Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Issues: Slow & Cannot update Windows


  • Please log in to reply
11 replies to this topic

#1 Fysea

Fysea

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 03 February 2013 - 01:42 AM

Hello, I am having issues with updating my ASUS A53U laptop. It has been slowing down dramatically, and when I tried to update Windows 7, it would give this error:

" Windows Update error 80246008

You must be logged on as an administrator to perform these steps.

If you receive Windows Update error 80246008 while downloading updates, you might need to change the Background Intelligent Transfer Service (BITS) or Windows Event Log service settings, and then restart each service. "

I am unable to enable BITS, and when I try it gives this error:

Windows could not start the Background Intelligent Transfer Service service on Local Computer.

error 1068: the dependency service or group failed to start.

My CPU's usage has also increased dramatically as well. With only a few tabs open in Google Chrome and Skype on, its usage peaks around 60-70%. I fear something suspicious might be in my computer, but I would not like to jump to conclusions; a confirmation on this issue would be greatly appreciated. Thanks a bunch in advance.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:31 AM

Posted 03 February 2013 - 06:34 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Fysea

Fysea
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 03 February 2013 - 04:39 PM

Hi narenxp.

TDSSkiller came up clean:

10:18:55.0766 3252 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:18:56.0972 3252 ============================================================
10:18:56.0973 3252 Current date / time: 2013/02/03 10:18:56.0972
10:18:56.0973 3252 SystemInfo:
10:18:56.0973 3252
10:18:56.0973 3252 OS Version: 6.1.7600 ServicePack: 0.0
10:18:56.0973 3252 Product type: Workstation
10:18:56.0974 3252 ComputerName: HO-PC
10:18:56.0974 3252 UserName: Ho
10:18:56.0974 3252 Windows directory: C:\Windows
10:18:56.0974 3252 System windows directory: C:\Windows
10:18:56.0974 3252 Running under WOW64
10:18:56.0974 3252 Processor architecture: Intel x64
10:18:56.0975 3252 Number of processors: 2
10:18:56.0975 3252 Page size: 0x1000
10:18:56.0975 3252 Boot type: Normal boot
10:18:56.0975 3252 ============================================================
10:18:59.0125 3252 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:18:59.0136 3252 ============================================================
10:18:59.0136 3252 \Device\Harddisk0\DR0:
10:18:59.0137 3252 MBR partitions:
10:18:59.0137 3252 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1908E000
10:18:59.0160 3252 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C28F000, BlocksNum 0x1E0F7000
10:18:59.0160 3252 ============================================================
10:18:59.0208 3252 C: <-> \Device\Harddisk0\DR0\Partition1
10:18:59.0247 3252 D: <-> \Device\Harddisk0\DR0\Partition2
10:18:59.0247 3252 ============================================================
10:18:59.0248 3252 Initialize success
10:18:59.0248 3252 ============================================================
10:19:05.0311 5116 ============================================================
10:19:05.0311 5116 Scan started
10:19:05.0311 5116 Mode: Manual;
10:19:05.0311 5116 ============================================================
10:19:07.0419 5116 ================ Scan system memory ========================
10:19:07.0419 5116 System memory - ok
10:19:07.0421 5116 ================ Scan services =============================
10:19:07.0495 5116 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:19:07.0499 5116 !SASCORE - ok
10:19:07.0656 5116 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:19:07.0663 5116 1394ohci - ok
10:19:07.0690 5116 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
10:19:07.0698 5116 ACPI - ok
10:19:07.0729 5116 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
10:19:07.0733 5116 AcpiPmi - ok
10:19:07.0820 5116 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:19:07.0827 5116 AdobeFlashPlayerUpdateSvc - ok
10:19:07.0856 5116 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:19:07.0878 5116 adp94xx - ok
10:19:07.0893 5116 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:19:07.0902 5116 adpahci - ok
10:19:07.0915 5116 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:19:07.0921 5116 adpu320 - ok
10:19:08.0016 5116 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
10:19:08.0048 5116 AdvancedSystemCareService5 - ok
10:19:08.0077 5116 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:19:08.0080 5116 AeLookupSvc - ok
10:19:08.0118 5116 [ 6E79A119B0CE418FE44E0C824BF3F039 ] AFBAgent C:\Windows\system32\FBAgent.exe
10:19:08.0127 5116 AFBAgent - ok
10:19:08.0165 5116 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
10:19:08.0188 5116 AFD - ok
10:19:08.0220 5116 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
10:19:08.0224 5116 agp440 - ok
10:19:08.0257 5116 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:19:08.0261 5116 ALG - ok
10:19:08.0270 5116 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
10:19:08.0274 5116 aliide - ok
10:19:08.0306 5116 [ A887F17ABDC56A25270C51AF0C667812 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:19:08.0313 5116 AMD External Events Utility - ok
10:19:08.0329 5116 AMD FUEL Service - ok
10:19:08.0365 5116 [ DD27F6C3DE9BFE50635C721E09EDC5DD ] AMD Reservation Manager C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
10:19:08.0370 5116 AMD Reservation Manager - ok
10:19:08.0381 5116 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
10:19:08.0383 5116 amdide - ok
10:19:08.0401 5116 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
10:19:08.0402 5116 amdiox64 - ok
10:19:08.0414 5116 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:19:08.0418 5116 AmdK8 - ok
10:19:08.0656 5116 [ 2E1E8616636141E6BA33BD3E61BF6939 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:19:08.0861 5116 amdkmdag - ok
10:19:08.0900 5116 [ AF0A8045ED45C961B555DD66EA8F10CF ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:19:08.0904 5116 amdkmdap - ok
10:19:08.0927 5116 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:19:08.0929 5116 AmdPPM - ok
10:19:08.0959 5116 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:19:08.0964 5116 amdsata - ok
10:19:08.0992 5116 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:19:08.0999 5116 amdsbs - ok
10:19:09.0028 5116 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:19:09.0029 5116 amdxata - ok
10:19:09.0063 5116 [ CAEE7C1AFC9F1C9EE8DD11ACD18D22E7 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
10:19:09.0065 5116 amd_sata - ok
10:19:09.0101 5116 [ 23726116B4FBCC84FC45B95157C08F5F ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
10:19:09.0103 5116 amd_xata - ok
10:19:09.0112 5116 AODDriver4.0 - ok
10:19:09.0127 5116 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
10:19:09.0130 5116 AppID - ok
10:19:09.0170 5116 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:19:09.0174 5116 AppIDSvc - ok
10:19:09.0190 5116 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
10:19:09.0193 5116 Appinfo - ok
10:19:09.0227 5116 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:19:09.0232 5116 arc - ok
10:19:09.0243 5116 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:19:09.0248 5116 arcsas - ok
10:19:09.0313 5116 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
10:19:09.0316 5116 ASLDRService - ok
10:19:09.0336 5116 [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
10:19:09.0338 5116 ASMMAP64 - ok
10:19:09.0428 5116 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:19:09.0467 5116 aspnet_state - ok
10:19:09.0494 5116 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:19:09.0497 5116 AsyncMac - ok
10:19:09.0522 5116 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
10:19:09.0524 5116 atapi - ok
10:19:09.0600 5116 [ DE8B9C3E0E09D918B394207F34AC16DD ] athr C:\Windows\system32\DRIVERS\athrx.sys
10:19:09.0670 5116 athr - ok
10:19:09.0712 5116 [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
10:19:09.0715 5116 AtiHDAudioService - ok
10:19:09.0740 5116 [ 7910158929571214A959D5A6D16DD9C0 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
10:19:09.0743 5116 ATKGFNEXSrv - ok
10:19:09.0760 5116 [ 1F7238A37389ED92E9D8EEE975CABD54 ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
10:19:09.0762 5116 ATKWMIACPIIO - ok
10:19:09.0802 5116 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:19:09.0826 5116 AudioEndpointBuilder - ok
10:19:09.0868 5116 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:19:09.0877 5116 AudioSrv - ok
10:19:09.0897 5116 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:19:09.0902 5116 AxInstSV - ok
10:19:09.0942 5116 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:19:09.0952 5116 b06bdrv - ok
10:19:09.0980 5116 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:19:09.0987 5116 b57nd60a - ok
10:19:10.0012 5116 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:19:10.0017 5116 BDESVC - ok
10:19:10.0034 5116 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:19:10.0036 5116 Beep - ok
10:19:10.0070 5116 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
10:19:10.0093 5116 BFE - ok
10:19:10.0138 5116 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
10:19:10.0172 5116 BITS - ok
10:19:10.0208 5116 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:19:10.0211 5116 blbdrive - ok
10:19:10.0243 5116 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:19:10.0246 5116 bowser - ok
10:19:10.0272 5116 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:19:10.0276 5116 BrFiltLo - ok
10:19:10.0291 5116 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:19:10.0294 5116 BrFiltUp - ok
10:19:10.0328 5116 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
10:19:10.0332 5116 Browser - ok
10:19:10.0358 5116 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:19:10.0366 5116 Brserid - ok
10:19:10.0377 5116 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:19:10.0381 5116 BrSerWdm - ok
10:19:10.0396 5116 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:19:10.0399 5116 BrUsbMdm - ok
10:19:10.0410 5116 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:19:10.0414 5116 BrUsbSer - ok
10:19:10.0446 5116 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
10:19:10.0450 5116 BthEnum - ok
10:19:10.0462 5116 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:19:10.0466 5116 BTHMODEM - ok
10:19:10.0484 5116 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
10:19:10.0489 5116 BthPan - ok
10:19:10.0525 5116 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
10:19:10.0548 5116 BTHPORT - ok
10:19:10.0585 5116 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:19:10.0589 5116 bthserv - ok
10:19:10.0616 5116 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
10:19:10.0620 5116 BTHUSB - ok
10:19:10.0649 5116 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:19:10.0652 5116 cdfs - ok
10:19:10.0685 5116 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:19:10.0690 5116 cdrom - ok
10:19:10.0708 5116 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
10:19:10.0712 5116 CertPropSvc - ok
10:19:10.0738 5116 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:19:10.0742 5116 circlass - ok
10:19:10.0774 5116 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:19:10.0782 5116 CLFS - ok
10:19:10.0843 5116 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:19:10.0847 5116 clr_optimization_v2.0.50727_32 - ok
10:19:10.0894 5116 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:19:10.0900 5116 clr_optimization_v2.0.50727_64 - ok
10:19:10.0947 5116 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:19:11.0070 5116 clr_optimization_v4.0.30319_32 - ok
10:19:11.0092 5116 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:19:11.0143 5116 clr_optimization_v4.0.30319_64 - ok
10:19:11.0170 5116 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:19:11.0174 5116 CmBatt - ok
10:19:11.0192 5116 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
10:19:11.0195 5116 cmdide - ok
10:19:11.0242 5116 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
10:19:11.0252 5116 CNG - ok
10:19:11.0276 5116 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:19:11.0277 5116 Compbatt - ok
10:19:11.0295 5116 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:19:11.0298 5116 CompositeBus - ok
10:19:11.0316 5116 COMSysApp - ok
10:19:11.0339 5116 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:19:11.0343 5116 crcdisk - ok
10:19:11.0390 5116 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:19:11.0396 5116 CryptSvc - ok
10:19:11.0484 5116 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
10:19:11.0517 5116 cvhsvc - ok
10:19:11.0568 5116 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:19:11.0591 5116 DcomLaunch - ok
10:19:11.0627 5116 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:19:11.0635 5116 defragsvc - ok
10:19:11.0711 5116 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:19:11.0714 5116 DfsC - ok
10:19:11.0744 5116 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
10:19:11.0753 5116 Dhcp - ok
10:19:11.0785 5116 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:19:11.0789 5116 discache - ok
10:19:11.0823 5116 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:19:11.0848 5116 Disk - ok
10:19:11.0931 5116 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:19:11.0960 5116 Dnscache - ok
10:19:11.0992 5116 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
10:19:12.0015 5116 dot3svc - ok
10:19:12.0069 5116 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:19:12.0075 5116 Dot4 - ok
10:19:12.0103 5116 [ 85135AD27E79B689335C08167D917CDE ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:19:12.0107 5116 Dot4Print - ok
10:19:12.0132 5116 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:19:12.0140 5116 dot4usb - ok
10:19:12.0162 5116 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
10:19:12.0167 5116 DPS - ok
10:19:12.0194 5116 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:19:12.0197 5116 drmkaud - ok
10:19:12.0254 5116 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:19:12.0264 5116 DXGKrnl - ok
10:19:12.0283 5116 EagleX64 - ok
10:19:12.0323 5116 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:19:12.0327 5116 EapHost - ok
10:19:12.0423 5116 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:19:12.0507 5116 ebdrv - ok
10:19:12.0545 5116 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
10:19:12.0550 5116 EFS - ok
10:19:12.0614 5116 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:19:12.0639 5116 ehRecvr - ok
10:19:12.0665 5116 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:19:12.0669 5116 ehSched - ok
10:19:12.0723 5116 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:19:12.0746 5116 elxstor - ok
10:19:12.0769 5116 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
10:19:12.0774 5116 ErrDev - ok
10:19:12.0826 5116 [ 4C120D2B2EA269EAE7A5744794EB6DB1 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
10:19:12.0829 5116 ETD - ok
10:19:12.0892 5116 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:19:12.0902 5116 EventSystem - ok
10:19:12.0930 5116 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:19:12.0935 5116 exfat - ok
10:19:12.0976 5116 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:19:12.0984 5116 fastfat - ok
10:19:13.0022 5116 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
10:19:13.0045 5116 Fax - ok
10:19:13.0067 5116 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:19:13.0071 5116 fdc - ok
10:19:13.0099 5116 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:19:13.0103 5116 fdPHost - ok
10:19:13.0123 5116 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:19:13.0127 5116 FDResPub - ok
10:19:13.0142 5116 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:19:13.0145 5116 FileInfo - ok
10:19:13.0170 5116 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:19:13.0174 5116 Filetrace - ok
10:19:13.0201 5116 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:19:13.0205 5116 flpydisk - ok
10:19:13.0224 5116 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:19:13.0231 5116 FltMgr - ok
10:19:13.0298 5116 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
10:19:13.0332 5116 FontCache - ok
10:19:13.0379 5116 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:19:13.0382 5116 FontCache3.0.0.0 - ok
10:19:13.0422 5116 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:19:13.0426 5116 FsDepends - ok
10:19:13.0456 5116 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:19:13.0460 5116 fssfltr - ok
10:19:13.0558 5116 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:19:13.0604 5116 fsssvc - ok
10:19:13.0642 5116 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:19:13.0644 5116 Fs_Rec - ok
10:19:13.0689 5116 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:19:13.0695 5116 fvevol - ok
10:19:13.0729 5116 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:19:13.0733 5116 gagp30kx - ok
10:19:13.0786 5116 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
10:19:13.0813 5116 gpsvc - ok
10:19:13.0870 5116 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:19:13.0874 5116 gupdate - ok
10:19:13.0888 5116 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:19:13.0890 5116 gupdatem - ok
10:19:13.0924 5116 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:19:13.0927 5116 hcw85cir - ok
10:19:13.0960 5116 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:19:13.0970 5116 HdAudAddService - ok
10:19:13.0999 5116 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:19:14.0003 5116 HDAudBus - ok
10:19:14.0017 5116 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:19:14.0022 5116 HidBatt - ok
10:19:14.0041 5116 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:19:14.0044 5116 HidBth - ok
10:19:14.0071 5116 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:19:14.0075 5116 HidIr - ok
10:19:14.0107 5116 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:19:14.0111 5116 hidserv - ok
10:19:14.0134 5116 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:19:14.0137 5116 HidUsb - ok
10:19:14.0210 5116 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:19:14.0216 5116 hkmsvc - ok
10:19:14.0294 5116 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:19:14.0302 5116 HomeGroupListener - ok
10:19:14.0341 5116 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:19:14.0348 5116 HomeGroupProvider - ok
10:19:14.0406 5116 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
10:19:14.0411 5116 hpqcxs08 - ok
10:19:14.0437 5116 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
10:19:14.0686 5116 hpqddsvc - ok
10:19:14.0716 5116 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
10:19:14.0721 5116 HpSAMD - ok
10:19:14.0776 5116 [ D4F91CF4DE215D6F14A06087D46725E4 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
10:19:14.0809 5116 HPSLPSVC - ok
10:19:14.0849 5116 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:19:14.0872 5116 HTTP - ok
10:19:14.0893 5116 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:19:14.0894 5116 hwpolicy - ok
10:19:14.0916 5116 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:19:14.0920 5116 i8042prt - ok
10:19:14.0967 5116 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:19:14.0977 5116 iaStorV - ok
10:19:15.0061 5116 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:19:15.0095 5116 idsvc - ok
10:19:15.0135 5116 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:19:15.0140 5116 iirsp - ok
10:19:15.0205 5116 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
10:19:15.0239 5116 IKEEXT - ok
10:19:15.0365 5116 [ B60ACCD29F8FAFC4A6344CD2BD5CA3A5 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:19:15.0392 5116 IntcAzAudAddService - ok
10:19:15.0412 5116 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
10:19:15.0415 5116 intelide - ok
10:19:15.0445 5116 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:19:15.0449 5116 intelppm - ok
10:19:15.0486 5116 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:19:15.0491 5116 IPBusEnum - ok
10:19:15.0514 5116 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:19:15.0518 5116 IpFilterDriver - ok
10:19:15.0563 5116 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:19:15.0586 5116 iphlpsvc - ok
10:19:15.0605 5116 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:19:15.0608 5116 IPMIDRV - ok
10:19:15.0638 5116 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:19:15.0643 5116 IPNAT - ok
10:19:15.0686 5116 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:19:15.0689 5116 IRENUM - ok
10:19:15.0706 5116 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
10:19:15.0709 5116 isapnp - ok
10:19:15.0737 5116 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:19:15.0744 5116 iScsiPrt - ok
10:19:15.0774 5116 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:19:15.0776 5116 kbdclass - ok
10:19:15.0799 5116 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:19:15.0803 5116 kbdhid - ok
10:19:15.0841 5116 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
10:19:15.0842 5116 kbfiltr - ok
10:19:15.0869 5116 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
10:19:15.0872 5116 KeyIso - ok
10:19:15.0909 5116 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:19:15.0912 5116 KSecDD - ok
10:19:15.0938 5116 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:19:15.0942 5116 KSecPkg - ok
10:19:15.0984 5116 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:19:15.0987 5116 ksthunk - ok
10:19:16.0022 5116 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:19:16.0033 5116 KtmRm - ok
10:19:16.0058 5116 [ 033B4AED2C5519072C0D81E00804D003 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
10:19:16.0061 5116 L1C - ok
10:19:16.0096 5116 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:19:16.0104 5116 LanmanServer - ok
10:19:16.0144 5116 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:19:16.0152 5116 LanmanWorkstation - ok
10:19:16.0189 5116 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:19:16.0192 5116 lltdio - ok
10:19:16.0229 5116 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:19:16.0239 5116 lltdsvc - ok
10:19:16.0272 5116 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:19:16.0276 5116 lmhosts - ok
10:19:16.0322 5116 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:19:16.0326 5116 LSI_FC - ok
10:19:16.0351 5116 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:19:16.0357 5116 LSI_SAS - ok
10:19:16.0374 5116 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:19:16.0379 5116 LSI_SAS2 - ok
10:19:16.0405 5116 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:19:16.0409 5116 LSI_SCSI - ok
10:19:16.0438 5116 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:19:16.0442 5116 luafv - ok
10:19:16.0523 5116 [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
10:19:16.0529 5116 McComponentHostService - ok
10:19:16.0573 5116 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:19:16.0579 5116 Mcx2Svc - ok
10:19:16.0618 5116 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:19:16.0622 5116 megasas - ok
10:19:16.0648 5116 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:19:16.0656 5116 MegaSR - ok
10:19:16.0692 5116 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:19:16.0698 5116 MMCSS - ok
10:19:16.0717 5116 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:19:16.0722 5116 Modem - ok
10:19:16.0745 5116 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:19:16.0746 5116 monitor - ok
10:19:16.0770 5116 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:19:16.0772 5116 mouclass - ok
10:19:16.0792 5116 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:19:16.0795 5116 mouhid - ok
10:19:16.0823 5116 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:19:16.0826 5116 mountmgr - ok
10:19:16.0879 5116 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
10:19:16.0885 5116 MpFilter - ok
10:19:16.0922 5116 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
10:19:16.0928 5116 mpio - ok
10:19:16.0964 5116 [ 8FBF6B31FE8AF1833D93C5913D5B4D55 ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys
10:19:16.0967 5116 MpNWMon - ok
10:19:16.0994 5116 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:19:16.0997 5116 mpsdrv - ok
10:19:17.0046 5116 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:19:17.0075 5116 MpsSvc - ok
10:19:17.0095 5116 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:19:17.0099 5116 MRxDAV - ok
10:19:17.0132 5116 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:19:17.0138 5116 mrxsmb - ok
10:19:17.0168 5116 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:19:17.0176 5116 mrxsmb10 - ok
10:19:17.0199 5116 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:19:17.0208 5116 mrxsmb20 - ok
10:19:17.0248 5116 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
10:19:17.0249 5116 msahci - ok
10:19:17.0279 5116 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
10:19:17.0286 5116 msdsm - ok
10:19:17.0330 5116 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:19:17.0338 5116 MSDTC - ok
10:19:17.0394 5116 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:19:17.0396 5116 Msfs - ok
10:19:17.0422 5116 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:19:17.0424 5116 mshidkmdf - ok
10:19:17.0454 5116 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
10:19:17.0456 5116 msisadrv - ok
10:19:17.0501 5116 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:19:17.0509 5116 MSiSCSI - ok
10:19:17.0526 5116 msiserver - ok
10:19:17.0561 5116 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:19:17.0564 5116 MSKSSRV - ok
10:19:17.0621 5116 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:19:17.0623 5116 MsMpSvc - ok
10:19:17.0660 5116 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:19:17.0663 5116 MSPCLOCK - ok
10:19:17.0682 5116 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:19:17.0685 5116 MSPQM - ok
10:19:17.0722 5116 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:19:17.0730 5116 MsRPC - ok
10:19:17.0773 5116 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:19:17.0774 5116 mssmbios - ok
10:19:17.0803 5116 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:19:17.0806 5116 MSTEE - ok
10:19:17.0825 5116 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:19:17.0827 5116 MTConfig - ok
10:19:17.0865 5116 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:19:17.0867 5116 Mup - ok
10:19:17.0916 5116 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
10:19:17.0939 5116 napagent - ok
10:19:17.0973 5116 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:19:17.0980 5116 NativeWifiP - ok
10:19:18.0026 5116 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
10:19:18.0060 5116 NDIS - ok
10:19:18.0093 5116 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:19:18.0097 5116 NdisCap - ok
10:19:18.0125 5116 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:19:18.0128 5116 NdisTapi - ok
10:19:18.0150 5116 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:19:18.0155 5116 Ndisuio - ok
10:19:18.0176 5116 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:19:18.0180 5116 NdisWan - ok
10:19:18.0207 5116 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:19:18.0210 5116 NDProxy - ok
10:19:18.0253 5116 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:19:18.0257 5116 Net Driver HPZ12 - ok
10:19:18.0280 5116 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:19:18.0283 5116 NetBIOS - ok
10:19:18.0309 5116 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:19:18.0315 5116 NetBT - ok
10:19:18.0356 5116 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
10:19:18.0359 5116 Netlogon - ok
10:19:18.0413 5116 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:19:18.0424 5116 Netman - ok
10:19:18.0460 5116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:19:18.0501 5116 NetMsmqActivator - ok
10:19:18.0533 5116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:19:18.0538 5116 NetPipeActivator - ok
10:19:18.0583 5116 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:19:18.0601 5116 netprofm - ok
10:19:18.0619 5116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:19:18.0623 5116 NetTcpActivator - ok
10:19:18.0642 5116 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:19:18.0644 5116 NetTcpPortSharing - ok
10:19:18.0701 5116 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:19:18.0705 5116 nfrd960 - ok
10:19:18.0744 5116 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:19:18.0748 5116 NisDrv - ok
10:19:18.0777 5116 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
10:19:18.0785 5116 NisSrv - ok
10:19:18.0833 5116 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:19:18.0843 5116 NlaSvc - ok
10:19:18.0878 5116 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:19:18.0881 5116 Npfs - ok
10:19:18.0921 5116 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:19:18.0926 5116 nsi - ok
10:19:18.0955 5116 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:19:18.0958 5116 nsiproxy - ok
10:19:19.0057 5116 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:19:19.0105 5116 Ntfs - ok
10:19:19.0145 5116 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:19:19.0148 5116 Null - ok
10:19:19.0189 5116 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:19:19.0195 5116 nvraid - ok
10:19:19.0230 5116 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:19:19.0238 5116 nvstor - ok
10:19:19.0271 5116 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
10:19:19.0276 5116 nv_agp - ok
10:19:19.0321 5116 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:19:19.0325 5116 ohci1394 - ok
10:19:19.0394 5116 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:19:19.0398 5116 ose - ok
10:19:19.0542 5116 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:19:19.0663 5116 osppsvc - ok
10:19:19.0715 5116 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:19:19.0724 5116 p2pimsvc - ok
10:19:19.0763 5116 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:19:19.0774 5116 p2psvc - ok
10:19:19.0833 5116 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:19:19.0838 5116 Parport - ok
10:19:19.0886 5116 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:19:19.0889 5116 partmgr - ok
10:19:19.0921 5116 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:19:19.0928 5116 PcaSvc - ok
10:19:19.0957 5116 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
10:19:19.0962 5116 pci - ok
10:19:19.0997 5116 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:19:19.0998 5116 pciide - ok
10:19:20.0056 5116 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:19:20.0063 5116 pcmcia - ok
10:19:20.0098 5116 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:19:20.0099 5116 pcw - ok
10:19:20.0146 5116 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:19:20.0170 5116 PEAUTH - ok
10:19:20.0275 5116 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:19:20.0279 5116 PerfHost - ok
10:19:20.0456 5116 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
10:19:20.0503 5116 pla - ok
10:19:20.0563 5116 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:19:20.0586 5116 PlugPlay - ok
10:19:20.0630 5116 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:19:20.0635 5116 Pml Driver HPZ12 - ok
10:19:20.0674 5116 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:19:20.0679 5116 PNRPAutoReg - ok
10:19:20.0727 5116 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:19:20.0734 5116 PNRPsvc - ok
10:19:20.0786 5116 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:19:20.0799 5116 PolicyAgent - ok
10:19:20.0893 5116 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:19:20.0902 5116 Power - ok
10:19:20.0963 5116 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:19:20.0967 5116 PptpMiniport - ok
10:19:20.0996 5116 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:19:21.0002 5116 Processor - ok
10:19:21.0052 5116 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
10:19:21.0060 5116 ProfSvc - ok
10:19:21.0086 5116 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:19:21.0089 5116 ProtectedStorage - ok
10:19:21.0121 5116 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:19:21.0126 5116 Psched - ok
10:19:21.0160 5116 [ FB46E9A827A8799EBD7BFA9128C91F37 ] PSI C:\Windows\system32\DRIVERS\psi_mf.sys
10:19:21.0162 5116 PSI - ok
10:19:21.0232 5116 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:19:21.0290 5116 ql2300 - ok
10:19:21.0324 5116 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:19:21.0329 5116 ql40xx - ok
10:19:21.0385 5116 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:19:21.0394 5116 QWAVE - ok
10:19:21.0437 5116 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:19:21.0440 5116 QWAVEdrv - ok
10:19:21.0463 5116 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:19:21.0467 5116 RasAcd - ok
10:19:21.0505 5116 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:19:21.0509 5116 RasAgileVpn - ok
10:19:21.0549 5116 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:19:21.0556 5116 RasAuto - ok
10:19:21.0592 5116 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:19:21.0596 5116 Rasl2tp - ok
10:19:21.0648 5116 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
10:19:21.0659 5116 RasMan - ok
10:19:21.0697 5116 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:19:21.0701 5116 RasPppoe - ok
10:19:21.0733 5116 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:19:21.0737 5116 RasSstp - ok
10:19:21.0797 5116 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:19:21.0805 5116 rdbss - ok
10:19:21.0837 5116 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:19:21.0840 5116 rdpbus - ok
10:19:21.0876 5116 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:19:21.0879 5116 RDPCDD - ok
10:19:21.0929 5116 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:19:21.0932 5116 RDPENCDD - ok
10:19:21.0984 5116 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:19:21.0987 5116 RDPREFMP - ok
10:19:22.0037 5116 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:19:22.0044 5116 RDPWD - ok
10:19:22.0070 5116 [ E5DC9BA9E439D6DBDD79F8CAACB5BF01 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:19:22.0075 5116 rdyboost - ok
10:19:22.0128 5116 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:19:22.0134 5116 RemoteAccess - ok
10:19:22.0177 5116 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:19:22.0185 5116 RemoteRegistry - ok
10:19:22.0222 5116 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
10:19:22.0228 5116 RFCOMM - ok
10:19:22.0261 5116 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:19:22.0268 5116 RpcEptMapper - ok
10:19:22.0309 5116 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:19:22.0313 5116 RpcLocator - ok
10:19:22.0353 5116 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
10:19:22.0362 5116 RpcSs - ok
10:19:22.0408 5116 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:19:22.0412 5116 rspndr - ok
10:19:22.0460 5116 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
10:19:22.0463 5116 RSUSBSTOR - ok
10:19:22.0504 5116 [ 3372196F61AF48503656EF6AA3E92D1B ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:19:22.0510 5116 RTL8167 - ok
10:19:22.0549 5116 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
10:19:22.0553 5116 SamSs - ok
10:19:22.0627 5116 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:19:22.0629 5116 SASDIFSV - ok
10:19:22.0660 5116 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:19:22.0661 5116 SASKUTIL - ok
10:19:22.0692 5116 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
10:19:22.0696 5116 sbp2port - ok
10:19:22.0740 5116 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:19:22.0748 5116 SCardSvr - ok
10:19:22.0791 5116 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:19:22.0795 5116 scfilter - ok
10:19:22.0871 5116 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
10:19:22.0905 5116 Schedule - ok
10:19:22.0946 5116 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:19:22.0948 5116 SCPolicySvc - ok
10:19:22.0986 5116 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:19:22.0994 5116 SDRSVC - ok
10:19:23.0023 5116 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:19:23.0028 5116 secdrv - ok
10:19:23.0058 5116 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
10:19:23.0064 5116 seclogon - ok
10:19:23.0150 5116 [ 5B66DB4877BBAC9F7493AA8D84421E49 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
10:19:23.0177 5116 Secunia PSI Agent - ok
10:19:23.0211 5116 [ 0E88FDF474F2CDD370A4A6CE77D018F0 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
10:19:23.0219 5116 Secunia Update Agent - ok
10:19:23.0268 5116 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:19:23.0275 5116 SENS - ok
10:19:23.0315 5116 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:19:23.0331 5116 SensrSvc - ok
10:19:23.0368 5116 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:19:23.0371 5116 Serenum - ok
10:19:23.0415 5116 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:19:23.0420 5116 Serial - ok
10:19:23.0452 5116 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:19:23.0455 5116 sermouse - ok
10:19:23.0551 5116 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
10:19:23.0558 5116 SessionEnv - ok
10:19:23.0596 5116 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
10:19:23.0601 5116 sffdisk - ok
10:19:23.0634 5116 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:19:23.0637 5116 sffp_mmc - ok
10:19:23.0672 5116 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
10:19:23.0676 5116 sffp_sd - ok
10:19:23.0715 5116 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:19:23.0719 5116 sfloppy - ok
10:19:23.0776 5116 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
10:19:23.0786 5116 Sftfs - ok
10:19:23.0869 5116 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:19:23.0892 5116 sftlist - ok
10:19:23.0938 5116 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
10:19:23.0942 5116 Sftplay - ok
10:19:23.0991 5116 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
10:19:23.0993 5116 Sftredir - ok
10:19:24.0023 5116 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
10:19:24.0024 5116 Sftvol - ok
10:19:24.0067 5116 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:19:24.0073 5116 sftvsa - ok
10:19:24.0143 5116 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:19:24.0154 5116 SharedAccess - ok
10:19:24.0223 5116 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:19:24.0234 5116 ShellHWDetection - ok
10:19:24.0289 5116 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
10:19:24.0295 5116 SiSGbeLH - ok
10:19:24.0320 5116 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:19:24.0323 5116 SiSRaid2 - ok
10:19:24.0349 5116 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:19:24.0354 5116 SiSRaid4 - ok
10:19:24.0512 5116 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:19:24.0591 5116 Skype C2C Service - ok
10:19:24.0653 5116 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:19:24.0657 5116 SkypeUpdate - ok
10:19:24.0733 5116 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
10:19:24.0735 5116 SmartDefragDriver - ok
10:19:24.0767 5116 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:19:24.0771 5116 Smb - ok
10:19:24.0858 5116 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:19:24.0863 5116 SNMPTRAP - ok
10:19:24.0909 5116 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:19:24.0910 5116 spldr - ok
10:19:24.0966 5116 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
10:19:24.0994 5116 Spooler - ok
10:19:25.0132 5116 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
10:19:25.0225 5116 sppsvc - ok
10:19:25.0281 5116 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:19:25.0288 5116 sppuinotify - ok
10:19:25.0340 5116 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:19:25.0350 5116 srv - ok
10:19:25.0427 5116 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:19:25.0436 5116 srv2 - ok
10:19:25.0469 5116 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:19:25.0474 5116 srvnet - ok
10:19:25.0535 5116 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:19:25.0543 5116 SSDPSRV - ok
10:19:25.0575 5116 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:19:25.0583 5116 SstpSvc - ok
10:19:25.0622 5116 Steam Client Service - ok
10:19:25.0671 5116 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:19:25.0675 5116 stexstor - ok
10:19:25.0734 5116 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
10:19:25.0757 5116 stisvc - ok
10:19:25.0792 5116 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:19:25.0793 5116 swenum - ok
10:19:25.0851 5116 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:19:25.0875 5116 swprv - ok
10:19:25.0954 5116 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
10:19:26.0001 5116 SysMain - ok
10:19:26.0029 5116 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:19:26.0036 5116 TabletInputService - ok
10:19:26.0267 5116 [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe
10:19:26.0427 5116 TabletServicePen - ok
10:19:26.0473 5116 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
10:19:26.0484 5116 TapiSrv - ok
10:19:26.0534 5116 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:19:26.0539 5116 TBS - ok
10:19:26.0623 5116 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:19:26.0676 5116 Tcpip - ok
10:19:26.0758 5116 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:19:26.0776 5116 TCPIP6 - ok
10:19:26.0846 5116 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:19:26.0850 5116 tcpipreg - ok
10:19:26.0911 5116 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:19:26.0915 5116 TDPIPE - ok
10:19:26.0954 5116 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:19:26.0958 5116 TDTCP - ok
10:19:26.0996 5116 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:19:27.0000 5116 tdx - ok
10:19:27.0033 5116 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:19:27.0035 5116 TermDD - ok
10:19:27.0092 5116 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
10:19:27.0126 5116 TermService - ok
10:19:27.0157 5116 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:19:27.0163 5116 Themes - ok
10:19:27.0213 5116 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:19:27.0217 5116 THREADORDER - ok
10:19:27.0294 5116 [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe
10:19:27.0314 5116 TouchServicePen - ok
10:19:27.0362 5116 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:19:27.0369 5116 TrkWks - ok
10:19:27.0425 5116 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:19:27.0430 5116 TrustedInstaller - ok
10:19:27.0488 5116 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:19:27.0492 5116 tssecsrv - ok
10:19:27.0542 5116 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:19:27.0546 5116 tunnel - ok
10:19:27.0584 5116 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:19:27.0589 5116 uagp35 - ok
10:19:27.0637 5116 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:19:27.0645 5116 udfs - ok
10:19:27.0737 5116 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:19:27.0742 5116 UI0Detect - ok
10:19:27.0771 5116 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
10:19:27.0774 5116 uliagpkx - ok
10:19:27.0812 5116 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:19:27.0815 5116 umbus - ok
10:19:27.0845 5116 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:19:27.0850 5116 UmPass - ok
10:19:27.0907 5116 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:19:27.0918 5116 upnphost - ok
10:19:27.0962 5116 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:19:27.0967 5116 usbaudio - ok
10:19:28.0022 5116 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:19:28.0025 5116 usbccgp - ok
10:19:28.0072 5116 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
10:19:28.0077 5116 usbcir - ok
10:19:28.0120 5116 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:19:28.0124 5116 usbehci - ok
10:19:28.0171 5116 [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
10:19:28.0173 5116 usbfilter - ok
10:19:28.0219 5116 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:19:28.0227 5116 usbhub - ok
10:19:28.0266 5116 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:19:28.0269 5116 usbohci - ok
10:19:28.0321 5116 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:19:28.0325 5116 usbprint - ok
10:19:28.0377 5116 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:19:28.0383 5116 usbscan - ok
10:19:28.0431 5116 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:19:28.0436 5116 USBSTOR - ok
10:19:28.0469 5116 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:19:28.0473 5116 usbuhci - ok
10:19:28.0521 5116 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:19:28.0526 5116 usbvideo - ok
10:19:28.0582 5116 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:19:28.0588 5116 UxSms - ok
10:19:28.0623 5116 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
10:19:28.0626 5116 VaultSvc - ok
10:19:28.0666 5116 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
10:19:28.0668 5116 vdrvroot - ok
10:19:28.0713 5116 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
10:19:28.0737 5116 vds - ok
10:19:28.0773 5116 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:19:28.0777 5116 vga - ok
10:19:28.0812 5116 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:19:28.0815 5116 VgaSave - ok
10:19:28.0857 5116 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
10:19:28.0863 5116 vhdmp - ok
10:19:28.0900 5116 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
10:19:28.0903 5116 viaide - ok
10:19:28.0943 5116 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
10:19:28.0946 5116 volmgr - ok
10:19:28.0993 5116 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:19:29.0001 5116 volmgrx - ok
10:19:29.0051 5116 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:19:29.0058 5116 volsnap - ok
10:19:29.0093 5116 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:19:29.0099 5116 vsmraid - ok
10:19:29.0183 5116 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
10:19:29.0229 5116 VSS - ok
10:19:29.0294 5116 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:19:29.0297 5116 vwifibus - ok
10:19:29.0353 5116 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:19:29.0357 5116 vwififlt - ok
10:19:29.0409 5116 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
10:19:29.0412 5116 vwifimp - ok
10:19:29.0479 5116 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:19:29.0502 5116 W32Time - ok
10:19:29.0565 5116 [ FE75777289278A4941FE6139E82B3BD9 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
10:19:29.0569 5116 wacmoumonitor - ok
10:19:29.0615 5116 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
10:19:29.0616 5116 wacommousefilter - ok
10:19:29.0654 5116 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:19:29.0657 5116 WacomPen - ok
10:19:29.0710 5116 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
10:19:29.0711 5116 wacomvhid - ok
10:19:29.0749 5116 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:19:29.0753 5116 WANARP - ok
10:19:29.0780 5116 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:19:29.0783 5116 Wanarpv6 - ok
10:19:29.0874 5116 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:19:29.0913 5116 WatAdminSvc - ok
10:19:30.0000 5116 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
10:19:30.0046 5116 wbengine - ok
10:19:30.0096 5116 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:19:30.0105 5116 WbioSrvc - ok
10:19:30.0162 5116 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:19:30.0174 5116 wcncsvc - ok
10:19:30.0212 5116 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:19:30.0219 5116 WcsPlugInService - ok
10:19:30.0274 5116 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:19:30.0277 5116 Wd - ok
10:19:30.0354 5116 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:19:30.0383 5116 Wdf01000 - ok
10:19:30.0422 5116 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:19:30.0428 5116 WdiServiceHost - ok
10:19:30.0457 5116 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:19:30.0462 5116 WdiSystemHost - ok
10:19:30.0513 5116 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
10:19:30.0523 5116 WebClient - ok
10:19:30.0575 5116 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:19:30.0585 5116 Wecsvc - ok
10:19:30.0631 5116 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:19:30.0638 5116 wercplsupport - ok
10:19:30.0681 5116 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:19:30.0688 5116 WerSvc - ok
10:19:30.0730 5116 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:19:30.0733 5116 WfpLwf - ok
10:19:30.0785 5116 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
10:19:30.0790 5116 WimFltr - ok
10:19:30.0838 5116 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:19:30.0842 5116 WIMMount - ok
10:19:30.0906 5116 WinDefend - ok
10:19:30.0982 5116 WinHttpAutoProxySvc - ok
10:19:31.0064 5116 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:19:31.0070 5116 Winmgmt - ok
10:19:31.0169 5116 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
10:19:31.0225 5116 WinRM - ok
10:19:31.0389 5116 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:19:31.0443 5116 Wlansvc - ok
10:19:31.0500 5116 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:19:31.0502 5116 wlcrasvc - ok
10:19:31.0641 5116 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:19:31.0707 5116 wlidsvc - ok
10:19:31.0755 5116 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:19:31.0756 5116 WmiAcpi - ok
10:19:31.0838 5116 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:19:31.0843 5116 wmiApSrv - ok
10:19:31.0893 5116 WMPNetworkSvc - ok
10:19:31.0946 5116 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:19:31.0952 5116 WPCSvc - ok
10:19:31.0992 5116 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:19:32.0000 5116 WPDBusEnum - ok
10:19:32.0046 5116 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:19:32.0049 5116 ws2ifsl - ok
10:19:32.0107 5116 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
10:19:32.0114 5116 wscsvc - ok
10:19:32.0157 5116 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
10:19:32.0161 5116 WSDPrintDevice - ok
10:19:32.0192 5116 WSearch - ok
10:19:32.0330 5116 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:19:32.0397 5116 wuauserv - ok
10:19:32.0447 5116 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:19:32.0451 5116 WudfPf - ok
10:19:32.0499 5116 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:19:32.0506 5116 WUDFRd - ok
10:19:32.0554 5116 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:19:32.0562 5116 wudfsvc - ok
10:19:32.0610 5116 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:19:32.0620 5116 WwanSvc - ok
10:19:32.0650 5116 X6va006 - ok
10:19:32.0683 5116 X6va008 - ok
10:19:32.0792 5116 ================ Scan global ===============================
10:19:32.0828 5116 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:19:32.0872 5116 [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\system32\winsrv.dll
10:19:32.0890 5116 [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\system32\winsrv.dll
10:19:32.0927 5116 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:19:32.0951 5116 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:19:32.0961 5116 [Global] - ok
10:19:32.0963 5116 ================ Scan MBR ==================================
10:19:32.0977 5116 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:19:33.0262 5116 \Device\Harddisk0\DR0 - ok
10:19:33.0264 5116 ================ Scan VBR ==================================
10:19:33.0271 5116 [ 18C7B076AD34994B986F68808A0BD1C6 ] \Device\Harddisk0\DR0\Partition1
10:19:33.0275 5116 \Device\Harddisk0\DR0\Partition1 - ok
10:19:33.0312 5116 [ 272617ADBB45D47F51E166D06393EFF0 ] \Device\Harddisk0\DR0\Partition2
10:19:33.0316 5116 \Device\Harddisk0\DR0\Partition2 - ok
10:19:33.0317 5116 ============================================================
10:19:33.0317 5116 Scan finished
10:19:33.0317 5116 ============================================================
10:19:33.0345 2320 Detected object count: 0
10:19:33.0345 2320 Actual detected object count: 0
13:34:24.0295 4648 ============================================================
13:34:24.0295 4648 Scan started
13:34:24.0295 4648 Mode: Manual; TDLFS;
13:34:24.0295 4648 ============================================================
13:34:25.0836 4648 ================ Scan system memory ========================
13:34:25.0836 4648 System memory - ok
13:34:25.0843 4648 ================ Scan services =============================
13:34:25.0912 4648 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
13:34:25.0918 4648 !SASCORE - ok
13:34:26.0106 4648 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
13:34:26.0113 4648 1394ohci - ok
13:34:26.0151 4648 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
13:34:26.0171 4648 ACPI - ok
13:34:26.0201 4648 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
13:34:26.0207 4648 AcpiPmi - ok
13:34:26.0291 4648 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:34:26.0298 4648 AdobeFlashPlayerUpdateSvc - ok
13:34:26.0339 4648 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:34:26.0361 4648 adp94xx - ok
13:34:26.0387 4648 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:34:26.0401 4648 adpahci - ok
13:34:26.0422 4648 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:34:26.0427 4648 adpu320 - ok
13:34:26.0530 4648 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
13:34:26.0566 4648 AdvancedSystemCareService5 - ok
13:34:26.0604 4648 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:34:26.0607 4648 AeLookupSvc - ok
13:34:26.0678 4648 [ 6E79A119B0CE418FE44E0C824BF3F039 ] AFBAgent C:\Windows\system32\FBAgent.exe
13:34:26.0716 4648 AFBAgent - ok
13:34:26.0758 4648 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
13:34:26.0780 4648 AFD - ok
13:34:26.0814 4648 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
13:34:26.0818 4648 agp440 - ok
13:34:26.0861 4648 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:34:26.0865 4648 ALG - ok
13:34:26.0877 4648 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
13:34:26.0881 4648 aliide - ok
13:34:26.0922 4648 [ A887F17ABDC56A25270C51AF0C667812 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:34:26.0930 4648 AMD External Events Utility - ok
13:34:26.0955 4648 AMD FUEL Service - ok
13:34:26.0991 4648 [ DD27F6C3DE9BFE50635C721E09EDC5DD ] AMD Reservation Manager C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
13:34:26.0997 4648 AMD Reservation Manager - ok
13:34:27.0016 4648 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
13:34:27.0018 4648 amdide - ok
13:34:27.0048 4648 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
13:34:27.0054 4648 amdiox64 - ok
13:34:27.0081 4648 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:34:27.0084 4648 AmdK8 - ok
13:34:27.0346 4648 [ 2E1E8616636141E6BA33BD3E61BF6939 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:34:27.0580 4648 amdkmdag - ok
13:34:27.0639 4648 [ AF0A8045ED45C961B555DD66EA8F10CF ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
13:34:27.0664 4648 amdkmdap - ok
13:34:27.0688 4648 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:34:27.0691 4648 AmdPPM - ok
13:34:27.0729 4648 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:34:27.0732 4648 amdsata - ok
13:34:27.0761 4648 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:34:27.0768 4648 amdsbs - ok
13:34:27.0819 4648 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:34:27.0822 4648 amdxata - ok
13:34:27.0854 4648 [ CAEE7C1AFC9F1C9EE8DD11ACD18D22E7 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
13:34:27.0858 4648 amd_sata - ok
13:34:27.0881 4648 [ 23726116B4FBCC84FC45B95157C08F5F ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
13:34:27.0885 4648 amd_xata - ok
13:34:27.0895 4648 AODDriver4.0 - ok
13:34:27.0916 4648 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
13:34:27.0922 4648 AppID - ok
13:34:27.0953 4648 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:34:27.0956 4648 AppIDSvc - ok
13:34:27.0984 4648 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
13:34:27.0989 4648 Appinfo - ok
13:34:28.0030 4648 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:34:28.0036 4648 arc - ok
13:34:28.0057 4648 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:34:28.0060 4648 arcsas - ok
13:34:28.0126 4648 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
13:34:28.0129 4648 ASLDRService - ok
13:34:28.0149 4648 [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
13:34:28.0154 4648 ASMMAP64 - ok
13:34:28.0252 4648 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:34:28.0270 4648 aspnet_state - ok
13:34:28.0318 4648 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:34:28.0321 4648 AsyncMac - ok
13:34:28.0348 4648 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
13:34:28.0350 4648 atapi - ok
13:34:28.0433 4648 [ DE8B9C3E0E09D918B394207F34AC16DD ] athr C:\Windows\system32\DRIVERS\athrx.sys
13:34:28.0489 4648 athr - ok
13:34:28.0536 4648 [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
13:34:28.0542 4648 AtiHDAudioService - ok
13:34:28.0563 4648 [ 7910158929571214A959D5A6D16DD9C0 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
13:34:28.0566 4648 ATKGFNEXSrv - ok
13:34:28.0595 4648 [ 1F7238A37389ED92E9D8EEE975CABD54 ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
13:34:28.0597 4648 ATKWMIACPIIO - ok
13:34:28.0674 4648 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:34:28.0707 4648 AudioEndpointBuilder - ok
13:34:28.0750 4648 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:34:28.0760 4648 AudioSrv - ok
13:34:28.0787 4648 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:34:28.0792 4648 AxInstSV - ok
13:34:28.0842 4648 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:34:28.0852 4648 b06bdrv - ok
13:34:28.0881 4648 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:34:28.0894 4648 b57nd60a - ok
13:34:28.0936 4648 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:34:28.0944 4648 BDESVC - ok
13:34:28.0979 4648 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:34:28.0981 4648 Beep - ok
13:34:29.0033 4648 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
13:34:29.0061 4648 BFE - ok
13:34:29.0131 4648 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
13:34:29.0177 4648 BITS - ok
13:34:29.0224 4648 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:34:29.0230 4648 blbdrive - ok
13:34:29.0276 4648 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:34:29.0280 4648 bowser - ok
13:34:29.0327 4648 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:34:29.0330 4648 BrFiltLo - ok
13:34:29.0357 4648 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:34:29.0360 4648 BrFiltUp - ok
13:34:29.0416 4648 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
13:34:29.0421 4648 Browser - ok
13:34:29.0468 4648 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:34:29.0477 4648 Brserid - ok
13:34:29.0516 4648 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:34:29.0520 4648 BrSerWdm - ok
13:34:29.0536 4648 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:34:29.0538 4648 BrUsbMdm - ok
13:34:29.0557 4648 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:34:29.0564 4648 BrUsbSer - ok
13:34:29.0611 4648 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
13:34:29.0615 4648 BthEnum - ok
13:34:29.0676 4648 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:34:29.0696 4648 BTHMODEM - ok
13:34:29.0738 4648 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:34:29.0744 4648 BthPan - ok
13:34:29.0789 4648 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
13:34:29.0814 4648 BTHPORT - ok
13:34:29.0871 4648 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:34:29.0875 4648 bthserv - ok
13:34:29.0914 4648 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
13:34:29.0918 4648 BTHUSB - ok
13:34:29.0957 4648 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:34:29.0962 4648 cdfs - ok
13:34:30.0006 4648 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:34:30.0012 4648 cdrom - ok
13:34:30.0049 4648 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
13:34:30.0055 4648 CertPropSvc - ok
13:34:30.0086 4648 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:34:30.0090 4648 circlass - ok
13:34:30.0137 4648 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:34:30.0148 4648 CLFS - ok
13:34:30.0217 4648 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:34:30.0224 4648 clr_optimization_v2.0.50727_32 - ok
13:34:30.0303 4648 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:34:30.0311 4648 clr_optimization_v2.0.50727_64 - ok
13:34:30.0390 4648 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:34:30.0447 4648 clr_optimization_v4.0.30319_32 - ok
13:34:30.0477 4648 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:34:30.0532 4648 clr_optimization_v4.0.30319_64 - ok
13:34:30.0566 4648 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:34:30.0569 4648 CmBatt - ok
13:34:30.0599 4648 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
13:34:30.0604 4648 cmdide - ok
13:34:30.0649 4648 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
13:34:30.0666 4648 CNG - ok
13:34:30.0705 4648 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:34:30.0713 4648 Compbatt - ok
13:34:30.0728 4648 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
13:34:30.0735 4648 CompositeBus - ok
13:34:30.0748 4648 COMSysApp - ok
13:34:30.0778 4648 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:34:30.0781 4648 crcdisk - ok
13:34:30.0845 4648 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:34:30.0850 4648 CryptSvc - ok
13:34:30.0957 4648 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
13:34:30.0984 4648 cvhsvc - ok
13:34:31.0041 4648 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:34:31.0064 4648 DcomLaunch - ok
13:34:31.0112 4648 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:34:31.0122 4648 defragsvc - ok
13:34:31.0162 4648 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:34:31.0166 4648 DfsC - ok
13:34:31.0207 4648 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
13:34:31.0215 4648 Dhcp - ok
13:34:31.0247 4648 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:34:31.0251 4648 discache - ok
13:34:31.0268 4648 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:34:31.0277 4648 Disk - ok
13:34:31.0327 4648 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:34:31.0332 4648 Dnscache - ok
13:34:31.0368 4648 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
13:34:31.0376 4648 dot3svc - ok
13:34:31.0421 4648 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
13:34:31.0427 4648 Dot4 - ok
13:34:31.0466 4648 [ 85135AD27E79B689335C08167D917CDE ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
13:34:31.0469 4648 Dot4Print - ok
13:34:31.0495 4648 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
13:34:31.0499 4648 dot4usb - ok
13:34:31.0537 4648 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
13:34:31.0542 4648 DPS - ok
13:34:31.0591 4648 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:34:31.0593 4648 drmkaud - ok
13:34:31.0664 4648 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:34:31.0698 4648 DXGKrnl - ok
13:34:31.0725 4648 EagleX64 - ok
13:34:31.0764 4648 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:34:31.0768 4648 EapHost - ok
13:34:31.0885 4648 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:34:31.0969 4648 ebdrv - ok
13:34:32.0008 4648 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
13:34:32.0012 4648 EFS - ok
13:34:32.0076 4648 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:34:32.0101 4648 ehRecvr - ok
13:34:32.0128 4648 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:34:32.0135 4648 ehSched - ok
13:34:32.0196 4648 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:34:32.0220 4648 elxstor - ok
13:34:32.0243 4648 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
13:34:32.0245 4648 ErrDev - ok
13:34:32.0300 4648 [ 4C120D2B2EA269EAE7A5744794EB6DB1 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
13:34:32.0305 4648 ETD - ok
13:34:32.0376 4648 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:34:32.0389 4648 EventSystem - ok
13:34:32.0426 4648 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:34:32.0432 4648 exfat - ok
13:34:32.0485 4648 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:34:32.0493 4648 fastfat - ok
13:34:32.0528 4648 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
13:34:32.0552 4648 Fax - ok
13:34:32.0585 4648 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:34:32.0588 4648 fdc - ok
13:34:32.0628 4648 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:34:32.0636 4648 fdPHost - ok
13:34:32.0695 4648 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:34:32.0701 4648 FDResPub - ok
13:34:32.0746 4648 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:34:32.0749 4648 FileInfo - ok
13:34:32.0775 4648 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:34:32.0778 4648 Filetrace - ok
13:34:32.0803 4648 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:34:32.0808 4648 flpydisk - ok
13:34:32.0839 4648 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:34:32.0850 4648 FltMgr - ok
13:34:32.0917 4648 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
13:34:32.0948 4648 FontCache - ok
13:34:32.0996 4648 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:34:33.0003 4648 FontCache3.0.0.0 - ok
13:34:33.0027 4648 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:34:33.0032 4648 FsDepends - ok
13:34:33.0073 4648 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
13:34:33.0077 4648 fssfltr - ok
13:34:33.0185 4648 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
13:34:33.0232 4648 fsssvc - ok
13:34:33.0292 4648 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:34:33.0295 4648 Fs_Rec - ok
13:34:33.0338 4648 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:34:33.0344 4648 fvevol - ok
13:34:33.0378 4648 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:34:33.0381 4648 gagp30kx - ok
13:34:33.0435 4648 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
13:34:33.0462 4648 gpsvc - ok
13:34:33.0519 4648 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:34:33.0524 4648 gupdate - ok
13:34:33.0545 4648 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:34:33.0547 4648 gupdatem - ok
13:34:33.0574 4648 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:34:33.0578 4648 hcw85cir - ok
13:34:33.0621 4648 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:34:33.0633 4648 HdAudAddService - ok
13:34:33.0664 4648 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:34:33.0669 4648 HDAudBus - ok
13:34:33.0695 4648 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:34:33.0697 4648 HidBatt - ok
13:34:33.0749 4648 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:34:33.0756 4648 HidBth - ok
13:34:33.0786 4648 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:34:33.0791 4648 HidIr - ok
13:34:33.0834 4648 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:34:33.0837 4648 hidserv - ok
13:34:33.0861 4648 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:34:33.0865 4648 HidUsb - ok
13:34:33.0905 4648 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:34:33.0914 4648 hkmsvc - ok
13:34:33.0955 4648 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:34:33.0962 4648 HomeGroupListener - ok
13:34:34.0012 4648 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:34:34.0019 4648 HomeGroupProvider - ok
13:34:34.0099 4648 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
13:34:34.0105 4648 hpqcxs08 - ok
13:34:34.0132 4648 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
13:34:34.0137 4648 hpqddsvc - ok
13:34:34.0170 4648 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
13:34:34.0174 4648 HpSAMD - ok
13:34:34.0227 4648 [ D4F91CF4DE215D6F14A06087D46725E4 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
13:34:34.0260 4648 HPSLPSVC - ok
13:34:34.0312 4648 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:34:34.0334 4648 HTTP - ok
13:34:34.0355 4648 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:34:34.0358 4648 hwpolicy - ok
13:34:34.0400 4648 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:34:34.0407 4648 i8042prt - ok
13:34:34.0473 4648 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:34:34.0487 4648 iaStorV - ok
13:34:34.0568 4648 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:34:34.0600 4648 idsvc - ok
13:34:34.0663 4648 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:34:34.0667 4648 iirsp - ok
13:34:34.0733 4648 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
13:34:34.0767 4648 IKEEXT - ok
13:34:34.0906 4648 [ B60ACCD29F8FAFC4A6344CD2BD5CA3A5 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:34:34.0976 4648 IntcAzAudAddService - ok
13:34:34.0999 4648 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
13:34:35.0005 4648 intelide - ok
13:34:35.0040 4648 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:34:35.0046 4648 intelppm - ok
13:34:35.0081 4648 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:34:35.0086 4648 IPBusEnum - ok
13:34:35.0131 4648 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:34:35.0135 4648 IpFilterDriver - ok
13:34:35.0180 4648 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:34:35.0209 4648 iphlpsvc - ok
13:34:35.0239 4648 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
13:34:35.0242 4648 IPMIDRV - ok
13:34:35.0288 4648 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:34:35.0292 4648 IPNAT - ok
13:34:35.0336 4648 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:34:35.0339 4648 IRENUM - ok
13:34:35.0363 4648 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
13:34:35.0368 4648 isapnp - ok
13:34:35.0410 4648 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:34:35.0416 4648 iScsiPrt - ok
13:34:35.0447 4648 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:34:35.0456 4648 kbdclass - ok
13:34:35.0484 4648 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:34:35.0487 4648 kbdhid - ok
13:34:35.0535 4648 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
13:34:35.0538 4648 kbfiltr - ok
13:34:35.0607 4648 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
13:34:35.0612 4648 KeyIso - ok
13:34:35.0693 4648 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:34:35.0727 4648 KSecDD - ok
13:34:35.0856 4648 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:34:35.0866 4648 KSecPkg - ok
13:34:35.0934 4648 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:34:35.0936 4648 ksthunk - ok
13:34:36.0061 4648 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:34:36.0073 4648 KtmRm - ok
13:34:36.0104 4648 [ 033B4AED2C5519072C0D81E00804D003 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
13:34:36.0115 4648 L1C - ok
13:34:36.0334 4648 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:34:36.0395 4648 LanmanServer - ok
13:34:36.0532 4648 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:34:36.0592 4648 LanmanWorkstation - ok
13:34:36.0643 4648 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:34:36.0657 4648 lltdio - ok
13:34:36.0723 4648 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:34:36.0741 4648 lltdsvc - ok
13:34:36.0904 4648 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:34:36.0920 4648 lmhosts - ok
13:34:36.0995 4648 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:34:37.0016 4648 LSI_FC - ok
13:34:37.0039 4648 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:34:37.0047 4648 LSI_SAS - ok
13:34:37.0147 4648 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:34:37.0181 4648 LSI_SAS2 - ok
13:34:37.0236 4648 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:34:37.0277 4648 LSI_SCSI - ok
13:34:37.0310 4648 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:34:37.0314 4648 luafv - ok
13:34:37.0518 4648 [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
13:34:37.0524 4648 McComponentHostService - ok
13:34:37.0610 4648 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:34:37.0636 4648 Mcx2Svc - ok
13:34:37.0666 4648 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:34:37.0767 4648 megasas - ok
13:34:37.0803 4648 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:34:37.0817 4648 MegaSR - ok
13:34:37.0883 4648 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:34:37.0900 4648 MMCSS - ok
13:34:37.0948 4648 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:34:37.0952 4648 Modem - ok
13:34:38.0068 4648 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:34:38.0073 4648 monitor - ok
13:34:38.0103 4648 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:34:38.0150 4648 mouclass - ok
13:34:38.0182 4648 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:34:38.0185 4648 mouhid - ok
13:34:38.0256 4648 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:34:38.0274 4648 mountmgr - ok
13:34:38.0337 4648 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
13:34:38.0353 4648 MpFilter - ok
13:34:38.0388 4648 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
13:34:38.0407 4648 mpio - ok
13:34:38.0474 4648 [ 8FBF6B31FE8AF1833D93C5913D5B4D55 ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys
13:34:38.0477 4648 MpNWMon - ok
13:34:38.0570 4648 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:34:38.0575 4648 mpsdrv - ok
13:34:38.0689 4648 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:34:38.0736 4648 MpsSvc - ok
13:34:38.0776 4648 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:34:38.0795 4648 MRxDAV - ok
13:34:38.0864 4648 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:34:38.0868 4648 mrxsmb - ok
13:34:38.0932 4648 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:34:38.0948 4648 mrxsmb10 - ok
13:34:38.0984 4648 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:34:38.0988 4648 mrxsmb20 - ok
13:34:39.0055 4648 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
13:34:39.0059 4648 msahci - ok
13:34:39.0108 4648 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
13:34:39.0113 4648 msdsm - ok
13:34:39.0159 4648 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:34:39.0169 4648 MSDTC - ok
13:34:39.0289 4648 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:34:39.0292 4648 Msfs - ok
13:34:39.0328 4648 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:34:39.0330 4648 mshidkmdf - ok
13:34:39.0361 4648 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
13:34:39.0363 4648 msisadrv - ok
13:34:39.0407 4648 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:34:39.0416 4648 MSiSCSI - ok
13:34:39.0436 4648 msiserver - ok
13:34:39.0478 4648 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:34:39.0485 4648 MSKSSRV - ok
13:34:39.0549 4648 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
13:34:39.0554 4648 MsMpSvc - ok
13:34:39.0588 4648 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:34:39.0591 4648 MSPCLOCK - ok
13:34:39.0619 4648 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:34:39.0621 4648 MSPQM - ok
13:34:39.0661 4648 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:34:39.0669 4648 MsRPC - ok
13:34:39.0726 4648 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:34:39.0729 4648 mssmbios - ok
13:34:39.0775 4648 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:34:39.0778 4648 MSTEE - ok
13:34:39.0837 4648 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:34:39.0839 4648 MTConfig - ok
13:34:39.0882 4648 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:34:39.0886 4648 Mup - ok
13:34:39.0942 4648 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
13:34:39.0954 4648 napagent - ok
13:34:40.0006 4648 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:34:40.0030 4648 NativeWifiP - ok
13:34:40.0088 4648 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
13:34:40.0120 4648 NDIS - ok
13:34:40.0164 4648 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:34:40.0167 4648 NdisCap - ok
13:34:40.0207 4648 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:34:40.0210 4648 NdisTapi - ok
13:34:40.0244 4648 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:34:40.0248 4648 Ndisuio - ok
13:34:40.0279 4648 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:34:40.0286 4648 NdisWan - ok
13:34:40.0322 4648 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:34:40.0326 4648 NDProxy - ok
13:34:40.0368 4648 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
13:34:40.0372 4648 Net Driver HPZ12 - ok
13:34:40.0407 4648 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:34:40.0410 4648 NetBIOS - ok
13:34:40.0440 4648 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:34:40.0446 4648 NetBT - ok
13:34:40.0482 4648 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
13:34:40.0485 4648 Netlogon - ok
13:34:40.0539 4648 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:34:40.0552 4648 Netman - ok
13:34:40.0598 4648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:34:40.0616 4648 NetMsmqActivator - ok
13:34:40.0647 4648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:34:40.0654 4648 NetPipeActivator - ok
13:34:40.0698 4648 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:34:40.0721 4648 netprofm - ok
13:34:40.0777 4648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:34:40.0784 4648 NetTcpActivator - ok
13:34:40.0816 4648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:34:40.0824 4648 NetTcpPortSharing - ok
13:34:40.0894 4648 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:34:40.0898 4648 nfrd960 - ok
13:34:40.0936 4648 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:34:40.0940 4648 NisDrv - ok
13:34:40.0991 4648 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
13:34:40.0998 4648 NisSrv - ok
13:34:41.0049 4648 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:34:41.0058 4648 NlaSvc - ok
13:34:41.0092 4648 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:34:41.0096 4648 Npfs - ok
13:34:41.0148 4648 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:34:41.0152 4648 nsi - ok
13:34:41.0181 4648 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:34:41.0185 4648 nsiproxy - ok
13:34:41.0375 4648 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:34:41.0419 4648 Ntfs - ok
13:34:41.0459 4648 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:34:41.0463 4648 Null - ok
13:34:41.0525 4648 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:34:41.0531 4648 nvraid - ok
13:34:41.0576 4648 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:34:41.0587 4648 nvstor - ok
13:34:41.0675 4648 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
13:34:41.0687 4648 nv_agp - ok
13:34:41.0734 4648 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:34:41.0739 4648 ohci1394 - ok
13:34:41.0795 4648 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:34:41.0801 4648 ose - ok
13:34:42.0148 4648 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:34:42.0271 4648 osppsvc - ok
13:34:42.0325 4648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:34:42.0335 4648 p2pimsvc - ok
13:34:42.0373 4648 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:34:42.0385 4648 p2psvc - ok
13:34:42.0432 4648 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:34:42.0437 4648 Parport - ok
13:34:42.0484 4648 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:34:42.0490 4648 partmgr - ok
13:34:42.0536 4648 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:34:42.0542 4648 PcaSvc - ok
13:34:42.0581 4648 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
13:34:42.0587 4648 pci - ok
13:34:42.0632 4648 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:34:42.0635 4648 pciide - ok
13:34:42.0667 4648 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:34:42.0673 4648 pcmcia - ok
13:34:42.0708 4648 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:34:42.0717 4648 pcw - ok
13:34:42.0789 4648 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:34:42.0826 4648 PEAUTH - ok
13:34:42.0963 4648 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:34:42.0973 4648 PerfHost - ok
13:34:43.0132 4648 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
13:34:43.0180 4648 pla - ok
13:34:43.0250 4648 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:34:43.0264 4648 PlugPlay - ok
13:34:43.0342 4648 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
13:34:43.0347 4648 Pml Driver HPZ12 - ok
13:34:43.0395 4648 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:34:43.0400 4648 PNRPAutoReg - ok
13:34:43.0448 4648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:34:43.0455 4648 PNRPsvc - ok
13:34:43.0508 4648 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:34:43.0529 4648 PolicyAgent - ok
13:34:43.0614 4648 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:34:43.0624 4648 Power - ok
13:34:43.0671 4648 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:34:43.0676 4648 PptpMiniport - ok
13:34:43.0716 4648 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:34:43.0719 4648 Processor - ok
13:34:43.0786 4648 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
13:34:43.0805 4648 ProfSvc - ok
13:34:43.0838 4648 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:34:43.0841 4648 ProtectedStorage - ok
13:34:43.0885 4648 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:34:43.0892 4648 Psched - ok
13:34:43.0935 4648 [ FB46E9A827A8799EBD7BFA9128C91F37 ] PSI C:\Windows\system32\DRIVERS\psi_mf.sys
13:34:43.0938 4648 PSI - ok
13:34:44.0018 4648 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:34:44.0066 4648 ql2300 - ok
13:34:44.0109 4648 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:34:44.0114 4648 ql40xx - ok
13:34:44.0169 4648 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:34:44.0177 4648 QWAVE - ok
13:34:44.0222 4648 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:34:44.0225 4648 QWAVEdrv - ok
13:34:44.0254 4648 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:34:44.0257 4648 RasAcd - ok
13:34:44.0302 4648 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:34:44.0308 4648 RasAgileVpn - ok
13:34:44.0357 4648 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:34:44.0363 4648 RasAuto - ok
13:34:44.0399 4648 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:34:44.0404 4648 Rasl2tp - ok
13:34:44.0444 4648 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
13:34:44.0467 4648 RasMan - ok
13:34:44.0515 4648 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:34:44.0519 4648 RasPppoe - ok
13:34:44.0565 4648 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:34:44.0569 4648 RasSstp - ok
13:34:44.0637 4648 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:34:44.0646 4648 rdbss - ok
13:34:44.0677 4648 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:34:44.0680 4648 rdpbus - ok
13:34:44.0716 4648 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:34:44.0720 4648 RDPCDD - ok
13:34:44.0814 4648 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:34:44.0816 4648 RDPENCDD - ok
13:34:44.0879 4648 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:34:44.0883 4648 RDPREFMP - ok
13:34:44.0934 4648 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:34:44.0941 4648 RDPWD - ok
13:34:44.0975 4648 [ E5DC9BA9E439D6DBDD79F8CAACB5BF01 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:34:44.0982 4648 rdyboost - ok
13:34:45.0035 4648 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:34:45.0041 4648 RemoteAccess - ok
13:34:45.0095 4648 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:34:45.0102 4648 RemoteRegistry - ok
13:34:45.0141 4648 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:34:45.0147 4648 RFCOMM - ok
13:34:45.0192 4648 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:34:45.0199 4648 RpcEptMapper - ok
13:34:45.0260 4648 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:34:45.0266 4648 RpcLocator - ok
13:34:45.0329 4648 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
13:34:45.0340 4648 RpcSs - ok
13:34:45.0392 4648 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:34:45.0395 4648 rspndr - ok
13:34:45.0455 4648 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
13:34:45.0462 4648 RSUSBSTOR - ok
13:34:45.0520 4648 [ 3372196F61AF48503656EF6AA3E92D1B ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:34:45.0531 4648 RTL8167 - ok
13:34:45.0577 4648 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
13:34:45.0581 4648 SamSs - ok
13:34:45.0655 4648 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
13:34:45.0659 4648 SASDIFSV - ok
13:34:45.0695 4648 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
13:34:45.0698 4648 SASKUTIL - ok
13:34:45.0752 4648 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
13:34:45.0756 4648 sbp2port - ok
13:34:45.0833 4648 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:34:45.0844 4648 SCardSvr - ok
13:34:45.0918 4648 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:34:45.0923 4648 scfilter - ok
13:34:46.0009 4648 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
13:34:46.0055 4648 Schedule - ok
13:34:46.0105 4648 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:34:46.0107 4648 SCPolicySvc - ok
13:34:46.0156 4648 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:34:46.0163 4648 SDRSVC - ok
13:34:46.0205 4648 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:34:46.0208 4648 secdrv - ok
13:34:46.0278 4648 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
13:34:46.0283 4648 seclogon - ok
13:34:46.0376 4648 [ 5B66DB4877BBAC9F7493AA8D84421E49 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
13:34:46.0409 4648 Secunia PSI Agent - ok
13:34:46.0461 4648 [ 0E88FDF474F2CDD370A4A6CE77D018F0 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
13:34:46.0470 4648 Secunia Update Agent - ok
13:34:46.0505 4648 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:34:46.0514 4648 SENS - ok
13:34:46.0553 4648 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:34:46.0559 4648 SensrSvc - ok
13:34:46.0604 4648 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:34:46.0607 4648 Serenum - ok
13:34:46.0664 4648 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:34:46.0668 4648 Serial - ok
13:34:46.0711 4648 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:34:46.0714 4648 sermouse - ok
13:34:46.0843 4648 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
13:34:46.0852 4648 SessionEnv - ok
13:34:46.0899 4648 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
13:34:46.0902 4648 sffdisk - ok
13:34:46.0948 4648 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
13:34:46.0951 4648 sffp_mmc - ok
13:34:46.0986 4648 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
13:34:46.0991 4648 sffp_sd - ok
13:34:47.0023 4648 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:34:47.0025 4648 sfloppy - ok
13:34:47.0097 4648 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
13:34:47.0126 4648 Sftfs - ok
13:34:47.0206 4648 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
13:34:47.0228 4648 sftlist - ok
13:34:47.0307 4648 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
13:34:47.0316 4648 Sftplay - ok
13:34:47.0360 4648 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
13:34:47.0366 4648 Sftredir - ok
13:34:47.0402 4648 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
13:34:47.0407 4648 Sftvol - ok
13:34:47.0458 4648 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
13:34:47.0465 4648 sftvsa - ok
13:34:47.0534 4648 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:34:47.0543 4648 SharedAccess - ok
13:34:47.0626 4648 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:34:47.0647 4648 ShellHWDetection - ok
13:34:47.0712 4648 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
13:34:47.0716 4648 SiSGbeLH - ok
13:34:47.0752 4648 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:34:47.0755 4648 SiSRaid2 - ok
13:34:47.0803 4648 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:34:47.0814 4648 SiSRaid4 - ok
13:34:48.0021 4648 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:34:48.0103 4648 Skype C2C Service - ok
13:34:48.0188 4648 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:34:48.0193 4648 SkypeUpdate - ok
13:34:48.0278 4648 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
13:34:48.0281 4648 SmartDefragDriver - ok
13:34:48.0322 4648 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:34:48.0326 4648 Smb - ok
13:34:48.0436 4648 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:34:48.0442 4648 SNMPTRAP - ok
13:34:48.0498 4648 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:34:48.0503 4648 spldr - ok
13:34:48.0568 4648 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
13:34:48.0600 4648 Spooler - ok
13:34:48.0726 4648 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
13:34:48.0813 4648 sppsvc - ok
13:34:48.0892 4648 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:34:48.0899 4648 sppuinotify - ok
13:34:48.0953 4648 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:34:48.0975 4648 srv - ok
13:34:49.0016 4648 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:34:49.0025 4648 srv2 - ok
13:34:49.0071 4648 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:34:49.0077 4648 srvnet - ok
13:34:49.0126 4648 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:34:49.0133 4648 SSDPSRV - ok
13:34:49.0186 4648 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:34:49.0198 4648 SstpSvc - ok
13:34:49.0245 4648 Steam Client Service - ok
13:34:49.0305 4648 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:34:49.0308 4648 stexstor - ok
13:34:49.0378 4648 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
13:34:49.0400 4648 stisvc - ok
13:34:49.0446 4648 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:34:49.0449 4648 swenum - ok
13:34:49.0506 4648 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:34:49.0532 4648 swprv - ok
13:34:49.0632 4648 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
13:34:49.0695 4648 SysMain - ok
13:34:49.0733 4648 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:34:49.0743 4648 TabletInputService - ok
13:34:49.0983 4648 [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe
13:34:50.0138 4648 TabletServicePen - ok
13:34:50.0194 4648 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
13:34:50.0204 4648 TapiSrv - ok
13:34:50.0244 4648 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:34:50.0256 4648 TBS - ok
13:34:50.0349 4648 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:34:50.0403 4648 Tcpip - ok
13:34:50.0492 4648 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:34:50.0513 4648 TCPIP6 - ok
13:34:50.0600 4648 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:34:50.0603 4648 tcpipreg - ok
13:34:50.0668 4648 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:34:50.0673 4648 TDPIPE - ok
13:34:50.0719 4648 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:34:50.0722 4648 TDTCP - ok
13:34:50.0772 4648 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:34:50.0777 4648 tdx - ok
13:34:50.0824 4648 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:34:50.0830 4648 TermDD - ok
13:34:50.0913 4648 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
13:34:50.0947 4648 TermService - ok
13:34:50.0994 4648 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:34:51.0000 4648 Themes - ok
13:34:51.0055 4648 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:34:51.0058 4648 THREADORDER - ok
13:34:51.0124 4648 [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe
13:34:51.0147 4648 TouchServicePen - ok
13:34:51.0204 4648 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:34:51.0211 4648 TrkWks - ok
13:34:51.0300 4648 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:34:51.0308 4648 TrustedInstaller - ok
13:34:51.0383 4648 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:34:51.0388 4648 tssecsrv - ok
13:34:51.0439 4648 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:34:51.0444 4648 tunnel - ok
13:34:51.0492 4648 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:34:51.0499 4648 uagp35 - ok
13:34:51.0555 4648 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:34:51.0564 4648 udfs - ok
13:34:51.0688 4648 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:34:51.0695 4648 UI0Detect - ok
13:34:51.0728 4648 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
13:34:51.0734 4648 uliagpkx - ok
13:34:51.0775 4648 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:34:51.0778 4648 umbus - ok
13:34:51.0815 4648 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:34:51.0818 4648 UmPass - ok
13:34:51.0903 4648 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:34:51.0914 4648 upnphost - ok
13:34:51.0969 4648 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:34:51.0973 4648 usbaudio - ok
13:34:52.0029 4648 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:34:52.0033 4648 usbccgp - ok
13:34:52.0090 4648 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
13:34:52.0094 4648 usbcir - ok
13:34:52.0160 4648 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:34:52.0164 4648 usbehci - ok
13:34:52.0222 4648 [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
13:34:52.0226 4648 usbfilter - ok
13:34:52.0283 4648 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:34:52.0295 4648 usbhub - ok
13:34:52.0339 4648 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
13:34:52.0344 4648 usbohci - ok
13:34:52.0395 4648 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:34:52.0398 4648 usbprint - ok
13:34:52.0451 4648 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:34:52.0455 4648 usbscan - ok
13:34:52.0494 4648 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:34:52.0498 4648 USBSTOR - ok
13:34:52.0554 4648 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:34:52.0558 4648 usbuhci - ok
13:34:52.0608 4648 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
13:34:52.0615 4648 usbvideo - ok
13:34:52.0679 4648 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:34:52.0684 4648 UxSms - ok
13:34:52.0730 4648 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
13:34:52.0733 4648 VaultSvc - ok
13:34:52.0774 4648 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
13:34:52.0777 4648 vdrvroot - ok
13:34:52.0844 4648 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
13:34:52.0867 4648 vds - ok
13:34:52.0926 4648 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:34:52.0929 4648 vga - ok
13:34:52.0974 4648 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:34:52.0977 4648 VgaSave - ok
13:34:53.0019 4648 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
13:34:53.0030 4648 vhdmp - ok
13:34:53.0086 4648 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
13:34:53.0089 4648 viaide - ok
13:34:53.0138 4648 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
13:34:53.0141 4648 volmgr - ok
13:34:53.0189 4648 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:34:53.0197 4648 volmgrx - ok
13:34:53.0260 4648 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:34:53.0270 4648 volsnap - ok
13:34:53.0332 4648 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:34:53.0338 4648 vsmraid - ok
13:34:53.0433 4648 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
13:34:53.0515 4648 VSS - ok
13:34:53.0566 4648 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:34:53.0569 4648 vwifibus - ok
13:34:53.0614 4648 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:34:53.0618 4648 vwififlt - ok
13:34:53.0670 4648 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
13:34:53.0675 4648 vwifimp - ok
13:34:53.0734 4648 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:34:53.0758 4648 W32Time - ok
13:34:53.0837 4648 [ FE75777289278A4941FE6139E82B3BD9 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
13:34:53.0840 4648 wacmoumonitor - ok
13:34:53.0898 4648 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
13:34:53.0901 4648 wacommousefilter - ok
13:34:53.0970 4648 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:34:53.0973 4648 WacomPen - ok
13:34:54.0027 4648 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
13:34:54.0030 4648 wacomvhid - ok
13:34:54.0087 4648 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:34:54.0108 4648 WANARP - ok
13:34:54.0185 4648 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:34:54.0186 4648 Wanarpv6 - ok
13:34:54.0279 4648 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:34:54.0317 4648 WatAdminSvc - ok
13:34:54.0416 4648 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
13:34:54.0459 4648 wbengine - ok
13:34:54.0511 4648 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:34:54.0519 4648 WbioSrvc - ok
13:34:54.0588 4648 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:34:54.0602 4648 wcncsvc - ok
13:34:54.0649 4648 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:34:54.0655 4648 WcsPlugInService - ok
13:34:54.0722 4648 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:34:54.0725 4648 Wd - ok
13:34:54.0811 4648 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:34:54.0844 4648 Wdf01000 - ok
13:34:54.0897 4648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:34:54.0925 4648 WdiServiceHost - ok
13:34:54.0991 4648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:34:54.0998 4648 WdiSystemHost - ok
13:34:55.0060 4648 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
13:34:55.0072 4648 WebClient - ok
13:34:55.0133 4648 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:34:55.0144 4648 Wecsvc - ok
13:34:55.0189 4648 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:34:55.0196 4648 wercplsupport - ok
13:34:55.0250 4648 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:34:55.0256 4648 WerSvc - ok
13:34:55.0321 4648 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:34:55.0324 4648 WfpLwf - ok
13:34:55.0387 4648 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
13:34:55.0392 4648 WimFltr - ok
13:34:55.0442 4648 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:34:55.0446 4648 WIMMount - ok
13:34:55.0497 4648 WinDefend - ok
13:34:55.0595 4648 WinHttpAutoProxySvc - ok
13:34:55.0688 4648 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:34:55.0695 4648 Winmgmt - ok
13:34:55.0804 4648 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
13:34:55.0861 4648 WinRM - ok
13:34:56.0024 4648 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:34:56.0056 4648 Wlansvc - ok
13:34:56.0135 4648 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:34:56.0139 4648 wlcrasvc - ok
13:34:56.0295 4648 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:34:56.0352 4648 wlidsvc - ok
13:34:56.0412 4648 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
13:34:56.0415 4648 WmiAcpi - ok
13:34:56.0508 4648 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:34:56.0515 4648 wmiApSrv - ok
13:34:56.0572 4648 WMPNetworkSvc - ok
13:34:56.0625 4648 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:34:56.0632 4648 WPCSvc - ok
13:34:56.0685 4648 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:34:56.0694 4648 WPDBusEnum - ok
13:34:56.0758 4648 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:34:56.0763 4648 ws2ifsl - ok
13:34:56.0819 4648 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
13:34:56.0828 4648 wscsvc - ok
13:34:56.0880 4648 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
13:34:56.0885 4648 WSDPrintDevice - ok
13:34:56.0937 4648 WSearch - ok
13:34:57.0109 4648 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:34:57.0178 4648 wuauserv - ok
13:34:57.0249 4648 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:34:57.0253 4648 WudfPf - ok
13:34:57.0300 4648 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:34:57.0305 4648 WUDFRd - ok
13:34:57.0354 4648 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:34:57.0364 4648 wudfsvc - ok
13:34:57.0435 4648 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:34:57.0463 4648 WwanSvc - ok
13:34:57.0508 4648 X6va006 - ok
13:34:57.0544 4648 X6va008 - ok
13:34:57.0674 4648 ================ Scan global ===============================
13:34:57.0716 4648 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:34:57.0750 4648 [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\system32\winsrv.dll
13:34:57.0772 4648 [ C4C551E6AB333C0EB812A3A4672E89DB ] C:\Windows\system32\winsrv.dll
13:34:57.0815 4648 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:34:57.0840 4648 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:34:57.0852 4648 [Global] - ok
13:34:57.0853 4648 ================ Scan MBR ==================================
13:34:57.0876 4648 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:34:58.0359 4648 \Device\Harddisk0\DR0 - ok
13:34:58.0363 4648 ================ Scan VBR ==================================
13:34:58.0367 4648 [ 18C7B076AD34994B986F68808A0BD1C6 ] \Device\Harddisk0\DR0\Partition1
13:34:58.0373 4648 \Device\Harddisk0\DR0\Partition1 - ok
13:34:58.0409 4648 [ 272617ADBB45D47F51E166D06393EFF0 ] \Device\Harddisk0\DR0\Partition2
13:34:58.0413 4648 \Device\Harddisk0\DR0\Partition2 - ok
13:34:58.0414 4648 ============================================================
13:34:58.0414 4648 Scan finished
13:34:58.0414 4648 ============================================================
13:34:58.0441 4560 Detected object count: 0
13:34:58.0441 4560 Actual detected object count: 0


aswMBR:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-03 10:22:22
-----------------------------
10:22:22.192 OS Version: Windows x64 6.1.7600
10:22:22.192 Number of processors: 2 586 0x100
10:22:22.194 ComputerName: HO-PC UserName: Ho
10:22:23.922 Initialize success
10:33:40.713 AVAST engine defs: 13020300
10:33:55.859 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000074
10:33:55.864 Disk 0 Vendor: ST950032 0003 Size: 476940MB BusType: 11
10:33:55.878 Disk 0 MBR read successfully
10:33:55.883 Disk 0 MBR scan
10:33:55.894 Disk 0 Windows 7 default MBR code
10:33:55.911 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 25600 MB offset 2048
10:33:55.939 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 205084 MB offset 52430848
10:33:55.992 Disk 0 Partition - 00 0F Extended LBA 246255 MB offset 472442880
10:33:56.024 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 246254 MB offset 472444928
10:33:56.182 Disk 0 scanning C:\Windows\system32\drivers
10:34:19.948 Service scanning
10:35:16.790 Modules scanning
10:35:16.809 Disk 0 trace - called modules:
10:35:16.904 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
10:35:16.920 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004bd7060]
10:35:16.936 3 CLASSPNP.SYS[fffff8800145143f] -> nt!IofCallDriver -> [0xfffffa8004751310]
10:35:16.947 5 amd_xata.sys[fffff8800110a8b4] -> nt!IofCallDriver -> \Device\00000074[0xfffffa8004a76580]
10:35:18.288 AVAST engine scan C:\Windows
10:35:24.188 AVAST engine scan C:\Windows\system32
10:43:51.604 AVAST engine scan C:\Windows\system32\drivers
10:44:17.905 AVAST engine scan C:\Users\Ho
11:03:27.107 AVAST engine scan C:\ProgramData
11:06:17.469 Scan finished successfully
11:08:21.346 Disk 0 MBR has been saved successfully to "C:\Users\Ho\Documents\MBR.dat"
11:08:21.506 The log file has been saved successfully to "C:\Users\Ho\Documents\aswMBR.txt"


ESET said there were 0 threats found as well.

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6889
# api_version=3.0.2
# EOSSerial=baddb0df8d3a094bb4b28f4208048e1c
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-02-03 09:26:15
# local_time=2013-02-03 01:26:15 (-0800, Pacific Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7600 NT
# compatibility_mode=5893 16776574 100 94 23925805 111470225 0 0
# scanned=231809
# found=0
# cleaned=0
# scan_time=7873

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:31 AM

Posted 03 February 2013 - 04:41 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#5 Fysea

Fysea
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 03 February 2013 - 11:15 PM

Malwarebytes:

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.02.03.11

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Ho :: HO-PC [administrator]

2/3/2013 5:28:34 PM
mbam-log-2013-02-03 (17-28-34).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 429763
Time elapsed: 1 hour(s), 59 minute(s), 18 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Mini toolbox:

MiniToolBox by Farbar Version:10-01-2013
Ran by Ho (administrator) on 03-02-2013 at 17:48:35
Running from "C:\Users\Ho\Downloads"
Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15130 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Ho-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 7E-2F-68-1A-84-8E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F4-6D-04-A7-E3-76
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 74-2F-68-1A-84-8E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::919:d9c1:ac81:ecc2%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.74(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, February 03, 2013 10:14:39 AM
Lease Expires . . . . . . . . . . : Monday, February 04, 2013 10:14:42 AM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 242495336
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-96-49-6A-74-2F-68-1A-84-8E
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{CB6A4562-A7BB-4D57-AA20-9BC60FFEA848}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.gateway.2wire.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4000:802::1008
74.125.225.225
74.125.225.226
74.125.225.227
74.125.225.228
74.125.225.229
74.125.225.230
74.125.225.231
74.125.225.232
74.125.225.233
74.125.225.238
74.125.225.224


Pinging google.com [74.125.225.226] with 32 bytes of data:
Reply from 74.125.225.226: bytes=32 time=73ms TTL=51
Reply from 74.125.225.226: bytes=32 time=70ms TTL=50

Ping statistics for 74.125.225.226:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 70ms, Maximum = 73ms, Average = 71ms
Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
206.190.36.45
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=193ms TTL=47
Reply from 98.138.253.109: bytes=32 time=81ms TTL=47

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 81ms, Maximum = 193ms, Average = 137ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...7e 2f 68 1a 84 8e ......Microsoft Virtual WiFi Miniport Adapter
13...f4 6d 04 a7 e3 76 ......Realtek PCIe GBE Family Controller
11...74 2f 68 1a 84 8e ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.74 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.74 281
192.168.1.74 255.255.255.255 On-link 192.168.1.74 281
192.168.1.255 255.255.255.255 On-link 192.168.1.74 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.74 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.74 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::919:d9c1:ac81:ecc2/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [46592] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/03/2013 05:52:39 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
.


Operation:
Subscribing Writer

Context:
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {ac53dec8-753d-443f-85ac-fc02a7ba3893}

Error: (02/03/2013 05:52:39 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
]


Operation:
Subscribing Writer

Context:
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {ac53dec8-753d-443f-85ac-fc02a7ba3893}

Error: (02/03/2013 05:52:39 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
.


Operation:
Subscribing Writer

Context:
Writer Class Id: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Writer Name: ASR Writer
Writer Instance ID: {4cad0ae1-ae88-4521-8b39-8b8149912525}

Error: (02/03/2013 05:52:38 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
]


Operation:
Subscribing Writer

Context:
Writer Class Id: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Writer Name: ASR Writer
Writer Instance ID: {4cad0ae1-ae88-4521-8b39-8b8149912525}

Error: (02/03/2013 05:52:38 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Error: An error 0x80042302, A Volume Shadow Copy Service component encountered an unexpected error.
Check the Application event log for more information.
was encountered while trying to initialize the Registry Writer. This may cause
future shadow-copy creations to fail.

Error: (02/03/2013 05:52:38 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
.


Operation:
Subscribing Writer

Context:
Writer Class Id: {542da469-d3e1-473c-9f4f-7847f01fc64f}
Writer Name: COM+ REGDB Writer
Writer Instance ID: {b62cc6b1-c485-4a9c-b6b8-e611622b0a81}

Error: (02/03/2013 05:52:38 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
]


Operation:
Subscribing Writer

Context:
Writer Class Id: {542da469-d3e1-473c-9f4f-7847f01fc64f}
Writer Name: COM+ REGDB Writer
Writer Instance ID: {b62cc6b1-c485-4a9c-b6b8-e611622b0a81}

Error: (02/03/2013 05:52:38 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Error: An error 0x80042302, A Volume Shadow Copy Service component encountered an unexpected error.
Check the Application event log for more information.
was encountered while trying to initialize the Registry Writer. This may cause
future shadow-copy creations to fail.

Error: (02/03/2013 05:52:37 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine Subscribing the Registry server writer failed. hr = 8004230208lx. hr = 0x80042302, A Volume Shadow Copy Service component encountered an unexpected error.
Check the Application event log for more information.
.

Error: (02/03/2013 05:52:37 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
.


Operation:
Subscribing Writer

Context:
Writer Class Id: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Writer Name: Registry Writer
Writer Instance ID: {b921db56-1f4b-4f56-bb79-3ecc94007821}


System errors:
=============
Error: (02/03/2013 05:52:42 PM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Service Control Manager) (User: )
Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error:
%%1058

Error: (02/03/2013 10:25:13 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.143.1237.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608


Microsoft Office Sessions:
=========================
Error: (02/03/2013 05:52:39 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Operation:
Subscribing Writer

Context:
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {ac53dec8-753d-443f-85ac-fc02a7ba3893}

Error: (02/03/2013 05:52:39 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Operation:
Subscribing Writer

Context:
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {ac53dec8-753d-443f-85ac-fc02a7ba3893}

Error: (02/03/2013 05:52:39 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Operation:
Subscribing Writer

Context:
Writer Class Id: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Writer Name: ASR Writer
Writer Instance ID: {4cad0ae1-ae88-4521-8b39-8b8149912525}

Error: (02/03/2013 05:52:38 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Operation:
Subscribing Writer

Context:
Writer Class Id: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Writer Name: ASR Writer
Writer Instance ID: {4cad0ae1-ae88-4521-8b39-8b8149912525}

Error: (02/03/2013 05:52:38 PM) (Source: VSS)(User: )
Description: 0x80042302, A Volume Shadow Copy Service component encountered an unexpected error.
Check the Application event log for more information.

Error: (02/03/2013 05:52:38 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Operation:
Subscribing Writer

Context:
Writer Class Id: {542da469-d3e1-473c-9f4f-7847f01fc64f}
Writer Name: COM+ REGDB Writer
Writer Instance ID: {b62cc6b1-c485-4a9c-b6b8-e611622b0a81}

Error: (02/03/2013 05:52:38 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Operation:
Subscribing Writer

Context:
Writer Class Id: {542da469-d3e1-473c-9f4f-7847f01fc64f}
Writer Name: COM+ REGDB Writer
Writer Instance ID: {b62cc6b1-c485-4a9c-b6b8-e611622b0a81}

Error: (02/03/2013 05:52:38 PM) (Source: VSS)(User: )
Description: 0x80042302, A Volume Shadow Copy Service component encountered an unexpected error.
Check the Application event log for more information.

Error: (02/03/2013 05:52:37 PM) (Source: VSS)(User: )
Description: Subscribing the Registry server writer failed. hr = 8004230208lx0x80042302, A Volume Shadow Copy Service component encountered an unexpected error.
Check the Application event log for more information.

Error: (02/03/2013 05:52:37 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070422, The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Operation:
Subscribing Writer

Context:
Writer Class Id: {afbab4a2-367d-4d15-a586-71dbb18f8485}
Writer Name: Registry Writer
Writer Instance ID: {b921db56-1f4b-4f56-bb79-3ecc94007821}


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 6.2.2)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Adobe Reader 9.5.3 (Version: 9.5.3)
Advanced SystemCare 5 (Version: 5.3.0)
Akamai NetSession Interface
AMD Fuel (Version: 2011.0406.912.14636)
ASUS AI Recovery (Version: 1.0.13)
ASUS Power4Gear Hybrid (Version: 1.1.44)
ASUS Splendid Video Enhancement Technology (Version: 1.03.0005)
AsusVibe2.0 (Version: 2.0.3.585)
Atheros Client Installation Program (Version: 7.0)
ATI Catalyst Install Manager (Version: 3.0.816.0)
ATK Package (Version: 1.0.0008)
Bamboo (Version: 5.2.5-5)
BufferChm (Version: 140.0.212.000)
Catalyst Control Center (Version: 2011.0406.912.14636)
Catalyst Control Center InstallProxy (Version: 2011.0406.912.14636)
Catalyst Control Center Localization All (Version: 2011.0406.912.14636)
Catalyst Control Center Profiles Mobile (Version: 2011.0406.912.14636)
ccc-utility64 (Version: 2011.0406.912.14636)
CCC Help Chinese Standard (Version: 2011.0406.0911.14636)
CCC Help Chinese Traditional (Version: 2011.0406.0911.14636)
CCC Help Czech (Version: 2011.0406.0911.14636)
CCC Help Danish (Version: 2011.0406.0911.14636)
CCC Help Dutch (Version: 2011.0406.0911.14636)
CCC Help English (Version: 2011.0406.0911.14636)
CCC Help Finnish (Version: 2011.0406.0911.14636)
CCC Help French (Version: 2011.0406.0911.14636)
CCC Help German (Version: 2011.0406.0911.14636)
CCC Help Greek (Version: 2011.0406.0911.14636)
CCC Help Hungarian (Version: 2011.0406.0911.14636)
CCC Help Italian (Version: 2011.0406.0911.14636)
CCC Help Japanese (Version: 2011.0406.0911.14636)
CCC Help Korean (Version: 2011.0406.0911.14636)
CCC Help Norwegian (Version: 2011.0406.0911.14636)
CCC Help Polish (Version: 2011.0406.0911.14636)
CCC Help Portuguese (Version: 2011.0406.0911.14636)
CCC Help Russian (Version: 2011.0406.0911.14636)
CCC Help Spanish (Version: 2011.0406.0911.14636)
CCC Help Swedish (Version: 2011.0406.0911.14636)
CCC Help Thai (Version: 2011.0406.0911.14636)
CCC Help Turkish (Version: 2011.0406.0911.14636)
Complemento Messenger (Version: 15.4.3502.0922)
Complément Messenger (Version: 15.4.3502.0922)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (Version: 15.4.5722.2)
CyberLink Power2Go (Version: 6.1.3602c)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DFOLauncher
ETDWare PS/2-X64 8.0.5.1_WHQL (Version: 8.0.5.1)
F.lux
Fast Boot (Version: 1.0.9)
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Google Chrome (Version: 24.0.1312.57)
Google Drive (Version: 1.7.4018.3496)
Google Update Helper (Version: 1.3.21.123)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photosmart C4700 All-in-One Driver 14.0 Rel. 6 (Version: 14.0)
Java Auto Updater (Version: 2.0.7.2)
Java™ 6 Update 37 (Version: 6.0.370)
Junk Mail filter update (Version: 15.4.3502.0922)
League of Legends (Version: 1.3)
LOLReplay (Version: 0.8.0.1)
Mabinogi
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MapleStory
McAfee Security Scan Plus (Version: 2.1.121.2)
Mesh Runtime (Version: 15.4.5722.2)
Messenger ???? (Version: 15.4.3502.0922)
Messenger ????? (Version: 15.4.3502.0922)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft PowerPoint Viewer (Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
Network64 (Version: 140.0.215.000)
Nexon Game Manager
Pokemon Online 2.0.07
PS_AIO_06_C4700_SW_Min (Version: 140.0.690.000)
Realtek Ethernet Controller Driver (Version: 7.42.304.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6329)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30127)
Scan (Version: 140.0.80.000)
SCHTHACK PSOBB Compatibility Database
Secunia PSI (2.0.0.4003) (Version: 2.0.0.4003)
Skype Click to Call (Version: 6.5.11422)
Skype™ 6.1 (Version: 6.1.129)
Smart Defrag 2 (Version: 2.3)
Sonic Focus (Version: 1.00.0000)
Sothink SWF Decompiler (Version: 7.3)
SpywareBlaster 4.6 (Version: 4.6.0)
Starcraft
Status (Version: 140.0.212.000)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.5.1006)
System Requirements Lab CYRI (Version: 4.5.1.0)
Toolbox (Version: 140.0.428.000)
Transmission-Qt (Version: 2.76)
TrayApp (Version: 140.0.212.000)
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
WebTablet FB Plugin (Version: 2.0.0.1)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinFlash (Version: 2.31.1)
WinRAR 4.11 (32-bit) (Version: 4.11.0)
WMV9/VC-1 Video Playback (Version: 1.00.0000)

========================= Memory info: ===================================

Percentage of memory in use: 57%
Total physical RAM: 3691.72 MB
Available physical RAM: 1575.23 MB
Total Pagefile: 7381.58 MB
Available Pagefile: 4710.53 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.91 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:200.28 GB) (Free:119.64 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:240.48 GB) (Free:240.39 GB) NTFS
3 Drive e: (BROODWAR) (CDROM) (Total:0.61 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\HO-PC

Administrator Guest Ho

========================= Restore Points ==================================


**** End of log ****

Farbar Service Scanner:

Farbar Service Scanner Version: 30-01-2013
Ran by Ho (administrator) on 03-02-2013 at 17:52:23
Running from "C:\Users\Ho\Downloads"
Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is set to Disabled. The default start type is Auto.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Adware Cleaner:

# AdwCleaner v2.110 - Logfile created 02/03/2013 at 19:33:16
# Updated 03/02/2013 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Ho - HO-PC
# Boot Mode : Normal
# Running from : C:\Users\Ho\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\user.js

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C3110516-8EFC-49D6-8B72-69354F332062}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\Ho\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [297 octets] - [03/02/2013 17:56:17]
AdwCleaner[S2].txt - [297 octets] - [03/02/2013 18:04:22]
AdwCleaner[S3].txt - [859 octets] - [03/02/2013 19:33:16]

########## EOF - C:\AdwCleaner[S3].txt - [918 octets] ##########

Junkware Removal Tool:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.2 (02.02.2013:2)
OS: Windows 7 Home Premium x64
Ran by Ho on Sun 02/03/2013 at 19:49:58.66
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 02/03/2013 at 20:10:31.65
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Rkill:

Rkill 2.4.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/03/2013 07:45:04 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\SysWOW64\ACEngSvr.exe (PID: 3368) [WD-HEUR]
* C:\Users\Ho\Local Settings\Apps\F.lux\flux.exe (PID: 1740) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* Advanced Explorer Setting Removed: HideIcons [HKCU]

Backup Registry file created at:
C:\Users\Ho\Desktop\rkill\rkill-02-03-2013-07-45-11.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* COM+ Event System (EventSystem) is not Running.
Startup Type set to: Disabled

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com

20 out of 15150 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 02/03/2013 07:45:26 PM
Execution time: 0 hours(s), 0 minute(s), and 22 seconds(s)

AutRkill 2.4.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/03/2013 07:45:04 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\SysWOW64\ACEngSvr.exe (PID: 3368) [WD-HEUR]
* C:\Users\Ho\Local Settings\Apps\F.lux\flux.exe (PID: 1740) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* Advanced Explorer Setting Removed: HideIcons [HKCU]

Backup Registry file created at:
C:\Users\Ho\Desktop\rkill\rkill-02-03-2013-07-45-11.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* COM+ Event System (EventSystem) is not Running.
Startup Type set to: Disabled

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com

20 out of 15150 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 02/03/2013 07:45:26 PM
Execution time: 0 hours(s), 0 minute(s), and 22 seconds(s)

AutRkill 2.4.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/03/2013 07:45:04 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\SysWOW64\ACEngSvr.exe (PID: 3368) [WD-HEUR]
* C:\Users\Ho\Local Settings\Apps\F.lux\flux.exe (PID: 1740) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* Advanced Explorer Setting Removed: HideIcons [HKCU]

Backup Registry file created at:
C:\Users\Ho\Desktop\rkill\rkill-02-03-2013-07-45-11.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* COM+ Event System (EventSystem) is not Running.
Startup Type set to: Disabled

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com

20 out of 15150 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 02/03/2013 07:45:26 PM
Execution time: 0 hours(s), 0 minute(s), and 22 seconds(s)

Autoruns:


"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ATKMEDIA" "ATK Media" "ASUS" "c:\program files (x86)\asus\atk package\atk media\dmedia.exe"
+ "HControlUser" "HControlUser" "ASUS" "c:\program files (x86)\asus\atk package\atk hotkey\hcontroluser.exe"
+ "UpdateP2GoShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\muitransfer\muistartmenu.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "AsusVibeLauncher.lnk" "AsusVibe Application" "" "c:\program files (x86)\asus\asusvibe\asusvibelauncher.exe"
+ "Secunia PSI Tray.lnk" "Secunia PSI Tray" "Secunia" "c:\program files (x86)\secunia\psi\psi_tray.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\24.0.1312.57\installer\chrmstp.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "6891ED8383DD534612AE7605DD4CFE19873EEF2E._service_run" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\chrome.exe"
+ "Advanced SystemCare 5" "Advanced SystemCare 5 Tray" "IObit" "c:\program files (x86)\iobit\advanced systemcare 5\asctray.exe"
+ "Akamai NetSession Interface" "Akamai NetSession Client" "Akamai Technologies, Inc." "c:\users\ho\appdata\local\akamai\netsession_win.exe"
+ "F.lux" "" "" "c:\users\ho\local settings\apps\f.lux\flux.exe"
+ "Sidebar" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "SUPERAntiSpyware" "SUPERAntiSpyware Application" "SUPERAntiSpyware.com" "c:\program files\superantispyware\superantispyware.exe"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Advanced SystemCare" "ASCv5ExtMenu Module" "" "c:\program files (x86)\iobit\advanced systemcare 5\ascv5extmenu_64.dll"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Advanced SystemCare" "ASCv5ExtMenu Module" "" "c:\program files (x86)\iobit\advanced systemcare 5\ascv5extmenu_64.dll"
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "GDriveBlacklistedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSharedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncingOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Skype add-on for Internet Explorer" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\ssv.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Messenger Companion (Ctrl+Shift+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Sothink Flash Downloader For IE" "" "" "c:\program files (x86)\common files\sourcetec\swf catcher\internetexplorer.htm"
"Task Scheduler" "" "" ""
+ "\ASC5_AutoUpdate" "Advanced SystemCare Updater" "IObit" "c:\program files (x86)\iobit\advanced systemcare 5\autoupdate.exe"
+ "\ATKOSD2" "ATKOSD2" "ASUS" "c:\program files (x86)\asus\atk package\atkosd2\atkosd2.exe"
+ "\Express FilesUpdate" "" "" "File not found: C:\Program Files (x86)\ExpressFiles\EFUpdater.exe"
+ "\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\TabletPC\InputPersonalization" "" "" "File not found: C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\SmartDefrag_Startup" "Smart Defrag v2" "IObit" "c:\program files (x86)\iobit\smart defrag 2\smartdefrag.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AFBAgent" "ASUS FastBoot" "ASUSTeK Computer Inc." "c:\windows\system32\fbagent.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "AMD FUEL Service" "Provides FUEL Functionality" "Advanced Micro Devices, Inc." "c:\program files\ati technologies\ati.ace\fuel\fuel.service.exe"
+ "AMD Reservation Manager" "Blocks the resources for the applications at the software level." "Advanced Micro Devices" "c:\program files\ati technologies\ati.ace\reservation manager\amd reservation manager.exe"
+ "ASLDRService" "ASLDR Service" "ASUS" "c:\program files (x86)\asus\atk package\atk hotkey\asldrsrv.exe"
+ "ATKGFNEXSrv" "GFNEXSrv" "ASUS" "c:\program files (x86)\asus\atk package\atkgfnex\gfnexsrv.exe"
+ "cvhsvc" "Client Virtualization Handler Service (unlocalized description)" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll"
+ "HPSLPSVC" "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable" "Hewlett-Packard Co." "c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll"
+ "McComponentHostService" "McAfee Security Scan Component Host Service" "McAfee, Inc." "c:\program files (x86)\mcafee security scan\2.1.121\mcchsvc.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\nissrv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "Secunia PSI Agent" "Performs routine software inspections of the system, the results of which can be seen in your Secunia PSI" "Secunia" "c:\program files (x86)\secunia\psi\psia.exe"
+ "Secunia Update Agent" "Performs routine updates of selected software on the system, the results of which can be seen in your Secunia PSI" "Secunia" "c:\program files (x86)\secunia\psi\sua.exe"
+ "sftlist" "Streams and manages applications." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"
+ "sftvsa" "Monitors global service events and launches virtual services." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "TabletServicePen" "Tablet Service for consumer driver" "Wacom Technology, Corp." "c:\program files\tablet\pen\pen_tablet.exe"
+ "TouchServicePen" "Touch Service" "Wacom Technology, Corp." "c:\program files\tablet\pen\pen_touchservice.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amd_sata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amd_sata.sys"
+ "amd_xata" "Stor Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amd_xata.sys"
+ "amdiox64" "AMD IO Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdiox64.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AODDriver4.0" "" "" "File not found: C:\Windows\System32\Drivers\AODDriver4.0.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "ASMMAP64" "Memory mapping Driver" "ASUS" "c:\program files (x86)\asus\atk package\atkgfnex\asmmap64.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "AtiHDAudioService" "AMD High Definition Audio Function Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\atihdw76.sys"
+ "ATKWMIACPIIO" "ATK WMIACPI Utility" "ASUS" "c:\program files (x86)\asus\atk package\atk wmiacpi\atkwmiacpi64.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "EagleX64" "" "" "File not found: C:\Windows\System32\Drivers\EagleX64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "ETD" "ETD Kernel Center" "ELAN Microelectronics Corp." "c:\windows\system32\drivers\etd.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "kbfiltr" "Keyboard Filter Driver" " " "c:\windows\system32\drivers\kbfiltr.sys"
+ "L1C" "Atheros L1c PCI-E Gigabit Ethernet Controller" "Atheros Communications, Inc." "c:\windows\system32\drivers\l1c62x64.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PSI" "PSI mini-filter driver" "Secunia" "c:\windows\system32\drivers\psi_mf.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "SASDIFSV" "SASDIFSV64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv64.sys"
+ "SASKUTIL" "SASKUTIL64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSGbeLH" "NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisg664.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SmartDefragDriver" "File driver of SmartDefrag" "" "c:\windows\system32\drivers\smartdefragdriver.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "usbfilter" "AMD USB Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\usbfilter.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "wacmoumonitor" "Wacom HID Mouse Monitor Filter Driver" "Wacom Technology" "c:\windows\system32\drivers\wacmoumonitor.sys"
+ "wacommousefilter" "Wacom Mouse Filter Driver" "Wacom Technology" "c:\windows\system32\drivers\wacommousefilter.sys"
+ "wacomvhid" "Virtual Hid Device" "Wacom Technology" "c:\windows\system32\drivers\wacomvhid.sys"
+ "X6va006" "" "" "File not found: C:\Windows\System32\Drivers\X6va006.sys"
+ "X6va008" "" "" "File not found: C:\Windows\System32\Drivers\X6va008.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ASUS Color Preview Filter" "ASUS Color Preview Filter" "ASUSTek" "c:\program files (x86)\asus\splendid\rgbtran.ax"
+ "Color Convert" "ASUS Color Preview Filter" "ASUSTek" "c:\program files (x86)\asus\splendid\rgbtran.ax"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "hpf3l70v.dll" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3l70v.dll"
"C:\Users\Ho\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Power4Gear" "ASUS Power4Gear Utility" "ASUSTek Corporation" "C:\Program Files\Windows Sidebar\Shared Gadgets\P4GUpdate.Gadget\Gadget.xml"

I'm sorry if the last one looks really weird. I'm not sure if it's supposed to come out like that. I'll see if I can do another run of it.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:31 AM

Posted 04 February 2013 - 07:16 AM

Press Windows+R key and type

services.msc and click ok

Right click on COM+ Event System service-properties

Change the startup type to automatic and start it

Restart the PC and try to update

Any current issues?

#7 Fysea

Fysea
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 05 February 2013 - 01:23 AM

I was able to use Windows Update! (: Thanks a bunch!

But a new problem is that I cannot turn on Microsoft Security Essentials.

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:31 AM

Posted 05 February 2013 - 01:33 AM

Reinstall microsoft security essentials and let me know if that worked.

#9 Fysea

Fysea
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 05 February 2013 - 01:22 PM

Thank you so much! Microsoft Security Essentials was able to turn on after I re-installed it. I deeply appreciate your patience and help, thank you again. :)

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:31 AM

Posted 05 February 2013 - 01:59 PM

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#11 Fysea

Fysea
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:31 AM

Posted 05 February 2013 - 07:59 PM

Thank you again! And happy safe surfing.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:31 AM

Posted 05 February 2013 - 08:11 PM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users