
22:00:18.0032 10508 RasAuto - ok
22:00:18.0062 10508 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:00:18.0112 10508 Rasl2tp - ok
22:00:18.0152 10508 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll
22:00:18.0232 10508 RasMan - ok
22:00:18.0232 10508 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:00:18.0272 10508 RasPppoe - ok
22:00:18.0282 10508 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:00:18.0352 10508 RasSstp - ok
22:00:18.0382 10508 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:00:18.0402 10508 rdbss - ok
22:00:18.0402 10508 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
22:00:18.0452 10508 rdpbus - ok
22:00:18.0452 10508 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:00:18.0492 10508 RDPDR - ok
22:00:18.0502 10508 [ 3B4F32CA8B37584ECF98BCE136E38B96 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:00:18.0512 10508 RdpVideoMiniport - ok
22:00:18.0532 10508 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:00:18.0592 10508 RDPWD - ok
22:00:18.0592 10508 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:00:18.0612 10508 rdyboost - ok
22:00:18.0662 10508 [ D4F8266D63800FF9ACFAC838005A974C ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
22:00:18.0672 10508 RegSrvc - ok
22:00:18.0692 10508 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:00:18.0752 10508 RemoteAccess - ok
22:00:18.0772 10508 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:00:18.0842 10508 RemoteRegistry - ok
22:00:18.0852 10508 [ 17EF582CBC4809F96B9E6D0543480763 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
22:00:18.0902 10508 RFCOMM - ok
22:00:18.0972 10508 [ 41DDCF1ADD1FB7DE23DCF671740DDBE6 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
22:00:18.0982 10508 RichVideo - ok
22:00:19.0152 10508 [ 381E606B90F32E501D1E2C852D211AB9 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:00:19.0222 10508 RpcEptMapper - ok
22:00:19.0272 10508 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe
22:00:19.0312 10508 RpcLocator - ok
22:00:19.0352 10508 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll
22:00:19.0372 10508 RpcSs - ok
22:00:19.0382 10508 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:00:19.0422 10508 rspndr - ok
22:00:19.0452 10508 [ 8EB6DCEB7473C232D8BC9A886E3183AC ] RSUSBVSTOR C:\Windows\System32\Drivers\RtsUVStor.sys
22:00:19.0612 10508 RSUSBVSTOR - ok
22:00:19.0642 10508 [ 15923AA360F7675D3D43C9669316A0BA ] RTL8168 C:\Windows\system32\DRIVERS\Rt630x64.sys
22:00:19.0682 10508 RTL8168 - ok
22:00:19.0702 10508 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys
22:00:19.0742 10508 s3cap - ok
22:00:19.0772 10508 [ 6E0E63801FBEF27995107B8269BCFAAD ] SamSs C:\Windows\system32\lsass.exe
22:00:19.0782 10508 SamSs - ok
22:00:19.0792 10508 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:00:19.0842 10508 sbp2port - ok
22:00:19.0882 10508 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:00:19.0932 10508 SCardSvr - ok
22:00:19.0942 10508 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:00:19.0982 10508 scfilter - ok
22:00:20.0022 10508 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\Windows\system32\schedsvc.dll
22:00:20.0042 10508 Schedule - ok
22:00:20.0062 10508 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:00:20.0082 10508 SCPolicySvc - ok
22:00:20.0112 10508 [ 6D3A4C1E3E809C02476B32ACB68C1707 ] sdbus C:\Windows\System32\drivers\sdbus.sys
22:00:20.0182 10508 sdbus - ok
22:00:20.0192 10508 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:00:20.0242 10508 SDRSVC - ok
22:00:20.0242 10508 [ 6BF842A03DAA25CBBA9A585E25731E06 ] sdstor C:\Windows\System32\drivers\sdstor.sys
22:00:20.0292 10508 sdstor - ok
22:00:20.0292 10508 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:00:20.0302 10508 secdrv - ok
22:00:20.0322 10508 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll
22:00:20.0332 10508 seclogon - ok
22:00:20.0332 10508 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll
22:00:20.0372 10508 SENS - ok
22:00:20.0372 10508 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:00:20.0412 10508 SensrSvc - ok
22:00:20.0422 10508 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys
22:00:20.0462 10508 SerCx - ok
22:00:20.0472 10508 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys
22:00:20.0512 10508 Serenum - ok
22:00:20.0512 10508 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys
22:00:20.0562 10508 Serial - ok
22:00:20.0562 10508 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys
22:00:20.0602 10508 sermouse - ok
22:00:20.0632 10508 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll
22:00:20.0662 10508 SessionEnv - ok
22:00:20.0672 10508 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
22:00:20.0712 10508 sfloppy - ok
22:00:20.0882 10508 [ 4EA5949CBCA6EB6A0ED1838616DD9E0A ] SftService C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
22:00:20.0932 10508 SftService - ok
22:00:20.0972 10508 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:00:21.0022 10508 SharedAccess - ok
22:00:21.0062 10508 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:00:21.0082 10508 ShellHWDetection - ok
22:00:21.0102 10508 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:00:21.0172 10508 SiSRaid2 - ok
22:00:21.0172 10508 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:00:21.0212 10508 SiSRaid4 - ok
22:00:21.0242 10508 [ 8B603F150942992F2E6792E507B4C67F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:00:21.0252 10508 SkypeUpdate - ok
22:00:21.0272 10508 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:00:21.0312 10508 SNMPTRAP - ok
22:00:21.0322 10508 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\Windows\system32\drivers\spaceport.sys
22:00:21.0342 10508 spaceport - ok
22:00:21.0362 10508 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
22:00:21.0402 10508 SpbCx - ok
22:00:21.0432 10508 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe
22:00:21.0462 10508 Spooler - ok
22:00:21.0818 10508 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe
22:00:21.0912 10508 sppsvc - ok
22:00:21.0912 10508 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:00:21.0959 10508 srv - ok
22:00:21.0990 10508 [ 0DE224F7B8041B17AA53D00327A86396 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:00:22.0021 10508 srv2 - ok
22:00:22.0021 10508 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:00:22.0037 10508 srvnet - ok
22:00:22.0084 10508 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:00:22.0115 10508 SSDPSRV - ok
22:00:22.0131 10508 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:00:22.0131 10508 SstpSvc - ok
22:00:22.0193 10508 [ 97F839E8AEC48EE271509BF4BC764C24 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
22:00:22.0193 10508 STacSV ( UnsignedFile.Multi.Generic ) - warning
22:00:22.0193 10508 STacSV - detected UnsignedFile.Multi.Generic (1)
22:00:22.0209 10508 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:00:22.0256 10508 stexstor - ok
22:00:22.0287 10508 [ 7E89F65EB250463EE8665CFE19566FC3 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
22:00:22.0334 10508 STHDA - ok
22:00:22.0381 10508 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll
22:00:22.0412 10508 stisvc - ok
22:00:22.0412 10508 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\Windows\system32\drivers\storahci.sys
22:00:22.0459 10508 storahci - ok
22:00:22.0475 10508 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
22:00:22.0521 10508 storflt - ok
22:00:22.0553 10508 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll
22:00:22.0631 10508 StorSvc - ok
22:00:22.0662 10508 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:00:22.0740 10508 storvsc - ok
22:00:22.0756 10508 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll
22:00:22.0834 10508 svsvc - ok
22:00:22.0850 10508 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys
22:00:22.0881 10508 swenum - ok
22:00:22.0896 10508 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll
22:00:22.0943 10508 swprv - ok
22:00:22.0975 10508 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll
22:00:23.0006 10508 SysMain - ok
22:00:23.0084 10508 [ F1DA8D3C4395E4B1D58D308A4B062B24 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
22:00:23.0131 10508 SystemEventsBroker - ok
22:00:23.0162 10508 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
22:00:23.0209 10508 TabletInputService - ok
22:00:23.0209 10508 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll
22:00:23.0240 10508 TapiSrv - ok
22:00:23.0303 10508 [ AF6A8D27FCABFF85DDC1D4599582B4FE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:00:23.0334 10508 Tcpip - ok
22:00:23.0365 10508 [ AF6A8D27FCABFF85DDC1D4599582B4FE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:00:23.0396 10508 TCPIP6 - ok
22:00:23.0412 10508 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:00:23.0443 10508 tcpipreg - ok
22:00:23.0459 10508 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:00:23.0490 10508 tdx - ok
22:00:23.0506 10508 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys
22:00:23.0553 10508 terminpt - ok
22:00:23.0584 10508 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll
22:00:23.0615 10508 TermService - ok
22:00:23.0631 10508 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll
22:00:23.0662 10508 Themes - ok
22:00:23.0678 10508 [ DBD28A7997CF7303E610989C565C9B29 ] THREADORDER C:\Windows\system32\mmcss.dll
22:00:23.0693 10508 THREADORDER - ok
22:00:23.0709 10508 [ 2A8B087AE47AC8486859CF479BB704C8 ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
22:00:23.0787 10508 TimeBroker - ok
22:00:23.0818 10508 [ 151BD0387B1B320CC9AACE6DB071803B ] TPM C:\Windows\system32\drivers\tpm.sys
22:00:23.0865 10508 TPM - ok
22:00:23.0881 10508 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll
22:00:23.0928 10508 TrkWks - ok
22:00:24.0006 10508 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:00:24.0021 10508 TrustedInstaller - ok
22:00:24.0021 10508 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:00:24.0068 10508 TsUsbFlt - ok
22:00:24.0068 10508 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
22:00:24.0115 10508 TsUsbGD - ok
22:00:24.0146 10508 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:00:24.0209 10508 tunnel - ok
22:00:24.0240 10508 [ 42350E49DA754D2D77362FDAE3491651 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
22:00:24.0287 10508 TurboB - ok
22:00:24.0334 10508 [ 4F4B0AB2FB69C414CCBCEF7CF2E1C8D8 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
22:00:24.0350 10508 TurboBoost - ok
22:00:24.0381 10508 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:00:24.0412 10508 uagp35 - ok
22:00:24.0428 10508 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
22:00:24.0459 10508 UASPStor - ok
22:00:24.0459 10508 [ AA48AEC5CEB2AA8ED1B1A5758B017F72 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
22:00:24.0506 10508 UCX01000 - ok
22:00:24.0553 10508 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:00:24.0631 10508 udfs - ok
22:00:24.0662 10508 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:00:24.0771 10508 UI0Detect - ok
22:00:24.0818 10508 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:00:24.0896 10508 uliagpkx - ok
22:00:24.0896 10508 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys
22:00:24.0943 10508 umbus - ok
22:00:24.0943 10508 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys
22:00:24.0990 10508 UmPass - ok
22:00:25.0006 10508 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll
22:00:25.0037 10508 UmRdpService - ok
22:00:25.0131 10508 [ E1A119AD21F5AFE22EB516C549306D3D ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:00:25.0147 10508 UNS - ok
22:00:25.0256 10508 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll
22:00:25.0397 10508 upnphost - ok
22:00:25.0428 10508 [ 30F02F642C2D141CAABD412B48A29D76 ] usb3Hub C:\Windows\System32\drivers\usb3Hub.sys
22:00:25.0459 10508 usb3Hub - ok
22:00:25.0459 10508 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
22:00:25.0506 10508 usbccgp - ok
22:00:25.0522 10508 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys
22:00:25.0568 10508 usbcir - ok
22:00:25.0568 10508 [ 742BAFBB51C5B7811098ADE8C7EF5534 ] usbehci C:\Windows\System32\drivers\usbehci.sys
22:00:25.0615 10508 usbehci - ok
22:00:25.0631 10508 [ 566A32B2054C8E5360DB7839F64D0F58 ] usbhub C:\Windows\System32\drivers\usbhub.sys
22:00:25.0678 10508 usbhub - ok
22:00:25.0693 10508 [ 12EAB6FB15B572D9C6D9FFC33F87EC3F ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
22:00:25.0740 10508 USBHUB3 - ok
22:00:25.0756 10508 [ F656F5D696A921DA67E98CF9C2BEDA20 ] usbohci C:\Windows\System32\drivers\usbohci.sys
22:00:25.0803 10508 usbohci - ok
22:00:25.0803 10508 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys
22:00:25.0865 10508 usbprint - ok
22:00:25.0865 10508 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
22:00:25.0912 10508 USBSTOR - ok
22:00:25.0912 10508 [ 1BBB5F562E80CF9E2F1587150FE3216E ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
22:00:25.0959 10508 usbuhci - ok
22:00:25.0959 10508 [ 75357960FD491E12416342CA12975FDA ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
22:00:26.0006 10508 usbvideo - ok
22:00:26.0022 10508 [ 8ABF3C3ED6BF5ED15DC947795FF6ACAC ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
22:00:26.0068 10508 USBXHCI - ok
22:00:26.0068 10508 [ 6E0E63801FBEF27995107B8269BCFAAD ] VaultSvc C:\Windows\system32\lsass.exe
22:00:26.0084 10508 VaultSvc - ok
22:00:26.0084 10508 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:00:26.0131 10508 vdrvroot - ok
22:00:26.0178 10508 [ 728C2DEEE875D6968632638922D6A1D7 ] vds C:\Windows\System32\vds.exe
22:00:26.0193 10508 vds - ok
22:00:26.0193 10508 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
22:00:26.0240 10508 VerifierExt - ok
22:00:26.0272 10508 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
22:00:26.0318 10508 vhdmp - ok
22:00:26.0318 10508 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys
22:00:26.0365 10508 viaide - ok
22:00:26.0365 10508 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:00:26.0412 10508 vmbus - ok
22:00:26.0412 10508 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
22:00:26.0459 10508 VMBusHID - ok
22:00:26.0490 10508 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
22:00:26.0522 10508 vmicheartbeat - ok
22:00:26.0522 10508 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
22:00:26.0537 10508 vmickvpexchange - ok
22:00:26.0537 10508 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll
22:00:26.0553 10508 vmicrdv - ok
22:00:26.0568 10508 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll
22:00:26.0568 10508 vmicshutdown - ok
22:00:26.0584 10508 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll
22:00:26.0600 10508 vmictimesync - ok
22:00:26.0600 10508 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll
22:00:26.0615 10508 vmicvss - ok
22:00:26.0631 10508 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:00:26.0631 10508 volmgr - ok
22:00:26.0647 10508 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:00:26.0662 10508 volmgrx - ok
22:00:26.0772 10508 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:00:26.0818 10508 volsnap - ok
22:00:26.0865 10508 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys
22:00:26.0959 10508 vpci - ok
22:00:26.0990 10508 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:00:27.0037 10508 vsmraid - ok
22:00:27.0115 10508 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe
22:00:27.0131 10508 VSS - ok
22:00:27.0193 10508 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
22:00:27.0256 10508 VSTXRAID - ok
22:00:27.0428 10508 [ 301CFD154D004E5BC5EC092D86ADC5DB ] vToolbarUpdater14.0.1 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe
22:00:27.0443 10508 vToolbarUpdater14.0.1 - ok
22:00:27.0443 10508 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:00:27.0490 10508 vwifibus - ok
22:00:27.0506 10508 [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:00:27.0553 10508 vwififlt - ok
22:00:27.0553 10508 [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:00:27.0615 10508 vwifimp - ok
22:00:27.0631 10508 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll
22:00:27.0647 10508 W32Time - ok
22:00:27.0662 10508 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys
22:00:27.0694 10508 WacomPen - ok
22:00:27.0709 10508 [ B69492CBD928534160594A7B33602575 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
22:00:27.0740 10508 Wanarp - ok
22:00:27.0740 10508 [ B69492CBD928534160594A7B33602575 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:00:27.0756 10508 Wanarpv6 - ok
22:00:27.0803 10508 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe
22:00:27.0850 10508 wbengine - ok
22:00:27.0865 10508 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:00:27.0897 10508 WbioSrvc - ok
22:00:27.0912 10508 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
22:00:27.0944 10508 Wcmsvc - ok
22:00:27.0959 10508 [ 68C2831A05A339DA8462C6F45BFCB84C ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:00:28.0084 10508 wcncsvc - ok
22:00:28.0115 10508 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:00:28.0147 10508 WcsPlugInService - ok
22:00:28.0178 10508 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys
22:00:28.0225 10508 Wd - ok
22:00:28.0256 10508 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
22:00:28.0319 10508 WdBoot - ok
22:00:28.0365 10508 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:00:28.0381 10508 Wdf01000 - ok
22:00:28.0397 10508 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
22:00:28.0459 10508 WdFilter - ok
22:00:28.0459 10508 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:00:28.0475 10508 WdiServiceHost - ok
22:00:28.0475 10508 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:00:28.0490 10508 WdiSystemHost - ok
22:00:28.0506 10508 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll
22:00:28.0537 10508 WebClient - ok
22:00:28.0569 10508 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:00:28.0600 10508 Wecsvc - ok
22:00:28.0600 10508 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:00:28.0647 10508 wercplsupport - ok
22:00:28.0647 10508 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\Windows\System32\WerSvc.dll
22:00:28.0678 10508 WerSvc - ok
22:00:28.0678 10508 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
22:00:28.0678 10508 WFPLWFS - ok
22:00:28.0709 10508 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll
22:00:28.0740 10508 WiaRpc - ok
22:00:28.0740 10508 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:00:28.0787 10508 WIMMount - ok
22:00:28.0803 10508 WinDefend - ok
22:00:28.0834 10508 [ 1369928779943B5C7AABA263E6E2BBC1 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
22:00:28.0865 10508 WinHttpAutoProxySvc - ok
22:00:28.0928 10508 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:00:28.0990 10508 Winmgmt - ok
22:00:29.0037 10508 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll
22:00:29.0115 10508 WinRM - ok
22:00:29.0194 10508 [ CAC452B32656A0A51356912F4A9943CA ] WlanSvc C:\Windows\System32\wlansvc.dll
22:00:29.0240 10508 WlanSvc - ok
22:00:29.0287 10508 [ 08EFA13A2234C8C3B8A99E4B88BE7E9B ] wlidsvc C:\Windows\system32\wlidsvc.dll
22:00:29.0319 10508 wlidsvc - ok
22:00:29.0334 10508 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
22:00:29.0397 10508 WmiAcpi - ok
22:00:29.0428 10508 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:00:29.0475 10508 wmiApSrv - ok
22:00:29.0490 10508 WMPNetworkSvc - ok
22:00:29.0522 10508 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
22:00:29.0600 10508 wpcfltr - ok
22:00:29.0615 10508 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:00:29.0678 10508 WPCSvc - ok
22:00:29.0694 10508 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:00:29.0740 10508 WPDBusEnum - ok
22:00:29.0756 10508 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
22:00:29.0787 10508 WpdUpFltr - ok
22:00:29.0834 10508 [ 58D492F986EC519ECDD54D93618758F8 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:00:29.0959 10508 ws2ifsl - ok
22:00:29.0975 10508 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\Windows\System32\wscsvc.dll
22:00:30.0022 10508 wscsvc - ok
22:00:30.0037 10508 [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice C:\Windows\System32\drivers\WSDPrint.sys
22:00:30.0053 10508 WSDPrintDevice - ok
22:00:30.0069 10508 [ 6ED437C0BE2280AF78070B4BEDD0D221 ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
22:00:30.0100 10508 WSDScan - ok
22:00:30.0100 10508 WSearch - ok
22:00:30.0162 10508 [ FEC16FE5EAC2D8CD4628B69667B90DE6 ] WSService C:\Windows\System32\WSService.dll
22:00:30.0209 10508 WSService - ok
22:00:30.0287 10508 [ C80DB258C195ACBF86ED42B53554EB28 ] wuauserv C:\Windows\system32\wuaueng.dll
22:00:30.0350 10508 wuauserv - ok
22:00:30.0366 10508 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:00:30.0412 10508 WudfPf - ok
22:00:30.0459 10508 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
22:00:30.0553 10508 WUDFRd - ok
22:00:30.0553 10508 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:00:30.0600 10508 wudfsvc - ok
22:00:30.0631 10508 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
22:00:30.0631 10508 WUDFWpdFs - ok
22:00:30.0647 10508 [ 9FE55B90B1778C4FE351ECD1AEFD8AAF ] WwanSvc C:\Windows\System32\wwansvc.dll
22:00:30.0694 10508 WwanSvc - ok
22:00:30.0709 10508 [ 6FDEE5E0741A3FFA5E5772C6C94E3F64 ] XHCIPort C:\Windows\System32\drivers\XHCIPort.sys
22:00:30.0772 10508 XHCIPort - ok
22:00:30.0866 10508 [ 97D3DCBBF3915782644DB56F5C191B9F ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
22:00:30.0897 10508 ZeroConfigService - ok
22:00:30.0912 10508 ================ Scan global ===============================
22:00:30.0959 10508 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
22:00:30.0991 10508 [ B36597EF454D4FEA2F11429A9A1424BD ] C:\Windows\system32\winsrv.dll
22:00:31.0022 10508 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
22:00:31.0037 10508 [ 754A2CC1F32107EA87CBD305ABE3E618 ] C:\Windows\system32\services.exe
22:00:31.0037 10508 [Global] - ok
22:00:31.0037 10508 ================ Scan MBR ==================================
22:00:31.0053 10508 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
22:00:31.0162 10508 \Device\Harddisk0\DR0 - ok
22:00:31.0162 10508 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR2
22:00:31.0428 10508 \Device\Harddisk1\DR2 - ok
22:00:31.0444 10508 ================ Scan VBR ==================================
22:00:31.0522 10508 [ 59A17E561FB737D0551D96D63658CA3E ] \Device\Harddisk0\DR0\Partition1
22:00:31.0522 10508 \Device\Harddisk0\DR0\Partition1 - ok
22:00:31.0537 10508 [ F8918404E8FFEC037F61F1A4B2244553 ] \Device\Harddisk0\DR0\Partition2
22:00:31.0537 10508 \Device\Harddisk0\DR0\Partition2 - ok
22:00:31.0537 10508 [ A8EC6449B05E0A472652CD073925B892 ] \Device\Harddisk0\DR0\Partition3
22:00:31.0537 10508 \Device\Harddisk0\DR0\Partition3 - ok
22:00:31.0553 10508 [ 5964D635A26F05B4E25CEC8DE9FB9489 ] \Device\Harddisk0\DR0\Partition4
22:00:31.0553 10508 \Device\Harddisk0\DR0\Partition4 - ok
22:00:31.0569 10508 [ 5EDEC27BB9367FD0264D6F5CD08E9290 ] \Device\Harddisk0\DR0\Partition5
22:00:31.0569 10508 \Device\Harddisk0\DR0\Partition5 - ok
22:00:31.0616 10508 [ 49B80788F555B9170B1C73E3C006E4E1 ] \Device\Harddisk0\DR0\Partition6
22:00:31.0616 10508 \Device\Harddisk0\DR0\Partition6 - ok
22:00:31.0616 10508 [ 40242EAA26C12624A57FCED06420117B ] \Device\Harddisk1\DR2\Partition1
22:00:31.0616 10508 \Device\Harddisk1\DR2\Partition1 - ok
22:00:31.0616 10508 ============================================================
22:00:31.0616 10508 Scan finished
22:00:31.0616 10508 ============================================================
22:00:31.0631 10516 Detected object count: 4
22:00:31.0631 10516 Actual detected object count: 4
22:01:12.0578 10516 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - skipped by user
22:01:12.0578 10516 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:01:12.0578 10516 IAStorDataMgrSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:01:12.0578 10516 IAStorDataMgrSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:01:12.0578 10516 IconMan_R ( UnsignedFile.Multi.Generic ) - skipped by user
22:01:12.0578 10516 IconMan_R ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:01:12.0578 10516 STacSV ( UnsignedFile.Multi.Generic ) - skipped by user
22:01:12.0578 10516 STacSV ( UnsignedFile.Multi.Generic ) - User select action: Skip

Adware
# AdwCleaner v2.105 - Logfile created 01/11/2013 at 22:02:45
# Updated 08/01/2013 by Xplode
# Operating system : Windows 8 (64 bits)
# User : Brittany - BUBBA
# Boot Mode : Normal
# Running from : C:\Users\Brittany\Downloads\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Program Files (x86)\Common Files\AVG Secure Search

***** [Registry] *****

Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16453

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0 (en-US)

File : C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\hovewpso.default\prefs.js

Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Found : user_pref("browser.search.selectedEngine", "AVG Secure Search");

File : C:\Users\Brittany\AppData\Roaming\Mozilla\Firefox\Profiles\ylwbk8l3.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [3900 octets] - [11/01/2013 22:02:45]
AdwCleaner[S1].txt - [16587 octets] - [10/01/2013 11:57:19]

########## EOF - C:\AdwCleaner[R1].txt - [4021 octets] ##########

Farbar Service Scanner Version: 10-12-2012
Ran by Brittany (administrator) on 11-01-2013 at 22:04:01
Running from "C:\Users\Brittany\Downloads"
Windows 8 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll
[2012-07-25 19:07] - [2012-07-25 22:05] - 0331776 ____A (Microsoft Corporation) 6DBE7FE196F8E9D212DCC34EDDF7C3C1

C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-07-26 00:26] - [2012-07-26 00:26] - 2224880 ____A (Microsoft Corporation) AF6A8D27FCABFF85DDC1D4599582B4FE

C:\Windows\System32\dnsrslvr.dll
[2012-07-25 19:08] - [2012-07-25 22:05] - 0210432 ____A (Microsoft Corporation) 9ACE7E657107EB51E5E89FD883F2FD2D

C:\Windows\System32\mpssvc.dll
[2012-07-25 18:40] - [2012-07-25 22:06] - 0904704 ____A (Microsoft Corporation) 411EA973A1961C287927DF13891EB41E

C:\Windows\System32\bfe.dll
[2012-07-25 19:00] - [2012-07-25 22:05] - 0718848 ____A (Microsoft Corporation) 407F85D5387EDBB665A7969DF4D4712B

C:\Windows\System32\drivers\mpsdrv.sys
[2012-07-25 21:23] - [2012-07-25 21:23] - 0074752 ____A (Microsoft Corporation) 36BF4D86F166ACBC14F0B8B8F90CBCEA

C:\Windows\System32\SDRSVC.dll
[2012-07-25 20:08] - [2012-07-25 22:07] - 0148480 ____A (Microsoft Corporation) 92968277ED491E4B3DDA361E3952361E

C:\Windows\System32\vssvc.exe
[2012-07-25 18:36] - [2012-07-25 22:08] - 1482752 ____A (Microsoft Corporation) EA658570314042C914964FC72AB50E6B

C:\Windows\System32\wscsvc.dll
[2012-07-25 18:31] - [2012-07-25 22:08] - 0099840 ____A (Microsoft Corporation) FB0C1B7F94FA08E72F19F6F2CE7210E1

C:\Windows\System32\wbem\WMIsvc.dll
[2012-07-25 18:55] - [2012-07-25 22:08] - 0219648 ____A (Microsoft Corporation) 3D6B518B71C75C8FA4115A33615C107A

C:\Windows\System32\wuaueng.dll
[2012-07-25 18:34] - [2012-07-25 22:08] - 3318784 ____A (Microsoft Corporation) C80DB258C195ACBF86ED42B53554EB28

C:\Windows\System32\qmgr.dll
[2012-07-25 19:18] - [2012-07-25 22:07] - 0826368 ____A (Microsoft Corporation) D598C44A7072D3108D8D8102EC5E07F7

C:\Windows\System32\es.dll
[2012-07-25 18:50] - [2012-07-25 22:05] - 0507904 ____A (Microsoft Corporation) F9E01C2D9F8BC049E04CF5DC24A5F638

C:\Windows\System32\cryptsvc.dll
[2012-07-25 19:05] - [2012-07-25 22:05] - 0067584 ____A (Microsoft Corporation) F0E78B119D12BA81F163D48C0FF30B9A

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll
[2012-07-25 18:45] - [2012-07-25 22:05] - 0438784 ____A (Microsoft Corporation) 090AE16F79C8EAD04E6031F863DA85F3

C:\Windows\System32\iphlpsvc.dll
[2012-07-25 18:35] - [2012-07-25 22:05] - 0894464 ____A (Microsoft Corporation) CAC5202757EF68C4849B0DFFA75F6D3C

C:\Windows\System32\svchost.exe
[2012-07-25 19:00] - [2012-07-25 22:08] - 0030208 ____A (Microsoft Corporation) 57350BEDE3834915B6145B67C71C7BDA

C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

MiniToolBox by Farbar Version: 25-11-2012
Ran by Brittany (administrator) on 11-01-2013 at 22:05:58
Running from "C:\Users\Brittany\Downloads"
Windows 8 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 2230 = Wi-Fi (Connected)
Realtek PCIe FE Family Controller = Ethernet (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Bubba
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
Physical Address. . . . . . . . . : 84-A6-C8-2A-18-D2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 84-A6-C8-2A-18-D5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 5C-F9-DD-4E-02-CE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 2230
Physical Address. . . . . . . . . : 84-A6-C8-2A-18-D1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::1d49:b780:4cf6:a8f2%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, January 11, 2013 2:57:01 PM
Lease Expires . . . . . . . . . . : Tuesday, February 18, 2149 4:34:24 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 260351688
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-F5-B3-34-84-A6-C8-2A-18-D1
DNS Servers . . . . . . . . . . . : 8.26.56.26
156.154.70.22
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.Belkin:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.2.4%17(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 8.26.56.26
156.154.70.22
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:3c38:2a28:baf1:9926(Preferred)
Link-local IPv6 Address . . . . . : fe80::3c38:2a28:baf1:9926%19(Preferred)
Default Gateway . . . . . . . . . : ::
DHCPv6 IAID . . . . . . . . . . . : 570425344
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-F5-B3-34-84-A6-C8-2A-18-D1
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: google.com.Belkin
Addresses: fe80:1::225:90ff:fe19:4b12
92.242.144.50


Pinging google.com [173.194.44.99] with 32 bytes of data:
Reply from 173.194.44.99: bytes=32 time=123ms TTL=50
Reply from 173.194.44.99: bytes=32 time=123ms TTL=50

Ping statistics for 173.194.44.99:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 123ms, Maximum = 123ms, Average = 123ms
Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: yahoo.com.Belkin
Addresses: fe80:1::225:90ff:fe19:4b12
92.242.144.50


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=104ms TTL=51
Reply from 98.138.253.109: bytes=32 time=85ms TTL=51

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 85ms, Maximum = 104ms, Average = 94ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
16...84 a6 c8 2a 18 d2 ......Microsoft Wi-Fi Direct Virtual Adapter
14...84 a6 c8 2a 18 d5 ......Bluetooth Device (Personal Area Network)
13...5c f9 dd 4e 02 ce ......Realtek PCIe FE Family Controller
12...84 a6 c8 2a 18 d1 ......Intel® Centrino® Wireless-N 2230
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.4 281
192.168.2.4 255.255.255.255 On-link 192.168.2.4 281
192.168.2.255 255.255.255.255 On-link 192.168.2.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
19 306 ::/0 On-link
1 306 ::1/128 On-link
19 306 2001::/32 On-link
19 306 2001:0:9d38:953c:3c38:2a28:baf1:9926/128
On-link
12 281 fe80::/64 On-link
19 306 fe80::/64 On-link
17 286 fe80::5efe:192.168.2.4/128
On-link
12 281 fe80::1d49:b780:4cf6:a8f2/128
On-link
19 306 fe80::3c38:2a28:baf1:9926/128
On-link
1 306 ff00::/8 On-link
19 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [64000] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/10/2013 07:00:00 PM) (Source: ESENT) (User: )
Description: svchost (1696) SRUJet: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Windows\system32\SRU\SRU00003.log.

Error: (01/10/2013 06:53:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.

Error: (01/10/2013 06:52:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: pcdrsysinfocsmi.p5x, version: 6.0.6032.39, time stamp: 0x4ffe56d2
Faulting module name: MSVCR90.dll, version: 9.0.30729.6871, time stamp: 0x4fee5fd5
Exception code: 0x40000015
Fault offset: 0x000000000004267f
Faulting process id: 0x1a88
Faulting application start time: 0xpcdrsysinfocsmi.p5x0
Faulting application path: pcdrsysinfocsmi.p5x1
Faulting module path: pcdrsysinfocsmi.p5x2
Report Id: pcdrsysinfocsmi.p5x3
Faulting package full name: pcdrsysinfocsmi.p5x4
Faulting package-relative application ID: pcdrsysinfocsmi.p5x5

Error: (01/10/2013 06:47:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: BUBBA)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail failed with error: -2147009280 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (01/10/2013 01:33:45 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.


System errors:
=============
Error: (01/11/2013 09:49:57 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the McNASvc service.

Error: (01/11/2013 09:30:48 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the McNASvc service.

Error: (01/11/2013 07:56:10 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {3A185DDE-E020-4985-A8F2-E27CDC4A0F3A}

Error: (01/11/2013 07:53:34 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the McNASvc service.

Error: (01/11/2013 03:03:44 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {3A185DDE-E020-4985-A8F2-E27CDC4A0F3A}

Error: (01/11/2013 02:59:59 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly. It has done this 1 time(s).

Error: (01/11/2013 02:48:52 PM) (Source: DCOM) (User: Bubba)
Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}

Error: (01/11/2013 02:48:48 PM) (Source: DCOM) (User: BUBBA)
Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}

Error: (01/11/2013 02:48:48 PM) (Source: DCOM) (User: Bubba)
Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}

Error: (01/11/2013 02:48:48 PM) (Source: DCOM) (User: Bubba)
Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}


Microsoft Office Sessions:
=========================
Error: (01/10/2013 07:00:00 PM) (Source: ESENT)(User: )
Description: svchost1696SRUJet: C:\Windows\system32\SRU\SRU00003.log-1811 (0xfffff8ed)

Error: (01/10/2013 06:53:05 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Brittany\Downloads\esetsmartinstaller_enu.exe

Error: (01/10/2013 06:52:28 PM) (Source: Application Error)(User: )
Description: pcdrsysinfocsmi.p5x6.0.6032.394ffe56d2MSVCR90.dll9.0.30729.68714fee5fd540000015000000000004267f1a8801cdef8d887be990C:\Program Files\Dell Support Center\pcdrsysinfocsmi.p5xC:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_08e717a5a83adddf\MSVCR90.dllc9c6f170-5b80-11e2-be6c-84a6c82a18d5

Error: (01/10/2013 06:47:16 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: BUBBA)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147009280

Error: (01/10/2013 01:33:45 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestC:\Users\Brittany\Downloads\esetsmartinstaller_enu.exe


CodeIntegrity Errors:
===================================
Date: 2013-01-11 22:05:03.137
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 22:05:03.121
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 22:03:48.254
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 22:03:48.238
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 22:03:36.538
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 22:03:36.528
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 22:02:23.128
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 22:02:23.112
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 21:59:26.510
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 21:59:26.494
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Amazon Browser App (Version: 1.0.0.0)
AVG SafeGuard toolbar (Version: 14.0.0.12)
CCleaner (Version: 3.20)
Comodo Dragon (Version: 23.4.0.0)
COMODO Internet Security (Version: 5.12.55693.2551)
CyberLink LabelPrint 2.5 (Version: 2.5.5415a)
CyberLink Media Suite 10 (Version: 10.0.1.1913)
CyberLink Media Suite Essentials (Version: 10.0)
CyberLink Power2Go 8 (Version: 8.0.0.1904)
CyberLink PowerDirector 10 (Version: 10.0.1.1904)
CyberLink PowerDVD 10 (Version: 10.0.4318.52)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Backup and Recovery - Support Software (Version: 1.0.0.1)
Dell Backup and Recovery (Version: 1.0.0.1)
Dell Digital Delivery (Version: 2.2.2000.0)
Dell Product Registration (Version: 1.16.1)
Dell Support Center (Version: 3.2.6032.39)
Dell Touchpad (Version: 8.1200.101.209)
DSC/AA Factory Installer (Version: 3.2.6032.39)
GeekBuddy (Version: 4.3.43)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1008)
Intel® Management Engine Components (Version: 8.1.0.1252)
Intel® Processor Graphics (Version: 9.17.10.2849)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.5.0.0344)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 2.5.0.0248)
Intel® Rapid Storage Technology (Version: 11.5.0.1207)
Intel® Turbo Boost Technology Monitor 2.6 (Version: 2.6.2.0)
Intel® WiDi (Version: 3.5.34.0)
Intel® PROSet/Wireless WiFi Software (Version: 15.05.1000.1411)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
McAfee SecurityCenter (Version: 11.6.385)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4763.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4763.1000)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Movie Maker (Version: 16.4.3503.0728)
Mozilla Firefox 18.0 (x86 en-US) (Version: 18.0)
Mozilla Maintenance Service (Version: 18.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1108.0727)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA Optimus 1.10.8 (Version: 1.10.8)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Photo Common (Version: 16.4.3503.0728)
Photo Gallery (Version: 16.4.3503.0728)
Pidgin (Version: 2.10.6)
Quickset64 (Version: 11.1.27)
Realtek USB 2.0 Card Reader (Version: 6.1.8400.39030)
Revo Uninstaller 1.94 (Version: 1.94)
Shared C Run-time for x64 (Version: 10.0.0)
Skype™ 6.0 (Version: 6.0.120)
Spotify (Version: 0.8.5.1333.g822e0de8)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Windows Live Communications Platform (Version: 16.4.3503.0728)
Windows Live Essentials (Version: 16.4.3503.0728)
Windows Live Installer (Version: 16.4.3503.0728)
Windows Live Photo Common (Version: 16.4.3503.0728)
Windows Live PIMT Platform (Version: 16.4.3503.0728)
Windows Live SOXE (Version: 16.4.3503.0728)
Windows Live SOXE Definitions (Version: 16.4.3503.0728)
Windows Live UX Platform (Version: 16.4.3503.0728)
Windows Live UX Platform Language Pack (Version: 16.4.3503.0728)
WinZip 17.0 (Version: 17.0.10283)

========================= Devices: ================================

Name: USB-IF xHCI USB Host Controller
Description: USB-IF xHCI USB Host Controller
Class Guid: {8a2edc79-c759-46f2-88af-9d4efe3b5eee}
Manufacturer: Intel Corporation
Service: XHCIPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 8051 MB
Available physical RAM: 5757.02 MB
Total Pagefile: 12659 MB
Available Pagefile: 9656 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.92 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:921.74 GB) (Free:858.79 GB) NTFS
2 Drive d: (VTech) (CDROM) (Total:0.28 GB) (Free:0 GB) CDFS
3 Drive f: () (Removable) (Total:7.39 GB) (Free:0.02 GB) FAT32

========================= Users: ========================================

User accounts for \\BUBBA

Administrator Brittany Guest
Ryan UpdatusUser

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

11-01-2013 16:24:00 Installed Microsoft Office Professional Plus 2010

**** End of log ****

#12 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:05 AM

Posted 12 January 2013 - 09:41 AM

Hi

Please do the following next:

:step1:

We need to change the startup type of one or more services to automatic

You need to be signed in as an Administrator for this.

  • Press the Windows+R keys to open the Run dialog, type services.msc, then press Enter
  • A window named "Services" should open.
  • Click the on the header of the column "Name" until the small triangle has it's tip facing upwards (like: ^ )
  • Scroll down the names until you find the service named "Windows Update"
  • Right click on this, then click "Properties"
  • On the "General" tab, there is a dropdown for "startup type" - please select "automatic"
  • Click on Apply
  • Exit the "Services" window.


:step2:

Please install any important / critical updates for Windows via instructions on the following video: link

Note: Restart the computer after the updates have been installed.


:step3:

Note: This will also remove the AVG security toolbar. You can reinstall it after if you want.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


:step4:

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the full contents of the log in your next reply.

Note: Be sure to restart the computer.

The log can also be found here:
C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step5:

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista / Windows 7 / Windows 8 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


:step6:

How is the computer running now?

Edited by dev00790, 12 January 2013 - 09:43 AM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#13 kaolite

kaolite
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 12 January 2013 - 11:36 PM

I ran Adware, it restarted the comp but didnt give me a log, when I searched for it, Windows said it didnt exist.

Here's the others


Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.10.13

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16466
Ryan :: BUBBA [administrator]

1/12/2013 7:18:27 PM
mbam-log-2013-01-12 (19-18-27).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 513743
Time elapsed: 1 hour(s), 20 minute(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Users\Ryan\AppData\Local\Temp\ICReinstall_winzip setup.exe a variant of Win32/InstallCore.AZ application cleaned by deleting - quarantined
C:\Users\Ryan\AppData\Local\Temp\is754907076\23853079_Setup.EXE a variant of Win32/OpenInstall application cleaned by deleting - quarantined
C:\Users\Ryan\Downloads\cbsidlm-tr1_9-EZ_MPEG_To_WMV_Converter-SEO2-10656302.exe Win32/DownloadAdmin.F application cleaned by deleting - quarantined
C:\Users\Ryan\Downloads\ProductKeyFinder.exe a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\Ryan\Downloads\winzip setup.exe a variant of Win32/InstallCore.AZ application cleaned by deleting - quarantined
C:\Users\Ryan\Downloads\WinZip170(1).exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined
C:\Users\Ryan\Downloads\WinZip170.exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined

#14 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:11:05 AM

Posted 13 January 2013 - 09:53 AM

Hi

I ran Adware, it restarted the comp but didnt give me a log, when I searched for it, Windows said it didnt exist.

Do you mean AdwCleaner? I haven't given you instructions for "Adware"

:step1:

Please post the AdwCleaner delete log in your next reply.
It should be in: C:\AdwCleaner[S1].txt.


:step2:

Please rerun Farbar Service Scanner (FSS) on the computer with the issue.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#15 kaolite

kaolite
  • Topic Starter

  • Members
  • 62 posts
  • OFFLINE
  •  
  • Local time:06:05 AM

Posted 13 January 2013 - 11:36 AM

Yeah meant AdwareCleaner and I looked again and I cant find the log.

here's fss

Farbar Service Scanner Version: 10-12-2012
Ran by Brittany (administrator) on 13-01-2013 at 11:35:48
Running from "C:\Users\Brittany\Downloads"
Windows 8 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2013-01-10 18:41] - [2012-11-05 22:53] - 0560640 ____A (Microsoft Corporation) 36D6A3201721558A8AFBCC09C2DA4C2C

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll
[2013-01-10 13:26] - [2012-09-20 01:31] - 0210432 ____A (Microsoft Corporation) 066B9710B36AB550E01EEFCA52155968

C:\Windows\System32\mpssvc.dll
[2013-01-10 18:37] - [2012-10-11 00:44] - 0904192 ____A (Microsoft Corporation) 3031573A739DBEE8923851929D0AF423

C:\Windows\System32\bfe.dll
[2013-01-11 20:09] - [2012-11-26 23:17] - 0718848 ____A (Microsoft Corporation) 9E6A544F465C582AB42444A217CF04DC

C:\Windows\System32\drivers\mpsdrv.sys
[2013-01-10 18:37] - [2012-10-11 00:15] - 0074752 ____A (Microsoft Corporation) 0D1609DD82C7440F5D5BF21A9D4D5C0C

C:\Windows\System32\SDRSVC.dll
[2012-07-25 20:08] - [2012-07-25 22:07] - 0148480 ____A (Microsoft Corporation) 92968277ED491E4B3DDA361E3952361E

C:\Windows\System32\vssvc.exe
[2012-07-25 18:36] - [2012-07-25 22:08] - 1482752 ____A (Microsoft Corporation) EA658570314042C914964FC72AB50E6B

C:\Windows\System32\wscsvc.dll
[2012-07-25 18:31] - [2012-07-25 22:08] - 0099840 ____A (Microsoft Corporation) FB0C1B7F94FA08E72F19F6F2CE7210E1

C:\Windows\System32\wbem\WMIsvc.dll
[2012-07-25 18:55] - [2012-07-25 22:08] - 0219648 ____A (Microsoft Corporation) 3D6B518B71C75C8FA4115A33615C107A

C:\Windows\System32\wuaueng.dll
[2013-01-11 20:09] - [2012-11-26 23:19] - 3345920 ____A (Microsoft Corporation) A8484C0CB54DB48180FB7CA00F1C3F8F

C:\Windows\System32\qmgr.dll
[2012-07-25 19:18] - [2012-07-25 22:07] - 0826368 ____A (Microsoft Corporation) D598C44A7072D3108D8D8102EC5E07F7

C:\Windows\System32\es.dll
[2012-07-25 18:50] - [2012-07-25 22:05] - 0507904 ____A (Microsoft Corporation) F9E01C2D9F8BC049E04CF5DC24A5F638

C:\Windows\System32\cryptsvc.dll
[2012-07-25 19:05] - [2012-07-25 22:05] - 0067584 ____A (Microsoft Corporation) F0E78B119D12BA81F163D48C0FF30B9A

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll
[2012-07-25 18:45] - [2012-07-25 22:05] - 0438784 ____A (Microsoft Corporation) 090AE16F79C8EAD04E6031F863DA85F3

C:\Windows\System32\iphlpsvc.dll
[2012-07-25 18:35] - [2012-07-25 22:05] - 0894464 ____A (Microsoft Corporation) CAC5202757EF68C4849B0DFFA75F6D3C

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users