Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer seems infected, but 4 different AV utils detect nothing.


  • Please log in to reply
5 replies to this topic

#1 WaffleKing

WaffleKing

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:43 PM

Posted 13 July 2013 - 04:55 PM

Hello,

 

My computer seems to be infected. Mcafee is periodically intercepting Trojans being downloaded onto my computer, even when I am not using the internet. Also, a version of MRT.exe keeps popping up in my second hard drive inside a folder with a random hexadecimal name; when I check it under "properties", it has no Microsoft markings and thus appears to be fake. My internet also running irregularly.

 

I've scanned my computer with Mcafee, Malwarebytes, Microsoft Security Emergecy Response Tool, and AVG (all scans were run separately), and none of them have detected any infections.  

 

Any help would be greatly appreciated. Thank you.



BC AdBot (Login to Remove)

 


#2 JHMcG

JHMcG

  • Members
  • 242 posts
  • OFFLINE
  •  
  • Local time:01:43 PM

Posted 13 July 2013 - 05:29 PM

You won't be able to do this, because you haven't got a "Ghost Image"; but on my computer, I use "Hot Swap Trays" so I can save whatever I want to, and access it by installing the "Hot Swap Tray" any particular item I want to use is on. That way I can have "Ghost Images" of as many of my partitions as I want. Not long ago I had a similar problem, on my "C" drive. My Internet was running VERY slow, i.e. taking forever to open any link I clicked on. I ran Antimalwarebytes, F-Secure, and XoftSpyXE, and none of them found anything.

 

So, I stuck in the "Hot Swap Tray" with a "Ghost Image" of my "C" drive, and restored my "C" drive from my "Ghost Image". Because Norton Ghost wipes the partition before it does the "Restore", that solved the problem.

 

So it is a good idea to have "Ghost Images" of any of your various partitions that may develop problems.



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:43 PM

Posted 13 July 2013 - 07:20 PM

Hello, the proper file MRT.exe belongs to the Microsoft Windows Malicious Software Removal Tool and is located in the folder C:\Windows\System32, is that where yours is?


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 WaffleKing

WaffleKing
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:43 PM

Posted 13 July 2013 - 07:32 PM

The MRT.exe that shows up on my computer is on my second hard drive; in shows up in folders like f:\a789g6df8glaerjkog9v\MRT.exe. When I check the properties, it does not show any Microsoft markings in "copyright", etc. I am pretty sure it is a fake.



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:43 PM

Posted 13 July 2013 - 07:36 PM

OK, probably is a malware then.. Let's see if we can see it.
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results.
 
Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 WaffleKing

WaffleKing
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:43 PM

Posted 14 July 2013 - 06:23 PM

Ok, here are the results.

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Alan (administrator) on 14-07-2013 at 00:14:00
Running from "C:\Users\Alan\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Supercomputer
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 1C-6F-65-32-02-34
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::74f2:f7ea:f4f1:ae37%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.2.4(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, July 13, 2013 3:18:09 PM
   Lease Expires . . . . . . . . . . : Wednesday, August 20, 2149 6:42:24 AM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 236744549
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-4F-36-8C-1C-6F-65-32-02-34
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.Belkin:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server: 
Address:  192.168.2.1

Name:    google.com
Addresses:  2607:f8b0:4008:802::1005
   173.194.37.98
   173.194.37.110
   173.194.37.96
   173.194.37.104
   173.194.37.103
   173.194.37.102
   173.194.37.101
   173.194.37.105
   173.194.37.97
   173.194.37.99
   173.194.37.100

Pinging google.com [74.125.229.198] with 32 bytes of data:
Reply from 74.125.229.198: bytes=32 time=492ms TTL=55
Reply from 74.125.229.198: bytes=32 time=12ms TTL=55

Ping statistics for 74.125.229.198:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 12ms, Maximum = 492ms, Average = 252ms
Server: 
Address:  192.168.2.1

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=127ms TTL=49
Reply from 98.138.253.109: bytes=32 time=62ms TTL=49

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 62ms, Maximum = 127ms, Average = 94ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...1c 6f 65 32 02 34 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1      192.168.2.4     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.2.0    255.255.255.0         On-link       192.168.2.4    276
      192.168.2.4  255.255.255.255         On-link       192.168.2.4    276
    192.168.2.255  255.255.255.255         On-link       192.168.2.4    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.2.4    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.2.4    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    276 fe80::/64                On-link
 10    276 fe80::74f2:f7ea:f4f1:ae37/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/13/2013 11:39:33 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (07/13/2013 03:48:51 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {c241d584-cb00-46c7-ad5a-da0413d64c76}

Error: (07/13/2013 03:35:25 PM) (Source: Application Error) (User: )
Description: Faulting application name: Crysis64.exe, version: 1.1.1.6156, time stamp: 0x47d6d9cf
Faulting module name: CrySystem.dll, version: 1.1.1.6156, time stamp: 0x47d6e0a0
Exception code: 0xc000008f
Fault offset: 0x0000000000085bdc
Faulting process id: 0x28e4
Faulting application start time: 0xCrysis64.exe0
Faulting application path: Crysis64.exe1
Faulting module path: Crysis64.exe2
Report Id: Crysis64.exe3

Error: (07/13/2013 03:19:18 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {c241d584-cb00-46c7-ad5a-da0413d64c76}

Error: (07/13/2013 07:18:56 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (07/13/2013 07:17:25 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/13/2013 05:21:12 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (07/12/2013 10:40:29 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (07/12/2013 00:36:32 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (07/12/2013 00:31:51 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

System errors:
=============
Error: (07/14/2013 00:13:23 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:11:59 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:11:59 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:08:23 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:03:23 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:00:01 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:00:01 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:00:01 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:00:01 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Error: (07/14/2013 00:00:01 AM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume H:.

Microsoft Office Sessions:
=========================
Error: (07/13/2013 11:39:33 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (07/13/2013 03:48:51 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.

Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {c241d584-cb00-46c7-ad5a-da0413d64c76}

Error: (07/13/2013 03:35:25 PM) (Source: Application Error)(User: )
Description: Crysis64.exe1.1.1.615647d6d9cfCrySystem.dll1.1.1.615647d6e0a0c000008f0000000000085bdc28e401ce7fffff47a5f5C:\Program Files (x86)\Steam\steamapps\common\Crysis\Bin32\Crysis64.exeC:\Program Files (x86)\Steam\steamapps\common\Crysis\Bin32\CrySystem.dll5d190616-ebf3-11e2-ba6a-1c6f65320234

Error: (07/13/2013 03:19:18 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.

Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {c241d584-cb00-46c7-ad5a-da0413d64c76}

Error: (07/13/2013 07:18:56 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Steam\steamapps\common\wolfenstein\MP\serverlauncher.exe

Error: (07/13/2013 07:17:25 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (07/13/2013 05:21:12 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (07/12/2013 10:40:29 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (07/12/2013 00:36:32 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\Steam\steamapps\common\wolfenstein\MP\serverlauncher.exe

Error: (07/12/2013 00:31:51 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

CodeIntegrity Errors:
===================================
  Date: 2013-07-10 20:51:26.761
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-07-10 20:51:26.761
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-07-10 20:51:26.761
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-07-08 17:47:43.853
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-07-08 17:47:43.850
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-07-08 17:47:43.848
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-22 16:32:18.607
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-22 16:32:18.607
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-22 16:32:18.607
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-22 06:04:49.921
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

@BIOS Ver.2.06 (Version: 2.06)
3DMark06 (Version: 1.2.0)
7-Zip 9.20
Acronis True Image WD Edition (Version: 13.0.14184)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader 9.2 (Version: 9.2.0)
Afterfall InSanity Extended Edition
Alan Wake
Alan Wake's American Nightmare
Aliens versus Predator Classic 2000
Aliens vs. Predator
Aliens: Colonial Marines
Alpha Prime
Amazon Games & Software Downloader (Version: 2.0.2.0)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
Amnesia: The Dark Descent
AquaNox
Area 51® (Version: 1.00.0000)
Assassin's Creed
Assassin's Creed Brotherhood
Assassin's Creed II
ATI AVIVO64 Codecs (Version: 10.10.0.41006)
ATI Catalyst Registration (Version: 3.00.0000)
ATI Problem Report Wizard (Version: 3.0.745.0)
Audacity 1.3.12 (Unicode)
AutoGreen B09.1014.2 (Version: 1.00.0000)
AVG 2013 (Version: 13.0.3204)
AVG 2013 (Version: 13.0.3349)
AVG 2013 (Version: 2013.0.3349)
Batman: Arkham City™
Battlefield 3™ (Version: 1.4.0.0)
Battlefield: Bad Company 2
Battlelog Web Plugins (Version: 2.1.7)
Belkin Setup and Router Monitor
Binary Domain
BioShock
BioShock 2
BioShock 2 (Version: 1.0.0003.131)
BioShock 2 (Version: 1.0.0005.131)
BioShock Infinite
BlackSite: Area 51 (Version: 1.00.0000)
Borderlands
Browser Configuration Utility (Version: 1.1.18.0)
Bulletstorm
Call Of Cthulhu DCoTE (Version: 1.00.000)
Call of Duty® 4 - Modern Warfare™ (Version: 1.00.0000)
Call of Duty® 4 - Modern Warfare™ (Version: 1.7)
Call of Duty® 4 - Modern Warfare™ 1.6 Patch
Call of Duty® 4 - Modern Warfare™ 1.6 Patch (Version: 1.6)
Call of Duty® 4 - Modern Warfare™ 1.7 Patch
Call of Duty® 4 - Modern Warfare™ 1.7 Patch (Version: 1.7)
Call of Duty: Black Ops II
Call of Duty: Black Ops II - Multiplayer
Call of Duty: Black Ops II - Zombies
Call of Duty: Modern Warfare 2
Call of Duty: Modern Warfare 3
Call of Duty: Modern Warfare 3 - Multiplayer
Call of Duty: World at War
Call of Juarez Gunslinger
Call of Juarez: Bound in Blood
Call of Juarez: The Cartel
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2013.0328.2218.38225)
Catalyst Control Center Graphics Previews Common (Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (Version: 2013.0328.2218.38225)
Catalyst Control Center Localization All (Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (Version: 2013.0328.2217.38225)
CCC Help Czech (Version: 2013.0328.2217.38225)
CCC Help Danish (Version: 2013.0328.2217.38225)
CCC Help Dutch (Version: 2013.0328.2217.38225)
CCC Help English (Version: 2013.0328.2217.38225)
CCC Help Finnish (Version: 2013.0328.2217.38225)
CCC Help French (Version: 2013.0328.2217.38225)
CCC Help German (Version: 2013.0328.2217.38225)
CCC Help Greek (Version: 2013.0328.2217.38225)
CCC Help Hungarian (Version: 2013.0328.2217.38225)
CCC Help Italian (Version: 2013.0328.2217.38225)
CCC Help Japanese (Version: 2013.0328.2217.38225)
CCC Help Korean (Version: 2013.0328.2217.38225)
CCC Help Norwegian (Version: 2013.0328.2217.38225)
CCC Help Polish (Version: 2013.0328.2217.38225)
CCC Help Portuguese (Version: 2013.0328.2217.38225)
CCC Help Russian (Version: 2013.0328.2217.38225)
CCC Help Spanish (Version: 2013.0328.2217.38225)
CCC Help Swedish (Version: 2013.0328.2217.38225)
CCC Help Thai (Version: 2013.0328.2217.38225)
CCC Help Turkish (Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2013.0328.2218.38225)
Chaser
Classic Doom 3 1.1 (Version: 1.1)
Clive Barker's Jericho
ColdFear (Version: 1.00.0000)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Condemned: Criminal Origins
CPUID HWMonitor 1.16
Cry of Fear
Cryostasis (Remove Only) (Version: 1.01)
Crysis WARHEAD®
Crysis WARHEAD® (Version: 1.0)
Crysis WARHEAD® Patch
Crysis WARHEAD® Patch (Version: 1.0)
Crysis® 2 (Version: 1.0.0.0)
Crysis®3 (Version: 1.0.0.0)
CyberLink BD Advisor 2.0
CyberLink Blu-ray Disc Suite (Version: 6.0.2604)
CyberLink InstantBurn (Version: 5.0.4617)
CyberLink LabelPrint (Version: 2.5.1720)
CyberLink MediaShow (Version: 4.1.3117)
CyberLink Power2Go (Version: 6.1.2918)
CyberLink PowerDVD 8 (Version: 8.0.3228)
CyberLink PowerProducer (Version: 5.0.1.1111)
Dark Messiah Might and Magic Single Player
Dark Sector
Dark Souls: Prepare to Die Edition
Dark Void
Data Lifeguard Diagnostic for Windows 1.22
Dead Island Riptide
Dead Rising 2
Dead Rising 2 (Version: 1.0.0002.130)
Dead Rising 2: Off the Record
Dead Space
Dead Space 2
Dead Space™ 3 (Version: 1.0.0.0)
DEFCON
DES 2.0 (Version: 1.00.0000)
Deus Ex: Game of the Year Edition
Deus Ex: Human Revolution - The Missing Link
Deus Ex: Invisible War
Dishonored (Version: 1.0)
Doom 3 (Version: 1.2)
DOOM 3: BFG Edition
DOOM 3: Resurrection of Evil (Version: 1.0)
Dual-Core Optimizer (Version: 1.1.4.0169)
Duke Nukem 3D: Megaton Edition
Duke Nukem Forever
Easy Tune 6 B10.0420.1 (Version: 1.00.0000)
Epson Event Manager (Version: 2.30.01)
Epson FAX Utility (Version: 1.00.01)
Epson PC-FAX Driver
EPSON Scan
EPSON WorkForce 610 Series Printer Uninstall
EpsonNet Print (Version: 2.4i)
EpsonNet Setup (Version: 3.1c)
ESET Online Scanner v3
ESN Sonar (Version: 0.70.4)
Evoland
F.E.A.R. 2: Project Origin
F.E.A.R. 3
F.E.A.R.: Extraction Point
Fable - The Lost Chapters
Fallout 3 - The Garden of Eden Creation Kit (Version: 1.00.0000)
Fallout 3 (Version: 1.00.0000)
Fallout: New Vegas
Far Cry (Patch 1.32 AMD64) (Version: 1.00.0000)
Far Cry (Patch 1.4) (Version: 1.00.0000)
Far Cry (Version: 1.00.0000)
Far Cry 2
Far Cry® 3
Firebird SQL Server - MAGIX Edition (Version: 2.1.23.0)
Fraps (remove only)
GameSpy Arcade
Gears of War (Version: 1.00.0000)
Ghostbusters ™: The Video Game (Version: 1.00.0000)
Gigabyte Raid Configurer (Version: 1.00.0001)
Google Chrome (Version: 28.0.1500.72)
Google Update Helper (Version: 1.3.21.153)
Gore: Special Edition v1.60.9 (Version: 1.60.9)
Half-Life 2
Half-Life 2: Episode One
Half-Life 2: Episode Two
Half-Life Decay PC 1.0
Half-Life: Blue Shift
Half-Life: Opposing Force
Halo 2 for Windows Vista
Halo 2 for Windows Vista (Version: 1.0.0.0)
HD Tune 2.55
Hitman 2: Silent Assassin
Hitman: Absolution
Hitman: Blood Money
Hitman: Codename 47
HOMEFRONT
Hotline Miami
HydraVision (Version: 4.2.114.0)
I Am Alive
Inversion™
James Bond: Blood Stone
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Judge Dredd: Dredd vs Death
Just Cause
Just Cause 2
Kane & Lynch 2: Dog Days
L.A. Noire
LAME v3.98.3 for Audacity
Left 4 Dead
Left 4 Dead 2
Legendary
LightScribe System Software (Version: 1.18.1.1)
Lost Planet: Extreme Condition - Colonies Edition
Mafia II
MAGIX Movie Edit Pro 15 8.6.0.17 (UK) (Version: 8.6.0.17)
MAGIX Photo Manager 8 6.0.1.465 (UK) (Version: 6.0.1.465)
MAGIX Screenshare 4.3.6.1987 (UK) (Version: 4.3.6.1987)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Max Payne
Max Payne 2: The Fall of Max Payne
Max Payne 3
McAfee Online Backup (Version: 1.16.4.0)
McAfee Security Scan Plus (Version: 3.0.318.3)
McAfee Total Protection (Version: 12.1.353)
Medal of Honor™ Single Player
Medal of Honor: Airborne
Medal of Honor™ Warfighter (Version: 1.0.0.3)
Metro 2033
Miasmata
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Halo
Microsoft Halo Custom Edition
Microsoft Office XP Standard (Version: 10.0.6626.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Minecraft Backup Assistant (Version: 2.5.0.0)
Mirror's Edge
Monkey Island 2: Special Edition
Mount & Blade: Warband
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
mufin player 1.0.0.99 (US) (Version: 1.0.0.99)
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.18.0)
NecroVisioN
NecrovisioN: Lost Company
Nosferatu
NVIDIA PhysX (Version: 9.11.1111)
Oddworld: Stranger's Wrath
ON_OFF Charge B10.0422.2 (Version: 1.00.0001)
OpenAL
OpenSauce for Halo CE (Version: 3.0.3)
Operation Flashpoint: Dragon Rising
Origin (Version: 8.5.2.23)
Painkiller Hell & Damnation
Painkiller: Black Edition
Paint Shop Pro 7 (Version: 7.0.0.0000)
Portal
Portal 2
POSTAL 2 Complete
Prey (Version: 1.0)
Prince of Persia: The Sands of Time
Prince of Persia: Warrior Within
Project: Snowblind 1.0
PunkBuster Services (Version: 0.987)
Quake 4™ (Version: 1.0)
Quake II™ (Version: 1.0)
Quake III Arena
Quake Mission Pack 1: Scourge of Armagon
Quake Mission Pack 2: Dissolution of Eternity
Quantum of Solace™ 1.1 Patch
Quantum of Solace™ 1.1 Patch (Version: 1.1)
RAGE
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.17.304.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6077)
Red Faction II
Red Faction: Armageddon
Red Faction: Guerrilla
redist (Version: 1.0.0.0)
Resident Evil 5
Resident Evil 6 / Biohazard 6
Resident Evil™: Operation Raccoon City
Return to Castle Wolfenstein
S.T.A.L.K.E.R. - Shadow of Chernobyl [v1.0005] (Version: 1.0005)
S.T.A.L.K.E.R.: Call of Pripyat
S.T.A.L.K.E.R.: Clear Sky
Scribblenauts Unlimited
Section 8: Prejudice
Serious Sam 2
Serious Sam 3: BFE
Serious Sam HD: The First Encounter
Serious Sam HD: The Second Encounter
Shared C Run-time for x64 (Version: 10.0.0)
Sierra Utilities
Silent Hill: Homecoming
SiN Episodes: Emergence
Singularity
Smart 6 B10.0422.1 (Version: 1.00.0000)
Sniper Ghost Warrior 2
Soldier of Fortune Payback (Version: 1.0.4)
Source SDK Base 2007
Spec Ops: The Line
Spybot - Search & Destroy (Version: 2.1.20)
Star Wars Republic Commando
Steam (Version: 1.0.0.0)
Surgeon Simulator 2013
Syndicate™ (Version: 1.0.0.1)
System Shock 2
Terminator Salvation
The Chronicles of Riddick: Assault on Dark Athena
The Club
The Darkness II
The Elder Scrolls IV: Oblivion
The Elder Scrolls V: Skyrim
The Secret of Monkey Island: Special Edition
The Sims™ 3
TimeShift (Version: 1.00.000)
Tom Clancy's Ghost Recon Future Soldier
Tom Clancy's Ghost Recon: Advanced Warfighter 2
Tom Clancy's Rainbow Six: Lockdown
Tom Clancy's Rainbow Six: Vegas
Tom Clancy's Rainbow Six: Vegas 2
Tom Clancy's Splinter Cell
Tom Clancy's Splinter Cell: Chaos Theory
Tom Clancy's Splinter Cell: Conviction
Tom Clancy's Splinter Cell: Double Agent
Touchstone Installer (Version: 1.00.000)
Towns
Turok (Version: 1.0)
Ubisoft Game Launcher (Version: 1.0.0.0)
Unreal II: The Awakening
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Uplay (Version: 2.0)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 1.1.5 (Version: 1.1.5)
Warhammer 40,000 Space Marine
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinRAR archiver
Wolfenstein 3D
Wolfenstein 3D: Spear of Destiny
Wolfenstein™ 1.2 Patch
Wolfram
Wolfram Patch 1.1
XCOM: Enemy Unknown
Zeno Clash

========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 12286.48 MB
Available physical RAM: 7957.58 MB
Total Pagefile: 24571.15 MB
Available Pagefile: 20479.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.4 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:1862.92 GB) (Free:745.22 GB) NTFS
3 Drive d: (HL2EP3 BUILD 0.4) (CDROM) (Total:3.74 GB) (Free:0 GB) UDF
4 Drive e: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
5 Drive f: () (Fixed) (Total:1397.17 GB) (Free:1154.17 GB) NTFS
6 Drive g: (FreeAgent Drive) (Fixed) (Total:298.09 GB) (Free:169.63 GB) NTFS

========================= Users: ========================================

User accounts for \\SUPERCOMPUTER

Administrator            Alan                     ASPNET                  
Guest                   

**** End of log ****

 

00:27:57.0779 6180  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
00:27:59.0433 6180  ============================================================
00:27:59.0433 6180  Current date / time: 2013/07/14 00:27:59.0433
00:27:59.0433 6180  SystemInfo:
00:27:59.0433 6180 
00:27:59.0433 6180  OS Version: 6.1.7601 ServicePack: 1.0
00:27:59.0433 6180  Product type: Workstation
00:27:59.0433 6180  ComputerName: SUPERCOMPUTER
00:27:59.0433 6180  UserName: Alan
00:27:59.0433 6180  Windows directory: C:\Windows
00:27:59.0433 6180  System windows directory: C:\Windows
00:27:59.0433 6180  Running under WOW64
00:27:59.0433 6180  Processor architecture: Intel x64
00:27:59.0433 6180  Number of processors: 8
00:27:59.0433 6180  Page size: 0x1000
00:27:59.0433 6180  Boot type: Normal boot
00:27:59.0433 6180  ============================================================
00:28:01.0133 6180  Drive \Device\Harddisk1\DR1 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0xA8178, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
00:28:01.0149 6180  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:28:01.0149 6180  Drive \Device\Harddisk2\DR2 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:28:04.0534 6180  Drive \Device\Harddisk3\DR3 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:28:04.0534 6180  ============================================================
00:28:04.0534 6180  \Device\Harddisk1\DR1:
00:28:04.0534 6180  MBR partitions:
00:28:04.0534 6180  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
00:28:04.0534 6180  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xAEA54800
00:28:04.0534 6180  \Device\Harddisk0\DR0:
00:28:04.0534 6180  MBR partitions:
00:28:04.0534 6180  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
00:28:04.0534 6180  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xE8DD6000
00:28:04.0534 6180  \Device\Harddisk2\DR2:
00:28:04.0534 6180  MBR partitions:
00:28:04.0534 6180  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2542D682
00:28:04.0534 6180  \Device\Harddisk3\DR3:
00:28:04.0534 6180  MBR partitions:
00:28:04.0534 6180  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
00:28:04.0534 6180  ============================================================
00:28:04.0565 6180  C: <-> \Device\Harddisk0\DR0\Partition2
00:28:04.0581 6180  F: <-> \Device\Harddisk1\DR1\Partition2
00:28:04.0705 6180  G: <-> \Device\Harddisk2\DR2\Partition1
00:28:04.0705 6180  E: <-> \Device\Harddisk1\DR1\Partition1
00:28:04.0705 6180  ============================================================
00:28:04.0705 6180  Initialize success
00:28:04.0705 6180  ============================================================
00:28:32.0988 8232  ============================================================
00:28:32.0988 8232  Scan started
00:28:32.0988 8232  Mode: Manual; TDLFS;
00:28:32.0988 8232  ============================================================
00:28:35.0578 8232  ================ Scan system memory ========================
00:28:35.0578 8232  System memory - ok
00:28:35.0578 8232  ================ Scan services =============================
00:28:35.0703 8232  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
00:28:35.0718 8232  1394ohci - ok
00:28:35.0734 8232  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
00:28:35.0750 8232  ACPI - ok
00:28:35.0781 8232  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
00:28:35.0781 8232  AcpiPmi - ok
00:28:35.0843 8232  [ D9425B7D296D187C7F1A2D76183D391B ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
00:28:35.0984 8232  AcrSch2Svc - ok
00:28:36.0077 8232  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:28:36.0077 8232  AdobeFlashPlayerUpdateSvc - ok
00:28:36.0108 8232  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
00:28:36.0124 8232  adp94xx - ok
00:28:36.0124 8232  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
00:28:36.0140 8232  adpahci - ok
00:28:36.0155 8232  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
00:28:36.0171 8232  adpu320 - ok
00:28:36.0186 8232  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
00:28:36.0186 8232  AeLookupSvc - ok
00:28:36.0233 8232  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
00:28:36.0233 8232  AFD - ok
00:28:36.0311 8232  [ 7E077309910CE334C3B2B7B8665A55C4 ] AffinegyService C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
00:28:36.0467 8232  AffinegyService - ok
00:28:36.0498 8232  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
00:28:36.0498 8232  agp440 - ok
00:28:36.0514 8232  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
00:28:36.0514 8232  ALG - ok
00:28:36.0530 8232  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
00:28:36.0530 8232  aliide - ok
00:28:36.0592 8232  [ FF6F0F6A2D72065AE4300426FA414693 ] Amazon Download Agent C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
00:28:36.0701 8232  Amazon Download Agent - ok
00:28:36.0717 8232  [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
00:28:36.0732 8232  AMD External Events Utility - ok
00:28:36.0732 8232  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
00:28:36.0732 8232  amdide - ok
00:28:36.0748 8232  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
00:28:36.0764 8232  AmdK8 - ok
00:28:36.0920 8232  [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
00:28:37.0076 8232  amdkmdag - ok
00:28:37.0091 8232  [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
00:28:37.0107 8232  amdkmdap - ok
00:28:37.0107 8232  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
00:28:37.0122 8232  AmdPPM - ok
00:28:37.0138 8232  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
00:28:37.0138 8232  amdsata - ok
00:28:37.0138 8232  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
00:28:37.0154 8232  amdsbs - ok
00:28:37.0154 8232  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
00:28:37.0154 8232  amdxata - ok
00:28:37.0185 8232  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
00:28:37.0185 8232  AppID - ok
00:28:37.0200 8232  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
00:28:37.0200 8232  AppIDSvc - ok
00:28:37.0216 8232  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
00:28:37.0216 8232  Appinfo - ok
00:28:37.0232 8232  [ A632D9EA15F37D2605A7FCAF3892EC96 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
00:28:37.0590 8232  AppleCharger - ok
00:28:37.0606 8232  [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
00:28:37.0684 8232  AppleChargerSrv - ok
00:28:37.0700 8232  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
00:28:37.0700 8232  arc - ok
00:28:37.0715 8232  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
00:28:37.0715 8232  arcsas - ok
00:28:37.0809 8232  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:28:37.0824 8232  aspnet_state - ok
00:28:37.0840 8232  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
00:28:37.0840 8232  AsyncMac - ok
00:28:37.0856 8232  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
00:28:37.0856 8232  atapi - ok
00:28:37.0887 8232  [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
00:28:37.0887 8232  AtiHDAudioService - ok
00:28:37.0918 8232  [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
00:28:37.0980 8232  AtiHdmiService - ok
00:28:38.0136 8232  [ 79CC9BE187E3144E1B58A54B842475E7 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
00:28:38.0168 8232  atikmdag - ok
00:28:38.0230 8232  [ 64F07381335E37C142F6D176705FFCA6 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
00:28:38.0589 8232  atksgt - ok
00:28:38.0620 8232  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:28:38.0636 8232  AudioEndpointBuilder - ok
00:28:38.0636 8232  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
00:28:38.0651 8232  AudioSrv - ok
00:28:38.0792 8232  [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
00:28:38.0807 8232  AVGIDSAgent - ok
00:28:38.0823 8232  [ 139BD30C32BEE830D0CF39C5324D79DE ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
00:28:38.0823 8232  AVGIDSDriver - ok
00:28:38.0838 8232  [ 2940FACB6EF92BD1936E4A1E2502468E ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
00:28:38.0885 8232  AVGIDSHA - ok
00:28:38.0916 8232  [ 54B66C4AEEC6C4F742F3569EBA03EBB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
00:28:38.0916 8232  Avgldx64 - ok
00:28:38.0948 8232  [ 13667B5D6310228A9FEF2BA5FCD9081F ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
00:28:39.0041 8232  Avgloga - ok
00:28:39.0057 8232  [ BE82F9A1F2CCF4CE746D0C645D94079E ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
00:28:39.0119 8232  Avgmfx64 - ok
00:28:39.0119 8232  [ 5D11620DEF66F9DC9468FEE385A8429B ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
00:28:39.0166 8232  Avgrkx64 - ok
00:28:39.0182 8232  [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
00:28:39.0182 8232  Avgtdia - ok
00:28:39.0197 8232  [ A2DC9FEB5466F8EAD9C06527EF464A05 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
00:28:39.0197 8232  avgtp - ok
00:28:39.0213 8232  [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
00:28:39.0213 8232  avgwd - ok
00:28:39.0275 8232  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
00:28:39.0275 8232  AxInstSV - ok
00:28:39.0291 8232  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
00:28:39.0306 8232  b06bdrv - ok
00:28:39.0306 8232  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
00:28:39.0322 8232  b57nd60a - ok
00:28:39.0338 8232  [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService      C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
00:28:39.0353 8232  BCUService - ok
00:28:39.0369 8232  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
00:28:39.0384 8232  BDESVC - ok
00:28:39.0400 8232  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
00:28:39.0400 8232  Beep - ok
00:28:39.0447 8232  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
00:28:39.0462 8232  BFE - ok
00:28:39.0509 8232  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
00:28:39.0525 8232  BITS - ok
00:28:39.0540 8232  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
00:28:39.0540 8232  blbdrive - ok
00:28:39.0572 8232  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
00:28:39.0572 8232  bowser - ok
00:28:39.0587 8232  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:28:39.0587 8232  BrFiltLo - ok
00:28:39.0603 8232  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:28:39.0603 8232  BrFiltUp - ok
00:28:39.0634 8232  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
00:28:39.0634 8232  BridgeMP - ok
00:28:39.0665 8232  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
00:28:39.0665 8232  Browser - ok
00:28:39.0681 8232  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
00:28:39.0681 8232  Brserid - ok
00:28:39.0696 8232  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
00:28:39.0712 8232  BrSerWdm - ok
00:28:39.0728 8232  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
00:28:39.0728 8232  BrUsbMdm - ok
00:28:39.0728 8232  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
00:28:39.0743 8232  BrUsbSer - ok
00:28:39.0743 8232  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
00:28:39.0759 8232  BTHMODEM - ok
00:28:39.0759 8232  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
00:28:39.0774 8232  bthserv - ok
00:28:39.0790 8232  catchme - ok
00:28:39.0806 8232  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
00:28:39.0806 8232  cdfs - ok
00:28:39.0837 8232  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
00:28:39.0837 8232  cdrom - ok
00:28:39.0868 8232  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
00:28:39.0868 8232  CertPropSvc - ok
00:28:39.0915 8232  [ 2AD1777CE210B7832B70F25487BFBE64 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
00:28:39.0915 8232  cfwids - ok
00:28:39.0930 8232  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
00:28:39.0946 8232  circlass - ok
00:28:39.0962 8232  [ FBC25088395AC01743DE69BBDF9E07D0 ] CLBStor         C:\Windows\system32\DRIVERS\CLBStor.sys
00:28:39.0962 8232  CLBStor - ok
00:28:39.0977 8232  [ 3D42680B3EC6056B51C787360988A253 ] CLBUDF          C:\Windows\system32\drivers\CLBUDF.sys
00:28:39.0977 8232  CLBUDF - ok
00:28:39.0993 8232  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
00:28:40.0008 8232  CLFS - ok
00:28:40.0040 8232  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:28:40.0040 8232  clr_optimization_v2.0.50727_32 - ok
00:28:40.0071 8232  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:28:40.0071 8232  clr_optimization_v2.0.50727_64 - ok
00:28:40.0133 8232  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:28:40.0164 8232  clr_optimization_v4.0.30319_32 - ok
00:28:40.0180 8232  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:28:40.0211 8232  clr_optimization_v4.0.30319_64 - ok
00:28:40.0227 8232  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
00:28:40.0227 8232  CmBatt - ok
00:28:40.0242 8232  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
00:28:40.0258 8232  cmdide - ok
00:28:40.0289 8232  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
00:28:40.0305 8232  CNG - ok
00:28:40.0305 8232  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
00:28:40.0320 8232  Compbatt - ok
00:28:40.0336 8232  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
00:28:40.0352 8232  CompositeBus - ok
00:28:40.0367 8232  COMSysApp - ok
00:28:40.0508 8232  cpuz130 - ok
00:28:40.0601 8232  [ 95C88D25E211A4D52A82C53E5D93E634 ] cpuz133         C:\Windows\system32\drivers\cpuz133_x64.sys
00:28:40.0664 8232  cpuz133 - ok
00:28:40.0679 8232  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
00:28:40.0679 8232  crcdisk - ok
00:28:40.0710 8232  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
00:28:40.0710 8232  CryptSvc - ok
00:28:40.0757 8232  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
00:28:40.0757 8232  DcomLaunch - ok
00:28:40.0773 8232  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
00:28:40.0788 8232  defragsvc - ok
00:28:40.0820 8232  [ FDC0C5ADDE1CDE6EDB0BEF78F0699AF3 ] DES2 Service    C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
00:28:40.0898 8232  DES2 Service - ok
00:28:40.0929 8232  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
00:28:40.0929 8232  DfsC - ok
00:28:40.0976 8232  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
00:28:40.0976 8232  Dhcp - ok
00:28:40.0991 8232  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
00:28:41.0007 8232  discache - ok
00:28:41.0038 8232  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
00:28:41.0038 8232  Disk - ok
00:28:41.0069 8232  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
00:28:41.0085 8232  Dnscache - ok
00:28:41.0116 8232  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
00:28:41.0116 8232  dot3svc - ok
00:28:41.0147 8232  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
00:28:41.0147 8232  DPS - ok
00:28:41.0178 8232  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
00:28:41.0178 8232  drmkaud - ok
00:28:41.0225 8232  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
00:28:41.0241 8232  DXGKrnl - ok
00:28:41.0256 8232  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
00:28:41.0256 8232  EapHost - ok
00:28:41.0303 8232  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
00:28:41.0381 8232  ebdrv - ok
00:28:41.0397 8232  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
00:28:41.0412 8232  EFS - ok
00:28:41.0459 8232  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
00:28:41.0475 8232  ehRecvr - ok
00:28:41.0490 8232  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
00:28:41.0490 8232  ehSched - ok
00:28:41.0522 8232  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
00:28:41.0522 8232  elxstor - ok
00:28:41.0584 8232  [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
00:28:41.0709 8232  EpsonBidirectionalService - ok
00:28:41.0787 8232  [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
00:28:41.0802 8232  EPSON_EB_RPCV4_01 - ok
00:28:41.0818 8232  [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
00:28:41.0834 8232  EPSON_PM_RPCV4_01 - ok
00:28:41.0849 8232  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
00:28:41.0849 8232  ErrDev - ok
00:28:41.0880 8232  [ 84486624268E078255BC7AA47F0960BC ] etdrv           C:\Windows\etdrv.sys
00:28:41.0880 8232  etdrv - ok
00:28:41.0896 8232  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
00:28:41.0896 8232  EventSystem - ok
00:28:41.0912 8232  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
00:28:41.0912 8232  exfat - ok
00:28:41.0943 8232  Fabs - ok
00:28:41.0958 8232  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
00:28:41.0958 8232  fastfat - ok
00:28:42.0005 8232  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
00:28:42.0021 8232  Fax - ok
00:28:42.0068 8232  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
00:28:42.0068 8232  fdc - ok
00:28:42.0068 8232  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
00:28:42.0068 8232  fdPHost - ok
00:28:42.0099 8232  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
00:28:42.0099 8232  FDResPub - ok
00:28:42.0114 8232  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
00:28:42.0130 8232  FileInfo - ok
00:28:42.0130 8232  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
00:28:42.0146 8232  Filetrace - ok
00:28:42.0192 8232  [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
00:28:42.0473 8232  FirebirdServerMAGIXInstance - ok
00:28:42.0489 8232  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
00:28:42.0489 8232  flpydisk - ok
00:28:42.0504 8232  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
00:28:42.0520 8232  FltMgr - ok
00:28:42.0567 8232  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
00:28:42.0598 8232  FontCache - ok
00:28:42.0629 8232  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:28:42.0645 8232  FontCache3.0.0.0 - ok
00:28:42.0645 8232  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
00:28:42.0660 8232  FsDepends - ok
00:28:42.0692 8232  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
00:28:42.0692 8232  Fs_Rec - ok
00:28:42.0723 8232  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
00:28:42.0738 8232  fvevol - ok
00:28:42.0754 8232  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
00:28:42.0754 8232  gagp30kx - ok
00:28:42.0785 8232  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
00:28:42.0785 8232  gdrv - ok
00:28:42.0832 8232  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
00:28:42.0832 8232  gpsvc - ok
00:28:42.0863 8232  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:28:42.0863 8232  gupdate - ok
00:28:42.0863 8232  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:28:42.0863 8232  gupdatem - ok
00:28:42.0894 8232  [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64        C:\Windows\GVTDrv64.sys
00:28:43.0160 8232  GVTDrv64 - ok
00:28:43.0175 8232  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
00:28:43.0175 8232  hcw85cir - ok
00:28:43.0222 8232  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:28:43.0222 8232  HdAudAddService - ok
00:28:43.0238 8232  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
00:28:43.0253 8232  HDAudBus - ok
00:28:43.0269 8232  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
00:28:43.0269 8232  HidBatt - ok
00:28:43.0284 8232  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
00:28:43.0284 8232  HidBth - ok
00:28:43.0300 8232  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
00:28:43.0300 8232  HidIr - ok
00:28:43.0316 8232  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
00:28:43.0316 8232  hidserv - ok
00:28:43.0331 8232  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
00:28:43.0331 8232  HidUsb - ok
00:28:43.0378 8232  [ 852681A14AFEE00C0C3179429A08C868 ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
00:28:43.0394 8232  HipShieldK - ok
00:28:43.0425 8232  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
00:28:43.0425 8232  hkmsvc - ok
00:28:43.0456 8232  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:28:43.0456 8232  HomeGroupListener - ok
00:28:43.0487 8232  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:28:43.0487 8232  HomeGroupProvider - ok
00:28:43.0596 8232  [ 3EED433F64445D5B49A396BD3AEDE37A ] HomeNetSvc      C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
00:28:43.0596 8232  HomeNetSvc - ok
00:28:43.0612 8232  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
00:28:43.0612 8232  HpSAMD - ok
00:28:43.0659 8232  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
00:28:43.0674 8232  HTTP - ok
00:28:43.0690 8232  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
00:28:43.0706 8232  hwpolicy - ok
00:28:43.0737 8232  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
00:28:43.0752 8232  i8042prt - ok
00:28:43.0784 8232  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
00:28:43.0784 8232  iaStorV - ok
00:28:43.0830 8232  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:28:43.0830 8232  IDriverT - ok
00:28:43.0877 8232  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:28:43.0893 8232  idsvc - ok
00:28:43.0908 8232  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
00:28:43.0924 8232  iirsp - ok
00:28:43.0940 8232  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
00:28:43.0955 8232  IKEEXT - ok
00:28:44.0002 8232  [ 163F94EBF8F8A98616A6B804AF08D736 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
00:28:44.0127 8232  IntcAzAudAddService - ok
00:28:44.0142 8232  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
00:28:44.0142 8232  intelide - ok
00:28:44.0158 8232  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
00:28:44.0174 8232  intelppm - ok
00:28:44.0189 8232  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
00:28:44.0189 8232  IPBusEnum - ok
00:28:44.0220 8232  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:28:44.0220 8232  IpFilterDriver - ok
00:28:44.0252 8232  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
00:28:44.0267 8232  iphlpsvc - ok
00:28:44.0283 8232  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
00:28:44.0298 8232  IPMIDRV - ok
00:28:44.0298 8232  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
00:28:44.0314 8232  IPNAT - ok
00:28:44.0330 8232  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
00:28:44.0330 8232  IRENUM - ok
00:28:44.0345 8232  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
00:28:44.0361 8232  isapnp - ok
00:28:44.0376 8232  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
00:28:44.0392 8232  iScsiPrt - ok
00:28:44.0439 8232  [ F3A41EC4C6506E76E07A219B3A1DF8D2 ] JMB36X          C:\Windows\SysWOW64\XSrvSetup.exe
00:28:44.0517 8232  JMB36X - ok
00:28:44.0532 8232  [ 1C368C1A2733DCC5B8E15420AA2B0F6D ] JRAID           C:\Windows\system32\DRIVERS\jraid.sys
00:28:44.0548 8232  JRAID - ok
00:28:44.0564 8232  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
00:28:44.0564 8232  kbdclass - ok
00:28:44.0579 8232  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
00:28:44.0579 8232  kbdhid - ok
00:28:44.0579 8232  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
00:28:44.0595 8232  KeyIso - ok
00:28:44.0626 8232  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
00:28:44.0642 8232  KSecDD - ok
00:28:44.0673 8232  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
00:28:44.0688 8232  KSecPkg - ok
00:28:44.0688 8232  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
00:28:44.0704 8232  ksthunk - ok
00:28:44.0720 8232  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
00:28:44.0735 8232  KtmRm - ok
00:28:44.0766 8232  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
00:28:44.0782 8232  LanmanServer - ok
00:28:44.0813 8232  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:28:44.0829 8232  LanmanWorkstation - ok
00:28:44.0860 8232  [ 3C46290F7A5D45BA6EF32C248E22AA69 ] Lbd             C:\Windows\system32\DRIVERS\Lbd.sys
00:28:44.0938 8232  Lbd - ok
00:28:44.0954 8232  [ 9188D073CD14F886790D6037D1986063 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
00:28:45.0047 8232  LightScribeService - ok
00:28:45.0094 8232  [ 83BA097ACAAD0B00505634A62D90F93A ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
00:28:45.0468 8232  lirsgt - ok
00:28:45.0484 8232  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
00:28:45.0484 8232  lltdio - ok
00:28:45.0500 8232  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
00:28:45.0515 8232  lltdsvc - ok
00:28:45.0531 8232  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
00:28:45.0531 8232  lmhosts - ok
00:28:45.0546 8232  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
00:28:45.0546 8232  LSI_FC - ok
00:28:45.0562 8232  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
00:28:45.0562 8232  LSI_SAS - ok
00:28:45.0578 8232  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:28:45.0578 8232  LSI_SAS2 - ok
00:28:45.0593 8232  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:28:45.0609 8232  LSI_SCSI - ok
00:28:45.0624 8232  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
00:28:45.0624 8232  luafv - ok
00:28:45.0671 8232  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
00:28:45.0687 8232  McAfee SiteAdvisor Service - ok
00:28:45.0749 8232  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
00:28:45.0749 8232  McComponentHostService - ok
00:28:45.0765 8232  [ 3EED433F64445D5B49A396BD3AEDE37A ] McMPFSvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
00:28:45.0765 8232  McMPFSvc - ok
00:28:45.0780 8232  [ 3EED433F64445D5B49A396BD3AEDE37A ] McNaiAnn        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
00:28:45.0780 8232  McNaiAnn - ok
00:28:45.0843 8232  [ 7884B74A8238C8368310AEF2EBE4DF04 ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
00:28:45.0858 8232  McODS - ok
00:28:45.0905 8232  [ 3EED433F64445D5B49A396BD3AEDE37A ] mcpltsvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
00:28:45.0905 8232  mcpltsvc - ok
00:28:45.0936 8232  [ 3EED433F64445D5B49A396BD3AEDE37A ] McProxy         C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
00:28:45.0936 8232  McProxy - ok
00:28:45.0968 8232  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
00:28:45.0983 8232  Mcx2Svc - ok
00:28:45.0983 8232  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
00:28:45.0999 8232  megasas - ok
00:28:46.0014 8232  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
00:28:46.0014 8232  MegaSR - ok
00:28:46.0046 8232  [ B7CC04507E8FDDBFED9F8C7C0DD1F0A0 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
00:28:46.0046 8232  mfeapfk - ok
00:28:46.0061 8232  [ C9F15430342FCAC4C6EEB467C35F45F9 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
00:28:46.0077 8232  mfeavfk - ok
00:28:46.0139 8232  [ E96ACD89E17D63D5966659E6424118CB ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
00:28:46.0155 8232  mfecore - ok
00:28:46.0202 8232  [ 8F0847034E52BE3840B066B8725E40E6 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
00:28:46.0202 8232  mfefire - ok
00:28:46.0233 8232  [ 13081C15C7DA8E3AE3EE144293B30021 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
00:28:46.0248 8232  mfefirek - ok
00:28:46.0280 8232  [ FB6B5777BB24D4E079E1F83F0E12AE11 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
00:28:46.0295 8232  mfehidk - ok
00:28:46.0342 8232  [ B36E18A55B31C11EE43DCC3283E866B7 ] mfencbdc        C:\Windows\system32\DRIVERS\mfencbdc.sys
00:28:46.0342 8232  mfencbdc - ok
00:28:46.0389 8232  [ E585108E51FAF2FD949135D0A20F3525 ] mfencrk         C:\Windows\system32\DRIVERS\mfencrk.sys
00:28:46.0389 8232  mfencrk - ok
00:28:46.0404 8232  [ 7A176F40EA4D3E69AEBA7D548E990364 ] mfevtp          C:\Windows\system32\mfevtps.exe
00:28:46.0420 8232  mfevtp - ok
00:28:46.0436 8232  [ 91C1B25A33CCD8E4B84AF8C790171D47 ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
00:28:46.0451 8232  mfewfpk - ok
00:28:46.0467 8232  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
00:28:46.0467 8232  MMCSS - ok
00:28:46.0529 8232  [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup      C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
00:28:46.0529 8232  MOBKbackup - ok
00:28:46.0545 8232  [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter      C:\Windows\system32\DRIVERS\MOBK.sys
00:28:46.0607 8232  MOBKFilter - ok
00:28:46.0623 8232  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
00:28:46.0638 8232  Modem - ok
00:28:46.0654 8232  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
00:28:46.0654 8232  monitor - ok
00:28:46.0685 8232  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
00:28:46.0701 8232  mouclass - ok
00:28:46.0716 8232  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
00:28:46.0716 8232  mouhid - ok
00:28:46.0748 8232  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
00:28:46.0763 8232  mountmgr - ok
00:28:46.0794 8232  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
00:28:46.0794 8232  mpio - ok
00:28:46.0810 8232  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
00:28:46.0810 8232  mpsdrv - ok
00:28:46.0841 8232  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
00:28:46.0857 8232  MpsSvc - ok
00:28:46.0888 8232  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
00:28:46.0888 8232  MRxDAV - ok
00:28:46.0935 8232  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
00:28:46.0935 8232  mrxsmb - ok
00:28:46.0966 8232  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:28:46.0982 8232  mrxsmb10 - ok
00:28:46.0982 8232  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:28:46.0982 8232  mrxsmb20 - ok
00:28:46.0997 8232  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
00:28:47.0013 8232  msahci - ok
00:28:47.0013 8232  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
00:28:47.0028 8232  msdsm - ok
00:28:47.0028 8232  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
00:28:47.0044 8232  MSDTC - ok
00:28:47.0091 8232  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
00:28:47.0106 8232  Msfs - ok
00:28:47.0153 8232  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
00:28:47.0169 8232  mshidkmdf - ok
00:28:47.0200 8232  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
00:28:47.0216 8232  msisadrv - ok
00:28:47.0262 8232  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
00:28:47.0262 8232  MSiSCSI - ok
00:28:47.0278 8232  msiserver - ok
00:28:47.0294 8232  [ 3EED433F64445D5B49A396BD3AEDE37A ] MSK80Service    C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
00:28:47.0294 8232  MSK80Service - ok
00:28:47.0309 8232  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
00:28:47.0309 8232  MSKSSRV - ok
00:28:47.0325 8232  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
00:28:47.0325 8232  MSPCLOCK - ok
00:28:47.0340 8232  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
00:28:47.0356 8232  MSPQM - ok
00:28:47.0387 8232  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
00:28:47.0387 8232  MsRPC - ok
00:28:47.0403 8232  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
00:28:47.0418 8232  mssmbios - ok
00:28:47.0418 8232  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
00:28:47.0434 8232  MSTEE - ok
00:28:47.0434 8232  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
00:28:47.0450 8232  MTConfig - ok
00:28:47.0465 8232  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
00:28:47.0465 8232  Mup - ok
00:28:47.0496 8232  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
00:28:47.0512 8232  napagent - ok
00:28:47.0543 8232  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
00:28:47.0543 8232  NativeWifiP - ok
00:28:47.0606 8232  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
00:28:47.0606 8232  NDIS - ok
00:28:47.0621 8232  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
00:28:47.0621 8232  NdisCap - ok
00:28:47.0637 8232  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
00:28:47.0637 8232  NdisTapi - ok
00:28:47.0668 8232  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
00:28:47.0668 8232  Ndisuio - ok
00:28:47.0699 8232  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
00:28:47.0699 8232  NdisWan - ok
00:28:47.0730 8232  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
00:28:47.0730 8232  NDProxy - ok
00:28:47.0746 8232  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
00:28:47.0746 8232  NetBIOS - ok
00:28:47.0762 8232  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
00:28:47.0777 8232  NetBT - ok
00:28:47.0777 8232  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
00:28:47.0777 8232  Netlogon - ok
00:28:47.0793 8232  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
00:28:47.0808 8232  Netman - ok
00:28:47.0871 8232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:28:47.0886 8232  NetMsmqActivator - ok
00:28:47.0886 8232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:28:47.0886 8232  NetPipeActivator - ok
00:28:47.0918 8232  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
00:28:47.0933 8232  netprofm - ok
00:28:47.0933 8232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:28:47.0933 8232  NetTcpActivator - ok
00:28:47.0949 8232  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:28:47.0949 8232  NetTcpPortSharing - ok
00:28:47.0949 8232  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
00:28:47.0964 8232  nfrd960 - ok
00:28:47.0980 8232  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
00:28:47.0980 8232  NlaSvc - ok
00:28:47.0996 8232  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
00:28:47.0996 8232  Npfs - ok
00:28:48.0011 8232  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
00:28:48.0011 8232  nsi - ok
00:28:48.0011 8232  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
00:28:48.0027 8232  nsiproxy - ok
00:28:48.0074 8232  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
00:28:48.0105 8232  Ntfs - ok
00:28:48.0105 8232  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
00:28:48.0120 8232  Null - ok
00:28:48.0136 8232  [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
00:28:48.0136 8232  nusb3hub - ok
00:28:48.0152 8232  [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
00:28:48.0152 8232  nusb3xhc - ok
00:28:48.0198 8232  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
00:28:48.0198 8232  nvraid - ok
00:28:48.0198 8232  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
00:28:48.0214 8232  nvstor - ok
00:28:48.0230 8232  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
00:28:48.0230 8232  nv_agp - ok
00:28:48.0261 8232  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
00:28:48.0261 8232  ohci1394 - ok
00:28:48.0292 8232  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
00:28:48.0292 8232  p2pimsvc - ok
00:28:48.0323 8232  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
00:28:48.0323 8232  p2psvc - ok
00:28:48.0339 8232  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
00:28:48.0354 8232  Parport - ok
00:28:48.0370 8232  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
00:28:48.0370 8232  partmgr - ok
00:28:48.0386 8232  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
00:28:48.0401 8232  PcaSvc - ok
00:28:48.0432 8232  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
00:28:48.0448 8232  pci - ok
00:28:48.0464 8232  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
00:28:48.0464 8232  pciide - ok
00:28:48.0479 8232  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
00:28:48.0495 8232  pcmcia - ok
00:28:48.0510 8232  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
00:28:48.0510 8232  pcw - ok
00:28:48.0526 8232  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
00:28:48.0542 8232  PEAUTH - ok
00:28:48.0620 8232  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
00:28:48.0620 8232  PerfHost - ok
00:28:48.0666 8232  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
00:28:48.0682 8232  pla - ok
00:28:48.0713 8232  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
00:28:48.0729 8232  PlugPlay - ok
00:28:48.0744 8232  PnkBstrA - ok
00:28:48.0760 8232  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
00:28:48.0760 8232  PNRPAutoReg - ok
00:28:48.0776 8232  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
00:28:48.0776 8232  PNRPsvc - ok
00:28:48.0807 8232  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
00:28:48.0822 8232  PolicyAgent - ok
00:28:48.0838 8232  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
00:28:48.0838 8232  Power - ok
00:28:48.0885 8232  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
00:28:48.0885 8232  PptpMiniport - ok
00:28:48.0900 8232  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
00:28:48.0900 8232  Processor - ok
00:28:48.0932 8232  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
00:28:48.0932 8232  ProfSvc - ok
00:28:48.0947 8232  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:28:48.0947 8232  ProtectedStorage - ok
00:28:48.0994 8232  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
00:28:48.0994 8232  Psched - ok
00:28:49.0010 8232  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
00:28:49.0041 8232  ql2300 - ok
00:28:49.0056 8232  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
00:28:49.0072 8232  ql40xx - ok
00:28:49.0088 8232  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
00:28:49.0088 8232  QWAVE - ok
00:28:49.0103 8232  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
00:28:49.0119 8232  QWAVEdrv - ok
00:28:49.0134 8232  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
00:28:49.0134 8232  RasAcd - ok
00:28:49.0134 8232  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
00:28:49.0150 8232  RasAgileVpn - ok
00:28:49.0166 8232  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
00:28:49.0181 8232  RasAuto - ok
00:28:49.0197 8232  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
00:28:49.0197 8232  Rasl2tp - ok
00:28:49.0228 8232  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
00:28:49.0244 8232  RasMan - ok
00:28:49.0244 8232  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
00:28:49.0259 8232  RasPppoe - ok
00:28:49.0275 8232  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
00:28:49.0275 8232  RasSstp - ok
00:28:49.0306 8232  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
00:28:49.0322 8232  rdbss - ok
00:28:49.0322 8232  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
00:28:49.0337 8232  rdpbus - ok
00:28:49.0353 8232  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
00:28:49.0353 8232  RDPCDD - ok
00:28:49.0368 8232  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
00:28:49.0368 8232  RDPENCDD - ok
00:28:49.0384 8232  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
00:28:49.0384 8232  RDPREFMP - ok
00:28:49.0415 8232  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
00:28:49.0431 8232  RDPWD - ok
00:28:49.0462 8232  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
00:28:49.0462 8232  rdyboost - ok
00:28:49.0493 8232  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
00:28:49.0509 8232  RemoteAccess - ok
00:28:49.0509 8232  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
00:28:49.0524 8232  RemoteRegistry - ok
00:28:49.0556 8232  [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
00:28:49.0556 8232  RichVideo - ok
00:28:49.0571 8232  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
00:28:49.0571 8232  RpcEptMapper - ok
00:28:49.0587 8232  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
00:28:49.0602 8232  RpcLocator - ok
00:28:49.0618 8232  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
00:28:49.0634 8232  RpcSs - ok
00:28:49.0649 8232  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
00:28:49.0649 8232  rspndr - ok
00:28:49.0680 8232  [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
00:28:49.0680 8232  RTL8167 - ok
00:28:49.0696 8232  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
00:28:49.0696 8232  SamSs - ok
00:28:49.0727 8232  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
00:28:49.0727 8232  sbp2port - ok
00:28:49.0743 8232  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
00:28:49.0743 8232  SCardSvr - ok
00:28:49.0774 8232  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
00:28:49.0774 8232  scfilter - ok
00:28:49.0821 8232  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
00:28:49.0852 8232  Schedule - ok
00:28:49.0883 8232  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
00:28:49.0883 8232  SCPolicySvc - ok
00:28:49.0914 8232  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
00:28:49.0914 8232  SDRSVC - ok
00:28:50.0008 8232  [ 95AA9E165C7DE1B64A11E8B18E91E499 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
00:28:50.0304 8232  SDScannerService - ok
00:28:50.0336 8232  [ D31398D4BB4907B517B6E784C2100C4A ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
00:28:50.0351 8232  SDUpdateService - ok
00:28:50.0382 8232  [ 6AE8E702D1027A9627DDE2B77BB9992B ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
00:28:50.0382 8232  SDWSCService - ok
00:28:50.0398 8232  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
00:28:50.0414 8232  secdrv - ok
00:28:50.0445 8232  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
00:28:50.0445 8232  seclogon - ok
00:28:50.0460 8232  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
00:28:50.0460 8232  SENS - ok
00:28:50.0476 8232  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
00:28:50.0476 8232  SensrSvc - ok
00:28:50.0492 8232  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
00:28:50.0492 8232  Serenum - ok
00:28:50.0507 8232  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
00:28:50.0523 8232  Serial - ok
00:28:50.0554 8232  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
00:28:50.0554 8232  sermouse - ok
00:28:50.0601 8232  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
00:28:50.0601 8232  SessionEnv - ok
00:28:50.0632 8232  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
00:28:50.0632 8232  sffdisk - ok
00:28:50.0648 8232  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
00:28:50.0663 8232  sffp_mmc - ok
00:28:50.0679 8232  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
00:28:50.0679 8232  sffp_sd - ok
00:28:50.0679 8232  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
00:28:50.0679 8232  sfloppy - ok
00:28:50.0710 8232  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
00:28:50.0710 8232  SharedAccess - ok
00:28:50.0741 8232  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:28:50.0741 8232  ShellHWDetection - ok
00:28:50.0757 8232  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:28:50.0757 8232  SiSRaid2 - ok
00:28:50.0772 8232  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
00:28:50.0772 8232  SiSRaid4 - ok
00:28:50.0835 8232  [ 101556F6216E97F1258D87C38203695F ] Smart TimeLock  C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
00:28:50.0928 8232  Smart TimeLock - ok
00:28:50.0960 8232  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
00:28:50.0960 8232  Smb - ok
00:28:51.0006 8232  [ 32CDE417100C530964E79C53B4E994CA ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
00:28:51.0116 8232  snapman - ok
00:28:51.0116 8232  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
00:28:51.0131 8232  SNMPTRAP - ok
00:28:51.0131 8232  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
00:28:51.0131 8232  spldr - ok
00:28:51.0178 8232  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
00:28:51.0178 8232  Spooler - ok
00:28:51.0256 8232  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
00:28:51.0303 8232  sppsvc - ok
00:28:51.0334 8232  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
00:28:51.0334 8232  sppuinotify - ok
00:28:51.0365 8232  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
00:28:51.0381 8232  srv - ok
00:28:51.0412 8232  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
00:28:51.0412 8232  srv2 - ok
00:28:51.0428 8232  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
00:28:51.0428 8232  srvnet - ok
00:28:51.0459 8232  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
00:28:51.0459 8232  SSDPSRV - ok
00:28:51.0474 8232  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
00:28:51.0474 8232  SstpSvc - ok
00:28:51.0490 8232  Steam Client Service - ok
00:28:51.0506 8232  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
00:28:51.0521 8232  stexstor - ok
00:28:51.0552 8232  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
00:28:51.0584 8232  stisvc - ok
00:28:51.0599 8232  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
00:28:51.0615 8232  swenum - ok
00:28:51.0630 8232  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
00:28:51.0630 8232  swprv - ok
00:28:51.0677 8232  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
00:28:51.0724 8232  SysMain - ok
00:28:51.0755 8232  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:28:51.0771 8232  TabletInputService - ok
00:28:51.0802 8232  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
00:28:51.0818 8232  TapiSrv - ok
00:28:51.0833 8232  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
00:28:51.0833 8232  TBS - ok
00:28:51.0896 8232  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
00:28:51.0927 8232  Tcpip - ok
00:28:51.0974 8232  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
00:28:51.0989 8232  TCPIP6 - ok
00:28:52.0005 8232  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
00:28:52.0020 8232  tcpipreg - ok
00:28:52.0036 8232  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
00:28:52.0036 8232  TDPIPE - ok
00:28:52.0067 8232  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
00:28:52.0067 8232  TDTCP - ok
00:28:52.0098 8232  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
00:28:52.0098 8232  tdx - ok
00:28:52.0130 8232  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
00:28:52.0130 8232  TermDD - ok
00:28:52.0161 8232  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
00:28:52.0192 8232  TermService - ok
00:28:52.0208 8232  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
00:28:52.0208 8232  Themes - ok
00:28:52.0223 8232  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
00:28:52.0223 8232  THREADORDER - ok
00:28:52.0286 8232  [ 6ADC063FD51F03EF0CAB3E716A725BD2 ] timounter       C:\Windows\system32\DRIVERS\timntr.sys
00:28:52.0379 8232  timounter - ok
00:28:52.0395 8232  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
00:28:52.0395 8232  TrkWks - ok
00:28:52.0426 8232  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:28:52.0426 8232  TrustedInstaller - ok
00:28:52.0473 8232  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
00:28:52.0473 8232  tssecsrv - ok
00:28:52.0488 8232  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
00:28:52.0504 8232  TsUsbFlt - ok
00:28:52.0551 8232  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
00:28:52.0551 8232  tunnel - ok
00:28:52.0566 8232  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
00:28:52.0566 8232  uagp35 - ok
00:28:52.0613 8232  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
00:28:52.0613 8232  udfs - ok
00:28:52.0629 8232  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
00:28:52.0629 8232  UI0Detect - ok
00:28:52.0644 8232  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
00:28:52.0644 8232  uliagpkx - ok
00:28:52.0676 8232  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
00:28:52.0691 8232  umbus - ok
00:28:52.0691 8232  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
00:28:52.0707 8232  UmPass - ok
00:28:52.0722 8232  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
00:28:52.0722 8232  upnphost - ok
00:28:52.0722 8232  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
00:28:52.0738 8232  usbccgp - ok
00:28:52.0769 8232  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
00:28:52.0769 8232  usbcir - ok
00:28:52.0785 8232  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
00:28:52.0785 8232  usbehci - ok
00:28:52.0800 8232  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
00:28:52.0800 8232  usbhub - ok
00:28:52.0816 8232  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
00:28:52.0816 8232  usbohci - ok
00:28:52.0832 8232  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
00:28:52.0847 8232  usbprint - ok
00:28:52.0847 8232  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:28:52.0847 8232  USBSTOR - ok
00:28:52.0863 8232  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
00:28:52.0863 8232  usbuhci - ok
00:28:52.0894 8232  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
00:28:52.0894 8232  UxSms - ok
00:28:52.0910 8232  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
00:28:52.0910 8232  VaultSvc - ok
00:28:52.0910 8232  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
00:28:52.0925 8232  vdrvroot - ok
00:28:52.0956 8232  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
00:28:52.0972 8232  vds - ok
00:28:52.0988 8232  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
00:28:52.0988 8232  vga - ok
00:28:53.0003 8232  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
00:28:53.0019 8232  VgaSave - ok
00:28:53.0034 8232  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
00:28:53.0034 8232  vhdmp - ok
00:28:53.0066 8232  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
00:28:53.0066 8232  viaide - ok
00:28:53.0097 8232  [ 96A4F56CBBA3DCF5D90CDA1BC218D040 ] vididr          C:\Windows\system32\DRIVERS\vididr.sys
00:28:53.0112 8232  vididr - ok
00:28:53.0112 8232  [ C69A784BEC737CD7460EBF3C3834D65E ] vidsflt53       C:\Windows\system32\DRIVERS\vsflt53.sys
00:28:53.0206 8232  vidsflt53 - ok
00:28:53.0206 8232  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
00:28:53.0222 8232  volmgr - ok
00:28:53.0253 8232  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
00:28:53.0253 8232  volmgrx - ok
00:28:53.0268 8232  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
00:28:53.0284 8232  volsnap - ok
00:28:53.0300 8232  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
00:28:53.0300 8232  vsmraid - ok
00:28:53.0362 8232  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
00:28:53.0393 8232  VSS - ok
00:28:53.0440 8232  [ 654D358F8DC18167F31A01166B4CA9D6 ] vToolbarUpdater15.3.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe
00:28:53.0456 8232  vToolbarUpdater15.3.0 - ok
00:28:53.0471 8232  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
00:28:53.0471 8232  vwifibus - ok
00:28:53.0502 8232  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
00:28:53.0502 8232  W32Time - ok
00:28:53.0518 8232  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
00:28:53.0518 8232  WacomPen - ok
00:28:53.0549 8232  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
00:28:53.0549 8232  WANARP - ok
00:28:53.0549 8232  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
00:28:53.0549 8232  Wanarpv6 - ok
00:28:53.0612 8232  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
00:28:53.0612 8232  WatAdminSvc - ok
00:28:53.0658 8232  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
00:28:53.0690 8232  wbengine - ok
00:28:53.0705 8232  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
00:28:53.0705 8232  WbioSrvc - ok
00:28:53.0736 8232  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
00:28:53.0752 8232  wcncsvc - ok
00:28:53.0752 8232  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:28:53.0768 8232  WcsPlugInService - ok
00:28:53.0783 8232  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
00:28:53.0783 8232  Wd - ok
00:28:53.0830 8232  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
00:28:53.0846 8232  Wdf01000 - ok
00:28:53.0861 8232  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
00:28:53.0877 8232  WdiServiceHost - ok
00:28:53.0877 8232  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
00:28:53.0877 8232  WdiSystemHost - ok
00:28:53.0924 8232  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
00:28:53.0924 8232  WebClient - ok
00:28:53.0939 8232  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
00:28:53.0955 8232  Wecsvc - ok
00:28:53.0955 8232  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
00:28:53.0970 8232  wercplsupport - ok
00:28:53.0986 8232  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
00:28:53.0986 8232  WerSvc - ok
00:28:54.0002 8232  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
00:28:54.0017 8232  WfpLwf - ok
00:28:54.0017 8232  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
00:28:54.0033 8232  WIMMount - ok
00:28:54.0064 8232  WinDefend - ok
00:28:54.0080 8232  WinHttpAutoProxySvc - ok
00:28:54.0126 8232  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
00:28:54.0126 8232  Winmgmt - ok
00:28:54.0189 8232  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
00:28:54.0236 8232  WinRM - ok
00:28:54.0298 8232  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
00:28:54.0298 8232  WinUsb - ok
00:28:54.0329 8232  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
00:28:54.0360 8232  Wlansvc - ok
00:28:54.0485 8232  [ 98F138897EF4246381D197CB81846D62 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:28:54.0548 8232  wlidsvc - ok
00:28:54.0579 8232  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
00:28:54.0579 8232  WmiAcpi - ok
00:28:54.0594 8232  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
00:28:54.0594 8232  wmiApSrv - ok
00:28:54.0610 8232  WMPNetworkSvc - ok
00:28:54.0610 8232  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
00:28:54.0626 8232  WPCSvc - ok
00:28:54.0641 8232  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
00:28:54.0657 8232  WPDBusEnum - ok
00:28:54.0657 8232  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
00:28:54.0672 8232  ws2ifsl - ok
00:28:54.0672 8232  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
00:28:54.0672 8232  wscsvc - ok
00:28:54.0704 8232  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
00:28:54.0719 8232  WSDPrintDevice - ok
00:28:54.0735 8232  [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
00:28:54.0750 8232  WSDScan - ok
00:28:54.0750 8232  WSearch - ok
00:28:54.0813 8232  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
00:28:54.0860 8232  wuauserv - ok
00:28:54.0922 8232  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
00:28:54.0922 8232  WudfPf - ok
00:28:54.0922 8232  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
00:28:54.0938 8232  WUDFRd - ok
00:28:54.0969 8232  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
00:28:54.0984 8232  wudfsvc - ok
00:28:55.0016 8232  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
00:28:55.0031 8232  WwanSvc - ok
00:28:55.0078 8232  [ 74983ADDCA2D9618512C088D856D6615 ] {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl
00:28:55.0078 8232  {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} - ok
00:28:55.0094 8232  ================ Scan global ===============================
00:28:55.0094 8232  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:28:55.0140 8232  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
00:28:55.0140 8232  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
00:28:55.0172 8232  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:28:55.0187 8232  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:28:55.0203 8232  [Global] - ok
00:28:55.0203 8232  ================ Scan MBR ==================================
00:28:55.0203 8232  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
00:28:55.0359 8232  \Device\Harddisk1\DR1 - ok
00:28:55.0374 8232  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:28:55.0562 8232  \Device\Harddisk0\DR0 - ok
00:28:55.0858 8232  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
00:28:56.0092 8232  \Device\Harddisk2\DR2 - ok
00:28:56.0092 8232  [ BBB0A0725AD66F38B1A32135F3CB55D6 ] \Device\Harddisk3\DR3
00:28:56.0232 8232  \Device\Harddisk3\DR3 - ok
00:28:56.0232 8232  ================ Scan VBR ==================================
00:28:56.0232 8232  [ 3E3F79C0947E042D313D46B31181E5EB ] \Device\Harddisk1\DR1\Partition1
00:28:56.0248 8232  \Device\Harddisk1\DR1\Partition1 - ok
00:28:56.0248 8232  [ 739271262442A1166DA9112CF6700592 ] \Device\Harddisk1\DR1\Partition2
00:28:56.0248 8232  \Device\Harddisk1\DR1\Partition2 - ok
00:28:56.0248 8232  [ CA31D7ECD7EB8F596D58E1F8DD2F397F ] \Device\Harddisk0\DR0\Partition1
00:28:56.0248 8232  \Device\Harddisk0\DR0\Partition1 - ok
00:28:56.0264 8232  [ 87D65820A940F454D1FF9A0E89FFD5A3 ] \Device\Harddisk0\DR0\Partition2
00:28:56.0264 8232  \Device\Harddisk0\DR0\Partition2 - ok
00:28:56.0279 8232  [ BCDED0782081A2A4259B9E571DAF9B2D ] \Device\Harddisk2\DR2\Partition1
00:28:56.0279 8232  \Device\Harddisk2\DR2\Partition1 - ok
00:28:56.0279 8232  [ 77B666E5A56FE9C27849B27A12F08B3E ] \Device\Harddisk3\DR3\Partition1
00:28:56.0279 8232  \Device\Harddisk3\DR3\Partition1 - ok
00:28:56.0279 8232  ============================================================
00:28:56.0279 8232  Scan finished
00:28:56.0279 8232  ============================================================
00:28:56.0295 7836  Detected object count: 0
00:28:56.0295 7836  Actual detected object count: 0
00:29:02.0722 10452  Deinitialize success
 

 

# AdwCleaner v2.305 - Logfile created 07/14/2013 at 00:37:25
# Updated 11/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Alan - SUPERCOMPUTER
# Boot Mode : Normal
# Running from : C:\Users\Alan\Desktop\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

Stopped & Deleted : BCUService

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\DeviceVM

***** [Registry] *****

Key Deleted : HKCU\Software\DeviceVM
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\DeviceVM
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry is clean.

-\\ Google Chrome v28.0.1500.72

File : C:\Users\Alan\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [5350 octets] - [14/07/2013 00:37:25]

########## EOF - C:\AdwCleaner[S1].txt - [5410 octets] ##########

 

C:\Users\Alan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\2f4c4769-5b70a327 multiple threats cleaned by deleting - quarantined
C:\Users\Alan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\79743b33-3c19fb4a multiple threats cleaned by deleting - quarantined
C:\Users\Alan\AppData\LocalLow\Sun\Java\Deployment\cache\javapi\v1.0\jar\xmltree.jar-45eb4b21-63b5cf3c.zip multiple threats cleaned by deleting - quarantined
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users