Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

two of my cards have unauthorized charges - means keylogger?


  • Please log in to reply
17 replies to this topic

#1 todo1

todo1

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 04 March 2013 - 11:02 PM

One credit card and one master card have unauthorized charges on them. The fact that it happened to two of my cards rather than one and the fact I rarely use them away from home means my computer was somehow involved. It seems like I have a keylogger installed on my computer that got my card numbers. 

 

 

OS - Windows 7 Home

 

I did have a couple of "funny"/shady app's installed around the same time. (I forgot to unmark "install this too".) One of them was iminent. The other one was more annoying, so I uninstalled it after a few days, while imiment is still sitting on my computer. 

 

I would like to avoid reformatting my computer, if possible.

 

Edit: I ran MalwareBytes full scan, and it detected no malicious items. 


Edited by todo1, 05 March 2013 - 12:30 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:48 AM

Posted 10 March 2013 - 08:08 PM

Hello todo1, it is possibly a keylogger or a back door trojan and/or rootkit..

 

Please Download http://www.bleepingcomputer.com/download/tdsskiller/dl/4/  TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download Minitoolbox save it to your desktop and run it.Checkmark the following checkboxes:
 

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

 

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

 

>>>

 

Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.


>>>>

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

 

NOTE:Sometimes if ESET finds no infections it will not create a log.


Edited by boopme, 10 March 2013 - 08:14 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 14 March 2013 - 11:52 PM

23:32:46.0573 3288  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:32:46.0948 3288  ============================================================
23:32:46.0948 3288  Current date / time: 2013/03/13 23:32:46.0948
23:32:46.0948 3288  SystemInfo:
23:32:46.0948 3288  
23:32:46.0948 3288  OS Version: 6.1.7601 ServicePack: 1.0
23:32:46.0948 3288  Product type: Workstation
23:32:46.0949 3288  ComputerName: User1-PC
23:32:46.0949 3288  UserName: User1
23:32:46.0949 3288  Windows directory: C:\Windows
23:32:46.0949 3288  System windows directory: C:\Windows
23:32:46.0949 3288  Running under WOW64
23:32:46.0949 3288  Processor architecture: Intel x64
23:32:46.0949 3288  Number of processors: 8
23:32:46.0949 3288  Page size: 0x1000
23:32:46.0949 3288  Boot type: Normal boot
23:32:46.0949 3288  ============================================================
23:32:47.0555 3288  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:32:47.0576 3288  ============================================================
23:32:47.0576 3288  \Device\Harddisk0\DR0:
23:32:47.0576 3288  MBR partitions:
23:32:47.0576 3288  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x187F000
23:32:47.0576 3288  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1893000, BlocksNum 0xE7575000
23:32:47.0576 3288  ============================================================
23:32:47.0590 3288  C: <-> \Device\Harddisk0\DR0\Partition2
23:32:47.0591 3288  ============================================================
23:32:47.0591 3288  Initialize success
23:32:47.0591 3288  ============================================================
23:32:52.0015 4672  ============================================================
23:32:52.0015 4672  Scan started
23:32:52.0015 4672  Mode: Manual; 
23:32:52.0015 4672  ============================================================
23:32:52.0236 4672  ================ Scan system memory ========================
23:32:52.0236 4672  System memory - ok
23:32:52.0236 4672  ================ Scan services =============================
23:32:52.0367 4672  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:32:52.0369 4672  1394ohci - ok
23:32:52.0387 4672  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:32:52.0390 4672  ACPI - ok
23:32:52.0399 4672  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:32:52.0400 4672  AcpiPmi - ok
23:32:52.0489 4672  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:32:52.0491 4672  AdobeARMservice - ok
23:32:52.0545 4672  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:32:52.0547 4672  AdobeFlashPlayerUpdateSvc - ok
23:32:52.0572 4672  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
23:32:52.0576 4672  adp94xx - ok
23:32:52.0581 4672  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
23:32:52.0584 4672  adpahci - ok
23:32:52.0587 4672  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
23:32:52.0589 4672  adpu320 - ok
23:32:52.0605 4672  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:32:52.0607 4672  AeLookupSvc - ok
23:32:52.0649 4672  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
23:32:52.0652 4672  AFD - ok
23:32:52.0662 4672  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
23:32:52.0664 4672  agp440 - ok
23:32:52.0678 4672  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
23:32:52.0680 4672  ALG - ok
23:32:52.0690 4672  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:32:52.0691 4672  aliide - ok
23:32:52.0710 4672  [ 8F6C0FF277DBFE5EBED24E3543DA7BFA ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:32:52.0712 4672  AMD External Events Utility - ok
23:32:52.0719 4672  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
23:32:52.0720 4672  amdide - ok
23:32:52.0729 4672  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
23:32:52.0731 4672  AmdK8 - ok
23:32:52.0809 4672  [ 9673319070166E26660EBA4EDF316FA2 ] amdkmdag        C:\Windows\system32\DRIVERS\atipmdag.sys
23:32:52.0893 4672  amdkmdag - ok
23:32:52.0911 4672  [ 430D06D63952848E64CBBF23B5C1479E ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
23:32:52.0913 4672  amdkmdap - ok
23:32:52.0923 4672  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
23:32:52.0924 4672  AmdPPM - ok
23:32:52.0965 4672  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:32:52.0967 4672  amdsata - ok
23:32:52.0977 4672  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
23:32:52.0979 4672  amdsbs - ok
23:32:52.0991 4672  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:32:52.0991 4672  amdxata - ok
23:32:53.0036 4672  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
23:32:53.0037 4672  AppID - ok
23:32:53.0052 4672  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:32:53.0053 4672  AppIDSvc - ok
23:32:53.0070 4672  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
23:32:53.0071 4672  Appinfo - ok
23:32:53.0148 4672  [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:32:53.0149 4672  Apple Mobile Device - ok
23:32:53.0167 4672  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
23:32:53.0169 4672  arc - ok
23:32:53.0175 4672  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
23:32:53.0177 4672  arcsas - ok
23:32:53.0244 4672  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:32:53.0245 4672  aspnet_state - ok
23:32:53.0262 4672  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:32:53.0263 4672  AsyncMac - ok
23:32:53.0304 4672  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
23:32:53.0305 4672  atapi - ok
23:32:53.0324 4672  [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
23:32:53.0326 4672  AtiHdmiService - ok
23:32:53.0368 4672  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:32:53.0373 4672  AudioEndpointBuilder - ok
23:32:53.0380 4672  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:32:53.0382 4672  AudioSrv - ok
23:32:53.0401 4672  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:32:53.0402 4672  AxInstSV - ok
23:32:53.0422 4672  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
23:32:53.0426 4672  b06bdrv - ok
23:32:53.0437 4672  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:32:53.0440 4672  b57nd60a - ok
23:32:53.0482 4672  [ 849EA7A204F9F77E7B2ADB8699F7BFC8 ] bbcap           C:\Windows\system32\DRIVERS\bbcap.sys
23:32:53.0483 4672  bbcap - ok
23:32:53.0516 4672  [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
23:32:53.0518 4672  BBSvc - ok
23:32:53.0534 4672  [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
23:32:53.0536 4672  BBUpdate - ok
23:32:53.0583 4672  [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
23:32:53.0626 4672  BCM43XX - ok
23:32:53.0641 4672  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:32:53.0643 4672  BDESVC - ok
23:32:53.0651 4672  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:32:53.0652 4672  Beep - ok
23:32:53.0664 4672  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
23:32:53.0668 4672  BFE - ok
23:32:53.0692 4672  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
23:32:53.0698 4672  BITS - ok
23:32:53.0705 4672  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:32:53.0707 4672  blbdrive - ok
23:32:53.0737 4672  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:32:53.0740 4672  Bonjour Service - ok
23:32:53.0778 4672  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:32:53.0780 4672  bowser - ok
23:32:53.0782 4672  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:32:53.0783 4672  BrFiltLo - ok
23:32:53.0785 4672  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:32:53.0786 4672  BrFiltUp - ok
23:32:53.0823 4672  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
23:32:53.0825 4672  Browser - ok
23:32:53.0837 4672  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:32:53.0839 4672  Brserid - ok
23:32:53.0842 4672  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:32:53.0843 4672  BrSerWdm - ok
23:32:53.0846 4672  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:32:53.0847 4672  BrUsbMdm - ok
23:32:53.0849 4672  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:32:53.0850 4672  BrUsbSer - ok
23:32:53.0895 4672  [ 9D7BF8AB181DA27E2C13F701FCD5BD2F ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
23:32:53.0898 4672  BstHdAndroidSvc - ok
23:32:53.0903 4672  [ 781591A2EDC56188C31EF6D6AA53B66E ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
23:32:53.0905 4672  BstHdDrv - ok
23:32:53.0917 4672  [ 15C160D8419F9FE74161B88B6A8EB799 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
23:32:53.0919 4672  BstHdLogRotatorSvc - ok
23:32:53.0936 4672  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
23:32:53.0937 4672  BTHMODEM - ok
23:32:53.0967 4672  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
23:32:53.0968 4672  bthserv - ok
23:32:53.0975 4672  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:32:53.0976 4672  cdfs - ok
23:32:54.0019 4672  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:32:54.0021 4672  cdrom - ok
23:32:54.0061 4672  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
23:32:54.0063 4672  CertPropSvc - ok
23:32:54.0074 4672  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
23:32:54.0075 4672  circlass - ok
23:32:54.0090 4672  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
23:32:54.0093 4672  CLFS - ok
23:32:54.0140 4672  [ 730BF325E4CC1E3935B81943AC6DA216 ] CLKMSVC10_9EC60124 C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
23:32:54.0142 4672  CLKMSVC10_9EC60124 - ok
23:32:54.0188 4672  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:32:54.0189 4672  clr_optimization_v2.0.50727_32 - ok
23:32:54.0225 4672  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:32:54.0227 4672  clr_optimization_v2.0.50727_64 - ok
23:32:54.0264 4672  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:32:54.0266 4672  clr_optimization_v4.0.30319_32 - ok
23:32:54.0278 4672  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:32:54.0280 4672  clr_optimization_v4.0.30319_64 - ok
23:32:54.0300 4672  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
23:32:54.0301 4672  CmBatt - ok
23:32:54.0313 4672  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:32:54.0315 4672  cmdide - ok
23:32:54.0359 4672  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
23:32:54.0362 4672  CNG - ok
23:32:54.0374 4672  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
23:32:54.0376 4672  Compbatt - ok
23:32:54.0386 4672  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:32:54.0387 4672  CompositeBus - ok
23:32:54.0389 4672  COMSysApp - ok
23:32:54.0400 4672  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
23:32:54.0402 4672  crcdisk - ok
23:32:54.0441 4672  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:32:54.0443 4672  CryptSvc - ok
23:32:54.0540 4672  [ 5131D2469B6B19DC20B446EBE43EBB79 ] CSIScanner      C:\Program Files\Prevx\prevx.exe
23:32:54.0625 4672  CSIScanner - ok
23:32:54.0662 4672  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:32:54.0666 4672  DcomLaunch - ok
23:32:54.0690 4672  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
23:32:54.0692 4672  defragsvc - ok
23:32:54.0736 4672  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:32:54.0737 4672  DfsC - ok
23:32:54.0756 4672  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:32:54.0759 4672  Dhcp - ok
23:32:54.0763 4672  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
23:32:54.0763 4672  discache - ok
23:32:54.0769 4672  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
23:32:54.0771 4672  Disk - ok
23:32:54.0784 4672  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:32:54.0786 4672  Dnscache - ok
23:32:54.0824 4672  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:32:54.0827 4672  dot3svc - ok
23:32:54.0839 4672  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
23:32:54.0841 4672  DPS - ok
23:32:54.0859 4672  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:32:54.0861 4672  drmkaud - ok
23:32:54.0913 4672  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
23:32:54.0916 4672  dtsoftbus01 - ok
23:32:54.0964 4672  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:32:54.0971 4672  DXGKrnl - ok
23:32:54.0981 4672  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
23:32:54.0983 4672  EapHost - ok
23:32:55.0034 4672  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
23:32:55.0076 4672  ebdrv - ok
23:32:55.0090 4672  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
23:32:55.0091 4672  EFS - ok
23:32:55.0119 4672  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:32:55.0125 4672  ehRecvr - ok
23:32:55.0141 4672  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
23:32:55.0143 4672  ehSched - ok
23:32:55.0166 4672  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
23:32:55.0172 4672  elxstor - ok
23:32:55.0210 4672  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:32:55.0211 4672  ErrDev - ok
23:32:55.0228 4672  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
23:32:55.0231 4672  EventSystem - ok
23:32:55.0235 4672  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
23:32:55.0236 4672  exfat - ok
23:32:55.0249 4672  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:32:55.0251 4672  fastfat - ok
23:32:55.0306 4672  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
23:32:55.0312 4672  Fax - ok
23:32:55.0330 4672  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
23:32:55.0331 4672  fdc - ok
23:32:55.0337 4672  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
23:32:55.0338 4672  fdPHost - ok
23:32:55.0342 4672  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:32:55.0344 4672  FDResPub - ok
23:32:55.0353 4672  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:32:55.0354 4672  FileInfo - ok
23:32:55.0360 4672  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:32:55.0362 4672  Filetrace - ok
23:32:55.0407 4672  [ 8669BE94F63944E4F899C3950B520241 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
23:32:55.0414 4672  FLEXnet Licensing Service - ok
23:32:55.0416 4672  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
23:32:55.0417 4672  flpydisk - ok
23:32:55.0432 4672  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:32:55.0434 4672  FltMgr - ok
23:32:55.0492 4672  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
23:32:55.0509 4672  FontCache - ok
23:32:55.0555 4672  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:32:55.0556 4672  FontCache3.0.0.0 - ok
23:32:55.0566 4672  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:32:55.0568 4672  FsDepends - ok
23:32:55.0587 4672  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:32:55.0589 4672  Fs_Rec - ok
23:32:55.0626 4672  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:32:55.0628 4672  fvevol - ok
23:32:55.0639 4672  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
23:32:55.0641 4672  gagp30kx - ok
23:32:55.0692 4672  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:32:55.0693 4672  GEARAspiWDM - ok
23:32:55.0707 4672  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
23:32:55.0714 4672  gpsvc - ok
23:32:55.0796 4672  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:32:55.0798 4672  gupdate - ok
23:32:55.0801 4672  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:32:55.0802 4672  gupdatem - ok
23:32:55.0815 4672  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:32:55.0816 4672  hcw85cir - ok
23:32:55.0857 4672  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:32:55.0859 4672  HDAudBus - ok
23:32:55.0873 4672  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
23:32:55.0874 4672  HidBatt - ok
23:32:55.0890 4672  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
23:32:55.0892 4672  HidBth - ok
23:32:55.0918 4672  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
23:32:55.0920 4672  HidIr - ok
23:32:55.0936 4672  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
23:32:55.0938 4672  hidserv - ok
23:32:55.0947 4672  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
23:32:55.0948 4672  HidUsb - ok
23:32:55.0983 4672  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:32:55.0986 4672  hkmsvc - ok
23:32:55.0994 4672  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:32:55.0996 4672  HomeGroupListener - ok
23:32:56.0009 4672  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:32:56.0012 4672  HomeGroupProvider - ok
23:32:56.0035 4672  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:32:56.0037 4672  HpSAMD - ok
23:32:56.0059 4672  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:32:56.0065 4672  HTTP - ok
23:32:56.0103 4672  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:32:56.0103 4672  hwpolicy - ok
23:32:56.0149 4672  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
23:32:56.0150 4672  i8042prt - ok
23:32:56.0168 4672  [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
23:32:56.0170 4672  iaStor - ok
23:32:56.0202 4672  [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
23:32:56.0202 4672  IAStorDataMgrSvc - ok
23:32:56.0246 4672  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:32:56.0249 4672  iaStorV - ok
23:32:56.0277 4672  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:32:56.0283 4672  idsvc - ok
23:32:56.0297 4672  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
23:32:56.0299 4672  iirsp - ok
23:32:56.0320 4672  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
23:32:56.0326 4672  IKEEXT - ok
23:32:56.0352 4672  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
23:32:56.0353 4672  Impcd - ok
23:32:56.0392 4672  [ 235362D403D9D677514649D88DB31914 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:32:56.0426 4672  IntcAzAudAddService - ok
23:32:56.0561 4672  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
23:32:56.0564 4672  IntcDAud - ok
23:32:56.0574 4672  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
23:32:56.0576 4672  intelide - ok
23:32:56.0591 4672  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:32:56.0592 4672  intelppm - ok
23:32:56.0613 4672  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:32:56.0615 4672  IPBusEnum - ok
23:32:56.0653 4672  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:32:56.0654 4672  IpFilterDriver - ok
23:32:56.0701 4672  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:32:56.0705 4672  iphlpsvc - ok
23:32:56.0739 4672  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:32:56.0740 4672  IPMIDRV - ok
23:32:56.0750 4672  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:32:56.0752 4672  IPNAT - ok
23:32:56.0800 4672  [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
23:32:56.0807 4672  iPod Service - ok
23:32:56.0813 4672  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:32:56.0814 4672  IRENUM - ok
23:32:56.0824 4672  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:32:56.0826 4672  isapnp - ok
23:32:56.0841 4672  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:32:56.0844 4672  iScsiPrt - ok
23:32:56.0852 4672  [ 12E27942DBB7C91880163634B0D8A776 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
23:32:56.0856 4672  k57nd60a - ok
23:32:56.0876 4672  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
23:32:56.0877 4672  kbdclass - ok
23:32:56.0893 4672  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
23:32:56.0894 4672  kbdhid - ok
23:32:56.0905 4672  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
23:32:56.0906 4672  KeyIso - ok
23:32:56.0953 4672  [ AA4BE833F9BA155312F5A47E2474F153 ] KeyScrambler    C:\Windows\system32\drivers\keyscrambler.sys
23:32:56.0954 4672  KeyScrambler - ok
23:32:56.0991 4672  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:32:56.0993 4672  KSecDD - ok
23:32:57.0001 4672  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:32:57.0002 4672  KSecPkg - ok
23:32:57.0014 4672  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:32:57.0015 4672  ksthunk - ok
23:32:57.0025 4672  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:32:57.0028 4672  KtmRm - ok
23:32:57.0047 4672  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
23:32:57.0049 4672  LanmanServer - ok
23:32:57.0058 4672  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:32:57.0060 4672  LanmanWorkstation - ok
23:32:57.0072 4672  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:32:57.0073 4672  lltdio - ok
23:32:57.0082 4672  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:32:57.0085 4672  lltdsvc - ok
23:32:57.0100 4672  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:32:57.0102 4672  lmhosts - ok
23:32:57.0115 4672  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
23:32:57.0116 4672  LSI_FC - ok
23:32:57.0124 4672  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
23:32:57.0126 4672  LSI_SAS - ok
23:32:57.0136 4672  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:32:57.0137 4672  LSI_SAS2 - ok
23:32:57.0152 4672  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:32:57.0153 4672  LSI_SCSI - ok
23:32:57.0166 4672  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
23:32:57.0168 4672  luafv - ok
23:32:57.0205 4672  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:32:57.0207 4672  Mcx2Svc - ok
23:32:57.0220 4672  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
23:32:57.0221 4672  megasas - ok
23:32:57.0234 4672  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
23:32:57.0236 4672  MegaSR - ok
23:32:57.0250 4672  [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
23:32:57.0252 4672  MEIx64 - ok
23:32:57.0259 4672  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
23:32:57.0261 4672  MMCSS - ok
23:32:57.0272 4672  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
23:32:57.0274 4672  Modem - ok
23:32:57.0284 4672  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:32:57.0285 4672  monitor - ok
23:32:57.0314 4672  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:32:57.0315 4672  mouclass - ok
23:32:57.0323 4672  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:32:57.0324 4672  mouhid - ok
23:32:57.0360 4672  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:32:57.0361 4672  mountmgr - ok
23:32:57.0400 4672  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:32:57.0401 4672  MozillaMaintenance - ok
23:32:57.0445 4672  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
23:32:57.0447 4672  MpFilter - ok
23:32:57.0487 4672  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:32:57.0489 4672  mpio - ok
23:32:57.0501 4672  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:32:57.0503 4672  mpsdrv - ok
23:32:57.0549 4672  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:32:57.0555 4672  MpsSvc - ok
23:32:57.0597 4672  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:32:57.0599 4672  MRxDAV - ok
23:32:57.0633 4672  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:32:57.0635 4672  mrxsmb - ok
23:32:57.0648 4672  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:32:57.0650 4672  mrxsmb10 - ok
23:32:57.0693 4672  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:32:57.0695 4672  mrxsmb20 - ok
23:32:57.0701 4672  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:32:57.0702 4672  msahci - ok
23:32:57.0716 4672  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:32:57.0718 4672  msdsm - ok
23:32:57.0729 4672  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
23:32:57.0731 4672  MSDTC - ok
23:32:57.0745 4672  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:32:57.0745 4672  Msfs - ok
23:32:57.0765 4672  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:32:57.0766 4672  mshidkmdf - ok
23:32:57.0773 4672  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:32:57.0773 4672  msisadrv - ok
23:32:57.0780 4672  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:32:57.0782 4672  MSiSCSI - ok
23:32:57.0784 4672  msiserver - ok
23:32:57.0802 4672  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:32:57.0803 4672  MSKSSRV - ok
23:32:57.0845 4672  [ 103B3BBE23AB774B009D182276EC6786 ] msloop          C:\Windows\system32\DRIVERS\loop.sys
23:32:57.0847 4672  msloop - ok
23:32:57.0917 4672  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
23:32:57.0918 4672  MsMpSvc - ok
23:32:57.0930 4672  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:32:57.0931 4672  MSPCLOCK - ok
23:32:57.0937 4672  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:32:57.0939 4672  MSPQM - ok
23:32:57.0953 4672  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:32:57.0956 4672  MsRPC - ok
23:32:57.0966 4672  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:32:57.0966 4672  mssmbios - ok
23:32:58.0029 4672  MSSQL$SQLEXPRESS - ok
23:32:58.0139 4672  [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
23:32:58.0140 4672  MSSQLServerADHelper100 - ok
23:32:58.0143 4672  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:32:58.0144 4672  MSTEE - ok
23:32:58.0157 4672  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
23:32:58.0158 4672  MTConfig - ok
23:32:58.0164 4672  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
23:32:58.0165 4672  Mup - ok
23:32:58.0202 4672  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
23:32:58.0207 4672  napagent - ok
23:32:58.0231 4672  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:32:58.0233 4672  NativeWifiP - ok
23:32:58.0279 4672  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:32:58.0286 4672  NDIS - ok
23:32:58.0294 4672  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:32:58.0295 4672  NdisCap - ok
23:32:58.0307 4672  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:32:58.0308 4672  NdisTapi - ok
23:32:58.0343 4672  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:32:58.0345 4672  Ndisuio - ok
23:32:58.0356 4672  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:32:58.0358 4672  NdisWan - ok
23:32:58.0399 4672  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:32:58.0400 4672  NDProxy - ok
23:32:58.0405 4672  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:32:58.0406 4672  NetBIOS - ok
23:32:58.0418 4672  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:32:58.0420 4672  NetBT - ok
23:32:58.0429 4672  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
23:32:58.0430 4672  Netlogon - ok
23:32:58.0457 4672  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
23:32:58.0460 4672  Netman - ok
23:32:58.0503 4672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:32:58.0505 4672  NetMsmqActivator - ok
23:32:58.0507 4672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:32:58.0508 4672  NetPipeActivator - ok
23:32:58.0526 4672  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
23:32:58.0531 4672  netprofm - ok
23:32:58.0533 4672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:32:58.0534 4672  NetTcpActivator - ok
23:32:58.0536 4672  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:32:58.0537 4672  NetTcpPortSharing - ok
23:32:58.0560 4672  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
23:32:58.0562 4672  nfrd960 - ok
23:32:58.0610 4672  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
23:32:58.0612 4672  NisDrv - ok
23:32:58.0627 4672  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
23:32:58.0630 4672  NisSrv - ok
23:32:58.0650 4672  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:32:58.0653 4672  NlaSvc - ok
23:32:58.0732 4672  [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
23:32:58.0775 4672  NOBU - ok
23:32:58.0780 4672  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:32:58.0781 4672  Npfs - ok
23:32:58.0799 4672  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
23:32:58.0801 4672  nsi - ok
23:32:58.0811 4672  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:32:58.0811 4672  nsiproxy - ok
23:32:58.0867 4672  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:32:58.0892 4672  Ntfs - ok
23:32:58.0899 4672  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
23:32:58.0900 4672  Null - ok
23:32:58.0918 4672  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:32:58.0919 4672  nvraid - ok
23:32:58.0961 4672  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:32:58.0963 4672  nvstor - ok
23:32:59.0003 4672  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:32:59.0005 4672  nv_agp - ok
23:32:59.0016 4672  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:32:59.0018 4672  ohci1394 - ok
23:32:59.0093 4672  OracleJobSchedulerXE - ok
23:32:59.0095 4672  OracleMTSRecoveryService - ok
23:32:59.0097 4672  OracleServiceXE - ok
23:32:59.0100 4672  OracleXEClrAgent - ok
23:32:59.0147 4672  [ 788D4CD078E3D55D92C4B986C739DA43 ] OracleXETNSListener C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe
23:32:59.0151 4672  OracleXETNSListener - ok
23:32:59.0194 4672  [ 771E4808BA2229B5DA9D27F0B1E5D61F ] OraFenceService C:\Windows\system32\drivers\OraFenceService.sys
23:32:59.0196 4672  OraFenceService - ok
23:32:59.0228 4672  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:32:59.0231 4672  p2pimsvc - ok
23:32:59.0242 4672  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
23:32:59.0246 4672  p2psvc - ok
23:32:59.0255 4672  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
23:32:59.0258 4672  Parport - ok
23:32:59.0295 4672  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:32:59.0297 4672  partmgr - ok
23:32:59.0304 4672  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:32:59.0306 4672  PcaSvc - ok
23:32:59.0358 4672  [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
23:32:59.0359 4672  PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
23:32:59.0374 4672  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
23:32:59.0376 4672  pci - ok
23:32:59.0384 4672  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
23:32:59.0385 4672  pciide - ok
23:32:59.0396 4672  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
23:32:59.0398 4672  pcmcia - ok
23:32:59.0407 4672  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:32:59.0407 4672  pcw - ok
23:32:59.0426 4672  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:32:59.0430 4672  PEAUTH - ok
23:32:59.0478 4672  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:32:59.0480 4672  PerfHost - ok
23:32:59.0535 4672  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
23:32:59.0560 4672  pla - ok
23:32:59.0604 4672  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:32:59.0608 4672  PlugPlay - ok
23:32:59.0619 4672  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:32:59.0621 4672  PNRPAutoReg - ok
23:32:59.0625 4672  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:32:59.0627 4672  PNRPsvc - ok
23:32:59.0643 4672  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:32:59.0647 4672  PolicyAgent - ok
23:32:59.0661 4672  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
23:32:59.0664 4672  Power - ok
23:32:59.0708 4672  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:32:59.0710 4672  PptpMiniport - ok
23:32:59.0723 4672  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
23:32:59.0724 4672  Processor - ok
23:32:59.0759 4672  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:32:59.0762 4672  ProfSvc - ok
23:32:59.0770 4672  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:32:59.0770 4672  ProtectedStorage - ok
23:32:59.0812 4672  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:32:59.0813 4672  Psched - ok
23:32:59.0833 4672  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
23:32:59.0834 4672  PxHlpa64 - ok
23:32:59.0863 4672  [ BA5F7C107EACE67973B4B798832A74C7 ] pxkbf           C:\Windows\system32\drivers\pxkbf.sys
23:32:59.0865 4672  pxkbf - ok
23:32:59.0878 4672  [ 007E57428802F587D0D6737AE7A9D989 ] pxrts           C:\Windows\system32\drivers\pxrts.sys
23:32:59.0880 4672  pxrts - ok
23:32:59.0890 4672  [ 66D4D00C8908888A68B749D91F1E6789 ] pxscan          C:\Windows\system32\drivers\pxscan.sys
23:32:59.0891 4672  pxscan - ok
23:32:59.0913 4672  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
23:32:59.0939 4672  ql2300 - ok
23:32:59.0947 4672  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
23:32:59.0949 4672  ql40xx - ok
23:32:59.0966 4672  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
23:32:59.0969 4672  QWAVE - ok
23:32:59.0977 4672  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:32:59.0979 4672  QWAVEdrv - ok
23:32:59.0984 4672  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:32:59.0986 4672  RasAcd - ok
23:32:59.0988 4672  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:32:59.0989 4672  RasAgileVpn - ok
23:33:00.0001 4672  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
23:33:00.0003 4672  RasAuto - ok
23:33:00.0012 4672  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:33:00.0014 4672  Rasl2tp - ok
23:33:00.0036 4672  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
23:33:00.0039 4672  RasMan - ok
23:33:00.0050 4672  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:33:00.0052 4672  RasPppoe - ok
23:33:00.0060 4672  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:33:00.0062 4672  RasSstp - ok
23:33:00.0076 4672  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:33:00.0078 4672  rdbss - ok
23:33:00.0088 4672  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
23:33:00.0090 4672  rdpbus - ok
23:33:00.0100 4672  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:33:00.0101 4672  RDPCDD - ok
23:33:00.0109 4672  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:33:00.0110 4672  RDPENCDD - ok
23:33:00.0113 4672  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:33:00.0113 4672  RDPREFMP - ok
23:33:00.0150 4672  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:33:00.0152 4672  RDPWD - ok
23:33:00.0197 4672  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:33:00.0199 4672  rdyboost - ok
23:33:00.0212 4672  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:33:00.0214 4672  RemoteAccess - ok
23:33:00.0227 4672  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:33:00.0229 4672  RemoteRegistry - ok
23:33:00.0290 4672  [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
23:33:00.0306 4672  RoxMediaDB12OEM - ok
23:33:00.0320 4672  [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
23:33:00.0322 4672  RoxWatch12 - ok
23:33:00.0337 4672  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:33:00.0339 4672  RpcEptMapper - ok
23:33:00.0355 4672  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
23:33:00.0357 4672  RpcLocator - ok
23:33:00.0373 4672  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
23:33:00.0376 4672  RpcSs - ok
23:33:00.0428 4672  [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103        C:\Windows\system32\DRIVERS\RsFx0103.sys
23:33:00.0431 4672  RsFx0103 - ok
23:33:00.0445 4672  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:33:00.0447 4672  rspndr - ok
23:33:00.0452 4672  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
23:33:00.0453 4672  SamSs - ok
23:33:00.0492 4672  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:33:00.0495 4672  sbp2port - ok
23:33:00.0502 4672  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:33:00.0504 4672  SCardSvr - ok
23:33:00.0524 4672  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:33:00.0524 4672  scfilter - ok
23:33:00.0560 4672  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
23:33:00.0577 4672  Schedule - ok
23:33:00.0614 4672  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:33:00.0615 4672  SCPolicySvc - ok
23:33:00.0662 4672  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:33:00.0664 4672  SDRSVC - ok
23:33:00.0687 4672  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:33:00.0695 4672  secdrv - ok
23:33:00.0747 4672  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
23:33:00.0749 4672  seclogon - ok
23:33:00.0766 4672  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
23:33:00.0768 4672  SENS - ok
23:33:00.0777 4672  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:33:00.0779 4672  SensrSvc - ok
23:33:00.0799 4672  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
23:33:00.0800 4672  Serenum - ok
23:33:00.0808 4672  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
23:33:00.0810 4672  Serial - ok
23:33:00.0838 4672  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
23:33:00.0840 4672  sermouse - ok
23:33:00.0855 4672  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
23:33:00.0858 4672  SessionEnv - ok
23:33:00.0866 4672  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:33:00.0867 4672  sffdisk - ok
23:33:00.0873 4672  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:33:00.0875 4672  sffp_mmc - ok
23:33:00.0887 4672  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:33:00.0888 4672  sffp_sd - ok
23:33:00.0893 4672  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
23:33:00.0894 4672  sfloppy - ok
23:33:00.0937 4672  [ E1974A92AC0914A3859359A0A8C82C68 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
23:33:00.0942 4672  SftService - ok
23:33:00.0963 4672  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:33:00.0966 4672  SharedAccess - ok
23:33:00.0976 4672  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:33:00.0980 4672  ShellHWDetection - ok
23:33:00.0994 4672  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:33:00.0995 4672  SiSRaid2 - ok
23:33:01.0004 4672  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
23:33:01.0006 4672  SiSRaid4 - ok
23:33:01.0065 4672  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:33:01.0067 4672  SkypeUpdate - ok
23:33:01.0074 4672  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:33:01.0076 4672  Smb - ok
23:33:01.0086 4672  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:33:01.0088 4672  SNMPTRAP - ok
23:33:01.0096 4672  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:33:01.0096 4672  spldr - ok
23:33:01.0134 4672  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
23:33:01.0139 4672  Spooler - ok
23:33:01.0213 4672  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
23:33:01.0266 4672  sppsvc - ok
23:33:01.0272 4672  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:33:01.0274 4672  sppuinotify - ok
23:33:01.0350 4672  [ 791227582A5070BD78B7E05285D13446 ] SProtection     C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe
23:33:01.0384 4672  SProtection - ok
23:33:01.0466 4672  [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
23:33:01.0470 4672  SQLAgent$SQLEXPRESS - ok
23:33:01.0560 4672  [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser      c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
23:33:01.0563 4672  SQLBrowser - ok
23:33:01.0614 4672  [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter       c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
23:33:01.0615 4672  SQLWriter - ok
23:33:01.0857 4672  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:33:01.0863 4672  srv - ok
23:33:01.0914 4672  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:33:01.0918 4672  srv2 - ok
23:33:01.0953 4672  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:33:01.0954 4672  srvnet - ok
23:33:02.0019 4672  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:33:02.0051 4672  SSDPSRV - ok
23:33:02.0191 4672  [ DF32CE37D67439915903D49C81BF1D0E ] sshd            C:\cygwin\bin\cygrunsrv.exe
23:33:02.0193 4672  sshd - ok
23:33:02.0204 4672  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:33:02.0206 4672  SstpSvc - ok
23:33:02.0225 4672  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
23:33:02.0227 4672  stexstor - ok
23:33:02.0268 4672  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
23:33:02.0274 4672  stisvc - ok
23:33:02.0285 4672  [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr        C:\Program Files (x86)\Common Files\User1eThing Shared\stllssvr.exe
23:33:02.0286 4672  stllssvr - ok
23:33:02.0320 4672  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:33:02.0321 4672  swenum - ok
23:33:02.0331 4672  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
23:33:02.0336 4672  swprv - ok
23:33:02.0391 4672  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
23:33:02.0416 4672  SysMain - ok
23:33:02.0425 4672  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:33:02.0428 4672  TabletInputService - ok
23:33:02.0468 4672  [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
23:33:02.0469 4672  tap0901 - ok
23:33:02.0484 4672  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:33:02.0487 4672  TapiSrv - ok
23:33:02.0494 4672  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
23:33:02.0496 4672  TBS - ok
23:33:02.0568 4672  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:33:02.0594 4672  Tcpip - ok
23:33:02.0618 4672  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:33:02.0625 4672  TCPIP6 - ok
23:33:02.0676 4672  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:33:02.0677 4672  tcpipreg - ok
23:33:02.0693 4672  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:33:02.0694 4672  TDPIPE - ok
23:33:02.0706 4672  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:33:02.0707 4672  TDTCP - ok
23:33:02.0725 4672  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:33:02.0727 4672  tdx - ok
23:33:02.0738 4672  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:33:02.0740 4672  TermDD - ok
23:33:02.0758 4672  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
23:33:02.0764 4672  TermService - ok
23:33:02.0771 4672  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
23:33:02.0773 4672  Themes - ok
23:33:02.0788 4672  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
23:33:02.0788 4672  THREADORDER - ok
23:33:02.0799 4672  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
23:33:02.0801 4672  TrkWks - ok
23:33:02.0826 4672  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:33:02.0827 4672  TrustedInstaller - ok
23:33:02.0865 4672  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:33:02.0866 4672  tssecsrv - ok
23:33:02.0896 4672  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:33:02.0897 4672  TsUsbFlt - ok
23:33:02.0950 4672  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:33:02.0952 4672  tunnel - ok
23:33:02.0965 4672  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
23:33:02.0966 4672  uagp35 - ok
23:33:03.0002 4672  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:33:03.0005 4672  udfs - ok
23:33:03.0020 4672  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:33:03.0021 4672  UI0Detect - ok
23:33:03.0037 4672  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:33:03.0038 4672  uliagpkx - ok
23:33:03.0050 4672  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
23:33:03.0051 4672  umbus - ok
23:33:03.0058 4672  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
23:33:03.0059 4672  UmPass - ok
23:33:03.0073 4672  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
23:33:03.0077 4672  upnphost - ok
23:33:03.0093 4672  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:33:03.0095 4672  usbccgp - ok
23:33:03.0112 4672  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:33:03.0114 4672  usbcir - ok
23:33:03.0122 4672  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
23:33:03.0123 4672  usbehci - ok
23:33:03.0133 4672  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:33:03.0136 4672  usbhub - ok
23:33:03.0175 4672  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:33:03.0176 4672  usbohci - ok
23:33:03.0190 4672  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
23:33:03.0191 4672  usbprint - ok
23:33:03.0203 4672  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:33:03.0205 4672  USBSTOR - ok
23:33:03.0215 4672  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:33:03.0216 4672  usbuhci - ok
23:33:03.0226 4672  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
23:33:03.0227 4672  UxSms - ok
23:33:03.0233 4672  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
23:33:03.0234 4672  VaultSvc - ok
23:33:03.0286 4672  [ 72EC34F9999A5A48CFD43F5E6BD779E4 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
23:33:03.0288 4672  VBoxDrv - ok
23:33:03.0295 4672  [ A2FE818D7F930C51ADA37C04DBCB015D ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
23:33:03.0297 4672  VBoxNetAdp - ok
23:33:03.0304 4672  [ CD37A9264C404E48BCE162D37B117B45 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
23:33:03.0305 4672  VBoxNetFlt - ok
23:33:03.0324 4672  [ F649B3D30C6F40B04BDCCD0D11A43481 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
23:33:03.0326 4672  VBoxUSBMon - ok
23:33:03.0336 4672  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:33:03.0337 4672  vdrvroot - ok
23:33:03.0381 4672  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
23:33:03.0386 4672  vds - ok
23:33:03.0397 4672  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:33:03.0398 4672  vga - ok
23:33:03.0409 4672  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:33:03.0410 4672  VgaSave - ok
23:33:03.0424 4672  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
23:33:03.0427 4672  vhdmp - ok
23:33:03.0435 4672  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:33:03.0436 4672  viaide - ok
23:33:03.0479 4672  [ B2E25DB5A6A178C056342ABD747B7326 ] vmm             C:\Windows\system32\Drivers\vmm.sys
23:33:03.0482 4672  vmm - ok
23:33:03.0493 4672  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:33:03.0494 4672  volmgr - ok
23:33:03.0540 4672  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:33:03.0543 4672  volmgrx - ok
23:33:03.0553 4672  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:33:03.0556 4672  volsnap - ok
23:33:03.0589 4672  [ 6BDCA00FC57CC40DA3C8E88B2CEA21AB ] VPCNetS2        C:\Windows\system32\DRIVERS\VMNetSrv.sys
23:33:03.0590 4672  VPCNetS2 - ok
23:33:03.0605 4672  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
23:33:03.0607 4672  vsmraid - ok
23:33:03.0636 4672  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
23:33:03.0661 4672  VSS - ok
23:33:03.0673 4672  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:33:03.0674 4672  vwifibus - ok
23:33:03.0686 4672  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:33:03.0687 4672  vwififlt - ok
23:33:03.0692 4672  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
23:33:03.0693 4672  vwifimp - ok
23:33:03.0715 4672  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
23:33:03.0718 4672  W32Time - ok
23:33:03.0732 4672  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
23:33:03.0734 4672  WacomPen - ok
23:33:03.0746 4672  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:33:03.0749 4672  WANARP - ok
23:33:03.0752 4672  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:33:03.0753 4672  Wanarpv6 - ok
23:33:03.0816 4672  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
23:33:03.0841 4672  WatAdminSvc - ok
23:33:03.0870 4672  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
23:33:03.0896 4672  wbengine - ok
23:33:03.0909 4672  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:33:03.0912 4672  WbioSrvc - ok
23:33:03.0925 4672  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:33:03.0929 4672  wcncsvc - ok
23:33:03.0941 4672  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:33:03.0943 4672  WcsPlugInService - ok
23:33:03.0945 4672  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
23:33:03.0946 4672  Wd - ok
23:33:03.0997 4672  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:33:04.0002 4672  Wdf01000 - ok
23:33:04.0011 4672  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:33:04.0013 4672  WdiServiceHost - ok
23:33:04.0015 4672  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:33:04.0017 4672  WdiSystemHost - ok
23:33:04.0025 4672  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
23:33:04.0028 4672  WebClient - ok
23:33:04.0034 4672  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:33:04.0037 4672  Wecsvc - ok
23:33:04.0049 4672  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:33:04.0051 4672  wercplsupport - ok
23:33:04.0070 4672  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:33:04.0072 4672  WerSvc - ok
23:33:04.0078 4672  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:33:04.0080 4672  WfpLwf - ok
23:33:04.0113 4672  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
23:33:04.0115 4672  WimFltr - ok
23:33:04.0117 4672  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:33:04.0118 4672  WIMMount - ok
23:33:04.0126 4672  WinDefend - ok
23:33:04.0130 4672  WinHttpAutoProxySvc - ok
23:33:04.0162 4672  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:33:04.0164 4672  Winmgmt - ok
23:33:04.0229 4672  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
23:33:04.0263 4672  WinRM - ok
23:33:04.0296 4672  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:33:04.0297 4672  WinUsb - ok
23:33:04.0321 4672  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:33:04.0329 4672  Wlansvc - ok
23:33:04.0350 4672  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:33:04.0352 4672  wlcrasvc - ok
23:33:04.0418 4672  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:33:04.0452 4672  wlidsvc - ok
23:33:04.0486 4672  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:33:04.0488 4672  WmiAcpi - ok
23:33:04.0503 4672  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:33:04.0505 4672  wmiApSrv - ok
23:33:04.0519 4672  WMPNetworkSvc - ok
23:33:04.0522 4672  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:33:04.0524 4672  WPCSvc - ok
23:33:04.0562 4672  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:33:04.0564 4672  WPDBusEnum - ok
23:33:04.0576 4672  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:33:04.0577 4672  ws2ifsl - ok
23:33:04.0592 4672  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
23:33:04.0595 4672  wscsvc - ok
23:33:04.0596 4672  WSearch - ok
23:33:04.0637 4672  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:33:04.0671 4672  wuauserv - ok
23:33:04.0704 4672  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:33:04.0706 4672  WudfPf - ok
23:33:04.0721 4672  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:33:04.0723 4672  WUDFRd - ok
23:33:04.0759 4672  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:33:04.0762 4672  wudfsvc - ok
23:33:04.0770 4672  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:33:04.0773 4672  WwanSvc - ok
23:33:04.0792 4672  ================ Scan global ===============================
23:33:04.0807 4672  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:33:04.0847 4672  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:33:04.0852 4672  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:33:04.0863 4672  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:33:04.0886 4672  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:33:04.0890 4672  [Global] - ok
23:33:04.0890 4672  ================ Scan MBR ==================================
23:33:04.0900 4672  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:33:05.0047 4672  \Device\Harddisk0\DR0 - ok
23:33:05.0047 4672  ================ Scan VBR ==================================
23:33:05.0049 4672  [ 2D2A3D6F1FABA64ECA242B6E27378A82 ] \Device\Harddisk0\DR0\Partition1
23:33:05.0050 4672  \Device\Harddisk0\DR0\Partition1 - ok
23:33:05.0069 4672  [ 7A13B12277943151B021F6A2B7E14AB3 ] \Device\Harddisk0\DR0\Partition2
23:33:05.0071 4672  \Device\Harddisk0\DR0\Partition2 - ok
23:33:05.0071 4672  ============================================================
23:33:05.0071 4672  Scan finished
23:33:05.0071 4672  ============================================================
23:33:05.0076 10508  Detected object count: 0
23:33:05.0076 10508  Actual detected object count: 0
23:33:22.0925 5792  ============================================================
23:33:22.0925 5792  Scan started
23:33:22.0925 5792  Mode: Manual; TDLFS; 
23:33:22.0925 5792  ============================================================
23:33:23.0157 5792  ================ Scan system memory ========================
23:33:23.0157 5792  System memory - ok
23:33:23.0157 5792  ================ Scan services =============================
23:33:23.0241 5792  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:33:23.0242 5792  1394ohci - ok
23:33:23.0253 5792  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:33:23.0254 5792  ACPI - ok
23:33:23.0265 5792  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:33:23.0265 5792  AcpiPmi - ok
23:33:23.0330 5792  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:33:23.0330 5792  AdobeARMservice - ok
23:33:23.0386 5792  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:33:23.0387 5792  AdobeFlashPlayerUpdateSvc - ok
23:33:23.0405 5792  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
23:33:23.0407 5792  adp94xx - ok
23:33:23.0413 5792  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
23:33:23.0414 5792  adpahci - ok
23:33:23.0417 5792  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
23:33:23.0418 5792  adpu320 - ok
23:33:23.0438 5792  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:33:23.0438 5792  AeLookupSvc - ok
23:33:23.0481 5792  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
23:33:23.0483 5792  AFD - ok
23:33:23.0494 5792  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
23:33:23.0495 5792  agp440 - ok
23:33:23.0536 5792  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
23:33:23.0536 5792  ALG - ok
23:33:23.0547 5792  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:33:23.0547 5792  aliide - ok
23:33:23.0559 5792  [ 8F6C0FF277DBFE5EBED24E3543DA7BFA ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:33:23.0560 5792  AMD External Events Utility - ok
23:33:23.0568 5792  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
23:33:23.0569 5792  amdide - ok
23:33:23.0578 5792  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
23:33:23.0579 5792  AmdK8 - ok
23:33:23.0659 5792  [ 9673319070166E26660EBA4EDF316FA2 ] amdkmdag        C:\Windows\system32\DRIVERS\atipmdag.sys
23:33:23.0681 5792  amdkmdag - ok
23:33:23.0702 5792  [ 430D06D63952848E64CBBF23B5C1479E ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
23:33:23.0703 5792  amdkmdap - ok
23:33:23.0713 5792  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
23:33:23.0714 5792  AmdPPM - ok
23:33:23.0764 5792  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:33:23.0765 5792  amdsata - ok
23:33:23.0777 5792  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
23:33:23.0777 5792  amdsbs - ok
23:33:23.0790 5792  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:33:23.0790 5792  amdxata - ok
23:33:23.0835 5792  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
23:33:23.0835 5792  AppID - ok
23:33:23.0851 5792  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:33:23.0851 5792  AppIDSvc - ok
23:33:23.0891 5792  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
23:33:23.0891 5792  Appinfo - ok
23:33:23.0947 5792  [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:33:23.0947 5792  Apple Mobile Device - ok
23:33:23.0966 5792  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
23:33:23.0967 5792  arc - ok
23:33:23.0974 5792  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
23:33:23.0975 5792  arcsas - ok
23:33:24.0043 5792  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:33:24.0043 5792  aspnet_state - ok
23:33:24.0052 5792  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:33:24.0053 5792  AsyncMac - ok
23:33:24.0070 5792  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
23:33:24.0070 5792  atapi - ok
23:33:24.0090 5792  [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
23:33:24.0091 5792  AtiHdmiService - ok
23:33:24.0134 5792  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:33:24.0136 5792  AudioEndpointBuilder - ok
23:33:24.0142 5792  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:33:24.0144 5792  AudioSrv - ok
23:33:24.0183 5792  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:33:24.0184 5792  AxInstSV - ok
23:33:24.0204 5792  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
23:33:24.0206 5792  b06bdrv - ok
23:33:24.0220 5792  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:33:24.0221 5792  b57nd60a - ok
23:33:24.0256 5792  [ 849EA7A204F9F77E7B2ADB8699F7BFC8 ] bbcap           C:\Windows\system32\DRIVERS\bbcap.sys
23:33:24.0256 5792  bbcap - ok
23:33:24.0290 5792  [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
23:33:24.0291 5792  BBSvc - ok
23:33:24.0300 5792  [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
23:33:24.0301 5792  BBUpdate - ok
23:33:24.0349 5792  [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
23:33:24.0360 5792  BCM43XX - ok
23:33:24.0374 5792  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:33:24.0374 5792  BDESVC - ok
23:33:24.0384 5792  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:33:24.0384 5792  Beep - ok
23:33:24.0421 5792  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
23:33:24.0424 5792  BFE - ok
23:33:24.0441 5792  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
23:33:24.0445 5792  BITS - ok
23:33:24.0447 5792  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:33:24.0447 5792  blbdrive - ok
23:33:24.0478 5792  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:33:24.0480 5792  Bonjour Service - ok
23:33:24.0511 5792  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:33:24.0511 5792  bowser - ok
23:33:24.0514 5792  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:33:24.0514 5792  BrFiltLo - ok
23:33:24.0516 5792  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:33:24.0516 5792  BrFiltUp - ok
23:33:24.0548 5792  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
23:33:24.0548 5792  Browser - ok
23:33:24.0561 5792  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:33:24.0562 5792  Brserid - ok
23:33:24.0564 5792  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:33:24.0565 5792  BrSerWdm - ok
23:33:24.0567 5792  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:33:24.0568 5792  BrUsbMdm - ok
23:33:24.0570 5792  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:33:24.0570 5792  BrUsbSer - ok
23:33:24.0619 5792  [ 9D7BF8AB181DA27E2C13F701FCD5BD2F ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
23:33:24.0620 5792  BstHdAndroidSvc - ok
23:33:24.0627 5792  [ 781591A2EDC56188C31EF6D6AA53B66E ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
23:33:24.0628 5792  BstHdDrv - ok
23:33:24.0641 5792  [ 15C160D8419F9FE74161B88B6A8EB799 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
23:33:24.0643 5792  BstHdLogRotatorSvc - ok
23:33:24.0660 5792  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
23:33:24.0660 5792  BTHMODEM - ok
23:33:24.0674 5792  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
23:33:24.0675 5792  bthserv - ok
23:33:24.0682 5792  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:33:24.0683 5792  cdfs - ok
23:33:24.0719 5792  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:33:24.0719 5792  cdrom - ok
23:33:24.0760 5792  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
23:33:24.0761 5792  CertPropSvc - ok
23:33:24.0773 5792  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
23:33:24.0773 5792  circlass - ok
23:33:24.0789 5792  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
23:33:24.0790 5792  CLFS - ok
23:33:24.0830 5792  [ 730BF325E4CC1E3935B81943AC6DA216 ] CLKMSVC10_9EC60124 C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
23:33:24.0831 5792  CLKMSVC10_9EC60124 - ok
23:33:24.0870 5792  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:33:24.0871 5792  clr_optimization_v2.0.50727_32 - ok
23:33:24.0933 5792  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:33:24.0933 5792  clr_optimization_v2.0.50727_64 - ok
23:33:24.0972 5792  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:33:24.0973 5792  clr_optimization_v4.0.30319_32 - ok
23:33:24.0985 5792  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:33:24.0986 5792  clr_optimization_v4.0.30319_64 - ok
23:33:24.0989 5792  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
23:33:24.0989 5792  CmBatt - ok
23:33:24.0996 5792  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:33:24.0996 5792  cmdide - ok
23:33:25.0041 5792  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
23:33:25.0043 5792  CNG - ok
23:33:25.0057 5792  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
23:33:25.0057 5792  Compbatt - ok
23:33:25.0077 5792  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:33:25.0077 5792  CompositeBus - ok
23:33:25.0079 5792  COMSysApp - ok
23:33:25.0082 5792  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
23:33:25.0082 5792  crcdisk - ok
23:33:25.0124 5792  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:33:25.0125 5792  CryptSvc - ok
23:33:25.0214 5792  [ 5131D2469B6B19DC20B446EBE43EBB79 ] CSIScanner      C:\Program Files\Prevx\prevx.exe
23:33:25.0238 5792  CSIScanner - ok
23:33:25.0286 5792  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:33:25.0289 5792  DcomLaunch - ok
23:33:25.0306 5792  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
23:33:25.0307 5792  defragsvc - ok
23:33:25.0352 5792  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:33:25.0352 5792  DfsC - ok
23:33:25.0364 5792  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:33:25.0365 5792  Dhcp - ok
23:33:25.0368 5792  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
23:33:25.0368 5792  discache - ok
23:33:25.0377 5792  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
23:33:25.0377 5792  Disk - ok
23:33:25.0417 5792  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:33:25.0418 5792  Dnscache - ok
23:33:25.0457 5792  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:33:25.0458 5792  dot3svc - ok
23:33:25.0472 5792  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
23:33:25.0473 5792  DPS - ok
23:33:25.0484 5792  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:33:25.0484 5792  drmkaud - ok
23:33:25.0521 5792  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
23:33:25.0522 5792  dtsoftbus01 - ok
23:33:25.0579 5792  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:33:25.0583 5792  DXGKrnl - ok
23:33:25.0589 5792  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
23:33:25.0590 5792  EapHost - ok
23:33:25.0632 5792  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
23:33:25.0644 5792  ebdrv - ok
23:33:25.0665 5792  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
23:33:25.0665 5792  EFS - ok
23:33:25.0694 5792  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:33:25.0696 5792  ehRecvr - ok
23:33:25.0715 5792  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
23:33:25.0716 5792  ehSched - ok
23:33:25.0732 5792  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
23:33:25.0734 5792  elxstor - ok
23:33:25.0767 5792  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:33:25.0768 5792  ErrDev - ok
23:33:25.0785 5792  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
23:33:25.0787 5792  EventSystem - ok
23:33:25.0791 5792  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
23:33:25.0792 5792  exfat - ok
23:33:25.0798 5792  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:33:25.0799 5792  fastfat - ok
23:33:25.0822 5792  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
23:33:25.0825 5792  Fax - ok
23:33:25.0837 5792  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
23:33:25.0838 5792  fdc - ok
23:33:25.0845 5792  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
23:33:25.0845 5792  fdPHost - ok
23:33:25.0850 5792  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:33:25.0850 5792  FDResPub - ok
23:33:25.0860 5792  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:33:25.0861 5792  FileInfo - ok
23:33:25.0868 5792  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:33:25.0868 5792  Filetrace - ok
23:33:25.0906 5792  [ 8669BE94F63944E4F899C3950B520241 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
23:33:25.0910 5792  FLEXnet Licensing Service - ok
23:33:25.0913 5792  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
23:33:25.0913 5792  flpydisk - ok
23:33:25.0948 5792  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:33:25.0949 5792  FltMgr - ok
23:33:26.0000 5792  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
23:33:26.0004 5792  FontCache - ok
23:33:26.0054 5792  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:33:26.0055 5792  FontCache3.0.0.0 - ok
23:33:26.0066 5792  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:33:26.0066 5792  FsDepends - ok
23:33:26.0078 5792  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:33:26.0078 5792  Fs_Rec - ok
23:33:26.0117 5792  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:33:26.0118 5792  fvevol - ok
23:33:26.0130 5792  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
23:33:26.0131 5792  gagp30kx - ok
23:33:26.0166 5792  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:33:26.0166 5792  GEARAspiWDM - ok
23:33:26.0181 5792  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
23:33:26.0184 5792  gpsvc - ok
23:33:26.0254 5792  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:33:26.0255 5792  gupdate - ok
23:33:26.0258 5792  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:33:26.0258 5792  gupdatem - ok
23:33:26.0272 5792  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:33:26.0273 5792  hcw85cir - ok
23:33:26.0306 5792  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:33:26.0307 5792  HDAudBus - ok
23:33:26.0314 5792  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
23:33:26.0314 5792  HidBatt - ok
23:33:26.0331 5792  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
23:33:26.0332 5792  HidBth - ok
23:33:26.0343 5792  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
23:33:26.0343 5792  HidIr - ok
23:33:26.0361 5792  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
23:33:26.0361 5792  hidserv - ok
23:33:26.0363 5792  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
23:33:26.0364 5792  HidUsb - ok
23:33:26.0401 5792  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:33:26.0401 5792  hkmsvc - ok
23:33:26.0444 5792  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:33:26.0446 5792  HomeGroupListener - ok
23:33:26.0460 5792  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:33:26.0461 5792  HomeGroupProvider - ok
23:33:26.0469 5792  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:33:26.0469 5792  HpSAMD - ok
23:33:26.0485 5792  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:33:26.0487 5792  HTTP - ok
23:33:26.0520 5792  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:33:26.0520 5792  hwpolicy - ok
23:33:26.0566 5792  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
23:33:26.0566 5792  i8042prt - ok
23:33:26.0585 5792  [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
23:33:26.0587 5792  iaStor - ok
23:33:26.0610 5792  [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
23:33:26.0611 5792  IAStorDataMgrSvc - ok
23:33:26.0654 5792  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:33:26.0656 5792  iaStorV - ok
23:33:26.0694 5792  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:33:26.0697 5792  idsvc - ok
23:33:26.0714 5792  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
23:33:26.0715 5792  iirsp - ok
23:33:26.0737 5792  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
23:33:26.0740 5792  IKEEXT - ok
23:33:26.0760 5792  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
23:33:26.0761 5792  Impcd - ok
23:33:26.0801 5792  [ 235362D403D9D677514649D88DB31914 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:33:26.0810 5792  IntcAzAudAddService - ok
23:33:26.0828 5792  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
23:33:26.0829 5792  IntcDAud - ok
23:33:26.0841 5792  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
23:33:26.0842 5792  intelide - ok
23:33:26.0850 5792  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:33:26.0850 5792  intelppm - ok
23:33:26.0872 5792  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:33:26.0873 5792  IPBusEnum - ok
23:33:26.0911 5792  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:33:26.0912 5792  IpFilterDriver - ok
23:33:26.0952 5792  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:33:26.0955 5792  iphlpsvc - ok
23:33:26.0990 5792  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:33:26.0990 5792  IPMIDRV - ok
23:33:27.0001 5792  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:33:27.0002 5792  IPNAT - ok
23:33:27.0051 5792  [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
23:33:27.0055 5792  iPod Service - ok
23:33:27.0063 5792  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:33:27.0063 5792  IRENUM - ok
23:33:27.0075 5792  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:33:27.0075 5792  isapnp - ok
23:33:27.0091 5792  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:33:27.0092 5792  iScsiPrt - ok
23:33:27.0105 5792  [ 12E27942DBB7C91880163634B0D8A776 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
23:33:27.0106 5792  k57nd60a - ok
23:33:27.0118 5792  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
23:33:27.0118 5792  kbdclass - ok
23:33:27.0127 5792  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
23:33:27.0127 5792  kbdhid - ok
23:33:27.0131 5792  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
23:33:27.0132 5792  KeyIso - ok
23:33:27.0171 5792  [ AA4BE833F9BA155312F5A47E2474F153 ] KeyScrambler    C:\Windows\system32\drivers\keyscrambler.sys
23:33:27.0172 5792  KeyScrambler - ok
23:33:27.0209 5792  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:33:27.0209 5792  KSecDD - ok
23:33:27.0218 5792  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:33:27.0219 5792  KSecPkg - ok
23:33:27.0231 5792  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:33:27.0232 5792  ksthunk - ok
23:33:27.0242 5792  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:33:27.0244 5792  KtmRm - ok
23:33:27.0256 5792  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
23:33:27.0257 5792  LanmanServer - ok
23:33:27.0300 5792  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:33:27.0301 5792  LanmanWorkstation - ok
23:33:27.0314 5792  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:33:27.0315 5792  lltdio - ok
23:33:27.0324 5792  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:33:27.0326 5792  lltdsvc - ok
23:33:27.0334 5792  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:33:27.0335 5792  lmhosts - ok
23:33:27.0349 5792  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
23:33:27.0349 5792  LSI_FC - ok
23:33:27.0352 5792  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
23:33:27.0353 5792  LSI_SAS - ok
23:33:27.0361 5792  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:33:27.0362 5792  LSI_SAS2 - ok
23:33:27.0364 5792  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:33:27.0365 5792  LSI_SCSI - ok
23:33:27.0375 5792  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
23:33:27.0375 5792  luafv - ok
23:33:27.0414 5792  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:33:27.0415 5792  Mcx2Svc - ok
23:33:27.0429 5792  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
23:33:27.0429 5792  megasas - ok
23:33:27.0443 5792  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
23:33:27.0444 5792  MegaSR - ok
23:33:27.0451 5792  [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
23:33:27.0451 5792  MEIx64 - ok
23:33:27.0460 5792  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
23:33:27.0461 5792  MMCSS - ok
23:33:27.0481 5792  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
23:33:27.0482 5792  Modem - ok
23:33:27.0493 5792  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:33:27.0494 5792  monitor - ok
23:33:27.0531 5792  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:33:27.0532 5792  mouclass - ok
23:33:27.0540 5792  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:33:27.0540 5792  mouhid - ok
23:33:27.0577 5792  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:33:27.0578 5792  mountmgr - ok
23:33:27.0600 5792  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:33:27.0601 5792  MozillaMaintenance - ok
23:33:27.0638 5792  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
23:33:27.0639 5792  MpFilter - ok
23:33:27.0680 5792  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:33:27.0681 5792  mpio - ok
23:33:27.0694 5792  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:33:27.0694 5792  mpsdrv - ok
23:33:27.0741 5792  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:33:27.0745 5792  MpsSvc - ok
23:33:27.0790 5792  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:33:27.0791 5792  MRxDAV - ok
23:33:27.0826 5792  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:33:27.0827 5792  mrxsmb - ok
23:33:27.0837 5792  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:33:27.0839 5792  mrxsmb10 - ok
23:33:27.0877 5792  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:33:27.0878 5792  mrxsmb20 - ok
23:33:27.0885 5792  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:33:27.0885 5792  msahci - ok
23:33:27.0901 5792  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:33:27.0901 5792  msdsm - ok
23:33:27.0914 5792  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
23:33:27.0915 5792  MSDTC - ok
23:33:27.0929 5792  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:33:27.0929 5792  Msfs - ok
23:33:27.0949 5792  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:33:27.0949 5792  mshidkmdf - ok
23:33:27.0957 5792  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:33:27.0957 5792  msisadrv - ok
23:33:27.0981 5792  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:33:27.0982 5792  MSiSCSI - ok
23:33:27.0984 5792  msiserver - ok
23:33:27.0994 5792  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:33:27.0994 5792  MSKSSRV - ok
23:33:28.0030 5792  [ 103B3BBE23AB774B009D182276EC6786 ] msloop          C:\Windows\system32\DRIVERS\loop.sys
23:33:28.0030 5792  msloop - ok
23:33:28.0101 5792  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
23:33:28.0101 5792  MsMpSvc - ok
23:33:28.0114 5792  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:33:28.0114 5792  MSPCLOCK - ok
23:33:28.0121 5792  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:33:28.0122 5792  MSPQM - ok
23:33:28.0138 5792  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:33:28.0139 5792  MsRPC - ok
23:33:28.0150 5792  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:33:28.0150 5792  mssmbios - ok
23:33:28.0214 5792  MSSQL$SQLEXPRESS - ok
23:33:28.0314 5792  [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
23:33:28.0315 5792  MSSQLServerADHelper100 - ok
23:33:28.0317 5792  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:33:28.0318 5792  MSTEE - ok
23:33:28.0333 5792  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
23:33:28.0333 5792  MTConfig - ok
23:33:28.0340 5792  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
23:33:28.0340 5792  Mup - ok
23:33:28.0352 5792  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
23:33:28.0354 5792  napagent - ok
23:33:28.0365 5792  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:33:28.0366 5792  NativeWifiP - ok
23:33:28.0413 5792  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:33:28.0417 5792  NDIS - ok
23:33:28.0428 5792  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:33:28.0428 5792  NdisCap - ok
23:33:28.0441 5792  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:33:28.0441 5792  NdisTapi - ok
23:33:28.0477 5792  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:33:28.0478 5792  Ndisuio - ok
23:33:28.0490 5792  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:33:28.0491 5792  NdisWan - ok
23:33:28.0533 5792  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:33:28.0533 5792  NDProxy - ok
23:33:28.0539 5792  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:33:28.0540 5792  NetBIOS - ok
23:33:28.0552 5792  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:33:28.0553 5792  NetBT - ok
23:33:28.0563 5792  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
23:33:28.0564 5792  Netlogon - ok
23:33:28.0583 5792  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
23:33:28.0585 5792  Netman - ok
23:33:28.0628 5792  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:33:28.0629 5792  NetMsmqActivator - ok
23:33:28.0632 5792  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:33:28.0633 5792  NetPipeActivator - ok
23:33:28.0652 5792  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
23:33:28.0654 5792  netprofm - ok
23:33:28.0657 5792  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:33:28.0658 5792  NetTcpActivator - ok
23:33:28.0660 5792  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:33:28.0661 5792  NetTcpPortSharing - ok
23:33:28.0669 5792  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
23:33:28.0669 5792  nfrd960 - ok
23:33:28.0703 5792  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
23:33:28.0703 5792  NisDrv - ok
23:33:28.0744 5792  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
23:33:28.0746 5792  NisSrv - ok
23:33:28.0759 5792  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:33:28.0761 5792  NlaSvc - ok
23:33:28.0825 5792  [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
23:33:28.0835 5792  NOBU - ok
23:33:28.0847 5792  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:33:28.0848 5792  Npfs - ok
23:33:28.0867 5792  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
23:33:28.0867 5792  nsi - ok
23:33:28.0878 5792  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:33:28.0878 5792  nsiproxy - ok
23:33:28.0934 5792  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:33:28.0940 5792  Ntfs - ok
23:33:28.0950 5792  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
23:33:28.0950 5792  Null - ok
23:33:28.0960 5792  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:33:28.0961 5792  nvraid - ok
23:33:29.0004 5792  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:33:29.0004 5792  nvstor - ok
23:33:29.0045 5792  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:33:29.0046 5792  nv_agp - ok
23:33:29.0059 5792  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:33:29.0059 5792  ohci1394 - ok
23:33:29.0111 5792  OracleJobSchedulerXE - ok
23:33:29.0113 5792  OracleMTSRecoveryService - ok
23:33:29.0115 5792  OracleServiceXE - ok
23:33:29.0118 5792  OracleXEClrAgent - ok
23:33:29.0165 5792  [ 788D4CD078E3D55D92C4B986C739DA43 ] OracleXETNSListener C:\oraclexe\app\oracle\product\11.2.0\server\BIN\tnslsnr.exe
23:33:29.0167 5792  OracleXETNSListener - ok
23:33:29.0212 5792  [ 771E4808BA2229B5DA9D27F0B1E5D61F ] OraFenceService C:\Windows\system32\drivers\OraFenceService.sys
23:33:29.0212 5792  OraFenceService - ok
23:33:29.0228 5792  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:33:29.0230 5792  p2pimsvc - ok
23:33:29.0243 5792  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
23:33:29.0245 5792  p2psvc - ok
23:33:29.0255 5792  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
23:33:29.0256 5792  Parport - ok
23:33:29.0288 5792  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:33:29.0288 5792  partmgr - ok
23:33:29.0296 5792  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:33:29.0298 5792  PcaSvc - ok
23:33:29.0325 5792  [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
23:33:29.0325 5792  PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
23:33:29.0333 5792  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
23:33:29.0334 5792  pci - ok
23:33:29.0343 5792  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
23:33:29.0343 5792  pciide - ok
23:33:29.0355 5792  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
23:33:29.0356 5792  pcmcia - ok
23:33:29.0366 5792  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:33:29.0366 5792  pcw - ok
23:33:29.0385 5792  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:33:29.0387 5792  PEAUTH - ok
23:33:29.0437 5792  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:33:29.0438 5792  PerfHost - ok
23:33:29.0495 5792  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
23:33:29.0501 5792  pla - ok
23:33:29.0546 5792  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:33:29.0548 5792  PlugPlay - ok
23:33:29.0561 5792  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:33:29.0562 5792  PNRPAutoReg - ok
23:33:29.0567 5792  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:33:29.0568 5792  PNRPsvc - ok
23:33:29.0586 5792  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:33:29.0588 5792  PolicyAgent - ok
23:33:29.0604 5792  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
23:33:29.0605 5792  Power - ok
23:33:29.0642 5792  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:33:29.0643 5792  PptpMiniport - ok
23:33:29.0657 5792  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
23:33:29.0657 5792  Processor - ok
23:33:29.0694 5792  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:33:29.0695 5792  ProfSvc - ok
23:33:29.0704 5792  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:33:29.0704 5792  ProtectedStorage - ok
23:33:29.0746 5792  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:33:29.0747 5792  Psched - ok
23:33:29.0768 5792  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
23:33:29.0768 5792  PxHlpa64 - ok
23:33:29.0789 5792  [ BA5F7C107EACE67973B4B798832A74C7 ] pxkbf           C:\Windows\system32\drivers\pxkbf.sys
23:33:29.0789 5792  pxkbf - ok
23:33:29.0796 5792  [ 007E57428802F587D0D6737AE7A9D989 ] pxrts           C:\Windows\system32\drivers\pxrts.sys
23:33:29.0796 5792  pxrts - ok
23:33:29.0807 5792  [ 66D4D00C8908888A68B749D91F1E6789 ] pxscan          C:\Windows\system32\drivers\pxscan.sys
23:33:29.0808 5792  pxscan - ok
23:33:29.0831 5792  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
23:33:29.0836 5792  ql2300 - ok
23:33:29.0848 5792  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
23:33:29.0849 5792  ql40xx - ok
23:33:29.0858 5792  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
23:33:29.0860 5792  QWAVE - ok
23:33:29.0870 5792  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:33:29.0870 5792  QWAVEdrv - ok
23:33:29.0877 5792  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:33:29.0877 5792  RasAcd - ok
23:33:29.0879 5792  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:33:29.0880 5792  RasAgileVpn - ok
23:33:29.0885 5792  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
23:33:29.0886 5792  RasAuto - ok
23:33:29.0896 5792  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:33:29.0897 5792  Rasl2tp - ok
23:33:29.0912 5792  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
23:33:29.0914 5792  RasMan - ok
23:33:29.0926 5792  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:33:29.0926 5792  RasPppoe - ok
23:33:29.0952 5792  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:33:29.0953 5792  RasSstp - ok
23:33:29.0993 5792  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:33:29.0995 5792  rdbss - ok
23:33:30.0006 5792  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
23:33:30.0006 5792  rdpbus - ok
23:33:30.0018 5792  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:33:30.0018 5792  RDPCDD - ok
23:33:30.0027 5792  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:33:30.0027 5792  RDPENCDD - ok
23:33:30.0035 5792  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:33:30.0035 5792  RDPREFMP - ok
23:33:30.0076 5792  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:33:30.0077 5792  RDPWD - ok
23:33:30.0115 5792  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:33:30.0116 5792  rdyboost - ok
23:33:30.0129 5792  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:33:30.0130 5792  RemoteAccess - ok
23:33:30.0136 5792  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:33:30.0138 5792  RemoteRegistry - ok
23:33:30.0190 5792  [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
23:33:30.0195 5792  RoxMediaDB12OEM - ok
23:33:30.0204 5792  [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
23:33:30.0205 5792  RoxWatch12 - ok
23:33:30.0221 5792  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:33:30.0222 5792  RpcEptMapper - ok
23:33:30.0231 5792  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
23:33:30.0232 5792  RpcLocator - ok
23:33:30.0241 5792  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
23:33:30.0243 5792  RpcSs - ok
23:33:30.0287 5792  [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103        C:\Windows\system32\DRIVERS\RsFx0103.sys
23:33:30.0289 5792  RsFx0103 - ok
23:33:30.0305 5792  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:33:30.0305 5792  rspndr - ok
23:33:30.0312 5792  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
23:33:30.0312 5792  SamSs - ok
23:33:30.0352 5792  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:33:30.0352 5792  sbp2port - ok
23:33:30.0361 5792  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:33:30.0363 5792  SCardSvr - ok
23:33:30.0398 5792  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:33:30.0398 5792  scfilter - ok
23:33:30.0419 5792  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
23:33:30.0424 5792  Schedule - ok
23:33:30.0465 5792  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:33:30.0465 5792  SCPolicySvc - ok
23:33:30.0513 5792  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:33:30.0514 5792  SDRSVC - ok
23:33:30.0522 5792  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:33:30.0522 5792  secdrv - ok
23:33:30.0565 5792  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
23:33:30.0566 5792  seclogon - ok
23:33:30.0575 5792  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
23:33:30.0576 5792  SENS - ok
23:33:30.0578 5792  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:33:30.0579 5792  SensrSvc - ok
23:33:30.0591 5792  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
23:33:30.0592 5792  Serenum - ok
23:33:30.0594 5792  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
23:33:30.0595 5792  Serial - ok
23:33:30.0606 5792  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
23:33:30.0606 5792  sermouse - ok
23:33:30.0622 5792  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
23:33:30.0624 5792  SessionEnv - ok
23:33:30.0667 5792  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:33:30.0667 5792  sffdisk - ok
23:33:30.0674 5792  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:33:30.0674 5792  sffp_mmc - ok
23:33:30.0679 5792  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:33:30.0679 5792  sffp_sd - ok
23:33:30.0682 5792  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
23:33:30.0682 5792  sfloppy - ok
23:33:30.0729 5792  [ E1974A92AC0914A3859359A0A8C82C68 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
23:33:30.0732 5792  SftService - ok
23:33:30.0755 5792  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:33:30.0757 5792  SharedAccess - ok
23:33:30.0769 5792  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:33:30.0771 5792  ShellHWDetection - ok
23:33:30.0778 5792  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:33:30.0778 5792  SiSRaid2 - ok
23:33:30.0789 5792  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
23:33:30.0789 5792  SiSRaid4 - ok
23:33:30.0833 5792  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:33:30.0833 5792  SkypeUpdate - ok
23:33:30.0836 5792  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:33:30.0837 5792  Smb - ok
23:33:30.0845 5792  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:33:30.0846 5792  SNMPTRAP - ok
23:33:30.0855 5792  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:33:30.0856 5792  spldr - ok
23:33:30.0894 5792  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
23:33:30.0897 5792  Spooler - ok
23:33:30.0973 5792  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
23:33:30.0986 5792  sppsvc - ok
23:33:31.0006 5792  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:33:31.0007 5792  sppuinotify - ok
23:33:31.0084 5792  [ 791227582A5070BD78B7E05285D13446 ] SProtection     C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe
23:33:31.0094 5792  SProtection - ok
23:33:31.0169 5792  [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
23:33:31.0171 5792  SQLAgent$SQLEXPRESS - ok
23:33:31.0261 5792  [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser      c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
23:33:31.0262 5792  SQLBrowser - ok
23:33:31.0306 5792  [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter       c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
23:33:31.0306 5792  SQLWriter - ok
23:33:31.0350 5792  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:33:31.0352 5792  srv - ok
23:33:31.0363 5792  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:33:31.0364 5792  srv2 - ok
23:33:31.0370 5792  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:33:31.0371 5792  srvnet - ok
23:33:31.0378 5792  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:33:31.0380 5792  SSDPSRV - ok
23:33:31.0459 5792  [ DF32CE37D67439915903D49C81BF1D0E ] sshd            C:\cygwin\bin\cygrunsrv.exe
23:33:31.0460 5792  sshd - ok
23:33:31.0472 5792  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:33:31.0473 5792  SstpSvc - ok
23:33:31.0493 5792  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
23:33:31.0494 5792  stexstor - ok
23:33:31.0536 5792  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
23:33:31.0539 5792  stisvc - ok
23:33:31.0553 5792  [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr        C:\Program Files (x86)\Common Files\User1eThing Shared\stllssvr.exe
23:33:31.0553 5792  stllssvr - ok
23:33:31.0588 5792  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:33:31.0589 5792  swenum - ok
23:33:31.0600 5792  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
23:33:31.0602 5792  swprv - ok
23:33:31.0659 5792  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
23:33:31.0666 5792  SysMain - ok
23:33:31.0702 5792  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:33:31.0703 5792  TabletInputService - ok
23:33:31.0736 5792  [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
23:33:31.0736 5792  tap0901 - ok
23:33:31.0743 5792  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:33:31.0745 5792  TapiSrv - ok
23:33:31.0748 5792  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
23:33:31.0750 5792  TBS - ok
23:33:31.0811 5792  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:33:31.0818 5792  Tcpip - ok
23:33:31.0853 5792  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:33:31.0859 5792  TCPIP6 - ok
23:33:31.0911 5792  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:33:31.0911 5792  tcpipreg - ok
23:33:31.0919 5792  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:33:31.0919 5792  TDPIPE - ok
23:33:31.0933 5792  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:33:31.0933 5792  TDTCP - ok
23:33:31.0943 5792  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:33:31.0944 5792  tdx - ok
23:33:31.0948 5792  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:33:31.0948 5792  TermDD - ok
23:33:31.0959 5792  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
23:33:31.0962 5792  TermService - ok
23:33:31.0973 5792  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
23:33:31.0974 5792  Themes - ok
23:33:31.0989 5792  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
23:33:31.0990 5792  THREADORDER - ok
23:33:32.0000 5792  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
23:33:32.0002 5792  TrkWks - ok
23:33:32.0060 5792  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:33:32.0061 5792  TrustedInstaller - ok
23:33:32.0100 5792  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:33:32.0100 5792  tssecsrv - ok
23:33:32.0114 5792  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:33:32.0115 5792  TsUsbFlt - ok
23:33:32.0160 5792  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:33:32.0161 5792  tunnel - ok
23:33:32.0174 5792  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
23:33:32.0175 5792  uagp35 - ok
23:33:32.0195 5792  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:33:32.0197 5792  udfs - ok
23:33:32.0213 5792  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:33:32.0214 5792  UI0Detect - ok
23:33:32.0230 5792  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:33:32.0230 5792  uliagpkx - ok
23:33:32.0243 5792  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
23:33:32.0243 5792  umbus - ok
23:33:32.0251 5792  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
23:33:32.0252 5792  UmPass - ok
23:33:32.0266 5792  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
23:33:32.0268 5792  upnphost - ok
23:33:32.0287 5792  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:33:32.0287 5792  usbccgp - ok
23:33:32.0314 5792  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:33:32.0314 5792  usbcir - ok
23:33:32.0323 5792  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
23:33:32.0324 5792  usbehci - ok
23:33:32.0335 5792  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:33:32.0336 5792  usbhub - ok
23:33:32.0343 5792  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:33:32.0344 5792  usbohci - ok
23:33:32.0358 5792  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
23:33:32.0359 5792  usbprint - ok
23:33:32.0371 5792  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:33:32.0372 5792  USBSTOR - ok
23:33:32.0383 5792  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:33:32.0384 5792  usbuhci - ok
23:33:32.0394 5792  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
23:33:32.0395 5792  UxSms - ok
23:33:32.0401 5792  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
23:33:32.0402 5792  VaultSvc - ok
23:33:32.0438 5792  [ 72EC34F9999A5A48CFD43F5E6BD779E4 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
23:33:32.0439 5792  VBoxDrv - ok
23:33:32.0447 5792  [ A2FE818D7F930C51ADA37C04DBCB015D ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
23:33:32.0447 5792  VBoxNetAdp - ok
23:33:32.0455 5792  [ CD37A9264C404E48BCE162D37B117B45 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
23:33:32.0456 5792  VBoxNetFlt - ok
23:33:32.0467 5792  [ F649B3D30C6F40B04BDCCD0D11A43481 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
23:33:32.0468 5792  VBoxUSBMon - ok
23:33:32.0470 5792  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:33:32.0470 5792  vdrvroot - ok
23:33:32.0483 5792  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
23:33:32.0486 5792  vds - ok
23:33:32.0498 5792  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:33:32.0499 5792  vga - ok
23:33:32.0511 5792  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:33:32.0511 5792  VgaSave - ok
23:33:32.0526 5792  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
23:33:32.0527 5792  vhdmp - ok
23:33:32.0536 5792  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:33:32.0537 5792  viaide - ok
23:33:32.0598 5792  [ B2E25DB5A6A178C056342ABD747B7326 ] vmm             C:\Windows\system32\Drivers\vmm.sys
23:33:32.0599 5792  vmm - ok
23:33:32.0611 5792  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:33:32.0612 5792  volmgr - ok
23:33:32.0658 5792  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:33:32.0660 5792  volmgrx - ok
23:33:32.0672 5792  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:33:32.0673 5792  volsnap - ok
23:33:32.0707 5792  [ 6BDCA00FC57CC40DA3C8E88B2CEA21AB ] VPCNetS2        C:\Windows\system32\DRIVERS\VMNetSrv.sys
23:33:32.0708 5792  VPCNetS2 - ok
23:33:32.0724 5792  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
23:33:32.0725 5792  vsmraid - ok
23:33:32.0780 5792  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
23:33:32.0787 5792  VSS - ok
23:33:32.0799 5792  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:33:32.0800 5792  vwifibus - ok
23:33:32.0804 5792  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:33:32.0805 5792  vwififlt - ok
23:33:32.0811 5792  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
23:33:32.0811 5792  vwifimp - ok
23:33:32.0833 5792  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
23:33:32.0835 5792  W32Time - ok
23:33:32.0851 5792  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
23:33:32.0851 5792  WacomPen - ok
23:33:32.0864 5792  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:33:32.0865 5792  WANARP - ok
23:33:32.0868 5792  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:33:32.0868 5792  Wanarpv6 - ok
23:33:32.0917 5792  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
23:33:32.0922 5792  WatAdminSvc - ok
23:33:32.0955 5792  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
23:33:32.0961 5792  wbengine - ok
23:33:32.0969 5792  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:33:32.0970 5792  WbioSrvc - ok
23:33:32.0985 5792  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:33:32.0987 5792  wcncsvc - ok
23:33:32.0992 5792  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:33:32.0994 5792  WcsPlugInService - ok
23:33:32.0996 5792  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
23:33:32.0996 5792  Wd - ok
23:33:33.0040 5792  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:33:33.0043 5792  Wdf01000 - ok
23:33:33.0054 5792  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:33:33.0055 5792  WdiServiceHost - ok
23:33:33.0058 5792  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:33:33.0059 5792  WdiSystemHost - ok
23:33:33.0068 5792  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
23:33:33.0070 5792  WebClient - ok
23:33:33.0077 5792  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:33:33.0079 5792  Wecsvc - ok
23:33:33.0084 5792  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:33:33.0085 5792  wercplsupport - ok
23:33:33.0097 5792  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:33:33.0098 5792  WerSvc - ok
23:33:33.0105 5792  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:33:33.0105 5792  WfpLwf - ok
23:33:33.0131 5792  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
23:33:33.0132 5792  WimFltr - ok
23:33:33.0134 5792  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:33:33.0135 5792  WIMMount - ok
23:33:33.0145 5792  WinDefend - ok
23:33:33.0148 5792  WinHttpAutoProxySvc - ok
23:33:33.0188 5792  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:33:33.0190 5792  Winmgmt - ok
23:33:33.0223 5792  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
23:33:33.0231 5792  WinRM - ok
23:33:33.0248 5792  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:33:33.0248 5792  WinUsb - ok
23:33:33.0273 5792  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:33:33.0277 5792  Wlansvc - ok
23:33:33.0310 5792  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:33:33.0311 5792  wlcrasvc - ok
23:33:33.0403 5792  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:33:33.0411 5792  wlidsvc - ok
23:33:33.0455 5792  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:33:33.0455 5792  WmiAcpi - ok
23:33:33.0472 5792  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:33:33.0473 5792  wmiApSrv - ok
23:33:33.0487 5792  WMPNetworkSvc - ok
23:33:33.0490 5792  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:33:33.0492 5792  WPCSvc - ok
23:33:33.0530 5792  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:33:33.0532 5792  WPDBusEnum - ok
23:33:33.0544 5792  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:33:33.0545 5792  ws2ifsl - ok
23:33:33.0561 5792  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
23:33:33.0562 5792  wscsvc - ok
23:33:33.0564 5792  WSearch - ok
23:33:33.0605 5792  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:33:33.0616 5792  wuauserv - ok
23:33:33.0664 5792  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:33:33.0665 5792  WudfPf - ok
23:33:33.0673 5792  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:33:33.0674 5792  WUDFRd - ok
23:33:33.0719 5792  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:33:33.0721 5792  wudfsvc - ok
23:33:33.0730 5792  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:33:33.0732 5792  WwanSvc - ok
23:33:33.0739 5792  ================ Scan global ===============================
23:33:33.0758 5792  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:33:33.0799 5792  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:33:33.0804 5792  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
23:33:33.0810 5792  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:33:33.0830 5792  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:33:33.0832 5792  [Global] - ok
23:33:33.0832 5792  ================ Scan MBR ==================================
23:33:33.0843 5792  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:33:34.0349 5792  \Device\Harddisk0\DR0 - ok
23:33:34.0349 5792  ================ Scan VBR ==================================
23:33:34.0350 5792  [ 2D2A3D6F1FABA64ECA242B6E27378A82 ] \Device\Harddisk0\DR0\Partition1
23:33:34.0351 5792  \Device\Harddisk0\DR0\Partition1 - ok
23:33:34.0379 5792  [ 7A13B12277943151B021F6A2B7E14AB3 ] \Device\Harddisk0\DR0\Partition2
23:33:34.0382 5792  \Device\Harddisk0\DR0\Partition2 - ok
23:33:34.0382 5792  ============================================================
23:33:34.0382 5792  Scan finished
23:33:34.0382 5792  ============================================================
23:33:34.0386 3956  Detected object count: 0
23:33:34.0386 3956  Actual detected object count: 0


#4 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 14 March 2013 - 11:53 PM

MiniToolBox by Farbar  Version:05-03-2013
Ran by User1 (administrator) on 13-03-2013 at 23:36:06
Running from "C:\Users\User1\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
"network.proxy.type", 0
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
100.100.100.1 test-cluster
 
 
========================= IP Configuration: ================================
 
DW1520 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Microsoft Loopback Adapter = Local Area Connection 3 (Hardware not present)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
TAP-Win32 Adapter V9 = Local Area Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0
add address name="Local Area Connection 3" address=100.100.100.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : User1-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : DW1520 Wireless-N WLAN Half-Mini Card
   Physical Address. . . . . . . . . : C0-CB-38-27-40-3A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::f932:955d:5aff:5497%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.11(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, March 03, 2013 1:56:53 AM
   Lease Expires . . . . . . . . . . : Thursday, March 14, 2013 1:56:53 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 197184312
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-64-61-15-78-2B-CB-94-42-3A
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : C0-CB-38-27-40-3A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : TAP-Win32 Adapter V9
   Physical Address. . . . . . . . . : 00-FF-6B-E0-21-2F
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : 78-2B-CB-94-42-3A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter VirtualBox Host-Only Network:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
   Physical Address. . . . . . . . . : 08-00-27-00-80-17
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c99f:f926:38ef:44d7%31(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 940048423
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-64-61-15-78-2B-CB-94-42-3A
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{6BE0212F-E689-4D1F-A7B6-5F8AFCC210DB}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{8292A69C-A401-4CDD-B592-BEE2D67BF5D1}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{6495E4E7-6712-44B9-B1A8-F5C03590DD4C}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{3E81875F-1673-4065-B010-ECBBB014A4F3}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4009:803::1007
 74.125.225.39
 74.125.225.40
 74.125.225.41
 74.125.225.46
 74.125.225.32
 74.125.225.33
 74.125.225.34
 74.125.225.35
 74.125.225.36
 74.125.225.37
 74.125.225.38
 
 
Pinging google.com [74.125.225.133] with 32 bytes of data:
Reply from 74.125.225.133: bytes=32 time=36ms TTL=51
Reply from 74.125.225.133: bytes=32 time=37ms TTL=51
 
Ping statistics for 74.125.225.133:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 36ms, Maximum = 37ms, Average = 36ms
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=198ms TTL=46
Reply from 206.190.36.45: bytes=32 time=111ms TTL=46
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 111ms, Maximum = 198ms, Average = 154ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...c0 cb 38 27 40 3a ......DW1520 Wireless-N WLAN Half-Mini Card
 21...c0 cb 38 27 40 3a ......Microsoft Virtual WiFi Miniport Adapter
 18...00 ff 6b e0 21 2f ......TAP-Win32 Adapter V9
 11...78 2b cb 94 42 3a ......Broadcom NetLink ™ Gigabit Ethernet
 31...08 00 27 00 80 17 ......VirtualBox Host-Only Ethernet Adapter
  1...........................Software Loopback Interface 1
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 34...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.11     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.11    276
     192.168.1.11  255.255.255.255         On-link      192.168.1.11    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.11    276
     192.168.56.0    255.255.255.0         On-link      192.168.56.1    276
     192.168.56.1  255.255.255.255         On-link      192.168.56.1    276
   192.168.56.255  255.255.255.255         On-link      192.168.56.1    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.56.1    276
        224.0.0.0        240.0.0.0         On-link      192.168.1.11    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.56.1    276
  255.255.255.255  255.255.255.255         On-link      192.168.1.11    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 31    276 fe80::/64                On-link
 10    276 fe80::/64                On-link
 31    276 fe80::c99f:f926:38ef:44d7/128
                                    On-link
 10    276 fe80::f932:955d:5aff:5497/128
                                    On-link
  1    306 ff00::/8                 On-link
 31    276 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (03/13/2013 10:41:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/13/2013 10:41:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/13/2013 09:00:01 AM) (Source: PC-Doctor) (User: )
Description: (14732) Asapi: (09:00:01:8230)(14732) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.
 
Error: (03/13/2013 09:00:01 AM) (Source: PC-Doctor) (User: )
Description: (14732) Asapi: (09:00:01:8190)(14732) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'
 
Error: (03/13/2013 03:02:42 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\servicing\TrustedInstaller.exe; Description = Windows Modules Installer; Error = 0x80070422).
 
Error: (03/13/2013 03:00:10 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\svchost.exe -k netsvcs; Description = Windows Update; Error = 0x80070422).
 
Error: (03/13/2013 02:09:13 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\svchost.exe -k netsvcs; Description = Windows Update; Error = 0x80070422).
 
Error: (03/13/2013 00:30:10 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (03/13/2013 00:00:01 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).
 
Error: (03/12/2013 09:00:02 AM) (Source: PC-Doctor) (User: )
Description: (6804) Asapi: (09:00:02:4140)(6804) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.
 
 
System errors:
=============
Error: (03/03/2013 03:53:20 PM) (Source: Service Control Manager) (User: )
Description: The CSIScanner service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (03/03/2013 03:43:16 AM) (Source: WMPNetworkSvc) (User: )
Description: 0x80004004-1
 
Error: (03/03/2013 02:48:07 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk5\DR8.
 
Error: (03/03/2013 02:48:07 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk5\DR8.
 
Error: (03/03/2013 02:48:06 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk5\DR8.
 
Error: (03/03/2013 02:48:06 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk5\DR8.
 
Error: (03/03/2013 01:58:43 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (03/03/2013 01:58:43 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (03/03/2013 01:58:43 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (03/03/2013 01:57:48 AM) (Source: Service Control Manager) (User: )
Description: The BlueStacks Android Service service terminated with the following error: 
%%1064
 
 
Microsoft Office Sessions:
=========================
Error: (03/13/2013 10:41:29 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe
 
Error: (03/13/2013 10:41:29 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe
 
Error: (03/13/2013 09:00:01 AM) (Source: PC-Doctor)(User: )
Description: (14732) Asapi: (09:00:01:8230)(14732) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.
 
Error: (03/13/2013 09:00:01 AM) (Source: PC-Doctor)(User: )
Description: (14732) Asapi: (09:00:01:8190)(14732) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'
 
Error: (03/13/2013 03:02:42 AM) (Source: System Restore)(User: )
Description: C:\Windows\servicing\TrustedInstaller.exeWindows Modules Installer0x80070422
 
Error: (03/13/2013 03:00:10 AM) (Source: System Restore)(User: )
Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x80070422
 
Error: (03/13/2013 02:09:13 AM) (Source: System Restore)(User: )
Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x80070422
 
Error: (03/13/2013 00:30:10 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Program Files (x86)\Cozi Express\CoziExpress.exe
 
Error: (03/13/2013 00:00:01 AM) (Source: System Restore)(User: )
Description: C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422
 
Error: (03/12/2013 09:00:02 AM) (Source: PC-Doctor)(User: )
Description: (6804) Asapi: (09:00:02:4140)(6804) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.2.3.28705)
7-Zip 9.20
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Reader XI (11.0.02) (Version: 11.0.02)
AP Tuner 3.08
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Control Center (Version: 2.010.0113.2207)
BB FlashBack Express (Version: 4.1.0.2481)
Bing Bar (Version: 7.1.391.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
BlueStacks (Version: 0.7.3.766)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0113.2208.39662)
Catalyst Control Center Graphics Full Existing (Version: 2010.0113.2208.39662)
Catalyst Control Center Graphics Full New (Version: 2010.0113.2208.39662)
Catalyst Control Center Graphics Light (Version: 2010.0113.2208.39662)
Catalyst Control Center Graphics Previews Common (Version: 2010.0113.2208.39662)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0113.2208.39662)
Catalyst Control Center InstallProxy (Version: 2010.0113.2208.39662)
Catalyst Control Center Localization All (Version: 2010.0113.2208.39662)
CCC Help Chinese Standard (Version: 2010.0113.2207.39662)
CCC Help Chinese Traditional (Version: 2010.0113.2207.39662)
CCC Help Czech (Version: 2010.0113.2207.39662)
CCC Help Danish (Version: 2010.0113.2207.39662)
CCC Help Dutch (Version: 2010.0113.2207.39662)
CCC Help English (Version: 2010.0113.2207.39662)
CCC Help Finnish (Version: 2010.0113.2207.39662)
CCC Help French (Version: 2010.0113.2207.39662)
CCC Help German (Version: 2010.0113.2207.39662)
CCC Help Greek (Version: 2010.0113.2207.39662)
CCC Help Hungarian (Version: 2010.0113.2207.39662)
CCC Help Italian (Version: 2010.0113.2207.39662)
CCC Help Japanese (Version: 2010.0113.2207.39662)
CCC Help Korean (Version: 2010.0113.2207.39662)
CCC Help Norwegian (Version: 2010.0113.2207.39662)
CCC Help Polish (Version: 2010.0113.2207.39662)
CCC Help Portuguese (Version: 2010.0113.2207.39662)
CCC Help Russian (Version: 2010.0113.2207.39662)
CCC Help Spanish (Version: 2010.0113.2207.39662)
CCC Help Swedish (Version: 2010.0113.2207.39662)
CCC Help Thai (Version: 2010.0113.2207.39662)
CCC Help Turkish (Version: 2010.0113.2207.39662)
ccc-core-static (Version: 2010.0113.2208.39662)
ccc-utility64 (Version: 2010.0113.2208.39662)
ClPhpEd(remove only)
Consumer In-Home Service Agreement (Version: 2.0.0)
Cozi (Version: 1.0.4323.24051)
CPUID CPU-Z 1.63.0
CyberLink PowerDVD 9.5 (Version: 9.5.1.3426)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.4.0315)
DbSchema
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.47)
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell MusicStage (Version: 1.4.162.0)
Dell PhotoStage (Version: 1.5.0.30)
Dell Stage (Version: 1.4.173.0)
Dell Support Center (Version: 3.0.5621.01)
Dell VideoStage (Version: 1.1.1.1408)
DirectX 9 Runtime (Version: 1.00.0000)
DivX Setup (Version: 2.6.1.9)
Dropbox (Version: 1.6.16)
DW WLAN Card (Version: 5.60.48.35)
EVEREST Ultimate Edition v5.50 (Version: 5.50)
Fiddler (Version: 2.4.2.6)
FileZilla Client 3.6.0.2 (Version: 3.6.0.2)
GlassFish Server Open Source Edition 3.1.2.2
Google Chrome (Version: 25.0.1364.152)
Google Drive (Version: 1.7.4018.3496)
Google Talk Plugin (Version: 3.15.2.12038)
Google Update Helper (Version: 1.3.21.135)
Iminent (Version: 6.4.56.0)
Intel® Rapid Storage Technology (Version: 10.0.0.1046)
iTunes (Version: 10.6.3.25)
Java 7 Update 7 (Version: 7.0.70)
Java 7 Update 9 (64-bit) (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java SE Development Kit 7 Update 9 (64-bit) (Version: 1.7.0.90)
Java™ 6 Update 24 (Version: 6.0.240)
Java™ 6 Update 37 (64-bit) (Version: 6.0.370)
Java™ SE Development Kit 6 Update 37 (64-bit) (Version: 1.6.0.370)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
KeyScrambler (Version: 3.0.2.1)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MariusSoft File Searcher (Version: 1.0.0)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - VWD Express 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Browser (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1447.4)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2731.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.50.1447.4)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft Virtual PC 2007 SP1 (Version: 6.0.192.0)
Microsoft Visual Basic 2010 Express - ENU (Version: 10.0.30319)
Microsoft Visual C# 2010 Express - ENU (Version: 10.0.30319)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (Version: 9.0.30729.4974)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.30319)
Microsoft Visual Web Developer 2010 Express - ENU (Version: 10.0.30319)
Mozilla Firefox 19.0 (x86 en-US) (Version: 19.0)
Mozilla Maintenance Service (Version: 19.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Multimedia Card Reader (Version: 1.7.915.93)
NetBeans IDE 7.2.1 (Version: 7.2.1)
Opera 12.10 (Version: 12.10.1652)
Oracle Database 11g Express Edition (Version: 11.2.0)
Oracle VM VirtualBox 4.2.4 (Version: 4.2.4)
PhotoShowExpress (Version: 2.0.063)
Prevx (Version: 3.0.5.220)
proXPN 2.5.1 (Version: 2.5.1)
Quest Software Toad Data Modeler (Version: 4.3.3.6)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6141)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Safari (Version: 5.34.57.2)
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (Version: 10.1.2531.0)
Skins (Version: 2010.0113.2208.39662)
Skype Toolbars (Version: 1.0.4051)
Skype™ 6.0 (Version: 6.0.126)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
SysInfoTools VBA Password Recovery v4.0
THX TruStudio PC (Version: 1.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
uTorrentControl_v2 Toolbar (Version: 6.10.3.27)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Veoh Web Player (Version: 1.1.2.0000)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
VLC media player 2.0.5 (Version: 2.0.5)
Web Deployment Tool (Version: 1.1.0618)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
XAMPP 1.8.1
Yahoo! Messenger
 
========================= Memory info: ===================================
 
Percentage of memory in use: 66%
User2l physical RAM: 12270.45 MB
Available physical RAM: 4075.97 MB
User2l Pagefile: 24539.08 MB
Available Pagefile: 14027.42 MB
User2l Virtual: 4095.88 MB
Available Virtual: 3972.67 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (User2l:1850.73 GB) (Free:1213.8 GB) NTFS
2 Drive d: (Recovery) (CDROM) (User2l:3.18 GB) (Free:0 GB) CDFS
8 Drive j: (OL6.3 x86_64 Dis) (CDROM) (User2l:3.42 GB) (Free:0 GB) CDFS
 
========================= Users: ========================================
 
User accounts for \\User1-PC
 
Administrator            cyg_server               Guest                    
User1                      User2                     
 
 
**** End of log ****


# AdwCleaner v2.114 - Logfile created 03/13/2013 at 23:53:05
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : User1 - User1-PC
# Boot Mode : Normal
# Running from : C:\Users\User1\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
Stopped & Deleted : SProtection
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Program Files (x86)\Iminent
File Deleted : C:\Program Files (x86)\Mozilla Firefox\defaults\pref\all-iminent.js
Folder Deleted : C:\Program Files (x86)\Common Files\Umbrella
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\uTorrentControl_v2
Folder Deleted : C:\ProgramData\Iminent
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
Folder Deleted : C:\Users\User1\AppData\Local\Conduit
Folder Deleted : C:\Users\User1\AppData\Local\Coupon Companion Plugin
Folder Deleted : C:\Users\User1\AppData\Local\Temp\Iminent
Folder Deleted : C:\Users\User1\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\User1\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\User1\AppData\LocalLow\uTorrentControl_v2
Folder Deleted : C:\Users\User1\AppData\Roaming\Iminent
Folder Deleted : C:\Users\User1\AppData\Roaming\Mozilla\Firefox\Profiles\wv1dr297.default\FCTB
Folder Deleted : C:\Users\User2\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\User2\AppData\LocalLow\uTorrentControl_v2
Folder Deleted : C:\Users\User2\AppData\Roaming\Iminent
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl_v2
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{537F4F0B-3542-4C7D-A3E5-CF121482696C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Iminent
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandle.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandler
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3220468
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_nonsearch_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_nonsearch_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{537F4F0B-3542-4C7D-A3E5-CF121482696C}
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Umbrella
Key Deleted : HKLM\Software\uTorrentControl_v2
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{26C9BBE4-6D45-4AB6-A5B4-E068C9F5EF6D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{537F4F0B-3542-4C7D-A3E5-CF121482696C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D8F01233-2DE6-4EE7-8988-37263F00651B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0460F03B-7E99-4FAD-85E5-581FB1267D37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DC122EFE-0AC9-4C6B-88B7-FB39603A1963}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473B6BD-4691-4744-A82B-7854EB3D70B6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{118D6CE9-5F18-42F9-958A-14676A629FDE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl_v2 Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [webbooster@iminent.com]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v9.0.8112.16464
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v19.0 (en-US)
 
File : C:\Users\User1\AppData\Roaming\Mozilla\Firefox\Profiles\wv1dr297.default\prefs.js
 
Deleted : user_pref("CT3220468_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Deleted : user_pref("browser.search.selectedEngine", "Search the Web");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.AutoSearchEventData", "auto%20search");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.ClearCacheDate", 13);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.DNSCatch", false);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.DisplayEULA", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.DnsCatchEventData", "dns%20catch");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.EBOMode", false);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.FirstLaunchShown", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.InstallDomain", "ebates.com");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.InstallType", "one_click");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.LoadLayoutDate.100433", 13);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.NewTabSearchEventData", "tab%20search");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.ShowRecommendedOptions", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.StateReportDate", "1363155155402");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.TopRightSearchEventData", "top%20right%20search[...]
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.beforeInstallSaved", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.beforeinstall.homepage", "chrome%3A//branding/l[...]
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.beforeinstall.search", "Google");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.comp.affiliate.170.disabled", false);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.customNewTab", false);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.helpUsImprove", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.hideOthers", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.partnerauth", false);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.processAddrBar", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.remove_homepage", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.remove_search", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.restoreSearch", false);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.runcmd.32415", "703642985");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.searchHistory", true);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.session", "D447EB59D7084756BDD33B78A879CCAD6D5D[...]
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.showFirstLaunchOptions", false);
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.tb_lang", "en");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.tool_id", "100433");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.user_id", "118454446");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.user_key", "a7f09e9fd98aff6d64fcc4b24ebd18b8563[...]
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.user_layouts", "100433");
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.user_lnames", "Ebates%20Cash%20Back%20Toolbar")[...]
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.xml_service_url", "6bb94bbf55fe2f255901a560824a[...]
Deleted : user_pref("freecause35d6291e1d4bf9b4c52f77e6410d1326.yahooSearch", true);
Deleted : user_pref("keyword.URL", "hxxp://srp.freecause.com/?ourmark=3&sid=100433&q=");
Deleted : user_pref("smartbar.machineId", "PZ6WS6JSBZKVS6GIY+8KK2RKCHNJG5NAVAGMTAHOCDDVZ8TI331V/CVP5IIJGE6MW/C[...]
 
File : C:\Users\User2\AppData\Roaming\Mozilla\Firefox\Profiles\nsvj26ki.default\prefs.js
 
[OK] File is clean.
 
-\\ Google Chrome v25.0.1364.152
 
File : C:\Users\User1\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
-\\ Opera v12.10.1652.0
 
File : C:\Users\User1\AppData\Roaming\Opera\Opera\operaprefs.ini
 
[OK] File is clean.
 
File : C:\Users\User2\AppData\Roaming\Opera\Opera\operaprefs.ini
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [28181 octets] - [13/03/2013 23:53:05]
 
########## EOF - C:\AdwCleaner[S1].txt - [28242 octets] ##########


#5 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 14 March 2013 - 11:55 PM

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Users\User1\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\624bb46d-496fa1ae a variant of Java/Exploit.Agent.AI.Gen trojan cleaned by deleting - quarantined
C:\Users\User1\Desktop\DTLite4454-0315.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\User1\Downloads\cbsidlm-tr1_10a-Everest_Ultimate_Edition-SEO-10499291.exe Win32/DownloadAdmin.G application cleaned by deleting - quarantined
C:\Users\User1\Downloads\cbsidlm-tr1_7-Excel_Tool_VBA_Password_Recovery-SEO2-75206791.exe Win32/DownloadAdmin.D application cleaned by deleting - quarantined
C:\Users\User1\Downloads\Party_1984_Hindi_Classic_Parallel_Cinema_DaXclusives_secure.exe Win32/TopMedia.B application cleaned by deleting - quarantined
C:\Users\User1\Downloads\skypelogview.zip a variant of Win32/SkypeLogView.A application deleted - quarantined
C:\Users\User1\Downloads\SoftonicDownloader_for_daemon-tools.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined
C:\Users\User1\Downloads\skypelogview\SkypeLogView.exe a variant of Win32/SkypeLogView.A application cleaned by deleting - quarantined
 
 
 
Before I click finish on EST scan, should I select "Delete quarantined files"? Just making sure. Also, I continued browsing (watching videos and surfing random websites etc) during the EST scan (not during the adwcleaner scan). Is that okay? 

Edited by todo1, 15 March 2013 - 12:16 AM.


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:48 AM

Posted 15 March 2013 - 11:21 AM

Hello,yes you can remove the files.
Well doing surfing while scanning sort of defeats the purpose as you may be at an infecyed site and the scanner has already passed that section in its database.

Appears you have also downloadd infected torrents.


These need to be uninstalled...
Java 7 Update 7 (Version: 7.0.70)
Java 7 Update 9 (64-bit) (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java SE Development Kit 7 Update 9 (64-bit) (Version: 1.7.0.90)
Java™ 6 Update 24 (Version: 6.0.240)
Java™ 6 Update 37 (64-bit) (Version: 6.0.370)
Java™ SE Development Kit 6 Update 37 (64-bit) (Version: 1.6.0.370)
JavaFX 2.1.1 (Version: 2.1.1)


color=blue]Run JavaRa[/color]

  • Please download JavaRa and unzip it in a folder on your desktop.
  • Double-click on JavaRa.exe to start the program.
  • Click on Settings and Place a checkmark beside Create a log file. Click on Back.
  • Click on Update JavaRa Definitions. Click on download. When this is done click on Back.
  • Choose Remove JRE, since you already uninstalled Java, please click on Next.
  • Now click on Perform Removal Routine to remove the older versions of Java installed on your computer.
  • When that's succesfully done, please click OK to close the message.
  • Click on Next. Since you already downloaded the latest version of Java, please click on Next.
  • Now click on Close this wizard and click Finish.
  • From the main menu please choose Additional Tasks
  • Place a checkmark beside Remove Outdated JRE Firefox Extentions and click Run. Mozilla Firefox should be closed before running this task.
  • When that's succesfully done you will see a message at the top saying: "Selected tasks completed successfully".
  • A log file should be created in the same directory as JavaRa.
  • Please post the log in your next reply.
  • Close JavaRa by clicking the red cross button.
  •  
  •  
  • Now install Java Version 7 Update 17

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 16 March 2013 - 04:27 AM

I wasn't sure if I am supposed to install all these Java things manually or JavaRA would have taken care of it.

 

Anyway, I uninstalled all of them manually except Java Auto Updater (Version: 2.1.9.0). I couldn't find it in Add/Remove programs. Should I just run JavaRa now? 

 

Also, I re-ran all the scans - this time without any browsing on side. ESET scan resulted in no threats. Let me know if you would like to me re-post the other 3 scans. I didn't want to overwhelm you by posting them again. 

 

(Also, installed programs under the recent minitoolbar scan no longer lists Java Auto Updater, so maybe uninstalling one of the other things took care of it?) 



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:48 AM

Posted 16 March 2013 - 10:00 AM

The JAVA Ra removes all the Java.. after a reboot you need to install the latest version. Version 7 Update 17

No need for the clean logs.

I think your machine is good now.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 16 March 2013 - 07:21 PM

User initialised redundant data purge.
......................
 
Removed registry subkey tree: 1.5.0_17
Removed registry subkey tree: JavaPlugin.170_09
Removed registry subkey tree: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}
Removed registry subkey: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}
Removed registry subkey: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}
Removed registry subkey: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}
Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}
Removed registry subkey tree: JavaSoft
Removal routine completed successfully. 381 items have been deleted.
User initialised redundant data purge.
......................
 
Removal routine completed successfully. 381 items have been deleted.
 
 
I installed Java version 7 Update 17 after running Java Ra and rebooting the system. 


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:48 AM

Posted 16 March 2013 - 07:34 PM

If all runs well now then...

Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:

  • Go to StartBtn.gif > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.

  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to StartBtn.gif > Run... and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.

Vista and Windows 7 users can refer to these links:


 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 16 March 2013 - 08:13 PM

System Protection is turned off. To turn it back on so you can use System Restore, see Turn System Restore on or off

 

I went to turn System Protection on, and this is what the screen looks like:

 

http://postimage.org/image/m19adb8jn/

 

How exactly should I turn it on, to be safe?


Edited by todo1, 16 March 2013 - 08:14 PM.


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:48 AM

Posted 16 March 2013 - 09:42 PM

Hmmm,I am unsure what that is.. Did ever install another Operating system or upgrade to Win7?

 

Post that image in the Win7 forum and see if one of those wizards recognize it.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 16 March 2013 - 09:50 PM

No, I never installed another OS or upgraded to Win 7.  I installed Win 7 Home directly. 



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:48 AM

Posted 16 March 2013 - 09:54 PM

Post it in the 7 forum and lets see what they say.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 todo1

todo1
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:10:48 AM

Posted 16 March 2013 - 10:27 PM

Okay done. I posted the thread and created the restore point as you suggested. 

 

What next?


Edited by todo1, 16 March 2013 - 10:28 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users