Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

TDSS - cant run TDSSKiller


  • Please log in to reply
12 replies to this topic

#1 dougal158

dougal158

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 21 April 2012 - 11:58 PM

Hi this is my first post. I had the SMART HDD virus/problem which has been removed however I (like many others it seems) have the google redirect problem. After reading various site posts I have downloaded TDSSKIller but it wont execute. I am running win7 64. I have seen many approaches to fixing this but am not confident in doing something without a bit of direction.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:03 PM

Posted 22 April 2012 - 09:44 AM

Download

FIXTDSS

Launch it ,It may ask for restart,reboot the PC

On reboot if it warns of infected MBR ,click on REPAIR

If it warns of unknown kernel callbacks ,click ok and

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 dougal158

dougal158
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 23 April 2012 - 05:15 AM

19:36:01.0842 3056 TDSS rootkit removing tool 2.7.31.0 Apr 20 2012 19:49:47
19:36:02.0725 3056 ============================================================
19:36:02.0725 3056 Current date / time: 2012/04/23 19:36:02.0725
19:36:02.0725 3056 SystemInfo:
19:36:02.0725 3056
19:36:02.0725 3056 OS Version: 6.1.7601 ServicePack: 1.0
19:36:02.0725 3056 Product type: Workstation
19:36:02.0725 3056 ComputerName: TOUCHY
19:36:02.0726 3056 UserName: Don
19:36:02.0726 3056 Windows directory: C:\Windows
19:36:02.0726 3056 System windows directory: C:\Windows
19:36:02.0726 3056 Running under WOW64
19:36:02.0726 3056 Processor architecture: Intel x64
19:36:02.0726 3056 Number of processors: 4
19:36:02.0726 3056 Page size: 0x1000
19:36:02.0726 3056 Boot type: Normal boot
19:36:02.0726 3056 ============================================================
19:36:03.0649 3056 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:36:03.0654 3056 \Device\Harddisk0\DR0:
19:36:03.0654 3056 MBR partitions:
19:36:03.0654 3056 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
19:36:03.0654 3056 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x729A23EB
19:36:03.0675 3056 C: <-> \Device\Harddisk0\DR0\Partition1
19:36:03.0675 3056 Initialize success
19:36:03.0675 3056 ============================================================
19:36:10.0358 5960 ============================================================
19:36:10.0358 5960 Scan started
19:36:10.0358 5960 Mode: Manual;
19:36:10.0358 5960 ============================================================
19:36:11.0134 5960 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
19:36:11.0155 5960 1394ohci - ok
19:36:11.0215 5960 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
19:36:11.0219 5960 ACPI - ok
19:36:11.0253 5960 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
19:36:11.0264 5960 AcpiPmi - ok
19:36:11.0492 5960 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:36:11.0516 5960 AdobeARMservice - ok
19:36:11.0563 5960 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:36:11.0589 5960 adp94xx - ok
19:36:11.0614 5960 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:36:11.0635 5960 adpahci - ok
19:36:11.0688 5960 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:36:11.0707 5960 adpu320 - ok
19:36:11.0781 5960 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:36:11.0795 5960 AeLookupSvc - ok
19:36:11.0890 5960 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
19:36:11.0918 5960 AFD - ok
19:36:11.0970 5960 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
19:36:11.0987 5960 agp440 - ok
19:36:12.0020 5960 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:36:12.0037 5960 ALG - ok
19:36:12.0065 5960 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
19:36:12.0076 5960 aliide - ok
19:36:12.0110 5960 AMD External Events Utility (91da5a257b800c21cc3b6674e579cf90) C:\Windows\system32\atiesrxx.exe
19:36:12.0125 5960 AMD External Events Utility - ok
19:36:12.0175 5960 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
19:36:12.0189 5960 amdide - ok
19:36:12.0250 5960 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:36:12.0266 5960 AmdK8 - ok
19:36:12.0432 5960 amdkmdag (b64724ca6c9f3d8325f0f1a02c6adfaf) C:\Windows\system32\DRIVERS\atikmdag.sys
19:36:12.0705 5960 amdkmdag - ok
19:36:12.0773 5960 amdkmdap (18f03be6118ba9d8a9dc0b98997dc98e) C:\Windows\system32\DRIVERS\atikmpag.sys
19:36:12.0787 5960 amdkmdap - ok
19:36:12.0828 5960 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:36:12.0843 5960 AmdPPM - ok
19:36:12.0913 5960 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
19:36:12.0931 5960 amdsata - ok
19:36:12.0960 5960 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:36:12.0975 5960 amdsbs - ok
19:36:13.0023 5960 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
19:36:13.0036 5960 amdxata - ok
19:36:13.0139 5960 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
19:36:13.0160 5960 Amsp - ok
19:36:13.0214 5960 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
19:36:13.0231 5960 AppID - ok
19:36:13.0281 5960 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:36:13.0293 5960 AppIDSvc - ok
19:36:13.0336 5960 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
19:36:13.0350 5960 Appinfo - ok
19:36:13.0443 5960 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:36:13.0465 5960 Apple Mobile Device - ok
19:36:13.0481 5960 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:36:13.0489 5960 arc - ok
19:36:13.0498 5960 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:36:13.0509 5960 arcsas - ok
19:36:13.0526 5960 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:36:13.0538 5960 AsyncMac - ok
19:36:13.0591 5960 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
19:36:13.0605 5960 atapi - ok
19:36:13.0693 5960 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:36:13.0718 5960 AudioEndpointBuilder - ok
19:36:13.0730 5960 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:36:13.0736 5960 AudioSrv - ok
19:36:13.0781 5960 AVerPola (da2f7699f8f10b4cd18374017163f39c) C:\Windows\system32\DRIVERS\AVerPola.sys
19:36:13.0805 5960 AVerPola - ok
19:36:13.0853 5960 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
19:36:13.0868 5960 AxInstSV - ok
19:36:13.0904 5960 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:36:13.0922 5960 b06bdrv - ok
19:36:13.0954 5960 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:36:13.0980 5960 b57nd60a - ok
19:36:14.0040 5960 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
19:36:14.0071 5960 BBSvc - ok
19:36:14.0118 5960 BCM42RLY (ac4e2d84de54cd3a013aeff0cc56095c) C:\Windows\system32\drivers\BCM42RLY.sys
19:36:14.0131 5960 BCM42RLY - ok
19:36:14.0211 5960 BCM43XX (0b0df4cd7c2c188c95c4e09c568ad54a) C:\Windows\system32\DRIVERS\bcmwl664.sys
19:36:14.0229 5960 BCM43XX - ok
19:36:14.0334 5960 BcmSqlStartupSvc (2e552b658273b90251e0441631de2ca3) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
19:36:14.0350 5960 BcmSqlStartupSvc - ok
19:36:14.0378 5960 BcmVWL (d224b2e6bb543f1d8f1177d57fec2950) C:\Windows\system32\DRIVERS\bcmvwl64.sys
19:36:14.0388 5960 BcmVWL - ok
19:36:14.0438 5960 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:36:14.0456 5960 BDESVC - ok
19:36:14.0480 5960 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:36:14.0489 5960 Beep - ok
19:36:14.0542 5960 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
19:36:14.0570 5960 BFE - ok
19:36:14.0642 5960 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
19:36:14.0649 5960 BITS - ok
19:36:14.0669 5960 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:36:14.0678 5960 blbdrive - ok
19:36:14.0739 5960 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
19:36:14.0761 5960 Bonjour Service - ok
19:36:14.0821 5960 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
19:36:14.0841 5960 bowser - ok
19:36:14.0869 5960 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:36:14.0876 5960 BrFiltLo - ok
19:36:14.0895 5960 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:36:14.0904 5960 BrFiltUp - ok
19:36:14.0941 5960 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
19:36:14.0958 5960 Browser - ok
19:36:14.0971 5960 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:36:14.0986 5960 Brserid - ok
19:36:14.0995 5960 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:36:15.0005 5960 BrSerWdm - ok
19:36:15.0014 5960 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:36:15.0021 5960 BrUsbMdm - ok
19:36:15.0029 5960 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:36:15.0036 5960 BrUsbSer - ok
19:36:15.0061 5960 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:36:15.0071 5960 BTHMODEM - ok
19:36:15.0118 5960 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:36:15.0133 5960 bthserv - ok
19:36:15.0149 5960 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:36:15.0160 5960 cdfs - ok
19:36:15.0207 5960 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
19:36:15.0227 5960 cdrom - ok
19:36:15.0272 5960 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:36:15.0288 5960 CertPropSvc - ok
19:36:15.0310 5960 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:36:15.0318 5960 circlass - ok
19:36:15.0368 5960 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:36:15.0393 5960 CLFS - ok
19:36:15.0553 5960 CLKMSVC10_1628BCEA (de48552360fa8bdf569d83f07cb1b566) C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\BD\NavFilter\kmsvc.exe
19:36:15.0784 5960 CLKMSVC10_1628BCEA - ok
19:36:15.0883 5960 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:36:15.0899 5960 clr_optimization_v2.0.50727_32 - ok
19:36:15.0970 5960 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:36:15.0992 5960 clr_optimization_v2.0.50727_64 - ok
19:36:16.0089 5960 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:36:16.0091 5960 clr_optimization_v4.0.30319_32 - ok
19:36:16.0112 5960 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:36:16.0114 5960 clr_optimization_v4.0.30319_64 - ok
19:36:16.0147 5960 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:36:16.0157 5960 CmBatt - ok
19:36:16.0196 5960 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
19:36:16.0210 5960 cmdide - ok
19:36:16.0256 5960 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
19:36:16.0283 5960 CNG - ok
19:36:16.0305 5960 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:36:16.0318 5960 Compbatt - ok
19:36:16.0353 5960 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
19:36:16.0367 5960 CompositeBus - ok
19:36:16.0377 5960 COMSysApp - ok
19:36:16.0389 5960 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:36:16.0396 5960 crcdisk - ok
19:36:16.0455 5960 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
19:36:16.0473 5960 CryptSvc - ok
19:36:16.0507 5960 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
19:36:16.0521 5960 CtClsFlt - ok
19:36:16.0705 5960 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:36:16.0733 5960 cvhsvc - ok
19:36:16.0802 5960 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:36:16.0810 5960 DcomLaunch - ok
19:36:16.0852 5960 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:36:16.0873 5960 defragsvc - ok
19:36:16.0916 5960 DellOSDservice (5cb5fd5d4f9e160052a593749507cef7) C:\Program Files\Dell\OSD\DellOSDservice.exe
19:36:16.0924 5960 DellOSDservice - ok
19:36:16.0966 5960 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
19:36:16.0981 5960 DfsC - ok
19:36:17.0029 5960 dg_ssudbus (388039f99ce8769024ee0438352aca99) C:\Windows\system32\DRIVERS\ssudbus.sys
19:36:17.0044 5960 dg_ssudbus - ok
19:36:17.0069 5960 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
19:36:17.0085 5960 Dhcp - ok
19:36:17.0119 5960 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:36:17.0131 5960 discache - ok
19:36:17.0157 5960 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:36:17.0170 5960 Disk - ok
19:36:17.0210 5960 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
19:36:17.0229 5960 Dnscache - ok
19:36:17.0275 5960 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
19:36:17.0293 5960 dot3svc - ok
19:36:17.0339 5960 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
19:36:17.0356 5960 DPS - ok
19:36:17.0393 5960 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:36:17.0401 5960 drmkaud - ok
19:36:17.0457 5960 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
19:36:17.0488 5960 DXGKrnl - ok
19:36:17.0535 5960 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:36:17.0550 5960 EapHost - ok
19:36:17.0611 5960 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:36:17.0695 5960 ebdrv - ok
19:36:17.0728 5960 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
19:36:17.0744 5960 EFS - ok
19:36:17.0800 5960 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
19:36:17.0812 5960 ehRecvr - ok
19:36:17.0848 5960 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:36:17.0852 5960 ehSched - ok
19:36:17.0881 5960 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:36:17.0903 5960 elxstor - ok
19:36:17.0943 5960 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
19:36:17.0955 5960 ErrDev - ok
19:36:17.0989 5960 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:36:17.0992 5960 EventSystem - ok
19:36:18.0016 5960 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:36:18.0036 5960 exfat - ok
19:36:18.0091 5960 FACAP (2c1d443e14f376e8331f52f135dca9ef) C:\Windows\system32\DRIVERS\facap.sys
19:36:18.0110 5960 FACAP - ok
19:36:18.0221 5960 FAService (35fdef458f2978e2d0040ad3bcf7fbfe) C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
19:36:18.0253 5960 FAService - ok
19:36:18.0272 5960 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:36:18.0282 5960 fastfat - ok
19:36:18.0337 5960 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
19:36:18.0346 5960 Fax - ok
19:36:18.0356 5960 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:36:18.0366 5960 fdc - ok
19:36:18.0416 5960 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:36:18.0417 5960 fdPHost - ok
19:36:18.0434 5960 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:36:18.0448 5960 FDResPub - ok
19:36:18.0492 5960 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:36:18.0502 5960 FileInfo - ok
19:36:18.0514 5960 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:36:18.0524 5960 Filetrace - ok
19:36:18.0563 5960 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:36:18.0624 5960 FLEXnet Licensing Service - ok
19:36:18.0633 5960 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:36:18.0641 5960 flpydisk - ok
19:36:18.0683 5960 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
19:36:18.0703 5960 FltMgr - ok
19:36:18.0766 5960 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
19:36:18.0778 5960 FontCache - ok
19:36:18.0842 5960 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:36:18.0862 5960 FontCache3.0.0.0 - ok
19:36:18.0884 5960 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:36:18.0892 5960 FsDepends - ok
19:36:18.0923 5960 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
19:36:18.0930 5960 Fs_Rec - ok
19:36:18.0968 5960 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:36:18.0992 5960 fvevol - ok
19:36:19.0007 5960 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:36:19.0016 5960 gagp30kx - ok
19:36:19.0050 5960 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:36:19.0064 5960 GEARAspiWDM - ok
19:36:19.0095 5960 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
19:36:19.0105 5960 GoToAssist - ok
19:36:19.0154 5960 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
19:36:19.0180 5960 gpsvc - ok
19:36:19.0279 5960 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:36:19.0282 5960 gupdate - ok
19:36:19.0289 5960 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:36:19.0291 5960 gupdatem - ok
19:36:19.0313 5960 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:36:19.0326 5960 hcw85cir - ok
19:36:19.0368 5960 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
19:36:19.0370 5960 HDAudBus - ok
19:36:19.0414 5960 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
19:36:19.0429 5960 HECIx64 - ok
19:36:19.0440 5960 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:36:19.0448 5960 HidBatt - ok
19:36:19.0470 5960 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:36:19.0483 5960 HidBth - ok
19:36:19.0505 5960 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:36:19.0516 5960 HidIr - ok
19:36:19.0575 5960 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
19:36:19.0589 5960 hidserv - ok
19:36:19.0609 5960 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
19:36:19.0620 5960 HidUsb - ok
19:36:19.0676 5960 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
19:36:19.0691 5960 hkmsvc - ok
19:36:19.0737 5960 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
19:36:19.0741 5960 HomeGroupListener - ok
19:36:19.0792 5960 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
19:36:19.0795 5960 HomeGroupProvider - ok
19:36:19.0818 5960 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
19:36:19.0833 5960 HpSAMD - ok
19:36:19.0894 5960 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
19:36:19.0926 5960 HTTP - ok
19:36:19.0961 5960 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
19:36:19.0975 5960 hwpolicy - ok
19:36:20.0021 5960 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
19:36:20.0042 5960 i8042prt - ok
19:36:20.0082 5960 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\DRIVERS\iaStor.sys
19:36:20.0088 5960 iaStor - ok
19:36:20.0164 5960 IAStorDataMgrSvc (31a0e93cdf29007d6c6fffb632f375ed) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:36:20.0166 5960 IAStorDataMgrSvc - ok
19:36:20.0214 5960 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
19:36:20.0241 5960 iaStorV - ok
19:36:20.0315 5960 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:36:20.0345 5960 idsvc - ok
19:36:20.0403 5960 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:36:20.0418 5960 iirsp - ok
19:36:20.0468 5960 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
19:36:20.0496 5960 IKEEXT - ok
19:36:20.0536 5960 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
19:36:20.0552 5960 Impcd - ok
19:36:20.0627 5960 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
19:36:20.0657 5960 IntcAzAudAddService - ok
19:36:20.0704 5960 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
19:36:20.0717 5960 intelide - ok
19:36:20.0758 5960 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:36:20.0759 5960 intelppm - ok
19:36:20.0815 5960 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:36:20.0840 5960 IPBusEnum - ok
19:36:20.0881 5960 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:36:20.0900 5960 IpFilterDriver - ok
19:36:20.0962 5960 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
19:36:20.0987 5960 iphlpsvc - ok
19:36:21.0030 5960 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
19:36:21.0051 5960 IPMIDRV - ok
19:36:21.0065 5960 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:36:21.0076 5960 IPNAT - ok
19:36:21.0238 5960 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
19:36:21.0293 5960 iPod Service - ok
19:36:21.0313 5960 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:36:21.0321 5960 IRENUM - ok
19:36:21.0338 5960 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
19:36:21.0346 5960 isapnp - ok
19:36:21.0396 5960 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
19:36:21.0419 5960 iScsiPrt - ok
19:36:21.0445 5960 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
19:36:21.0454 5960 kbdclass - ok
19:36:21.0471 5960 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
19:36:21.0487 5960 kbdhid - ok
19:36:21.0542 5960 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:36:21.0544 5960 KeyIso - ok
19:36:21.0594 5960 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
19:36:21.0609 5960 KSecDD - ok
19:36:21.0654 5960 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
19:36:21.0668 5960 KSecPkg - ok
19:36:21.0688 5960 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:36:21.0699 5960 ksthunk - ok
19:36:21.0745 5960 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:36:21.0766 5960 KtmRm - ok
19:36:21.0810 5960 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
19:36:21.0829 5960 LanmanServer - ok
19:36:21.0867 5960 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
19:36:21.0883 5960 LanmanWorkstation - ok
19:36:21.0913 5960 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:36:21.0923 5960 lltdio - ok
19:36:21.0981 5960 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:36:22.0002 5960 lltdsvc - ok
19:36:22.0020 5960 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:36:22.0027 5960 lmhosts - ok
19:36:22.0076 5960 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:36:22.0095 5960 LSI_FC - ok
19:36:22.0106 5960 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:36:22.0117 5960 LSI_SAS - ok
19:36:22.0135 5960 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:36:22.0145 5960 LSI_SAS2 - ok
19:36:22.0172 5960 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:36:22.0183 5960 LSI_SCSI - ok
19:36:22.0203 5960 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:36:22.0215 5960 luafv - ok
19:36:22.0253 5960 MBAMProtector - ok
19:36:22.0367 5960 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:36:22.0437 5960 MBAMService - ok
19:36:22.0474 5960 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
19:36:22.0491 5960 Mcx2Svc - ok
19:36:22.0508 5960 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:36:22.0524 5960 megasas - ok
19:36:22.0545 5960 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:36:22.0558 5960 MegaSR - ok
19:36:22.0631 5960 Microsoft SharePoint Workspace Audit Service - ok
19:36:22.0658 5960 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:36:22.0668 5960 MMCSS - ok
19:36:22.0690 5960 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:36:22.0703 5960 Modem - ok
19:36:22.0730 5960 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:36:22.0731 5960 monitor - ok
19:36:22.0769 5960 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
19:36:22.0786 5960 mouclass - ok
19:36:22.0797 5960 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:36:22.0806 5960 mouhid - ok
19:36:22.0833 5960 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
19:36:22.0850 5960 mountmgr - ok
19:36:22.0883 5960 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
19:36:22.0903 5960 mpio - ok
19:36:22.0927 5960 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:36:22.0937 5960 mpsdrv - ok
19:36:23.0004 5960 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
19:36:23.0035 5960 MpsSvc - ok
19:36:23.0080 5960 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
19:36:23.0100 5960 MRxDAV - ok
19:36:23.0141 5960 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:36:23.0161 5960 mrxsmb - ok
19:36:23.0206 5960 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:36:23.0229 5960 mrxsmb10 - ok
19:36:23.0248 5960 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:36:23.0263 5960 mrxsmb20 - ok
19:36:23.0282 5960 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
19:36:23.0290 5960 msahci - ok
19:36:23.0307 5960 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
19:36:23.0317 5960 msdsm - ok
19:36:23.0340 5960 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:36:23.0354 5960 MSDTC - ok
19:36:23.0399 5960 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:36:23.0415 5960 Msfs - ok
19:36:23.0435 5960 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:36:23.0442 5960 mshidkmdf - ok
19:36:23.0458 5960 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
19:36:23.0464 5960 msisadrv - ok
19:36:23.0542 5960 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:36:23.0557 5960 MSiSCSI - ok
19:36:23.0566 5960 msiserver - ok
19:36:23.0611 5960 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:36:23.0623 5960 MSKSSRV - ok
19:36:23.0652 5960 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:36:23.0659 5960 MSPCLOCK - ok
19:36:23.0673 5960 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:36:23.0681 5960 MSPQM - ok
19:36:23.0704 5960 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
19:36:23.0718 5960 MsRPC - ok
19:36:23.0763 5960 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
19:36:23.0764 5960 mssmbios - ok
19:36:23.0843 5960 MSSQL$MSSMLBIZ - ok
19:36:23.0938 5960 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) C:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
19:36:23.0962 5960 MSSQLServerADHelper100 - ok
19:36:23.0981 5960 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:36:23.0987 5960 MSTEE - ok
19:36:23.0996 5960 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:36:24.0003 5960 MTConfig - ok
19:36:24.0026 5960 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:36:24.0033 5960 Mup - ok
19:36:24.0104 5960 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
19:36:24.0111 5960 napagent - ok
19:36:24.0166 5960 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:36:24.0190 5960 NativeWifiP - ok
19:36:24.0253 5960 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
19:36:24.0263 5960 NDIS - ok
19:36:24.0285 5960 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:36:24.0295 5960 NdisCap - ok
19:36:24.0317 5960 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:36:24.0326 5960 NdisTapi - ok
19:36:24.0368 5960 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
19:36:24.0389 5960 Ndisuio - ok
19:36:24.0438 5960 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
19:36:24.0457 5960 NdisWan - ok
19:36:24.0484 5960 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
19:36:24.0496 5960 NDProxy - ok
19:36:24.0558 5960 Netaapl (6f4607e2333fe21e9e3ff8133a88b35b) C:\Windows\system32\DRIVERS\netaapl64.sys
19:36:24.0571 5960 Netaapl - ok
19:36:24.0586 5960 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:36:24.0599 5960 NetBIOS - ok
19:36:24.0644 5960 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
19:36:24.0665 5960 NetBT - ok
19:36:24.0705 5960 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:36:24.0708 5960 Netlogon - ok
19:36:24.0765 5960 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:36:24.0771 5960 Netman - ok
19:36:24.0794 5960 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:36:24.0799 5960 netprofm - ok
19:36:24.0902 5960 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:36:24.0924 5960 NetTcpPortSharing - ok
19:36:24.0942 5960 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:36:24.0950 5960 nfrd960 - ok
19:36:24.0971 5960 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
19:36:24.0973 5960 NlaSvc - ok
19:36:25.0111 5960 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
19:36:25.0134 5960 NOBU - ok
19:36:25.0199 5960 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:36:25.0213 5960 Npfs - ok
19:36:25.0268 5960 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:36:25.0281 5960 nsi - ok
19:36:25.0300 5960 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:36:25.0308 5960 nsiproxy - ok
19:36:25.0379 5960 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
19:36:25.0430 5960 Ntfs - ok
19:36:25.0446 5960 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:36:25.0454 5960 Null - ok
19:36:25.0476 5960 nuviocir (be29aa3cba78480ab8591873197cb56a) C:\Windows\system32\DRIVERS\nuviocir_win7_x64.sys
19:36:25.0485 5960 nuviocir - ok
19:36:25.0534 5960 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
19:36:25.0559 5960 nvraid - ok
19:36:25.0599 5960 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
19:36:25.0619 5960 nvstor - ok
19:36:25.0679 5960 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
19:36:25.0700 5960 nv_agp - ok
19:36:25.0743 5960 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
19:36:25.0762 5960 ohci1394 - ok
19:36:25.0824 5960 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:36:25.0852 5960 ose - ok
19:36:25.0966 5960 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:36:26.0073 5960 osppsvc - ok
19:36:26.0119 5960 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:36:26.0124 5960 p2pimsvc - ok
19:36:26.0147 5960 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:36:26.0152 5960 p2psvc - ok
19:36:26.0193 5960 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:36:26.0213 5960 Parport - ok
19:36:26.0261 5960 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
19:36:26.0278 5960 partmgr - ok
19:36:26.0304 5960 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:36:26.0319 5960 PcaSvc - ok
19:36:26.0382 5960 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
19:36:26.0401 5960 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
19:36:26.0457 5960 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
19:36:26.0479 5960 pci - ok
19:36:26.0498 5960 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:36:26.0505 5960 pciide - ok
19:36:26.0528 5960 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:36:26.0540 5960 pcmcia - ok
19:36:26.0562 5960 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:36:26.0570 5960 pcw - ok
19:36:26.0597 5960 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:36:26.0625 5960 PEAUTH - ok
19:36:26.0683 5960 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:36:26.0707 5960 PerfHost - ok
19:36:26.0783 5960 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
19:36:26.0827 5960 pla - ok
19:36:26.0867 5960 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
19:36:26.0888 5960 PlugPlay - ok
19:36:26.0906 5960 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:36:26.0915 5960 PNRPAutoReg - ok
19:36:26.0933 5960 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:36:26.0936 5960 PNRPsvc - ok
19:36:26.0990 5960 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
19:36:27.0014 5960 PolicyAgent - ok
19:36:27.0068 5960 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:36:27.0086 5960 Power - ok
19:36:27.0130 5960 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
19:36:27.0150 5960 PptpMiniport - ok
19:36:27.0161 5960 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:36:27.0173 5960 Processor - ok
19:36:27.0218 5960 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
19:36:27.0237 5960 ProfSvc - ok
19:36:27.0278 5960 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:36:27.0280 5960 ProtectedStorage - ok
19:36:27.0329 5960 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
19:36:27.0353 5960 Psched - ok
19:36:27.0430 5960 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
19:36:27.0448 5960 PxHlpa64 - ok
19:36:27.0601 5960 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:36:27.0660 5960 ql2300 - ok
19:36:27.0698 5960 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:36:27.0715 5960 ql40xx - ok
19:36:27.0761 5960 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:36:27.0780 5960 QWAVE - ok
19:36:27.0796 5960 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:36:27.0806 5960 QWAVEdrv - ok
19:36:27.0815 5960 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:36:27.0822 5960 RasAcd - ok
19:36:27.0839 5960 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:36:27.0853 5960 RasAgileVpn - ok
19:36:27.0875 5960 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:36:27.0885 5960 RasAuto - ok
19:36:27.0931 5960 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:36:27.0952 5960 Rasl2tp - ok
19:36:27.0989 5960 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
19:36:28.0010 5960 RasMan - ok
19:36:28.0024 5960 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:36:28.0035 5960 RasPppoe - ok
19:36:28.0058 5960 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:36:28.0068 5960 RasSstp - ok
19:36:28.0113 5960 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
19:36:28.0139 5960 rdbss - ok
19:36:28.0157 5960 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:36:28.0166 5960 rdpbus - ok
19:36:28.0198 5960 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:36:28.0209 5960 RDPCDD - ok
19:36:28.0229 5960 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:36:28.0237 5960 RDPENCDD - ok
19:36:28.0248 5960 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:36:28.0254 5960 RDPREFMP - ok
19:36:28.0295 5960 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
19:36:28.0319 5960 RDPWD - ok
19:36:28.0379 5960 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
19:36:28.0403 5960 rdyboost - ok
19:36:28.0443 5960 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:36:28.0459 5960 RemoteAccess - ok
19:36:28.0474 5960 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:36:28.0484 5960 RemoteRegistry - ok
19:36:28.0590 5960 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
19:36:28.0666 5960 RoxMediaDB12OEM - ok
19:36:28.0703 5960 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
19:36:28.0705 5960 RoxWatch12 - ok
19:36:28.0726 5960 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:36:28.0738 5960 RpcEptMapper - ok
19:36:28.0751 5960 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:36:28.0762 5960 RpcLocator - ok
19:36:28.0815 5960 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:36:28.0822 5960 RpcSs - ok
19:36:28.0844 5960 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:36:28.0854 5960 rspndr - ok
19:36:28.0908 5960 RTL8167 (16d4e350420baa7e63e16e3fc033e1f5) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:36:28.0926 5960 RTL8167 - ok
19:36:28.0967 5960 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:36:28.0970 5960 SamSs - ok
19:36:29.0014 5960 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
19:36:29.0030 5960 sbp2port - ok
19:36:29.0054 5960 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:36:29.0065 5960 SCardSvr - ok
19:36:29.0106 5960 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
19:36:29.0120 5960 scfilter - ok
19:36:29.0186 5960 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
19:36:29.0223 5960 Schedule - ok
19:36:29.0258 5960 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:36:29.0260 5960 SCPolicySvc - ok
19:36:29.0294 5960 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
19:36:29.0299 5960 SDRSVC - ok
19:36:29.0415 5960 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
19:36:29.0437 5960 SeaPort - ok
19:36:29.0484 5960 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:36:29.0499 5960 secdrv - ok
19:36:29.0516 5960 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
19:36:29.0526 5960 seclogon - ok
19:36:29.0543 5960 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:36:29.0552 5960 SENS - ok
19:36:29.0563 5960 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:36:29.0571 5960 SensrSvc - ok
19:36:29.0590 5960 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:36:29.0599 5960 Serenum - ok
19:36:29.0619 5960 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:36:29.0631 5960 Serial - ok
19:36:29.0648 5960 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:36:29.0657 5960 sermouse - ok
19:36:29.0700 5960 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
19:36:29.0718 5960 SessionEnv - ok
19:36:29.0763 5960 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:36:29.0777 5960 sffdisk - ok
19:36:29.0793 5960 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:36:29.0801 5960 sffp_mmc - ok
19:36:29.0823 5960 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
19:36:29.0831 5960 sffp_sd - ok
19:36:29.0840 5960 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:36:29.0848 5960 sfloppy - ok
19:36:29.0967 5960 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
19:36:29.0991 5960 Sftfs - ok
19:36:30.0071 5960 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:36:30.0111 5960 sftlist - ok
19:36:30.0162 5960 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
19:36:30.0179 5960 Sftplay - ok
19:36:30.0197 5960 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
19:36:30.0204 5960 Sftredir - ok
19:36:30.0239 5960 SftService (e1974a92ac0914a3859359a0a8c82c68) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
19:36:30.0272 5960 SftService - ok
19:36:30.0306 5960 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
19:36:30.0319 5960 Sftvol - ok
19:36:30.0359 5960 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:36:30.0399 5960 sftvsa - ok
19:36:30.0448 5960 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
19:36:30.0469 5960 SharedAccess - ok
19:36:30.0495 5960 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
19:36:30.0509 5960 ShellHWDetection - ok
19:36:30.0530 5960 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:36:30.0539 5960 SiSRaid2 - ok
19:36:30.0549 5960 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:36:30.0558 5960 SiSRaid4 - ok
19:36:30.0575 5960 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:36:30.0586 5960 Smb - ok
19:36:30.0636 5960 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:36:30.0651 5960 SNMPTRAP - ok
19:36:30.0662 5960 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:36:30.0671 5960 spldr - ok
19:36:30.0694 5960 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
19:36:30.0707 5960 Spooler - ok
19:36:30.0807 5960 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
19:36:30.0824 5960 sppsvc - ok
19:36:30.0844 5960 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:36:30.0852 5960 sppuinotify - ok
19:36:30.0908 5960 SQLAgent$MSSMLBIZ (a687b5b326afcfcf182c4931d1ff9771) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.MSSMLBIZ\MSSQL\Binn\SQLAGENT.EXE
19:36:30.0934 5960 SQLAgent$MSSMLBIZ - ok
19:36:31.0014 5960 SQLBrowser (b54b48f6d92423440c264e91225c5ff1) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:36:31.0041 5960 SQLBrowser - ok
19:36:31.0150 5960 SQLWriter (6d65985945b03ca59b67d0b73702fc7b) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:36:31.0170 5960 SQLWriter - ok
19:36:31.0217 5960 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
19:36:31.0241 5960 srv - ok
19:36:31.0264 5960 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
19:36:31.0281 5960 srv2 - ok
19:36:31.0302 5960 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
19:36:31.0314 5960 srvnet - ok
19:36:31.0368 5960 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:36:31.0372 5960 SSDPSRV - ok
19:36:31.0394 5960 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:36:31.0410 5960 SstpSvc - ok
19:36:31.0469 5960 ssudmdm (ad42ca614e086bcadbd53fffc404ac24) C:\Windows\system32\DRIVERS\ssudmdm.sys
19:36:31.0490 5960 ssudmdm - ok
19:36:31.0532 5960 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:36:31.0546 5960 stexstor - ok
19:36:31.0601 5960 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
19:36:31.0627 5960 stisvc - ok
19:36:31.0687 5960 stllssvr (7731f46ec0d687a931cba063e8f90ef0) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
19:36:31.0712 5960 stllssvr - ok
19:36:31.0754 5960 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
19:36:31.0767 5960 swenum - ok
19:36:31.0870 5960 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
19:36:31.0927 5960 SwitchBoard - ok
19:36:31.0974 5960 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:36:32.0000 5960 swprv - ok
19:36:32.0066 5960 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
19:36:32.0081 5960 SysMain - ok
19:36:32.0115 5960 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
19:36:32.0128 5960 TabletInputService - ok
19:36:32.0172 5960 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
19:36:32.0209 5960 TapiSrv - ok
19:36:32.0243 5960 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:36:32.0255 5960 TBS - ok
19:36:32.0323 5960 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
19:36:32.0367 5960 Tcpip - ok
19:36:32.0431 5960 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
19:36:32.0445 5960 TCPIP6 - ok
19:36:32.0511 5960 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
19:36:32.0527 5960 tcpipreg - ok
19:36:32.0574 5960 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:36:32.0587 5960 TDPIPE - ok
19:36:32.0627 5960 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
19:36:32.0640 5960 TDTCP - ok
19:36:32.0682 5960 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
19:36:32.0701 5960 tdx - ok
19:36:32.0741 5960 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
19:36:32.0755 5960 TermDD - ok
19:36:32.0804 5960 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
19:36:32.0833 5960 TermService - ok
19:36:32.0851 5960 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
19:36:32.0860 5960 Themes - ok
19:36:32.0898 5960 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:36:32.0901 5960 THREADORDER - ok
19:36:32.0948 5960 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\Windows\system32\DRIVERS\tmactmon.sys
19:36:32.0964 5960 tmactmon - ok
19:36:33.0030 5960 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\Windows\system32\DRIVERS\tmcomm.sys
19:36:33.0052 5960 tmcomm - ok
19:36:33.0089 5960 tmeevw (1161f882b3cfa8076870a09924e0adc2) C:\Windows\system32\DRIVERS\tmeevw.sys
19:36:33.0104 5960 tmeevw - ok
19:36:33.0151 5960 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\Windows\system32\DRIVERS\tmevtmgr.sys
19:36:33.0166 5960 tmevtmgr - ok
19:36:33.0187 5960 tmnciesc (f0ae672ee91e7f1ef24644621b57ca7f) C:\Windows\system32\DRIVERS\tmnciesc.sys
19:36:33.0196 5960 tmnciesc - ok
19:36:33.0222 5960 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\Windows\system32\DRIVERS\tmtdi.sys
19:36:33.0231 5960 tmtdi - ok
19:36:33.0290 5960 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:36:33.0305 5960 TrkWks - ok
19:36:33.0351 5960 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
19:36:33.0353 5960 TrustedInstaller - ok
19:36:33.0396 5960 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:36:33.0414 5960 tssecsrv - ok
19:36:33.0480 5960 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
19:36:33.0496 5960 TsUsbFlt - ok
19:36:33.0538 5960 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
19:36:33.0560 5960 tunnel - ok
19:36:33.0593 5960 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:36:33.0608 5960 uagp35 - ok
19:36:33.0652 5960 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
19:36:33.0672 5960 udfs - ok
19:36:33.0694 5960 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:36:33.0705 5960 UI0Detect - ok
19:36:33.0759 5960 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
19:36:33.0777 5960 uliagpkx - ok
19:36:33.0813 5960 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
19:36:33.0828 5960 umbus - ok
19:36:33.0847 5960 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:36:33.0854 5960 UmPass - ok
19:36:33.0911 5960 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:36:33.0918 5960 upnphost - ok
19:36:33.0963 5960 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
19:36:33.0980 5960 USBAAPL64 - ok
19:36:34.0020 5960 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
19:36:34.0039 5960 usbccgp - ok
19:36:34.0061 5960 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
19:36:34.0071 5960 usbcir - ok
19:36:34.0104 5960 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
19:36:34.0114 5960 usbehci - ok
19:36:34.0166 5960 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
19:36:34.0195 5960 usbhub - ok
19:36:34.0234 5960 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
19:36:34.0250 5960 usbohci - ok
19:36:34.0272 5960 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:36:34.0280 5960 usbprint - ok
19:36:34.0326 5960 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
19:36:34.0346 5960 usbscan - ok
19:36:34.0388 5960 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:36:34.0408 5960 USBSTOR - ok
19:36:34.0430 5960 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
19:36:34.0438 5960 usbuhci - ok
19:36:34.0479 5960 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
19:36:34.0500 5960 usbvideo - ok
19:36:34.0515 5960 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:36:34.0523 5960 UxSms - ok
19:36:34.0570 5960 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:36:34.0572 5960 VaultSvc - ok
19:36:34.0616 5960 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
19:36:34.0629 5960 vdrvroot - ok
19:36:34.0693 5960 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
19:36:34.0715 5960 vds - ok
19:36:34.0733 5960 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:36:34.0741 5960 vga - ok
19:36:34.0759 5960 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:36:34.0768 5960 VgaSave - ok
19:36:34.0807 5960 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
19:36:34.0831 5960 vhdmp - ok
19:36:34.0853 5960 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
19:36:34.0860 5960 viaide - ok
19:36:34.0903 5960 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
19:36:34.0919 5960 volmgr - ok
19:36:34.0970 5960 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
19:36:34.0996 5960 volmgrx - ok
19:36:35.0042 5960 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
19:36:35.0070 5960 volsnap - ok
19:36:35.0113 5960 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:36:35.0128 5960 vsmraid - ok
19:36:35.0195 5960 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
19:36:35.0250 5960 VSS - ok
19:36:35.0261 5960 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:36:35.0271 5960 vwifibus - ok
19:36:35.0311 5960 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:36:35.0333 5960 vwififlt - ok
19:36:35.0412 5960 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
19:36:35.0413 5960 vwifimp - ok
19:36:35.0496 5960 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:36:35.0509 5960 W32Time - ok
19:36:35.0523 5960 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:36:35.0533 5960 WacomPen - ok
19:36:35.0545 5960 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:36:35.0555 5960 WANARP - ok
19:36:35.0568 5960 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:36:35.0570 5960 Wanarpv6 - ok
19:36:35.0869 5960 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
19:36:35.0907 5960 WatAdminSvc - ok
19:36:36.0240 5960 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
19:36:36.0315 5960 wbengine - ok
19:36:36.0384 5960 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:36:36.0404 5960 WbioSrvc - ok
19:36:36.0493 5960 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
19:36:36.0500 5960 wcncsvc - ok
19:36:36.0544 5960 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:36:36.0559 5960 WcsPlugInService - ok
19:36:36.0665 5960 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:36:36.0680 5960 Wd - ok
19:36:36.0733 5960 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
19:36:36.0747 5960 WDC_SAM - ok
19:36:36.0796 5960 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:36:36.0842 5960 Wdf01000 - ok
19:36:36.0889 5960 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:36:36.0903 5960 WdiServiceHost - ok
19:36:36.0909 5960 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:36:36.0913 5960 WdiSystemHost - ok
19:36:36.0953 5960 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
19:36:36.0975 5960 WebClient - ok
19:36:36.0998 5960 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:36:37.0014 5960 Wecsvc - ok
19:36:37.0033 5960 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:36:37.0036 5960 wercplsupport - ok
19:36:37.0090 5960 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:36:37.0107 5960 WerSvc - ok
19:36:37.0127 5960 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:36:37.0139 5960 WfpLwf - ok
19:36:37.0191 5960 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
19:36:37.0209 5960 WimFltr - ok
19:36:37.0229 5960 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:36:37.0243 5960 WIMMount - ok
19:36:37.0292 5960 WinDefend - ok
19:36:37.0303 5960 WinHttpAutoProxySvc - ok
19:36:37.0398 5960 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:36:37.0438 5960 Winmgmt - ok
19:36:37.0666 5960 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
19:36:37.0756 5960 WinRM - ok
19:36:37.0821 5960 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
19:36:37.0840 5960 WinUsb - ok
19:36:37.0899 5960 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:36:37.0956 5960 Wlansvc - ok
19:36:38.0048 5960 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:36:38.0066 5960 wlcrasvc - ok
19:36:38.0134 5960 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:36:38.0164 5960 wlidsvc - ok
19:36:38.0196 5960 wltrysvc (de816a0624d54d68e1fb8a9028dcf81a) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
19:36:38.0204 5960 wltrysvc - ok
19:36:38.0282 5960 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
19:36:38.0283 5960 WmiAcpi - ok
19:36:38.0332 5960 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:36:38.0356 5960 wmiApSrv - ok
19:36:38.0392 5960 WMPNetworkSvc - ok
19:36:38.0431 5960 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:36:38.0444 5960 WPCSvc - ok
19:36:38.0492 5960 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
19:36:38.0509 5960 WPDBusEnum - ok
19:36:38.0547 5960 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:36:38.0563 5960 ws2ifsl - ok
19:36:38.0579 5960 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
19:36:38.0587 5960 wscsvc - ok
19:36:38.0602 5960 WSearch - ok
19:36:38.0777 5960 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
19:36:38.0796 5960 wuauserv - ok
19:36:38.0885 5960 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
19:36:38.0909 5960 WudfPf - ok
19:36:38.0968 5960 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:36:38.0990 5960 WUDFRd - ok
19:36:39.0031 5960 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
19:36:39.0047 5960 wudfsvc - ok
19:36:39.0089 5960 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:36:39.0110 5960 WwanSvc - ok
19:36:39.0249 5960 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
19:36:39.0272 5960 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
19:36:39.0305 5960 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
19:36:39.0393 5960 \Device\Harddisk0\DR0 - ok
19:36:39.0401 5960 Boot (0x1200) (287b1c0b64ec08a228b62d621cdc5afb) \Device\Harddisk0\DR0\Partition0
19:36:39.0410 5960 \Device\Harddisk0\DR0\Partition0 - ok
19:36:39.0451 5960 Boot (0x1200) (5d45f59e5cf984abf8765c502fa8e54c) \Device\Harddisk0\DR0\Partition1
19:36:39.0453 5960 \Device\Harddisk0\DR0\Partition1 - ok
19:36:39.0454 5960 ============================================================
19:36:39.0454 5960 Scan finished
19:36:39.0454 5960 ============================================================
19:36:39.0470 5504 Detected object count: 0
19:36:39.0470 5504 Actual detected object count: 0





aswMBR scan log


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-23 20:14:29
-----------------------------
20:14:29.281 OS Version: Windows x64 6.1.7601 Service Pack 1
20:14:29.282 Number of processors: 4 586 0x2505
20:14:29.282 ComputerName: TOUCHY UserName: Don
20:14:39.930 Initialize success
20:14:46.657 AVAST engine defs: 12042300
20:15:07.978 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:15:07.981 Disk 0 Vendor: ST310005 CC46 Size: 953869MB BusType: 3
20:15:07.996 Disk 0 MBR read successfully
20:15:07.998 Disk 0 MBR scan
20:15:08.013 Disk 0 Windows VISTA default MBR code
20:15:08.016 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
20:15:08.032 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 80325
20:15:08.049 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 938820 MB offset 30800325
20:15:08.078 Disk 0 scanning C:\Windows\system32\drivers
20:15:24.822 Service scanning
20:15:55.255 Modules scanning
20:15:55.269 Disk 0 trace - called modules:
20:15:55.306 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
20:15:55.312 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80064d7060]
20:15:55.316 3 CLASSPNP.SYS[fffff88001bae43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800623b050]
20:16:07.959 AVAST engine scan C:\Windows
20:16:35.274 AVAST engine scan C:\Windows\system32
20:23:35.579 AVAST engine scan C:\Windows\system32\drivers
20:23:55.085 AVAST engine scan C:\Users\Don
20:45:23.525 AVAST engine scan C:\ProgramData
20:54:17.202 Scan finished successfully
20:55:11.974 Disk 0 MBR has been saved successfully to "C:\Users\Don\Desktop\MBR.dat"
20:55:11.974 The log file has been saved successfully to "C:\Users\Don\Desktop\aswMBR_2012_04_23.txt"


Edited by dougal158, 23 April 2012 - 06:35 AM.


#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:03:03 AM

Posted 25 April 2012 - 06:29 PM

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

#5 dougal158

dougal158
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 25 April 2012 - 07:00 PM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Don (administrator) on 26-04-2012 at 09:20:48
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Broadcom Virtual Wireless Adapter = Local Area Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Touchy
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 88-9F-FA-5D-2B-74
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom Virtual Wireless Adapter
Physical Address. . . . . . . . . : 88-9F-FA-5D-2B-74
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : 88-9F-FA-5D-2B-74
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b5b4:4944:9db2:60a%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, 26 April 2012 9:16:48 AM
Lease Expires . . . . . . . . . . : Friday, 27 April 2012 9:16:48 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 227057658
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-04-30-DA-84-2B-2B-84-2E-F3
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 84-2B-2B-84-2E-F3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C2FF4466-0615-46B9-9BDE-DA7795ADCB25}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:c2:382:c30f:483e(Preferred)
Link-local IPv6 Address . . . . . : fe80::c2:382:c30f:483e%16(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{F2E68C9B-B11E-4DE2-B933-656A43606DAD}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: 192-168-1-1.tpgi.com.au
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.237.104
74.125.237.102
74.125.237.98
74.125.237.96
74.125.237.110
74.125.237.103
74.125.237.97
74.125.237.99
74.125.237.101
74.125.237.105
74.125.237.100


Pinging google.com [74.125.237.104] with 32 bytes of data:
Reply from 74.125.237.104: bytes=32 time=38ms TTL=57
Reply from 74.125.237.104: bytes=32 time=37ms TTL=57

Ping statistics for 74.125.237.104:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 37ms, Maximum = 38ms, Average = 37ms
Server: 192-168-1-1.tpgi.com.au
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=268ms TTL=53
Reply from 209.191.122.70: bytes=32 time=270ms TTL=53

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 268ms, Maximum = 270ms, Average = 269ms
Server: 192-168-1-1.tpgi.com.au
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...88 9f fa 5d 2b 74 ......Microsoft Virtual WiFi Miniport Adapter
12...88 9f fa 5d 2b 74 ......Broadcom Virtual Wireless Adapter
11...88 9f fa 5d 2b 74 ......DW1501 Wireless-N WLAN Half-Mini Card
10...84 2b 2b 84 2e f3 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.7 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.7 281
192.168.1.7 255.255.255.255 On-link 192.168.1.7 281
192.168.1.255 255.255.255.255 On-link 192.168.1.7 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
16 58 ::/0 On-link
1 306 ::1/128 On-link
16 58 2001::/32 On-link
16 306 2001:0:4137:9e76:c2:382:c30f:483e/128
On-link
11 281 fe80::/64 On-link
16 306 fe80::/64 On-link
16 306 fe80::c2:382:c30f:483e/128
On-link
11 281 fe80::b5b4:4944:9db2:60a/128
On-link
1 306 ff00::/8 On-link
16 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/26/2012 09:20:04 AM) (Source: PC-Doctor) (User: )
Description: (188) Asapi: (09:20:04:3070)(188) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/26/2012 09:20:04 AM) (Source: PC-Doctor) (User: )
Description: (188) Asapi: (09:20:04:2910)(188) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/25/2012 07:50:08 PM) (Source: PC-Doctor) (User: )
Description: (1120) Asapi: (19:50:08:2520)(1120) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/25/2012 07:50:08 PM) (Source: PC-Doctor) (User: )
Description: (1120) Asapi: (19:50:08:2490)(1120) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/25/2012 07:40:05 PM) (Source: PC-Doctor) (User: )
Description: (4140) Asapi: (19:40:05:1590)(4140) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/25/2012 07:40:05 PM) (Source: PC-Doctor) (User: )
Description: (4140) Asapi: (19:40:04:9810)(4140) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/23/2012 07:50:00 PM) (Source: PC-Doctor) (User: )
Description: (1800) Asapi: (19:50:00:9520)(1800) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/23/2012 07:50:00 PM) (Source: PC-Doctor) (User: )
Description: (1800) Asapi: (19:50:00:9240)(1800) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/23/2012 07:40:03 PM) (Source: PC-Doctor) (User: )
Description: (844) Asapi: (19:40:03:5100)(844) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/23/2012 07:40:03 PM) (Source: PC-Doctor) (User: )
Description: (844) Asapi: (19:40:03:4790)(844) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'


System errors:
=============
Error: (04/26/2012 09:19:11 AM) (Source: Service Control Manager) (User: )
Description: The MBAMService service depends on the MBAMProtector service which failed to start because of the following error:
%%2

Error: (04/26/2012 09:19:11 AM) (Source: Service Control Manager) (User: )
Description: The MBAMProtector service failed to start due to the following error:
%%2

Error: (04/26/2012 09:17:16 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (04/26/2012 09:17:16 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (04/25/2012 07:39:50 PM) (Source: Service Control Manager) (User: )
Description: The MBAMService service depends on the MBAMProtector service which failed to start because of the following error:
%%2

Error: (04/25/2012 07:39:50 PM) (Source: Service Control Manager) (User: )
Description: The MBAMProtector service failed to start due to the following error:
%%2

Error: (04/23/2012 08:13:33 PM) (Source: Service Control Manager) (User: )
Description: The MBAMService service depends on the MBAMProtector service which failed to start because of the following error:
%%2

Error: (04/23/2012 08:13:33 PM) (Source: Service Control Manager) (User: )
Description: The MBAMProtector service failed to start due to the following error:
%%2

Error: (04/23/2012 08:11:07 PM) (Source: BugCheck) (User: )
Description: 0x00000109 (0xa3a039d8a08449da, 0xb3b7465ef30282fc, 0xfffff80000bd45cc, 0x0000000000000001)C:\Windows\MEMORY.DMP042312-14336-01

Error: (04/23/2012 08:11:02 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:09:22 PM on ?23/?04/?2012 was unexpected.


Microsoft Office Sessions:
=========================
Error: (04/26/2012 09:20:04 AM) (Source: PC-Doctor)(User: )
Description: (188) Asapi: (09:20:04:3070)(188) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/26/2012 09:20:04 AM) (Source: PC-Doctor)(User: )
Description: (188) Asapi: (09:20:04:2910)(188) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/25/2012 07:50:08 PM) (Source: PC-Doctor)(User: )
Description: (1120) Asapi: (19:50:08:2520)(1120) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/25/2012 07:50:08 PM) (Source: PC-Doctor)(User: )
Description: (1120) Asapi: (19:50:08:2490)(1120) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/25/2012 07:40:05 PM) (Source: PC-Doctor)(User: )
Description: (4140) Asapi: (19:40:05:1590)(4140) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/25/2012 07:40:05 PM) (Source: PC-Doctor)(User: )
Description: (4140) Asapi: (19:40:04:9810)(4140) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/23/2012 07:50:00 PM) (Source: PC-Doctor)(User: )
Description: (1800) Asapi: (19:50:00:9520)(1800) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/23/2012 07:50:00 PM) (Source: PC-Doctor)(User: )
Description: (1800) Asapi: (19:50:00:9240)(1800) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'

Error: (04/23/2012 07:40:03 PM) (Source: PC-Doctor)(User: )
Description: (844) Asapi: (19:40:03:5100)(844) Asapi.State - Error -- 123 Plugin S3LogPusher.dll failed to load.

Error: (04/23/2012 07:40:03 PM) (Source: PC-Doctor)(User: )
Description: (844) Asapi: (19:40:03:4790)(844) libAsapi.DynamicLoadedPlugin - Error -- 64 Unable to load library 'S3LogPusher.dll'


=========================== Installed Programs ============================

Adobe Acrobat X Pro - English, Français, Deutsch (Version: 10.1.2)
Adobe AIR (Version: 3.1.0.4880)
Adobe Community Help (Version: 3.4.980)
Adobe Content Viewer (Version: 1.4.0)
Adobe Creative Suite 5.5 Master Collection (Version: 5.5)
Adobe Flash Player 10 Plugin (Version: 10.2.153.1)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.63)
Adobe Media Player (Version: 1.8)
Adobe Reader X (10.1.2) MUI (Version: 10.1.2)
Adobe Story (Version: 1.0.571)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
Apple Application Support (Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.96)
Apple Software Update (Version: 2.1.3.127)
Bing Bar (Version: 7.0.609.0)
Bing Maps 3D (Version: 4.0.903.16005)
Bing Rewards Client Installer (Version: 16.0.345.0)
Bonjour (Version: 3.0.0.10)
Business Contact Manager for Microsoft Outlook 2010 (Version: 4.0.11308.0)
Canon MP560 series MP Drivers
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0921.2140.37013)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0921.2140.37013)
Catalyst Control Center InstallProxy (Version: 2010.0921.2140.37013)
Catalyst Control Center Localization All (Version: 2010.0921.2140.37013)
ccc-core-static (Version: 2010.0921.2140.37013)
ccc-utility64 (Version: 2010.0921.2140.37013)
CCC Help Chinese Standard (Version: 2010.0921.2139.37013)
CCC Help Chinese Traditional (Version: 2010.0921.2139.37013)
CCC Help Czech (Version: 2010.0921.2139.37013)
CCC Help Danish (Version: 2010.0921.2139.37013)
CCC Help Dutch (Version: 2010.0921.2139.37013)
CCC Help English (Version: 2010.0921.2139.37013)
CCC Help Finnish (Version: 2010.0921.2139.37013)
CCC Help French (Version: 2010.0921.2139.37013)
CCC Help German (Version: 2010.0921.2139.37013)
CCC Help Greek (Version: 2010.0921.2139.37013)
CCC Help Hungarian (Version: 2010.0921.2139.37013)
CCC Help Italian (Version: 2010.0921.2139.37013)
CCC Help Japanese (Version: 2010.0921.2139.37013)
CCC Help Korean (Version: 2010.0921.2139.37013)
CCC Help Norwegian (Version: 2010.0921.2139.37013)
CCC Help Polish (Version: 2010.0921.2139.37013)
CCC Help Portuguese (Version: 2010.0921.2139.37013)
CCC Help Russian (Version: 2010.0921.2139.37013)
CCC Help Spanish (Version: 2010.0921.2139.37013)
CCC Help Swedish (Version: 2010.0921.2139.37013)
CCC Help Thai (Version: 2010.0921.2139.37013)
CCC Help Turkish (Version: 2010.0921.2139.37013)
CIR Tool Kit (Version: 2.2.2010.714)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CorelDRAW Graphics Suite X3 (Version: 13.2)
CyberLink YouPaint (Version: 1.2.2124)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell PhotoStage (Version: 1.5.0.67)
Dell Stage (Version: 1.5.420.0)
Dell Stage Remote (Version: 2.0.0.43)
Dell Support Center (Version: 3.0.5621.01)
Dell Touch Software Suite Games (Version: 1.2.6.0)
Dell VideoStage (Version: 1.1.0.1117)
DellOSD (Version: 1.1.2)
DirectX 9 Runtime (Version: 1.00.0000)
DW WLAN Card Utility (Version: 5.60.48.35)
EN (Version: 13.1)
Face Recognition (Version: 3.0.86.1)
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
FontNav (Version: 5.0)
Google Chrome (Version: 18.0.1025.162)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.111)
GoToAssist 8.0.0.514
Infotriever
Intel® Control Center (Version: 1.2.1.1007)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Internet Explorer (Enable DEP)
iTunes (Version: 10.5.0.142)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 23 (64-bit) (Version: 6.0.230)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
Logitech Harmony Remote Software 7 (Version: 7.3.0.15)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech Media Server 7.7.2 (Version: 7.7.2)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (Version: 3.5.30730.0)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 Browser (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.1.2531.0)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft Touch Pack for Windows 7 (Version: 1.0.40517.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft XNA Framework Redistributable 3.0 (Version: 3.0.11010.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
Microsoft® Office Language Pack 2010 – English (Business Contact Manager for Microsoft Outlook 2010) (Version: 4.0.11308.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Multimedia Card Reader (Version: 1.1.1817.91)
Need For Speed™ World (Version: 1.0.0.363)
PDF Settings CS5 (Version: 10.0)
PhotoShowExpress (Version: 2.0.063)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Pro/ENGINEER Schools Edition Release Wildfire 5.0 Datecode M040 (Version: Wildfire 5.0)
Pro/ENGINEER Thumbnail Viewer 1.0 (Version: 28.10.100)
ProductView Express 9.1 (Version: 9.1.40.14)
PxMergeModule (Version: 1.00.0000)
Quake II
QuickTime (Version: 7.69.80.9)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6141)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.103.0)
Service Pack 1 for SQL Server 2008 (KB968369) (Version: 10.1.2531.0)
SetDisplayConfig (Version: 1.00.0000)
Skins (Version: 2010.0921.2140.37013)
Skype Toolbars (Version: 1.0.4051)
Skype™ 4.2 (Version: 4.2.169)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
StickyNotes (Version: 1.3.20.0)
Trend Micro Titanium (Version: 5.00)
Trend Micro Titanium Maximum Security 2012 (Version: 5.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update Manager (Version: 4.60)
VBA (Version: 6.2)
VLC media player 1.1.7 (Version: 1.1.7)
WD Link (Version: 1.00.03)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 6006.66 MB
Available physical RAM: 4191.14 MB
Total Pagefile: 12011.5 MB
Available Pagefile: 9958.83 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.72 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:916.82 GB) (Free:680.83 GB) NTFS

========================= Users: ========================================

User accounts for \\TOUCHY

Administrator Don Guest

========================= Minidump Files ==================================


**** End of log ****

#6 dougal158

dougal158
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 25 April 2012 - 07:05 PM

Thanks for your help with this.
One thing I did not mention in my original post was whenever I run an application I am getting message dialogs that are obviously not from the application because the icons are the same for every message and the normal close 'X" is disabled. I have not clicked on any of these as I suspect they are the method by which my son managed to get the virus to start with. The dailogs persist and the only way to remove them is ending the associated task in task manager.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:03 PM

Posted 25 April 2012 - 07:15 PM

It appears to me that Trend Micro may have caused the original issue,

Did you run this as requested?

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u3-windows-i586.exe (or jre-7u3-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


EDIT after seeing your last post(you poasted as I was replying)
You should also run..RKILL and MBAM again.


RKill Download Link - (Download page will open in a new tab or browser window.)

When at the download page, click on the Download Now button labeled iExplore.exe download link. When you are prompted where to save it, please save it on your desktop.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal/regular mode and click Update tab, select Check for Updates,when done
click Scanner tab,select FULL scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode

Edited by boopme, 25 April 2012 - 07:23 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 dougal158

dougal158
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 25 April 2012 - 07:24 PM

09:46:37.0443 3540 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
09:46:38.0560 3540 ============================================================
09:46:38.0560 3540 Current date / time: 2012/04/26 09:46:38.0560
09:46:38.0560 3540 SystemInfo:
09:46:38.0560 3540
09:46:38.0560 3540 OS Version: 6.1.7601 ServicePack: 1.0
09:46:38.0560 3540 Product type: Workstation
09:46:38.0561 3540 ComputerName: TOUCHY
09:46:38.0561 3540 UserName: Don
09:46:38.0561 3540 Windows directory: C:\Windows
09:46:38.0561 3540 System windows directory: C:\Windows
09:46:38.0561 3540 Running under WOW64
09:46:38.0561 3540 Processor architecture: Intel x64
09:46:38.0561 3540 Number of processors: 4
09:46:38.0561 3540 Page size: 0x1000
09:46:38.0561 3540 Boot type: Normal boot
09:46:38.0561 3540 ============================================================
09:46:38.0979 3540 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:46:38.0984 3540 ============================================================
09:46:38.0984 3540 \Device\Harddisk0\DR0:
09:46:38.0984 3540 MBR partitions:
09:46:38.0984 3540 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
09:46:38.0984 3540 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x729A23EB
09:46:38.0984 3540 ============================================================
09:46:38.0996 3540 C: <-> \Device\Harddisk0\DR0\Partition1
09:46:38.0997 3540 ============================================================
09:46:38.0997 3540 Initialize success
09:46:38.0997 3540 ============================================================
09:47:00.0227 6140 ============================================================
09:47:00.0227 6140 Scan started
09:47:00.0227 6140 Mode: Manual; TDLFS;
09:47:00.0227 6140 ============================================================
09:47:00.0596 6140 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
09:47:00.0610 6140 1394ohci - ok
09:47:00.0642 6140 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
09:47:00.0658 6140 ACPI - ok
09:47:00.0695 6140 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
09:47:00.0708 6140 AcpiPmi - ok
09:47:00.0894 6140 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:47:00.0916 6140 AdobeARMservice - ok
09:47:00.0979 6140 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
09:47:01.0008 6140 adp94xx - ok
09:47:01.0041 6140 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
09:47:01.0068 6140 adpahci - ok
09:47:01.0083 6140 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
09:47:01.0094 6140 adpu320 - ok
09:47:01.0143 6140 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
09:47:01.0145 6140 AeLookupSvc - ok
09:47:01.0214 6140 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
09:47:01.0238 6140 AFD - ok
09:47:01.0264 6140 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
09:47:01.0276 6140 agp440 - ok
09:47:01.0296 6140 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
09:47:01.0310 6140 ALG - ok
09:47:01.0324 6140 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
09:47:01.0331 6140 aliide - ok
09:47:01.0363 6140 AMD External Events Utility (91da5a257b800c21cc3b6674e579cf90) C:\Windows\system32\atiesrxx.exe
09:47:01.0372 6140 AMD External Events Utility - ok
09:47:01.0384 6140 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
09:47:01.0391 6140 amdide - ok
09:47:01.0410 6140 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
09:47:01.0418 6140 AmdK8 - ok
09:47:01.0694 6140 amdkmdag (b64724ca6c9f3d8325f0f1a02c6adfaf) C:\Windows\system32\DRIVERS\atikmdag.sys
09:47:01.0951 6140 amdkmdag - ok
09:47:02.0092 6140 amdkmdap (18f03be6118ba9d8a9dc0b98997dc98e) C:\Windows\system32\DRIVERS\atikmpag.sys
09:47:02.0110 6140 amdkmdap - ok
09:47:02.0130 6140 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
09:47:02.0137 6140 AmdPPM - ok
09:47:02.0198 6140 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
09:47:02.0213 6140 amdsata - ok
09:47:02.0245 6140 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
09:47:02.0262 6140 amdsbs - ok
09:47:02.0316 6140 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
09:47:02.0329 6140 amdxata - ok
09:47:02.0427 6140 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
09:47:02.0446 6140 Amsp - ok
09:47:02.0548 6140 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
09:47:02.0566 6140 AppID - ok
09:47:02.0615 6140 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
09:47:02.0627 6140 AppIDSvc - ok
09:47:02.0671 6140 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
09:47:02.0684 6140 Appinfo - ok
09:47:02.0828 6140 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:47:02.0846 6140 Apple Mobile Device - ok
09:47:02.0856 6140 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
09:47:02.0864 6140 arc - ok
09:47:02.0889 6140 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
09:47:02.0897 6140 arcsas - ok
09:47:02.0927 6140 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
09:47:02.0941 6140 AsyncMac - ok
09:47:02.0975 6140 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
09:47:02.0985 6140 atapi - ok
09:47:03.0045 6140 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
09:47:03.0068 6140 AudioEndpointBuilder - ok
09:47:03.0075 6140 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
09:47:03.0081 6140 AudioSrv - ok
09:47:03.0120 6140 AVerPola (da2f7699f8f10b4cd18374017163f39c) C:\Windows\system32\DRIVERS\AVerPola.sys
09:47:03.0147 6140 AVerPola - ok
09:47:03.0196 6140 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
09:47:03.0212 6140 AxInstSV - ok
09:47:03.0270 6140 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
09:47:03.0295 6140 b06bdrv - ok
09:47:03.0313 6140 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
09:47:03.0328 6140 b57nd60a - ok
09:47:03.0418 6140 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
09:47:03.0447 6140 BBSvc - ok
09:47:03.0468 6140 BCM42RLY (ac4e2d84de54cd3a013aeff0cc56095c) C:\Windows\system32\drivers\BCM42RLY.sys
09:47:03.0475 6140 BCM42RLY - ok
09:47:03.0599 6140 BCM43XX (0b0df4cd7c2c188c95c4e09c568ad54a) C:\Windows\system32\DRIVERS\bcmwl664.sys
09:47:03.0625 6140 BCM43XX - ok
09:47:03.0719 6140 BcmSqlStartupSvc (2e552b658273b90251e0441631de2ca3) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
09:47:03.0738 6140 BcmSqlStartupSvc - ok
09:47:03.0928 6140 BcmVWL (d224b2e6bb543f1d8f1177d57fec2950) C:\Windows\system32\DRIVERS\bcmvwl64.sys
09:47:03.0938 6140 BcmVWL - ok
09:47:03.0982 6140 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
09:47:03.0993 6140 BDESVC - ok
09:47:04.0005 6140 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
09:47:04.0014 6140 Beep - ok
09:47:04.0084 6140 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
09:47:04.0107 6140 BFE - ok
09:47:04.0141 6140 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
09:47:04.0156 6140 BITS - ok
09:47:04.0178 6140 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
09:47:04.0187 6140 blbdrive - ok
09:47:04.0244 6140 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
09:47:04.0259 6140 Bonjour Service - ok
09:47:04.0298 6140 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
09:47:04.0316 6140 bowser - ok
09:47:04.0336 6140 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:47:04.0346 6140 BrFiltLo - ok
09:47:04.0362 6140 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:47:04.0369 6140 BrFiltUp - ok
09:47:04.0418 6140 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
09:47:04.0434 6140 Browser - ok
09:47:04.0455 6140 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
09:47:04.0477 6140 Brserid - ok
09:47:04.0483 6140 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
09:47:04.0495 6140 BrSerWdm - ok
09:47:04.0500 6140 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:47:04.0507 6140 BrUsbMdm - ok
09:47:04.0513 6140 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
09:47:04.0520 6140 BrUsbSer - ok
09:47:04.0536 6140 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
09:47:04.0545 6140 BTHMODEM - ok
09:47:04.0562 6140 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
09:47:04.0570 6140 bthserv - ok
09:47:04.0585 6140 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
09:47:04.0604 6140 cdfs - ok
09:47:04.0667 6140 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
09:47:04.0686 6140 cdrom - ok
09:47:04.0699 6140 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
09:47:04.0711 6140 CertPropSvc - ok
09:47:04.0728 6140 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
09:47:04.0739 6140 circlass - ok
09:47:04.0756 6140 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
09:47:04.0775 6140 CLFS - ok
09:47:04.0930 6140 CLKMSVC10_1628BCEA (de48552360fa8bdf569d83f07cb1b566) C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\BD\NavFilter\kmsvc.exe
09:47:05.0152 6140 CLKMSVC10_1628BCEA - ok
09:47:05.0226 6140 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:47:05.0229 6140 clr_optimization_v2.0.50727_32 - ok
09:47:05.0256 6140 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:47:05.0259 6140 clr_optimization_v2.0.50727_64 - ok
09:47:05.0350 6140 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:47:05.0353 6140 clr_optimization_v4.0.30319_32 - ok
09:47:05.0381 6140 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:47:05.0395 6140 clr_optimization_v4.0.30319_64 - ok
09:47:05.0506 6140 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
09:47:05.0519 6140 CmBatt - ok
09:47:05.0555 6140 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
09:47:05.0562 6140 cmdide - ok
09:47:05.0619 6140 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
09:47:05.0639 6140 CNG - ok
09:47:05.0644 6140 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
09:47:05.0651 6140 Compbatt - ok
09:47:05.0701 6140 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
09:47:05.0717 6140 CompositeBus - ok
09:47:05.0730 6140 COMSysApp - ok
09:47:05.0749 6140 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
09:47:05.0757 6140 crcdisk - ok
09:47:05.0808 6140 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
09:47:05.0821 6140 CryptSvc - ok
09:47:05.0851 6140 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
09:47:05.0865 6140 CtClsFlt - ok
09:47:06.0048 6140 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
09:47:06.0067 6140 cvhsvc - ok
09:47:06.0090 6140 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
09:47:06.0094 6140 DcomLaunch - ok
09:47:06.0139 6140 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
09:47:06.0157 6140 defragsvc - ok
09:47:06.0191 6140 DellOSDservice (5cb5fd5d4f9e160052a593749507cef7) C:\Program Files\Dell\OSD\DellOSDservice.exe
09:47:06.0202 6140 DellOSDservice - ok
09:47:06.0285 6140 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
09:47:06.0301 6140 DfsC - ok
09:47:06.0340 6140 dg_ssudbus (388039f99ce8769024ee0438352aca99) C:\Windows\system32\DRIVERS\ssudbus.sys
09:47:06.0352 6140 dg_ssudbus - ok
09:47:06.0374 6140 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
09:47:06.0388 6140 Dhcp - ok
09:47:06.0428 6140 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
09:47:06.0444 6140 discache - ok
09:47:06.0468 6140 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
09:47:06.0476 6140 Disk - ok
09:47:06.0514 6140 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
09:47:06.0531 6140 Dnscache - ok
09:47:06.0596 6140 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
09:47:06.0614 6140 dot3svc - ok
09:47:06.0659 6140 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
09:47:06.0674 6140 DPS - ok
09:47:06.0693 6140 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
09:47:06.0700 6140 drmkaud - ok
09:47:06.0740 6140 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
09:47:06.0755 6140 DXGKrnl - ok
09:47:06.0795 6140 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
09:47:06.0804 6140 EapHost - ok
09:47:06.0905 6140 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
09:47:06.0980 6140 ebdrv - ok
09:47:07.0162 6140 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
09:47:07.0179 6140 EFS - ok
09:47:07.0247 6140 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
09:47:07.0255 6140 ehRecvr - ok
09:47:07.0293 6140 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
09:47:07.0296 6140 ehSched - ok
09:47:07.0330 6140 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
09:47:07.0351 6140 elxstor - ok
09:47:07.0385 6140 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
09:47:07.0394 6140 ErrDev - ok
09:47:07.0429 6140 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
09:47:07.0433 6140 EventSystem - ok
09:47:07.0447 6140 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
09:47:07.0464 6140 exfat - ok
09:47:07.0511 6140 FACAP (2c1d443e14f376e8331f52f135dca9ef) C:\Windows\system32\DRIVERS\facap.sys
09:47:07.0527 6140 FACAP - ok
09:47:07.0668 6140 FAService (35fdef458f2978e2d0040ad3bcf7fbfe) C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
09:47:07.0692 6140 FAService - ok
09:47:07.0760 6140 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
09:47:07.0783 6140 fastfat - ok
09:47:07.0818 6140 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
09:47:07.0843 6140 Fax - ok
09:47:07.0856 6140 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
09:47:07.0864 6140 fdc - ok
09:47:07.0908 6140 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
09:47:07.0920 6140 fdPHost - ok
09:47:07.0935 6140 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
09:47:07.0946 6140 FDResPub - ok
09:47:07.0961 6140 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
09:47:07.0969 6140 FileInfo - ok
09:47:07.0974 6140 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
09:47:07.0983 6140 Filetrace - ok
09:47:08.0087 6140 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
09:47:08.0149 6140 FLEXnet Licensing Service - ok
09:47:08.0157 6140 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
09:47:08.0166 6140 flpydisk - ok
09:47:08.0203 6140 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
09:47:08.0212 6140 FltMgr - ok
09:47:08.0286 6140 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
09:47:08.0307 6140 FontCache - ok
09:47:08.0401 6140 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:47:08.0402 6140 FontCache3.0.0.0 - ok
09:47:08.0443 6140 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
09:47:08.0456 6140 FsDepends - ok
09:47:08.0497 6140 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
09:47:08.0504 6140 Fs_Rec - ok
09:47:08.0554 6140 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
09:47:08.0576 6140 fvevol - ok
09:47:08.0599 6140 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
09:47:08.0607 6140 gagp30kx - ok
09:47:08.0650 6140 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:47:08.0657 6140 GEARAspiWDM - ok
09:47:08.0744 6140 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
09:47:08.0760 6140 GoToAssist - ok
09:47:08.0794 6140 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
09:47:08.0816 6140 gpsvc - ok
09:47:08.0930 6140 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:47:08.0932 6140 gupdate - ok
09:47:08.0938 6140 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:47:08.0941 6140 gupdatem - ok
09:47:08.0972 6140 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
09:47:08.0980 6140 hcw85cir - ok
09:47:09.0037 6140 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
09:47:09.0053 6140 HDAudBus - ok
09:47:09.0090 6140 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
09:47:09.0104 6140 HECIx64 - ok
09:47:09.0110 6140 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
09:47:09.0121 6140 HidBatt - ok
09:47:09.0146 6140 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
09:47:09.0155 6140 HidBth - ok
09:47:09.0178 6140 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
09:47:09.0187 6140 HidIr - ok
09:47:09.0225 6140 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
09:47:09.0232 6140 hidserv - ok
09:47:09.0258 6140 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
09:47:09.0268 6140 HidUsb - ok
09:47:09.0326 6140 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
09:47:09.0334 6140 hkmsvc - ok
09:47:09.0423 6140 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
09:47:09.0442 6140 HomeGroupListener - ok
09:47:09.0477 6140 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
09:47:09.0496 6140 HomeGroupProvider - ok
09:47:09.0526 6140 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
09:47:09.0534 6140 HpSAMD - ok
09:47:09.0586 6140 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
09:47:09.0605 6140 HTTP - ok
09:47:09.0644 6140 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
09:47:09.0651 6140 hwpolicy - ok
09:47:09.0671 6140 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
09:47:09.0682 6140 i8042prt - ok
09:47:09.0711 6140 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\DRIVERS\iaStor.sys
09:47:09.0714 6140 iaStor - ok
09:47:09.0788 6140 IAStorDataMgrSvc (31a0e93cdf29007d6c6fffb632f375ed) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:47:09.0804 6140 IAStorDataMgrSvc - ok
09:47:09.0849 6140 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
09:47:09.0864 6140 iaStorV - ok
09:47:09.0941 6140 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:47:09.0963 6140 idsvc - ok
09:47:10.0003 6140 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
09:47:10.0010 6140 iirsp - ok
09:47:10.0053 6140 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
09:47:10.0079 6140 IKEEXT - ok
09:47:10.0111 6140 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
09:47:10.0131 6140 Impcd - ok
09:47:10.0226 6140 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
09:47:10.0248 6140 IntcAzAudAddService - ok
09:47:10.0355 6140 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
09:47:10.0364 6140 intelide - ok
09:47:10.0391 6140 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
09:47:10.0398 6140 intelppm - ok
09:47:10.0441 6140 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
09:47:10.0456 6140 IPBusEnum - ok
09:47:10.0474 6140 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:47:10.0488 6140 IpFilterDriver - ok
09:47:10.0552 6140 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
09:47:10.0558 6140 iphlpsvc - ok
09:47:10.0597 6140 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
09:47:10.0612 6140 IPMIDRV - ok
09:47:10.0622 6140 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
09:47:10.0638 6140 IPNAT - ok
09:47:10.0758 6140 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
09:47:10.0774 6140 iPod Service - ok
09:47:10.0788 6140 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
09:47:10.0795 6140 IRENUM - ok
09:47:10.0813 6140 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
09:47:10.0821 6140 isapnp - ok
09:47:10.0858 6140 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
09:47:10.0879 6140 iScsiPrt - ok
09:47:10.0904 6140 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
09:47:10.0912 6140 kbdclass - ok
09:47:10.0920 6140 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
09:47:10.0930 6140 kbdhid - ok
09:47:10.0975 6140 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:47:10.0977 6140 KeyIso - ok
09:47:10.0995 6140 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
09:47:11.0009 6140 KSecDD - ok
09:47:11.0022 6140 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
09:47:11.0035 6140 KSecPkg - ok
09:47:11.0046 6140 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
09:47:11.0053 6140 ksthunk - ok
09:47:11.0101 6140 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
09:47:11.0121 6140 KtmRm - ok
09:47:11.0164 6140 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
09:47:11.0182 6140 LanmanServer - ok
09:47:11.0227 6140 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
09:47:11.0244 6140 LanmanWorkstation - ok
09:47:11.0264 6140 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
09:47:11.0273 6140 lltdio - ok
09:47:11.0291 6140 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
09:47:11.0302 6140 lltdsvc - ok
09:47:11.0319 6140 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
09:47:11.0327 6140 lmhosts - ok
09:47:11.0353 6140 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
09:47:11.0362 6140 LSI_FC - ok
09:47:11.0367 6140 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
09:47:11.0377 6140 LSI_SAS - ok
09:47:11.0393 6140 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:47:11.0402 6140 LSI_SAS2 - ok
09:47:11.0414 6140 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:47:11.0423 6140 LSI_SCSI - ok
09:47:11.0455 6140 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
09:47:11.0466 6140 luafv - ok
09:47:11.0496 6140 MBAMProtector - ok
09:47:11.0641 6140 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
09:47:11.0705 6140 MBAMService - ok
09:47:11.0741 6140 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
09:47:11.0749 6140 Mcx2Svc - ok
09:47:11.0754 6140 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
09:47:11.0762 6140 megasas - ok
09:47:11.0782 6140 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
09:47:11.0797 6140 MegaSR - ok
09:47:11.0887 6140 Microsoft SharePoint Workspace Audit Service - ok
09:47:11.0927 6140 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:47:11.0929 6140 MMCSS - ok
09:47:11.0949 6140 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
09:47:11.0962 6140 Modem - ok
09:47:11.0980 6140 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
09:47:11.0987 6140 monitor - ok
09:47:12.0028 6140 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
09:47:12.0044 6140 mouclass - ok
09:47:12.0059 6140 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
09:47:12.0067 6140 mouhid - ok
09:47:12.0094 6140 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
09:47:12.0102 6140 mountmgr - ok
09:47:12.0177 6140 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
09:47:12.0200 6140 mpio - ok
09:47:12.0220 6140 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
09:47:12.0229 6140 mpsdrv - ok
09:47:12.0288 6140 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
09:47:12.0310 6140 MpsSvc - ok
09:47:12.0331 6140 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
09:47:12.0342 6140 MRxDAV - ok
09:47:12.0384 6140 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:47:12.0403 6140 mrxsmb - ok
09:47:12.0482 6140 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:47:12.0502 6140 mrxsmb10 - ok
09:47:12.0516 6140 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:47:12.0526 6140 mrxsmb20 - ok
09:47:12.0549 6140 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
09:47:12.0556 6140 msahci - ok
09:47:12.0575 6140 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
09:47:12.0584 6140 msdsm - ok
09:47:12.0599 6140 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
09:47:12.0622 6140 MSDTC - ok
09:47:12.0649 6140 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
09:47:12.0657 6140 Msfs - ok
09:47:12.0701 6140 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
09:47:12.0714 6140 mshidkmdf - ok
09:47:12.0732 6140 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
09:47:12.0742 6140 msisadrv - ok
09:47:12.0784 6140 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
09:47:12.0801 6140 MSiSCSI - ok
09:47:12.0805 6140 msiserver - ok
09:47:12.0861 6140 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
09:47:12.0873 6140 MSKSSRV - ok
09:47:12.0885 6140 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
09:47:12.0896 6140 MSPCLOCK - ok
09:47:12.0907 6140 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
09:47:12.0908 6140 MSPQM - ok
09:47:12.0977 6140 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
09:47:12.0996 6140 MsRPC - ok
09:47:13.0064 6140 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
09:47:13.0078 6140 mssmbios - ok
09:47:13.0151 6140 MSSQL$MSSMLBIZ - ok
09:47:13.0248 6140 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) C:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
09:47:13.0266 6140 MSSQLServerADHelper100 - ok
09:47:13.0281 6140 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
09:47:13.0290 6140 MSTEE - ok
09:47:13.0295 6140 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
09:47:13.0305 6140 MTConfig - ok
09:47:13.0326 6140 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
09:47:13.0333 6140 Mup - ok
09:47:13.0359 6140 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
09:47:13.0368 6140 napagent - ok
09:47:13.0394 6140 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
09:47:13.0410 6140 NativeWifiP - ok
09:47:13.0453 6140 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
09:47:13.0458 6140 NDIS - ok
09:47:13.0478 6140 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
09:47:13.0488 6140 NdisCap - ok
09:47:13.0510 6140 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
09:47:13.0519 6140 NdisTapi - ok
09:47:13.0560 6140 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
09:47:13.0579 6140 Ndisuio - ok
09:47:13.0644 6140 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
09:47:13.0711 6140 NdisWan - ok
09:47:13.0767 6140 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
09:47:13.0782 6140 NDProxy - ok
09:47:13.0826 6140 Netaapl (6f4607e2333fe21e9e3ff8133a88b35b) C:\Windows\system32\DRIVERS\netaapl64.sys
09:47:13.0839 6140 Netaapl - ok
09:47:13.0854 6140 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
09:47:13.0863 6140 NetBIOS - ok
09:47:13.0880 6140 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
09:47:13.0893 6140 NetBT - ok
09:47:13.0932 6140 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:47:13.0933 6140 Netlogon - ok
09:47:13.0988 6140 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
09:47:14.0007 6140 Netman - ok
09:47:14.0043 6140 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
09:47:14.0049 6140 netprofm - ok
09:47:14.0169 6140 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:47:14.0188 6140 NetTcpPortSharing - ok
09:47:14.0218 6140 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
09:47:14.0232 6140 nfrd960 - ok
09:47:14.0273 6140 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
09:47:14.0289 6140 NlaSvc - ok
09:47:14.0457 6140 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
09:47:14.0480 6140 NOBU - ok
09:47:14.0584 6140 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
09:47:14.0601 6140 Npfs - ok
09:47:14.0611 6140 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
09:47:14.0618 6140 nsi - ok
09:47:14.0626 6140 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
09:47:14.0634 6140 nsiproxy - ok
09:47:14.0710 6140 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
09:47:14.0741 6140 Ntfs - ok
09:47:14.0821 6140 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
09:47:14.0834 6140 Null - ok
09:47:14.0853 6140 nuviocir (be29aa3cba78480ab8591873197cb56a) C:\Windows\system32\DRIVERS\nuviocir_win7_x64.sys
09:47:14.0867 6140 nuviocir - ok
09:47:14.0903 6140 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
09:47:14.0925 6140 nvraid - ok
09:47:14.0958 6140 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
09:47:14.0972 6140 nvstor - ok
09:47:15.0023 6140 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
09:47:15.0043 6140 nv_agp - ok
09:47:15.0078 6140 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
09:47:15.0088 6140 ohci1394 - ok
09:47:15.0242 6140 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:47:15.0268 6140 ose - ok
09:47:15.0455 6140 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:47:15.0483 6140 osppsvc - ok
09:47:15.0574 6140 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:47:15.0579 6140 p2pimsvc - ok
09:47:15.0603 6140 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
09:47:15.0622 6140 p2psvc - ok
09:47:15.0671 6140 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
09:47:15.0689 6140 Parport - ok
09:47:15.0730 6140 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
09:47:15.0745 6140 partmgr - ok
09:47:15.0782 6140 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
09:47:15.0791 6140 PcaSvc - ok
09:47:15.0890 6140 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
09:47:15.0892 6140 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
09:47:15.0935 6140 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
09:47:15.0937 6140 pci - ok
09:47:15.0949 6140 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
09:47:15.0958 6140 pciide - ok
09:47:15.0979 6140 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
09:47:15.0992 6140 pcmcia - ok
09:47:16.0013 6140 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
09:47:16.0021 6140 pcw - ok
09:47:16.0048 6140 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
09:47:16.0067 6140 PEAUTH - ok
09:47:16.0133 6140 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
09:47:16.0160 6140 PerfHost - ok
09:47:16.0250 6140 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
09:47:16.0284 6140 pla - ok
09:47:16.0340 6140 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
09:47:16.0355 6140 PlugPlay - ok
09:47:16.0431 6140 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
09:47:16.0445 6140 PNRPAutoReg - ok
09:47:16.0465 6140 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:47:16.0468 6140 PNRPsvc - ok
09:47:16.0492 6140 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
09:47:16.0507 6140 PolicyAgent - ok
09:47:16.0553 6140 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
09:47:16.0556 6140 Power - ok
09:47:16.0624 6140 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
09:47:16.0644 6140 PptpMiniport - ok
09:47:16.0651 6140 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
09:47:16.0659 6140 Processor - ok
09:47:16.0687 6140 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
09:47:16.0695 6140 ProfSvc - ok
09:47:16.0737 6140 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:47:16.0739 6140 ProtectedStorage - ok
09:47:16.0781 6140 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
09:47:16.0783 6140 Psched - ok
09:47:16.0823 6140 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
09:47:16.0840 6140 PxHlpa64 - ok
09:47:16.0896 6140 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
09:47:16.0931 6140 ql2300 - ok
09:47:17.0000 6140 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
09:47:17.0017 6140 ql40xx - ok
09:47:17.0039 6140 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
09:47:17.0050 6140 QWAVE - ok
09:47:17.0064 6140 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
09:47:17.0082 6140 QWAVEdrv - ok
09:47:17.0088 6140 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
09:47:17.0099 6140 RasAcd - ok
09:47:17.0132 6140 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
09:47:17.0150 6140 RasAgileVpn - ok
09:47:17.0169 6140 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
09:47:17.0177 6140 RasAuto - ok
09:47:17.0192 6140 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:47:17.0212 6140 Rasl2tp - ok
09:47:17.0261 6140 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
09:47:17.0280 6140 RasMan - ok
09:47:17.0293 6140 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
09:47:17.0306 6140 RasPppoe - ok
09:47:17.0360 6140 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
09:47:17.0378 6140 RasSstp - ok
09:47:17.0417 6140 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
09:47:17.0437 6140 rdbss - ok
09:47:17.0442 6140 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
09:47:17.0455 6140 rdpbus - ok
09:47:17.0523 6140 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:47:17.0540 6140 RDPCDD - ok
09:47:17.0555 6140 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
09:47:17.0564 6140 RDPENCDD - ok
09:47:17.0570 6140 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
09:47:17.0579 6140 RDPREFMP - ok
09:47:17.0631 6140 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
09:47:17.0653 6140 RDPWD - ok
09:47:17.0674 6140 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
09:47:17.0686 6140 rdyboost - ok
09:47:17.0737 6140 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
09:47:17.0752 6140 RemoteAccess - ok
09:47:17.0770 6140 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
09:47:17.0784 6140 RemoteRegistry - ok
09:47:17.0952 6140 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
09:47:17.0983 6140 RoxMediaDB12OEM - ok
09:47:18.0055 6140 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
09:47:18.0083 6140 RoxWatch12 - ok
09:47:18.0203 6140 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
09:47:18.0216 6140 RpcEptMapper - ok
09:47:18.0268 6140 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
09:47:18.0282 6140 RpcLocator - ok
09:47:18.0339 6140 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
09:47:18.0346 6140 RpcSs - ok
09:47:18.0413 6140 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
09:47:18.0432 6140 rspndr - ok
09:47:18.0481 6140 RTL8167 (16d4e350420baa7e63e16e3fc033e1f5) C:\Windows\system32\DRIVERS\Rt64win7.sys
09:47:18.0501 6140 RTL8167 - ok
09:47:18.0552 6140 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:47:18.0554 6140 SamSs - ok
09:47:18.0591 6140 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
09:47:18.0606 6140 sbp2port - ok
09:47:18.0625 6140 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
09:47:18.0635 6140 SCardSvr - ok
09:47:18.0708 6140 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
09:47:18.0722 6140 scfilter - ok
09:47:18.0790 6140 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
09:47:18.0829 6140 Schedule - ok
09:47:18.0877 6140 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
09:47:18.0879 6140 SCPolicySvc - ok
09:47:18.0897 6140 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
09:47:18.0909 6140 SDRSVC - ok
09:47:19.0027 6140 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
09:47:19.0050 6140 SeaPort - ok
09:47:19.0117 6140 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
09:47:19.0125 6140 secdrv - ok
09:47:19.0141 6140 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
09:47:19.0147 6140 seclogon - ok
09:47:19.0160 6140 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
09:47:19.0167 6140 SENS - ok
09:47:19.0181 6140 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
09:47:19.0188 6140 SensrSvc - ok
09:47:19.0216 6140 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
09:47:19.0224 6140 Serenum - ok
09:47:19.0255 6140 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
09:47:19.0277 6140 Serial - ok
09:47:19.0323 6140 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
09:47:19.0341 6140 sermouse - ok
09:47:19.0385 6140 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
09:47:19.0394 6140 SessionEnv - ok
09:47:19.0429 6140 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
09:47:19.0437 6140 sffdisk - ok
09:47:19.0452 6140 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
09:47:19.0464 6140 sffp_mmc - ok
09:47:19.0482 6140 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
09:47:19.0489 6140 sffp_sd - ok
09:47:19.0493 6140 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
09:47:19.0500 6140 sfloppy - ok
09:47:19.0587 6140 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
09:47:19.0611 6140 Sftfs - ok
09:47:19.0736 6140 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
09:47:19.0776 6140 sftlist - ok
09:47:19.0832 6140 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
09:47:19.0849 6140 Sftplay - ok
09:47:19.0915 6140 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
09:47:19.0928 6140 Sftredir - ok
09:47:19.0970 6140 SftService (e1974a92ac0914a3859359a0a8c82c68) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
09:47:19.0986 6140 SftService - ok
09:47:20.0032 6140 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
09:47:20.0043 6140 Sftvol - ok
09:47:20.0088 6140 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
09:47:20.0125 6140 sftvsa - ok
09:47:20.0214 6140 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
09:47:20.0226 6140 SharedAccess - ok
09:47:20.0265 6140 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
09:47:20.0283 6140 ShellHWDetection - ok
09:47:20.0291 6140 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:47:20.0305 6140 SiSRaid2 - ok
09:47:20.0313 6140 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
09:47:20.0322 6140 SiSRaid4 - ok
09:47:20.0329 6140 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
09:47:20.0340 6140 Smb - ok
09:47:20.0411 6140 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
09:47:20.0425 6140 SNMPTRAP - ok
09:47:20.0430 6140 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
09:47:20.0440 6140 spldr - ok
09:47:20.0483 6140 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
09:47:20.0509 6140 Spooler - ok
09:47:20.0659 6140 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
09:47:20.0688 6140 sppsvc - ok
09:47:20.0803 6140 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
09:47:20.0817 6140 sppuinotify - ok
09:47:20.0925 6140 SQLAgent$MSSMLBIZ (a687b5b326afcfcf182c4931d1ff9771) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.MSSMLBIZ\MSSQL\Binn\SQLAGENT.EXE
09:47:20.0969 6140 SQLAgent$MSSMLBIZ - ok
09:47:21.0043 6140 SQLBrowser (b54b48f6d92423440c264e91225c5ff1) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
09:47:21.0064 6140 SQLBrowser - ok
09:47:21.0145 6140 SQLWriter (6d65985945b03ca59b67d0b73702fc7b) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
09:47:21.0164 6140 SQLWriter - ok
09:47:21.0223 6140 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
09:47:21.0245 6140 srv - ok
09:47:21.0267 6140 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
09:47:21.0282 6140 srv2 - ok
09:47:21.0296 6140 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
09:47:21.0306 6140 srvnet - ok
09:47:21.0328 6140 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
09:47:21.0339 6140 SSDPSRV - ok
09:47:21.0353 6140 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
09:47:21.0361 6140 SstpSvc - ok
09:47:21.0430 6140 ssudmdm (ad42ca614e086bcadbd53fffc404ac24) C:\Windows\system32\DRIVERS\ssudmdm.sys
09:47:21.0448 6140 ssudmdm - ok
09:47:21.0491 6140 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
09:47:21.0501 6140 stexstor - ok
09:47:21.0559 6140 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
09:47:21.0585 6140 stisvc - ok
09:47:21.0647 6140 stllssvr (7731f46ec0d687a931cba063e8f90ef0) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
09:47:21.0672 6140 stllssvr - ok
09:47:21.0720 6140 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
09:47:21.0733 6140 swenum - ok
09:47:21.0852 6140 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
09:47:21.0903 6140 SwitchBoard - ok
09:47:21.0944 6140 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
09:47:21.0948 6140 swprv - ok
09:47:22.0038 6140 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
09:47:22.0050 6140 SysMain - ok
09:47:22.0216 6140 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
09:47:22.0233 6140 TabletInputService - ok
09:47:22.0252 6140 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
09:47:22.0265 6140 TapiSrv - ok
09:47:22.0278 6140 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
09:47:22.0280 6140 TBS - ok
09:47:22.0381 6140 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
09:47:22.0422 6140 Tcpip - ok
09:47:22.0552 6140 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
09:47:22.0562 6140 TCPIP6 - ok
09:47:22.0654 6140 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
09:47:22.0672 6140 tcpipreg - ok
09:47:22.0707 6140 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
09:47:22.0722 6140 TDPIPE - ok
09:47:22.0752 6140 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
09:47:22.0763 6140 TDTCP - ok
09:47:22.0818 6140 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
09:47:22.0836 6140 tdx - ok
09:47:22.0884 6140 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
09:47:22.0897 6140 TermDD - ok
09:47:22.0926 6140 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
09:47:22.0943 6140 TermService - ok
09:47:22.0952 6140 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
09:47:22.0961 6140 Themes - ok
09:47:22.0999 6140 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:47:23.0000 6140 THREADORDER - ok
09:47:23.0051 6140 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\Windows\system32\DRIVERS\tmactmon.sys
09:47:23.0066 6140 tmactmon - ok
09:47:23.0141 6140 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\Windows\system32\DRIVERS\tmcomm.sys
09:47:23.0157 6140 tmcomm - ok
09:47:23.0208 6140 tmeevw (1161f882b3cfa8076870a09924e0adc2) C:\Windows\system32\DRIVERS\tmeevw.sys
09:47:23.0223 6140 tmeevw - ok
09:47:23.0235 6140 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\Windows\system32\DRIVERS\tmevtmgr.sys
09:47:23.0247 6140 tmevtmgr - ok
09:47:23.0297 6140 tmnciesc (f0ae672ee91e7f1ef24644621b57ca7f) C:\Windows\system32\DRIVERS\tmnciesc.sys
09:47:23.0306 6140 tmnciesc - ok
09:47:23.0333 6140 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\Windows\system32\DRIVERS\tmtdi.sys
09:47:23.0341 6140 tmtdi - ok
09:47:23.0350 6140 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
09:47:23.0359 6140 TrkWks - ok
09:47:23.0437 6140 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
09:47:23.0457 6140 TrustedInstaller - ok
09:47:23.0546 6140 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:47:23.0563 6140 tssecsrv - ok
09:47:23.0664 6140 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
09:47:23.0680 6140 TsUsbFlt - ok
09:47:23.0722 6140 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
09:47:23.0733 6140 tunnel - ok
09:47:23.0753 6140 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
09:47:23.0762 6140 uagp35 - ok
09:47:23.0787 6140 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
09:47:23.0801 6140 udfs - ok
09:47:23.0829 6140 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
09:47:23.0838 6140 UI0Detect - ok
09:47:23.0876 6140 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
09:47:23.0893 6140 uliagpkx - ok
09:47:23.0947 6140 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
09:47:23.0962 6140 umbus - ok
09:47:23.0996 6140 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
09:47:24.0008 6140 UmPass - ok
09:47:24.0031 6140 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
09:47:24.0043 6140 upnphost - ok
09:47:24.0072 6140 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
09:47:24.0081 6140 USBAAPL64 - ok
09:47:24.0121 6140 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
09:47:24.0140 6140 usbccgp - ok
09:47:24.0188 6140 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
09:47:24.0205 6140 usbcir - ok
09:47:24.0221 6140 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
09:47:24.0229 6140 usbehci - ok
09:47:24.0252 6140 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
09:47:24.0268 6140 usbhub - ok
09:47:24.0310 6140 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
09:47:24.0325 6140 usbohci - ok
09:47:24.0338 6140 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
09:47:24.0351 6140 usbprint - ok
09:47:24.0385 6140 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
09:47:24.0403 6140 usbscan - ok
09:47:24.0506 6140 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:47:24.0528 6140 USBSTOR - ok
09:47:24.0538 6140 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
09:47:24.0546 6140 usbuhci - ok
09:47:24.0587 6140 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
09:47:24.0597 6140 usbvideo - ok
09:47:24.0607 6140 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
09:47:24.0614 6140 UxSms - ok
09:47:24.0654 6140 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:47:24.0656 6140 VaultSvc - ok
09:47:24.0675 6140 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
09:47:24.0686 6140 vdrvroot - ok
09:47:24.0742 6140 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
09:47:24.0762 6140 vds - ok
09:47:24.0775 6140 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
09:47:24.0784 6140 vga - ok
09:47:24.0801 6140 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
09:47:24.0809 6140 VgaSave - ok
09:47:24.0826 6140 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
09:47:24.0838 6140 vhdmp - ok
09:47:24.0853 6140 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
09:47:24.0860 6140 viaide - ok
09:47:24.0879 6140 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
09:47:24.0887 6140 volmgr - ok
09:47:24.0934 6140 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
09:47:24.0956 6140 volmgrx - ok
09:47:25.0005 6140 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
09:47:25.0031 6140 volsnap - ok
09:47:25.0057 6140 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
09:47:25.0067 6140 vsmraid - ok
09:47:25.0123 6140 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
09:47:25.0137 6140 VSS - ok
09:47:25.0238 6140 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
09:47:25.0251 6140 vwifibus - ok
09:47:25.0271 6140 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
09:47:25.0280 6140 vwififlt - ok
09:47:25.0312 6140 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
09:47:25.0325 6140 vwifimp - ok
09:47:25.0377 6140 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
09:47:25.0400 6140 W32Time - ok
09:47:25.0410 6140 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
09:47:25.0429 6140 WacomPen - ok
09:47:25.0472 6140 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:47:25.0490 6140 WANARP - ok
09:47:25.0495 6140 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:47:25.0496 6140 Wanarpv6 - ok
09:47:25.0568 6140 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
09:47:25.0597 6140 WatAdminSvc - ok
09:47:25.0749 6140 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
09:47:25.0795 6140 wbengine - ok
09:47:25.0862 6140 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
09:47:25.0881 6140 WbioSrvc - ok
09:47:25.0930 6140 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
09:47:25.0946 6140 wcncsvc - ok
09:47:25.0961 6140 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
09:47:25.0970 6140 WcsPlugInService - ok
09:47:25.0979 6140 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
09:47:25.0986 6140 Wd - ok
09:47:26.0017 6140 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
09:47:26.0024 6140 WDC_SAM - ok
09:47:26.0048 6140 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
09:47:26.0067 6140 Wdf01000 - ok
09:47:26.0083 6140 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:47:26.0085 6140 WdiServiceHost - ok
09:47:26.0088 6140 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:47:26.0090 6140 WdiSystemHost - ok
09:47:26.0107 6140 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
09:47:26.0118 6140 WebClient - ok
09:47:26.0135 6140 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
09:47:26.0146 6140 Wecsvc - ok
09:47:26.0159 6140 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
09:47:26.0167 6140 wercplsupport - ok
09:47:26.0191 6140 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
09:47:26.0193 6140 WerSvc - ok
09:47:26.0210 6140 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
09:47:26.0219 6140 WfpLwf - ok
09:47:26.0251 6140 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
09:47:26.0261 6140 WimFltr - ok
09:47:26.0280 6140 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
09:47:26.0288 6140 WIMMount - ok
09:47:26.0330 6140 WinDefend - ok
09:47:26.0342 6140 WinHttpAutoProxySvc - ok
09:47:26.0444 6140 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
09:47:26.0463 6140 Winmgmt - ok
09:47:26.0557 6140 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
09:47:26.0605 6140 WinRM - ok
09:47:26.0787 6140 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
09:47:26.0803 6140 WinUsb - ok
09:47:26.0856 6140 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
09:47:26.0877 6140 Wlansvc - ok
09:47:26.0932 6140 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:47:26.0949 6140 wlcrasvc - ok
09:47:27.0054 6140 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:47:27.0090 6140 wlidsvc - ok
09:47:27.0113 6140 wltrysvc (de816a0624d54d68e1fb8a9028dcf81a) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
09:47:27.0121 6140 wltrysvc - ok
09:47:27.0207 6140 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
09:47:27.0220 6140 WmiAcpi - ok
09:47:27.0277 6140 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
09:47:27.0280 6140 wmiApSrv - ok
09:47:27.0299 6140 WMPNetworkSvc - ok
09:47:27.0329 6140 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
09:47:27.0343 6140 WPCSvc - ok
09:47:27.0419 6140 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
09:47:27.0434 6140 WPDBusEnum - ok
09:47:27.0448 6140 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
09:47:27.0456 6140 ws2ifsl - ok
09:47:27.0472 6140 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
09:47:27.0480 6140 wscsvc - ok
09:47:27.0482 6140 WSearch - ok
09:47:27.0562 6140 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
09:47:27.0583 6140 wuauserv - ok
09:47:27.0670 6140 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
09:47:27.0688 6140 WudfPf - ok
09:47:27.0712 6140 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:47:27.0723 6140 WUDFRd - ok
09:47:27.0783 6140 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
09:47:27.0798 6140 wudfsvc - ok
09:47:27.0818 6140 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
09:47:27.0828 6140 WwanSvc - ok
09:47:27.0919 6140 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
09:47:27.0932 6140 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
09:47:27.0954 6140 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
09:47:28.0124 6140 \Device\Harddisk0\DR0 - ok
09:47:28.0129 6140 Boot (0x1200) (287b1c0b64ec08a228b62d621cdc5afb) \Device\Harddisk0\DR0\Partition0
09:47:28.0130 6140 \Device\Harddisk0\DR0\Partition0 - ok
09:47:28.0159 6140 Boot (0x1200) (5d45f59e5cf984abf8765c502fa8e54c) \Device\Harddisk0\DR0\Partition1
09:47:28.0161 6140 \Device\Harddisk0\DR0\Partition1 - ok
09:47:28.0162 6140 ============================================================
09:47:28.0162 6140 Scan finished
09:47:28.0162 6140 ============================================================
09:47:28.0177 4636 Detected object count: 0
09:47:28.0177 4636 Actual detected object count: 0

#9 dougal158

dougal158
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 25 April 2012 - 10:39 PM

Java update completed.

new MBAM report


Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.25.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Don :: TOUCHY [administrator]

Protection: Enabled

26/04/2012 10:29:36 AM
mbam-log-2012-04-26 (10-29-36).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 518483
Time elapsed: 2 hour(s), 15 minute(s), 4 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#10 dougal158

dougal158
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 25 April 2012 - 10:40 PM

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 26/04/2012 at 10:26:00.
Operating System: Windows 7 Home Premium


Processes terminated by Rkill or while it was running:

C:\Users\Don\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Don\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Don\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Don\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Don\AppData\Local\Google\Chrome\Application\chrome.exe


Rkill completed on 26/04/2012 at 10:26:09.


Should it be ok for me to run unhide now?

Edited by dougal158, 26 April 2012 - 02:52 AM.


#11 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:03:03 AM

Posted 26 April 2012 - 07:29 AM

Run mbama after running rkill.

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:03 PM

Posted 26 April 2012 - 10:42 AM

I take it that last MBAM was clean.. If so I say you are good to go.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 dougal158

dougal158
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:12:33 PM

Posted 26 April 2012 - 05:57 PM

Yes the last MBAM was clean and everything seems to be OK however just after startup I get the odd MBAM message dialog "failed to run the.. <cant remember this bit>...[error code 2]".
Can you explain what you meant by thinking Trend Micro was the problem to start with?
Thanks again for your help - much appreciated.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users