Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

sirefef.gen!c


  • Please log in to reply
25 replies to this topic

#1 charliewon56

charliewon56

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 05 February 2013 - 03:50 AM

Hello

For the past few days chrome and internet explorer have started redirecting me to advert sites and flagging up
sirefef.gen!c infection
All other devices seem to be running fine but computer is rather slow
Please can anyone help
Many thanks

BC AdBot (Login to Remove)

 


#2 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 05 February 2013 - 03:54 AM

Srry forgot to say that i am using windows 7
Many thanks

#3 InadequateInfirmity

InadequateInfirmity

  • Members
  • 2,826 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:06 AM

Posted 05 February 2013 - 04:29 AM

Please download MINITOOLBOX and run it.
http://download.bleepingcomputer.com/farbar/MiniToolBox.exe

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Report FF Proxy Settings
Reset Ie proxy Settins
Reset FF proxy settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

Download Adware Cleaner run it Click the delete button allow it to run and post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner


Download the junkware removal tool save it to your desktop run it in safe mode post the log.
http://thisisudax.org/downloads/JRT.exe


Download Emsisoft Emergency Kit and save it to your desktop. Right-click on EmsisoftEmergencyKit.zip and select Extract All.... Leave all settings as they are and click Extract. You will now have a folder named EmsisoftEmergencyKit on your desktop.

Open the EmsisoftEmergencyKit
http://www.emsisoft.com/en/software/eek/download/
folder and double-click Start.exe.
A new window will open. Under "Run Directly:" click Emergency Kit Scanner.
When asked to run an online update, click Yes.
When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
Select the Deep Scan option and click the SCAN button.
When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
Copy/paste the report contents in your next reply
What happens when you press Alt + F4 at the same time?

#4 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 05 February 2013 - 10:16 AM

MiniToolBox by Farbar Version:10-01-2013
Ran by User 1 (administrator) on 05-02-2013 at 15:08:43
Running from "C:\Users\User 1\Downloads"
Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Dell Wireless 1395 WLAN Mini-Card = Wireless Network Connection (Connected)
Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : User1-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1395 WLAN Mini-Card
Physical Address. . . . . . . . . : 00-23-4E-36-5F-8C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::fdda:be08:4fa5:f8e3%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 05 February 2013 14:58:45
Lease Expires . . . . . . . . . . : 05 February 2013 15:58:45
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 218112846
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-3C-9B-B6-00-23-AE-04-B0-91
DNS Servers . . . . . . . . . . . : 194.168.4.100
194.168.8.100
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-23-AE-04-B0-91
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6CB7A76A-670E-413D-91C5-F5B56720E7EF}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{30493269-E4AD-4ECD-9BA8-2C1C8AB8A11D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Pinging google.com [173.194.41.133] with 32 bytes of data:
Reply from 173.194.41.133: bytes=32 time=16ms TTL=55
Reply from 173.194.41.133: bytes=32 time=18ms TTL=55

Ping statistics for 173.194.41.133:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 16ms, Maximum = 18ms, Average = 17ms

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=269ms TTL=48
Reply from 98.138.253.109: bytes=32 time=175ms TTL=48

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 175ms, Maximum = 269ms, Average = 222ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 23 4e 36 5f 8c ......Dell Wireless 1395 WLAN Mini-Card
11...00 23 ae 04 b0 91 ......Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.2 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.2 281
192.168.0.2 255.255.255.255 On-link 192.168.0.2 281
192.168.0.255 255.255.255.255 On-link 192.168.0.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.2 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 281 fe80::/64 On-link
12 281 fe80::fdda:be08:4fa5:f8e3/128
On-link
1 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File not found] ()
Catalog9 02 mswsock.dll [File not found] ()
Catalog9 03 mswsock.dll [File not found] ()
Catalog9 04 mswsock.dll [File not found] ()
Catalog9 05 mswsock.dll [File not found] ()
Catalog9 06 mswsock.dll [File not found] ()
Catalog9 07 mswsock.dll [File not found] ()
Catalog9 08 mswsock.dll [File not found] ()
Catalog9 09 mswsock.dll [File not found] ()
Catalog9 10 mswsock.dll [File not found] ()
Catalog9 11 mswsock.dll [File not found] ()
Catalog9 12 mswsock.dll [File not found] ()
Catalog9 13 mswsock.dll [File not found] ()
Catalog9 14 mswsock.dll [File not found] ()
Catalog9 15 mswsock.dll [File not found] ()
Catalog9 16 mswsock.dll [File not found] ()
Catalog9 17 mswsock.dll [File not found] ()
Catalog9 18 mswsock.dll [File not found] ()
Catalog9 19 mswsock.dll [File not found] ()
Catalog9 20 mswsock.dll [File not found] ()
Catalog9 21 mswsock.dll [File not found] ()
Catalog9 22 mswsock.dll [File not found] ()
Catalog9 23 mswsock.dll [File not found] ()
Catalog9 24 mswsock.dll [File not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/05/2013 02:58:40 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17701386

Error: (02/05/2013 02:58:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 17701386

Error: (02/05/2013 02:58:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2013 02:58:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17700388

Error: (02/05/2013 02:58:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 17700388

Error: (02/05/2013 02:58:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2013 02:58:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17699374

Error: (02/05/2013 02:58:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 17699374

Error: (02/05/2013 02:58:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2013 02:58:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31403


System errors:
=============
Error: (02/05/2013 03:00:15 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (02/05/2013 03:00:15 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (02/05/2013 03:00:03 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the upnphost service.

Error: (02/05/2013 02:59:46 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Audiosrv service.

Error: (02/05/2013 02:59:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMService service.

Error: (02/05/2013 10:02:20 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall service depends the following service: MpsSvc. This service might not be installed.

Error: (02/05/2013 10:02:20 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall service depends the following service: MpsSvc. This service might not be installed.

Error: (02/05/2013 10:01:47 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall service depends the following service: MpsSvc. This service might not be installed.

Error: (02/05/2013 09:56:47 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall service depends the following service: MpsSvc. This service might not be installed.

Error: (02/05/2013 09:56:03 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall service depends the following service: MpsSvc. This service might not be installed.


Microsoft Office Sessions:
=========================
Error: (02/05/2013 02:58:40 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17701386

Error: (02/05/2013 02:58:39 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 17701386

Error: (02/05/2013 02:58:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2013 02:58:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17700388

Error: (02/05/2013 02:58:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 17700388

Error: (02/05/2013 02:58:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2013 02:58:35 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17699374

Error: (02/05/2013 02:58:35 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 17699374

Error: (02/05/2013 02:58:35 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2013 02:58:34 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31403


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Browser Manager
calibre (Version: 0.8.62)
CCleaner (Version: 3.22)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
EPSON Scan
EPSON SX110 Series Printer Uninstall
Excel Invoice Manager 2.22.1025 (Version: 2.22.1025)
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Free PDF Tablet (Version: 0.1)
Google Chrome (Version: 24.0.1312.57)
Google Earth (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.123)
Heroes of Might and Magic IV
iCloud (Version: 1.1.0.40)
iLivid (Version: 1.92)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1930)
Intel® TV Wizard
iTunes (Version: 10.7.0.21)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.0 (Version: 2.1.0)
Junk Mail filter update (Version: 15.4.3502.0922)
Laptop Integrated Webcam Driver (1.04.01.1011)
Malwarebytes Anti-Malware version 1.60.0.1400 (Version: 1.60.0.1400)
McAfee AntiVirus Plus (Version: 11.6.443)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook Connector (Version: 14.0.6123.5001)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SkyDrive (Version: 17.0.2003.1112)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MSVCRT (Version: 15.4.2862.0708)
PassportPhoto (Version: 6.0.0.0)
Shared C Run-time for x86 (Version: 10.0.0)
SketchUp Pro 8 (Version: 3.0.15158)
Skype Click to Call (Version: 6.5.11422)
Skype™ 6.1 (Version: 6.1.129)
Spotify (Version: 0.8.5.1333.g822e0de8)
swMSM (Version: 12.0.0.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
VLC media player 2.0.1 (Version: 2.0.1)
VLC Streamer 2.64
Vuze (Version: 4.7)
Web Weaver EZ
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinZip 15.5 (Version: 15.5.9579)

========================= Memory info: ===================================

Percentage of memory in use: 72%
Total physical RAM: 1014.04 MB
Available physical RAM: 274.13 MB
Total Pagefile: 2112.04 MB
Available Pagefile: 472.11 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.29 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:55.79 GB) (Free:20.29 GB) NTFS

========================= Users: ========================================

User accounts for \\USER1-PC

Administrator Guest Paulie & Shazzie
User 1


**** End of log ****

#5 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 05 February 2013 - 10:32 AM

# AdwCleaner v2.111 - Logfile created 02/05/2013 at 15:19:00
# Updated 05/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (32 bits)
# User : User 1 - USER1-PC
# Boot Mode : Normal
# Running from : C:\Users\User 1\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Browser Manager

***** [Files / Folders] *****

Deleted on reboot : C:\ProgramData\Browser Manager
File Deleted : C:\END
Folder Deleted : C:\Program Files\1ClickDownload
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Ilivid
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Users\User 1\AppData\Local\Conduit
Folder Deleted : C:\Users\User 1\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\User 1\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\User 1\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\User 1\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\User 1\AppData\Roaming\Babylon
Folder Deleted : C:\Users\User 1\AppData\Roaming\Iminent

***** [Registry] *****

Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261123~1.78\{16cdf~1\browse~1.dll
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\5353d9dae73be544
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\5353d9dae73be544
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2801948
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKU\S-1-5-21-3812038139-3455648243-181842613-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
Value Deleted : HKCU\Software\Mozilla\Firefox\extensions [{58BD07EB-0EE0-4DF0-8121-DC9B693373DF}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\User 1\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [9970 octets] - [05/02/2013 15:19:00]

########## EOF - C:\AdwCleaner[S1].txt - [10030 octets] ##########

#6 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 05 February 2013 - 10:58 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.2 (02.02.2013:2)
OS: Windows 7 Home Premium x86
Ran by User 1 on 05/02/2013 at 15:48:35.57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\windows nt\currentversion\windows\\AppInit_DLLs
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\urlsearchhooks\\{37483b40-c254-4a72-bda4-22ee90182c1e}
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\toolbar\webbrowser\\{ba14329e-9550-4989-b3f2-9732e92d17cc}
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\urlsearchhooks\\{ba14329e-9550-4989-b3f2-9732e92d17cc}



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\browser manager"
Successfully deleted: [Folder] "C:\Users\User 1\appdata\locallow\datamngr"



~~~ Chrome

Successfully deleted: [Registry Key] hkey_current_user\software\google\chrome\extensions\ojpijjmpahflnipadmlpgbjmagmjchkk
Successfully deleted: [Registry Key] hkey_local_machine\software\google\chrome\extensions\ojpijjmpahflnipadmlpgbjmagmjchkk



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05/02/2013 at 15:50:39.24
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#7 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 05 February 2013 - 01:32 PM

Emsisoft Emergency Kit - Version 3.0
Last update: 05/02/2013 16:32:22

Scan settings:

Scan type: Deep Scan
Objects: Rootkits, Memory, Traces, C:\

Detect Riskware: Off
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start: 05/02/2013 16:34:04

C:\Windows\System32\Drivers\tdx.sys detected: Gen:Variant.Barys.536 (B)
C:\ProgramData\Microsoft\Media Tools\temp\tmp52A5.exe detected: Trojan.Generic.KDZ.4769 (B)
C:\Users\User 1\SkyDrive\WinZip.Pro.v16.5.10095[64][32].Incl.Keygen-Lz0\WinZip.Pro.v16.5.10095.Incl.Keygen-Lz0.zip -> WinZip.Pro.v16.5.10095.Incl.Keygen-Lz0/Lz0/keygen.exe detected: Trojan.Generic.KDV.626274 (B)
C:\Users\User 1\SkyDrive\WinZip.Pro.v16.5.10095[64][32].Incl.Keygen-Lz0\WinZip.Pro.v16.5.10095.X64.Incl.Keygen-Lz0.zip -> WinZip.Pro.v16.5.10095.X64.Incl.Keygen-Lz0/Lz0/keygen.exe detected: Trojan.Generic.KDV.626274 (B)

Scanned 430799
Found 4

Scan end: 05/02/2013 18:27:23
Scan time: 1:53:19

C:\Users\User 1\SkyDrive\WinZip.Pro.v16.5.10095[64][32].Incl.Keygen-Lz0\WinZip.Pro.v16.5.10095.Incl.Keygen-Lz0.zip -> WinZip.Pro.v16.5.10095.Incl.Keygen-Lz0/Lz0/keygen.exe Quarantined Trojan.Generic.KDV.626274 (B)
C:\Users\User 1\SkyDrive\WinZip.Pro.v16.5.10095[64][32].Incl.Keygen-Lz0\WinZip.Pro.v16.5.10095.X64.Incl.Keygen-Lz0.zip -> WinZip.Pro.v16.5.10095.X64.Incl.Keygen-Lz0/Lz0/keygen.exe Quarantined Trojan.Generic.KDV.626274 (B)
C:\ProgramData\Microsoft\Media Tools\temp\tmp52A5.exe Quarantined Trojan.Generic.KDZ.4769 (B)

Quarantined 3

#8 InadequateInfirmity

InadequateInfirmity

  • Members
  • 2,826 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:06 AM

Posted 05 February 2013 - 08:00 PM

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results



Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/

Post the log here,


Update do a quick scan with Superantispyware remove all this finds reboot.
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE
post the log here.




Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.
What happens when you press Alt + F4 at the same time?

#9 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 06 February 2013 - 02:24 AM

07:16:33.0237 5228 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
07:16:35.0353 5228 ============================================================
07:16:35.0353 5228 Current date / time: 2013/02/06 07:16:35.0353
07:16:35.0353 5228 SystemInfo:
07:16:35.0353 5228
07:16:35.0353 5228 OS Version: 6.1.7601 ServicePack: 1.0
07:16:35.0353 5228 Product type: Workstation
07:16:35.0354 5228 ComputerName: USER1-PC
07:16:35.0354 5228 UserName: User 1
07:16:35.0354 5228 Windows directory: C:\Windows
07:16:35.0354 5228 System windows directory: C:\Windows
07:16:35.0354 5228 Processor architecture: Intel x86
07:16:35.0355 5228 Number of processors: 2
07:16:35.0355 5228 Page size: 0x1000
07:16:35.0355 5228 Boot type: Normal boot
07:16:35.0355 5228 ============================================================
07:17:07.0373 5228 Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 (55.89 Gb), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
07:17:07.0393 5228 ============================================================
07:17:07.0393 5228 \Device\Harddisk0\DR0:
07:17:07.0414 5228 MBR partitions:
07:17:07.0414 5228 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
07:17:07.0414 5228 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6F94800
07:17:07.0414 5228 ============================================================
07:17:07.0769 5228 C: <-> \Device\Harddisk0\DR0\Partition2
07:17:07.0982 5228 ============================================================
07:17:07.0982 5228 Initialize success
07:17:07.0982 5228 ============================================================
07:18:45.0118 4744 ============================================================
07:18:45.0118 4744 Scan started
07:18:45.0118 4744 Mode: Manual; TDLFS;
07:18:45.0118 4744 ============================================================
07:18:49.0176 4744 ================ Scan system memory ========================
07:18:49.0176 4744 System memory - ok
07:18:49.0177 4744 ================ Scan services =============================
07:18:49.0204 4744 .cdrom - ok
07:18:49.0908 4744 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
07:18:49.0941 4744 1394ohci - ok
07:18:50.0074 4744 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
07:18:51.0130 4744 ACPI - ok
07:18:51.0176 4744 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
07:18:51.0338 4744 AcpiPmi - ok
07:18:51.0520 4744 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:18:51.0555 4744 AdobeFlashPlayerUpdateSvc - ok
07:18:51.0637 4744 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
07:18:51.0657 4744 adp94xx - ok
07:18:51.0772 4744 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys
07:18:51.0809 4744 adpahci - ok
07:18:51.0835 4744 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
07:18:51.0846 4744 adpu320 - ok
07:18:51.0887 4744 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
07:18:51.0889 4744 AeLookupSvc - ok
07:18:51.0982 4744 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
07:18:51.0999 4744 AFD - ok
07:18:52.0023 4744 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
07:18:52.0032 4744 agp440 - ok
07:18:52.0079 4744 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
07:18:52.0098 4744 aic78xx - ok
07:18:52.0144 4744 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
07:18:52.0147 4744 ALG - ok
07:18:52.0191 4744 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
07:18:52.0194 4744 aliide - ok
07:18:52.0216 4744 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
07:18:52.0227 4744 amdagp - ok
07:18:52.0254 4744 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
07:18:52.0256 4744 amdide - ok
07:18:52.0276 4744 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
07:18:52.0279 4744 AmdK8 - ok
07:18:52.0301 4744 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
07:18:52.0307 4744 AmdPPM - ok
07:18:52.0352 4744 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
07:18:52.0525 4744 amdsata - ok
07:18:52.0549 4744 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
07:18:52.0556 4744 amdsbs - ok
07:18:52.0582 4744 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
07:18:52.0585 4744 amdxata - ok
07:18:52.0685 4744 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
07:18:52.0688 4744 AppID - ok
07:18:52.0726 4744 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
07:18:52.0729 4744 AppIDSvc - ok
07:18:52.0767 4744 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
07:18:52.0826 4744 Appinfo - ok
07:18:52.0978 4744 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:18:52.0986 4744 Apple Mobile Device - ok
07:18:53.0021 4744 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys
07:18:53.0044 4744 arc - ok
07:18:53.0085 4744 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys
07:18:53.0088 4744 arcsas - ok
07:18:53.0132 4744 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
07:18:53.0134 4744 AsyncMac - ok
07:18:53.0156 4744 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
07:18:53.0158 4744 atapi - ok
07:18:53.0245 4744 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:18:53.0254 4744 AudioEndpointBuilder - ok
07:18:53.0271 4744 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
07:18:53.0275 4744 Audiosrv - ok
07:18:53.0306 4744 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
07:18:53.0309 4744 AxInstSV - ok
07:18:53.0513 4744 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
07:18:53.0526 4744 b06bdrv - ok
07:18:53.0552 4744 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
07:18:53.0567 4744 b57nd60x - ok
07:18:53.0714 4744 [ EB7C2DADF52F50F69F198C14C3556DC1 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
07:18:53.0740 4744 BCM43XX - ok
07:18:53.0796 4744 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
07:18:53.0801 4744 BDESVC - ok
07:18:53.0816 4744 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
07:18:53.0822 4744 Beep - ok
07:18:53.0846 4744 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
07:18:53.0850 4744 blbdrive - ok
07:18:53.0987 4744 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:18:53.0999 4744 Bonjour Service - ok
07:18:54.0071 4744 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
07:18:54.0077 4744 bowser - ok
07:18:54.0116 4744 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
07:18:54.0126 4744 BrFiltLo - ok
07:18:54.0132 4744 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
07:18:54.0135 4744 BrFiltUp - ok
07:18:54.0192 4744 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
07:18:54.0211 4744 Browser - ok
07:18:54.0257 4744 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
07:18:54.0282 4744 Brserid - ok
07:18:54.0304 4744 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
07:18:54.0317 4744 BrSerWdm - ok
07:18:54.0331 4744 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
07:18:54.0334 4744 BrUsbMdm - ok
07:18:54.0341 4744 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
07:18:54.0343 4744 BrUsbSer - ok
07:18:54.0353 4744 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
07:18:54.0355 4744 BTHMODEM - ok
07:18:54.0402 4744 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
07:18:54.0404 4744 bthserv - ok
07:18:54.0441 4744 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
07:18:54.0444 4744 cdfs - ok
07:18:54.0476 4744 cdrom - ok
07:18:54.0525 4744 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
07:18:54.0547 4744 CertPropSvc - ok
07:18:54.0673 4744 [ 57479E5BF0B7B97112354E5ECA8EEFB1 ] cfwids C:\Windows\system32\drivers\cfwids.sys
07:18:54.0678 4744 cfwids - ok
07:18:54.0709 4744 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys
07:18:54.0712 4744 circlass - ok
07:18:54.0740 4744 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
07:18:54.0750 4744 CLFS - ok
07:18:54.0956 4744 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:18:54.0987 4744 clr_optimization_v2.0.50727_32 - ok
07:18:55.0106 4744 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:18:55.0228 4744 clr_optimization_v4.0.30319_32 - ok
07:18:55.0263 4744 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
07:18:55.0265 4744 CmBatt - ok
07:18:55.0281 4744 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
07:18:55.0284 4744 cmdide - ok
07:18:55.0440 4744 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
07:18:55.0461 4744 CNG - ok
07:18:55.0498 4744 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
07:18:55.0504 4744 Compbatt - ok
07:18:55.0516 4744 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
07:18:55.0518 4744 CompositeBus - ok
07:18:55.0535 4744 COMSysApp - ok
07:18:55.0562 4744 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
07:18:55.0564 4744 crcdisk - ok
07:18:55.0651 4744 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
07:18:55.0722 4744 CryptSvc - ok
07:18:55.0775 4744 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
07:18:55.0857 4744 DcomLaunch - ok
07:18:55.0904 4744 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
07:18:55.0914 4744 defragsvc - ok
07:18:55.0962 4744 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
07:18:55.0965 4744 DfsC - ok
07:18:56.0015 4744 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
07:18:56.0021 4744 Dhcp - ok
07:18:56.0039 4744 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
07:18:56.0041 4744 discache - ok
07:18:56.0095 4744 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys
07:18:56.0109 4744 Disk - ok
07:18:56.0142 4744 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:18:56.0150 4744 Dnscache - ok
07:18:56.0204 4744 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
07:18:56.0210 4744 dot3svc - ok
07:18:56.0294 4744 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
07:18:56.0392 4744 DPS - ok
07:18:56.0497 4744 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:18:56.0522 4744 drmkaud - ok
07:18:56.0599 4744 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
07:18:56.0620 4744 DXGKrnl - ok
07:18:56.0708 4744 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
07:18:56.0713 4744 EapHost - ok
07:18:56.0884 4744 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
07:18:56.0964 4744 ebdrv - ok
07:18:57.0008 4744 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
07:18:57.0011 4744 EFS - ok
07:18:57.0098 4744 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
07:18:57.0116 4744 ehRecvr - ok
07:18:57.0137 4744 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
07:18:57.0141 4744 ehSched - ok
07:18:57.0175 4744 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys
07:18:57.0204 4744 elxstor - ok
07:18:57.0306 4744 [ EC6A73CD8413F68655E5E0B99C415A21 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
07:18:57.0313 4744 EPSON_EB_RPCV4_01 - ok
07:18:57.0364 4744 [ 8FE6AB59CAB8F2C038FEA9522A5EEBA7 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
07:18:57.0369 4744 EPSON_PM_RPCV4_01 - ok
07:18:57.0390 4744 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
07:18:57.0393 4744 ErrDev - ok
07:18:57.0465 4744 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
07:18:57.0472 4744 EventSystem - ok
07:18:57.0496 4744 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
07:18:57.0500 4744 exfat - ok
07:18:57.0528 4744 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
07:18:57.0533 4744 fastfat - ok
07:18:57.0598 4744 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
07:18:57.0609 4744 Fax - ok
07:18:57.0665 4744 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\drivers\fdc.sys
07:18:57.0682 4744 fdc - ok
07:18:57.0746 4744 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
07:18:57.0750 4744 fdPHost - ok
07:18:57.0767 4744 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
07:18:57.0770 4744 FDResPub - ok
07:18:57.0786 4744 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
07:18:57.0789 4744 FileInfo - ok
07:18:57.0809 4744 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
07:18:57.0811 4744 Filetrace - ok
07:18:57.0835 4744 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
07:18:57.0837 4744 flpydisk - ok
07:18:57.0860 4744 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:18:57.0865 4744 FltMgr - ok
07:18:57.0948 4744 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
07:18:57.0967 4744 FontCache - ok
07:18:58.0051 4744 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:18:58.0059 4744 FontCache3.0.0.0 - ok
07:18:58.0082 4744 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
07:18:58.0084 4744 FsDepends - ok
07:18:58.0112 4744 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:18:58.0114 4744 Fs_Rec - ok
07:18:58.0153 4744 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
07:18:58.0159 4744 fvevol - ok
07:18:58.0194 4744 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
07:18:58.0203 4744 gagp30kx - ok
07:18:58.0248 4744 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:18:58.0250 4744 GEARAspiWDM - ok
07:18:58.0329 4744 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
07:18:58.0414 4744 gpsvc - ok
07:18:58.0519 4744 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
07:18:58.0795 4744 gupdate - ok
07:18:58.0822 4744 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
07:18:58.0824 4744 gupdatem - ok
07:18:58.0861 4744 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
07:18:58.0865 4744 hcw85cir - ok
07:18:58.0930 4744 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:18:58.0941 4744 HdAudAddService - ok
07:18:58.0970 4744 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
07:18:58.0977 4744 HDAudBus - ok
07:18:59.0002 4744 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
07:18:59.0006 4744 HidBatt - ok
07:18:59.0039 4744 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys
07:18:59.0046 4744 HidBth - ok
07:18:59.0074 4744 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys
07:18:59.0077 4744 HidIr - ok
07:18:59.0118 4744 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
07:18:59.0122 4744 hidserv - ok
07:18:59.0176 4744 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
07:18:59.0310 4744 HidUsb - ok
07:18:59.0431 4744 [ D61E53E3FEC0C92BC8DD3969FAD63F87 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
07:18:59.0438 4744 HipShieldK - ok
07:18:59.0524 4744 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
07:18:59.0532 4744 hkmsvc - ok
07:18:59.0575 4744 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:18:59.0590 4744 HomeGroupListener - ok
07:18:59.0705 4744 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:18:59.0728 4744 HomeGroupProvider - ok
07:18:59.0773 4744 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
07:18:59.0775 4744 HpSAMD - ok
07:18:59.0837 4744 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
07:18:59.0928 4744 HTTP - ok
07:18:59.0949 4744 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
07:18:59.0951 4744 hwpolicy - ok
07:18:59.0987 4744 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
07:18:59.0994 4744 i8042prt - ok
07:19:00.0053 4744 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
07:19:00.0060 4744 iaStorV - ok
07:19:00.0169 4744 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:19:00.0186 4744 idsvc - ok
07:19:00.0463 4744 [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
07:19:00.0750 4744 igfx - ok
07:19:00.0799 4744 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys
07:19:00.0801 4744 iirsp - ok
07:19:00.0873 4744 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
07:19:00.0890 4744 IKEEXT - ok
07:19:00.0917 4744 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
07:19:00.0919 4744 intelide - ok
07:19:00.0952 4744 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
07:19:00.0991 4744 intelppm - ok
07:19:01.0017 4744 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
07:19:01.0021 4744 IPBusEnum - ok
07:19:01.0046 4744 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:19:01.0054 4744 IpFilterDriver - ok
07:19:01.0078 4744 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
07:19:01.0081 4744 IPMIDRV - ok
07:19:01.0103 4744 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
07:19:01.0107 4744 IPNAT - ok
07:19:01.0210 4744 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
07:19:01.0232 4744 iPod Service - ok
07:19:01.0275 4744 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
07:19:01.0278 4744 IRENUM - ok
07:19:01.0308 4744 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:19:01.0316 4744 isapnp - ok
07:19:01.0365 4744 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
07:19:01.0464 4744 iScsiPrt - ok
07:19:01.0497 4744 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
07:19:01.0500 4744 kbdclass - ok
07:19:01.0555 4744 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
07:19:01.0572 4744 kbdhid - ok
07:19:01.0643 4744 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
07:19:01.0647 4744 KeyIso - ok
07:19:01.0718 4744 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
07:19:01.0724 4744 KSecDD - ok
07:19:01.0821 4744 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
07:19:01.0989 4744 KSecPkg - ok
07:19:02.0051 4744 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
07:19:02.0090 4744 KtmRm - ok
07:19:02.0170 4744 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
07:19:02.0181 4744 LanmanServer - ok
07:19:02.0238 4744 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:19:02.0294 4744 LanmanWorkstation - ok
07:19:02.0347 4744 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
07:19:02.0384 4744 lltdio - ok
07:19:02.0501 4744 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
07:19:02.0521 4744 lltdsvc - ok
07:19:02.0536 4744 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
07:19:02.0544 4744 lmhosts - ok
07:19:02.0583 4744 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
07:19:02.0586 4744 LSI_FC - ok
07:19:02.0647 4744 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
07:19:02.0679 4744 LSI_SAS - ok
07:19:02.0786 4744 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
07:19:02.0800 4744 LSI_SAS2 - ok
07:19:02.0838 4744 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
07:19:02.0860 4744 LSI_SCSI - ok
07:19:02.0896 4744 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
07:19:02.0909 4744 luafv - ok
07:19:02.0997 4744 [ B7CA8CC3F978201856B6AB82F40953C3 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
07:19:03.0137 4744 MBAMProtector - ok
07:19:03.0350 4744 [ 2E7367A66A85A552A99EDF4EA753144C ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
07:19:03.0574 4744 MBAMService - ok
07:19:03.0913 4744 [ ECAB006AC6136F1307E140B633CDB8C2 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:19:03.0935 4744 McAfee SiteAdvisor Service - ok
07:19:03.0977 4744 [ ECAB006AC6136F1307E140B633CDB8C2 ] McMPFSvc C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:19:03.0979 4744 McMPFSvc - ok
07:19:03.0991 4744 [ ECAB006AC6136F1307E140B633CDB8C2 ] mcmscsvc C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:19:03.0993 4744 mcmscsvc - ok
07:19:04.0112 4744 [ ECAB006AC6136F1307E140B633CDB8C2 ] McNaiAnn C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:19:04.0114 4744 McNaiAnn - ok
07:19:04.0306 4744 [ ECAB006AC6136F1307E140B633CDB8C2 ] McNASvc C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:19:04.0310 4744 McNASvc - ok
07:19:04.0711 4744 [ C7DA06C9A9AEEFBE37AAC281EA6385D5 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
07:19:04.0718 4744 McODS - ok
07:19:04.0734 4744 [ ECAB006AC6136F1307E140B633CDB8C2 ] McOobeSv C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:19:04.0736 4744 McOobeSv - ok
07:19:04.0793 4744 [ ECAB006AC6136F1307E140B633CDB8C2 ] McProxy C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:19:04.0795 4744 McProxy - ok
07:19:05.0059 4744 [ FDDE814145D01A986A10FE1EA5959B9F ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
07:19:05.0111 4744 McShield - ok
07:19:05.0158 4744 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
07:19:05.0191 4744 Mcx2Svc - ok
07:19:05.0257 4744 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys
07:19:05.0276 4744 megasas - ok
07:19:05.0343 4744 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
07:19:05.0366 4744 MegaSR - ok
07:19:05.0494 4744 [ 449C611308F52932C85468BA0E91B4A7 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
07:19:05.0501 4744 mfeapfk - ok
07:19:05.0554 4744 [ 080C59E365B358551B819836658FDE42 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
07:19:05.0563 4744 mfeavfk - ok
07:19:05.0594 4744 mfeavfk01 - ok
07:19:05.0693 4744 [ 0DBCB0C95196B3D12D550426DB683867 ] mfebopk C:\Windows\system32\drivers\mfebopk.sys
07:19:05.0699 4744 mfebopk - ok
07:19:05.0784 4744 [ D3AA7664DE86FDB2125F48D393A486B3 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
07:19:05.0807 4744 mfefire - ok
07:19:05.0928 4744 [ 8776B9E3DC1F2B0F6BA7CDC66F51B201 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
07:19:06.0065 4744 mfefirek - ok
07:19:06.0140 4744 [ 5702E118D70A9EE95B6A5D9230076EFC ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
07:19:06.0337 4744 mfehidk - ok
07:19:06.0395 4744 [ FAD22AA17DA864C3B56E24603E0F067F ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
07:19:06.0475 4744 mferkdet - ok
07:19:06.0535 4744 [ AB2D7F16A9745C41297752AB07C98F46 ] mfevtp C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
07:19:06.0623 4744 mfevtp - ok
07:19:06.0760 4744 [ B9A785B5137759FEE58837B04FF1DB94 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
07:19:06.0810 4744 mfewfpk - ok
07:19:06.0967 4744 Microsoft SharePoint Workspace Audit Service - ok
07:19:07.0019 4744 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
07:19:07.0024 4744 MMCSS - ok
07:19:07.0062 4744 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
07:19:07.0090 4744 Modem - ok
07:19:07.0130 4744 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
07:19:07.0134 4744 monitor - ok
07:19:07.0182 4744 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
07:19:07.0187 4744 mouclass - ok
07:19:07.0221 4744 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
07:19:07.0236 4744 mouhid - ok
07:19:07.0266 4744 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
07:19:07.0301 4744 mountmgr - ok
07:19:07.0333 4744 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
07:19:07.0337 4744 mpio - ok
07:19:07.0362 4744 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
07:19:07.0364 4744 mpsdrv - ok
07:19:07.0391 4744 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
07:19:07.0394 4744 MRxDAV - ok
07:19:07.0440 4744 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:19:07.0444 4744 mrxsmb - ok
07:19:07.0466 4744 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:19:07.0472 4744 mrxsmb10 - ok
07:19:07.0486 4744 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:19:07.0489 4744 mrxsmb20 - ok
07:19:07.0503 4744 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
07:19:07.0506 4744 msahci - ok
07:19:07.0530 4744 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
07:19:07.0553 4744 msdsm - ok
07:19:07.0655 4744 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
07:19:07.0678 4744 MSDTC - ok
07:19:07.0724 4744 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:19:07.0726 4744 Msfs - ok
07:19:07.0744 4744 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
07:19:07.0746 4744 mshidkmdf - ok
07:19:07.0760 4744 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
07:19:07.0766 4744 msisadrv - ok
07:19:07.0833 4744 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
07:19:07.0839 4744 MSiSCSI - ok
07:19:07.0844 4744 msiserver - ok
07:19:07.0874 4744 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:19:07.0875 4744 MSKSSRV - ok
07:19:07.0891 4744 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:19:07.0893 4744 MSPCLOCK - ok
07:19:07.0910 4744 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:19:07.0911 4744 MSPQM - ok
07:19:07.0945 4744 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
07:19:07.0950 4744 MsRPC - ok
07:19:07.0972 4744 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
07:19:07.0992 4744 mssmbios - ok
07:19:07.0999 4744 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:19:08.0001 4744 MSTEE - ok
07:19:08.0031 4744 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
07:19:08.0035 4744 MTConfig - ok
07:19:08.0083 4744 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
07:19:08.0088 4744 Mup - ok
07:19:08.0142 4744 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
07:19:08.0157 4744 napagent - ok
07:19:08.0222 4744 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
07:19:08.0249 4744 NativeWifiP - ok
07:19:08.0307 4744 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
07:19:08.0463 4744 NDIS - ok
07:19:08.0487 4744 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
07:19:08.0490 4744 NdisCap - ok
07:19:08.0527 4744 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
07:19:08.0529 4744 NdisTapi - ok
07:19:08.0546 4744 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:19:08.0549 4744 Ndisuio - ok
07:19:08.0593 4744 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
07:19:08.0598 4744 NdisWan - ok
07:19:08.0670 4744 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:19:08.0675 4744 NDProxy - ok
07:19:08.0696 4744 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
07:19:08.0724 4744 NetBIOS - ok
07:19:08.0753 4744 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:19:08.0758 4744 NetBT - ok
07:19:08.0776 4744 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
07:19:08.0778 4744 Netlogon - ok
07:19:08.0823 4744 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
07:19:08.0830 4744 Netman - ok
07:19:08.0956 4744 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
07:19:08.0965 4744 netprofm - ok
07:19:09.0000 4744 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:19:09.0003 4744 NetTcpPortSharing - ok
07:19:09.0037 4744 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
07:19:09.0040 4744 nfrd960 - ok
07:19:09.0165 4744 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
07:19:09.0177 4744 NlaSvc - ok
07:19:09.0194 4744 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:19:09.0196 4744 Npfs - ok
07:19:09.0248 4744 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
07:19:09.0268 4744 nsi - ok
07:19:09.0294 4744 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
07:19:09.0298 4744 nsiproxy - ok
07:19:09.0421 4744 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:19:09.0443 4744 Ntfs - ok
07:19:09.0459 4744 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
07:19:09.0462 4744 Null - ok
07:19:09.0496 4744 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
07:19:09.0512 4744 nvraid - ok
07:19:09.0587 4744 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
07:19:09.0599 4744 nvstor - ok
07:19:09.0697 4744 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
07:19:09.0713 4744 nv_agp - ok
07:19:09.0970 4744 [ 19CAC780B858822055F46C58A111723C ] OEM02Dev C:\Windows\system32\DRIVERS\OEM02Dev.sys
07:19:09.0992 4744 OEM02Dev - ok
07:19:10.0104 4744 [ 86326062A90494BDD79CE383511D7D69 ] OEM02Vfx C:\Windows\system32\DRIVERS\OEM02Vfx.sys
07:19:10.0125 4744 OEM02Vfx - ok
07:19:10.0212 4744 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
07:19:10.0238 4744 ohci1394 - ok
07:19:10.0857 4744 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:19:10.0953 4744 ose - ok
07:19:13.0446 4744 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:19:14.0480 4744 osppsvc - ok
07:19:14.0563 4744 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
07:19:14.0580 4744 p2pimsvc - ok
07:19:14.0749 4744 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
07:19:14.0808 4744 p2psvc - ok
07:19:14.0858 4744 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\drivers\parport.sys
07:19:14.0892 4744 Parport - ok
07:19:14.0933 4744 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
07:19:14.0973 4744 partmgr - ok
07:19:15.0016 4744 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\drivers\parvdm.sys
07:19:15.0042 4744 Parvdm - ok
07:19:15.0077 4744 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
07:19:15.0100 4744 PcaSvc - ok
07:19:15.0194 4744 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
07:19:15.0215 4744 pci - ok
07:19:15.0249 4744 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
07:19:15.0317 4744 pciide - ok
07:19:15.0372 4744 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
07:19:15.0396 4744 pcmcia - ok
07:19:15.0479 4744 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
07:19:15.0495 4744 pcw - ok
07:19:15.0617 4744 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
07:19:15.0642 4744 PEAUTH - ok
07:19:16.0015 4744 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
07:19:16.0075 4744 pla - ok
07:19:16.0464 4744 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
07:19:16.0649 4744 PlugPlay - ok
07:19:16.0729 4744 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
07:19:16.0801 4744 PNRPAutoReg - ok
07:19:16.0991 4744 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
07:19:17.0000 4744 PNRPsvc - ok
07:19:17.0176 4744 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
07:19:17.0249 4744 PolicyAgent - ok
07:19:17.0349 4744 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
07:19:17.0423 4744 Power - ok
07:19:17.0511 4744 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
07:19:17.0583 4744 PptpMiniport - ok
07:19:17.0670 4744 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\drivers\processr.sys
07:19:17.0687 4744 Processor - ok
07:19:17.0817 4744 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
07:19:17.0895 4744 ProfSvc - ok
07:19:17.0964 4744 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:19:17.0969 4744 ProtectedStorage - ok
07:19:18.0048 4744 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
07:19:18.0075 4744 Psched - ok
07:19:18.0391 4744 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
07:19:18.0447 4744 ql2300 - ok
07:19:18.0477 4744 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
07:19:18.0489 4744 ql40xx - ok
07:19:18.0573 4744 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
07:19:18.0586 4744 QWAVE - ok
07:19:18.0625 4744 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
07:19:18.0640 4744 QWAVEdrv - ok
07:19:18.0696 4744 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:19:18.0714 4744 RasAcd - ok
07:19:18.0797 4744 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
07:19:18.0824 4744 RasAgileVpn - ok
07:19:18.0901 4744 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
07:19:18.0918 4744 RasAuto - ok
07:19:19.0011 4744 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
07:19:19.0051 4744 Rasl2tp - ok
07:19:19.0269 4744 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
07:19:19.0365 4744 RasMan - ok
07:19:19.0440 4744 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
07:19:19.0469 4744 RasPppoe - ok
07:19:19.0577 4744 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
07:19:19.0596 4744 RasSstp - ok
07:19:19.0710 4744 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:19:19.0729 4744 rdbss - ok
07:19:19.0771 4744 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
07:19:19.0872 4744 rdpbus - ok
07:19:19.0934 4744 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:19:19.0958 4744 RDPCDD - ok
07:19:20.0080 4744 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
07:19:20.0092 4744 RDPENCDD - ok
07:19:20.0126 4744 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
07:19:20.0204 4744 RDPREFMP - ok
07:19:20.0445 4744 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:19:20.0460 4744 RDPWD - ok
07:19:20.0597 4744 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
07:19:20.0607 4744 rdyboost - ok
07:19:20.0758 4744 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
07:19:20.0790 4744 RemoteAccess - ok
07:19:20.0837 4744 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:19:20.0868 4744 RemoteRegistry - ok
07:19:21.0032 4744 [ 6C1F93C0760C9F79A1869D07233DF39D ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
07:19:21.0052 4744 rismxdp - ok
07:19:21.0127 4744 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
07:19:21.0180 4744 RpcEptMapper - ok
07:19:21.0214 4744 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
07:19:21.0229 4744 RpcLocator - ok
07:19:21.0365 4744 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
07:19:21.0376 4744 RpcSs - ok
07:19:21.0441 4744 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
07:19:21.0460 4744 rspndr - ok
07:19:21.0487 4744 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
07:19:21.0490 4744 SamSs - ok
07:19:21.0527 4744 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
07:19:21.0531 4744 sbp2port - ok
07:19:21.0581 4744 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
07:19:21.0594 4744 SCardSvr - ok
07:19:21.0659 4744 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
07:19:21.0678 4744 scfilter - ok
07:19:21.0810 4744 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
07:19:21.0874 4744 Schedule - ok
07:19:21.0904 4744 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
07:19:21.0906 4744 SCPolicySvc - ok
07:19:21.0960 4744 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
07:19:21.0971 4744 sdbus - ok
07:19:22.0155 4744 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
07:19:22.0183 4744 SDRSVC - ok
07:19:22.0249 4744 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
07:19:22.0279 4744 secdrv - ok
07:19:22.0323 4744 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
07:19:22.0330 4744 seclogon - ok
07:19:22.0402 4744 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
07:19:22.0458 4744 SENS - ok
07:19:22.0544 4744 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
07:19:22.0552 4744 SensrSvc - ok
07:19:22.0575 4744 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\drivers\serenum.sys
07:19:22.0582 4744 Serenum - ok
07:19:22.0644 4744 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\drivers\serial.sys
07:19:22.0653 4744 Serial - ok
07:19:22.0676 4744 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\drivers\sermouse.sys
07:19:22.0682 4744 sermouse - ok
07:19:22.0719 4744 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
07:19:22.0767 4744 SessionEnv - ok
07:19:22.0784 4744 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
07:19:22.0786 4744 sffdisk - ok
07:19:22.0803 4744 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
07:19:22.0814 4744 sffp_mmc - ok
07:19:22.0832 4744 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
07:19:22.0894 4744 sffp_sd - ok
07:19:22.0916 4744 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
07:19:22.0930 4744 sfloppy - ok
07:19:22.0992 4744 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:19:23.0001 4744 ShellHWDetection - ok
07:19:23.0020 4744 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
07:19:23.0023 4744 sisagp - ok
07:19:23.0061 4744 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
07:19:23.0064 4744 SiSRaid2 - ok
07:19:23.0084 4744 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
07:19:23.0098 4744 SiSRaid4 - ok
07:19:23.0349 4744 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
07:19:23.0441 4744 Skype C2C Service - ok
07:19:23.0566 4744 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
07:19:32.0479 4744 SkypeUpdate - ok
07:19:32.0772 4744 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
07:19:32.0845 4744 Smb - ok
07:19:33.0109 4744 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
07:19:33.0117 4744 SNMPTRAP - ok
07:19:33.0131 4744 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
07:19:33.0134 4744 spldr - ok
07:19:33.0249 4744 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
07:19:33.0258 4744 Spooler - ok
07:19:33.0528 4744 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
07:19:33.0580 4744 sppsvc - ok
07:19:33.0657 4744 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
07:19:33.0663 4744 sppuinotify - ok
07:19:33.0708 4744 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
07:19:33.0830 4744 srv - ok
07:19:33.0864 4744 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
07:19:33.0879 4744 srv2 - ok
07:19:33.0942 4744 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
07:19:33.0948 4744 SrvHsfHDA - ok
07:19:34.0037 4744 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
07:19:34.0054 4744 SrvHsfV92 - ok
07:19:34.0176 4744 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
07:19:34.0190 4744 SrvHsfWinac - ok
07:19:34.0206 4744 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
07:19:34.0210 4744 srvnet - ok
07:19:34.0249 4744 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:19:34.0255 4744 SSDPSRV - ok
07:19:34.0280 4744 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
07:19:34.0285 4744 SstpSvc - ok
07:19:34.0318 4744 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\drivers\stexstor.sys
07:19:34.0325 4744 stexstor - ok
07:19:34.0407 4744 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
07:19:34.0419 4744 StiSvc - ok
07:19:34.0433 4744 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
07:19:34.0439 4744 swenum - ok
07:19:34.0492 4744 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
07:19:34.0507 4744 swprv - ok
07:19:34.0598 4744 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
07:19:34.0621 4744 SysMain - ok
07:19:34.0716 4744 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:19:34.0723 4744 TabletInputService - ok
07:19:34.0748 4744 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
07:19:34.0756 4744 TapiSrv - ok
07:19:34.0773 4744 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
07:19:34.0777 4744 TBS - ok
07:19:34.0943 4744 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
07:19:34.0971 4744 Tcpip - ok
07:19:35.0035 4744 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
07:19:35.0054 4744 TCPIP6 - ok
07:19:35.0119 4744 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
07:19:35.0129 4744 tcpipreg - ok
07:19:35.0176 4744 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
07:19:35.0179 4744 TDPIPE - ok
07:19:35.0218 4744 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
07:19:35.0221 4744 TDTCP - ok
07:19:35.0249 4744 [ 3EEC2A099933A7697A0A313FFBCDE764 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
07:19:35.0253 4744 Suspicious file (Forged): C:\Windows\system32\DRIVERS\tdx.sys. Real md5: 3EEC2A099933A7697A0A313FFBCDE764, Fake md5: B459575348C20E8121D6039DA063C704
07:19:35.0253 4744 tdx ( Virus.Win32.ZAccess.aml ) - infected
07:19:35.0253 4744 tdx - detected Virus.Win32.ZAccess.aml (0)
07:19:35.0273 4744 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
07:19:35.0276 4744 TermDD - ok
07:19:35.0342 4744 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
07:19:35.0354 4744 TermService - ok
07:19:35.0373 4744 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
07:19:35.0377 4744 Themes - ok
07:19:35.0396 4744 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
07:19:35.0398 4744 THREADORDER - ok
07:19:35.0472 4744 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
07:19:35.0477 4744 TrkWks - ok
07:19:35.0558 4744 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:19:35.0568 4744 TrustedInstaller - ok
07:19:35.0649 4744 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
07:19:35.0651 4744 tssecsrv - ok
07:19:35.0663 4744 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
07:19:35.0679 4744 TsUsbFlt - ok
07:19:35.0700 4744 [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
07:19:35.0703 4744 TsUsbGD - ok
07:19:35.0765 4744 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
07:19:35.0768 4744 tunnel - ok
07:19:35.0788 4744 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
07:19:35.0793 4744 uagp35 - ok
07:19:35.0823 4744 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
07:19:35.0890 4744 udfs - ok
07:19:35.0937 4744 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
07:19:35.0950 4744 UI0Detect - ok
07:19:36.0027 4744 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
07:19:36.0030 4744 uliagpkx - ok
07:19:36.0059 4744 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
07:19:36.0062 4744 umbus - ok
07:19:36.0069 4744 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\drivers\umpass.sys
07:19:36.0075 4744 UmPass - ok
07:19:36.0163 4744 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
07:19:36.0176 4744 upnphost - ok
07:19:36.0274 4744 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
07:19:36.0319 4744 USBAAPL - ok
07:19:36.0404 4744 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
07:19:36.0409 4744 usbccgp - ok
07:19:36.0462 4744 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
07:19:36.0485 4744 usbcir - ok
07:19:36.0523 4744 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
07:19:36.0526 4744 usbehci - ok
07:19:36.0569 4744 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
07:19:36.0575 4744 usbhub - ok
07:19:36.0620 4744 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
07:19:36.0622 4744 usbohci - ok
07:19:36.0691 4744 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
07:19:36.0707 4744 usbprint - ok
07:19:36.0785 4744 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
07:19:36.0799 4744 usbscan - ok
07:19:36.0843 4744 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:19:36.0898 4744 USBSTOR - ok
07:19:36.0927 4744 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
07:19:36.0947 4744 usbuhci - ok
07:19:37.0266 4744 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
07:19:37.0301 4744 usbvideo - ok
07:19:37.0372 4744 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
07:19:37.0384 4744 UxSms - ok
07:19:37.0442 4744 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
07:19:37.0444 4744 VaultSvc - ok
07:19:37.0579 4744 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
07:19:37.0597 4744 vdrvroot - ok
07:19:37.0783 4744 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
07:19:37.0798 4744 vds - ok
07:19:37.0928 4744 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
07:19:37.0930 4744 vga - ok
07:19:37.0981 4744 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
07:19:38.0003 4744 VgaSave - ok
07:19:38.0069 4744 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
07:19:38.0075 4744 vhdmp - ok
07:19:38.0438 4744 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
07:19:38.0467 4744 viaagp - ok
07:19:38.0512 4744 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
07:19:38.0515 4744 ViaC7 - ok
07:19:38.0541 4744 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
07:19:38.0544 4744 viaide - ok
07:19:38.0564 4744 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
07:19:38.0567 4744 volmgr - ok
07:19:38.0659 4744 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
07:19:38.0678 4744 volmgrx - ok
07:19:38.0702 4744 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
07:19:38.0708 4744 volsnap - ok
07:19:38.0760 4744 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
07:19:38.0765 4744 vsmraid - ok
07:19:38.0821 4744 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
07:19:38.0841 4744 VSS - ok
07:19:38.0865 4744 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
07:19:38.0868 4744 vwifibus - ok
07:19:38.0884 4744 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
07:19:38.0886 4744 vwififlt - ok
07:19:38.0912 4744 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
07:19:38.0920 4744 W32Time - ok
07:19:38.0948 4744 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
07:19:38.0954 4744 WacomPen - ok
07:19:38.0981 4744 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
07:19:38.0984 4744 WANARP - ok
07:19:38.0989 4744 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
07:19:38.0991 4744 Wanarpv6 - ok
07:19:39.0132 4744 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
07:19:39.0161 4744 WatAdminSvc - ok
07:19:39.0258 4744 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
07:19:39.0409 4744 wbengine - ok
07:19:39.0442 4744 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
07:19:39.0448 4744 WbioSrvc - ok
07:19:39.0532 4744 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
07:19:39.0540 4744 wcncsvc - ok
07:19:39.0588 4744 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:19:39.0594 4744 WcsPlugInService - ok
07:19:39.0683 4744 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\drivers\wd.sys
07:19:39.0687 4744 Wd - ok
07:19:39.0802 4744 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
07:19:39.0816 4744 Wdf01000 - ok
07:19:39.0844 4744 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
07:19:39.0848 4744 WdiServiceHost - ok
07:19:39.0854 4744 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
07:19:39.0858 4744 WdiSystemHost - ok
07:19:39.0884 4744 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
07:19:39.0891 4744 WebClient - ok
07:19:40.0046 4744 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
07:19:40.0064 4744 Wecsvc - ok
07:19:40.0134 4744 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
07:19:40.0149 4744 wercplsupport - ok
07:19:40.0197 4744 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
07:19:40.0202 4744 WerSvc - ok
07:19:40.0367 4744 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
07:19:40.0369 4744 WfpLwf - ok
07:19:40.0400 4744 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
07:19:40.0413 4744 WIMMount - ok
07:19:40.0427 4744 WinHttpAutoProxySvc - ok
07:19:40.0546 4744 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
07:19:40.0558 4744 Winmgmt - ok
07:19:40.0764 4744 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
07:19:40.0812 4744 WinRM - ok
07:19:40.0975 4744 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
07:19:40.0977 4744 WinUsb - ok
07:19:41.0052 4744 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
07:19:41.0078 4744 Wlansvc - ok
07:19:41.0251 4744 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
07:19:41.0272 4744 wlcrasvc - ok
07:19:41.0492 4744 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
07:19:41.0523 4744 wlidsvc - ok
07:19:41.0580 4744 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
07:19:41.0597 4744 WmiAcpi - ok
07:19:41.0692 4744 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
07:19:41.0700 4744 wmiApSrv - ok
07:19:41.0837 4744 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
07:19:41.0860 4744 WMPNetworkSvc - ok
07:19:41.0915 4744 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
07:19:41.0919 4744 WPCSvc - ok
07:19:41.0943 4744 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
07:19:41.0948 4744 WPDBusEnum - ok
07:19:41.0999 4744 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
07:19:42.0003 4744 ws2ifsl - ok
07:19:42.0009 4744 WSearch - ok
07:19:42.0114 4744 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
07:19:42.0117 4744 WudfPf - ok
07:19:42.0179 4744 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
07:19:42.0247 4744 WUDFRd - ok
07:19:42.0294 4744 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
07:19:42.0373 4744 wudfsvc - ok
07:19:42.0423 4744 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
07:19:42.0429 4744 WwanSvc - ok
07:19:42.0494 4744 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
07:19:42.0550 4744 yukonw7 - ok
07:19:42.0584 4744 ================ Scan global ===============================
07:19:42.0655 4744 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
07:19:42.0706 4744 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
07:19:42.0742 4744 [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
07:19:42.0797 4744 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
07:19:42.0913 4744 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
07:19:42.0923 4744 [Global] - ok
07:19:42.0923 4744 ================ Scan MBR ==================================
07:19:42.0940 4744 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:19:44.0240 4744 \Device\Harddisk0\DR0 - ok
07:19:44.0241 4744 ================ Scan VBR ==================================
07:19:44.0312 4744 [ A929AF4863A5F1AB84A9C4C46817FB5B ] \Device\Harddisk0\DR0\Partition1
07:19:44.0355 4744 \Device\Harddisk0\DR0\Partition1 - ok
07:19:44.0388 4744 [ C42A9D40292CCD1686731D5D5EC19DBF ] \Device\Harddisk0\DR0\Partition2
07:19:44.0399 4744 \Device\Harddisk0\DR0\Partition2 - ok
07:19:44.0401 4744 ============================================================
07:19:44.0401 4744 Scan finished
07:19:44.0401 4744 ============================================================
07:19:44.0414 4732 Detected object count: 1
07:19:44.0414 4732 Actual detected object count: 1
07:20:09.0108 4732 C:\Windows\system32\DRIVERS\tdx.sys - copied to quarantine
07:20:13.0760 4732 C:\Windows\$NtUninstallKB32557$\2990460179\@ - copied to quarantine
07:20:13.0814 4732 C:\Windows\$NtUninstallKB32557$\2990460179\Desktop.ini - copied to quarantine
07:20:13.0845 4732 C:\Windows\$NtUninstallKB32557$\2990460179\L\00000004.@ - copied to quarantine
07:20:13.0852 4732 C:\Windows\$NtUninstallKB32557$\2990460179\L\201d3dde - copied to quarantine
07:20:13.0885 4732 C:\Windows\$NtUninstallKB32557$\2990460179\L\xadqgnnk - copied to quarantine
07:20:13.0913 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\00000004.@ - copied to quarantine
07:20:13.0940 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\00000008.@ - copied to quarantine
07:20:13.0943 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\000000cb.@ - copied to quarantine
07:20:13.0956 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\80000000.@ - copied to quarantine
07:20:13.0983 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\80000032.@ - copied to quarantine
07:20:40.0804 4732 Backup copy found, using it..
07:20:40.0993 4732 C:\Windows\system32\DRIVERS\tdx.sys - will be cured on reboot
07:20:49.0718 4732 C:\Windows\$NtUninstallKB32557$\2111948146 - will be deleted on reboot
07:20:49.0778 4732 C:\Windows\$NtUninstallKB32557$\2990460179\@ - will be deleted on reboot
07:20:49.0878 4732 C:\Windows\$NtUninstallKB32557$\2990460179\Desktop.ini - will be deleted on reboot
07:20:50.0029 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\00000004.@ - will be deleted on reboot
07:20:50.0236 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\00000008.@ - will be deleted on reboot
07:20:50.0258 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\000000cb.@ - will be deleted on reboot
07:20:50.0307 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\80000000.@ - will be deleted on reboot
07:20:50.0407 4732 C:\Windows\$NtUninstallKB32557$\2990460179\U\80000032.@ - will be deleted on reboot
07:20:50.0692 4732 tdx ( Virus.Win32.ZAccess.aml ) - User select action: Cure

#10 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 06 February 2013 - 03:06 AM

Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.07.13

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
User 1 :: USER1-PC [administrator]

06/02/2013 07:46:28
mbam-log-2013-02-06 (07-46-28).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 210199
Time elapsed: 11 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#11 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 06 February 2013 - 03:36 AM

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/06/2013 at 08:29 AM

Application Version : 5.6.1014

Core Rules Database Version : 9976
Trace Rules Database Version: 7788

Scan type : Quick Scan
Total Scan Time : 00:17:13

Operating System Information
Windows 7 Home Premium 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned : 642
Memory threats detected : 0
Registry items scanned : 30458
Registry threats detected : 0
File items scanned : 10423
File threats detected : 99

Adware.Tracking Cookie
C:\Users\User 1\AppData\Roaming\Microsoft\Windows\Cookies\ZA0HKIEG.txt [ /ad.yieldmanager.com ]
C:\Users\User 1\AppData\Roaming\Microsoft\Windows\Cookies\TA3INJOQ.txt [ /doubleclick.net ]
C:\USERS\USER 1\AppData\Roaming\Microsoft\Windows\Cookies\Low\DJLJ0PX5.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\AppData\Roaming\Microsoft\Windows\Cookies\Low\ASB2QN5F.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\AppData\Roaming\Microsoft\Windows\Cookies\Low\S7SG4MGB.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\AppData\Roaming\Microsoft\Windows\Cookies\Low\QEEIGPI9.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\AppData\Roaming\Microsoft\Windows\Cookies\Low\EKMZA5CN.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\AppData\Roaming\Microsoft\Windows\Cookies\Low\E5Q2TMXC.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\AppData\Roaming\Microsoft\Windows\Cookies\Low\SHQ5OO0C.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\Cookies\ZA0HKIEG.txt [ Cookie:user [email protected]/ ]
C:\USERS\USER 1\Cookies\TA3INJOQ.txt [ Cookie:user [email protected]/ ]
.doubleclick.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adknowledge.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adknowledge.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adknowledge.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adknowledge.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
click.searchwebresults.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
click.searchwebresults.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.adform.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
rts.pgmediaserve.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
rts.pgmediaserve.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
rts.pgmediaserve.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.www.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.partypoker.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediatraffic.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
click01.mivaadcenter.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c.atdmt.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c.atdmt.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediatraffic.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tribalfusion.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.kontera.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.virginmedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\USER 1\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

#12 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 06 February 2013 - 12:55 PM

C:\TDSSKiller_Quarantine\06.02.2013_07.16.35\rtkt0000\svc0000\tsk0000.dta a variant of Win32/Rootkit.Kryptik.SL trojan cleaned by deleting - quarantined

#13 InadequateInfirmity

InadequateInfirmity

  • Members
  • 2,826 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:06 AM

Posted 06 February 2013 - 07:12 PM

C:\TDSSKiller_Quarantine\06.02.2013_07.16.35\rtkt0000\svc0000\tsk0000.dta a variant of Win32/Rootkit.Kryptik.SL trojan cleaned by deleting - quarantined




Re-run tdsskiller post the new log.


Download Autoruns and Autorunsc
http://download.sysinternals.com/files/Autoruns.zip
Unzip it to your desktop and then double click autoruns.exe After the scan is finished then click on File>>>>>>>>>>>Save The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option. in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.

Download and save Rkill to your desktop right click it run it as admin.Post the log.
http://www.bleepingcomputer.com/download/rkill/

Edited by InadequateInfirmity, 06 February 2013 - 07:13 PM.

What happens when you press Alt + F4 at the same time?

#14 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 08 February 2013 - 11:47 AM

16:43:13.0914 4256  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:43:14.0211 4256  ============================================================
16:43:14.0211 4256  Current date / time: 2013/02/08 16:43:14.0211
16:43:14.0211 4256  SystemInfo:
16:43:14.0211 4256  
16:43:14.0211 4256  OS Version: 6.1.7601 ServicePack: 1.0
16:43:14.0211 4256  Product type: Workstation
16:43:14.0211 4256  ComputerName: USER1-PC
16:43:14.0211 4256  UserName: User 1
16:43:14.0211 4256  Windows directory: C:\Windows
16:43:14.0211 4256  System windows directory: C:\Windows
16:43:14.0211 4256  Processor architecture: Intel x86
16:43:14.0211 4256  Number of processors: 2
16:43:14.0212 4256  Page size: 0x1000
16:43:14.0212 4256  Boot type: Normal boot
16:43:14.0212 4256  ============================================================
16:43:53.0210 4256  Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 (55.89 Gb), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:43:53.0230 4256  ============================================================
16:43:53.0230 4256  \Device\Harddisk0\DR0:
16:43:53.0252 4256  MBR partitions:
16:43:53.0252 4256  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:43:53.0252 4256  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6F94800
16:43:53.0252 4256  ============================================================
16:43:53.0519 4256  C: <-> \Device\Harddisk0\DR0\Partition2
16:43:53.0620 4256  ============================================================
16:43:53.0620 4256  Initialize success
16:43:53.0620 4256  ============================================================
16:44:45.0236 0884  ============================================================
16:44:45.0236 0884  Scan started
16:44:45.0236 0884  Mode: Manual; TDLFS; 
16:44:45.0236 0884  ============================================================
16:44:46.0868 0884  ================ Scan system memory ========================
16:44:46.0869 0884  System memory - ok
16:44:46.0870 0884  ================ Scan services =============================
16:44:47.0080 0884  [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
16:44:47.0111 0884  !SASCORE - ok
16:44:47.0118 0884  .cdrom - ok
16:44:49.0123 0884  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
16:44:49.0152 0884  1394ohci - ok
16:44:49.0272 0884  [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:44:49.0281 0884  ACPI - ok
16:44:49.0324 0884  [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:44:49.0345 0884  AcpiPmi - ok
16:44:49.0422 0884  [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:44:49.0459 0884  AdobeFlashPlayerUpdateSvc - ok
16:44:49.0505 0884  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:44:49.0620 0884  adp94xx - ok
16:44:49.0652 0884  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:44:49.0701 0884  adpahci - ok
16:44:49.0728 0884  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:44:49.0752 0884  adpu320 - ok
16:44:49.0801 0884  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:44:49.0862 0884  AeLookupSvc - ok
16:44:50.0107 0884  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD             C:\Windows\system32\drivers\afd.sys
16:44:50.0150 0884  AFD - ok
16:44:50.0238 0884  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\drivers\agp440.sys
16:44:50.0303 0884  agp440 - ok
16:44:50.0516 0884  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
16:44:50.0562 0884  aic78xx - ok
16:44:50.0703 0884  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG             C:\Windows\System32\alg.exe
16:44:50.0742 0884  ALG - ok
16:44:50.0851 0884  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:44:50.0895 0884  aliide - ok
16:44:50.0943 0884  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
16:44:50.0955 0884  amdagp - ok
16:44:50.0991 0884  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:44:51.0006 0884  amdide - ok
16:44:51.0079 0884  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:44:51.0102 0884  AmdK8 - ok
16:44:51.0109 0884  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:44:51.0123 0884  AmdPPM - ok
16:44:51.0178 0884  [ D320BF87125326F996D4904FE24300FC ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:44:51.0197 0884  amdsata - ok
16:44:51.0219 0884  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:44:51.0243 0884  amdsbs - ok
16:44:51.0263 0884  [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:44:51.0278 0884  amdxata - ok
16:44:51.0321 0884  [ AEA177F783E20150ACE5383EE368DA19 ] AppID           C:\Windows\system32\drivers\appid.sys
16:44:51.0339 0884  AppID - ok
16:44:51.0384 0884  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:44:51.0420 0884  AppIDSvc - ok
16:44:51.0459 0884  [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo         C:\Windows\System32\appinfo.dll
16:44:51.0462 0884  Appinfo - ok
16:44:51.0737 0884  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:44:51.0744 0884  Apple Mobile Device - ok
16:44:51.0780 0884  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc             C:\Windows\system32\drivers\arc.sys
16:44:51.0803 0884  arc - ok
16:44:51.0822 0884  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:44:51.0861 0884  arcsas - ok
16:44:51.0891 0884  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:44:51.0893 0884  AsyncMac - ok
16:44:51.0902 0884  [ 338C86357871C167A96AB976519BF59E ] atapi           C:\Windows\system32\drivers\atapi.sys
16:44:51.0904 0884  atapi - ok
16:44:51.0937 0884  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:44:51.0947 0884  AudioEndpointBuilder - ok
16:44:52.0027 0884  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:44:52.0085 0884  Audiosrv - ok
16:44:52.0300 0884  [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:44:52.0330 0884  AxInstSV - ok
16:44:52.0440 0884  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
16:44:52.0504 0884  b06bdrv - ok
16:44:52.0811 0884  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
16:44:52.0861 0884  b57nd60x - ok
16:44:53.0118 0884  [ EB7C2DADF52F50F69F198C14C3556DC1 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys
16:44:53.0164 0884  BCM43XX - ok
16:44:53.0300 0884  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:44:53.0342 0884  BDESVC - ok
16:44:53.0398 0884  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:44:53.0455 0884  Beep - ok
16:44:53.0507 0884  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:44:53.0539 0884  blbdrive - ok
16:44:53.0747 0884  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:44:53.0773 0884  Bonjour Service - ok
16:44:53.0854 0884  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:44:53.0879 0884  bowser - ok
16:44:53.0928 0884  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:44:53.0958 0884  BrFiltLo - ok
16:44:53.0966 0884  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:44:53.0984 0884  BrFiltUp - ok
16:44:54.0030 0884  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser         C:\Windows\System32\browser.dll
16:44:54.0034 0884  Browser - ok
16:44:54.0060 0884  [ 845B8CE732E67F3B4133164868C666EA ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:44:54.0080 0884  Brserid - ok
16:44:54.0104 0884  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:44:54.0122 0884  BrSerWdm - ok
16:44:54.0133 0884  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:44:54.0147 0884  BrUsbMdm - ok
16:44:54.0176 0884  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:44:54.0213 0884  BrUsbSer - ok
16:44:54.0228 0884  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:44:54.0288 0884  BTHMODEM - ok
16:44:54.0385 0884  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv         C:\Windows\system32\bthserv.dll
16:44:54.0401 0884  bthserv - ok
16:44:54.0446 0884  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:44:54.0479 0884  cdfs - ok
16:44:54.0606 0884  cdrom - ok
16:44:54.0841 0884  [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:44:54.0972 0884  CertPropSvc - ok
16:44:55.0078 0884  [ 57479E5BF0B7B97112354E5ECA8EEFB1 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
16:44:55.0126 0884  cfwids - ok
16:44:55.0169 0884  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\drivers\circlass.sys
16:44:55.0183 0884  circlass - ok
16:44:55.0323 0884  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
16:44:55.0358 0884  CLFS - ok
16:44:55.0639 0884  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:44:55.0687 0884  clr_optimization_v2.0.50727_32 - ok
16:44:55.0811 0884  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:44:55.0999 0884  clr_optimization_v4.0.30319_32 - ok
16:44:56.0023 0884  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:44:56.0051 0884  CmBatt - ok
16:44:56.0086 0884  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:44:56.0102 0884  cmdide - ok
16:44:56.0278 0884  [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:44:56.0503 0884  CNG - ok
16:44:56.0592 0884  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:44:56.0641 0884  Compbatt - ok
16:44:56.0665 0884  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:44:56.0675 0884  CompositeBus - ok
16:44:56.0705 0884  COMSysApp - ok
16:44:56.0766 0884  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:44:56.0799 0884  crcdisk - ok
16:44:57.0047 0884  [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:44:57.0097 0884  CryptSvc - ok
16:44:57.0200 0884  [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:44:57.0368 0884  DcomLaunch - ok
16:44:57.0497 0884  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:44:57.0613 0884  defragsvc - ok
16:44:57.0711 0884  [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:44:57.0738 0884  DfsC - ok
16:44:57.0831 0884  [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:44:57.0847 0884  Dhcp - ok
16:44:57.0888 0884  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
16:44:57.0916 0884  discache - ok
16:44:58.0044 0884  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\drivers\disk.sys
16:44:58.0105 0884  Disk - ok
16:44:58.0147 0884  [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:44:58.0151 0884  Dnscache - ok
16:44:58.0275 0884  [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:44:58.0316 0884  dot3svc - ok
16:44:58.0373 0884  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS             C:\Windows\system32\dps.dll
16:44:58.0417 0884  DPS - ok
16:44:58.0512 0884  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:44:58.0546 0884  drmkaud - ok
16:44:58.0843 0884  [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:44:58.0892 0884  DXGKrnl - ok
16:44:58.0968 0884  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost         C:\Windows\System32\eapsvc.dll
16:44:58.0988 0884  EapHost - ok
16:44:59.0656 0884  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
16:44:59.0793 0884  ebdrv - ok
16:44:59.0835 0884  [ 81951F51E318AECC2D68559E47485CC4 ] EFS             C:\Windows\System32\lsass.exe
16:44:59.0863 0884  EFS - ok
16:45:00.0114 0884  [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:45:00.0164 0884  ehRecvr - ok
16:45:00.0197 0884  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched         C:\Windows\ehome\ehsched.exe
16:45:00.0249 0884  ehSched - ok
16:45:00.0349 0884  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:45:00.0418 0884  elxstor - ok
16:45:00.0724 0884  [ EC6A73CD8413F68655E5E0B99C415A21 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
16:45:00.0750 0884  EPSON_EB_RPCV4_01 - ok
16:45:01.0191 0884  [ 8FE6AB59CAB8F2C038FEA9522A5EEBA7 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
16:45:01.0318 0884  EPSON_PM_RPCV4_01 - ok
16:45:01.0373 0884  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:45:01.0459 0884  ErrDev - ok
16:45:01.0782 0884  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem     C:\Windows\system32\es.dll
16:45:01.0809 0884  EventSystem - ok
16:45:01.0889 0884  [ 2DC9108D74081149CC8B651D3A26207F ] exfat           C:\Windows\system32\drivers\exfat.sys
16:45:01.0992 0884  exfat - ok
16:45:02.0033 0884  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:45:02.0097 0884  fastfat - ok
16:45:02.0228 0884  [ 967EA5B213E9984CBE270205DF37755B ] Fax             C:\Windows\system32\fxssvc.exe
16:45:02.0258 0884  Fax - ok
16:45:02.0292 0884  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc             C:\Windows\system32\drivers\fdc.sys
16:45:02.0308 0884  fdc - ok
16:45:02.0350 0884  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost         C:\Windows\system32\fdPHost.dll
16:45:02.0371 0884  fdPHost - ok
16:45:02.0405 0884  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
16:45:02.0410 0884  FDResPub - ok
16:45:02.0469 0884  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:45:02.0535 0884  FileInfo - ok
16:45:02.0569 0884  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:45:02.0585 0884  Filetrace - ok
16:45:02.0606 0884  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:45:02.0617 0884  flpydisk - ok
16:45:02.0654 0884  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:45:02.0670 0884  FltMgr - ok
16:45:02.0764 0884  [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache       C:\Windows\system32\FntCache.dll
16:45:02.0788 0884  FontCache - ok
16:45:02.0999 0884  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:45:03.0034 0884  FontCache3.0.0.0 - ok
16:45:03.0064 0884  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:45:03.0079 0884  FsDepends - ok
16:45:03.0117 0884  [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:45:03.0146 0884  Fs_Rec - ok
16:45:03.0314 0884  [ 8A73E79089B282100B9393B644CB853B ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:45:03.0354 0884  fvevol - ok
16:45:03.0444 0884  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:45:03.0524 0884  gagp30kx - ok
16:45:03.0752 0884  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:45:03.0786 0884  GEARAspiWDM - ok
16:45:03.0978 0884  [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:45:04.0021 0884  gpsvc - ok
16:45:04.0323 0884  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
16:45:04.0376 0884  gupdate - ok
16:45:04.0460 0884  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
16:45:04.0464 0884  gupdatem - ok
16:45:04.0543 0884  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:45:04.0581 0884  hcw85cir - ok
16:45:04.0801 0884  [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:45:04.0863 0884  HdAudAddService - ok
16:45:04.0896 0884  [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:45:04.0899 0884  HDAudBus - ok
16:45:04.0928 0884  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:45:04.0939 0884  HidBatt - ok
16:45:04.0977 0884  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:45:05.0029 0884  HidBth - ok
16:45:05.0057 0884  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:45:05.0085 0884  HidIr - ok
16:45:05.0145 0884  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv         C:\Windows\system32\hidserv.dll
16:45:05.0168 0884  hidserv - ok
16:45:05.0214 0884  [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:45:05.0233 0884  HidUsb - ok
16:45:05.0426 0884  [ D61E53E3FEC0C92BC8DD3969FAD63F87 ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
16:45:05.0456 0884  HipShieldK - ok
16:45:05.0517 0884  [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:45:05.0526 0884  hkmsvc - ok
16:45:05.0568 0884  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:45:05.0590 0884  HomeGroupListener - ok
16:45:05.0687 0884  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:45:05.0695 0884  HomeGroupProvider - ok
16:45:05.0789 0884  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:45:05.0869 0884  HpSAMD - ok
16:45:06.0188 0884  [ 871917B07A141BFF43D76D8844D48106 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:45:06.0254 0884  HTTP - ok
16:45:06.0276 0884  [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:45:06.0283 0884  hwpolicy - ok
16:45:06.0325 0884  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
16:45:06.0343 0884  i8042prt - ok
16:45:06.0493 0884  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:45:06.0620 0884  iaStorV - ok
16:45:06.0712 0884  [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:45:06.0758 0884  idsvc - ok
16:45:08.0152 0884  [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
16:45:08.0648 0884  igfx - ok
16:45:08.0714 0884  [ 4173FF5708F3236CF25195FECD742915 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:45:08.0743 0884  iirsp - ok
16:45:08.0946 0884  [ F95622F161474511B8D80D6B093AA610 ] IKEEXT          C:\Windows\System32\ikeext.dll
16:45:09.0009 0884  IKEEXT - ok
16:45:09.0043 0884  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:45:09.0059 0884  intelide - ok
16:45:09.0122 0884  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:45:09.0127 0884  intelppm - ok
16:45:09.0155 0884  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:45:09.0166 0884  IPBusEnum - ok
16:45:09.0194 0884  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:45:09.0211 0884  IpFilterDriver - ok
16:45:09.0237 0884  [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:45:09.0249 0884  IPMIDRV - ok
16:45:09.0273 0884  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:45:09.0287 0884  IPNAT - ok
16:45:09.0781 0884  [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:45:09.0850 0884  iPod Service - ok
16:45:09.0913 0884  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:45:09.0936 0884  IRENUM - ok
16:45:10.0001 0884  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:45:10.0063 0884  isapnp - ok
16:45:10.0146 0884  [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:45:10.0244 0884  iScsiPrt - ok
16:45:10.0347 0884  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:45:10.0395 0884  kbdclass - ok
16:45:10.0482 0884  [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
16:45:10.0562 0884  kbdhid - ok
16:45:10.0625 0884  [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso          C:\Windows\system32\lsass.exe
16:45:10.0627 0884  KeyIso - ok
16:45:10.0678 0884  [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:45:10.0754 0884  KSecDD - ok
16:45:10.0936 0884  [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:45:11.0011 0884  KSecPkg - ok
16:45:11.0145 0884  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:45:11.0310 0884  KtmRm - ok
16:45:11.0574 0884  [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:45:11.0587 0884  LanmanServer - ok
16:45:11.0677 0884  [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:45:11.0733 0884  LanmanWorkstation - ok
16:45:11.0941 0884  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:45:12.0022 0884  lltdio - ok
16:45:12.0194 0884  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:45:12.0244 0884  lltdsvc - ok
16:45:12.0285 0884  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:45:12.0288 0884  lmhosts - ok
16:45:12.0343 0884  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:45:12.0390 0884  LSI_FC - ok
16:45:12.0428 0884  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:45:12.0498 0884  LSI_SAS - ok
16:45:12.0579 0884  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:45:12.0650 0884  LSI_SAS2 - ok
16:45:12.0746 0884  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:45:12.0776 0884  LSI_SCSI - ok
16:45:12.0811 0884  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv           C:\Windows\system32\drivers\luafv.sys
16:45:12.0844 0884  luafv - ok
16:45:12.0895 0884  [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
16:45:12.0897 0884  MBAMProtector - ok
16:45:13.0098 0884  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:45:13.0112 0884  MBAMScheduler - ok
16:45:13.0166 0884  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:45:13.0186 0884  MBAMService - ok
16:45:13.0340 0884  [ ECAB006AC6136F1307E140B633CDB8C2 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:45:13.0355 0884  McAfee SiteAdvisor Service - ok
16:45:13.0368 0884  [ ECAB006AC6136F1307E140B633CDB8C2 ] McMPFSvc        C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:45:13.0372 0884  McMPFSvc - ok
16:45:13.0387 0884  [ ECAB006AC6136F1307E140B633CDB8C2 ] mcmscsvc        C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:45:13.0391 0884  mcmscsvc - ok
16:45:13.0399 0884  [ ECAB006AC6136F1307E140B633CDB8C2 ] McNaiAnn        C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:45:13.0401 0884  McNaiAnn - ok
16:45:13.0422 0884  [ ECAB006AC6136F1307E140B633CDB8C2 ] McNASvc         C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:45:13.0423 0884  McNASvc - ok
16:45:13.0758 0884  [ C7DA06C9A9AEEFBE37AAC281EA6385D5 ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
16:45:13.0780 0884  McODS - ok
16:45:13.0795 0884  [ ECAB006AC6136F1307E140B633CDB8C2 ] McOobeSv        C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:45:13.0799 0884  McOobeSv - ok
16:45:13.0815 0884  [ ECAB006AC6136F1307E140B633CDB8C2 ] McProxy         C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:45:13.0817 0884  McProxy - ok
16:45:14.0152 0884  [ FDDE814145D01A986A10FE1EA5959B9F ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
16:45:14.0178 0884  McShield - ok
16:45:14.0241 0884  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:45:14.0341 0884  Mcx2Svc - ok
16:45:14.0395 0884  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:45:14.0440 0884  megasas - ok
16:45:14.0559 0884  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:45:14.0630 0884  MegaSR - ok
16:45:14.0727 0884  [ 449C611308F52932C85468BA0E91B4A7 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
16:45:14.0734 0884  mfeapfk - ok
16:45:14.0847 0884  [ 080C59E365B358551B819836658FDE42 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
16:45:14.0884 0884  mfeavfk - ok
16:45:14.0891 0884  mfeavfk01 - ok
16:45:14.0954 0884  [ 0DBCB0C95196B3D12D550426DB683867 ] mfebopk         C:\Windows\system32\drivers\mfebopk.sys
16:45:14.0999 0884  mfebopk - ok
16:45:15.0044 0884  [ D3AA7664DE86FDB2125F48D393A486B3 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
16:45:15.0051 0884  mfefire - ok
16:45:15.0119 0884  [ 8776B9E3DC1F2B0F6BA7CDC66F51B201 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
16:45:15.0145 0884  mfefirek - ok
16:45:15.0234 0884  [ 5702E118D70A9EE95B6A5D9230076EFC ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
16:45:15.0295 0884  mfehidk - ok
16:45:15.0343 0884  [ FAD22AA17DA864C3B56E24603E0F067F ] mferkdet        C:\Windows\system32\drivers\mferkdet.sys
16:45:15.0392 0884  mferkdet - ok
16:45:15.0540 0884  [ AB2D7F16A9745C41297752AB07C98F46 ] mfevtp          C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
16:45:15.0562 0884  mfevtp - ok
16:45:15.0709 0884  [ B9A785B5137759FEE58837B04FF1DB94 ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
16:45:15.0760 0884  mfewfpk - ok
16:45:15.0938 0884  Microsoft SharePoint Workspace Audit Service - ok
16:45:15.0990 0884  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS           C:\Windows\system32\mmcss.dll
16:45:15.0994 0884  MMCSS - ok
16:45:16.0056 0884  [ F001861E5700EE84E2D4E52C712F4964 ] Modem           C:\Windows\system32\drivers\modem.sys
16:45:16.0058 0884  Modem - ok
16:45:16.0123 0884  [ 79D10964DE86B292320E9DFE02282A23 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:45:16.0149 0884  monitor - ok
16:45:16.0275 0884  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:45:16.0379 0884  mouclass - ok
16:45:16.0425 0884  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:45:16.0483 0884  mouhid - ok
16:45:16.0537 0884  [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:45:16.0596 0884  mountmgr - ok
16:45:16.0627 0884  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:45:16.0716 0884  mpio - ok
16:45:16.0784 0884  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:45:16.0857 0884  mpsdrv - ok
16:45:16.0896 0884  [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:45:16.0961 0884  MRxDAV - ok
16:45:17.0090 0884  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:45:17.0161 0884  mrxsmb - ok
16:45:17.0193 0884  [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:45:17.0217 0884  mrxsmb10 - ok
16:45:17.0257 0884  [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:45:17.0360 0884  mrxsmb20 - ok
16:45:17.0386 0884  [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci          C:\Windows\system32\drivers\msahci.sys
16:45:17.0405 0884  msahci - ok
16:45:17.0435 0884  [ 55055F8AD8BE27A64C831322A780A228 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:45:17.0457 0884  msdsm - ok
16:45:17.0518 0884  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC           C:\Windows\System32\msdtc.exe
16:45:17.0542 0884  MSDTC - ok
16:45:17.0596 0884  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:45:17.0611 0884  Msfs - ok
16:45:17.0626 0884  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:45:17.0635 0884  mshidkmdf - ok
16:45:17.0653 0884  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:45:17.0663 0884  msisadrv - ok
16:45:17.0726 0884  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:45:17.0736 0884  MSiSCSI - ok
16:45:17.0742 0884  msiserver - ok
16:45:17.0778 0884  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:45:17.0787 0884  MSKSSRV - ok
16:45:17.0806 0884  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:45:17.0816 0884  MSPCLOCK - ok
16:45:17.0859 0884  [ F456E973590D663B1073E9C463B40932 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:45:17.0892 0884  MSPQM - ok
16:45:17.0928 0884  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:45:17.0980 0884  MsRPC - ok
16:45:18.0021 0884  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:45:18.0048 0884  mssmbios - ok
16:45:18.0105 0884  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:45:18.0115 0884  MSTEE - ok
16:45:18.0136 0884  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:45:18.0163 0884  MTConfig - ok
16:45:18.0187 0884  [ 159FAD02F64E6381758C990F753BCC80 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:45:18.0248 0884  Mup - ok
16:45:18.0325 0884  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent        C:\Windows\system32\qagentRT.dll
16:45:18.0340 0884  napagent - ok
16:45:18.0392 0884  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:45:18.0451 0884  NativeWifiP - ok
16:45:18.0794 0884  [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:45:18.0853 0884  NDIS - ok
16:45:18.0947 0884  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:45:18.0970 0884  NdisCap - ok
16:45:19.0020 0884  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:45:19.0076 0884  NdisTapi - ok
16:45:19.0207 0884  [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:45:19.0283 0884  Ndisuio - ok
16:45:19.0320 0884  [ 38FBE267E7E6983311179230FACB1017 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:45:19.0389 0884  NdisWan - ok
16:45:19.0419 0884  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:45:19.0441 0884  NDProxy - ok
16:45:19.0467 0884  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:45:19.0499 0884  NetBIOS - ok
16:45:19.0524 0884  [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:45:19.0548 0884  NetBT - ok
16:45:19.0569 0884  [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon        C:\Windows\system32\lsass.exe
16:45:19.0573 0884  Netlogon - ok
16:45:19.0629 0884  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
16:45:19.0638 0884  Netman - ok
16:45:19.0751 0884  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
16:45:19.0786 0884  netprofm - ok
16:45:19.0827 0884  [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:45:19.0844 0884  NetTcpPortSharing - ok
16:45:19.0931 0884  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:45:19.0966 0884  nfrd960 - ok
16:45:20.0025 0884  [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:45:20.0036 0884  NlaSvc - ok
16:45:20.0048 0884  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:45:20.0060 0884  Npfs - ok
16:45:20.0119 0884  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi             C:\Windows\system32\nsisvc.dll
16:45:20.0125 0884  nsi - ok
16:45:20.0165 0884  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:45:20.0207 0884  nsiproxy - ok
16:45:20.0669 0884  [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:45:21.0029 0884  Ntfs - ok
16:45:21.0142 0884  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
16:45:21.0162 0884  Null - ok
16:45:21.0201 0884  [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:45:21.0256 0884  nvraid - ok
16:45:21.0362 0884  [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:45:21.0496 0884  nvstor - ok
16:45:21.0546 0884  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:45:21.0683 0884  nv_agp - ok
16:45:21.0841 0884  [ 19CAC780B858822055F46C58A111723C ] OEM02Dev        C:\Windows\system32\DRIVERS\OEM02Dev.sys
16:45:21.0920 0884  OEM02Dev - ok
16:45:21.0965 0884  [ 86326062A90494BDD79CE383511D7D69 ] OEM02Vfx        C:\Windows\system32\DRIVERS\OEM02Vfx.sys
16:45:22.0007 0884  OEM02Vfx - ok
16:45:22.0072 0884  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:45:22.0181 0884  ohci1394 - ok
16:45:22.0417 0884  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:45:22.0471 0884  ose - ok
16:45:23.0631 0884  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:45:24.0365 0884  osppsvc - ok
16:45:24.0801 0884  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:45:24.0876 0884  p2pimsvc - ok
16:45:24.0963 0884  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:45:24.0990 0884  p2psvc - ok
16:45:25.0085 0884  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport         C:\Windows\system32\drivers\parport.sys
16:45:25.0211 0884  Parport - ok
16:45:25.0372 0884  [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:45:25.0485 0884  partmgr - ok
16:45:25.0555 0884  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
16:45:25.0634 0884  Parvdm - ok
16:45:25.0806 0884  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:45:25.0841 0884  PcaSvc - ok
16:45:25.0877 0884  [ 673E55C3498EB970088E812EA820AA8F ] pci             C:\Windows\system32\drivers\pci.sys
16:45:25.0959 0884  pci - ok
16:45:25.0999 0884  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\drivers\pciide.sys
16:45:26.0051 0884  pciide - ok
16:45:26.0087 0884  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:45:26.0141 0884  pcmcia - ok
16:45:26.0162 0884  [ 250F6B43D2B613172035C6747AEEB19F ] pcw             C:\Windows\system32\drivers\pcw.sys
16:45:26.0174 0884  pcw - ok
16:45:26.0431 0884  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:45:26.0639 0884  PEAUTH - ok
16:45:27.0919 0884  [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla             C:\Windows\system32\pla.dll
16:45:27.0972 0884  pla - ok
16:45:28.0181 0884  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:45:28.0221 0884  PlugPlay - ok
16:45:28.0335 0884  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:45:28.0389 0884  PNRPAutoReg - ok
16:45:28.0478 0884  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:45:28.0487 0884  PNRPsvc - ok
16:45:28.0549 0884  [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:45:28.0604 0884  PolicyAgent - ok
16:45:28.0689 0884  [ F87D30E72E03D579A5199CCB3831D6EA ] Power           C:\Windows\system32\umpo.dll
16:45:28.0717 0884  Power - ok
16:45:28.0840 0884  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:45:28.0966 0884  PptpMiniport - ok
16:45:28.0998 0884  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor       C:\Windows\system32\drivers\processr.sys
16:45:29.0017 0884  Processor - ok
16:45:29.0102 0884  [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc         C:\Windows\system32\profsvc.dll
16:45:29.0138 0884  ProfSvc - ok
16:45:29.0160 0884  [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:45:29.0165 0884  ProtectedStorage - ok
16:45:29.0209 0884  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:45:29.0243 0884  Psched - ok
16:45:29.0563 0884  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:45:29.0664 0884  ql2300 - ok
16:45:29.0694 0884  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:45:29.0733 0884  ql40xx - ok
16:45:30.0023 0884  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE           C:\Windows\system32\qwave.dll
16:45:30.0079 0884  QWAVE - ok
16:45:30.0120 0884  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:45:30.0137 0884  QWAVEdrv - ok
16:45:30.0168 0884  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:45:30.0184 0884  RasAcd - ok
16:45:30.0235 0884  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:45:30.0254 0884  RasAgileVpn - ok
16:45:30.0285 0884  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto         C:\Windows\System32\rasauto.dll
16:45:30.0322 0884  RasAuto - ok
16:45:30.0360 0884  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:45:30.0391 0884  Rasl2tp - ok
16:45:30.0652 0884  [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan          C:\Windows\System32\rasmans.dll
16:45:30.0729 0884  RasMan - ok
16:45:30.0790 0884  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:45:30.0850 0884  RasPppoe - ok
16:45:30.0904 0884  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:45:30.0939 0884  RasSstp - ok
16:45:31.0005 0884  [ D528BC58A489409BA40334EBF96A311B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:45:31.0082 0884  rdbss - ok
16:45:31.0110 0884  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
16:45:31.0121 0884  rdpbus - ok
16:45:31.0172 0884  [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:45:31.0210 0884  RDPCDD - ok
16:45:31.0264 0884  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:45:31.0275 0884  RDPENCDD - ok
16:45:31.0321 0884  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:45:31.0359 0884  RDPREFMP - ok
16:45:31.0462 0884  [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:45:31.0518 0884  RDPWD - ok
16:45:31.0569 0884  [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:45:31.0593 0884  rdyboost - ok
16:45:31.0665 0884  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:45:31.0710 0884  RemoteAccess - ok
16:45:31.0754 0884  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:45:31.0767 0884  RemoteRegistry - ok
16:45:31.0904 0884  [ 6C1F93C0760C9F79A1869D07233DF39D ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys
16:45:31.0949 0884  rismxdp - ok
16:45:32.0277 0884  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:45:32.0299 0884  RpcEptMapper - ok
16:45:32.0342 0884  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
16:45:32.0445 0884  RpcLocator - ok
16:45:32.0604 0884  [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs           C:\Windows\system32\rpcss.dll
16:45:32.0615 0884  RpcSs - ok
16:45:32.0768 0884  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:45:32.0850 0884  rspndr - ok
16:45:32.0903 0884  [ 81951F51E318AECC2D68559E47485CC4 ] SamSs           C:\Windows\system32\lsass.exe
16:45:32.0942 0884  SamSs - ok
16:45:33.0116 0884  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:45:33.0167 0884  SASDIFSV - ok
16:45:33.0200 0884  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:45:33.0206 0884  SASKUTIL - ok
16:45:33.0266 0884  [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:45:33.0317 0884  sbp2port - ok
16:45:33.0361 0884  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:45:33.0468 0884  SCardSvr - ok
16:45:33.0563 0884  [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:45:33.0621 0884  scfilter - ok
16:45:34.0003 0884  [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule        C:\Windows\system32\schedsvc.dll
16:45:34.0153 0884  Schedule - ok
16:45:34.0220 0884  [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:45:34.0224 0884  SCPolicySvc - ok
16:45:34.0354 0884  [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
16:45:34.0424 0884  sdbus - ok
16:45:34.0458 0884  [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:45:34.0501 0884  SDRSVC - ok
16:45:34.0553 0884  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:45:34.0591 0884  secdrv - ok
16:45:34.0639 0884  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
16:45:34.0687 0884  seclogon - ok
16:45:34.0851 0884  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\System32\sens.dll
16:45:34.0888 0884  SENS - ok
16:45:34.0949 0884  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:45:35.0019 0884  SensrSvc - ok
16:45:35.0113 0884  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:45:35.0200 0884  Serenum - ok
16:45:35.0284 0884  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\drivers\serial.sys
16:45:35.0319 0884  Serial - ok
16:45:35.0425 0884  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:45:35.0461 0884  sermouse - ok
16:45:35.0536 0884  [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:45:35.0611 0884  SessionEnv - ok
16:45:35.0633 0884  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
16:45:35.0657 0884  sffdisk - ok
16:45:35.0719 0884  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:45:35.0790 0884  sffp_mmc - ok
16:45:35.0836 0884  [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
16:45:35.0891 0884  sffp_sd - ok
16:45:35.0976 0884  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:45:36.0075 0884  sfloppy - ok
16:45:36.0277 0884  [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:45:36.0304 0884  ShellHWDetection - ok
16:45:36.0337 0884  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\drivers\sisagp.sys
16:45:36.0354 0884  sisagp - ok
16:45:36.0411 0884  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:45:36.0499 0884  SiSRaid2 - ok
16:45:36.0533 0884  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:45:36.0615 0884  SiSRaid4 - ok
16:45:37.0682 0884  [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:45:37.0738 0884  Skype C2C Service - ok
16:45:37.0948 0884  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
16:45:37.0996 0884  SkypeUpdate - ok
16:45:38.0077 0884  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:45:38.0303 0884  Smb - ok
16:45:38.0425 0884  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:45:38.0563 0884  SNMPTRAP - ok
16:45:38.0603 0884  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:45:38.0657 0884  spldr - ok
16:45:38.0823 0884  [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler         C:\Windows\System32\spoolsv.exe
16:45:38.0843 0884  Spooler - ok
16:45:39.0879 0884  [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc          C:\Windows\system32\sppsvc.exe
16:45:40.0037 0884  sppsvc - ok
16:45:40.0130 0884  [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:45:40.0162 0884  sppuinotify - ok
16:45:40.0260 0884  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:45:40.0407 0884  srv - ok
16:45:40.0447 0884  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:45:40.0476 0884  srv2 - ok
16:45:40.0582 0884  [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL3.SYS
16:45:40.0622 0884  SrvHsfHDA - ok
16:45:41.0038 0884  [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV3.SYS
16:45:41.0312 0884  SrvHsfV92 - ok
16:45:41.0675 0884  [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
16:45:41.0821 0884  SrvHsfWinac - ok
16:45:41.0945 0884  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:45:42.0019 0884  srvnet - ok
16:45:42.0075 0884  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:45:42.0083 0884  SSDPSRV - ok
16:45:42.0153 0884  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:45:42.0167 0884  SstpSvc - ok
16:45:42.0201 0884  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:45:42.0238 0884  stexstor - ok
16:45:42.0290 0884  [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc          C:\Windows\System32\wiaservc.dll
16:45:42.0305 0884  StiSvc - ok
16:45:42.0327 0884  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:45:42.0337 0884  swenum - ok
16:45:42.0364 0884  [ A28BD92DF340E57B024BA433165D34D7 ] swprv           C:\Windows\System32\swprv.dll
16:45:42.0383 0884  swprv - ok
16:45:42.0531 0884  [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain         C:\Windows\system32\sysmain.dll
16:45:42.0567 0884  SysMain - ok
16:45:42.0599 0884  [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:45:42.0609 0884  TabletInputService - ok
16:45:42.0710 0884  [ 613BF4820361543956909043A265C6AC ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:45:42.0750 0884  TapiSrv - ok
16:45:42.0789 0884  [ B799D9FDB26111737F58288D8DC172D9 ] TBS             C:\Windows\System32\tbssvc.dll
16:45:42.0816 0884  TBS - ok
16:45:42.0952 0884  [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:45:42.0999 0884  Tcpip - ok
16:45:43.0121 0884  [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:45:43.0143 0884  TCPIP6 - ok
16:45:43.0236 0884  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:45:43.0338 0884  tcpipreg - ok
16:45:43.0415 0884  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:45:43.0454 0884  TDPIPE - ok
16:45:43.0491 0884  [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:45:43.0518 0884  TDTCP - ok
16:45:43.0576 0884  [ B459575348C20E8121D6039DA063C704 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:45:43.0639 0884  tdx - ok
16:45:43.0745 0884  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:45:43.0863 0884  TermDD - ok
16:45:44.0051 0884  [ 382C804C92811BE57829D8E550A900E2 ] TermService     C:\Windows\System32\termsrv.dll
16:45:44.0095 0884  TermService - ok
16:45:44.0123 0884  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
16:45:44.0133 0884  Themes - ok
16:45:44.0157 0884  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER     C:\Windows\system32\mmcss.dll
16:45:44.0161 0884  THREADORDER - ok
16:45:44.0200 0884  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
16:45:44.0205 0884  TrkWks - ok
16:45:44.0385 0884  [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:45:44.0443 0884  TrustedInstaller - ok
16:45:44.0476 0884  [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:45:44.0495 0884  tssecsrv - ok
16:45:44.0535 0884  [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:45:44.0580 0884  TsUsbFlt - ok
16:45:44.0638 0884  [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:45:44.0674 0884  TsUsbGD - ok
16:45:44.0725 0884  [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:45:44.0742 0884  tunnel - ok
16:45:44.0770 0884  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:45:44.0784 0884  uagp35 - ok
16:45:44.0839 0884  [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:45:44.0880 0884  udfs - ok
16:45:44.0976 0884  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:45:45.0058 0884  UI0Detect - ok
16:45:45.0222 0884  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:45:45.0304 0884  uliagpkx - ok
16:45:45.0399 0884  [ D295BED4B898F0FD999FCFA9B32B071B ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:45:45.0437 0884  umbus - ok
16:45:45.0680 0884  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:45:45.0738 0884  UmPass - ok
16:45:45.0878 0884  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
16:45:45.0884 0884  upnphost - ok
16:45:46.0046 0884  [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
16:45:46.0127 0884  USBAAPL - ok
16:45:46.0220 0884  [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:45:46.0299 0884  usbccgp - ok
16:45:46.0457 0884  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:45:46.0503 0884  usbcir - ok
16:45:46.0551 0884  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:45:46.0634 0884  usbehci - ok
16:45:46.0798 0884  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:45:46.0845 0884  usbhub - ok
16:45:46.0914 0884  [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:45:47.0008 0884  usbohci - ok
16:45:47.0063 0884  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:45:47.0141 0884  usbprint - ok
16:45:47.0246 0884  [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:45:47.0326 0884  usbscan - ok
16:45:47.0405 0884  [ F991AB9CC6B908DB552166768176896A ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:45:47.0493 0884  USBSTOR - ok
16:45:47.0600 0884  [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
16:45:47.0659 0884  usbuhci - ok
16:45:47.0772 0884  [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
16:45:47.0813 0884  usbvideo - ok
16:45:47.0911 0884  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms           C:\Windows\System32\uxsms.dll
16:45:47.0937 0884  UxSms - ok
16:45:48.0049 0884  [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc        C:\Windows\system32\lsass.exe
16:45:48.0066 0884  VaultSvc - ok
16:45:48.0241 0884  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:45:48.0294 0884  vdrvroot - ok
16:45:48.0536 0884  [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds             C:\Windows\System32\vds.exe
16:45:48.0796 0884  vds - ok
16:45:48.0856 0884  [ 17C408214EA61696CEC9C66E388B14F3 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:45:48.0869 0884  vga - ok
16:45:48.0898 0884  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:45:48.0945 0884  VgaSave - ok
16:45:49.0021 0884  [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:45:49.0065 0884  vhdmp - ok
16:45:49.0135 0884  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
16:45:49.0181 0884  viaagp - ok
16:45:49.0215 0884  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
16:45:49.0229 0884  ViaC7 - ok
16:45:49.0270 0884  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\drivers\viaide.sys
16:45:49.0325 0884  viaide - ok
16:45:49.0360 0884  [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:45:49.0372 0884  volmgr - ok
16:45:49.0397 0884  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:45:49.0427 0884  volmgrx - ok
16:45:49.0499 0884  [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:45:49.0533 0884  volsnap - ok
16:45:49.0578 0884  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:45:49.0601 0884  vsmraid - ok
16:45:49.0689 0884  [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS             C:\Windows\system32\vssvc.exe
16:45:49.0779 0884  VSS - ok
16:45:49.0805 0884  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:45:49.0816 0884  vwifibus - ok
16:45:49.0924 0884  [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:45:49.0944 0884  vwififlt - ok
16:45:50.0285 0884  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time         C:\Windows\system32\w32time.dll
16:45:50.0323 0884  W32Time - ok
16:45:50.0366 0884  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:45:50.0383 0884  WacomPen - ok
16:45:50.0477 0884  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:45:50.0550 0884  WANARP - ok
16:45:50.0584 0884  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:45:50.0585 0884  Wanarpv6 - ok
16:45:51.0058 0884  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:45:51.0217 0884  WatAdminSvc - ok
16:45:51.0314 0884  [ 691E3285E53DCA558E1A84667F13E15A ] wbengine        C:\Windows\system32\wbengine.exe
16:45:51.0401 0884  wbengine - ok
16:45:51.0549 0884  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:45:51.0654 0884  WbioSrvc - ok
16:45:51.0795 0884  [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:45:51.0876 0884  wcncsvc - ok
16:45:51.0905 0884  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:45:51.0929 0884  WcsPlugInService - ok
16:45:51.0966 0884  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\drivers\wd.sys
16:45:52.0009 0884  Wd - ok
16:45:52.0229 0884  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:45:52.0275 0884  Wdf01000 - ok
16:45:52.0338 0884  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:45:52.0367 0884  WdiServiceHost - ok
16:45:52.0379 0884  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:45:52.0387 0884  WdiSystemHost - ok
16:45:52.0468 0884  [ A9D880F97530D5B8FEE278923349929D ] WebClient       C:\Windows\System32\webclnt.dll
16:45:52.0500 0884  WebClient - ok
16:45:52.0548 0884  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:45:52.0562 0884  Wecsvc - ok
16:45:52.0584 0884  [ AC804569BB2364FB6017370258A4091B ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:45:52.0595 0884  wercplsupport - ok
16:45:52.0614 0884  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:45:52.0625 0884  WerSvc - ok
16:45:52.0662 0884  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:45:52.0692 0884  WfpLwf - ok
16:45:52.0728 0884  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:45:52.0751 0884  WIMMount - ok
16:45:52.0786 0884  WinHttpAutoProxySvc - ok
16:45:53.0050 0884  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:45:53.0069 0884  Winmgmt - ok
16:45:53.0193 0884  [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM           C:\Windows\system32\WsmSvc.dll
16:45:53.0703 0884  WinRM - ok
16:45:53.0847 0884  [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:45:53.0957 0884  WinUsb - ok
16:45:54.0396 0884  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:45:54.0425 0884  Wlansvc - ok
16:45:54.0557 0884  [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:45:54.0585 0884  wlcrasvc - ok
16:45:55.0109 0884  [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:45:55.0196 0884  wlidsvc - ok
16:45:55.0286 0884  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:45:55.0383 0884  WmiAcpi - ok
16:45:55.0431 0884  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:45:55.0479 0884  wmiApSrv - ok
16:45:55.0875 0884  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
16:45:55.0931 0884  WMPNetworkSvc - ok
16:45:55.0987 0884  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:45:56.0017 0884  WPCSvc - ok
16:45:56.0038 0884  [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:45:56.0050 0884  WPDBusEnum - ok
16:45:56.0116 0884  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:45:56.0145 0884  ws2ifsl - ok
16:45:56.0152 0884  WSearch - ok
16:45:56.0220 0884  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:45:56.0244 0884  WudfPf - ok
16:45:56.0419 0884  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:45:56.0560 0884  WUDFRd - ok
16:45:56.0611 0884  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:45:56.0655 0884  wudfsvc - ok
16:45:56.0796 0884  [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:45:56.0881 0884  WwanSvc - ok
16:45:57.0134 0884  [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7         C:\Windows\system32\DRIVERS\yk62x86.sys
16:45:57.0170 0884  yukonw7 - ok
16:45:57.0240 0884  ================ Scan global ===============================
16:45:57.0516 0884  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
16:45:57.0802 0884  [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
16:45:57.0888 0884  [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
16:45:57.0981 0884  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
16:45:58.0074 0884  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
16:45:58.0118 0884  [Global] - ok
16:45:58.0119 0884  ================ Scan MBR ==================================
16:45:58.0157 0884  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:45:59.0968 0884  \Device\Harddisk0\DR0 - ok
16:45:59.0969 0884  ================ Scan VBR ==================================
16:46:00.0017 0884  [ A929AF4863A5F1AB84A9C4C46817FB5B ] \Device\Harddisk0\DR0\Partition1
16:46:00.0045 0884  \Device\Harddisk0\DR0\Partition1 - ok
16:46:00.0071 0884  [ C42A9D40292CCD1686731D5D5EC19DBF ] \Device\Harddisk0\DR0\Partition2
16:46:00.0074 0884  \Device\Harddisk0\DR0\Partition2 - ok
16:46:00.0075 0884  ============================================================
16:46:00.0075 0884  Scan finished
16:46:00.0075 0884  ============================================================
16:46:00.0090 4208  Detected object count: 0
16:46:00.0090 4208  Actual detected object count: 0


#15 charliewon56

charliewon56
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:06 AM

Posted 08 February 2013 - 12:00 PM

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms"    ""    ""    ""
+ "rdpclip"    ""    ""    "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "APSDaemon"    "Apple Push"    "Apple Inc."    "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "BCSSync"    "Microsoft Office 2010 component"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\bcssync.exe"
+ "HotKeysCmds"    "hkcmd Module"    "Intel Corporation"    "c:\windows\system32\hkcmd.exe"
+ "IgfxTray"    "igfxTray Module"    "Intel Corporation"    "c:\windows\system32\igfxtray.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program files\itunes\ituneshelper.exe"
+ "mcui_exe"    "McAfee Security Center"    "McAfee, Inc."    "c:\program files\mcafee.com\agent\mcagent.exe"
+ "OEM02Mon.exe"    "Live! Cam Console Auto Launcher"    "Creative Technology Ltd."    "c:\windows\oem02mon.exe"
+ "Persistence"    "persistence Module"    "Intel Corporation"    "c:\windows\system32\igfxpers.exe"
+ "SunJavaUpdateSched"    "Java™ Update Scheduler"    "Sun Microsystems, Inc."    "c:\program files\common files\java\java update\jusched.exe"
"C:\Users\User 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""
+ "OneNote 2010 Screen Clipper and Launcher.lnk"    "Microsoft OneNote Quick Launcher"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onenotem.exe"
+ "Passport Photo.lnk"    "CamToPrintTray"    "DigitalAlbum Inc"    "c:\program files\camtoprint\passportphoto\camtoprinttray.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "EPSON SX110 Series"    "EPSON Status Monitor 3"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\spool\drivers\w32x86\3\e_fatifbe.exe"
+ "Facebook Update"    "Facebook Installer"    "Facebook Inc."    "c:\users\user 1\appdata\local\facebook\update\facebookupdate.exe"
+ "Google Update"    "Google Installer"    "Google Inc."    "c:\users\user 1\appdata\local\google\update\googleupdate.exe"
+ "MobileDocuments"    "ubd.exe"    "Apple Inc."    "c:\program files\common files\apple\internet services\ubd.exe"
+ "msnmsgr"    "Windows Live Messenger"    "Microsoft Corporation"    "c:\program files\windows live\messenger\msnmsgr.exe"
+ "SkyDrive"    "Microsoft SkyDrive"    "Microsoft Corporation"    "c:\users\user 1\appdata\local\microsoft\skydrive\skydrive.exe"
+ "Skype"    "Skype "    "Skype Technologies S.A."    "c:\program files\skype\phone\skype.exe"
+ "Spotify"    "Spotify"    "Spotify Ltd"    "c:\users\user 1\appdata\roaming\spotify\spotify.exe"
+ "Spotify Web Helper"    "SpotifyWebHelper"    "Spotify Ltd"    "c:\users\user 1\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "SUPERAntiSpyware"    "SUPERAntiSpyware Application"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\superantispyware.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "application/x-mfe-ipt"    "McAfee MSC IE plugin DLL"    "McAfee, Inc."    "c:\program files\mcafee\msc\mcsniepl.dll"
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "dssrequest"    "SiteAdvisor"    "McAfee, Inc."    "c:\program files\mcafee\siteadvisor\mcieplg.dll"
+ "livecall"    "Windows Live Messenger Protocol Handler Module"    "Microsoft Corporation"    "c:\program files\windows live\messenger\msgrapp.dll"
+ "ms-help"    "Microsoft® Help Data Services Module"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "msnim"    "Windows Live Messenger Protocol Handler Module"    "Microsoft Corporation"    "c:\program files\windows live\messenger\msgrapp.dll"
+ "sacore"    "SiteAdvisor"    "McAfee, Inc."    "c:\program files\mcafee\siteadvisor\mcieplg.dll"
+ "skype-ie-addon-data"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "skype4com"    "Skype for COM API"    "Skype Technologies"    "c:\program files\common files\skype\skype4com.dll"
+ "wlmailhtml"    "Windows Live Mail"    "Microsoft Corporation"    "c:\program files\windows live\mail\mailcomm.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""
+ "Groove GFS Stub Execution Hook"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ " SkyDriveEx"    "Microsoft SkyDrive Shell Extension"    "Microsoft Corporation"    "c:\users\user 1\appdata\local\microsoft\skydrive\17.0.2003.1112\skydriveshell.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "McCtxMenuFrmWrk"    "McAfee ContextMenu Framework"    "McAfee, Inc."    "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn.dll"
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ " SkyDriveEx"    "Microsoft SkyDrive Shell Extension"    "Microsoft Corporation"    "c:\users\user 1\appdata\local\microsoft\skydrive\17.0.2003.1112\skydriveshell.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn.dll"
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files\winzip\wzshlstb.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ " SkyDriveEx"    "Microsoft SkyDrive Shell Extension"    "Microsoft Corporation"    "c:\users\user 1\appdata\local\microsoft\skydrive\17.0.2003.1112\skydriveshell.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui"    "igfxpph Module"    "Intel Corporation"    "c:\windows\system32\igfxpph.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "Haali Column Provider"    ""    ""    "c:\program files\mega codec pack\filters\haali\mmfinfo.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "McCtxMenuFrmWrk"    "McAfee ContextMenu Framework"    "McAfee, Inc."    "c:\program files\mcafee\msc\mcctxmenufrmwrk.dll"
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files\winzip\wzshlstb.dll"
+ "XXX Groove GFS Context Menu Handler XXX"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "WinZip"    "WinZip Shell Extension DLL"    "WinZip Computing, S.L."    "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ " SkyDrive1"    "Microsoft SkyDrive Shell Extension"    "Microsoft Corporation"    "c:\users\user 1\appdata\local\microsoft\skydrive\17.0.2003.1112\skydriveshell.dll"
+ " SkyDrive2"    "Microsoft SkyDrive Shell Extension"    "Microsoft Corporation"    "c:\users\user 1\appdata\local\microsoft\skydrive\17.0.2003.1112\skydriveshell.dll"
+ " SkyDrive3"    "Microsoft SkyDrive Shell Extension"    "Microsoft Corporation"    "c:\users\user 1\appdata\local\microsoft\skydrive\17.0.2003.1112\skydriveshell.dll"
+ "0MediaIconsOerlay"    ""    ""    "c:\programdata\microsoft\media tools\mediaiconsoverlays.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Groove GFS Browser Helper"    "Microsoft SharePoint Workspace Extensions"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\ssv.dll"
+ "McAfee SiteAdvisor BHO"    "SiteAdvisor"    "McAfee, Inc."    "c:\program files\mcafee\siteadvisor\mcieplg.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\urlredir.dll"
+ "Skype Browser Helper"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""
+ "McAfee SiteAdvisor"    "SiteAdvisor"    "McAfee, Inc."    "c:\program files\mcafee\siteadvisor\mcieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler"    ""    ""    ""
+ "\Apple\AppleSoftwareUpdate"    "Apple Software Update"    "Apple Inc."    "c:\program files\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC"    "CCleaner"    "Piriform Ltd"    "c:\program files\ccleaner\ccleaner.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-3812038139-3455648243-181842613-1000Core"    "Facebook Installer"    "Facebook Inc."    "c:\users\user 1\appdata\local\facebook\update\facebookupdate.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-3812038139-3455648243-181842613-1000UA"    "Facebook Installer"    "Facebook Inc."    "c:\users\user 1\appdata\local\facebook\update\facebookupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3812038139-3455648243-181842613-1000Core"    "Google Installer"    "Google Inc."    "c:\users\user 1\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3812038139-3455648243-181842613-1000UA"    "Google Installer"    "Google Inc."    "c:\users\user 1\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task"    "Windows Live Social Object Extractor Engine"    "Microsoft Corporation"    "c:\program files\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"    "Windows Media Player Network Sharing Service Configuration Application"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnscfg.exe"
+ "\SUPERAntiSpyware Scheduled Task 2d3d30ab-b9e7-44f0-9fc9-5839c759d1db"    "SUPERAntiSpyware Task Dispatcher"    "SUPERAdBlocker.com"    "c:\program files\superantispyware\sastask.exe"
+ "\SUPERAntiSpyware Scheduled Task d68a0fa9-3844-439c-a37e-f97f1e2a37db"    "SUPERAntiSpyware Task Dispatcher"    "SUPERAdBlocker.com"    "c:\program files\superantispyware\sastask.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "!SASCORE"    "SUPERAntiSpyware Core Service"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sascore.exe"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"
+ "EPSON_EB_RPCV4_01"    "EPSON Status Monitor 3"    "SEIKO EPSON CORPORATION"    "c:\programdata\epson\epw!3 ssrp\e_s40st7.exe"
+ "EPSON_PM_RPCV4_01"    "EPSON Status Monitor 3"    "SEIKO EPSON CORPORATION"    "c:\programdata\epson\epw!3 ssrp\e_s40rp7.exe"
+ "gupdate"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "gupdatem"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"
+ "MBAMScheduler"    "Malwarebytes Anti-Malware scheduler"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService"    "Malwarebytes Anti-Malware service"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "McAfee SiteAdvisor Service"    "McAfee Service Host"    "McAfee, Inc."    "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McMPFSvc"    "Helps protect your computer from intrusion and let's you manage your computer's trusted programs."    "McAfee, Inc."    "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "mcmscsvc"    "McAfee Services"    "McAfee, Inc."    "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McNaiAnn"    "McAfee VirusScan Announcer"    "McAfee, Inc."    "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McNASvc"    "Allows McAfee applications to communicate securely on the local network."    "McAfee, Inc."    "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McODS"    "McAfee Scanner"    "McAfee, Inc."    "c:\program files\mcafee\virusscan\mcods.exe"
+ "McOobeSv"    "McAfee OOBE Service"    "McAfee, Inc."    "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McProxy"    "McAfee Proxy Service"    "McAfee, Inc."    "c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe"
+ "McShield"    "McAfee OnAccess Scanner"    "McAfee, Inc."    "c:\program files\common files\mcafee\systemcore\mcshield.exe"
+ "mfefire"    "Provides firewall services to McAfee products"    "McAfee, Inc."    "c:\program files\common files\mcafee\systemcore\mfefire.exe"
+ "mfevtp"    "Provides validation trust protection services"    "McAfee, Inc."    "c:\program files\common files\mcafee\systemcore\mfevtps.exe"
+ "Microsoft SharePoint Workspace Audit Service"    "Microsoft SharePoint Workspace"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\groove.exe"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc"    "Office Software Protection Platform Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Skype C2C Service"    "Skype Click to Call Update Service"    "Skype Technologies S.A."    "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate"    "Enables the detection, download and installation of updates for Skype."    "Skype Technologies"    "c:\program files\skype\updater\updater.exe"
+ "wlidsvc"    "Enables Windows Live ID authentication."    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ ".cdrom"    ""    ""    "File not found: \?"
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"
+ "aic78xx"    "Adaptec Ultra SCSI miniport"    "Adaptec, Inc."    "c:\windows\system32\drivers\djsvs.sys"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows family"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbdx.sys"
+ "b57nd60x"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60x.sys"
+ "BCM43XX"    "Broadcom 802.11 Network Adapter wireless driver"    "Broadcom Corporation"    "c:\windows\system32\drivers\bcmwl6.sys"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"
+ "cdrom"    ""    ""    "File not found: system32\DRIVERS\cdrom.sys"
+ "cfwids"    "McAfee Personal Firewall IDS Plugin"    "McAfee, Inc."    "c:\windows\system32\drivers\cfwids.sys"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbdx.sys"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"
+ "HipShieldK"    "McAfee HIP IPS Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\hipshieldk.sys"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV"    "Intel Matrix Storage Manager driver - ia32"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"
+ "igfx"    "Intel Graphics Kernel Mode Driver"    "Intel Corporation"    "c:\windows\system32\drivers\igdkmd32.sys"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\windows\system32\drivers\mbam.sys"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7 for x86"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"
+ "mfeapfk"    "Access Protection Filter Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfeapfk.sys"
+ "mfeavfk"    "Anti-Virus File System Filter Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfeavfk.sys"
+ "mfeavfk01"    ""    ""    "File not found: C:\Windows\System32\Drivers\mfeavfk01.sys"
+ "mfebopk"    "Buffer Overflow Protection Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfebopk.sys"
+ "mfefirek"    "McAfee Core Firewall Engine Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfefirek.sys"
+ "mfehidk"    "McAfee Link Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfehidk.sys"
+ "mferkdet"    "McAfee Code Analysis Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mferkdet.sys"
+ "mfewfpk"    "Anti-Virus Mini-Firewall Driver"    "McAfee, Inc."    "c:\windows\system32\drivers\mfewfpk.sys"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"
+ "OEM02Dev"    "Provides a software interface to control Laptop Integrated Webcam."    "Creative Technology Ltd."    "c:\windows\system32\drivers\oem02dev.sys"
+ "OEM02Vfx"    "Provides a software interface to control video effects of Laptop Integrated Webcam."    "EyePower Games Pte. Ltd."    "c:\windows\system32\drivers\oem02vfx.sys"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"
+ "rismxdp"    "RICOH XD SM Driver"    "REDC"    "c:\windows\system32\drivers\rixdptsk.sys"
+ "SASDIFSV"    "SASDIFSV.SYS"    "SUPERAdBlocker.com and SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasdifsv.sys"
+ "SASKUTIL"    "SASKUTIL.SYS"    "SUPERAdBlocker.com and SUPERAntiSpyware.com"    "c:\program files\superantispyware\saskutil.sys"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"
+ "SrvHsfHDA"    "HSF_HWAZL WDM driver"    "Conexant Systems, Inc."    "c:\windows\system32\drivers\vstazl3.sys"
+ "SrvHsfV92"    "HSF_DP driver"    "Conexant Systems, Inc."    "c:\windows\system32\drivers\vstdpv3.sys"
+ "SrvHsfWinac"    "HSF_CNXT driver"    "Conexant Systems, Inc."    "c:\windows\system32\drivers\vstcnxt3.sys"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl.sys"
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"
+ "yukonw7"    "Miniport Driver for Marvell Yukon Ethernet Controller."    "Marvell"    "c:\windows\system32\drivers\yk62x86.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\system32\iccvid.dll"
+ "VIDC.IV31"    ""    "Intel® Corporation"    "c:\windows\system32\ir32_32.dll"
+ "VIDC.IV32"    ""    "Intel® Corporation"    "c:\windows\system32\ir32_32.dll"
+ "VIDC.IV41"    "Intel Indeo® Video Interactive 32-bit Driver"    "Intel® Corporation"    "c:\windows\system32\ir41_32.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "Audio Destination"    "WAVDest Filter (Sample)"    "Microsoft Corporation"    "c:\program files\google\google earth\client\wavdest.ax"
+ "DirectVobSub"    "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth"    "xy-VSFilter Team"    "c:\program files\mega codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)"    "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth"    "xy-VSFilter Team"    "c:\program files\mega codec pack\filters\vsfilter.dll"
+ "ffdshow Audio Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files\mega codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files\mega codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files\mega codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files\mega codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files\mega codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\program files\mega codec pack\filters\ffdshow\ffdshow.ax"
+ "Haali Matroska Muxer"    "Haali Media Splitter"    ""    "c:\program files\mega codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter"    "Haali Media Splitter"    ""    "c:\program files\mega codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)"    "Haali Media Splitter"    ""    "c:\program files\mega codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter"    "Haali Media Splitter"    ""    "c:\program files\mega codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer"    ""    ""    "c:\program files\mega codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink"    "Haali Media Splitter"    ""    "c:\program files\mega codec pack\filters\haali\splitter.ax"
+ "MPC - FLV Source (Gabest)"    "FLV Splitter"    "Gabest"    "c:\program files\mega codec pack\filters\flvsplitter.ax"
+ "MPC - FLV Splitter (Gabest)"    "FLV Splitter"    "Gabest"    "c:\program files\mega codec pack\filters\flvsplitter.ax"
+ "MPC - MPEG-2 Video Decoder (Gabest)"    "MPEG-2 Decoder Filter for DirectShow"    "Gabest"    "c:\program files\mega codec pack\filters\mpeg2decfilter.ax"
+ "TrueMotion 2.0 Decompressor"    "TrueMotion 2.0 Decompressor"    "The Duck Corporation"    "c:\windows\system32\tm20dec.ax"
+ "WavPack Audio Decoder"    "WavPack Audio DirectShow Decoder"    "-"    "c:\program files\mega codec pack\filters\wavpackdsdecoder.ax"
+ "WavPack Audio Splitter"    "WavPack Audio DirectShow Splitter"    "-"    "c:\program files\mega codec pack\filters\wavpackdssplitter.ax"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""
+ "WLIDCredentialProvider"    "Microsoft® Windows Live ID Credential Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify"    ""    ""    ""
+ "igfxcui"    "igfxdev Module"    "Intel Corporation"    "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "EPSON SX110 Series 32MonitorBE"    "EPSON Bi-directional Monitor x86"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_flbfbe.dll"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users