Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Firewall is desactivated, firefox wont update, PPTV keeps returning [S

Started by Meboubou , Sep 08 2012 04:03 PM

  • This topic is locked This topic is locked

#1
Meboubou
Posted 08 September 2012 - 04:03 PM

Meboubou

    Member

  • Member
  • PipPip
  • 68 posts
Hello,

Yesterday I noticed my firewall had been deactivated and I cannot reactivate it. (When I do, it is deactivated instantly). I also noticed PPTV (PPlive) a Chinese version of Youtube//netflix that you download to watch stuff from your computer has returned after several months of deleting it. I tried un-installing it, but it keeps coming back. Firefox also will not update (since yesterday...)
My anti virus (McAfee, paid version) isn't finding anything unusual.

It's important to note that my university had me install a program that made my anti-virus go nuts. University said that everyone had that issue but the program was safe. It's part of my online classroom setup, without it I cannot attend classes. You can find the program here:
http://www.eblcu.com...ervicehome.jspr Under software, it's the first link ( 实时互动课堂 )

Thats all I have description wise...

Log info:

OTL logfile created on: 08/09/2012 5:39:02 PM - Run 1
OTL by OldTimer - Version 3.2.61.2 Folder = C:\Users\Marie-Eve\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

5.91 Gb Total Physical Memory | 3.98 Gb Available Physical Memory | 67.30% Memory free
11.81 Gb Paging File | 9.22 Gb Available in Paging File | 78.02% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 358.19 Gb Free Space | 79.42% Space Free | Partition Type: NTFS

Computer Name: MARIE-EVE-PC | User Name: Marie-Eve | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/08 17:38:37 | 000,599,552 | ---- | M] (OldTimer Tools) -- C:\Users\Marie-Eve\Downloads\OTL.exe
PRC - [2012/09/06 19:05:25 | 000,419,840 | ---- | M] (Piriform Ltd) -- C:\ProgramData\rundll3262.exe
PRC - [2012/09/05 21:07:00 | 000,668,160 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe
PRC - [2012/09/05 07:41:31 | 000,053,248 | RHS- | M] (Microsoft Corporation Ltd) -- C:\ProgramData\msnmsgre17.exe
PRC - [2012/08/30 08:30:38 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012/08/27 21:38:49 | 001,807,560 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe
PRC - [2012/08/02 16:06:28 | 000,173,056 | ---- | M] (Dell Products, LP.) -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
PRC - [2012/07/27 13:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/06/12 23:09:14 | 000,464,288 | ---- | M] (PPLive Corporation) -- C:\Program Files (x86)\Common Files\PPLiveNetwork\PPAP.exe
PRC - [2012/01/31 19:35:30 | 000,892,928 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
PRC - [2011/09/06 14:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/08/18 12:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/08/18 12:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/08/01 14:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/07/28 19:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/06/17 13:33:04 | 000,272,528 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe
PRC - [2011/05/19 03:16:48 | 000,995,392 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2011/05/19 03:16:46 | 001,335,360 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
PRC - [2011/05/19 03:16:36 | 000,921,664 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2011/05/19 03:16:34 | 000,839,744 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
PRC - [2011/04/13 12:39:14 | 000,503,942 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2010/11/17 12:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2010/11/06 01:54:22 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/11/06 01:54:20 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/10/05 23:04:12 | 002,655,768 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/10/05 23:04:08 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/07/13 01:34:46 | 000,906,648 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe
PRC - [2009/09/23 17:45:50 | 001,287,176 | ---- | M] (Panda Security) -- C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
PRC - [2009/06/10 17:22:49 | 000,077,112 | ---- | M] (Microsoft Corporation) -- C:\Users\Marie-Eve\AppData\Local\Temp\AppLaunch\AppLaunch.exe


========== Modules (No Company Name) ==========

MOD - [2012/09/07 18:47:40 | 000,411,080 | ---- | M] () -- C:\Program Files (x86)\Common Files\PPLiveNetwork\1.0.1.1325\tipsclient.dll
MOD - [2012/09/05 21:07:00 | 000,668,160 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe
MOD - [2012/09/05 01:00:49 | 000,397,824 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll
MOD - [2012/09/05 01:00:36 | 000,665,088 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll
MOD - [2012/09/05 00:59:38 | 000,152,576 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll
MOD - [2012/08/30 08:30:38 | 002,242,528 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012/08/27 21:38:49 | 009,813,704 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll
MOD - [2012/06/14 03:33:15 | 001,670,144 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\6c59a14a23f734093e80d6093e25302a\Microsoft.VisualBasic.ni.dll
MOD - [2012/06/14 03:32:33 | 000,475,648 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\2e16482769fcdf856919e292a968f16c\IAStorUtil.ni.dll
MOD - [2012/06/14 03:28:37 | 014,340,608 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll
MOD - [2012/06/14 03:28:26 | 012,436,480 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll
MOD - [2012/06/14 03:28:21 | 001,591,808 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll
MOD - [2012/06/14 03:28:16 | 012,237,824 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll
MOD - [2012/06/12 23:08:58 | 000,527,240 | ---- | M] () -- C:\Program Files (x86)\Common Files\PPLiveNetwork\1.0.1.1325\MngModule.dll
MOD - [2012/05/12 10:59:18 | 000,014,336 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\3b2b9f4ec1819e4b95792d92f56d26f9\IAStorCommon.ni.dll
MOD - [2012/05/12 10:59:00 | 002,297,856 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll
MOD - [2012/05/12 10:48:17 | 000,368,128 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll
MOD - [2012/05/12 10:48:02 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll
MOD - [2012/05/12 10:47:29 | 003,347,968 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
MOD - [2012/05/12 10:47:25 | 005,452,800 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012/05/12 10:47:22 | 007,967,232 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012/05/12 10:47:22 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012/05/12 10:47:18 | 011,492,864 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2012/04/19 19:01:49 | 000,034,152 | ---- | M] () -- C:\Program Files (x86)\Common Files\PPLiveNetwork\tipsstatistic.dll
MOD - [2012/04/19 18:58:39 | 000,034,152 | ---- | M] () -- C:\Program Files (x86)\Common Files\PPLiveNetwork\tipsdone.dll
MOD - [2012/01/31 19:36:28 | 000,884,736 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\fsk.dll
MOD - [2012/01/31 19:35:32 | 000,143,360 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\readerAppHelper.dll
MOD - [2012/01/31 19:34:34 | 000,172,032 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\USBDetector.dll
MOD - [2012/01/31 19:33:22 | 000,018,432 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskNetInterface.dll
MOD - [2012/01/31 19:33:18 | 000,009,728 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskPower.dll
MOD - [2012/01/31 19:33:16 | 000,020,480 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskinLocalize.dll
MOD - [2012/01/31 19:33:16 | 000,008,704 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskTimeHardware.dll
MOD - [2012/01/31 19:33:14 | 000,028,160 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ticket.dll
MOD - [2012/01/31 19:33:12 | 000,012,288 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookDeviceNotifier.dll
MOD - [2012/01/31 19:31:42 | 000,118,784 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskDocumentViewer.dll
MOD - [2012/01/31 19:31:36 | 000,233,472 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\Fskin.dll
MOD - [2012/01/31 19:31:36 | 000,010,752 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMobileMediaDevice.dll
MOD - [2012/01/31 19:31:04 | 000,033,792 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskMediaPlayers.dll
MOD - [2011/11/17 22:06:54 | 000,798,720 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\FskSecurity.dll
MOD - [2011/11/17 20:47:08 | 000,086,016 | ---- | M] () -- C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ebookUsb.dll
MOD - [2011/08/18 12:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2011/07/28 19:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/28 19:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
MOD - [2010/11/25 00:44:02 | 000,375,280 | ---- | M] () -- c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
MOD - [2010/11/17 12:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
MOD - [2010/07/13 01:29:42 | 000,143,360 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\connectionDetector.dll
MOD - [2010/07/13 01:28:42 | 000,856,064 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\fsk.dll
MOD - [2010/07/13 01:26:12 | 000,018,432 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\FskNetInterface.dll
MOD - [2010/07/13 01:25:56 | 000,008,704 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\FskTimeHardware.dll
MOD - [2010/07/13 01:25:50 | 000,028,160 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\ticket.dll
MOD - [2010/07/13 01:25:42 | 000,011,776 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\ebookDeviceNotifier.dll
MOD - [2010/07/13 01:22:36 | 000,020,480 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\FskinLocalize.dll
MOD - [2010/07/13 01:22:02 | 000,009,728 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\FskPower.dll
MOD - [2010/07/13 01:16:16 | 000,118,784 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\FskDocumentViewer.dll
MOD - [2010/07/13 01:15:58 | 000,010,240 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\FskMobileMediaDevice.dll
MOD - [2010/07/13 01:15:52 | 000,233,472 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\Fskin.dll
MOD - [2010/07/13 01:13:42 | 000,033,792 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\FskMediaPlayers.dll
MOD - [2010/07/13 01:10:56 | 000,172,032 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\USBDetector.dll
MOD - [2010/04/02 21:23:36 | 000,815,104 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\FskSecurity.dll
MOD - [2010/04/02 20:44:16 | 000,086,016 | ---- | M] () -- C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\ebookUsb.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/08/23 11:57:48 | 000,502,064 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\mcafee\virusscan\mcods.exe -- (McODS)
SRV:64bit: - [2012/03/20 13:11:30 | 000,162,192 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2012/03/20 12:56:24 | 000,210,584 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:64bit: - [2012/03/20 12:55:54 | 000,199,272 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV:64bit: - [2011/09/15 20:41:28 | 001,518,352 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2011/09/15 20:28:06 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2011/09/15 20:24:52 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2011/09/15 11:54:46 | 001,166,848 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2011/06/03 14:51:38 | 000,134,928 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2011/03/08 19:00:50 | 000,224,704 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- c:\Program Files\mcafee\msc\McAWFwk.exe -- (McAWFwk)
SRV:64bit: - [2011/01/27 20:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:64bit: - [2011/01/27 20:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2011/01/27 20:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McOobeSv)
SRV:64bit: - [2011/01/27 20:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV:64bit: - [2011/01/27 20:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2011/01/27 20:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV:64bit: - [2011/01/27 20:28:20 | 000,249,936 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2011/01/25 05:57:18 | 000,296,448 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010/11/29 17:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/22 20:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/03/03 06:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV - [2012/08/30 08:30:38 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/08/27 21:38:49 | 000,250,568 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/08/02 16:06:28 | 000,173,056 | ---- | M] (Dell Products, LP.) [Auto | Running] -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe -- (DellDigitalDelivery)
SRV - [2012/07/27 13:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/06/07 19:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/08/18 12:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2011/06/17 13:33:04 | 000,237,008 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe -- (McComponentHostService)
SRV - [2011/05/19 03:16:48 | 000,995,392 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2011/05/19 03:16:46 | 001,335,360 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe -- (Bluetooth Media Service)
SRV - [2011/05/19 03:16:36 | 000,921,664 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2010/11/25 07:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 07:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/11/06 01:54:22 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/10/12 13:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/10/05 23:04:12 | 002,655,768 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/10/05 23:04:08 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/08/25 22:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/04/02 21:34:12 | 000,073,728 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe -- (Sony SCSI Helper Service)
SRV - [2010/03/18 15:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/04/01 19:01:10 | 000,054,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pcouffin64a.sys -- (Pcouffin64)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/22 13:29:46 | 000,647,208 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2012/02/22 13:29:46 | 000,487,296 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2012/02/22 13:29:46 | 000,289,664 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2012/02/22 13:29:46 | 000,229,528 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2012/02/22 13:29:46 | 000,160,792 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2012/02/22 13:29:46 | 000,100,912 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mferkdet.sys -- (mferkdet)
DRV:64bit: - [2012/02/22 13:29:46 | 000,075,936 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mfenlfk.sys -- (mfenlfk)
DRV:64bit: - [2012/02/22 13:29:46 | 000,065,264 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2011/12/09 20:45:00 | 000,060,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2011/11/15 02:13:00 | 000,327,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2011/09/18 04:26:52 | 008,604,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64)
DRV:64bit: - [2011/09/15 11:48:24 | 000,299,008 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2011/09/15 11:48:24 | 000,299,008 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2011/07/20 18:21:50 | 000,406,336 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tixhci.sys -- (tixhci)
DRV:64bit: - [2011/07/20 18:21:50 | 000,136,000 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tihub3.sys -- (tihub3)
DRV:64bit: - [2011/06/21 17:19:14 | 000,025,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2011/06/21 17:19:12 | 000,034,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2011/06/10 07:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/05/19 03:17:04 | 000,053,248 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2011/05/19 03:17:02 | 000,051,712 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmaud.sys -- (btmaudio)
DRV:64bit: - [2011/05/13 04:28:46 | 000,363,856 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2011/05/13 03:21:04 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2011/05/13 03:21:04 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
DRV:64bit: - [2011/05/13 03:21:02 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
DRV:64bit: - [2011/05/13 03:21:02 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:64bit: - [2011/05/13 03:21:02 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV:64bit: - [2011/04/10 15:51:06 | 012,223,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/25 05:57:18 | 000,520,192 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2011/01/20 13:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2010/11/29 17:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/20 23:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 23:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 23:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/06 19:45:48 | 000,438,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/10/29 20:11:42 | 000,250,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/10/20 00:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 05:28:16 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/03/19 05:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006/11/01 14:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/23
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: [email protected]:6.0
FF - prefs.js..extensions.enabledAddons: {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}:4.0.1.0
FF - prefs.js..extensions.enabledAddons: [email protected]:4.6
FF - prefs.js..extensions.enabledAddons: {940C851B-F716-11E1-8270-B8AC6F996F26}:2.0.14
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_4_402_265.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~2\mcafee\msc\npmcsn~1.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pptv.com/plugin: C:\Program Files (x86)\Internet Explorer\PPLite\plugin\npplugin2.dll (PPLive Corporation)
FF - HKLM\Software\MozillaPlugins\@sony.com/eBookLibrary: C:\Program Files (x86)\Sony\Reader\Data\bin\npebldetectmoz.dll (Sony Corporation)
FF - HKLM\Software\MozillaPlugins\@sony.com/ReaderDesktop: C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Marie-Eve\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files (x86)\Common Files\McAfee\SystemCore [2012/06/28 23:37:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/08/13 13:15:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/08/30 08:30:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/08/14 17:18:03 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{940C851B-F716-11E1-8270-B8AC6F996F26}: C:\Users\Marie-Eve\AppData\Local\{940C851B-F716-11E1-8270-B8AC6F996F26}\ [2012/09/05 01:00:36 | 000,000,000 | ---D | M]

[2012/02/03 15:44:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Extensions
[2012/09/03 23:21:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\extensions
[2012/04/15 18:04:47 | 000,000,000 | ---D | M] (Garmin Communicator) -- C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2012/06/13 20:03:04 | 000,000,000 | ---D | M] (United States English Spellchecker) -- C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\extensions\[email protected]
[2012/09/03 23:21:47 | 000,000,000 | ---D | M] (Dictionnaires français) -- C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\extensions\[email protected]
[2012/02/03 15:44:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/09/05 01:00:36 | 000,000,000 | ---D | M] (Mozilla Safe Browsing) -- C:\USERS\MARIE-EVE\APPDATA\LOCAL\{940C851B-F716-11E1-8270-B8AC6F996F26}
[2012/08/30 08:30:39 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/05/07 08:00:54 | 000,001,525 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-en-GB.xml
[2012/08/30 08:30:37 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/05/07 08:00:54 | 000,000,935 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\chambers-en-GB.xml
[2012/05/07 08:00:54 | 000,001,166 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-en-GB.xml
[2012/08/30 08:30:37 | 000,002,253 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
[2012/05/07 08:00:53 | 000,001,121 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\mcafee\systemcore\ScriptSn.20120628000947.dll (McAfee, Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20120628000947.dll (McAfee, Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Intel Corporation)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe (Sony Corporation)
O4 - HKLM..\Run: [Reader Library Launcher] C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe (Sony Corporation)
O4 - HKLM..\Run: [RoxWatchTray] c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKCU..\Run: [arcom] C:\Users\Marie-Eve\AppData\Roaming\arcomdir\arcom.exe ()
O4 - HKCU..\Run: [msnmsgre] C:\ProgramData\msnmsgre17.exe (Microsoft Corporation Ltd)
O4 - HKCU..\Run: [PPAP] C:\Program Files (x86)\Common Files\PPLiveNetwork\PPAP.exe (PPLive Corporation)
O4 - HKCU..\Run: [rundll32] "C:\ProgramData\rundll3262.exe" File not found
O4 - HKCU..\Run: [rvwpr] C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll ()
O4 - HKCU..\Run: [shshcn] C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll ()
O4 - HKCU..\Run: [tiatsd] C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll ()
O4 - Startup: C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.1.0)
O16:64bit: - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_01)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 142.217.192.8 142.217.192.9
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E1117A37-F5F9-4179-9EFF-D5869E04C2BB}: DhcpNameServer = 142.217.192.8 142.217.192.9
O18:64bit: - Protocol\Handler\cozi - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/08 17:32:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
[2012/09/08 17:32:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/09/08 17:31:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/09/08 08:10:50 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\{D3C03D56-3676-429F-8DCF-5439981E44CE}
[2012/09/08 00:19:42 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Roaming\arcomdir
[2012/09/07 08:20:47 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PPLive
[2012/09/07 08:20:46 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\PPTV
[2012/09/07 08:20:46 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\Documents\PPTV
[2012/09/06 19:05:44 | 000,419,840 | ---- | C] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\01273.exe
[2012/09/06 19:05:31 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Roaming\dclogs
[2012/09/06 19:05:27 | 000,419,840 | ---- | C] (Piriform Ltd) -- C:\ProgramData\rundll3262.exe
[2012/09/06 19:05:25 | 000,419,840 | ---- | C] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\65336.exe
[2012/09/05 07:41:31 | 000,053,248 | RHS- | C] (Microsoft Corporation Ltd) -- C:\ProgramData\msnmsgre17.exe
[2012/09/05 07:41:10 | 000,000,000 | -HSD | C] -- C:\Users\Marie-Eve\AppData\Roaming\msnmsgr
[2012/09/05 01:00:36 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\{940C851B-F716-11E1-8270-B8AC6F996F26}
[2012/09/05 00:59:52 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\Spruce
[2012/09/01 22:09:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2012/08/30 18:07:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAS 2012.01
[2012/08/30 18:07:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAS 2012.01
[2012/08/29 22:47:25 | 000,031,344 | ---- | C] (Connectify) -- C:\windows\SysNative\drivers\cnnctfy2.sys
[2012/08/28 13:44:41 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\{1040B351-BD77-480A-BF81-7E9A3ECEEA1B}
[2012/08/27 21:38:54 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan
[2012/08/27 21:38:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Security Scan
[2012/08/26 00:49:21 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\Chris_Pietschmann_(http__
[2012/08/26 00:40:02 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\Desktop\Uni (1)
[2012/08/26 00:39:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Virtual Router
[2012/08/25 15:43:11 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\{B2D5B569-434E-40E6-821F-11BD82FCD8CF}
[2012/08/23 16:53:37 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
[2012/08/23 16:53:36 | 000,000,000 | ---D | C] -- C:\ProgramData\PC-Doctor for Windows
[2012/08/20 21:31:07 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\{0A383092-4F26-4A51-84A6-3FB0F25166C4}
[2012/08/13 13:19:14 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Local\DDMSettings
[2012/08/13 13:14:43 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Roaming\DivX
[2012/08/13 13:14:19 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2012/08/13 13:14:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2012/08/13 13:14:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DivX Shared
[2012/08/13 13:13:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DivX
[2012/08/13 13:12:42 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[1 C:\Users\Marie-Eve\Desktop\*.tmp files -> C:\Users\Marie-Eve\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/09/08 17:43:51 | 000,000,000 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Local\¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ
[2012/09/08 17:39:00 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012/09/08 17:35:49 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/08 17:35:49 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/08 17:26:46 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012/09/08 17:26:38 | 462,987,263 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/08 08:13:24 | 000,778,834 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012/09/08 08:13:24 | 000,664,780 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012/09/08 08:13:24 | 000,125,484 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012/09/08 00:19:07 | 001,539,056 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\82470.exe
[2012/09/08 00:18:23 | 000,019,375 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\624510.atf
[2012/09/07 19:15:20 | 001,539,036 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\19135.exe
[2012/09/07 19:14:53 | 001,539,036 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\19769.exe
[2012/09/07 08:20:47 | 000,002,139 | ---- | M] () -- C:\Users\Marie-Eve\Desktop\PPTV .lnk
[2012/09/07 08:20:47 | 000,002,119 | ---- | M] () -- C:\Users\Marie-Eve\Application Data\Microsoft\Internet Explorer\Quick Launch\PPTV .lnk
[2012/09/06 19:05:44 | 000,419,840 | ---- | M] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\01273.exe
[2012/09/06 19:05:25 | 000,419,840 | ---- | M] (Piriform Ltd) -- C:\ProgramData\rundll3262.exe
[2012/09/06 19:05:25 | 000,419,840 | ---- | M] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\65336.exe
[2012/09/05 21:07:00 | 000,668,160 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe
[2012/09/05 21:07:00 | 000,668,160 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\10984.exe
[2012/09/05 01:00:49 | 000,397,824 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll
[2012/09/05 01:00:36 | 000,665,088 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll
[2012/09/05 00:59:38 | 000,152,576 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll
[2012/09/04 21:40:35 | 001,331,360 | ---- | M] () -- C:\Users\Marie-Eve\Desktop\2012-09-04 19.47.31.jpg
[2012/09/02 11:03:52 | 000,084,111 | ---- | M] () -- C:\Users\Marie-Eve\Desktop\photos CS.jpg
[2012/09/01 22:09:22 | 000,002,096 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2012/09/01 22:09:21 | 000,002,096 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2012/08/30 18:07:32 | 000,001,865 | ---- | M] () -- C:\Users\Marie-Eve\Desktop\WinRAS 2012.01.lnk
[2012/08/29 22:47:25 | 000,031,344 | ---- | M] (Connectify) -- C:\windows\SysNative\drivers\cnnctfy2.sys
[2012/08/29 22:43:02 | 000,000,375 | ---- | M] () -- C:\windows\SysNative\drivers\etc\hosts.ics
[2012/08/16 08:10:34 | 000,462,264 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012/08/14 17:18:04 | 000,002,021 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[1 C:\Users\Marie-Eve\Desktop\*.tmp files -> C:\Users\Marie-Eve\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/09/08 00:18:58 | 001,539,056 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\82470.exe
[2012/09/08 00:18:23 | 000,019,375 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\624510.atf
[2012/09/07 19:15:20 | 001,539,036 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\19135.exe
[2012/09/07 19:14:52 | 001,539,036 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\19769.exe
[2012/09/07 08:20:47 | 000,002,139 | ---- | C] () -- C:\Users\Marie-Eve\Desktop\PPTV .lnk
[2012/09/07 08:20:47 | 000,002,119 | ---- | C] () -- C:\Users\Marie-Eve\Application Data\Microsoft\Internet Explorer\Quick Launch\PPTV .lnk
[2012/09/05 21:07:01 | 000,668,160 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe
[2012/09/05 21:06:59 | 000,668,160 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\10984.exe
[2012/09/05 01:00:47 | 000,397,824 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll
[2012/09/05 01:00:37 | 000,000,000 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Local\¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ
[2012/09/05 01:00:32 | 000,665,088 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll
[2012/09/05 00:59:39 | 000,152,576 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll
[2012/09/04 21:33:58 | 001,331,360 | ---- | C] () -- C:\Users\Marie-Eve\Desktop\2012-09-04 19.47.31.jpg
[2012/09/02 11:03:51 | 000,084,111 | ---- | C] () -- C:\Users\Marie-Eve\Desktop\photos CS.jpg
[2012/08/30 18:07:32 | 000,001,865 | ---- | C] () -- C:\Users\Marie-Eve\Desktop\WinRAS 2012.01.lnk
[2012/08/30 18:07:31 | 000,053,248 | ---- | C] () -- C:\windows\SysWow64\xpsacdma01.dll
[2012/08/27 21:38:53 | 000,002,096 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2012/08/27 21:38:53 | 000,002,096 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2012/04/18 14:10:02 | 000,060,304 | ---- | C] () -- C:\Users\Marie-Eve\g2mdlhlpx.exe
[2012/04/01 19:03:02 | 000,005,632 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/14 23:13:40 | 000,650,752 | ---- | C] () -- C:\windows\SysWow64\xvidcore.dll
[2012/02/14 23:13:40 | 000,243,200 | ---- | C] () -- C:\windows\SysWow64\xvidvfw.dll
[2012/02/14 23:13:34 | 000,175,616 | ---- | C] () -- C:\windows\SysWow64\unrar.dll
[2012/02/14 23:13:31 | 000,079,360 | ---- | C] () -- C:\windows\SysWow64\ff_vfw.dll
[2012/01/28 07:12:21 | 000,963,116 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2012/01/28 07:12:21 | 000,218,304 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2012/01/28 07:12:21 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2012/01/28 07:12:21 | 000,056,832 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2012/01/28 07:12:20 | 013,356,032 | ---- | C] () -- C:\windows\SysWow64\ig4icd32.dll
[2012/01/28 05:50:23 | 000,017,776 | ---- | C] () -- C:\windows\EvtMessage.dll
[2012/01/28 05:45:19 | 000,008,192 | ---- | C] () -- C:\windows\SysWow64\drivers\IntelMEFWVer.dll
[2011/11/16 16:49:04 | 000,000,096 | ---- | C] () -- C:\windows\LaunApp.ini
[2011/11/16 16:49:01 | 000,000,325 | ---- | C] () -- C:\windows\Prelaunch.ini
[2011/11/16 16:49:01 | 000,000,271 | ---- | C] () -- C:\windows\WisPriority.ini
[2011/11/16 16:49:01 | 000,000,035 | ---- | C] () -- C:\windows\DELL_LANGCODE.ini
[2011/11/16 16:49:01 | 000,000,033 | ---- | C] () -- C:\windows\DELL_OSTYPE.ini
[2011/11/16 16:49:01 | 000,000,032 | ---- | C] () -- C:\windows\WisHWDest.ini
[2011/11/16 16:49:01 | 000,000,028 | ---- | C] () -- C:\windows\WisLangCode.ini
[2011/11/16 16:49:01 | 000,000,023 | ---- | C] () -- C:\windows\WisSysInfo.ini
[2011/11/16 15:25:01 | 000,764,746 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI

========== LOP Check ==========

[2012/09/08 17:29:14 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\arcomdir
[2012/03/31 23:29:55 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\AviDvdBurner
[2012/08/14 23:57:59 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\Azureus
[2012/08/04 16:23:52 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\CenWave
[2012/06/25 00:22:51 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\com.skinkers.aa
[2012/09/08 00:20:06 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\dclogs
[2012/02/03 15:32:18 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\Fingertapps
[2012/06/10 12:26:55 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\Garmin
[2012/06/17 12:15:51 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\IDT
[2012/09/05 07:41:10 | 000,000,000 | -HSD | M] -- C:\Users\Marie-Eve\AppData\Roaming\msnmsgr
[2012/02/10 12:08:41 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\PCDr
[2012/09/08 08:12:19 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\PPlive
[2012/02/22 18:32:50 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\SystemRequirementsLab
[2012/06/19 18:41:15 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\webex
[2012/06/30 11:13:19 | 000,032,580 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2012/08/11 16:17:29 | 000,000,162 | -H-- | M] ()(C:\Users\Marie-Eve\Desktop\~$?? 61-65.docx) -- C:\Users\Marie-Eve\Desktop\~$教程 61-65.docx
[2012/08/11 16:17:29 | 000,000,162 | -H-- | C] ()(C:\Users\Marie-Eve\Desktop\~$?? 61-65.docx) -- C:\Users\Marie-Eve\Desktop\~$教程 61-65.docx

< End of report >
  • 0

Advertisements

#2
Essexboy
Posted 08 September 2012 - 04:16 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
I'll remove pptv for you along with th r est

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    Posted Image

    :OTL
[2012/09/05 01:00:36 | 000,000,000 | ---D | M] (Mozilla Safe Browsing) -- C:\USERS\MARIE-EVE\APPDATA\LOCAL\{940C851B-F716-11E1-8270-B8AC6F996F26}
O4 - HKCU..\Run: [arcom] C:\Users\Marie-Eve\AppData\Roaming\arcomdir\arcom.exe ()
O4 - HKCU..\Run: [PPAP] C:\Program Files (x86)\Common Files\PPLiveNetwork\PPAP.exe (PPLive Corporation)
O4 - HKCU..\Run: [rundll32] "C:\ProgramData\rundll3262.exe" File not found
O4 - HKCU..\Run: [rvwpr] C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll ()
O4 - HKCU..\Run: [shshcn] C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll ()
O4 - HKCU..\Run: [tiatsd] C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll ()
O4 - Startup: C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe ()
[2012/09/08 00:19:42 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Roaming\arcomdir
[2012/09/07 08:20:47 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PPLive
[2012/09/07 08:20:46 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\PPTV
[2012/09/07 08:20:46 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\Documents\PPTV
[2012/09/06 19:05:44 | 000,419,840 | ---- | C] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\01273.exe
[2012/09/06 19:05:31 | 000,000,000 | ---D | C] -- C:\Users\Marie-Eve\AppData\Roaming\dclogs
[2012/09/06 19:05:27 | 000,419,840 | ---- | C] (Piriform Ltd) -- C:\ProgramData\rundll3262.exe
[2012/09/06 19:05:25 | 000,419,840 | ---- | C] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\65336.exe
[2012/09/05 07:41:31 | 000,053,248 | RHS- | C] (Microsoft Corporation Ltd) -- C:\ProgramData\msnmsgre17.exe
[2012/09/05 07:41:10 | 000,000,000 | -HSD | C] -- C:\Users\Marie-Eve\AppData\Roaming\msnmsgr
[2012/09/08 17:43:51 | 000,000,000 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Local\¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ
[2012/09/08 00:19:07 | 001,539,056 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\82470.exe
[2012/09/08 00:18:23 | 000,019,375 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\624510.atf
[2012/09/07 19:15:20 | 001,539,036 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\19135.exe
[2012/09/07 19:14:53 | 001,539,036 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\19769.exe
[2012/09/07 08:20:47 | 000,002,139 | ---- | M] () -- C:\Users\Marie-Eve\Desktop\PPTV .lnk
[2012/09/07 08:20:47 | 000,002,119 | ---- | M] () -- C:\Users\Marie-Eve\Application Data\Microsoft\Internet Explorer\Quick Launch\PPTV .lnk
[2012/09/06 19:05:44 | 000,419,840 | ---- | M] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\01273.exe
[2012/09/06 19:05:25 | 000,419,840 | ---- | M] (Piriform Ltd) -- C:\ProgramData\rundll3262.exe
[2012/09/06 19:05:25 | 000,419,840 | ---- | M] (Piriform Ltd) -- C:\Users\Marie-Eve\AppData\Roaming\65336.exe
[2012/09/05 21:07:00 | 000,668,160 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe
[2012/09/05 21:07:00 | 000,668,160 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\10984.exe
[2012/09/05 01:00:49 | 000,397,824 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll
[2012/09/05 01:00:36 | 000,665,088 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll
[2012/09/05 00:59:38 | 000,152,576 | ---- | M] () -- C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll
[2012/09/08 00:18:58 | 001,539,056 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\82470.exe
[2012/09/08 00:18:23 | 000,019,375 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\624510.atf
[2012/09/07 19:15:20 | 001,539,036 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\19135.exe
[2012/09/07 19:14:52 | 001,539,036 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\19769.exe
[2012/09/07 08:20:47 | 000,002,139 | ---- | C] () -- C:\Users\Marie-Eve\Desktop\PPTV .lnk
[2012/09/07 08:20:47 | 000,002,119 | ---- | C] () -- C:\Users\Marie-Eve\Application Data\Microsoft\Internet Explorer\Quick Launch\PPTV .lnk
[2012/09/05 21:07:01 | 000,668,160 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe
[2012/09/05 21:06:59 | 000,668,160 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\10984.exe
[2012/09/05 01:00:47 | 000,397,824 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll
[2012/09/05 01:00:37 | 000,000,000 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Local\¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ
[2012/09/05 01:00:32 | 000,665,088 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll
[2012/09/05 00:59:39 | 000,152,576 | ---- | C] () -- C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll
[2012/09/08 08:12:19 | 000,000,000 | ---D | M] -- C:\Users\Marie-Eve\AppData\Roaming\PPlive
[2012/09/05 07:41:10 | 000,000,000 | -HSD | M] -- C:\Users\Marie-Eve\AppData\Roaming\msnmsgr


:Files
ipconfig /flushdns /c
netsh int ip reset c:\resetlog.txt  /c
ipconfig /release /c
ipconfig /renew /c

:Commands
[purity]
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

THEN

run farbar service scanner

Posted Image

Tick "All" options.
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.

Please copy and paste the log to your reply.
  • 0

#3
Meboubou
Posted 08 September 2012 - 06:28 PM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
All processes killed
========== OTL ==========
C:\USERS\MARIE-EVE\APPDATA\LOCAL\{940C851B-F716-11E1-8270-B8AC6F996F26}\chrome\content folder moved successfully.
C:\USERS\MARIE-EVE\APPDATA\LOCAL\{940C851B-F716-11E1-8270-B8AC6F996F26}\chrome folder moved successfully.
C:\USERS\MARIE-EVE\APPDATA\LOCAL\{940C851B-F716-11E1-8270-B8AC6F996F26} folder moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\arcom deleted successfully.
C:\Users\Marie-Eve\AppData\Roaming\arcomdir\arcom.exe moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\PPAP deleted successfully.
C:\Program Files (x86)\Common Files\PPLiveNetwork\PPAP.exe moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\rundll32 deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\rvwpr deleted successfully.
C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\shshcn deleted successfully.
C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\tiatsd deleted successfully.
C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\arcomdir\logs folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\arcomdir\IML folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\arcomdir folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PPLive folder moved successfully.
C:\Users\Public\Documents\PPTV\icons folder moved successfully.
C:\Users\Public\Documents\PPTV folder moved successfully.
C:\Users\Marie-Eve\Documents\PPTV\PP收藏夹 folder moved successfully.
C:\Users\Marie-Eve\Documents\PPTV\PP播放记录 folder moved successfully.
C:\Users\Marie-Eve\Documents\PPTV\PP年度必看 folder moved successfully.
C:\Users\Marie-Eve\Documents\PPTV folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\01273.exe moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\dclogs folder moved successfully.
C:\ProgramData\rundll3262.exe moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\65336.exe moved successfully.
C:\ProgramData\msnmsgre17.exe moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\msnmsgr folder moved successfully.
C:\Users\Marie-Eve\AppData\Local\¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\82470.exe moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\624510.atf moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\19135.exe moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\19769.exe moved successfully.
C:\Users\Marie-Eve\Desktop\PPTV .lnk moved successfully.
C:\Users\Marie-Eve\Application Data\Microsoft\Internet Explorer\Quick Launch\PPTV .lnk moved successfully.
File C:\Users\Marie-Eve\AppData\Roaming\01273.exe not found.
File C:\ProgramData\rundll3262.exe not found.
File C:\Users\Marie-Eve\AppData\Roaming\65336.exe not found.
File C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe not found.
C:\Users\Marie-Eve\AppData\Roaming\10984.exe moved successfully.
File C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll not found.
File C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll not found.
File C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll not found.
File C:\Users\Marie-Eve\AppData\Roaming\82470.exe not found.
File C:\Users\Marie-Eve\AppData\Roaming\624510.atf not found.
File C:\Users\Marie-Eve\AppData\Roaming\19135.exe not found.
File C:\Users\Marie-Eve\AppData\Roaming\19769.exe not found.
File C:\Users\Marie-Eve\Desktop\PPTV .lnk not found.
File C:\Users\Marie-Eve\Application Data\Microsoft\Internet Explorer\Quick Launch\PPTV .lnk not found.
File C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iner.exe not found.
File C:\Users\Marie-Eve\AppData\Roaming\10984.exe not found.
File C:\Users\Marie-Eve\AppData\Roaming\shshcn.dll not found.
File C:\Users\Marie-Eve\AppData\Local\¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ not found.
File C:\Users\Marie-Eve\AppData\Roaming\tiatsd.dll not found.
File C:\Users\Marie-Eve\AppData\Roaming\rvwpr.dll not found.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\UPDATE folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\9\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\9\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\9\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\9\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\9 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\8\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\8\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\8\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\8\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\8 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\7\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\7\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\7\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\7\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\7 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\5\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\5\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\5\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\5\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\5 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\4\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\4\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\4\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\4\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\4 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\3\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\3\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\3\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\3\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\2\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\2\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\2\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\2\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\11\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\11\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\11\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\11\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\11 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\1\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\1\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\1\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\1\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\tab folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\watchlog folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\small folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\sidelist folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\search folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\playlist folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\login folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\batdownload folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\login folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\default folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\taskbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\repair folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\PPOptions folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\minisite folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\menu2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\menu folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\login folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\freshbuble folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\edu folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\dlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\crashreporter folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common\2x_small folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\login folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic_b folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\login folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\classic folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\login folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins\3xgiving folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\skins folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\PlugOut folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\Plugin folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\player folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\icons folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\greprefs folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data\logPage\images folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data\logPage folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data\local\images2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data\local\images folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data\local\cjs folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data\local folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data\face folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\data folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\components folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\chrome\playcontrol folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\chrome\icons folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\chrome\education folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\chrome folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\bind folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\UPDATE folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\8\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\8\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\8\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\8\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\8 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\7\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\7\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\7\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\7\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\7 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\6\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\6\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\6\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\6\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\6 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\5\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\5\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\5\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\5\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\5 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\4\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\4\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\4\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\4\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\4 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\3\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\3\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\3\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\3\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\2\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\2\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\2\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\2\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\12\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\12\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\12\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\12\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\12 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\11\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\11\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\11\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\11\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\11 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\1\3 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\1\2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\1\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\1\0 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab\1 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\tab folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\watchlog folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\small folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\sidelist folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\search folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\playlist folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\controltoolbar\full folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\batdownload folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\default folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\teach\old folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\teach\new folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\teach folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\taskbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\repair folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\PPOptions folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\mode folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\minisite folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\menu2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\menu folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\login folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\freshbuble folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\edu folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\dlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\crashreporter folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common\2x_small folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic_b folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\classic folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\stdDlg folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\scrollbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\playctrl folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\passport folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\mainframe folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\list folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\hoverinfo folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\download folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\controltoolbar folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\common folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving\ad folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins\3xgiving folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\skins folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\PlugOut folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\player folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\icons folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data\logPage\images folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data\logPage folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data\local\images2 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data\local\images folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data\local\cjs folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data\local folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data\face folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\data folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\components folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\chrome\playcontrol folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\chrome\icons folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\chrome\education folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056\chrome folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive\3.1.6.0056 folder moved successfully.
C:\Users\Marie-Eve\AppData\Roaming\PPlive\PPlive folder moved successfully.
Folder C:\Users\Marie-Eve\AppData\Roaming\msnmsgr\ not found.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Marie-Eve\Desktop\cmd.bat deleted successfully.
C:\Users\Marie-Eve\Desktop\cmd.txt deleted successfully.
< netsh int ip reset c:\resetlog.txt /c >
Reseting Global, OK!
Reseting Interface, OK!
Reseting Unicast Address, OK!
Restart the computer to complete this action.
C:\Users\Marie-Eve\Desktop\cmd.bat deleted successfully.
C:\Users\Marie-Eve\Desktop\cmd.txt deleted successfully.
< ipconfig /release /c >
Windows IP Configuration
No operation can be performed on Wireless Network Connection 3 while it has its media disconnected.
No operation can be performed on Wireless Network Connection 2 while it has its media disconnected.
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.
Wireless LAN adapter Wireless Network Connection 3:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Wireless LAN adapter Wireless Network Connection 2:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Wireless LAN adapter Wireless Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Link-local IPv6 Address . . . . . : fe80::915a:b401:798e:88d3%13
Default Gateway . . . . . . . . . :
Ethernet adapter Bluetooth Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter Local Area Connection* 19:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.cablevision.qc.ca:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{6FD1EF73-412C-4EAB-9A71-224FEBE56540}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{4B2E4227-F82E-4879-9AB0-F335FA9019BD}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{E8077001-E4F5-43D5-8E96-FDF0ACA8A688}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{A0C5A27F-1548-4784-A371-5C42A1F76DD6}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter 6TO4 Adapter:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
C:\Users\Marie-Eve\Desktop\cmd.bat deleted successfully.
C:\Users\Marie-Eve\Desktop\cmd.txt deleted successfully.
< ipconfig /renew /c >
Windows IP Configuration
No operation can be performed on Wireless Network Connection 3 while it has its media disconnected.
No operation can be performed on Wireless Network Connection 2 while it has its media disconnected.
No operation can be performed on Wireless Network Connection while it has its media disconnected.
No operation can be performed on Bluetooth Network Connection while it has its media disconnected.
Wireless LAN adapter Wireless Network Connection 3:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Wireless LAN adapter Wireless Network Connection 2:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Wireless LAN adapter Wireless Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : cablevision.qc.ca
Link-local IPv6 Address . . . . . : fe80::915a:b401:798e:88d3%13
IPv4 Address. . . . . . . . . . . : 24.212.46.220
Subnet Mask . . . . . . . . . . . : 255.255.240.0
Default Gateway . . . . . . . . . : 24.212.32.1
Ethernet adapter Bluetooth Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter Local Area Connection* 19:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.cablevision.qc.ca:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{6FD1EF73-412C-4EAB-9A71-224FEBE56540}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{4B2E4227-F82E-4879-9AB0-F335FA9019BD}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{E8077001-E4F5-43D5-8E96-FDF0ACA8A688}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter isatap.{A0C5A27F-1548-4784-A371-5C42A1F76DD6}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Tunnel adapter 6TO4 Adapter:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
C:\Users\Marie-Eve\Desktop\cmd.bat deleted successfully.
C:\Users\Marie-Eve\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56466 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Marie-Eve
->Temp folder emptied: 341468902 bytes
->Temporary Internet Files folder emptied: 223309556 bytes
->Java cache emptied: 2624339 bytes
->FireFox cache emptied: 1099812621 bytes
->Flash cache emptied: 168465 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 220947549 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50534 bytes
RecycleBin emptied: 51223025 bytes

Total Files Cleaned = 1,850.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.61.2 log created on 09082012_193830

Files\Folders moved on Reboot...
C:\Users\Marie-Eve\AppData\Local\Temp\Low\REG5002.tmp moved successfully.
C:\Users\Marie-Eve\AppData\Local\Temp\Low\REG589A.tmp moved successfully.
C:\Users\Marie-Eve\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • 0

#4
Meboubou
Posted 08 September 2012 - 06:29 PM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
Farbar Service Scanner Version: 06-08-2012
Ran by Marie-Eve (administrator) on 08-09-2012 at 20:27:49
Running from "C:\Users\Marie-Eve\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to open SharedAccess registry key. The service key does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
  • 0

#5
Essexboy
Posted 09 September 2012 - 04:41 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Download the attached zip file to your desktop
[attachment=60393:meboubou.zip]
Extract all the .reg file to the desktop
Double click each in turn and allow to merge
Reboot the computer and re-run FSS please

THEN

Download the latest version of TDSSKiller from here and save it to your Desktop.


  • Doubleclick on TDSSKiller.exe to run the application
    Posted Image
  • Then click on Change parameters.

    Posted Image
  • Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
  • Click the Start Scan button.

  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    Posted Image
  • If malicious objects are found, they will show in the Scan results and offer three (3) options.
  • Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
  • Get the report by selecting Reports

    Posted Image
  • Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

Please copy and paste its contents on your next reply.
  • 0

#6
Meboubou
Posted 09 September 2012 - 07:41 AM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
Farbar Service Scanner Version: 06-08-2012
Ran by Marie-Eve (administrator) on 09-09-2012 at 09:28:13
Running from "C:\Users\Marie-Eve\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.

bfe Service is not running. Checking service configuration:
The start type of bfe service is OK.
The ImagePath of bfe service is OK.
The ServiceDll of bfe service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
  • 0

#7
Meboubou
Posted 09 September 2012 - 07:43 AM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
09:38:06.0628 10396 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
09:38:06.0918 10396 ============================================================
09:38:06.0918 10396 Current date / time: 2012/09/09 09:38:06.0918
09:38:06.0918 10396 SystemInfo:
09:38:06.0918 10396
09:38:06.0918 10396 OS Version: 6.1.7601 ServicePack: 1.0
09:38:06.0918 10396 Product type: Workstation
09:38:06.0918 10396 ComputerName: MARIE-EVE-PC
09:38:06.0918 10396 UserName: Marie-Eve
09:38:06.0918 10396 Windows directory: C:\windows
09:38:06.0918 10396 System windows directory: C:\windows
09:38:06.0918 10396 Running under WOW64
09:38:06.0918 10396 Processor architecture: Intel x64
09:38:06.0918 10396 Number of processors: 4
09:38:06.0918 10396 Page size: 0x1000
09:38:06.0918 10396 Boot type: Normal boot
09:38:06.0918 10396 ============================================================
09:38:07.0428 10396 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:38:07.0428 10396 ============================================================
09:38:07.0428 10396 \Device\Harddisk0\DR0:
09:38:07.0438 10396 MBR partitions:
09:38:07.0438 10396 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
09:38:07.0438 10396 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
09:38:07.0438 10396 ============================================================
09:38:07.0478 10396 C: <-> \Device\Harddisk0\DR0\Partition2
09:38:07.0478 10396 ============================================================
09:38:07.0478 10396 Initialize success
09:38:07.0478 10396 ============================================================
09:38:35.0178 10872 ============================================================
09:38:35.0178 10872 Scan started
09:38:35.0178 10872 Mode: Manual; SigCheck; TDLFS;
09:38:35.0178 10872 ============================================================
09:38:35.0298 10872 ================ Scan system memory ========================
09:38:35.0298 10872 System memory - ok
09:38:35.0298 10872 ================ Scan services =============================
09:38:35.0518 10872 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
09:38:35.0628 10872 1394ohci - ok
09:38:35.0688 10872 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
09:38:35.0708 10872 ACPI - ok
09:38:35.0788 10872 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
09:38:35.0878 10872 AcpiPmi - ok
09:38:35.0978 10872 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:38:35.0988 10872 AdobeARMservice - ok
09:38:36.0158 10872 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:38:36.0168 10872 AdobeFlashPlayerUpdateSvc - ok
09:38:36.0218 10872 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
09:38:36.0238 10872 adp94xx - ok
09:38:36.0318 10872 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
09:38:36.0338 10872 adpahci - ok
09:38:36.0348 10872 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
09:38:36.0358 10872 adpu320 - ok
09:38:36.0398 10872 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
09:38:36.0478 10872 AeLookupSvc - ok
09:38:36.0628 10872 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
09:38:36.0718 10872 AESTFilters - ok
09:38:36.0808 10872 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
09:38:36.0958 10872 AFD - ok
09:38:37.0008 10872 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
09:38:37.0028 10872 agp440 - ok
09:38:37.0038 10872 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
09:38:37.0158 10872 ALG - ok
09:38:37.0178 10872 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
09:38:37.0188 10872 aliide - ok
09:38:37.0188 10872 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
09:38:37.0208 10872 amdide - ok
09:38:37.0208 10872 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
09:38:37.0238 10872 AmdK8 - ok
09:38:37.0238 10872 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
09:38:37.0278 10872 AmdPPM - ok
09:38:37.0308 10872 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
09:38:37.0348 10872 amdsata - ok
09:38:37.0348 10872 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
09:38:37.0368 10872 amdsbs - ok
09:38:37.0388 10872 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
09:38:37.0428 10872 amdxata - ok
09:38:37.0458 10872 [ 3BC90482A834F998C3B7A9C934A20342 ] AMPPAL C:\windows\system32\DRIVERS\AMPPAL.sys
09:38:37.0538 10872 AMPPAL - ok
09:38:37.0548 10872 [ 3BC90482A834F998C3B7A9C934A20342 ] AMPPALP C:\windows\system32\DRIVERS\amppal.sys
09:38:37.0558 10872 AMPPALP - ok
09:38:37.0638 10872 [ A47D7FEBD9381D34DDB4FF38B15A67FE ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
09:38:37.0668 10872 AMPPALR3 - ok
09:38:37.0708 10872 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\windows\system32\Drivers\ssadadb.sys
09:38:37.0768 10872 androidusb - ok
09:38:37.0808 10872 [ 24ED0EB2B2558970176ECEE680F8F806 ] ApfiltrService C:\windows\system32\DRIVERS\Apfiltr.sys
09:38:37.0848 10872 ApfiltrService - ok
09:38:37.0888 10872 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
09:38:38.0038 10872 AppID - ok
09:38:38.0058 10872 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
09:38:38.0108 10872 AppIDSvc - ok
09:38:38.0148 10872 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
09:38:38.0218 10872 Appinfo - ok
09:38:38.0258 10872 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
09:38:38.0268 10872 arc - ok
09:38:38.0288 10872 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
09:38:38.0308 10872 arcsas - ok
09:38:38.0418 10872 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:38:38.0458 10872 aspnet_state - ok
09:38:38.0498 10872 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
09:38:38.0538 10872 AsyncMac - ok
09:38:38.0588 10872 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
09:38:38.0608 10872 atapi - ok
09:38:38.0648 10872 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
09:38:38.0718 10872 AudioEndpointBuilder - ok
09:38:38.0728 10872 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
09:38:38.0758 10872 AudioSrv - ok
09:38:38.0768 10872 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
09:38:38.0858 10872 AxInstSV - ok
09:38:38.0898 10872 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
09:38:38.0938 10872 b06bdrv - ok
09:38:38.0978 10872 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
09:38:38.0998 10872 b57nd60a - ok
09:38:39.0058 10872 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
09:38:39.0098 10872 BDESVC - ok
09:38:39.0128 10872 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
09:38:39.0198 10872 Beep - ok
09:38:39.0258 10872 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
09:38:39.0308 10872 BFE - ok
09:38:39.0348 10872 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
09:38:39.0398 10872 BITS - ok
09:38:39.0438 10872 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
09:38:39.0468 10872 blbdrive - ok
09:38:39.0568 10872 [ 5FF7B9916A10E8E69E7C0D16F0B4787A ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
09:38:39.0608 10872 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - warning
09:38:39.0608 10872 Bluetooth Device Monitor - detected UnsignedFile.Multi.Generic (1)
09:38:39.0628 10872 [ E43D73CAF1023976EFBA1D0F0E69E271 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
09:38:39.0688 10872 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - warning
09:38:39.0688 10872 Bluetooth Media Service - detected UnsignedFile.Multi.Generic (1)
09:38:39.0748 10872 [ 20427929646784A482DF34EF8C4FED23 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
09:38:39.0768 10872 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - warning
09:38:39.0768 10872 Bluetooth OBEX Service - detected UnsignedFile.Multi.Generic (1)
09:38:39.0798 10872 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
09:38:39.0878 10872 bowser - ok
09:38:39.0908 10872 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
09:38:39.0938 10872 BrFiltLo - ok
09:38:39.0938 10872 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
09:38:39.0948 10872 BrFiltUp - ok
09:38:39.0988 10872 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
09:38:40.0038 10872 Browser - ok
09:38:40.0058 10872 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
09:38:40.0098 10872 Brserid - ok
09:38:40.0098 10872 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
09:38:40.0128 10872 BrSerWdm - ok
09:38:40.0128 10872 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
09:38:40.0158 10872 BrUsbMdm - ok
09:38:40.0158 10872 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
09:38:40.0168 10872 BrUsbSer - ok
09:38:40.0208 10872 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
09:38:40.0248 10872 BthEnum - ok
09:38:40.0278 10872 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
09:38:40.0308 10872 BTHMODEM - ok
09:38:40.0338 10872 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
09:38:40.0368 10872 BthPan - ok
09:38:40.0408 10872 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
09:38:40.0478 10872 BTHPORT - ok
09:38:40.0508 10872 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
09:38:40.0548 10872 bthserv - ok
09:38:40.0578 10872 [ 9E2AF97302B9F4BF97E952A865EB31AE ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
09:38:40.0628 10872 BTHSSecurityMgr - ok
09:38:40.0668 10872 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
09:38:40.0728 10872 BTHUSB - ok
09:38:40.0768 10872 [ 274E47BD9C1367BDBFA9DF10C2E6C544 ] btmaudio C:\windows\system32\drivers\btmaud.sys
09:38:40.0848 10872 btmaudio - ok
09:38:40.0878 10872 [ 75EAB5AAF6E9F83739249CE60B4B9C39 ] btmaux C:\windows\system32\DRIVERS\btmaux.sys
09:38:40.0948 10872 btmaux - ok
09:38:40.0978 10872 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf C:\windows\system32\DRIVERS\btmhsf.sys
09:38:41.0048 10872 btmhsf - ok
09:38:41.0088 10872 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
09:38:41.0128 10872 cdfs - ok
09:38:41.0178 10872 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
09:38:41.0238 10872 cdrom - ok
09:38:41.0268 10872 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
09:38:41.0348 10872 CertPropSvc - ok
09:38:41.0388 10872 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\windows\system32\drivers\cfwids.sys
09:38:41.0428 10872 cfwids - ok
09:38:41.0458 10872 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
09:38:41.0478 10872 circlass - ok
09:38:41.0498 10872 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
09:38:41.0518 10872 CLFS - ok
09:38:41.0588 10872 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:38:41.0598 10872 clr_optimization_v2.0.50727_32 - ok
09:38:41.0658 10872 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:38:41.0678 10872 clr_optimization_v2.0.50727_64 - ok
09:38:41.0748 10872 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:38:41.0798 10872 clr_optimization_v4.0.30319_32 - ok
09:38:41.0818 10872 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:38:41.0868 10872 clr_optimization_v4.0.30319_64 - ok
09:38:41.0898 10872 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
09:38:41.0918 10872 CmBatt - ok
09:38:41.0938 10872 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
09:38:41.0948 10872 cmdide - ok
09:38:41.0988 10872 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
09:38:42.0028 10872 CNG - ok
09:38:42.0058 10872 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
09:38:42.0068 10872 Compbatt - ok
09:38:42.0108 10872 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
09:38:42.0178 10872 CompositeBus - ok
09:38:42.0188 10872 COMSysApp - ok
09:38:42.0198 10872 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
09:38:42.0208 10872 crcdisk - ok
09:38:42.0258 10872 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
09:38:42.0308 10872 CryptSvc - ok
09:38:42.0388 10872 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\windows\system32\DRIVERS\CtClsFlt.sys
09:38:42.0468 10872 CtClsFlt - ok
09:38:42.0508 10872 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
09:38:42.0548 10872 DcomLaunch - ok
09:38:42.0588 10872 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
09:38:42.0628 10872 defragsvc - ok
09:38:42.0688 10872 [ 88D5FE2109F1A52CF69BA410082A833A ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
09:38:42.0748 10872 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - warning
09:38:42.0748 10872 DellDigitalDelivery - detected UnsignedFile.Multi.Generic (1)
09:38:42.0758 10872 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
09:38:42.0828 10872 DfsC - ok
09:38:42.0868 10872 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
09:38:42.0908 10872 Dhcp - ok
09:38:42.0938 10872 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
09:38:42.0978 10872 discache - ok
09:38:43.0018 10872 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
09:38:43.0028 10872 Disk - ok
09:38:43.0048 10872 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
09:38:43.0068 10872 Dnscache - ok
09:38:43.0078 10872 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
09:38:43.0158 10872 dot3svc - ok
09:38:43.0168 10872 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
09:38:43.0208 10872 DPS - ok
09:38:43.0238 10872 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
09:38:43.0268 10872 drmkaud - ok
09:38:43.0288 10872 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
09:38:43.0348 10872 DXGKrnl - ok
09:38:43.0388 10872 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
09:38:43.0428 10872 EapHost - ok
09:38:43.0488 10872 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
09:38:43.0568 10872 ebdrv - ok
09:38:43.0588 10872 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
09:38:43.0648 10872 EFS - ok
09:38:43.0728 10872 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
09:38:43.0808 10872 ehRecvr - ok
09:38:43.0818 10872 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
09:38:43.0828 10872 ehSched - ok
09:38:43.0868 10872 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
09:38:43.0888 10872 elxstor - ok
09:38:43.0918 10872 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
09:38:43.0948 10872 ErrDev - ok
09:38:43.0978 10872 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
09:38:44.0028 10872 EventSystem - ok
09:38:44.0138 10872 [ B20A788579E443F768AAB1A24F705D0A ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
09:38:44.0168 10872 EvtEng - ok
09:38:44.0178 10872 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
09:38:44.0218 10872 exfat - ok
09:38:44.0248 10872 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
09:38:44.0288 10872 fastfat - ok
09:38:44.0328 10872 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
09:38:44.0368 10872 Fax - ok
09:38:44.0368 10872 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
09:38:44.0388 10872 fdc - ok
09:38:44.0428 10872 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
09:38:44.0478 10872 fdPHost - ok
09:38:44.0488 10872 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
09:38:44.0518 10872 FDResPub - ok
09:38:44.0538 10872 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
09:38:44.0548 10872 FileInfo - ok
09:38:44.0558 10872 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
09:38:44.0598 10872 Filetrace - ok
09:38:44.0608 10872 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
09:38:44.0628 10872 flpydisk - ok
09:38:44.0638 10872 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
09:38:44.0678 10872 FltMgr - ok
09:38:44.0698 10872 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
09:38:44.0768 10872 FontCache - ok
09:38:44.0818 10872 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:38:44.0868 10872 FontCache3.0.0.0 - ok
09:38:44.0898 10872 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
09:38:44.0908 10872 FsDepends - ok
09:38:44.0938 10872 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
09:38:44.0978 10872 Fs_Rec - ok
09:38:44.0998 10872 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
09:38:45.0058 10872 fvevol - ok
09:38:45.0098 10872 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
09:38:45.0108 10872 gagp30kx - ok
09:38:45.0168 10872 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
09:38:45.0228 10872 GamesAppService - ok
09:38:45.0248 10872 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
09:38:45.0288 10872 gpsvc - ok
09:38:45.0308 10872 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
09:38:45.0338 10872 hcw85cir - ok
09:38:45.0358 10872 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
09:38:45.0418 10872 HdAudAddService - ok
09:38:45.0428 10872 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
09:38:45.0448 10872 HDAudBus - ok
09:38:45.0458 10872 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
09:38:45.0478 10872 HidBatt - ok
09:38:45.0478 10872 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
09:38:45.0508 10872 HidBth - ok
09:38:45.0508 10872 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
09:38:45.0528 10872 HidIr - ok
09:38:45.0548 10872 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
09:38:45.0588 10872 hidserv - ok
09:38:45.0628 10872 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
09:38:45.0668 10872 HidUsb - ok
09:38:45.0698 10872 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
09:38:45.0768 10872 hkmsvc - ok
09:38:45.0788 10872 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
09:38:45.0848 10872 HomeGroupListener - ok
09:38:45.0878 10872 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
09:38:45.0908 10872 HomeGroupProvider - ok
09:38:45.0918 10872 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
09:38:45.0958 10872 HpSAMD - ok
09:38:45.0978 10872 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
09:38:46.0068 10872 HTTP - ok
09:38:46.0078 10872 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
09:38:46.0118 10872 hwpolicy - ok
09:38:46.0138 10872 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
09:38:46.0158 10872 i8042prt - ok
09:38:46.0208 10872 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
09:38:46.0218 10872 iaStor - ok
09:38:46.0268 10872 [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:38:46.0328 10872 IAStorDataMgrSvc - ok
09:38:46.0368 10872 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
09:38:46.0438 10872 iaStorV - ok
09:38:46.0478 10872 [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex C:\windows\system32\DRIVERS\iBtFltCoex.sys
09:38:46.0528 10872 iBtFltCoex - ok
09:38:46.0578 10872 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:38:46.0638 10872 idsvc - ok
09:38:46.0848 10872 [ 174BCAC474DE13B2650E444CF124828E ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
09:38:47.0168 10872 igfx - ok
09:38:47.0228 10872 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
09:38:47.0238 10872 iirsp - ok
09:38:47.0288 10872 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
09:38:47.0358 10872 IKEEXT - ok
09:38:47.0408 10872 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
09:38:47.0458 10872 intaud_WaveExtensible - ok
09:38:47.0498 10872 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
09:38:47.0568 10872 IntcDAud - ok
09:38:47.0588 10872 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
09:38:47.0598 10872 intelide - ok
09:38:47.0628 10872 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
09:38:47.0638 10872 intelppm - ok
09:38:47.0668 10872 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
09:38:47.0698 10872 IPBusEnum - ok
09:38:47.0708 10872 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
09:38:47.0778 10872 IpFilterDriver - ok
09:38:47.0778 10872 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
09:38:47.0848 10872 IPMIDRV - ok
09:38:47.0868 10872 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
09:38:47.0918 10872 IPNAT - ok
09:38:47.0938 10872 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
09:38:47.0958 10872 IRENUM - ok
09:38:47.0988 10872 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
09:38:47.0998 10872 isapnp - ok
09:38:48.0028 10872 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
09:38:48.0078 10872 iScsiPrt - ok
09:38:48.0098 10872 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\windows\system32\DRIVERS\iwdbus.sys
09:38:48.0138 10872 iwdbus - ok
09:38:48.0148 10872 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
09:38:48.0158 10872 kbdclass - ok
09:38:48.0168 10872 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
09:38:48.0228 10872 kbdhid - ok
09:38:48.0238 10872 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
09:38:48.0248 10872 KeyIso - ok
09:38:48.0268 10872 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
09:38:48.0308 10872 KSecDD - ok
09:38:48.0318 10872 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
09:38:48.0358 10872 KSecPkg - ok
09:38:48.0378 10872 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
09:38:48.0418 10872 ksthunk - ok
09:38:48.0458 10872 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
09:38:48.0498 10872 KtmRm - ok
09:38:48.0538 10872 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
09:38:48.0588 10872 LanmanServer - ok
09:38:48.0608 10872 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
09:38:48.0668 10872 LanmanWorkstation - ok
09:38:48.0708 10872 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
09:38:48.0748 10872 lltdio - ok
09:38:48.0788 10872 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
09:38:48.0838 10872 lltdsvc - ok
09:38:48.0848 10872 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
09:38:48.0888 10872 lmhosts - ok
09:38:48.0948 10872 [ 0803906D607A9B83184447B75B60ECC2 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
09:38:48.0958 10872 LMS - ok
09:38:48.0988 10872 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
09:38:48.0998 10872 LSI_FC - ok
09:38:49.0008 10872 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
09:38:49.0018 10872 LSI_SAS - ok
09:38:49.0028 10872 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
09:38:49.0038 10872 LSI_SAS2 - ok
09:38:49.0068 10872 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
09:38:49.0088 10872 LSI_SCSI - ok
09:38:49.0118 10872 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
09:38:49.0168 10872 luafv - ok
09:38:49.0228 10872 [ 9504F1DDA1B67FB8D526FD4F8CC882F3 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
09:38:49.0278 10872 McAWFwk - ok
09:38:49.0378 10872 [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe
09:38:49.0398 10872 McComponentHostService - ok
09:38:49.0448 10872 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:38:49.0498 10872 McMPFSvc - ok
09:38:49.0508 10872 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:38:49.0518 10872 mcmscsvc - ok
09:38:49.0528 10872 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:38:49.0538 10872 McNaiAnn - ok
09:38:49.0558 10872 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:38:49.0568 10872 McNASvc - ok
09:38:49.0638 10872 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
09:38:49.0658 10872 McODS - ok
09:38:49.0658 10872 [ ACB01BF1A905356AB7F978C7FE852209 ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:38:49.0668 10872 McOobeSv - ok
09:38:49.0678 10872 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:38:49.0688 10872 McProxy - ok
09:38:49.0748 10872 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
09:38:49.0788 10872 McShield - ok
09:38:49.0808 10872 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
09:38:49.0848 10872 Mcx2Svc - ok
09:38:49.0868 10872 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
09:38:49.0878 10872 megasas - ok
09:38:49.0908 10872 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
09:38:49.0928 10872 MegaSR - ok
09:38:49.0958 10872 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
09:38:49.0998 10872 MEIx64 - ok
09:38:50.0038 10872 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\windows\system32\drivers\mfeapfk.sys
09:38:50.0078 10872 mfeapfk - ok
09:38:50.0098 10872 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\windows\system32\drivers\mfeavfk.sys
09:38:50.0148 10872 mfeavfk - ok
09:38:50.0178 10872 mfeavfk01 - ok
09:38:50.0198 10872 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
09:38:50.0238 10872 mfefire - ok
09:38:50.0268 10872 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\windows\system32\drivers\mfefirek.sys
09:38:50.0328 10872 mfefirek - ok
09:38:50.0418 10872 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
09:38:50.0478 10872 mfehidk - ok
09:38:50.0498 10872 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\windows\system32\DRIVERS\mfenlfk.sys
09:38:50.0538 10872 mfenlfk - ok
09:38:50.0568 10872 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\windows\system32\drivers\mferkdet.sys
09:38:50.0608 10872 mferkdet - ok
09:38:50.0628 10872 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
09:38:50.0668 10872 mfevtp - ok
09:38:50.0688 10872 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\windows\system32\drivers\mfewfpk.sys
09:38:50.0738 10872 mfewfpk - ok
09:38:50.0758 10872 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
09:38:50.0808 10872 MMCSS - ok
09:38:50.0818 10872 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
09:38:50.0858 10872 Modem - ok
09:38:50.0898 10872 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
09:38:50.0928 10872 monitor - ok
09:38:50.0958 10872 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
09:38:50.0968 10872 mouclass - ok
09:38:50.0998 10872 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
09:38:51.0018 10872 mouhid - ok
09:38:51.0028 10872 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
09:38:51.0078 10872 mountmgr - ok
09:38:51.0148 10872 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:38:51.0198 10872 MozillaMaintenance - ok
09:38:51.0228 10872 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
09:38:51.0268 10872 mpio - ok
09:38:51.0278 10872 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
09:38:51.0308 10872 mpsdrv - ok
09:38:51.0378 10872 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
09:38:51.0428 10872 MpsSvc - ok
09:38:51.0428 10872 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
09:38:51.0498 10872 MRxDAV - ok
09:38:51.0518 10872 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
09:38:51.0588 10872 mrxsmb - ok
09:38:51.0608 10872 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
09:38:51.0628 10872 mrxsmb10 - ok
09:38:51.0638 10872 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
09:38:51.0698 10872 mrxsmb20 - ok
09:38:51.0718 10872 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
09:38:51.0778 10872 msahci - ok
09:38:51.0788 10872 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
09:38:51.0838 10872 msdsm - ok
09:38:51.0858 10872 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
09:38:51.0878 10872 MSDTC - ok
09:38:51.0898 10872 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
09:38:51.0928 10872 Msfs - ok
09:38:51.0948 10872 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
09:38:51.0998 10872 mshidkmdf - ok
09:38:52.0018 10872 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
09:38:52.0028 10872 msisadrv - ok
09:38:52.0058 10872 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
09:38:52.0108 10872 MSiSCSI - ok
09:38:52.0118 10872 msiserver - ok
09:38:52.0148 10872 [ ACB01BF1A905356AB7F978C7FE852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:38:52.0158 10872 MSK80Service - ok
09:38:52.0188 10872 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
09:38:52.0228 10872 MSKSSRV - ok
09:38:52.0238 10872 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
09:38:52.0288 10872 MSPCLOCK - ok
09:38:52.0288 10872 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
09:38:52.0318 10872 MSPQM - ok
09:38:52.0348 10872 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
09:38:52.0378 10872 MsRPC - ok
09:38:52.0398 10872 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
09:38:52.0408 10872 mssmbios - ok
09:38:52.0428 10872 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
09:38:52.0458 10872 MSTEE - ok
09:38:52.0488 10872 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
09:38:52.0508 10872 MTConfig - ok
09:38:52.0518 10872 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
09:38:52.0538 10872 Mup - ok
09:38:52.0568 10872 [ F217D7718FD7577AF331E89910B2D21E ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
09:38:52.0618 10872 MyWiFiDHCPDNS - ok
09:38:52.0648 10872 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
09:38:52.0718 10872 napagent - ok
09:38:52.0758 10872 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
09:38:52.0798 10872 NativeWifiP - ok
09:38:52.0858 10872 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\windows\system32\drivers\ndis.sys
09:38:52.0878 10872 NDIS - ok
09:38:52.0908 10872 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
09:38:52.0948 10872 NdisCap - ok
09:38:52.0978 10872 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
09:38:53.0008 10872 NdisTapi - ok
09:38:53.0028 10872 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
09:38:53.0128 10872 Ndisuio - ok
09:38:53.0148 10872 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
09:38:53.0228 10872 NdisWan - ok
09:38:53.0238 10872 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
09:38:53.0288 10872 NDProxy - ok
09:38:53.0318 10872 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
09:38:53.0358 10872 NetBIOS - ok
09:38:53.0378 10872 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
09:38:53.0438 10872 NetBT - ok
09:38:53.0458 10872 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
09:38:53.0468 10872 Netlogon - ok
09:38:53.0508 10872 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
09:38:53.0548 10872 Netman - ok
09:38:53.0578 10872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:38:53.0628 10872 NetMsmqActivator - ok
09:38:53.0638 10872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:38:53.0648 10872 NetPipeActivator - ok
09:38:53.0668 10872 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
09:38:53.0718 10872 netprofm - ok
09:38:53.0718 10872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:38:53.0728 10872 NetTcpActivator - ok
09:38:53.0728 10872 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:38:53.0738 10872 NetTcpPortSharing - ok
09:38:53.0898 10872 [ 9FD1BE1881446D954FF77244AE58FBCB ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
09:38:54.0188 10872 NETwNs64 - ok
09:38:54.0248 10872 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
09:38:54.0258 10872 nfrd960 - ok
09:38:54.0288 10872 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
09:38:54.0368 10872 NlaSvc - ok
09:38:54.0498 10872 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
09:38:54.0538 10872 NOBU - ok
09:38:54.0548 10872 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
09:38:54.0578 10872 Npfs - ok
09:38:54.0608 10872 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
09:38:54.0648 10872 nsi - ok
09:38:54.0668 10872 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
09:38:54.0698 10872 nsiproxy - ok
09:38:54.0738 10872 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
09:38:54.0808 10872 Ntfs - ok
09:38:54.0818 10872 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
09:38:54.0848 10872 Null - ok
09:38:54.0878 10872 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
09:38:54.0918 10872 nvraid - ok
09:38:54.0938 10872 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
09:38:54.0988 10872 nvstor - ok
09:38:55.0008 10872 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
09:38:55.0018 10872 nv_agp - ok
09:38:55.0028 10872 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
09:38:55.0038 10872 ohci1394 - ok
09:38:55.0078 10872 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:38:55.0128 10872 ose - ok
09:38:55.0248 10872 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:38:55.0388 10872 osppsvc - ok
09:38:55.0418 10872 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
09:38:55.0438 10872 p2pimsvc - ok
09:38:55.0458 10872 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
09:38:55.0478 10872 p2psvc - ok
09:38:55.0498 10872 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
09:38:55.0518 10872 Parport - ok
09:38:55.0558 10872 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
09:38:55.0618 10872 partmgr - ok
09:38:55.0628 10872 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
09:38:55.0658 10872 PcaSvc - ok
09:38:55.0678 10872 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
09:38:55.0738 10872 pci - ok
09:38:55.0748 10872 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
09:38:55.0768 10872 pciide - ok
09:38:55.0778 10872 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
09:38:55.0798 10872 pcmcia - ok
09:38:55.0868 10872 [ ABF3D0B7FB9A726F6CBAD6A3184CA8DD ] Pcouffin64 C:\windows\system32\Drivers\pcouffin64a.sys
09:38:55.0908 10872 Pcouffin64 ( UnsignedFile.Multi.Generic ) - warning
09:38:55.0908 10872 Pcouffin64 - detected UnsignedFile.Multi.Generic (1)
09:38:55.0938 10872 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
09:38:55.0948 10872 pcw - ok
09:38:55.0968 10872 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
09:38:56.0018 10872 PEAUTH - ok
09:38:56.0088 10872 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
09:38:56.0118 10872 PerfHost - ok
09:38:56.0158 10872 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
09:38:56.0238 10872 pla - ok
09:38:56.0278 10872 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
09:38:56.0328 10872 PlugPlay - ok
09:38:56.0348 10872 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
09:38:56.0378 10872 PNRPAutoReg - ok
09:38:56.0398 10872 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
09:38:56.0408 10872 PNRPsvc - ok
09:38:56.0448 10872 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
09:38:56.0508 10872 PolicyAgent - ok
09:38:56.0528 10872 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\windows\system32\umpo.dll
09:38:56.0558 10872 Power - ok
09:38:56.0578 10872 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
09:38:56.0658 10872 PptpMiniport - ok
09:38:56.0668 10872 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
09:38:56.0688 10872 Processor - ok
09:38:56.0718 10872 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
09:38:56.0738 10872 ProfSvc - ok
09:38:56.0758 10872 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
09:38:56.0768 10872 ProtectedStorage - ok
09:38:56.0788 10872 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
09:38:56.0838 10872 Psched - ok
09:38:56.0878 10872 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
09:38:56.0918 10872 PxHlpa64 - ok
09:38:56.0968 10872 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
09:38:56.0998 10872 ql2300 - ok
09:38:57.0008 10872 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
09:38:57.0018 10872 ql40xx - ok
09:38:57.0048 10872 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
09:38:57.0068 10872 QWAVE - ok
09:38:57.0078 10872 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
09:38:57.0108 10872 QWAVEdrv - ok
09:38:57.0128 10872 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
09:38:57.0168 10872 RasAcd - ok
09:38:57.0198 10872 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
09:38:57.0258 10872 RasAgileVpn - ok
09:38:57.0278 10872 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
09:38:57.0318 10872 RasAuto - ok
09:38:57.0338 10872 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
09:38:57.0408 10872 Rasl2tp - ok
09:38:57.0438 10872 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
09:38:57.0488 10872 RasMan - ok
09:38:57.0508 10872 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
09:38:57.0548 10872 RasPppoe - ok
09:38:57.0578 10872 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
09:38:57.0618 10872 RasSstp - ok
09:38:57.0638 10872 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
09:38:57.0718 10872 rdbss - ok
09:38:57.0748 10872 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
09:38:57.0778 10872 rdpbus - ok
09:38:57.0788 10872 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
09:38:57.0818 10872 RDPCDD - ok
09:38:57.0838 10872 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
09:38:57.0878 10872 RDPENCDD - ok
09:38:57.0888 10872 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
09:38:57.0918 10872 RDPREFMP - ok
09:38:57.0948 10872 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
09:38:57.0998 10872 RDPWD - ok
09:38:58.0028 10872 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
09:38:58.0078 10872 rdyboost - ok
09:38:58.0148 10872 [ B9A0810D16EA7935B10A5499ABA61DC3 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
09:38:58.0168 10872 RegSrvc - ok
09:38:58.0218 10872 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
09:38:58.0268 10872 RemoteAccess - ok
09:38:58.0298 10872 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
09:38:58.0338 10872 RemoteRegistry - ok
09:38:58.0378 10872 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
09:38:58.0408 10872 RFCOMM - ok
09:38:58.0518 10872 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
09:38:58.0618 10872 RoxMediaDB12OEM - ok
09:38:58.0648 10872 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
09:38:58.0698 10872 RoxWatch12 - ok
09:38:58.0718 10872 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
09:38:58.0758 10872 RpcEptMapper - ok
09:38:58.0788 10872 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
09:38:58.0808 10872 RpcLocator - ok
09:38:58.0828 10872 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
09:38:58.0858 10872 RpcSs - ok
09:38:58.0888 10872 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
09:38:58.0918 10872 rspndr - ok
09:38:58.0968 10872 [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
09:38:58.0978 10872 RSUSBSTOR - ok
09:38:59.0028 10872 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
09:38:59.0078 10872 RTL8167 - ok
09:38:59.0088 10872 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
09:38:59.0098 10872 SamSs - ok
09:38:59.0118 10872 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
09:38:59.0168 10872 sbp2port - ok
09:38:59.0188 10872 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
09:38:59.0218 10872 SCardSvr - ok
09:38:59.0228 10872 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
09:38:59.0318 10872 scfilter - ok
09:38:59.0348 10872 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
09:38:59.0428 10872 Schedule - ok
09:38:59.0438 10872 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
09:38:59.0468 10872 SCPolicySvc - ok
09:38:59.0498 10872 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
09:38:59.0528 10872 SDRSVC - ok
09:38:59.0558 10872 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
09:38:59.0598 10872 secdrv - ok
09:38:59.0618 10872 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
09:38:59.0678 10872 seclogon - ok
09:38:59.0688 10872 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
09:38:59.0738 10872 SENS - ok
09:38:59.0768 10872 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
09:38:59.0798 10872 SensrSvc - ok
09:38:59.0808 10872 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
09:38:59.0838 10872 Serenum - ok
09:38:59.0858 10872 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
09:38:59.0888 10872 Serial - ok
09:38:59.0888 10872 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
09:38:59.0928 10872 sermouse - ok
09:38:59.0948 10872 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
09:39:00.0018 10872 SessionEnv - ok
09:39:00.0028 10872 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
09:39:00.0038 10872 sffdisk - ok
09:39:00.0048 10872 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
09:39:00.0078 10872 sffp_mmc - ok
09:39:00.0078 10872 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
09:39:00.0148 10872 sffp_sd - ok
09:39:00.0168 10872 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
09:39:00.0178 10872 sfloppy - ok
09:39:00.0248 10872 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
09:39:00.0318 10872 SftService - ok
09:39:00.0358 10872 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
09:39:00.0388 10872 SharedAccess - ok
09:39:00.0418 10872 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
09:39:00.0478 10872 ShellHWDetection - ok
09:39:00.0498 10872 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
09:39:00.0508 10872 SiSRaid2 - ok
09:39:00.0528 10872 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
09:39:00.0538 10872 SiSRaid4 - ok
09:39:00.0598 10872 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
09:39:00.0608 10872 SkypeUpdate - ok
09:39:00.0628 10872 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
09:39:00.0668 10872 Smb - ok
09:39:00.0718 10872 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
09:39:00.0748 10872 SNMPTRAP - ok
09:39:00.0798 10872 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
09:39:00.0808 10872 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - warning
09:39:00.0808 10872 Sony SCSI Helper Service - detected UnsignedFile.Multi.Generic (1)
09:39:00.0838 10872 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
09:39:00.0848 10872 spldr - ok
09:39:00.0888 10872 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
09:39:00.0938 10872 Spooler - ok
09:39:01.0008 10872 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
09:39:01.0098 10872 sppsvc - ok
09:39:01.0118 10872 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
09:39:01.0158 10872 sppuinotify - ok
09:39:01.0188 10872 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
09:39:01.0278 10872 srv - ok
09:39:01.0308 10872 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
09:39:01.0358 10872 srv2 - ok
09:39:01.0378 10872 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
09:39:01.0428 10872 srvnet - ok
09:39:01.0468 10872 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\windows\system32\DRIVERS\ssadbus.sys
09:39:01.0528 10872 ssadbus - ok
09:39:01.0568 10872 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\windows\system32\DRIVERS\ssadmdfl.sys
09:39:01.0628 10872 ssadmdfl - ok
09:39:01.0638 10872 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\windows\system32\DRIVERS\ssadmdm.sys
09:39:01.0688 10872 ssadmdm - ok
09:39:01.0698 10872 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\windows\system32\DRIVERS\ssadserd.sys
09:39:01.0768 10872 ssadserd - ok
09:39:01.0788 10872 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
09:39:01.0848 10872 SSDPSRV - ok
09:39:01.0868 10872 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
09:39:01.0898 10872 SstpSvc - ok
09:39:01.0958 10872 [ B2D8B364A831427A5741F6C408FA8AE3 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
09:39:02.0018 10872 STacSV - ok
09:39:02.0038 10872 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
09:39:02.0048 10872 stexstor - ok
09:39:02.0078 10872 [ EF5ACDE92BA3F691BBFEF781CB063501 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
09:39:02.0128 10872 STHDA - ok
09:39:02.0168 10872 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
09:39:02.0218 10872 stisvc - ok
09:39:02.0258 10872 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
09:39:02.0308 10872 stllssvr - ok
09:39:02.0318 10872 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
09:39:02.0328 10872 swenum - ok
09:39:02.0358 10872 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
09:39:02.0418 10872 swprv - ok
09:39:02.0458 10872 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
09:39:02.0528 10872 SysMain - ok
09:39:02.0558 10872 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
09:39:02.0628 10872 TabletInputService - ok
09:39:02.0658 10872 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
09:39:02.0728 10872 TapiSrv - ok
09:39:02.0738 10872 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
09:39:02.0768 10872 TBS - ok
09:39:02.0838 10872 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\windows\system32\drivers\tcpip.sys
09:39:02.0868 10872 Tcpip - ok
09:39:02.0898 10872 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
09:39:02.0928 10872 TCPIP6 - ok
09:39:02.0958 10872 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
09:39:03.0028 10872 tcpipreg - ok
09:39:03.0038 10872 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
09:39:03.0068 10872 TDPIPE - ok
09:39:03.0088 10872 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
09:39:03.0148 10872 TDTCP - ok
09:39:03.0158 10872 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
09:39:03.0188 10872 tdx - ok
09:39:03.0198 10872 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
09:39:03.0228 10872 TermDD - ok
09:39:03.0268 10872 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
09:39:03.0348 10872 TermService - ok
09:39:03.0358 10872 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
09:39:03.0378 10872 Themes - ok
09:39:03.0408 10872 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
09:39:03.0438 10872 THREADORDER - ok
09:39:03.0478 10872 [ 68FE3D89829E27D4FD5EEA7BD2C41985 ] tihub3 C:\windows\system32\DRIVERS\tihub3.sys
09:39:03.0518 10872 tihub3 - ok
09:39:03.0548 10872 [ 0102C9633CE1F18A6AC021F28B734DB5 ] tixhci C:\windows\system32\DRIVERS\tixhci.sys
09:39:03.0598 10872 tixhci - ok
09:39:03.0608 10872 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
09:39:03.0658 10872 TrkWks - ok
09:39:03.0718 10872 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
09:39:03.0758 10872 TrustedInstaller - ok
09:39:03.0778 10872 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
09:39:03.0848 10872 tssecsrv - ok
09:39:03.0878 10872 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
09:39:03.0948 10872 TsUsbFlt - ok
09:39:03.0968 10872 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
09:39:04.0008 10872 TsUsbGD - ok
09:39:04.0038 10872 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
09:39:04.0108 10872 tunnel - ok
09:39:04.0128 10872 [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB C:\windows\system32\DRIVERS\TurboB.sys
09:39:04.0168 10872 TurboB - ok
09:39:04.0198 10872 [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
09:39:04.0208 10872 TurboBoost - ok
09:39:04.0218 10872 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
09:39:04.0228 10872 uagp35 - ok
09:39:04.0238 10872 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
09:39:04.0318 10872 udfs - ok
09:39:04.0348 10872 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
09:39:04.0368 10872 UI0Detect - ok
09:39:04.0388 10872 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
09:39:04.0398 10872 uliagpkx - ok
09:39:04.0428 10872 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
09:39:04.0488 10872 umbus - ok
09:39:04.0508 10872 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
09:39:04.0528 10872 UmPass - ok
09:39:04.0638 10872 [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
09:39:04.0668 10872 UNS - ok
09:39:04.0698 10872 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
09:39:04.0738 10872 upnphost - ok
09:39:04.0758 10872 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
09:39:04.0828 10872 usbccgp - ok
09:39:04.0858 10872 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
09:39:04.0898 10872 usbcir - ok
09:39:04.0928 10872 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
09:39:04.0988 10872 usbehci - ok
09:39:05.0038 10872 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
09:39:05.0098 10872 usbhub - ok
09:39:05.0148 10872 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
09:39:05.0228 10872 usbohci - ok
09:39:05.0258 10872 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
09:39:05.0298 10872 usbprint - ok
09:39:05.0318 10872 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
09:39:05.0368 10872 USBSTOR - ok
09:39:05.0378 10872 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
09:39:05.0418 10872 usbuhci - ok
09:39:05.0438 10872 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
09:39:05.0478 10872 usbvideo - ok
09:39:05.0508 10872 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
09:39:05.0548 10872 UxSms - ok
09:39:05.0568 10872 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
09:39:05.0578 10872 VaultSvc - ok
09:39:05.0608 10872 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
09:39:05.0618 10872 vdrvroot - ok
09:39:05.0628 10872 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
09:39:05.0708 10872 vds - ok
09:39:05.0738 10872 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
09:39:05.0758 10872 vga - ok
09:39:05.0768 10872 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
09:39:05.0808 10872 VgaSave - ok
09:39:05.0818 10872 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
09:39:05.0858 10872 vhdmp - ok
09:39:05.0878 10872 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
09:39:05.0888 10872 viaide - ok
09:39:05.0908 10872 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
09:39:05.0948 10872 volmgr - ok
09:39:05.0968 10872 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
09:39:06.0018 10872 volmgrx - ok
09:39:06.0038 10872 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
09:39:06.0078 10872 volsnap - ok
09:39:06.0108 10872 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
09:39:06.0128 10872 vsmraid - ok
09:39:06.0168 10872 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
09:39:06.0218 10872 VSS - ok
09:39:06.0238 10872 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
09:39:06.0278 10872 vwifibus - ok
09:39:06.0298 10872 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
09:39:06.0318 10872 vwififlt - ok
09:39:06.0338 10872 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
09:39:06.0348 10872 vwifimp - ok
09:39:06.0388 10872 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
09:39:06.0418 10872 W32Time - ok
09:39:06.0438 10872 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
09:39:06.0458 10872 WacomPen - ok
09:39:06.0498 10872 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
09:39:06.0588 10872 WANARP - ok
09:39:06.0588 10872 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
09:39:06.0628 10872 Wanarpv6 - ok
09:39:06.0708 10872 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
09:39:06.0768 10872 WatAdminSvc - ok
09:39:06.0828 10872 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
09:39:06.0908 10872 wbengine - ok
09:39:06.0928 10872 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
09:39:06.0948 10872 WbioSrvc - ok
09:39:06.0978 10872 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
09:39:07.0038 10872 wcncsvc - ok
09:39:07.0058 10872 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
09:39:07.0078 10872 WcsPlugInService - ok
09:39:07.0098 10872 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
09:39:07.0118 10872 Wd - ok
09:39:07.0138 10872 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
09:39:07.0158 10872 Wdf01000 - ok
09:39:07.0178 10872 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
09:39:07.0208 10872 WdiServiceHost - ok
09:39:07.0208 10872 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
09:39:07.0228 10872 WdiSystemHost - ok
09:39:07.0248 10872 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
09:39:07.0308 10872 WebClient - ok
09:39:07.0318 10872 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
09:39:07.0368 10872 Wecsvc - ok
09:39:07.0378 10872 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
09:39:07.0408 10872 wercplsupport - ok
09:39:07.0428 10872 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
09:39:07.0458 10872 WerSvc - ok
09:39:07.0488 10872 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
09:39:07.0518 10872 WfpLwf - ok
09:39:07.0548 10872 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
09:39:07.0598 10872 WimFltr - ok
09:39:07.0608 10872 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
09:39:07.0618 10872 WIMMount - ok
09:39:07.0648 10872 WinDefend - ok
09:39:07.0658 10872 WinHttpAutoProxySvc - ok
09:39:07.0718 10872 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
09:39:07.0748 10872 Winmgmt - ok
09:39:07.0788 10872 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
09:39:07.0868 10872 WinRM - ok
09:39:07.0918 10872 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
09:39:07.0958 10872 Wlansvc - ok
09:39:08.0018 10872 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:39:08.0068 10872 wlcrasvc - ok
09:39:08.0188 10872 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:39:08.0258 10872 wlidsvc - ok
09:39:08.0298 10872 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
09:39:08.0328 10872 WmiAcpi - ok
09:39:08.0348 10872 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
09:39:08.0378 10872 wmiApSrv - ok
09:39:08.0408 10872 WMPNetworkSvc - ok
09:39:08.0438 10872 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
09:39:08.0458 10872 WPCSvc - ok
09:39:08.0468 10872 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
09:39:08.0498 10872 WPDBusEnum - ok
09:39:08.0508 10872 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
09:39:08.0538 10872 ws2ifsl - ok
09:39:08.0588 10872 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
09:39:08.0618 10872 wscsvc - ok
09:39:08.0618 10872 WSearch - ok
09:39:08.0688 10872 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
09:39:08.0728 10872 wuauserv - ok
09:39:08.0748 10872 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
09:39:08.0828 10872 WudfPf - ok
09:39:08.0848 10872 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
09:39:08.0918 10872 WUDFRd - ok
09:39:08.0938 10872 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
09:39:09.0008 10872 wudfsvc - ok
09:39:09.0018 10872 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
09:39:09.0058 10872 WwanSvc - ok
09:39:09.0078 10872 ================ Scan global ===============================
09:39:09.0108 10872 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
09:39:09.0128 10872 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
09:39:09.0188 10872 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
09:39:09.0208 10872 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
09:39:09.0238 10872 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
09:39:09.0248 10872 [Global] - ok
09:39:09.0248 10872 ================ Scan MBR ==================================
09:39:09.0258 10872 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:39:09.0568 10872 \Device\Harddisk0\DR0 - ok
09:39:09.0568 10872 ================ Scan VBR ==================================
09:39:09.0568 10872 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
09:39:09.0568 10872 \Device\Harddisk0\DR0\Partition1 - ok
09:39:09.0608 10872 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
09:39:09.0608 10872 \Device\Harddisk0\DR0\Partition2 - ok
09:39:09.0608 10872 ============================================================
09:39:09.0608 10872 Scan finished
09:39:09.0608 10872 ============================================================
09:39:09.0618 10888 Detected object count: 6
09:39:09.0618 10888 Actual detected object count: 6
09:39:21.0338 10888 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - skipped by user
09:39:21.0338 10888 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:39:21.0338 10888 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - skipped by user
09:39:21.0338 10888 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:39:21.0348 10888 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - skipped by user
09:39:21.0348 10888 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:39:21.0348 10888 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - skipped by user
09:39:21.0348 10888 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:39:21.0348 10888 Pcouffin64 ( UnsignedFile.Multi.Generic ) - skipped by user
09:39:21.0348 10888 Pcouffin64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:39:21.0348 10888 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - skipped by user
09:39:21.0348 10888 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:39:58.0538 11048 ============================================================
09:39:58.0538 11048 Scan started
09:39:58.0538 11048 Mode: Manual; SigCheck; TDLFS;
09:39:58.0538 11048 ============================================================
09:39:58.0648 11048 ================ Scan system memory ========================
09:39:58.0648 11048 System memory - ok
09:39:58.0648 11048 ================ Scan services =============================
09:39:58.0758 11048 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
09:39:58.0778 11048 1394ohci - ok
09:39:58.0798 11048 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
09:39:58.0808 11048 ACPI - ok
09:39:58.0828 11048 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
09:39:58.0838 11048 AcpiPmi - ok
09:39:58.0938 11048 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:39:58.0948 11048 AdobeARMservice - ok
09:39:59.0038 11048 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:39:59.0048 11048 AdobeFlashPlayerUpdateSvc - ok
09:39:59.0078 11048 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
09:39:59.0088 11048 adp94xx - ok
09:39:59.0108 11048 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
09:39:59.0128 11048 adpahci - ok
09:39:59.0128 11048 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
09:39:59.0138 11048 adpu320 - ok
09:39:59.0158 11048 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
09:39:59.0188 11048 AeLookupSvc - ok
09:39:59.0278 11048 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
09:39:59.0288 11048 AESTFilters - ok
09:39:59.0348 11048 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
09:39:59.0358 11048 AFD - ok
09:39:59.0388 11048 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
09:39:59.0398 11048 agp440 - ok
09:39:59.0418 11048 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
09:39:59.0428 11048 ALG - ok
09:39:59.0448 11048 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
09:39:59.0458 11048 aliide - ok
09:39:59.0458 11048 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
09:39:59.0468 11048 amdide - ok
09:39:59.0468 11048 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
09:39:59.0478 11048 AmdK8 - ok
09:39:59.0488 11048 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
09:39:59.0498 11048 AmdPPM - ok
09:39:59.0518 11048 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
09:39:59.0528 11048 amdsata - ok
09:39:59.0528 11048 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
09:39:59.0548 11048 amdsbs - ok
09:39:59.0568 11048 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
09:39:59.0578 11048 amdxata - ok
09:39:59.0618 11048 [ 3BC90482A834F998C3B7A9C934A20342 ] AMPPAL C:\windows\system32\DRIVERS\AMPPAL.sys
09:39:59.0628 11048 AMPPAL - ok
09:39:59.0638 11048 [ 3BC90482A834F998C3B7A9C934A20342 ] AMPPALP C:\windows\system32\DRIVERS\amppal.sys
09:39:59.0648 11048 AMPPALP - ok
09:39:59.0718 11048 [ A47D7FEBD9381D34DDB4FF38B15A67FE ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
09:39:59.0738 11048 AMPPALR3 - ok
09:39:59.0778 11048 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\windows\system32\Drivers\ssadadb.sys
09:39:59.0788 11048 androidusb - ok
09:39:59.0848 11048 [ 24ED0EB2B2558970176ECEE680F8F806 ] ApfiltrService C:\windows\system32\DRIVERS\Apfiltr.sys
09:39:59.0868 11048 ApfiltrService - ok
09:39:59.0888 11048 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
09:39:59.0928 11048 AppID - ok
09:39:59.0948 11048 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
09:39:59.0978 11048 AppIDSvc - ok
09:39:59.0998 11048 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
09:40:00.0028 11048 Appinfo - ok
09:40:00.0038 11048 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
09:40:00.0048 11048 arc - ok
09:40:00.0048 11048 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
09:40:00.0058 11048 arcsas - ok
09:40:00.0138 11048 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:40:00.0148 11048 aspnet_state - ok
09:40:00.0168 11048 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
09:40:00.0188 11048 AsyncMac - ok
09:40:00.0208 11048 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
09:40:00.0218 11048 atapi - ok
09:40:00.0258 11048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
09:40:00.0298 11048 AudioEndpointBuilder - ok
09:40:00.0308 11048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
09:40:00.0338 11048 AudioSrv - ok
09:40:00.0348 11048 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
09:40:00.0368 11048 AxInstSV - ok
09:40:00.0388 11048 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
09:40:00.0408 11048 b06bdrv - ok
09:40:00.0408 11048 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
09:40:00.0428 11048 b57nd60a - ok
09:40:00.0438 11048 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
09:40:00.0448 11048 BDESVC - ok
09:40:00.0458 11048 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
09:40:00.0478 11048 Beep - ok
09:40:00.0498 11048 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
09:40:00.0538 11048 BFE - ok
09:40:00.0578 11048 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
09:40:00.0618 11048 BITS - ok
09:40:00.0628 11048 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
09:40:00.0638 11048 blbdrive - ok
09:40:00.0728 11048 [ 5FF7B9916A10E8E69E7C0D16F0B4787A ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
09:40:00.0738 11048 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - warning
09:40:00.0738 11048 Bluetooth Device Monitor - detected UnsignedFile.Multi.Generic (1)
09:40:00.0768 11048 [ E43D73CAF1023976EFBA1D0F0E69E271 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
09:40:00.0788 11048 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - warning
09:40:00.0788 11048 Bluetooth Media Service - detected UnsignedFile.Multi.Generic (1)
09:40:00.0828 11048 [ 20427929646784A482DF34EF8C4FED23 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
09:40:00.0848 11048 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - warning
09:40:00.0848 11048 Bluetooth OBEX Service - detected UnsignedFile.Multi.Generic (1)
09:40:00.0868 11048 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
09:40:00.0878 11048 bowser - ok
09:40:00.0898 11048 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
09:40:00.0908 11048 BrFiltLo - ok
09:40:00.0918 11048 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
09:40:00.0928 11048 BrFiltUp - ok
09:40:00.0958 11048 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
09:40:00.0968 11048 Browser - ok
09:40:00.0998 11048 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
09:40:01.0008 11048 Brserid - ok
09:40:01.0018 11048 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
09:40:01.0028 11048 BrSerWdm - ok
09:40:01.0038 11048 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
09:40:01.0048 11048 BrUsbMdm - ok
09:40:01.0048 11048 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
09:40:01.0068 11048 BrUsbSer - ok
09:40:01.0098 11048 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
09:40:01.0108 11048 BthEnum - ok
09:40:01.0108 11048 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
09:40:01.0128 11048 BTHMODEM - ok
09:40:01.0138 11048 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
09:40:01.0158 11048 BthPan - ok
09:40:01.0188 11048 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
09:40:01.0208 11048 BTHPORT - ok
09:40:01.0238 11048 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
09:40:01.0268 11048 bthserv - ok
09:40:01.0298 11048 [ 9E2AF97302B9F4BF97E952A865EB31AE ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
09:40:01.0308 11048 BTHSSecurityMgr - ok
09:40:01.0338 11048 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
09:40:01.0348 11048 BTHUSB - ok
09:40:01.0378 11048 [ 274E47BD9C1367BDBFA9DF10C2E6C544 ] btmaudio C:\windows\system32\drivers\btmaud.sys
09:40:01.0378 11048 btmaudio - ok
09:40:01.0398 11048 [ 75EAB5AAF6E9F83739249CE60B4B9C39 ] btmaux C:\windows\system32\DRIVERS\btmaux.sys
09:40:01.0408 11048 btmaux - ok
09:40:01.0438 11048 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf C:\windows\system32\DRIVERS\btmhsf.sys
09:40:01.0458 11048 btmhsf - ok
09:40:01.0478 11048 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
09:40:01.0508 11048 cdfs - ok
09:40:01.0528 11048 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
09:40:01.0538 11048 cdrom - ok
09:40:01.0568 11048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
09:40:01.0588 11048 CertPropSvc - ok
09:40:01.0608 11048 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\windows\system32\drivers\cfwids.sys
09:40:01.0618 11048 cfwids - ok
09:40:01.0638 11048 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
09:40:01.0658 11048 circlass - ok
09:40:01.0668 11048 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
09:40:01.0678 11048 CLFS - ok
09:40:01.0728 11048 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:40:01.0738 11048 clr_optimization_v2.0.50727_32 - ok
09:40:01.0798 11048 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:40:01.0808 11048 clr_optimization_v2.0.50727_64 - ok
09:40:01.0848 11048 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:40:01.0858 11048 clr_optimization_v4.0.30319_32 - ok
09:40:01.0888 11048 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:40:01.0898 11048 clr_optimization_v4.0.30319_64 - ok
09:40:01.0918 11048 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
09:40:01.0928 11048 CmBatt - ok
09:40:01.0948 11048 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
09:40:01.0958 11048 cmdide - ok
09:40:01.0988 11048 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
09:40:02.0008 11048 CNG - ok
09:40:02.0018 11048 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
09:40:02.0028 11048 Compbatt - ok
09:40:02.0038 11048 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
09:40:02.0048 11048 CompositeBus - ok
09:40:02.0048 11048 COMSysApp - ok
09:40:02.0058 11048 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
09:40:02.0068 11048 crcdisk - ok
09:40:02.0108 11048 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
09:40:02.0128 11048 CryptSvc - ok
09:40:02.0158 11048 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\windows\system32\DRIVERS\CtClsFlt.sys
09:40:02.0168 11048 CtClsFlt - ok
09:40:02.0208 11048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
09:40:02.0238 11048 DcomLaunch - ok
09:40:02.0278 11048 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
09:40:02.0318 11048 defragsvc - ok
09:40:02.0348 11048 [ 88D5FE2109F1A52CF69BA410082A833A ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
09:40:02.0358 11048 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - warning
09:40:02.0358 11048 DellDigitalDelivery - detected UnsignedFile.Multi.Generic (1)
09:40:02.0378 11048 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
09:40:02.0408 11048 DfsC - ok
09:40:02.0418 11048 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
09:40:02.0458 11048 Dhcp - ok
09:40:02.0488 11048 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
09:40:02.0528 11048 discache - ok
09:40:02.0538 11048 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
09:40:02.0548 11048 Disk - ok
09:40:02.0568 11048 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
09:40:02.0578 11048 Dnscache - ok
09:40:02.0598 11048 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
09:40:02.0628 11048 dot3svc - ok
09:40:02.0648 11048 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
09:40:02.0678 11048 DPS - ok
09:40:02.0688 11048 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
09:40:02.0698 11048 drmkaud - ok
09:40:02.0738 11048 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
09:40:02.0768 11048 DXGKrnl - ok
09:40:02.0798 11048 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
09:40:02.0828 11048 EapHost - ok
09:40:02.0888 11048 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
09:40:02.0928 11048 ebdrv - ok
09:40:02.0948 11048 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
09:40:02.0968 11048 EFS - ok
09:40:03.0018 11048 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
09:40:03.0038 11048 ehRecvr - ok
09:40:03.0048 11048 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
09:40:03.0058 11048 ehSched - ok
09:40:03.0088 11048 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
09:40:03.0108 11048 elxstor - ok
09:40:03.0118 11048 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
09:40:03.0128 11048 ErrDev - ok
09:40:03.0158 11048 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
09:40:03.0188 11048 EventSystem - ok
09:40:03.0278 11048 [ B20A788579E443F768AAB1A24F705D0A ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
09:40:03.0308 11048 EvtEng - ok
09:40:03.0318 11048 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
09:40:03.0348 11048 exfat - ok
09:40:03.0378 11048 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
09:40:03.0408 11048 fastfat - ok
09:40:03.0448 11048 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
09:40:03.0468 11048 Fax - ok
09:40:03.0468 11048 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
09:40:03.0478 11048 fdc - ok
09:40:03.0498 11048 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
09:40:03.0528 11048 fdPHost - ok
09:40:03.0538 11048 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
09:40:03.0568 11048 FDResPub - ok
09:40:03.0568 11048 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
09:40:03.0588 11048 FileInfo - ok
09:40:03.0588 11048 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
09:40:03.0628 11048 Filetrace - ok
09:40:03.0638 11048 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
09:40:03.0648 11048 flpydisk - ok
09:40:03.0668 11048 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
09:40:03.0678 11048 FltMgr - ok
09:40:03.0728 11048 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
09:40:03.0748 11048 FontCache - ok
09:40:03.0798 11048 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:40:03.0808 11048 FontCache3.0.0.0 - ok
09:40:03.0838 11048 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
09:40:03.0848 11048 FsDepends - ok
09:40:03.0868 11048 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
09:40:03.0878 11048 Fs_Rec - ok
09:40:03.0898 11048 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
09:40:03.0918 11048 fvevol - ok
09:40:03.0928 11048 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
09:40:03.0938 11048 gagp30kx - ok
09:40:03.0978 11048 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
09:40:03.0988 11048 GamesAppService - ok
09:40:04.0018 11048 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
09:40:04.0048 11048 gpsvc - ok
09:40:04.0068 11048 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
09:40:04.0078 11048 hcw85cir - ok
09:40:04.0108 11048 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
09:40:04.0128 11048 HdAudAddService - ok
09:40:04.0148 11048 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
09:40:04.0158 11048 HDAudBus - ok
09:40:04.0158 11048 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
09:40:04.0168 11048 HidBatt - ok
09:40:04.0178 11048 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
09:40:04.0188 11048 HidBth - ok
09:40:04.0188 11048 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
09:40:04.0208 11048 HidIr - ok
09:40:04.0218 11048 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
09:40:04.0238 11048 hidserv - ok
09:40:04.0258 11048 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
09:40:04.0268 11048 HidUsb - ok
09:40:04.0298 11048 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
09:40:04.0328 11048 hkmsvc - ok
09:40:04.0338 11048 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
09:40:04.0358 11048 HomeGroupListener - ok
09:40:04.0378 11048 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
09:40:04.0388 11048 HomeGroupProvider - ok
09:40:04.0388 11048 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
09:40:04.0398 11048 HpSAMD - ok
09:40:04.0418 11048 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
09:40:04.0458 11048 HTTP - ok
09:40:04.0468 11048 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
09:40:04.0478 11048 hwpolicy - ok
09:40:04.0478 11048 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
09:40:04.0488 11048 i8042prt - ok
09:40:04.0528 11048 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
09:40:04.0538 11048 iaStor - ok
09:40:04.0588 11048 [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:40:04.0598 11048 IAStorDataMgrSvc - ok
09:40:04.0608 11048 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
09:40:04.0628 11048 iaStorV - ok
09:40:04.0648 11048 [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex C:\windows\system32\DRIVERS\iBtFltCoex.sys
09:40:04.0658 11048 iBtFltCoex - ok
09:40:04.0728 11048 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:40:04.0738 11048 idsvc - ok
09:40:04.0958 11048 [ 174BCAC474DE13B2650E444CF124828E ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
09:40:05.0088 11048 igfx - ok
09:40:05.0118 11048 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
09:40:05.0128 11048 iirsp - ok
09:40:05.0168 11048 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
09:40:05.0218 11048 IKEEXT - ok
09:40:05.0238 11048 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
09:40:05.0248 11048 intaud_WaveExtensible - ok
09:40:05.0288 11048 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
09:40:05.0298 11048 IntcDAud - ok
09:40:05.0298 11048 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
09:40:05.0318 11048 intelide - ok
09:40:05.0328 11048 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
09:40:05.0348 11048 intelppm - ok
09:40:05.0368 11048 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
09:40:05.0388 11048 IPBusEnum - ok
09:40:05.0408 11048 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
09:40:05.0448 11048 IpFilterDriver - ok
09:40:05.0448 11048 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
09:40:05.0468 11048 IPMIDRV - ok
09:40:05.0488 11048 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
09:40:05.0518 11048 IPNAT - ok
09:40:05.0528 11048 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
09:40:05.0538 11048 IRENUM - ok
09:40:05.0558 11048 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
09:40:05.0568 11048 isapnp - ok
09:40:05.0598 11048 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
09:40:05.0618 11048 iScsiPrt - ok
09:40:05.0648 11048 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\windows\system32\DRIVERS\iwdbus.sys
09:40:05.0658 11048 iwdbus - ok
09:40:05.0708 11048 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
09:40:05.0718 11048 kbdclass - ok
09:40:05.0728 11048 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
09:40:05.0748 11048 kbdhid - ok
09:40:05.0758 11048 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
09:40:05.0768 11048 KeyIso - ok
09:40:05.0788 11048 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
09:40:05.0798 11048 KSecDD - ok
09:40:05.0818 11048 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
09:40:05.0828 11048 KSecPkg - ok
09:40:05.0838 11048 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
09:40:05.0858 11048 ksthunk - ok
09:40:05.0878 11048 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
09:40:05.0908 11048 KtmRm - ok
09:40:05.0938 11048 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
09:40:05.0968 11048 LanmanServer - ok
09:40:05.0988 11048 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
09:40:06.0018 11048 LanmanWorkstation - ok
09:40:06.0028 11048 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
09:40:06.0058 11048 lltdio - ok
09:40:06.0088 11048 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
09:40:06.0118 11048 lltdsvc - ok
09:40:06.0128 11048 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
09:40:06.0158 11048 lmhosts - ok
09:40:06.0178 11048 [ 0803906D607A9B83184447B75B60ECC2 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
09:40:06.0188 11048 LMS - ok
09:40:06.0208 11048 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
09:40:06.0218 11048 LSI_FC - ok
09:40:06.0228 11048 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
09:40:06.0238 11048 LSI_SAS - ok
09:40:06.0238 11048 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
09:40:06.0248 11048 LSI_SAS2 - ok
09:40:06.0268 11048 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
09:40:06.0278 11048 LSI_SCSI - ok
09:40:06.0288 11048 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
09:40:06.0318 11048 luafv - ok
09:40:06.0358 11048 [ 9504F1DDA1B67FB8D526FD4F8CC882F3 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
09:40:06.0368 11048 McAWFwk - ok
09:40:06.0438 11048 [ 22A7776C5D8EB5930EDF9C8DD0884259 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe
09:40:06.0448 11048 McComponentHostService - ok
09:40:06.0498 11048 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:40:06.0508 11048 McMPFSvc - ok
09:40:06.0508 11048 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:40:06.0528 11048 mcmscsvc - ok
09:40:06.0528 11048 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:40:06.0548 11048 McNaiAnn - ok
09:40:06.0548 11048 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:40:06.0558 11048 McNASvc - ok
09:40:06.0628 11048 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
09:40:06.0648 11048 McODS - ok
09:40:06.0648 11048 [ ACB01BF1A905356AB7F978C7FE852209 ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:40:06.0658 11048 McOobeSv - ok
09:40:06.0668 11048 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:40:06.0678 11048 McProxy - ok
09:40:06.0738 11048 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
09:40:06.0758 11048 McShield - ok
09:40:06.0788 11048 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
09:40:06.0798 11048 Mcx2Svc - ok
09:40:06.0818 11048 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
09:40:06.0828 11048 megasas - ok
09:40:06.0848 11048 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
09:40:06.0858 11048 MegaSR - ok
09:40:06.0888 11048 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
09:40:06.0898 11048 MEIx64 - ok
09:40:06.0928 11048 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\windows\system32\drivers\mfeapfk.sys
09:40:06.0938 11048 mfeapfk - ok
09:40:06.0958 11048 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\windows\system32\drivers\mfeavfk.sys
09:40:06.0968 11048 mfeavfk - ok
09:40:06.0978 11048 mfeavfk01 - ok
09:40:06.0988 11048 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
09:40:06.0998 11048 mfefire - ok
09:40:07.0038 11048 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\windows\system32\drivers\mfefirek.sys
09:40:07.0068 11048 mfefirek - ok
09:40:07.0118 11048 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
09:40:07.0128 11048 mfehidk - ok
09:40:07.0158 11048 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\windows\system32\DRIVERS\mfenlfk.sys
09:40:07.0168 11048 mfenlfk - ok
09:40:07.0188 11048 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\windows\system32\drivers\mferkdet.sys
09:40:07.0198 11048 mferkdet - ok
09:40:07.0218 11048 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
09:40:07.0228 11048 mfevtp - ok
09:40:07.0258 11048 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\windows\system32\drivers\mfewfpk.sys
09:40:07.0268 11048 mfewfpk - ok
09:40:07.0288 11048 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
09:40:07.0318 11048 MMCSS - ok
09:40:07.0348 11048 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
09:40:07.0378 11048 Modem - ok
09:40:07.0408 11048 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
09:40:07.0428 11048 monitor - ok
09:40:07.0428 11048 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
09:40:07.0438 11048 mouclass - ok
09:40:07.0448 11048 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
09:40:07.0468 11048 mouhid - ok
09:40:07.0478 11048 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
09:40:07.0488 11048 mountmgr - ok
09:40:07.0528 11048 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:40:07.0538 11048 MozillaMaintenance - ok
09:40:07.0548 11048 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
09:40:07.0558 11048 mpio - ok
09:40:07.0568 11048 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
09:40:07.0598 11048 mpsdrv - ok
09:40:07.0618 11048 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
09:40:07.0648 11048 MpsSvc - ok
09:40:07.0658 11048 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
09:40:07.0668 11048 MRxDAV - ok
09:40:07.0698 11048 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
09:40:07.0718 11048 mrxsmb - ok
09:40:07.0728 11048 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
09:40:07.0748 11048 mrxsmb10 - ok
09:40:07.0758 11048 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
09:40:07.0768 11048 mrxsmb20 - ok
09:40:07.0788 11048 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
09:40:07.0798 11048 msahci - ok
09:40:07.0808 11048 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
09:40:07.0818 11048 msdsm - ok
09:40:07.0838 11048 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
09:40:07.0858 11048 MSDTC - ok
09:40:07.0868 11048 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
09:40:07.0898 11048 Msfs - ok
09:40:07.0918 11048 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
09:40:07.0948 11048 mshidkmdf - ok
09:40:07.0958 11048 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
09:40:07.0968 11048 msisadrv - ok
09:40:07.0998 11048 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
09:40:08.0038 11048 MSiSCSI - ok
09:40:08.0038 11048 msiserver - ok
09:40:08.0058 11048 [ ACB01BF1A905356AB7F978C7FE852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:40:08.0068 11048 MSK80Service - ok
09:40:08.0088 11048 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
09:40:08.0108 11048 MSKSSRV - ok
09:40:08.0128 11048 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
09:40:08.0168 11048 MSPCLOCK - ok
09:40:08.0168 11048 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
09:40:08.0198 11048 MSPQM - ok
09:40:08.0218 11048 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
09:40:08.0238 11048 MsRPC - ok
09:40:08.0248 11048 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
09:40:08.0248 11048 mssmbios - ok
09:40:08.0268 11048 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
09:40:08.0298 11048 MSTEE - ok
09:40:08.0328 11048 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
09:40:08.0338 11048 MTConfig - ok
09:40:08.0358 11048 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
09:40:08.0368 11048 Mup - ok
09:40:08.0388 11048 [ F217D7718FD7577AF331E89910B2D21E ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
09:40:08.0408 11048 MyWiFiDHCPDNS - ok
09:40:08.0438 11048 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
09:40:08.0478 11048 napagent - ok
09:40:08.0498 11048 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
09:40:08.0508 11048 NativeWifiP - ok
09:40:08.0538 11048 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\windows\system32\drivers\ndis.sys
09:40:08.0558 11048 NDIS - ok
09:40:08.0568 11048 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
09:40:08.0598 11048 NdisCap - ok
09:40:08.0608 11048 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
09:40:08.0638 11048 NdisTapi - ok
09:40:08.0648 11048 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
09:40:08.0668 11048 Ndisuio - ok
09:40:08.0718 11048 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
09:40:08.0748 11048 NdisWan - ok
09:40:08.0768 11048 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
09:40:08.0788 11048 NDProxy - ok
09:40:08.0798 11048 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
09:40:08.0828 11048 NetBIOS - ok
09:40:08.0848 11048 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
09:40:08.0868 11048 NetBT - ok
09:40:08.0888 11048 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
09:40:08.0898 11048 Netlogon - ok
09:40:08.0928 11048 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
09:40:08.0968 11048 Netman - ok
09:40:08.0988 11048 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:08.0998 11048 NetMsmqActivator - ok
09:40:08.0998 11048 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:09.0008 11048 NetPipeActivator - ok
09:40:09.0028 11048 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
09:40:09.0068 11048 netprofm - ok
09:40:09.0068 11048 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:09.0078 11048 NetTcpActivator - ok
09:40:09.0088 11048 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:09.0088 11048 NetTcpPortSharing - ok
09:40:09.0238 11048 [ 9FD1BE1881446D954FF77244AE58FBCB ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
09:40:09.0328 11048 NETwNs64 - ok
09:40:09.0358 11048 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
09:40:09.0368 11048 nfrd960 - ok
09:40:09.0388 11048 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
09:40:09.0428 11048 NlaSvc - ok
09:40:09.0548 11048 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
09:40:09.0588 11048 NOBU - ok
09:40:09.0598 11048 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
09:40:09.0628 11048 Npfs - ok
09:40:09.0648 11048 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
09:40:09.0678 11048 nsi - ok
09:40:09.0728 11048 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
09:40:09.0758 11048 nsiproxy - ok
09:40:09.0798 11048 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
09:40:09.0818 11048 Ntfs - ok
09:40:09.0838 11048 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
09:40:09.0868 11048 Null - ok
09:40:09.0878 11048 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
09:40:09.0888 11048 nvraid - ok
09:40:09.0908 11048 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
09:40:09.0918 11048 nvstor - ok
09:40:09.0938 11048 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
09:40:09.0948 11048 nv_agp - ok
09:40:09.0968 11048 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
09:40:09.0978 11048 ohci1394 - ok
09:40:10.0058 11048 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:40:10.0068 11048 ose - ok
09:40:11.0048 11048 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:40:11.0108 11048 osppsvc - ok
09:40:11.0208 11048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
09:40:11.0228 11048 p2pimsvc - ok
09:40:11.0328 11048 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
09:40:11.0348 11048 p2psvc - ok
09:40:11.0408 11048 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
09:40:11.0428 11048 Parport - ok
09:40:11.0458 11048 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
09:40:11.0468 11048 partmgr - ok
09:40:11.0478 11048 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
09:40:11.0498 11048 PcaSvc - ok
09:40:11.0518 11048 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
09:40:11.0528 11048 pci - ok
09:40:11.0558 11048 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
09:40:11.0568 11048 pciide - ok
09:40:11.0588 11048 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
09:40:11.0598 11048 pcmcia - ok
09:40:11.0658 11048 [ ABF3D0B7FB9A726F6CBAD6A3184CA8DD ] Pcouffin64 C:\windows\system32\Drivers\pcouffin64a.sys
09:40:11.0668 11048 Pcouffin64 ( UnsignedFile.Multi.Generic ) - warning
09:40:11.0668 11048 Pcouffin64 - detected UnsignedFile.Multi.Generic (1)
09:40:11.0688 11048 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
09:40:11.0698 11048 pcw - ok
09:40:11.0848 11048 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
09:40:11.0878 11048 PEAUTH - ok
09:40:12.0628 11048 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
09:40:12.0648 11048 PerfHost - ok
09:40:12.0688 11048 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
09:40:12.0728 11048 pla - ok
09:40:12.0788 11048 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
09:40:12.0808 11048 PlugPlay - ok
09:40:12.0828 11048 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
09:40:12.0838 11048 PNRPAutoReg - ok
09:40:12.0868 11048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
09:40:12.0878 11048 PNRPsvc - ok
09:40:12.0918 11048 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
09:40:12.0948 11048 PolicyAgent - ok
09:40:12.0958 11048 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\windows\system32\umpo.dll
09:40:12.0968 11048 Power - ok
09:40:12.0988 11048 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
09:40:13.0018 11048 PptpMiniport - ok
09:40:13.0058 11048 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
09:40:13.0068 11048 Processor - ok
09:40:13.0098 11048 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
09:40:13.0118 11048 ProfSvc - ok
09:40:13.0128 11048 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
09:40:13.0138 11048 ProtectedStorage - ok
09:40:13.0148 11048 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
09:40:13.0178 11048 Psched - ok
09:40:13.0198 11048 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
09:40:13.0208 11048 PxHlpa64 - ok
09:40:13.0248 11048 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
09:40:13.0268 11048 ql2300 - ok
09:40:13.0278 11048 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
09:40:13.0288 11048 ql40xx - ok
09:40:13.0308 11048 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
09:40:13.0328 11048 QWAVE - ok
09:40:13.0358 11048 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
09:40:13.0378 11048 QWAVEdrv - ok
09:40:13.0378 11048 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
09:40:13.0408 11048 RasAcd - ok
09:40:13.0428 11048 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
09:40:13.0458 11048 RasAgileVpn - ok
09:40:13.0468 11048 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
09:40:13.0508 11048 RasAuto - ok
09:40:13.0518 11048 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
09:40:13.0548 11048 Rasl2tp - ok
09:40:13.0568 11048 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
09:40:13.0608 11048 RasMan - ok
09:40:13.0628 11048 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
09:40:13.0658 11048 RasPppoe - ok
09:40:13.0668 11048 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
09:40:13.0688 11048 RasSstp - ok
09:40:13.0718 11048 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
09:40:13.0748 11048 rdbss - ok
09:40:13.0758 11048 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
09:40:13.0768 11048 rdpbus - ok
09:40:13.0788 11048 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
09:40:13.0808 11048 RDPCDD - ok
09:40:13.0818 11048 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
09:40:13.0848 11048 RDPENCDD - ok
09:40:13.0848 11048 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
09:40:13.0878 11048 RDPREFMP - ok
09:40:13.0918 11048 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
09:40:13.0928 11048 RDPWD - ok
09:40:13.0938 11048 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
09:40:13.0958 11048 rdyboost - ok
09:40:14.0018 11048 [ B9A0810D16EA7935B10A5499ABA61DC3 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
09:40:14.0038 11048 RegSrvc - ok
09:40:14.0068 11048 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
09:40:14.0088 11048 RemoteAccess - ok
09:40:14.0128 11048 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
09:40:14.0158 11048 RemoteRegistry - ok
09:40:14.0188 11048 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
09:40:14.0208 11048 RFCOMM - ok
09:40:14.0318 11048 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
09:40:14.0338 11048 RoxMediaDB12OEM - ok
09:40:14.0358 11048 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
09:40:14.0368 11048 RoxWatch12 - ok
09:40:14.0398 11048 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
09:40:14.0428 11048 RpcEptMapper - ok
09:40:14.0438 11048 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
09:40:14.0458 11048 RpcLocator - ok
09:40:14.0478 11048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
09:40:14.0508 11048 RpcSs - ok
09:40:14.0538 11048 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
09:40:14.0558 11048 rspndr - ok
09:40:14.0588 11048 [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
09:40:14.0608 11048 RSUSBSTOR - ok
09:40:14.0638 11048 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
09:40:14.0648 11048 RTL8167 - ok
09:40:14.0668 11048 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
09:40:14.0678 11048 SamSs - ok
09:40:14.0718 11048 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
09:40:14.0728 11048 sbp2port - ok
09:40:14.0748 11048 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
09:40:14.0788 11048 SCardSvr - ok
09:40:14.0798 11048 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
09:40:14.0838 11048 scfilter - ok
09:40:14.0858 11048 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
09:40:14.0898 11048 Schedule - ok
09:40:14.0928 11048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
09:40:14.0968 11048 SCPolicySvc - ok
09:40:15.0008 11048 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
09:40:15.0018 11048 SDRSVC - ok
09:40:15.0048 11048 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
09:40:15.0078 11048 secdrv - ok
09:40:15.0088 11048 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
09:40:15.0108 11048 seclogon - ok
09:40:15.0128 11048 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
09:40:15.0158 11048 SENS - ok
09:40:15.0168 11048 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
09:40:15.0178 11048 SensrSvc - ok
09:40:15.0188 11048 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
09:40:15.0198 11048 Serenum - ok
09:40:15.0218 11048 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
09:40:15.0238 11048 Serial - ok
09:40:15.0238 11048 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
09:40:15.0248 11048 sermouse - ok
09:40:15.0268 11048 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
09:40:15.0308 11048 SessionEnv - ok
09:40:15.0308 11048 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
09:40:15.0318 11048 sffdisk - ok
09:40:15.0318 11048 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
09:40:15.0338 11048 sffp_mmc - ok
09:40:15.0338 11048 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
09:40:15.0348 11048 sffp_sd - ok
09:40:15.0368 11048 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
09:40:15.0378 11048 sfloppy - ok
09:40:15.0448 11048 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
09:40:15.0478 11048 SftService - ok
09:40:15.0508 11048 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
09:40:15.0538 11048 SharedAccess - ok
09:40:15.0568 11048 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
09:40:15.0598 11048 ShellHWDetection - ok
09:40:15.0608 11048 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
09:40:15.0618 11048 SiSRaid2 - ok
09:40:15.0638 11048 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
09:40:15.0648 11048 SiSRaid4 - ok
09:40:15.0688 11048 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
09:40:15.0698 11048 SkypeUpdate - ok
09:40:15.0698 11048 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
09:40:15.0728 11048 Smb - ok
09:40:15.0758 11048 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
09:40:15.0768 11048 SNMPTRAP - ok
09:40:15.0798 11048 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
09:40:15.0808 11048 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - warning
09:40:15.0808 11048 Sony SCSI Helper Service - detected UnsignedFile.Multi.Generic (1)
09:40:15.0828 11048 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
09:40:15.0838 11048 spldr - ok
09:40:15.0878 11048 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
09:40:15.0898 11048 Spooler - ok
09:40:15.0968 11048 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
09:40:16.0028 11048 sppsvc - ok
09:40:16.0048 11048 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
09:40:16.0078 11048 sppuinotify - ok
09:40:16.0098 11048 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
09:40:16.0118 11048 srv - ok
09:40:16.0128 11048 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
09:40:16.0148 11048 srv2 - ok
09:40:16.0158 11048 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
09:40:16.0178 11048 srvnet - ok
09:40:16.0208 11048 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\windows\system32\DRIVERS\ssadbus.sys
09:40:16.0228 11048 ssadbus - ok
09:40:16.0258 11048 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\windows\system32\DRIVERS\ssadmdfl.sys
09:40:16.0268 11048 ssadmdfl - ok
09:40:16.0298 11048 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\windows\system32\DRIVERS\ssadmdm.sys
09:40:16.0308 11048 ssadmdm - ok
09:40:16.0328 11048 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\windows\system32\DRIVERS\ssadserd.sys
09:40:16.0338 11048 ssadserd - ok
09:40:16.0368 11048 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
09:40:16.0408 11048 SSDPSRV - ok
09:40:16.0418 11048 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
09:40:16.0448 11048 SstpSvc - ok
09:40:16.0518 11048 [ B2D8B364A831427A5741F6C408FA8AE3 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
09:40:16.0538 11048 STacSV - ok
09:40:16.0568 11048 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
09:40:16.0578 11048 stexstor - ok
09:40:16.0598 11048 [ EF5ACDE92BA3F691BBFEF781CB063501 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
09:40:16.0608 11048 STHDA - ok
09:40:16.0638 11048 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
09:40:16.0658 11048 stisvc - ok
09:40:16.0738 11048 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
09:40:16.0748 11048 stllssvr - ok
09:40:16.0768 11048 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
09:40:16.0778 11048 swenum - ok
09:40:16.0808 11048 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
09:40:16.0838 11048 swprv - ok
09:40:16.0878 11048 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
09:40:16.0918 11048 SysMain - ok
09:40:16.0948 11048 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
09:40:16.0958 11048 TabletInputService - ok
09:40:16.0978 11048 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
09:40:17.0008 11048 TapiSrv - ok
09:40:17.0018 11048 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
09:40:17.0048 11048 TBS - ok
09:40:17.0118 11048 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\windows\system32\drivers\tcpip.sys
09:40:17.0148 11048 Tcpip - ok
09:40:17.0168 11048 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
09:40:17.0198 11048 TCPIP6 - ok
09:40:17.0228 11048 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
09:40:17.0248 11048 tcpipreg - ok
09:40:17.0268 11048 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
09:40:17.0278 11048 TDPIPE - ok
09:40:17.0308 11048 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
09:40:17.0318 11048 TDTCP - ok
09:40:17.0338 11048 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
09:40:17.0368 11048 tdx - ok
09:40:17.0388 11048 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
09:40:17.0398 11048 TermDD - ok
09:40:17.0438 11048 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
09:40:17.0468 11048 TermService - ok
09:40:17.0488 11048 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
09:40:17.0508 11048 Themes - ok
09:40:17.0528 11048 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
09:40:17.0558 11048 THREADORDER - ok
09:40:17.0588 11048 [ 68FE3D89829E27D4FD5EEA7BD2C41985 ] tihub3 C:\windows\system32\DRIVERS\tihub3.sys
09:40:17.0598 11048 tihub3 - ok
09:40:17.0628 11048 [ 0102C9633CE1F18A6AC021F28B734DB5 ] tixhci C:\windows\system32\DRIVERS\tixhci.sys
09:40:17.0648 11048 tixhci - ok
09:40:17.0668 11048 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
09:40:17.0698 11048 TrkWks - ok
09:40:17.0748 11048 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
09:40:17.0788 11048 TrustedInstaller - ok
09:40:17.0798 11048 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
09:40:17.0828 11048 tssecsrv - ok
09:40:17.0838 11048 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
09:40:17.0848 11048 TsUsbFlt - ok
09:40:17.0858 11048 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
09:40:17.0868 11048 TsUsbGD - ok
09:40:17.0888 11048 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
09:40:17.0908 11048 tunnel - ok
09:40:17.0928 11048 [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB C:\windows\system32\DRIVERS\TurboB.sys
09:40:17.0938 11048 TurboB - ok
09:40:17.0968 11048 [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
09:40:17.0978 11048 TurboBoost - ok
09:40:17.0978 11048 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
09:40:17.0988 11048 uagp35 - ok
09:40:18.0008 11048 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
09:40:18.0048 11048 udfs - ok
09:40:18.0078 11048 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
09:40:18.0088 11048 UI0Detect - ok
09:40:18.0108 11048 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
09:40:18.0108 11048 uliagpkx - ok
09:40:18.0128 11048 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
09:40:18.0138 11048 umbus - ok
09:40:18.0158 11048 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
09:40:18.0168 11048 UmPass - ok
09:40:18.0258 11048 [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
09:40:18.0298 11048 UNS - ok
09:40:18.0318 11048 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
09:40:18.0348 11048 upnphost - ok
09:40:18.0378 11048 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
09:40:18.0388 11048 usbccgp - ok
09:40:18.0408 11048 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
09:40:18.0418 11048 usbcir - ok
09:40:18.0438 11048 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
09:40:18.0448 11048 usbehci - ok
09:40:18.0468 11048 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
09:40:18.0488 11048 usbhub - ok
09:40:18.0498 11048 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
09:40:18.0508 11048 usbohci - ok
09:40:18.0518 11048 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
09:40:18.0528 11048 usbprint - ok
09:40:18.0548 11048 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
09:40:18.0558 11048 USBSTOR - ok
09:40:18.0558 11048 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
09:40:18.0568 11048 usbuhci - ok
09:40:18.0578 11048 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
09:40:18.0598 11048 usbvideo - ok
09:40:18.0628 11048 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
09:40:18.0658 11048 UxSms - ok
09:40:18.0658 11048 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
09:40:18.0668 11048 VaultSvc - ok
09:40:18.0688 11048 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
09:40:18.0698 11048 vdrvroot - ok
09:40:18.0718 11048 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
09:40:18.0758 11048 vds - ok
09:40:18.0778 11048 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
09:40:18.0788 11048 vga - ok
09:40:18.0798 11048 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
09:40:18.0828 11048 VgaSave - ok
09:40:18.0838 11048 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
09:40:18.0848 11048 vhdmp - ok
09:40:18.0868 11048 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
09:40:18.0868 11048 viaide - ok
09:40:18.0888 11048 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
09:40:18.0908 11048 volmgr - ok
09:40:18.0918 11048 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
09:40:18.0938 11048 volmgrx - ok
09:40:18.0988 11048 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
09:40:18.0998 11048 volsnap - ok
09:40:19.0028 11048 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
09:40:19.0038 11048 vsmraid - ok
09:40:19.0088 11048 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
09:40:19.0138 11048 VSS - ok
09:40:19.0178 11048 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
09:40:19.0188 11048 vwifibus - ok
09:40:19.0198 11048 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
09:40:19.0218 11048 vwififlt - ok
09:40:19.0228 11048 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
09:40:19.0238 11048 vwifimp - ok
09:40:19.0268 11048 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
09:40:19.0298 11048 W32Time - ok
09:40:19.0318 11048 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
09:40:19.0328 11048 WacomPen - ok
09:40:19.0348 11048 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
09:40:19.0378 11048 WANARP - ok
09:40:19.0378 11048 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
09:40:19.0408 11048 Wanarpv6 - ok
09:40:19.0458 11048 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
09:40:19.0478 11048 WatAdminSvc - ok
09:40:19.0528 11048 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
09:40:19.0558 11048 wbengine - ok
09:40:19.0578 11048 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
09:40:19.0598 11048 WbioSrvc - ok
09:40:19.0618 11048 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
09:40:19.0628 11048 wcncsvc - ok
09:40:19.0638 11048 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
09:40:19.0648 11048 WcsPlugInService - ok
09:40:19.0678 11048 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
09:40:19.0688 11048 Wd - ok
09:40:19.0698 11048 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
09:40:19.0718 11048 Wdf01000 - ok
09:40:19.0738 11048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
09:40:19.0758 11048 WdiServiceHost - ok
09:40:19.0758 11048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
09:40:19.0768 11048 WdiSystemHost - ok
09:40:19.0798 11048 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
09:40:19.0818 11048 WebClient - ok
09:40:19.0818 11048 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
09:40:19.0848 11048 Wecsvc - ok
09:40:19.0858 11048 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
09:40:19.0898 11048 wercplsupport - ok
09:40:19.0908 11048 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
09:40:19.0948 11048 WerSvc - ok
09:40:19.0958 11048 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
09:40:19.0988 11048 WfpLwf - ok
09:40:20.0028 11048 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
09:40:20.0038 11048 WimFltr - ok
09:40:20.0048 11048 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
09:40:20.0058 11048 WIMMount - ok
09:40:20.0078 11048 WinDefend - ok
09:40:20.0078 11048 WinHttpAutoProxySvc - ok
09:40:20.0128 11048 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
09:40:20.0158 11048 Winmgmt - ok
09:40:20.0208 11048 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
09:40:20.0258 11048 WinRM - ok
09:40:20.0288 11048 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
09:40:20.0308 11048 Wlansvc - ok
09:40:20.0348 11048 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:40:20.0358 11048 wlcrasvc - ok
09:40:20.0438 11048 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:40:20.0478 11048 wlidsvc - ok
09:40:20.0508 11048 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
09:40:20.0528 11048 WmiAcpi - ok
09:40:20.0548 11048 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
09:40:20.0558 11048 wmiApSrv - ok
09:40:20.0588 11048 WMPNetworkSvc - ok
09:40:20.0638 11048 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
09:40:20.0648 11048 WPCSvc - ok
09:40:20.0658 11048 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
09:40:20.0668 11048 WPDBusEnum - ok
09:40:20.0698 11048 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
09:40:20.0728 11048 ws2ifsl - ok
09:40:20.0748 11048 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
09:40:20.0758 11048 wscsvc - ok
09:40:20.0768 11048 WSearch - ok
09:40:20.0848 11048 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
09:40:20.0888 11048 wuauserv - ok
09:40:20.0908 11048 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
09:40:20.0938 11048 WudfPf - ok
09:40:20.0958 11048 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
09:40:20.0988 11048 WUDFRd - ok
09:40:21.0018 11048 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
09:40:21.0048 11048 wudfsvc - ok
09:40:21.0058 11048 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
09:40:21.0078 11048 WwanSvc - ok
09:40:21.0088 11048 ================ Scan global ===============================
09:40:21.0108 11048 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
09:40:21.0138 11048 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
09:40:21.0138 11048 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
09:40:21.0168 11048 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
09:40:21.0198 11048 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
09:40:21.0208 11048 [Global] - ok
09:40:21.0208 11048 ================ Scan MBR ==================================
09:40:21.0228 11048 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:40:21.0488 11048 \Device\Harddisk0\DR0 - ok
09:40:21.0488 11048 ================ Scan VBR ==================================
09:40:21.0488 11048 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
09:40:21.0488 11048 \Device\Harddisk0\DR0\Partition1 - ok
09:40:21.0518 11048 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
09:40:21.0518 11048 \Device\Harddisk0\DR0\Partition2 - ok
09:40:21.0518 11048 ============================================================
09:40:21.0518 11048 Scan finished
09:40:21.0518 11048 ============================================================
09:40:21.0528 11016 Detected object count: 6
09:40:21.0528 11016 Actual detected object count: 6
09:40:37.0238 11016 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - skipped by user
09:40:37.0238 11016 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:40:37.0238 11016 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - skipped by user
09:40:37.0238 11016 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:40:37.0238 11016 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - skipped by user
09:40:37.0238 11016 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:40:37.0238 11016 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - skipped by user
09:40:37.0238 11016 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:40:37.0248 11016 Pcouffin64 ( UnsignedFile.Multi.Generic ) - skipped by user
09:40:37.0248 11016 Pcouffin64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:40:37.0248 11016 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - skipped by user
09:40:37.0248 11016 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
  • 0

#8
Essexboy
Posted 09 September 2012 - 07:52 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
How is the computer behaving now ?
  • 0

#9
Meboubou
Posted 09 September 2012 - 07:55 AM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
Well, my anti-virus is finding loads of stuff, my firewall is back on, PPTV seems gone and firefox isn't acting weird anymore, so I'd have to say, much better :-)
I know you have guides and information on this, but could you pinpoint where the infection was? I'm confused, I always try to keep is as clean as possible :\
  • 0

#10
Essexboy
Posted 09 September 2012 - 07:58 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
What things is your antivirus finding ?

Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
  • Double click on ComboFix.exe & follow the prompts.
  • Accept the disclaimer and allow to update if it asks

    Posted Image

    Posted Image
  • When finished, it shall produce a log for you.
  • Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.


Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now
  • 0

Advertisements

#11
Meboubou
Posted 09 September 2012 - 08:03 AM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
Risky connection blocked 253
Trojans: 10
tracking cookies: 6
potentially unwanted programs: 3

I'll follow the steps, thanks.
  • 0

#12
Meboubou
Posted 09 September 2012 - 08:37 AM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
After combofix gave me a report, I could not open Firefox or Explorer (I was given this message: 'Illegal operation attempted on a registry key that has been marked for deletion.' I rebooted my PC a second time, this time no issues of the sort.
Here is report:


ComboFix 12-09-09.02 - Marie-Eve 09/09/2012 10:12:32.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.2.1033.18.6050.4175 [GMT -4:00]
Running from: c:\users\Marie-Eve\Desktop\ComboFix.exe
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\favoritevideo\InvisibleFolder
c:\favoritevideo\InvisibleFolder\20120424183332_vip120424zhu15s.swf
c:\favoritevideo\InvisibleFolder\20120517145403_shengyu120517vipzhu15s.swf
c:\favoritevideo\InvisibleFolder\20120517145435_shengyu120517buhuiainizhu15s.swf
c:\favoritevideo\InvisibleFolder\20120718105311_jianeng120718fucheng.swf
c:\favoritevideo\InvisibleFolder\20120801111630_olay120801zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120807151521_tgc120808zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120820124022_kelaisile120820zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120821163458_lafang120821zhuzt1.swf
c:\favoritevideo\InvisibleFolder\20120822153051_kelaisile120822fuceng.swf
c:\favoritevideo\InvisibleFolder\20120823172518_aimoli120823fuceng.swf
c:\favoritevideo\InvisibleFolder\20120824101202_fenzong1200w120824zhufuceng.swf
c:\favoritevideo\InvisibleFolder\20120824103353_fenzhong800w120824zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120824160302_haiwaizhengjuan.swf
c:\favoritevideo\InvisibleFolder\20120827104618_mabao120827zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120828104057_boshi120828zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120830121015_qunaer120830zanting.swf
c:\favoritevideo\InvisibleFolder\20120830143924_covermark120830zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120830180611_lafang120830zanting.swf
c:\favoritevideo\InvisibleFolder\20120831190546_jilief1120901zhufuceng.swf
c:\favoritevideo\InvisibleFolder\20120831200608_jilief1120901zhuzt.swf
c:\favoritevideo\InvisibleFolder\20120831202253_jilief1120901zhujiaobiao.jpg
c:\favoritevideo\InvisibleFolder\20120831202517_jilief1120901zhuteshujiaobiao.jpg
c:\favoritevideo\InvisibleFolder\20120905161725_37wan120906zantinga.swf
c:\favoritevideo\InvisibleFolder\20120906154215_aili120906zhufuceng.swf
c:\favoritevideo\InvisibleFolder\20120906155355_baiduyouxi120907zhuhuanchong15s.swf
c:\favoritevideo\InvisibleFolder\20120906161047_37wan120907zantinga.swf
c:\favoritevideo\InvisibleFolder\20120906161047_37wan120907zantingb.swf
c:\favoritevideo\InvisibleFolder\20120907101547_guangzhouyayao120907cha15s.swf
c:\favoritevideo\InvisibleFolder\20120907150859_baiduyouxi120908zhuhuanchong15s.swf
c:\favoritevideo\InvisibleFolder\20120907164005_37wan120908zhuztb.swf
c:\favoritevideo\InvisibleFolder\20120907164034_37wan120908zhuzta.swf
c:\favoritevideo\InvisibleFolder\20120907170258_dangdangwang120907zhufuceng.swf
c:\favoritevideo\InvisibleFolder\20120907172217_haizeiwang120908zhuhuanchong15s.swf
c:\favoritevideo\InvisibleFolder\20120907173130_rexuehaizeiwang120907zhuzt.swf
c:\favoritevideo\InvisibleFolder\filepick.dll
c:\favoritevideo\InvisibleFolder\logclient.dll
c:\favoritevideo\InvisibleFolder\pprepair.dll
c:\favoritevideo\InvisibleFolder\realmediasplitter.ax
c:\favoritevideo\InvisibleFolder\tipsbubble.dll
c:\favoritevideo\InvisibleFolder\tipsclient.dll
c:\favoritevideo\InvisibleFolder\tipsdone.dll
c:\programdata\msnmsgre48.exe
c:\programdata\PCDr\6032\AddOnDownloaded\0d461521-7dbf-4cec-a29e-936c88cdf8c9.dll
c:\programdata\PCDr\6032\AddOnDownloaded\0d85b53c-d766-4bf0-8940-17b534910268.dll
c:\programdata\PCDr\6032\AddOnDownloaded\100c3865-0c76-461b-b2fd-042d6d5fa7f6.dll
c:\programdata\PCDr\6032\AddOnDownloaded\140239b3-d59a-46fa-b856-17682a46cb44.dll
c:\programdata\PCDr\6032\AddOnDownloaded\16837627-a839-41c5-a88f-3a0335128383.dll
c:\programdata\PCDr\6032\AddOnDownloaded\173c4dd2-e93c-4725-b006-db1d8f465192.dll
c:\programdata\PCDr\6032\AddOnDownloaded\1e0aaf9a-9947-4a7b-b1ae-8a89919438ed.dll
c:\programdata\PCDr\6032\AddOnDownloaded\246b20c1-8ea9-4148-a34e-d03c8a1d5a76.dll
c:\programdata\PCDr\6032\AddOnDownloaded\263d6ac9-4f87-466c-947c-bd9af71d7035.dll
c:\programdata\PCDr\6032\AddOnDownloaded\27e5bc9a-105f-4d7f-8352-e6ef1c8933dd.dll
c:\programdata\PCDr\6032\AddOnDownloaded\2ee79d71-badc-46b4-b731-42b15f3cd1c3.dll
c:\programdata\PCDr\6032\AddOnDownloaded\3410f47b-5e8c-47c6-bf2c-234af4121d4c.dll
c:\programdata\PCDr\6032\AddOnDownloaded\378deb7f-049e-4a5e-83b2-5381dcd9e928.dll
c:\programdata\PCDr\6032\AddOnDownloaded\3972fea3-214c-4935-a7d1-96bf66115683.dll
c:\programdata\PCDr\6032\AddOnDownloaded\3a79f062-8f3e-464f-9815-2c45840494ee.dll
c:\programdata\PCDr\6032\AddOnDownloaded\3b1c7acd-5e3e-4459-ab98-5109117e2341.dll
c:\programdata\PCDr\6032\AddOnDownloaded\3e4c86d5-a5c1-4c3f-8fc7-6258992b16c5.dll
c:\programdata\PCDr\6032\AddOnDownloaded\44ddba62-3b58-480f-a775-ae7e9dd9d5df.dll
c:\programdata\PCDr\6032\AddOnDownloaded\4546f2bc-b9d9-4667-abe7-b0bacc90279e.dll
c:\programdata\PCDr\6032\AddOnDownloaded\4804ced5-915b-48a3-a465-b8a5e02714bf.dll
c:\programdata\PCDr\6032\AddOnDownloaded\4818e109-9489-4cd8-9044-44defd8ec187.dll
c:\programdata\PCDr\6032\AddOnDownloaded\493f295d-1a46-46f6-926c-63b474cedab4.dll
c:\programdata\PCDr\6032\AddOnDownloaded\4a6ad3dd-db4c-4c85-a238-f9483baae32d.dll
c:\programdata\PCDr\6032\AddOnDownloaded\5e1c102f-bfde-420c-87c0-64fe851888e5.dll
c:\programdata\PCDr\6032\AddOnDownloaded\62d1f0b0-bc9a-4f6c-bad7-93b19a91276a.dll
c:\programdata\PCDr\6032\AddOnDownloaded\67c3d4fe-b638-467a-9fe2-c5813ade3330.dll
c:\programdata\PCDr\6032\AddOnDownloaded\6820b110-e483-4f1e-9b48-438f7916f078.dll
c:\programdata\PCDr\6032\AddOnDownloaded\684a43a7-04d5-4797-bc20-4db8a316286c.dll
c:\programdata\PCDr\6032\AddOnDownloaded\6b5978fa-48d7-4309-a523-7e157768c0d8.dll
c:\programdata\PCDr\6032\AddOnDownloaded\6f4fb483-ce30-493a-8cb4-3e530ab1be5b.dll
c:\programdata\PCDr\6032\AddOnDownloaded\7014e871-cc3b-4dec-b82b-bc70222b40ed.dll
c:\programdata\PCDr\6032\AddOnDownloaded\739db3eb-d3cd-4c86-a6ea-01a49984fa3b.dll
c:\programdata\PCDr\6032\AddOnDownloaded\7bd83798-7a02-4f50-83a2-b91cabcbd1f9.dll
c:\programdata\PCDr\6032\AddOnDownloaded\7dbfef1a-6148-4748-a1b3-71627763a45a.dll
c:\programdata\PCDr\6032\AddOnDownloaded\813755dc-2229-47a2-b85b-19d0aaa641c9.dll
c:\programdata\PCDr\6032\AddOnDownloaded\872965c7-08b7-47fc-a74c-ff167590b71a.dll
c:\programdata\PCDr\6032\AddOnDownloaded\8d357f17-07ad-4392-ba06-fb67564c98cd.dll
c:\programdata\PCDr\6032\AddOnDownloaded\934f6059-2d35-4bd9-a130-a17cb5563507.dll
c:\programdata\PCDr\6032\AddOnDownloaded\a2192d8a-3d73-4ff7-be9b-02134f41db63.dll
c:\programdata\PCDr\6032\AddOnDownloaded\a4930af9-016c-4915-a740-a3364e7618aa.dll
c:\programdata\PCDr\6032\AddOnDownloaded\a61f44a8-21a3-4c4a-a04b-993dfb73bf96.dll
c:\programdata\PCDr\6032\AddOnDownloaded\a9de0c84-9a7c-4638-9653-13aa8cf56e80.dll
c:\programdata\PCDr\6032\AddOnDownloaded\ae67b364-b69e-471e-b177-2459120b84d4.dll
c:\programdata\PCDr\6032\AddOnDownloaded\b2152f30-7380-4987-8fcf-e4c06952615d.dll
c:\programdata\PCDr\6032\AddOnDownloaded\b2ed8d53-41ce-48e6-b4ac-8b8e5e1a4fdf.dll
c:\programdata\PCDr\6032\AddOnDownloaded\b4cc2a4a-87f5-49cd-935c-18f1a80e65b7.dll
c:\programdata\PCDr\6032\AddOnDownloaded\bbfa36b0-30b0-4e36-8d8c-69df1d87626b.dll
c:\programdata\PCDr\6032\AddOnDownloaded\bc6fc708-5b6b-4a72-b336-09b3089baa7a.dll
c:\programdata\PCDr\6032\AddOnDownloaded\bf647bd7-dfb5-4746-a6b4-b7c2fdbbf3b1.dll
c:\programdata\PCDr\6032\AddOnDownloaded\c4211805-b43b-471d-81af-4e0589f8607b.dll
c:\programdata\PCDr\6032\AddOnDownloaded\cdda52ec-6ccd-425a-8c72-b7bbdc8b3acd.dll
c:\programdata\PCDr\6032\AddOnDownloaded\cf3463d8-8828-4f50-98c8-d04ca1fe42f3.dll
c:\programdata\PCDr\6032\AddOnDownloaded\d1f4dc82-bc4c-4916-b37c-3ab9c30ae468.dll
c:\programdata\PCDr\6032\AddOnDownloaded\d34c0cf7-889f-43dd-9283-b2b6f442aae3.dll
c:\programdata\PCDr\6032\AddOnDownloaded\daf30858-49d8-434b-b4b1-068b5dc9267c.dll
c:\programdata\PCDr\6032\AddOnDownloaded\ddb9fe5d-525c-4d5d-ac37-0bd10f2864f8.dll
c:\programdata\PCDr\6032\AddOnDownloaded\e45cd45a-4d7c-4802-881f-74582b847e5c.dll
c:\programdata\PCDr\6032\AddOnDownloaded\e9bb45d9-5a2b-47e8-9c48-168276d422cc.dll
c:\programdata\PCDr\6032\AddOnDownloaded\ef78c3e8-1d94-4219-8070-7617e119bba4.dll
c:\programdata\PCDr\6032\AddOnDownloaded\f06c5597-1a85-4d1f-ac16-a6fdd2a6bedc.dll
c:\programdata\PCDr\6032\AddOnDownloaded\f80d4ad1-1fad-43b5-b6f3-347848b5ddd5.dll
c:\programdata\PCDr\6032\AddOnDownloaded\f9dc840b-c6f7-42a5-acec-50cc7a2827fd.dll
c:\programdata\Roaming
c:\users\Marie-Eve\AppData\Roaming\56796.exe
c:\users\Marie-Eve\AppData\Roaming\80889.exe
c:\users\Marie-Eve\AppData\Roaming\GoogleUpdate.exe
c:\users\Marie-Eve\AppData\Roaming\msnmsgr
c:\users\Marie-Eve\AppData\Roaming\taskmgr.exe
c:\users\Marie-Eve\g2mdlhlpx.exe
c:\windows\Downloaded Program Files\cwshell.exe
c:\windows\Downloaded Program Files\mcieplugin.dll
c:\windows\Downloaded Program Files\mcoiupdate.dll
.
.
((((((((((((((((((((((((( Files Created from 2012-08-09 to 2012-09-09 )))))))))))))))))))))))))))))))
.
.
2012-09-08 23:38 . 2012-09-08 23:38 -------- d-----w- C:\_OTL
2012-09-08 21:32 . 2012-09-08 21:32 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-09-08 21:31 . 2012-09-08 21:31 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-08 21:31 . 2012-09-08 21:31 -------- d-----w- c:\program files (x86)\Java
2012-09-05 04:59 . 2012-09-05 04:59 -------- d-----w- c:\users\Marie-Eve\AppData\Local\Spruce
2012-08-30 12:30 . 2012-09-09 00:25 73696 ----a-w- c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll
2012-08-30 02:47 . 2012-08-30 02:47 31344 ----a-w- c:\windows\system32\drivers\cnnctfy2.sys
2012-08-28 01:38 . 2012-08-28 01:38 -------- d-----w- c:\programdata\McAfee Security Scan
2012-08-28 01:38 . 2012-09-02 02:09 -------- d-----w- c:\program files (x86)\McAfee Security Scan
2012-08-26 04:49 . 2012-08-26 04:49 -------- d-----w- c:\users\Marie-Eve\AppData\Local\Chris_Pietschmann_(http__
2012-08-26 04:39 . 2012-08-30 02:49 -------- d-----w- c:\program files (x86)\Virtual Router
2012-08-23 20:53 . 2012-08-23 20:53 -------- d-----w- c:\programdata\PC-Doctor for Windows
2012-08-16 03:19 . 2012-07-06 20:07 552960 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-08-15 22:38 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2012-08-15 22:38 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2012-08-15 22:38 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-08-15 22:38 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-15 22:38 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-08-15 22:38 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-08-15 22:38 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-08-15 22:38 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll
2012-08-15 22:38 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll
2012-08-15 22:38 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2012-08-15 22:38 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-08-15 22:38 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll
2012-08-13 17:19 . 2012-08-13 17:19 -------- d-----w- c:\users\Marie-Eve\AppData\Local\DDMSettings
2012-08-13 17:14 . 2012-08-20 01:21 -------- d-----w- c:\users\Marie-Eve\AppData\Roaming\DivX
2012-08-13 17:14 . 2012-08-13 17:14 -------- d-----w- c:\program files\DivX
2012-08-13 17:14 . 2012-08-13 17:14 -------- d-----w- c:\program files (x86)\Common Files\DivX Shared
2012-08-13 17:13 . 2012-08-13 17:15 -------- d-----w- c:\program files (x86)\DivX
2012-08-13 17:12 . 2012-08-13 17:15 -------- d-----w- c:\programdata\DivX
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-08 21:31 . 2012-04-14 21:38 821736 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-09-08 21:31 . 2012-01-28 09:47 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-08-28 01:38 . 2012-04-07 21:29 696520 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-28 01:38 . 2012-01-28 09:46 73416 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-16 03:15 . 2012-02-07 12:09 62134624 ----a-w- c:\windows\system32\MRT.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2011-04-13 503942]
"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-11-06 283160]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" [2010-11-17 514544]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2012-07-27 35768]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-03-22 1675160]
"AccuWeatherWidget"="c:\program files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" [2011-04-30 885760]
"Reader Library Launcher"="c:\program files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe" [2010-07-13 906648]
"Reader Application Helper"="c:\program files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" [2012-01-31 892928]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe [2011-6-17 272528]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-06-07 160944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-28 250568]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys [2011-09-15 299008]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2011-05-13 36328]
R3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2011-05-19 1335360]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [2011-06-21 34200]
R3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe [2011-03-08 224704]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe [2011-06-17 237008]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-02-22 100912]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-30 114144]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-09-16 340240]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
R3 Pcouffin64;Low level access layer for CD devices;c:\windows\system32\Drivers\pcouffin64a.sys [2012-04-01 54816]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-10-30 250984]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-05 1255736]
R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-28 249936]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-02-22 289664]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2012-02-22 75936]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-09-15 1166848]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-05-19 921664]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2011-05-19 995392]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-06-03 134928]
S2 DellDigitalDelivery;Dell Digital Delivery Service;c:\program files (x86)\Dell Digital Delivery\DeliveryService.exe [2012-08-02 173056]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-28 249936]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-28 249936]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-03-20 210584]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-03-20 162192]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys [2011-09-15 299008]
S3 btmaudio;Intel Bluetooth Audio Service;c:\windows\system32\drivers\btmaud.sys [2011-05-19 51712]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2011-05-19 53248]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-11-15 327168]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-02-22 65264]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2011-01-20 176096]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-10 60416]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [2011-06-21 25496]
S3 MEIx64;Intel® Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-02-22 487296]
S3 NETwNs64;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [2011-09-18 8604672]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 tihub3;TI USB3 Hub Service;c:\windows\system32\DRIVERS\tihub3.sys [2011-07-20 136000]
S3 tixhci;TI XHCI Service;c:\windows\system32\DRIVERS\tixhci.sys [2011-07-20 406336]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - mfeavfk01
.
Contents of the 'Scheduled Tasks' folder
.
2012-09-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-07 01:38]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-20 168216]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-20 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-20 416024]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-25 525312]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-04-12 609144]
"QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2011-03-24 3668336]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-09-16 1935120]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-05-19 10365952]
"DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2011-04-30 2055016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 142.217.192.8 142.217.192.9
FF - ProfilePath - c:\users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKCU-Run-msnmsgre - c:\programdata\msnmsgre48.exe
Wow6432Node-HKCU-Run-tiatsd - c:\users\Marie-Eve\AppData\Roaming\tiatsd.dll
AddRemove-WT089446 - c:\program files (x86)\WildTangent\Dell Games\Wedding Dash - Ready
AddRemove-WinCheck - c:\users\Marie-Eve\AppData\Local\Spruce\WinCheck\WinCheck.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\DbgagD\1*]
"value"="?\04\00\08\10\1a'f"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
c:\program files (x86)\Panda USB Vaccine\USBVaccine.exe
c:\program files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2012-09-09 10:23:54 - machine was rebooted
ComboFix-quarantined-files.txt 2012-09-09 14:23
.
Pre-Run: 387,709,231,104 bytes free
Post-Run: 387,319,267,328 bytes free
.
- - End Of File - - AF9DBD1E3E39A0FC6757B6E75E9A7426
  • 0

#13
Meboubou
Posted 09 September 2012 - 08:41 AM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
Wow. I'm looking at the list marked for deletion, the top part is all Chinese related.... Yet I havn't been in China with this PC... so probably from Chinese sites... :\ I'll look up better spyware-malware protection...
  • 0

#14
Essexboy
Posted 09 September 2012 - 09:30 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
They are in your videos folder, my analysis tools do not look there. There was also a lot more of PCDR than I saw.

How is the computer now ?

Please download Malwarebytes' Anti-Malware

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.
  • 0

#15
Meboubou
Posted 09 September 2012 - 09:36 AM

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 68 posts
Thanks. I guess PPTV really did screw me up. I'll stay away from it now...
Last time I had Malwarebytes on this PC, my anti-virus would not let it scan. I'm not a big fan of Mcafee but my PC came with a years paid subscription, didn't see the point in getting ride of it. I'll try it again, if anything I'll just disable my anti-virus the time MB does its thing.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP