Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop up asking for all my banking info including pin


  • Please log in to reply
14 replies to this topic

#1 Mick_R

Mick_R

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:10 AM

Posted 06 May 2012 - 04:53 PM

Hi, can you please help me every time i try to log into my online banking, i get a popup asking me for all my bank card info. 16 digit card number, expiry date, security code and ATM pin. it has the verified by visa sign in the top left hand corner but i do not trust it. i have run a few programs to find if i have a virus. but not coming up with any thing at the moment. i have used super anti spyware. malware bytes, i have macafee antivirus total 2012. i had a virus before which was similar a win32/zbot aka zeus. i downloaded the removal tool from AVG RMzbot.exe and thought it had removed all traces. although now i find this new version coming up. only thing i have found is that it only seems to be on the santander website after i input my details and continue. is it a Virus? Looks like one to me

Mick

Edited by hamluis, 06 May 2012 - 06:39 PM.
No logs, moved from Malware Removal Logs to Am I infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 06 May 2012 - 06:48 PM

Hello,

I will be helping you with your problems

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

Step 1

Please download Rkill by Grinler and save it to your desktop.Link 1
Link 2
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.

If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.


Step 2

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.

NOTE: If asked to restart the computer, please do so. You may need to run rkill again - if so please also post the log for this run of rkill

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

Step 3

How is your computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 Mick_R

Mick_R
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:10 AM

Posted 07 May 2012 - 06:33 AM

Thank you have ran both here are the logs

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 07/05/2012 at 11:52:13.
Operating System: Windows Vista ™ Home Premium


Processes terminated by Rkill or while it was running:



Rkill completed on 07/05/2012 at 11:52:25.


---------------------------------------------------------------------------------

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.07.01

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
michael :: MICHAELS [administrator]

07/05/2012 11:56:32
mbam-log-2012-05-07 (11-56-32).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 239676
Time elapsed: 12 minute(s), 16 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


------------------------------------------------------------------------------------

have checked the online banking again and still getting the same popup.

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 07 May 2012 - 07:54 AM

Hi

Please do the following next:

Step 1


Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on yourr desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Select Detect TDLFS file system
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.


Step 2

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 Mick_R

Mick_R
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:10 AM

Posted 07 May 2012 - 11:26 AM

done both scans her are the logs

14:17:28.0935 6520 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
14:17:29.0887 6520 ============================================================
14:17:29.0887 6520 Current date / time: 2012/05/07 14:17:29.0887
14:17:29.0887 6520 SystemInfo:
14:17:29.0887 6520
14:17:29.0887 6520 OS Version: 6.0.6002 ServicePack: 2.0
14:17:29.0887 6520 Product type: Workstation
14:17:29.0887 6520 ComputerName: MICHAELS
14:17:29.0887 6520 UserName: michael
14:17:29.0887 6520 Windows directory: C:\Windows
14:17:29.0887 6520 System windows directory: C:\Windows
14:17:29.0887 6520 Processor architecture: Intel x86
14:17:29.0887 6520 Number of processors: 2
14:17:29.0887 6520 Page size: 0x1000
14:17:29.0887 6520 Boot type: Normal boot
14:17:29.0887 6520 ============================================================
14:17:31.0244 6520 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:17:31.0275 6520 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:17:39.0091 6520 ============================================================
14:17:39.0091 6520 \Device\Harddisk0\DR0:
14:17:39.0091 6520 MBR partitions:
14:17:39.0091 6520 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x11C16800
14:17:39.0091 6520 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13817000, BlocksNum 0x11C17000
14:17:39.0091 6520 \Device\Harddisk1\DR1:
14:17:39.0122 6520 MBR partitions:
14:17:39.0122 6520 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A385FF0
14:17:39.0122 6520 ============================================================
14:17:39.0153 6520 C: <-> \Device\Harddisk0\DR0\Partition0
14:17:39.0200 6520 F: <-> \Device\Harddisk0\DR0\Partition1
14:17:39.0231 6520 I: <-> \Device\Harddisk1\DR1\Partition0
14:17:39.0231 6520 ============================================================
14:17:39.0231 6520 Initialize success
14:17:39.0231 6520 ============================================================
14:18:57.0668 5140 ============================================================
14:18:57.0668 5140 Scan started
14:18:57.0668 5140 Mode: Manual; TDLFS;
14:18:57.0668 5140 ============================================================
14:18:58.0074 5140 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
14:18:58.0074 5140 !SASCORE - ok
14:18:58.0214 5140 ABBYY.Licensing.FineReader.Sprint.9.0 (b33cf4de909a5b30f526d82053a63c8e) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
14:18:58.0230 5140 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
14:18:58.0292 5140 Acer HomeMedia Connect Service (517d30057c726c797764bfd70a55d82a) C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
14:18:58.0292 5140 Acer HomeMedia Connect Service - ok
14:18:58.0448 5140 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
14:18:58.0448 5140 ACPI - ok
14:18:58.0511 5140 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:18:58.0511 5140 AdobeFlashPlayerUpdateSvc - ok
14:18:58.0573 5140 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
14:18:58.0573 5140 adp94xx - ok
14:18:58.0604 5140 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
14:18:58.0620 5140 adpahci - ok
14:18:58.0635 5140 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
14:18:58.0635 5140 adpu160m - ok
14:18:58.0667 5140 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
14:18:58.0667 5140 adpu320 - ok
14:18:58.0698 5140 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
14:18:58.0713 5140 AeLookupSvc - ok
14:18:58.0760 5140 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
14:18:58.0916 5140 AFD - ok
14:18:58.0947 5140 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
14:18:58.0947 5140 agp440 - ok
14:18:58.0963 5140 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
14:18:58.0963 5140 aic78xx - ok
14:18:58.0979 5140 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
14:18:58.0979 5140 ALG - ok
14:18:58.0994 5140 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
14:18:59.0010 5140 aliide - ok
14:18:59.0025 5140 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
14:18:59.0025 5140 amdagp - ok
14:18:59.0041 5140 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
14:18:59.0041 5140 amdide - ok
14:18:59.0072 5140 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
14:18:59.0072 5140 AmdK7 - ok
14:18:59.0072 5140 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
14:18:59.0072 5140 AmdK8 - ok
14:18:59.0103 5140 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
14:18:59.0103 5140 Appinfo - ok
14:18:59.0197 5140 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:18:59.0275 5140 Apple Mobile Device - ok
14:18:59.0306 5140 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
14:18:59.0306 5140 arc - ok
14:18:59.0322 5140 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
14:18:59.0337 5140 arcsas - ok
14:18:59.0353 5140 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
14:18:59.0353 5140 AsyncMac - ok
14:18:59.0384 5140 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
14:18:59.0400 5140 atapi - ok
14:18:59.0447 5140 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:18:59.0462 5140 AudioEndpointBuilder - ok
14:18:59.0462 5140 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:18:59.0462 5140 Audiosrv - ok
14:18:59.0493 5140 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
14:18:59.0493 5140 Beep - ok
14:18:59.0540 5140 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
14:18:59.0540 5140 BFE - ok
14:18:59.0618 5140 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
14:18:59.0618 5140 BITS - ok
14:18:59.0634 5140 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
14:18:59.0649 5140 blbdrive - ok
14:18:59.0727 5140 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
14:18:59.0727 5140 Bonjour Service - ok
14:18:59.0759 5140 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
14:18:59.0759 5140 bowser - ok
14:18:59.0790 5140 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
14:18:59.0790 5140 BrFiltLo - ok
14:18:59.0790 5140 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
14:18:59.0790 5140 BrFiltUp - ok
14:18:59.0837 5140 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
14:18:59.0837 5140 Browser - ok
14:18:59.0837 5140 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
14:18:59.0852 5140 Brserid - ok
14:18:59.0883 5140 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
14:18:59.0883 5140 BrSerWdm - ok
14:18:59.0883 5140 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
14:18:59.0883 5140 BrUsbMdm - ok
14:18:59.0899 5140 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
14:18:59.0899 5140 BrUsbSer - ok
14:18:59.0915 5140 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
14:18:59.0930 5140 BTHMODEM - ok
14:18:59.0961 5140 BVRPMPR5 (da2dc84e2d14ec6dac1132caa286118d) C:\Windows\system32\drivers\BVRPMPR5.SYS
14:19:00.0071 5140 BVRPMPR5 - ok
14:19:00.0102 5140 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
14:19:00.0117 5140 cdfs - ok
14:19:00.0149 5140 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
14:19:00.0164 5140 cdrom - ok
14:19:00.0195 5140 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
14:19:00.0195 5140 CertPropSvc - ok
14:19:00.0227 5140 cfwids (1c7b1e36f3ced9e4b0b13385e627fe8b) C:\Windows\system32\drivers\cfwids.sys
14:19:00.0227 5140 cfwids - ok
14:19:00.0242 5140 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
14:19:00.0258 5140 circlass - ok
14:19:00.0305 5140 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
14:19:00.0305 5140 CLFS - ok
14:19:00.0351 5140 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:19:00.0351 5140 clr_optimization_v2.0.50727_32 - ok
14:19:00.0445 5140 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:19:00.0461 5140 clr_optimization_v4.0.30319_32 - ok
14:19:00.0476 5140 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
14:19:00.0476 5140 cmdide - ok
14:19:00.0523 5140 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
14:19:00.0523 5140 Compbatt - ok
14:19:00.0523 5140 COMSysApp - ok
14:19:00.0570 5140 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
14:19:00.0570 5140 crcdisk - ok
14:19:00.0617 5140 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
14:19:00.0617 5140 Crusoe - ok
14:19:00.0663 5140 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
14:19:00.0663 5140 CryptSvc - ok
14:19:00.0710 5140 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
14:19:00.0726 5140 DcomLaunch - ok
14:19:00.0757 5140 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
14:19:00.0866 5140 DfsC - ok
14:19:00.0975 5140 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
14:19:00.0991 5140 DFSR - ok
14:19:01.0116 5140 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
14:19:01.0116 5140 Dhcp - ok
14:19:01.0178 5140 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
14:19:01.0178 5140 disk - ok
14:19:01.0225 5140 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
14:19:01.0225 5140 Dnscache - ok
14:19:01.0256 5140 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
14:19:01.0256 5140 dot3svc - ok
14:19:01.0303 5140 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
14:19:01.0303 5140 DPS - ok
14:19:01.0334 5140 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
14:19:01.0334 5140 drmkaud - ok
14:19:01.0412 5140 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
14:19:01.0412 5140 DXGKrnl - ok
14:19:01.0459 5140 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
14:19:01.0459 5140 E1G60 - ok
14:19:01.0506 5140 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
14:19:01.0506 5140 EapHost - ok
14:19:01.0553 5140 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
14:19:01.0568 5140 Ecache - ok
14:19:01.0662 5140 eDataSecurity Service (b1f2503e23425b386df0f3413b2596f3) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
14:19:01.0677 5140 eDataSecurity Service - ok
14:19:01.0740 5140 ehRecvr (3a511ed3c9a9da2cd5a50ff46178063a) C:\Windows\ehome\ehRecvr.exe
14:19:01.0740 5140 ehRecvr - ok
14:19:01.0755 5140 ehSched (a3d94c93333619458af4bde7531234c5) C:\Windows\ehome\ehsched.exe
14:19:01.0865 5140 ehSched - ok
14:19:01.0880 5140 ehstart (487ba5c5bb442bd172f120dc197811c2) C:\Windows\ehome\ehstart.dll
14:19:01.0880 5140 ehstart - ok
14:19:01.0989 5140 ElbyCDFL (59c9e1336a4508f059827d638e924c62) C:\Windows\system32\Drivers\ElbyCDFL.sys
14:19:02.0052 5140 ElbyCDFL - ok
14:19:02.0099 5140 ElbyCDIO (64664287ca449c060fe46941dd67dd5f) C:\Windows\system32\Drivers\ElbyCDIO.sys
14:19:02.0114 5140 ElbyCDIO - ok
14:19:02.0145 5140 ElbyVCD (c4143fc2f7d39a5a8b1cfe0bc4bd8a9e) C:\Windows\system32\DRIVERS\ElbyVCD.sys
14:19:02.0145 5140 ElbyVCD - ok
14:19:02.0192 5140 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
14:19:02.0208 5140 elxstor - ok
14:19:02.0270 5140 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
14:19:02.0270 5140 EMDMgmt - ok
14:19:02.0333 5140 EpsonBidirectionalService (abdd5ad016affd34ad40e944ce94bf59) C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
14:19:02.0333 5140 EpsonBidirectionalService - ok
14:19:02.0364 5140 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
14:19:02.0364 5140 ErrDev - ok
14:19:02.0395 5140 ETService (6ce3bfe7b289df112cfa6285d16b56c5) C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
14:19:02.0395 5140 ETService - ok
14:19:02.0442 5140 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
14:19:02.0457 5140 EventSystem - ok
14:19:02.0504 5140 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
14:19:02.0504 5140 exfat - ok
14:19:02.0535 5140 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
14:19:02.0551 5140 fastfat - ok
14:19:02.0567 5140 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
14:19:02.0567 5140 fdc - ok
14:19:02.0598 5140 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
14:19:02.0598 5140 fdPHost - ok
14:19:02.0613 5140 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
14:19:02.0613 5140 FDResPub - ok
14:19:02.0645 5140 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
14:19:02.0645 5140 FileInfo - ok
14:19:02.0660 5140 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
14:19:02.0660 5140 Filetrace - ok
14:19:02.0660 5140 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
14:19:02.0660 5140 flpydisk - ok
14:19:02.0707 5140 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
14:19:02.0707 5140 FltMgr - ok
14:19:02.0785 5140 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
14:19:02.0785 5140 FontCache - ok
14:19:02.0847 5140 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:19:02.0847 5140 FontCache3.0.0.0 - ok
14:19:02.0910 5140 ForceWare Intelligent Application Manager (IAM) (283195c5301eadbcf56dee637573ed12) C:\Program Files\bin32\nSvcAppFlt.exe
14:19:02.0988 5140 ForceWare Intelligent Application Manager (IAM) - ok
14:19:03.0066 5140 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
14:19:03.0066 5140 Fs_Rec - ok
14:19:03.0081 5140 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
14:19:03.0081 5140 gagp30kx - ok
14:19:03.0113 5140 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:19:03.0191 5140 GEARAspiWDM - ok
14:19:03.0237 5140 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
14:19:03.0237 5140 GoogleDesktopManager-051210-111108 - ok
14:19:03.0284 5140 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
14:19:03.0300 5140 gpsvc - ok
14:19:03.0347 5140 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
14:19:03.0347 5140 HdAudAddService - ok
14:19:03.0393 5140 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:19:03.0409 5140 HDAudBus - ok
14:19:03.0425 5140 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
14:19:03.0425 5140 HidBth - ok
14:19:03.0440 5140 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
14:19:03.0440 5140 HidIr - ok
14:19:03.0487 5140 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
14:19:03.0487 5140 hidserv - ok
14:19:03.0518 5140 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
14:19:03.0518 5140 HidUsb - ok
14:19:03.0565 5140 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
14:19:03.0565 5140 hkmsvc - ok
14:19:03.0596 5140 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
14:19:03.0596 5140 HpCISSs - ok
14:19:03.0643 5140 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
14:19:03.0643 5140 HTTP - ok
14:19:03.0690 5140 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
14:19:03.0705 5140 i2omp - ok
14:19:03.0752 5140 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
14:19:03.0752 5140 i8042prt - ok
14:19:03.0799 5140 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
14:19:03.0799 5140 iaStorV - ok
14:19:03.0893 5140 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:19:03.0893 5140 idsvc - ok
14:19:03.0908 5140 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
14:19:03.0924 5140 iirsp - ok
14:19:03.0971 5140 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
14:19:03.0986 5140 IKEEXT - ok
14:19:04.0017 5140 int15 (58ff11c95c3681c9250914521cb9f036) C:\Windows\system32\drivers\int15.sys
14:19:04.0017 5140 int15 - ok
14:19:04.0111 5140 IntcAzAudAddService (4c01298060cf930d26a75a86b874b6ae) C:\Windows\system32\drivers\RTKVHDA.sys
14:19:04.0236 5140 IntcAzAudAddService - ok
14:19:04.0345 5140 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
14:19:04.0345 5140 intelide - ok
14:19:04.0376 5140 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
14:19:04.0376 5140 intelppm - ok
14:19:04.0407 5140 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
14:19:04.0407 5140 IPBusEnum - ok
14:19:04.0439 5140 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:19:04.0454 5140 IpFilterDriver - ok
14:19:04.0485 5140 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
14:19:04.0485 5140 iphlpsvc - ok
14:19:04.0501 5140 IpInIp - ok
14:19:04.0517 5140 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
14:19:04.0517 5140 IPMIDRV - ok
14:19:04.0548 5140 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
14:19:04.0563 5140 IPNAT - ok
14:19:04.0641 5140 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
14:19:04.0735 5140 iPod Service - ok
14:19:04.0751 5140 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
14:19:04.0766 5140 IRENUM - ok
14:19:04.0782 5140 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
14:19:04.0782 5140 isapnp - ok
14:19:04.0829 5140 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
14:19:04.0829 5140 iScsiPrt - ok
14:19:04.0860 5140 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
14:19:04.0875 5140 iteatapi - ok
14:19:04.0891 5140 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
14:19:04.0891 5140 iteraid - ok
14:19:04.0907 5140 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
14:19:04.0907 5140 kbdclass - ok
14:19:04.0922 5140 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
14:19:04.0938 5140 kbdhid - ok
14:19:04.0953 5140 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:19:04.0953 5140 KeyIso - ok
14:19:04.0985 5140 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
14:19:05.0109 5140 KSecDD - ok
14:19:05.0156 5140 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
14:19:05.0156 5140 KtmRm - ok
14:19:05.0187 5140 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
14:19:05.0187 5140 LanmanServer - ok
14:19:05.0219 5140 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
14:19:05.0219 5140 LanmanWorkstation - ok
14:19:05.0499 5140 LeapFrog Connect Device Service (24a7d535bd9e58e5bc1ac52ef7e2ec8e) C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
14:19:05.0562 5140 LeapFrog Connect Device Service - ok
14:19:05.0655 5140 LightScribeService (c34411a244029f1c08687f7c752c4563) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:19:05.0765 5140 LightScribeService - ok
14:19:05.0874 5140 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
14:19:05.0874 5140 lltdio - ok
14:19:05.0905 5140 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
14:19:05.0905 5140 lltdsvc - ok
14:19:05.0921 5140 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
14:19:05.0936 5140 lmhosts - ok
14:19:05.0952 5140 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
14:19:05.0952 5140 LSI_FC - ok
14:19:05.0983 5140 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
14:19:05.0983 5140 LSI_SAS - ok
14:19:05.0999 5140 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
14:19:06.0014 5140 LSI_SCSI - ok
14:19:06.0030 5140 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
14:19:06.0030 5140 luafv - ok
14:19:06.0092 5140 McAfee SiteAdvisor Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
14:19:06.0092 5140 McAfee SiteAdvisor Service - ok
14:19:06.0155 5140 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
14:19:06.0155 5140 McComponentHostService - ok
14:19:06.0170 5140 McMPFSvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
14:19:06.0170 5140 McMPFSvc - ok
14:19:06.0186 5140 mcmscsvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
14:19:06.0186 5140 mcmscsvc - ok
14:19:06.0201 5140 McNaiAnn (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
14:19:06.0201 5140 McNaiAnn - ok
14:19:06.0217 5140 McNASvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
14:19:06.0217 5140 McNASvc - ok
14:19:06.0279 5140 McODS (42117cbc4849a5cf11129912dabbdeca) C:\Program Files\McAfee\VirusScan\mcods.exe
14:19:06.0389 5140 McODS - ok
14:19:06.0404 5140 McProxy (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
14:19:06.0404 5140 McProxy - ok
14:19:06.0435 5140 McPvDrv (000751813ecef491689176e72b3a8bee) C:\Windows\system32\drivers\McPvDrv.sys
14:19:06.0576 5140 McPvDrv - ok
14:19:06.0638 5140 McShield (593fa4c378818ece76ba64a11ad56cf2) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
14:19:06.0638 5140 McShield - ok
14:19:06.0669 5140 Mcx2Svc (3bd2ad18179dead6652e87157fb98e4a) C:\Windows\system32\Mcx2Svc.dll
14:19:06.0669 5140 Mcx2Svc - ok
14:19:06.0701 5140 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
14:19:06.0701 5140 megasas - ok
14:19:06.0747 5140 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
14:19:06.0763 5140 MegaSR - ok
14:19:06.0794 5140 mfeapfk (43c31bdf404a6d7a7ac1bfd5ead2a566) C:\Windows\system32\drivers\mfeapfk.sys
14:19:06.0794 5140 mfeapfk - ok
14:19:06.0825 5140 mfeavfk (c1dc5f42d3367f33b6451be78b38bd46) C:\Windows\system32\drivers\mfeavfk.sys
14:19:06.0825 5140 mfeavfk - ok
14:19:06.0825 5140 mfeavfk01 - ok
14:19:06.0857 5140 mfebopk (0435c43f4c2be01b84868ad2a906397b) C:\Windows\system32\drivers\mfebopk.sys
14:19:06.0857 5140 mfebopk - ok
14:19:06.0872 5140 mfefire (7e1f8b1bdc8240f08bd358b3a466c005) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
14:19:06.0872 5140 mfefire - ok
14:19:06.0919 5140 mfefirek (4ea6ff90015424517843e931448e00f1) C:\Windows\system32\drivers\mfefirek.sys
14:19:06.0919 5140 mfefirek - ok
14:19:06.0950 5140 mfehidk (d1e998748ba24a731106611d535c6bbf) C:\Windows\system32\drivers\mfehidk.sys
14:19:06.0966 5140 mfehidk - ok
14:19:06.0997 5140 mfenlfk (ac04a618aef3de0fce91c766f9e069da) C:\Windows\system32\DRIVERS\mfenlfk.sys
14:19:07.0091 5140 mfenlfk - ok
14:19:07.0122 5140 mferkdet (f454a13377f0a006d20a8c14a753c432) C:\Windows\system32\drivers\mferkdet.sys
14:19:07.0122 5140 mferkdet - ok
14:19:07.0153 5140 mfevtp (b10c4efd40810c08f4b44df2efcb54f7) C:\Windows\system32\mfevtps.exe
14:19:07.0153 5140 mfevtp - ok
14:19:07.0169 5140 mfewfpk (f284337aedb7483df8a5fa840647e2b0) C:\Windows\system32\drivers\mfewfpk.sys
14:19:07.0293 5140 mfewfpk - ok
14:19:07.0309 5140 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
14:19:07.0325 5140 MMCSS - ok
14:19:07.0387 5140 MOBKbackup (35176fa09a0fc58db630991a81a0ba39) C:\Program Files\McAfee Online Backup\MOBKbackup.exe
14:19:07.0387 5140 MOBKbackup - ok
14:19:07.0418 5140 MOBKFilter (e896775837a8bce436348df460522394) C:\Windows\system32\DRIVERS\MOBK.sys
14:19:07.0543 5140 MOBKFilter - ok
14:19:07.0574 5140 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
14:19:07.0574 5140 Modem - ok
14:19:07.0590 5140 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
14:19:07.0590 5140 monitor - ok
14:19:07.0605 5140 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
14:19:07.0605 5140 mouclass - ok
14:19:07.0621 5140 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
14:19:07.0621 5140 mouhid - ok
14:19:07.0652 5140 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
14:19:07.0652 5140 MountMgr - ok
14:19:07.0683 5140 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:19:07.0746 5140 MozillaMaintenance - ok
14:19:07.0777 5140 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
14:19:07.0777 5140 mpio - ok
14:19:07.0793 5140 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
14:19:07.0793 5140 mpsdrv - ok
14:19:07.0839 5140 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
14:19:07.0855 5140 MpsSvc - ok
14:19:07.0871 5140 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
14:19:07.0886 5140 Mraid35x - ok
14:19:07.0917 5140 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
14:19:07.0917 5140 MRxDAV - ok
14:19:07.0949 5140 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:19:08.0120 5140 mrxsmb - ok
14:19:08.0167 5140 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:19:08.0167 5140 mrxsmb10 - ok
14:19:08.0183 5140 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:19:08.0292 5140 mrxsmb20 - ok
14:19:08.0323 5140 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
14:19:08.0323 5140 msahci - ok
14:19:08.0339 5140 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
14:19:08.0339 5140 msdsm - ok
14:19:08.0370 5140 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
14:19:08.0385 5140 MSDTC - ok
14:19:08.0417 5140 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
14:19:08.0432 5140 Msfs - ok
14:19:08.0448 5140 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
14:19:08.0448 5140 msisadrv - ok
14:19:08.0463 5140 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
14:19:08.0479 5140 MSiSCSI - ok
14:19:08.0479 5140 msiserver - ok
14:19:08.0557 5140 MSK80Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
14:19:08.0557 5140 MSK80Service - ok
14:19:08.0588 5140 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
14:19:08.0588 5140 MSKSSRV - ok
14:19:08.0619 5140 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
14:19:08.0619 5140 MSPCLOCK - ok
14:19:08.0635 5140 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
14:19:08.0635 5140 MSPQM - ok
14:19:08.0682 5140 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
14:19:08.0682 5140 MsRPC - ok
14:19:08.0697 5140 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
14:19:08.0697 5140 mssmbios - ok
14:19:08.0713 5140 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
14:19:08.0713 5140 MSTEE - ok
14:19:08.0744 5140 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
14:19:08.0744 5140 Mup - ok
14:19:08.0791 5140 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
14:19:08.0791 5140 napagent - ok
14:19:08.0838 5140 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
14:19:08.0838 5140 NativeWifiP - ok
14:19:08.0900 5140 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
14:19:08.0900 5140 NDIS - ok
14:19:08.0931 5140 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
14:19:08.0931 5140 NdisTapi - ok
14:19:08.0947 5140 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
14:19:08.0947 5140 Ndisuio - ok
14:19:08.0994 5140 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:19:09.0009 5140 NdisWan - ok
14:19:09.0025 5140 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
14:19:09.0025 5140 NDProxy - ok
14:19:09.0072 5140 Nero BackItUp Scheduler 4.0 - ok
14:19:09.0103 5140 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
14:19:09.0103 5140 NetBIOS - ok
14:19:09.0134 5140 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
14:19:09.0150 5140 netbt - ok
14:19:09.0181 5140 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:19:09.0197 5140 Netlogon - ok
14:19:09.0228 5140 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
14:19:09.0243 5140 Netman - ok
14:19:09.0259 5140 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
14:19:09.0259 5140 netprofm - ok
14:19:09.0321 5140 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:19:09.0321 5140 NetTcpPortSharing - ok
14:19:09.0353 5140 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
14:19:09.0353 5140 nfrd960 - ok
14:19:09.0384 5140 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
14:19:09.0384 5140 NlaSvc - ok
14:19:09.0415 5140 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
14:19:09.0415 5140 Npfs - ok
14:19:09.0446 5140 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
14:19:09.0446 5140 nsi - ok
14:19:09.0477 5140 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
14:19:09.0477 5140 nsiproxy - ok
14:19:09.0540 5140 nSvcIp (3c7bd1ec817d300a8826d49c406d5894) C:\Program Files\bin32\nSvcIp.exe
14:19:09.0649 5140 nSvcIp - ok
14:19:09.0727 5140 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
14:19:09.0758 5140 Ntfs - ok
14:19:09.0805 5140 NTIBackupSvc (973dcb15731339fca176e534055cf115) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
14:19:09.0805 5140 NTIBackupSvc - ok
14:19:09.0930 5140 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
14:19:10.0070 5140 NTIDrvr - ok
14:19:10.0101 5140 NTISchedulerSvc (58751f9248d50bce1053976c9e2f0859) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
14:19:10.0101 5140 NTISchedulerSvc - ok
14:19:10.0133 5140 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
14:19:10.0133 5140 ntrigdigi - ok
14:19:10.0164 5140 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
14:19:10.0179 5140 Null - ok
14:19:10.0226 5140 NVENETFD (1efec38a852ab35883bfff3427b92b3f) C:\Windows\system32\DRIVERS\nvmfdx32.sys
14:19:10.0242 5140 NVENETFD - ok
14:19:10.0273 5140 NVHDA (a82534d453425f5fee4b6a583fdcf3eb) C:\Windows\system32\drivers\nvhda32v.sys
14:19:10.0382 5140 NVHDA - ok
14:19:10.0850 5140 nvlddmkm (f452e6ad3eda2852f44be492e283c40f) C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:19:11.0006 5140 nvlddmkm - ok
14:19:11.0162 5140 NVNET (1efec38a852ab35883bfff3427b92b3f) C:\Windows\system32\DRIVERS\nvmfdx32.sys
14:19:11.0162 5140 NVNET - ok
14:19:11.0193 5140 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
14:19:11.0193 5140 nvraid - ok
14:19:11.0225 5140 nvsmu (c44ee36dd84fa95eb81d79c374756003) C:\Windows\system32\DRIVERS\nvsmu.sys
14:19:11.0381 5140 nvsmu - ok
14:19:11.0396 5140 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
14:19:11.0396 5140 nvstor - ok
14:19:11.0412 5140 nvstor32 (fa7b8eca6e845b244b7e30a9dcd82c6c) C:\Windows\system32\DRIVERS\nvstor32.sys
14:19:11.0537 5140 nvstor32 - ok
14:19:11.0599 5140 nvsvc (7c732aff202dcd06c3d262966d71604c) C:\Windows\system32\nvvsvc.exe
14:19:11.0599 5140 nvsvc - ok
14:19:11.0802 5140 nvUpdatusService (262d2fbf211a88dcb84249df0f6ef6e7) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
14:19:11.0833 5140 nvUpdatusService - ok
14:19:11.0942 5140 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
14:19:11.0942 5140 nv_agp - ok
14:19:11.0958 5140 NwlnkFlt - ok
14:19:11.0958 5140 NwlnkFwd - ok
14:19:12.0083 5140 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:19:12.0098 5140 odserv - ok
14:19:12.0145 5140 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
14:19:12.0145 5140 ohci1394 - ok
14:19:12.0192 5140 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:19:12.0192 5140 ose - ok
14:19:12.0239 5140 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:19:12.0254 5140 p2pimsvc - ok
14:19:12.0270 5140 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:19:12.0285 5140 p2psvc - ok
14:19:12.0317 5140 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
14:19:12.0317 5140 Parport - ok
14:19:12.0348 5140 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
14:19:12.0348 5140 partmgr - ok
14:19:12.0363 5140 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
14:19:12.0363 5140 Parvdm - ok
14:19:12.0395 5140 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
14:19:12.0395 5140 PcaSvc - ok
14:19:12.0426 5140 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
14:19:12.0441 5140 pci - ok
14:19:12.0441 5140 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
14:19:12.0457 5140 pciide - ok
14:19:12.0488 5140 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
14:19:12.0488 5140 pcmcia - ok
14:19:12.0519 5140 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
14:19:12.0519 5140 pcouffin - ok
14:19:12.0582 5140 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
14:19:12.0613 5140 PEAUTH - ok
14:19:12.0722 5140 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
14:19:12.0753 5140 pla - ok
14:19:12.0863 5140 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
14:19:12.0878 5140 PlugPlay - ok
14:19:12.0925 5140 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:19:12.0956 5140 PNRPAutoReg - ok
14:19:12.0972 5140 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:19:12.0987 5140 PNRPsvc - ok
14:19:13.0019 5140 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
14:19:13.0019 5140 PolicyAgent - ok
14:19:13.0081 5140 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
14:19:13.0081 5140 PptpMiniport - ok
14:19:13.0097 5140 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
14:19:13.0097 5140 Processor - ok
14:19:13.0128 5140 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
14:19:13.0128 5140 ProfSvc - ok
14:19:13.0175 5140 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:19:13.0175 5140 ProtectedStorage - ok
14:19:13.0206 5140 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
14:19:13.0206 5140 PSched - ok
14:19:13.0221 5140 PSDFilter (628321c8dd76ad369b362b202e655a68) C:\Windows\system32\DRIVERS\psdfilter.sys
14:19:13.0284 5140 PSDFilter - ok
14:19:13.0315 5140 PSDNServ (79d7117e62709c7690cf3dd55acead37) C:\Windows\system32\DRIVERS\PSDNServ.sys
14:19:13.0315 5140 PSDNServ - ok
14:19:13.0315 5140 psdvdisk (cae5e82827990cf4bd4a49576bde3a43) C:\Windows\system32\DRIVERS\PSDVdisk.sys
14:19:13.0331 5140 psdvdisk - ok
14:19:13.0393 5140 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
14:19:13.0393 5140 ql2300 - ok
14:19:13.0424 5140 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
14:19:13.0424 5140 ql40xx - ok
14:19:13.0455 5140 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
14:19:13.0455 5140 QWAVE - ok
14:19:13.0487 5140 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
14:19:13.0487 5140 QWAVEdrv - ok
14:19:13.0502 5140 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
14:19:13.0502 5140 RasAcd - ok
14:19:13.0518 5140 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
14:19:13.0518 5140 RasAuto - ok
14:19:13.0533 5140 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:19:13.0533 5140 Rasl2tp - ok
14:19:13.0580 5140 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
14:19:13.0580 5140 RasMan - ok
14:19:13.0627 5140 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
14:19:13.0627 5140 RasPppoe - ok
14:19:13.0643 5140 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
14:19:13.0658 5140 RasSstp - ok
14:19:13.0705 5140 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
14:19:13.0705 5140 rdbss - ok
14:19:13.0736 5140 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:19:13.0736 5140 RDPCDD - ok
14:19:13.0767 5140 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
14:19:13.0783 5140 rdpdr - ok
14:19:13.0783 5140 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
14:19:13.0783 5140 RDPENCDD - ok
14:19:13.0830 5140 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
14:19:13.0830 5140 RDPWD - ok
14:19:13.0877 5140 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
14:19:13.0877 5140 RemoteAccess - ok
14:19:13.0908 5140 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
14:19:13.0923 5140 RemoteRegistry - ok
14:19:13.0986 5140 RichVideo (a035a7bf5132682f53f1e7b955690ce7) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
14:19:13.0986 5140 RichVideo - ok
14:19:14.0001 5140 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
14:19:14.0001 5140 RpcLocator - ok
14:19:14.0048 5140 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
14:19:14.0064 5140 RpcSs - ok
14:19:14.0111 5140 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
14:19:14.0111 5140 rspndr - ok
14:19:14.0173 5140 RTL8187 (99c27fceb21347daf3ee9e8c205314d6) C:\Windows\system32\DRIVERS\wg111v2.sys
14:19:14.0189 5140 RTL8187 - ok
14:19:14.0220 5140 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:19:14.0220 5140 SamSs - ok
14:19:14.0282 5140 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
14:19:14.0391 5140 SASDIFSV - ok
14:19:14.0407 5140 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
14:19:14.0407 5140 SASKUTIL - ok
14:19:14.0438 5140 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
14:19:14.0438 5140 sbp2port - ok
14:19:14.0469 5140 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
14:19:14.0485 5140 SCardSvr - ok
14:19:14.0547 5140 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
14:19:14.0641 5140 Schedule - ok
14:19:14.0672 5140 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
14:19:14.0672 5140 SCMNdisP - ok
14:19:14.0703 5140 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
14:19:14.0703 5140 SCPolicySvc - ok
14:19:14.0781 5140 ScsiAccess (958e956e119eb7b9aba142afed1b5ff4) C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
14:19:14.0781 5140 ScsiAccess - ok
14:19:14.0813 5140 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
14:19:14.0813 5140 SDRSVC - ok
14:19:14.0828 5140 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
14:19:14.0844 5140 secdrv - ok
14:19:14.0859 5140 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
14:19:14.0859 5140 seclogon - ok
14:19:14.0875 5140 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
14:19:14.0875 5140 SENS - ok
14:19:14.0891 5140 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
14:19:14.0891 5140 Serenum - ok
14:19:14.0906 5140 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
14:19:14.0906 5140 Serial - ok
14:19:14.0922 5140 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
14:19:14.0922 5140 sermouse - ok
14:19:14.0969 5140 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
14:19:14.0969 5140 SessionEnv - ok
14:19:14.0984 5140 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
14:19:14.0984 5140 sffdisk - ok
14:19:15.0000 5140 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
14:19:15.0000 5140 sffp_mmc - ok
14:19:15.0015 5140 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
14:19:15.0015 5140 sffp_sd - ok
14:19:15.0031 5140 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
14:19:15.0047 5140 sfloppy - ok
14:19:15.0078 5140 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
14:19:15.0078 5140 SharedAccess - ok
14:19:15.0109 5140 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
14:19:15.0171 5140 ShellHWDetection - ok
14:19:15.0187 5140 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
14:19:15.0187 5140 sisagp - ok
14:19:15.0218 5140 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
14:19:15.0218 5140 SiSRaid2 - ok
14:19:15.0234 5140 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
14:19:15.0234 5140 SiSRaid4 - ok
14:19:15.0421 5140 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
14:19:15.0468 5140 slsvc - ok
14:19:15.0561 5140 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
14:19:15.0577 5140 SLUINotify - ok
14:19:15.0624 5140 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
14:19:15.0624 5140 Smb - ok
14:19:15.0671 5140 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
14:19:15.0686 5140 SNMPTRAP - ok
14:19:15.0702 5140 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
14:19:15.0702 5140 spldr - ok
14:19:15.0733 5140 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
14:19:15.0858 5140 Spooler - ok
14:19:15.0889 5140 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
14:19:15.0889 5140 srv - ok
14:19:15.0920 5140 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
14:19:15.0936 5140 srv2 - ok
14:19:15.0951 5140 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
14:19:15.0951 5140 srvnet - ok
14:19:15.0983 5140 sscdbus (d5dffeaa1e15d4effabb9d9a3068ac5b) C:\Windows\system32\DRIVERS\sscdbus.sys
14:19:15.0983 5140 sscdbus - ok
14:19:16.0014 5140 sscdmdfl (8a1be0c347814f482f493aea619d57f6) C:\Windows\system32\DRIVERS\sscdmdfl.sys
14:19:16.0014 5140 sscdmdfl - ok
14:19:16.0029 5140 sscdmdm (5ab0b1987f682a59b15b78f84c6ad7d0) C:\Windows\system32\DRIVERS\sscdmdm.sys
14:19:16.0139 5140 sscdmdm - ok
14:19:16.0154 5140 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
14:19:16.0154 5140 SSDPSRV - ok
14:19:16.0217 5140 sst41D7 (a947995371e7b211cbc47f4475e40bd2) C:\Windows\system32\drivers\sst41D7.sys
14:19:16.0310 5140 sst41D7 - ok
14:19:16.0326 5140 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
14:19:16.0326 5140 SstpSvc - ok
14:19:16.0357 5140 StarOpen (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
14:19:16.0404 5140 StarOpen - ok
14:19:16.0451 5140 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
14:19:16.0451 5140 stisvc - ok
14:19:16.0482 5140 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
14:19:16.0482 5140 swenum - ok
14:19:16.0513 5140 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
14:19:16.0529 5140 swprv - ok
14:19:16.0544 5140 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
14:19:16.0544 5140 Symc8xx - ok
14:19:16.0560 5140 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
14:19:16.0560 5140 Sym_hi - ok
14:19:16.0575 5140 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
14:19:16.0575 5140 Sym_u3 - ok
14:19:16.0622 5140 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
14:19:16.0638 5140 SysMain - ok
14:19:16.0669 5140 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
14:19:16.0685 5140 TabletInputService - ok
14:19:16.0716 5140 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
14:19:16.0716 5140 TapiSrv - ok
14:19:16.0731 5140 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
14:19:16.0747 5140 TBS - ok
14:19:16.0825 5140 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
14:19:16.0841 5140 Tcpip - ok
14:19:16.0856 5140 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
14:19:16.0872 5140 Tcpip6 - ok
14:19:16.0903 5140 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
14:19:16.0903 5140 tcpipreg - ok
14:19:16.0950 5140 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
14:19:16.0950 5140 TDPIPE - ok
14:19:16.0965 5140 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
14:19:16.0981 5140 TDTCP - ok
14:19:16.0997 5140 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
14:19:16.0997 5140 tdx - ok
14:19:17.0043 5140 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
14:19:17.0043 5140 TermDD - ok
14:19:17.0090 5140 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
14:19:17.0106 5140 TermService - ok
14:19:17.0137 5140 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
14:19:17.0231 5140 Themes - ok
14:19:17.0246 5140 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
14:19:17.0262 5140 THREADORDER - ok
14:19:17.0293 5140 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
14:19:17.0309 5140 TrkWks - ok
14:19:17.0355 5140 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
14:19:17.0371 5140 TrustedInstaller - ok
14:19:17.0402 5140 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:19:17.0402 5140 tssecsrv - ok
14:19:17.0418 5140 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
14:19:17.0433 5140 tunmp - ok
14:19:17.0449 5140 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
14:19:17.0449 5140 tunnel - ok
14:19:17.0480 5140 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
14:19:17.0480 5140 uagp35 - ok
14:19:17.0511 5140 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
14:19:17.0574 5140 UBHelper - ok
14:19:17.0667 5140 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
14:19:17.0667 5140 udfs - ok
14:19:17.0699 5140 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
14:19:17.0714 5140 UI0Detect - ok
14:19:17.0730 5140 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
14:19:17.0730 5140 uliagpkx - ok
14:19:17.0761 5140 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
14:19:17.0761 5140 uliahci - ok
14:19:17.0792 5140 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
14:19:17.0808 5140 UlSata - ok
14:19:17.0839 5140 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
14:19:17.0839 5140 ulsata2 - ok
14:19:17.0870 5140 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
14:19:17.0870 5140 umbus - ok
14:19:17.0917 5140 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
14:19:17.0917 5140 upnphost - ok
14:19:17.0948 5140 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
14:19:17.0948 5140 USBAAPL - ok
14:19:17.0979 5140 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
14:19:17.0995 5140 usbccgp - ok
14:19:18.0011 5140 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
14:19:18.0011 5140 usbcir - ok
14:19:18.0042 5140 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
14:19:18.0042 5140 usbehci - ok
14:19:18.0073 5140 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
14:19:18.0089 5140 usbhub - ok
14:19:18.0104 5140 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
14:19:18.0104 5140 usbohci - ok
14:19:18.0135 5140 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
14:19:18.0151 5140 usbprint - ok
14:19:18.0182 5140 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
14:19:18.0198 5140 usbscan - ok
14:19:18.0213 5140 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:19:18.0229 5140 USBSTOR - ok
14:19:18.0260 5140 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
14:19:18.0260 5140 usbuhci - ok
14:19:18.0276 5140 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
14:19:18.0291 5140 UxSms - ok
14:19:18.0338 5140 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
14:19:18.0354 5140 vds - ok
14:19:18.0369 5140 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
14:19:18.0369 5140 vga - ok
14:19:18.0385 5140 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
14:19:18.0385 5140 VgaSave - ok
14:19:18.0416 5140 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
14:19:18.0416 5140 viaagp - ok
14:19:18.0447 5140 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
14:19:18.0447 5140 ViaC7 - ok
14:19:18.0463 5140 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
14:19:18.0479 5140 viaide - ok
14:19:18.0494 5140 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
14:19:18.0510 5140 volmgr - ok
14:19:18.0541 5140 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
14:19:18.0557 5140 volmgrx - ok
14:19:18.0588 5140 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
14:19:18.0603 5140 volsnap - ok
14:19:18.0635 5140 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
14:19:18.0650 5140 vsmraid - ok
14:19:18.0728 5140 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
14:19:18.0744 5140 VSS - ok
14:19:18.0775 5140 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
14:19:18.0791 5140 W32Time - ok
14:19:18.0837 5140 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
14:19:18.0853 5140 WacomPen - ok
14:19:18.0869 5140 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
14:19:18.0869 5140 Wanarp - ok
14:19:18.0869 5140 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
14:19:18.0884 5140 Wanarpv6 - ok
14:19:18.0931 5140 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
14:19:18.0947 5140 wcncsvc - ok
14:19:18.0962 5140 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
14:19:18.0978 5140 WcsPlugInService - ok
14:19:18.0993 5140 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
14:19:18.0993 5140 Wd - ok
14:19:19.0040 5140 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
14:19:19.0040 5140 Wdf01000 - ok
14:19:19.0056 5140 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
14:19:19.0071 5140 WdiServiceHost - ok
14:19:19.0071 5140 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
14:19:19.0087 5140 WdiSystemHost - ok
14:19:19.0134 5140 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
14:19:19.0134 5140 WebClient - ok
14:19:19.0165 5140 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
14:19:19.0259 5140 Wecsvc - ok
14:19:19.0274 5140 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
14:19:19.0274 5140 wercplsupport - ok
14:19:19.0305 5140 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
14:19:19.0305 5140 WerSvc - ok
14:19:19.0321 5140 WinHttpAutoProxySvc - ok
14:19:19.0383 5140 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
14:19:19.0383 5140 Winmgmt - ok
14:19:19.0446 5140 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
14:19:19.0461 5140 WinRM - ok
14:19:19.0524 5140 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
14:19:19.0539 5140 Wlansvc - ok
14:19:19.0664 5140 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:19:19.0680 5140 wlidsvc - ok
14:19:19.0789 5140 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:19:19.0805 5140 WmiAcpi - ok
14:19:19.0867 5140 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
14:19:19.0883 5140 wmiApSrv - ok
14:19:19.0961 5140 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
14:19:19.0976 5140 WMPNetworkSvc - ok
14:19:20.0007 5140 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
14:19:20.0007 5140 WPCSvc - ok
14:19:20.0054 5140 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
14:19:20.0070 5140 WPDBusEnum - ok
14:19:20.0117 5140 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
14:19:20.0117 5140 WpdUsb - ok
14:19:20.0241 5140 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
14:19:20.0257 5140 WPFFontCache_v0400 - ok
14:19:20.0273 5140 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
14:19:20.0273 5140 ws2ifsl - ok
14:19:20.0304 5140 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
14:19:20.0319 5140 wscsvc - ok
14:19:20.0335 5140 WSearch - ok
14:19:20.0429 5140 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
14:19:20.0444 5140 wuauserv - ok
14:19:20.0553 5140 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:19:20.0569 5140 WUDFRd - ok
14:19:20.0600 5140 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
14:19:20.0600 5140 wudfsvc - ok
14:19:20.0616 5140 MBR (0x1B8) (ef932eaa6ef4c94e66a7f6ceec7eb422) \Device\Harddisk0\DR0
14:19:23.0205 5140 \Device\Harddisk0\DR0 - ok
14:19:23.0205 5140 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
14:19:23.0330 5140 \Device\Harddisk1\DR1 - ok
14:19:23.0361 5140 Boot (0x1200) (c2827fb1daa3287be850444ad07ab3da) \Device\Harddisk0\DR0\Partition0
14:19:23.0361 5140 \Device\Harddisk0\DR0\Partition0 - ok
14:19:23.0393 5140 Boot (0x1200) (61d0cec9cfccd231c244173d1ce9c210) \Device\Harddisk0\DR0\Partition1
14:19:23.0393 5140 \Device\Harddisk0\DR0\Partition1 - ok
14:19:23.0393 5140 Boot (0x1200) (7863642ca0d28963403aa95e66b81cbc) \Device\Harddisk1\DR1\Partition0
14:19:23.0408 5140 \Device\Harddisk1\DR1\Partition0 - ok
14:19:23.0408 5140 ============================================================
14:19:23.0408 5140 Scan finished
14:19:23.0408 5140 ============================================================
14:19:23.0424 4956 Detected object count: 0
14:19:23.0424 4956 Actual detected object count: 0
14:20:04.0452 2524 Deinitialize success



------------------------------------------------------------------------------------------------------------------------------------------------------

eset scan

C:\Program Files\Acer Arcade Live\Acer HomeMedia Trial Creator\Export\SoftDMA_Trial\Autorun.inf INF/Autorun.gen trojan cleaned by deleting - quarantined
C:\ProgramData\Windows\lmbd.dll a variant of Win32/Kryptik.ABZG trojan cleaned by deleting - quarantined
C:\Users\michael\AppData\Local\Downloaded Installations\{792D9DE4-4FE5-426F-8776-66CD5C8BB799}\Mobile Mouse Server.msi a variant of Win32/HiddenStart.A application deleted - quarantined
C:\Users\michael\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4db49439-1910e23c a variant of Java/TrojanDownloader.OpenStream.NBF trojan deleted - quarantined
C:\Windows\Installer\13ec21.msi a variant of Win32/HiddenStart.A application deleted - quarantined
Operating memory a variant of Win32/TrojanDownloader.Mebload.AR trojan

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 07 May 2012 - 03:06 PM

Hi

Good that got rid of some malware, however there is some more showing in the logs.

Step 1

Please run TDSSkiller again, but this time slightly differently:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on yourr desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Check the boxes next to Verify file digital signatures and Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.


Step 2

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Restart your computer into safe mode
  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.

Note: Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

Post the log in your next reply.


Step 3

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Step 4

Please download Farbar Service Scanner to your Desktop and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Step 5

How is your computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 Mick_R

Mick_R
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:10 AM

Posted 08 May 2012 - 01:30 PM

Hi Again finnished all scans seems to have removed the problem


17:01:34.0246 1388 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
17:01:34.0980 1388 ============================================================
17:01:34.0980 1388 Current date / time: 2012/05/08 17:01:34.0980
17:01:34.0980 1388 SystemInfo:
17:01:34.0980 1388
17:01:34.0980 1388 OS Version: 6.0.6002 ServicePack: 2.0
17:01:34.0980 1388 Product type: Workstation
17:01:34.0980 1388 ComputerName: MICHAELS
17:01:34.0980 1388 UserName: michael
17:01:34.0980 1388 Windows directory: C:\Windows
17:01:34.0980 1388 System windows directory: C:\Windows
17:01:34.0980 1388 Processor architecture: Intel x86
17:01:34.0980 1388 Number of processors: 2
17:01:34.0980 1388 Page size: 0x1000
17:01:34.0980 1388 Boot type: Normal boot
17:01:34.0980 1388 ============================================================
17:01:36.0073 1388 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:01:36.0089 1388 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:01:43.0936 1388 ============================================================
17:01:43.0936 1388 \Device\Harddisk0\DR0:
17:01:43.0952 1388 MBR partitions:
17:01:43.0952 1388 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x11C16800
17:01:43.0952 1388 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13817000, BlocksNum 0x11C17000
17:01:43.0952 1388 \Device\Harddisk1\DR1:
17:01:43.0952 1388 MBR partitions:
17:01:43.0952 1388 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A385FF0
17:01:43.0952 1388 ============================================================
17:01:43.0983 1388 C: <-> \Device\Harddisk0\DR0\Partition0
17:01:44.0030 1388 F: <-> \Device\Harddisk0\DR0\Partition1
17:01:44.0046 1388 I: <-> \Device\Harddisk1\DR1\Partition0
17:01:44.0046 1388 ============================================================
17:01:44.0046 1388 Initialize success
17:01:44.0046 1388 ============================================================
17:02:58.0426 6012 ============================================================
17:02:58.0426 6012 Scan started
17:02:58.0426 6012 Mode: Manual; SigCheck; TDLFS;
17:02:58.0426 6012 ============================================================
17:02:58.0707 6012 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
17:02:58.0926 6012 !SASCORE - ok
17:02:59.0066 6012 ABBYY.Licensing.FineReader.Sprint.9.0 (b33cf4de909a5b30f526d82053a63c8e) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
17:02:59.0238 6012 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
17:02:59.0300 6012 Acer HomeMedia Connect Service (517d30057c726c797764bfd70a55d82a) C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
17:02:59.0487 6012 Acer HomeMedia Connect Service ( UnsignedFile.Multi.Generic ) - warning
17:02:59.0487 6012 Acer HomeMedia Connect Service - detected UnsignedFile.Multi.Generic (1)
17:02:59.0628 6012 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
17:02:59.0674 6012 ACPI - ok
17:02:59.0737 6012 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:02:59.0768 6012 AdobeFlashPlayerUpdateSvc - ok
17:02:59.0815 6012 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:02:59.0862 6012 adp94xx - ok
17:02:59.0893 6012 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:02:59.0940 6012 adpahci - ok
17:02:59.0955 6012 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:02:59.0986 6012 adpu160m - ok
17:03:00.0018 6012 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:03:00.0064 6012 adpu320 - ok
17:03:00.0096 6012 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
17:03:00.0189 6012 AeLookupSvc - ok
17:03:00.0236 6012 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
17:03:00.0454 6012 AFD - ok
17:03:00.0486 6012 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:03:00.0501 6012 agp440 - ok
17:03:00.0517 6012 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:03:00.0532 6012 aic78xx - ok
17:03:00.0548 6012 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
17:03:00.0642 6012 ALG - ok
17:03:00.0642 6012 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:03:00.0673 6012 aliide - ok
17:03:00.0688 6012 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:03:00.0720 6012 amdagp - ok
17:03:00.0735 6012 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:03:00.0766 6012 amdide - ok
17:03:00.0782 6012 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:03:00.0829 6012 AmdK7 - ok
17:03:00.0844 6012 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
17:03:00.0907 6012 AmdK8 - ok
17:03:00.0954 6012 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
17:03:01.0016 6012 Appinfo - ok
17:03:01.0094 6012 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:03:01.0188 6012 Apple Mobile Device - ok
17:03:01.0203 6012 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:03:01.0234 6012 arc - ok
17:03:01.0250 6012 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:03:01.0281 6012 arcsas - ok
17:03:01.0312 6012 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:03:01.0344 6012 AsyncMac - ok
17:03:01.0375 6012 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
17:03:01.0406 6012 atapi - ok
17:03:01.0453 6012 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
17:03:01.0515 6012 AudioEndpointBuilder - ok
17:03:01.0515 6012 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
17:03:01.0562 6012 Audiosrv - ok
17:03:01.0593 6012 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:03:01.0671 6012 Beep - ok
17:03:01.0718 6012 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
17:03:01.0796 6012 BFE - ok
17:03:01.0890 6012 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
17:03:01.0952 6012 BITS - ok
17:03:01.0983 6012 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:03:02.0014 6012 blbdrive - ok
17:03:02.0092 6012 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
17:03:02.0202 6012 Bonjour Service - ok
17:03:02.0233 6012 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
17:03:02.0280 6012 bowser - ok
17:03:02.0311 6012 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:03:02.0342 6012 BrFiltLo - ok
17:03:02.0358 6012 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:03:02.0420 6012 BrFiltUp - ok
17:03:02.0451 6012 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
17:03:02.0498 6012 Browser - ok
17:03:02.0529 6012 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:03:02.0685 6012 Brserid - ok
17:03:02.0716 6012 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:03:02.0857 6012 BrSerWdm - ok
17:03:02.0872 6012 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:03:02.0982 6012 BrUsbMdm - ok
17:03:03.0013 6012 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:03:03.0075 6012 BrUsbSer - ok
17:03:03.0106 6012 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:03:03.0200 6012 BTHMODEM - ok
17:03:03.0247 6012 BVRPMPR5 (da2dc84e2d14ec6dac1132caa286118d) C:\Windows\system32\drivers\BVRPMPR5.SYS
17:03:03.0325 6012 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - warning
17:03:03.0325 6012 BVRPMPR5 - detected UnsignedFile.Multi.Generic (1)
17:03:03.0356 6012 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:03:03.0387 6012 cdfs - ok
17:03:03.0434 6012 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
17:03:03.0465 6012 cdrom - ok
17:03:03.0496 6012 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
17:03:03.0528 6012 CertPropSvc - ok
17:03:03.0574 6012 cfwids (1c7b1e36f3ced9e4b0b13385e627fe8b) C:\Windows\system32\drivers\cfwids.sys
17:03:03.0684 6012 cfwids - ok
17:03:03.0699 6012 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
17:03:03.0746 6012 circlass - ok
17:03:03.0777 6012 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
17:03:03.0824 6012 CLFS - ok
17:03:03.0855 6012 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:03:03.0886 6012 clr_optimization_v2.0.50727_32 - ok
17:03:03.0949 6012 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:03:04.0105 6012 clr_optimization_v4.0.30319_32 - ok
17:03:04.0136 6012 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
17:03:04.0167 6012 cmdide - ok
17:03:04.0167 6012 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
17:03:04.0183 6012 Compbatt - ok
17:03:04.0198 6012 COMSysApp - ok
17:03:04.0198 6012 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
17:03:04.0214 6012 crcdisk - ok
17:03:04.0230 6012 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
17:03:04.0276 6012 Crusoe - ok
17:03:04.0323 6012 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
17:03:04.0339 6012 CryptSvc - ok
17:03:04.0401 6012 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
17:03:04.0464 6012 DcomLaunch - ok
17:03:04.0495 6012 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
17:03:04.0542 6012 DfsC - ok
17:03:04.0666 6012 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
17:03:04.0807 6012 DFSR - ok
17:03:04.0932 6012 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
17:03:04.0978 6012 Dhcp - ok
17:03:05.0041 6012 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
17:03:05.0056 6012 disk - ok
17:03:05.0088 6012 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
17:03:05.0181 6012 Dnscache - ok
17:03:05.0212 6012 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
17:03:05.0244 6012 dot3svc - ok
17:03:05.0290 6012 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
17:03:05.0353 6012 DPS - ok
17:03:05.0400 6012 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:03:05.0462 6012 drmkaud - ok
17:03:05.0540 6012 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
17:03:05.0602 6012 DXGKrnl - ok
17:03:05.0649 6012 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:03:05.0712 6012 E1G60 - ok
17:03:05.0758 6012 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
17:03:05.0805 6012 EapHost - ok
17:03:05.0852 6012 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
17:03:05.0883 6012 Ecache - ok
17:03:06.0008 6012 eDataSecurity Service (b1f2503e23425b386df0f3413b2596f3) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
17:03:06.0164 6012 eDataSecurity Service - ok
17:03:06.0242 6012 ehRecvr (3a511ed3c9a9da2cd5a50ff46178063a) C:\Windows\ehome\ehRecvr.exe
17:03:06.0289 6012 ehRecvr - ok
17:03:06.0304 6012 ehSched (a3d94c93333619458af4bde7531234c5) C:\Windows\ehome\ehsched.exe
17:03:06.0336 6012 ehSched - ok
17:03:06.0367 6012 ehstart (487ba5c5bb442bd172f120dc197811c2) C:\Windows\ehome\ehstart.dll
17:03:06.0398 6012 ehstart - ok
17:03:06.0523 6012 ElbyCDFL (59c9e1336a4508f059827d638e924c62) C:\Windows\system32\Drivers\ElbyCDFL.sys
17:03:06.0601 6012 ElbyCDFL ( UnsignedFile.Multi.Generic ) - warning
17:03:06.0601 6012 ElbyCDFL - detected UnsignedFile.Multi.Generic (1)
17:03:06.0648 6012 ElbyCDIO (64664287ca449c060fe46941dd67dd5f) C:\Windows\system32\Drivers\ElbyCDIO.sys
17:03:06.0819 6012 ElbyCDIO - ok
17:03:06.0866 6012 ElbyVCD (c4143fc2f7d39a5a8b1cfe0bc4bd8a9e) C:\Windows\system32\DRIVERS\ElbyVCD.sys
17:03:06.0882 6012 ElbyVCD ( UnsignedFile.Multi.Generic ) - warning
17:03:06.0882 6012 ElbyVCD - detected UnsignedFile.Multi.Generic (1)
17:03:06.0944 6012 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
17:03:06.0975 6012 elxstor - ok
17:03:07.0022 6012 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
17:03:07.0116 6012 EMDMgmt - ok
17:03:07.0209 6012 EpsonBidirectionalService (abdd5ad016affd34ad40e944ce94bf59) C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
17:03:07.0381 6012 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
17:03:07.0381 6012 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
17:03:07.0412 6012 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
17:03:07.0474 6012 ErrDev - ok
17:03:07.0506 6012 ETService (6ce3bfe7b289df112cfa6285d16b56c5) C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
17:03:07.0615 6012 ETService ( UnsignedFile.Multi.Generic ) - warning
17:03:07.0615 6012 ETService - detected UnsignedFile.Multi.Generic (1)
17:03:07.0662 6012 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
17:03:07.0708 6012 EventSystem - ok
17:03:07.0740 6012 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
17:03:07.0818 6012 exfat - ok
17:03:07.0849 6012 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
17:03:07.0880 6012 fastfat - ok
17:03:07.0911 6012 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
17:03:07.0974 6012 fdc - ok
17:03:08.0005 6012 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
17:03:08.0052 6012 fdPHost - ok
17:03:08.0052 6012 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
17:03:08.0161 6012 FDResPub - ok
17:03:08.0176 6012 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:03:08.0192 6012 FileInfo - ok
17:03:08.0223 6012 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:03:08.0270 6012 Filetrace - ok
17:03:08.0286 6012 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:03:08.0348 6012 flpydisk - ok
17:03:08.0379 6012 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
17:03:08.0395 6012 FltMgr - ok
17:03:08.0473 6012 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
17:03:08.0566 6012 FontCache - ok
17:03:08.0644 6012 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:03:08.0676 6012 FontCache3.0.0.0 - ok
17:03:08.0738 6012 ForceWare Intelligent Application Manager (IAM) (283195c5301eadbcf56dee637573ed12) C:\Program Files\bin32\nSvcAppFlt.exe
17:03:08.0910 6012 ForceWare Intelligent Application Manager (IAM) ( UnsignedFile.Multi.Generic ) - warning
17:03:08.0910 6012 ForceWare Intelligent Application Manager (IAM) - detected UnsignedFile.Multi.Generic (1)
17:03:09.0003 6012 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
17:03:09.0112 6012 Fs_Rec - ok
17:03:09.0144 6012 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
17:03:09.0175 6012 gagp30kx - ok
17:03:09.0222 6012 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:03:09.0284 6012 GEARAspiWDM - ok
17:03:09.0346 6012 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
17:03:09.0487 6012 GoogleDesktopManager-051210-111108 - ok
17:03:09.0534 6012 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
17:03:09.0596 6012 gpsvc - ok
17:03:09.0627 6012 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
17:03:09.0721 6012 HdAudAddService - ok
17:03:09.0768 6012 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:03:09.0814 6012 HDAudBus - ok
17:03:09.0846 6012 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:03:09.0955 6012 HidBth - ok
17:03:09.0986 6012 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
17:03:10.0080 6012 HidIr - ok
17:03:10.0111 6012 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
17:03:10.0142 6012 hidserv - ok
17:03:10.0173 6012 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
17:03:10.0189 6012 HidUsb - ok
17:03:10.0251 6012 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
17:03:10.0282 6012 hkmsvc - ok
17:03:10.0298 6012 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
17:03:10.0314 6012 HpCISSs - ok
17:03:10.0438 6012 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
17:03:10.0532 6012 HTTP - ok
17:03:10.0563 6012 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
17:03:10.0610 6012 i2omp - ok
17:03:10.0641 6012 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:03:10.0704 6012 i8042prt - ok
17:03:10.0735 6012 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
17:03:10.0766 6012 iaStorV - ok
17:03:10.0875 6012 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:03:10.0938 6012 idsvc - ok
17:03:10.0953 6012 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:03:10.0984 6012 iirsp - ok
17:03:11.0031 6012 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
17:03:11.0094 6012 IKEEXT - ok
17:03:11.0140 6012 int15 (58ff11c95c3681c9250914521cb9f036) C:\Windows\system32\drivers\int15.sys
17:03:11.0265 6012 int15 - ok
17:03:11.0359 6012 IntcAzAudAddService (4c01298060cf930d26a75a86b874b6ae) C:\Windows\system32\drivers\RTKVHDA.sys
17:03:11.0484 6012 IntcAzAudAddService - ok
17:03:11.0593 6012 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
17:03:11.0608 6012 intelide - ok
17:03:11.0624 6012 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:03:11.0655 6012 intelppm - ok
17:03:11.0686 6012 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
17:03:11.0749 6012 IPBusEnum - ok
17:03:11.0764 6012 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:03:11.0811 6012 IpFilterDriver - ok
17:03:11.0842 6012 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
17:03:11.0889 6012 iphlpsvc - ok
17:03:11.0905 6012 IpInIp - ok
17:03:11.0920 6012 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
17:03:11.0952 6012 IPMIDRV - ok
17:03:11.0983 6012 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:03:12.0014 6012 IPNAT - ok
17:03:12.0092 6012 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
17:03:12.0279 6012 iPod Service - ok
17:03:12.0310 6012 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:03:12.0342 6012 IRENUM - ok
17:03:12.0404 6012 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
17:03:12.0420 6012 isapnp - ok
17:03:12.0466 6012 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
17:03:12.0482 6012 iScsiPrt - ok
17:03:12.0669 6012 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:03:12.0700 6012 iteatapi - ok
17:03:12.0732 6012 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:03:12.0763 6012 iteraid - ok
17:03:12.0778 6012 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:03:12.0810 6012 kbdclass - ok
17:03:12.0841 6012 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
17:03:12.0919 6012 kbdhid - ok
17:03:12.0950 6012 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:03:13.0106 6012 KeyIso - ok
17:03:13.0137 6012 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
17:03:13.0168 6012 KSecDD - ok
17:03:13.0215 6012 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
17:03:13.0278 6012 KtmRm - ok
17:03:13.0324 6012 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
17:03:13.0371 6012 LanmanServer - ok
17:03:13.0402 6012 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
17:03:13.0465 6012 LanmanWorkstation - ok
17:03:13.0746 6012 LeapFrog Connect Device Service (24a7d535bd9e58e5bc1ac52ef7e2ec8e) C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
17:03:14.0151 6012 LeapFrog Connect Device Service - ok
17:03:14.0245 6012 LightScribeService (c34411a244029f1c08687f7c752c4563) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
17:03:14.0323 6012 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
17:03:14.0323 6012 LightScribeService - detected UnsignedFile.Multi.Generic (1)
17:03:14.0416 6012 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:03:14.0479 6012 lltdio - ok
17:03:14.0510 6012 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
17:03:14.0572 6012 lltdsvc - ok
17:03:14.0588 6012 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
17:03:14.0697 6012 lmhosts - ok
17:03:14.0713 6012 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
17:03:14.0728 6012 LSI_FC - ok
17:03:14.0744 6012 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
17:03:14.0775 6012 LSI_SAS - ok
17:03:14.0791 6012 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
17:03:14.0806 6012 LSI_SCSI - ok
17:03:14.0822 6012 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:03:14.0853 6012 luafv - ok
17:03:14.0900 6012 McAfee SiteAdvisor Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
17:03:14.0916 6012 McAfee SiteAdvisor Service - ok
17:03:14.0962 6012 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
17:03:15.0072 6012 McComponentHostService - ok
17:03:15.0087 6012 McMPFSvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
17:03:15.0118 6012 McMPFSvc - ok
17:03:15.0134 6012 mcmscsvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
17:03:15.0150 6012 mcmscsvc - ok
17:03:15.0150 6012 McNaiAnn (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
17:03:15.0165 6012 McNaiAnn - ok
17:03:15.0181 6012 McNASvc (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
17:03:15.0196 6012 McNASvc - ok
17:03:15.0274 6012 McODS (42117cbc4849a5cf11129912dabbdeca) C:\Program Files\McAfee\VirusScan\mcods.exe
17:03:15.0384 6012 McODS - ok
17:03:15.0415 6012 McProxy (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
17:03:15.0430 6012 McProxy - ok
17:03:15.0462 6012 McPvDrv (000751813ecef491689176e72b3a8bee) C:\Windows\system32\drivers\McPvDrv.sys
17:03:15.0477 6012 McPvDrv - ok
17:03:15.0508 6012 McShield (593fa4c378818ece76ba64a11ad56cf2) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
17:03:15.0618 6012 McShield - ok
17:03:15.0664 6012 Mcx2Svc (3bd2ad18179dead6652e87157fb98e4a) C:\Windows\system32\Mcx2Svc.dll
17:03:15.0742 6012 Mcx2Svc - ok
17:03:15.0774 6012 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
17:03:15.0789 6012 megasas - ok
17:03:15.0836 6012 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
17:03:15.0867 6012 MegaSR - ok
17:03:15.0914 6012 mfeapfk (43c31bdf404a6d7a7ac1bfd5ead2a566) C:\Windows\system32\drivers\mfeapfk.sys
17:03:16.0054 6012 mfeapfk - ok
17:03:16.0086 6012 mfeavfk (c1dc5f42d3367f33b6451be78b38bd46) C:\Windows\system32\drivers\mfeavfk.sys
17:03:16.0179 6012 mfeavfk - ok
17:03:16.0195 6012 mfeavfk01 - ok
17:03:16.0210 6012 mfebopk (0435c43f4c2be01b84868ad2a906397b) C:\Windows\system32\drivers\mfebopk.sys
17:03:16.0288 6012 mfebopk - ok
17:03:16.0320 6012 mfefire (7e1f8b1bdc8240f08bd358b3a466c005) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
17:03:16.0429 6012 mfefire - ok
17:03:16.0476 6012 mfefirek (4ea6ff90015424517843e931448e00f1) C:\Windows\system32\drivers\mfefirek.sys
17:03:16.0647 6012 mfefirek - ok
17:03:16.0694 6012 mfehidk (d1e998748ba24a731106611d535c6bbf) C:\Windows\system32\drivers\mfehidk.sys
17:03:16.0725 6012 mfehidk - ok
17:03:16.0741 6012 mfenlfk (ac04a618aef3de0fce91c766f9e069da) C:\Windows\system32\DRIVERS\mfenlfk.sys
17:03:16.0881 6012 mfenlfk - ok
17:03:16.0912 6012 mferkdet (f454a13377f0a006d20a8c14a753c432) C:\Windows\system32\drivers\mferkdet.sys
17:03:16.0975 6012 mferkdet - ok
17:03:17.0006 6012 mfevtp (b10c4efd40810c08f4b44df2efcb54f7) C:\Windows\system32\mfevtps.exe
17:03:17.0084 6012 mfevtp - ok
17:03:17.0100 6012 mfewfpk (f284337aedb7483df8a5fa840647e2b0) C:\Windows\system32\drivers\mfewfpk.sys
17:03:17.0256 6012 mfewfpk - ok
17:03:17.0287 6012 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
17:03:17.0349 6012 MMCSS - ok
17:03:17.0412 6012 MOBKbackup (35176fa09a0fc58db630991a81a0ba39) C:\Program Files\McAfee Online Backup\MOBKbackup.exe
17:03:17.0568 6012 MOBKbackup - ok
17:03:17.0599 6012 MOBKFilter (e896775837a8bce436348df460522394) C:\Windows\system32\DRIVERS\MOBK.sys
17:03:17.0614 6012 MOBKFilter - ok
17:03:17.0646 6012 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:03:17.0677 6012 Modem - ok
17:03:17.0708 6012 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:03:17.0739 6012 monitor - ok
17:03:17.0755 6012 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:03:17.0786 6012 mouclass - ok
17:03:17.0786 6012 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
17:03:17.0833 6012 mouhid - ok
17:03:17.0848 6012 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:03:17.0880 6012 MountMgr - ok
17:03:17.0895 6012 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:03:17.0989 6012 MozillaMaintenance - ok
17:03:18.0020 6012 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
17:03:18.0036 6012 mpio - ok
17:03:18.0051 6012 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:03:18.0114 6012 mpsdrv - ok
17:03:18.0160 6012 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
17:03:18.0223 6012 MpsSvc - ok
17:03:18.0254 6012 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:03:18.0270 6012 Mraid35x - ok
17:03:18.0285 6012 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
17:03:18.0332 6012 MRxDAV - ok
17:03:18.0363 6012 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:03:18.0394 6012 mrxsmb - ok
17:03:18.0441 6012 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:03:18.0472 6012 mrxsmb10 - ok
17:03:18.0504 6012 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:03:18.0550 6012 mrxsmb20 - ok
17:03:18.0566 6012 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
17:03:18.0597 6012 msahci - ok
17:03:18.0613 6012 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
17:03:18.0644 6012 msdsm - ok
17:03:18.0660 6012 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
17:03:18.0706 6012 MSDTC - ok
17:03:18.0722 6012 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:03:18.0769 6012 Msfs - ok
17:03:18.0784 6012 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:03:18.0816 6012 msisadrv - ok
17:03:18.0847 6012 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
17:03:18.0894 6012 MSiSCSI - ok
17:03:18.0894 6012 msiserver - ok
17:03:18.0987 6012 MSK80Service (7e6932eeda54c8eaf7dc6c2225261b85) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
17:03:19.0003 6012 MSK80Service - ok
17:03:19.0034 6012 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:03:19.0081 6012 MSKSSRV - ok
17:03:19.0096 6012 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:03:19.0143 6012 MSPCLOCK - ok
17:03:19.0159 6012 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:03:19.0190 6012 MSPQM - ok
17:03:19.0221 6012 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
17:03:19.0252 6012 MsRPC - ok
17:03:19.0284 6012 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:03:19.0299 6012 mssmbios - ok
17:03:19.0315 6012 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:03:19.0377 6012 MSTEE - ok
17:03:19.0408 6012 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
17:03:19.0424 6012 Mup - ok
17:03:19.0471 6012 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
17:03:19.0533 6012 napagent - ok
17:03:19.0580 6012 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
17:03:19.0596 6012 NativeWifiP - ok
17:03:19.0658 6012 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
17:03:19.0705 6012 NDIS - ok
17:03:19.0752 6012 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:03:19.0798 6012 NdisTapi - ok
17:03:19.0814 6012 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:03:19.0845 6012 Ndisuio - ok
17:03:19.0876 6012 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:03:19.0908 6012 NdisWan - ok
17:03:19.0923 6012 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:03:19.0970 6012 NDProxy - ok
17:03:20.0001 6012 Nero BackItUp Scheduler 4.0 - ok
17:03:20.0032 6012 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:03:20.0095 6012 NetBIOS - ok
17:03:20.0126 6012 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
17:03:20.0157 6012 netbt - ok
17:03:20.0204 6012 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:03:20.0220 6012 Netlogon - ok
17:03:20.0266 6012 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
17:03:20.0313 6012 Netman - ok
17:03:20.0329 6012 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
17:03:20.0376 6012 netprofm - ok
17:03:20.0422 6012 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:03:20.0438 6012 NetTcpPortSharing - ok
17:03:20.0454 6012 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:03:20.0469 6012 nfrd960 - ok
17:03:20.0500 6012 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
17:03:20.0532 6012 NlaSvc - ok
17:03:20.0547 6012 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
17:03:20.0578 6012 Npfs - ok
17:03:20.0594 6012 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
17:03:20.0656 6012 nsi - ok
17:03:20.0672 6012 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:03:20.0719 6012 nsiproxy - ok
17:03:20.0781 6012 nSvcIp (3c7bd1ec817d300a8826d49c406d5894) C:\Program Files\bin32\nSvcIp.exe
17:03:20.0890 6012 nSvcIp ( UnsignedFile.Multi.Generic ) - warning
17:03:20.0890 6012 nSvcIp - detected UnsignedFile.Multi.Generic (1)
17:03:20.0968 6012 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
17:03:21.0031 6012 Ntfs - ok
17:03:21.0078 6012 NTIBackupSvc (973dcb15731339fca176e534055cf115) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
17:03:21.0187 6012 NTIBackupSvc - ok
17:03:21.0358 6012 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
17:03:21.0624 6012 NTIDrvr - ok
17:03:21.0655 6012 NTISchedulerSvc (58751f9248d50bce1053976c9e2f0859) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
17:03:21.0826 6012 NTISchedulerSvc - ok
17:03:21.0842 6012 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:03:21.0936 6012 ntrigdigi - ok
17:03:21.0951 6012 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:03:21.0998 6012 Null - ok
17:03:22.0060 6012 NVENETFD (1efec38a852ab35883bfff3427b92b3f) C:\Windows\system32\DRIVERS\nvmfdx32.sys
17:03:22.0201 6012 NVENETFD - ok
17:03:22.0248 6012 NVHDA (a82534d453425f5fee4b6a583fdcf3eb) C:\Windows\system32\drivers\nvhda32v.sys
17:03:22.0341 6012 NVHDA - ok
17:03:22.0903 6012 nvlddmkm (f452e6ad3eda2852f44be492e283c40f) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:03:23.0480 6012 nvlddmkm - ok
17:03:23.0636 6012 NVNET (1efec38a852ab35883bfff3427b92b3f) C:\Windows\system32\DRIVERS\nvmfdx32.sys
17:03:23.0652 6012 NVNET - ok
17:03:23.0683 6012 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
17:03:23.0714 6012 nvraid - ok
17:03:23.0761 6012 nvsmu (c44ee36dd84fa95eb81d79c374756003) C:\Windows\system32\DRIVERS\nvsmu.sys
17:03:23.0792 6012 nvsmu - ok
17:03:23.0808 6012 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
17:03:23.0839 6012 nvstor - ok
17:03:23.0854 6012 nvstor32 (fa7b8eca6e845b244b7e30a9dcd82c6c) C:\Windows\system32\DRIVERS\nvstor32.sys
17:03:23.0870 6012 nvstor32 - ok
17:03:23.0932 6012 nvsvc (7c732aff202dcd06c3d262966d71604c) C:\Windows\system32\nvvsvc.exe
17:03:24.0120 6012 nvsvc - ok
17:03:24.0322 6012 nvUpdatusService (262d2fbf211a88dcb84249df0f6ef6e7) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
17:03:24.0494 6012 nvUpdatusService - ok
17:03:24.0634 6012 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
17:03:24.0666 6012 nv_agp - ok
17:03:24.0681 6012 NwlnkFlt - ok
17:03:24.0681 6012 NwlnkFwd - ok
17:03:24.0806 6012 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:03:24.0978 6012 odserv - ok
17:03:25.0024 6012 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
17:03:25.0071 6012 ohci1394 - ok
17:03:25.0102 6012 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:03:25.0212 6012 ose - ok
17:03:25.0258 6012 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:03:25.0336 6012 p2pimsvc - ok
17:03:25.0352 6012 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:03:25.0399 6012 p2psvc - ok
17:03:25.0430 6012 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:03:25.0524 6012 Parport - ok
17:03:25.0555 6012 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
17:03:25.0570 6012 partmgr - ok
17:03:25.0602 6012 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:03:25.0680 6012 Parvdm - ok
17:03:25.0711 6012 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
17:03:25.0742 6012 PcaSvc - ok
17:03:25.0789 6012 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
17:03:25.0804 6012 pci - ok
17:03:25.0804 6012 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
17:03:25.0820 6012 pciide - ok
17:03:25.0898 6012 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
17:03:25.0929 6012 pcmcia - ok
17:03:25.0945 6012 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
17:03:26.0085 6012 pcouffin - ok
17:03:26.0163 6012 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:03:26.0288 6012 PEAUTH - ok
17:03:26.0382 6012 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
17:03:26.0475 6012 pla - ok
17:03:26.0584 6012 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
17:03:26.0616 6012 PlugPlay - ok
17:03:26.0662 6012 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:03:26.0694 6012 PNRPAutoReg - ok
17:03:26.0694 6012 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
17:03:26.0740 6012 PNRPsvc - ok
17:03:26.0772 6012 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
17:03:26.0834 6012 PolicyAgent - ok
17:03:26.0943 6012 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:03:27.0006 6012 PptpMiniport - ok
17:03:27.0162 6012 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
17:03:27.0224 6012 Processor - ok
17:03:27.0349 6012 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
17:03:27.0364 6012 ProfSvc - ok
17:03:27.0396 6012 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:03:27.0411 6012 ProtectedStorage - ok
17:03:27.0442 6012 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
17:03:27.0489 6012 PSched - ok
17:03:27.0505 6012 PSDFilter (628321c8dd76ad369b362b202e655a68) C:\Windows\system32\DRIVERS\psdfilter.sys
17:03:27.0520 6012 PSDFilter - ok
17:03:27.0552 6012 PSDNServ (79d7117e62709c7690cf3dd55acead37) C:\Windows\system32\DRIVERS\PSDNServ.sys
17:03:27.0645 6012 PSDNServ - ok
17:03:27.0661 6012 psdvdisk (cae5e82827990cf4bd4a49576bde3a43) C:\Windows\system32\DRIVERS\PSDVdisk.sys
17:03:27.0754 6012 psdvdisk - ok
17:03:27.0832 6012 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
17:03:27.0910 6012 ql2300 - ok
17:03:27.0957 6012 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:03:27.0973 6012 ql40xx - ok
17:03:28.0004 6012 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
17:03:28.0051 6012 QWAVE - ok
17:03:28.0082 6012 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:03:28.0113 6012 QWAVEdrv - ok
17:03:28.0129 6012 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:03:28.0176 6012 RasAcd - ok
17:03:28.0191 6012 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
17:03:28.0254 6012 RasAuto - ok
17:03:28.0269 6012 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:03:28.0300 6012 Rasl2tp - ok
17:03:28.0378 6012 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
17:03:28.0410 6012 RasMan - ok
17:03:28.0441 6012 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
17:03:28.0456 6012 RasPppoe - ok
17:03:28.0472 6012 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
17:03:28.0488 6012 RasSstp - ok
17:03:28.0534 6012 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
17:03:28.0566 6012 rdbss - ok
17:03:28.0581 6012 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:03:28.0612 6012 RDPCDD - ok
17:03:28.0628 6012 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
17:03:28.0659 6012 rdpdr - ok
17:03:28.0675 6012 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:03:28.0706 6012 RDPENCDD - ok
17:03:28.0753 6012 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
17:03:28.0909 6012 RDPWD - ok
17:03:28.0940 6012 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
17:03:28.0971 6012 RemoteAccess - ok
17:03:29.0002 6012 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
17:03:29.0049 6012 RemoteRegistry - ok
17:03:29.0112 6012 RichVideo (a035a7bf5132682f53f1e7b955690ce7) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
17:03:29.0269 6012 RichVideo ( UnsignedFile.Multi.Generic ) - warning
17:03:29.0269 6012 RichVideo - detected UnsignedFile.Multi.Generic (1)
17:03:29.0284 6012 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
17:03:29.0331 6012 RpcLocator - ok
17:03:29.0409 6012 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
17:03:29.0456 6012 RpcSs - ok
17:03:29.0518 6012 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:03:29.0565 6012 rspndr - ok
17:03:29.0627 6012 RTL8187 (99c27fceb21347daf3ee9e8c205314d6) C:\Windows\system32\DRIVERS\wg111v2.sys
17:03:29.0815 6012 RTL8187 - ok
17:03:29.0846 6012 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
17:03:29.0861 6012 SamSs - ok
17:03:29.0939 6012 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
17:03:30.0033 6012 SASDIFSV - ok
17:03:30.0049 6012 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
17:03:30.0142 6012 SASKUTIL - ok
17:03:30.0173 6012 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:03:30.0205 6012 sbp2port - ok
17:03:30.0236 6012 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
17:03:30.0251 6012 SCardSvr - ok
17:03:30.0298 6012 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
17:03:30.0392 6012 Schedule - ok
17:03:30.0423 6012 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
17:03:30.0439 6012 SCMNdisP - ok
17:03:30.0470 6012 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
17:03:30.0485 6012 SCPolicySvc - ok
17:03:30.0563 6012 ScsiAccess (958e956e119eb7b9aba142afed1b5ff4) C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe
17:03:30.0673 6012 ScsiAccess - ok
17:03:30.0704 6012 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
17:03:30.0766 6012 SDRSVC - ok
17:03:30.0797 6012 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:03:30.0891 6012 secdrv - ok
17:03:30.0907 6012 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
17:03:30.0938 6012 seclogon - ok
17:03:30.0953 6012 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
17:03:30.0985 6012 SENS - ok
17:03:31.0000 6012 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:03:31.0094 6012 Serenum - ok
17:03:31.0109 6012 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:03:31.0250 6012 Serial - ok
17:03:31.0265 6012 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:03:31.0312 6012 sermouse - ok
17:03:31.0343 6012 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
17:03:31.0390 6012 SessionEnv - ok
17:03:31.0406 6012 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
17:03:31.0437 6012 sffdisk - ok
17:03:31.0437 6012 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
17:03:31.0484 6012 sffp_mmc - ok
17:03:31.0499 6012 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
17:03:31.0515 6012 sffp_sd - ok
17:03:31.0531 6012 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:03:31.0609 6012 sfloppy - ok
17:03:31.0640 6012 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
17:03:31.0687 6012 SharedAccess - ok
17:03:31.0702 6012 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
17:03:31.0733 6012 ShellHWDetection - ok
17:03:31.0765 6012 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
17:03:31.0780 6012 sisagp - ok
17:03:31.0796 6012 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
17:03:31.0811 6012 SiSRaid2 - ok
17:03:31.0827 6012 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
17:03:31.0843 6012 SiSRaid4 - ok
17:03:32.0014 6012 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
17:03:32.0186 6012 slsvc - ok
17:03:32.0295 6012 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
17:03:32.0342 6012 SLUINotify - ok
17:03:32.0404 6012 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
17:03:32.0467 6012 Smb - ok
17:03:32.0513 6012 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
17:03:32.0529 6012 SNMPTRAP - ok
17:03:32.0560 6012 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:03:32.0576 6012 spldr - ok
17:03:32.0607 6012 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
17:03:32.0654 6012 Spooler - ok
17:03:32.0701 6012 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
17:03:32.0747 6012 srv - ok
17:03:32.0779 6012 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
17:03:32.0825 6012 srv2 - ok
17:03:32.0857 6012 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
17:03:32.0857 6012 srvnet - ok
17:03:32.0888 6012 sscdbus (d5dffeaa1e15d4effabb9d9a3068ac5b) C:\Windows\system32\DRIVERS\sscdbus.sys
17:03:32.0997 6012 sscdbus - ok
17:03:33.0028 6012 sscdmdfl (8a1be0c347814f482f493aea619d57f6) C:\Windows\system32\DRIVERS\sscdmdfl.sys
17:03:33.0153 6012 sscdmdfl - ok
17:03:33.0169 6012 sscdmdm (5ab0b1987f682a59b15b78f84c6ad7d0) C:\Windows\system32\DRIVERS\sscdmdm.sys
17:03:33.0262 6012 sscdmdm - ok
17:03:33.0309 6012 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
17:03:33.0325 6012 SSDPSRV - ok
17:03:33.0387 6012 sst41D7 (a947995371e7b211cbc47f4475e40bd2) C:\Windows\system32\drivers\sst41D7.sys
17:03:33.0543 6012 sst41D7 ( UnsignedFile.Multi.Generic ) - warning
17:03:33.0543 6012 sst41D7 - detected UnsignedFile.Multi.Generic (1)
17:03:33.0574 6012 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
17:03:33.0590 6012 SstpSvc - ok
17:03:33.0621 6012 StarOpen (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
17:03:33.0621 6012 StarOpen ( UnsignedFile.Multi.Generic ) - warning
17:03:33.0621 6012 StarOpen - detected UnsignedFile.Multi.Generic (1)
17:03:33.0668 6012 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
17:03:33.0715 6012 stisvc - ok
17:03:33.0746 6012 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:03:33.0761 6012 swenum - ok
17:03:33.0808 6012 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
17:03:33.0855 6012 swprv - ok
17:03:33.0871 6012 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:03:33.0886 6012 Symc8xx - ok
17:03:33.0902 6012 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:03:33.0917 6012 Sym_hi - ok
17:03:33.0933 6012 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:03:33.0949 6012 Sym_u3 - ok
17:03:33.0995 6012 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
17:03:34.0042 6012 SysMain - ok
17:03:34.0073 6012 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
17:03:34.0089 6012 TabletInputService - ok
17:03:34.0120 6012 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
17:03:34.0151 6012 TapiSrv - ok
17:03:34.0167 6012 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
17:03:34.0214 6012 TBS - ok
17:03:34.0292 6012 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
17:03:34.0385 6012 Tcpip - ok
17:03:34.0401 6012 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
17:03:34.0448 6012 Tcpip6 - ok
17:03:34.0495 6012 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
17:03:34.0541 6012 tcpipreg - ok
17:03:34.0573 6012 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:03:34.0635 6012 TDPIPE - ok
17:03:34.0635 6012 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:03:34.0697 6012 TDTCP - ok
17:03:34.0729 6012 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
17:03:34.0760 6012 tdx - ok
17:03:34.0791 6012 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
17:03:34.0807 6012 TermDD - ok
17:03:34.0853 6012 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
17:03:34.0931 6012 TermService - ok
17:03:34.0963 6012 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
17:03:34.0994 6012 Themes - ok
17:03:35.0025 6012 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
17:03:35.0072 6012 THREADORDER - ok
17:03:35.0103 6012 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
17:03:35.0150 6012 TrkWks - ok
17:03:35.0181 6012 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
17:03:35.0243 6012 TrustedInstaller - ok
17:03:35.0275 6012 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:03:35.0321 6012 tssecsrv - ok
17:03:35.0337 6012 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:03:35.0384 6012 tunmp - ok
17:03:35.0399 6012 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
17:03:35.0462 6012 tunnel - ok
17:03:35.0477 6012 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
17:03:35.0509 6012 uagp35 - ok
17:03:35.0540 6012 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
17:03:35.0571 6012 UBHelper - ok
17:03:35.0602 6012 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
17:03:35.0665 6012 udfs - ok
17:03:35.0680 6012 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
17:03:35.0727 6012 UI0Detect - ok
17:03:35.0758 6012 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
17:03:35.0774 6012 uliagpkx - ok
17:03:35.0789 6012 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
17:03:35.0821 6012 uliahci - ok
17:03:35.0867 6012 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:03:35.0883 6012 UlSata - ok
17:03:35.0914 6012 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:03:35.0930 6012 ulsata2 - ok
17:03:35.0945 6012 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:03:36.0023 6012 umbus - ok
17:03:36.0070 6012 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
17:03:36.0148 6012 upnphost - ok
17:03:36.0179 6012 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
17:03:36.0382 6012 USBAAPL - ok
17:03:36.0413 6012 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
17:03:36.0445 6012 usbccgp - ok
17:03:36.0460 6012 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:03:36.0554 6012 usbcir - ok
17:03:36.0569 6012 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
17:03:36.0601 6012 usbehci - ok
17:03:36.0632 6012 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
17:03:36.0663 6012 usbhub - ok
17:03:36.0663 6012 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
17:03:36.0710 6012 usbohci - ok
17:03:36.0725 6012 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
17:03:36.0757 6012 usbprint - ok
17:03:36.0788 6012 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
17:03:36.0819 6012 usbscan - ok
17:03:36.0850 6012 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:03:36.0881 6012 USBSTOR - ok
17:03:36.0913 6012 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
17:03:36.0944 6012 usbuhci - ok
17:03:36.0959 6012 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
17:03:36.0991 6012 UxSms - ok
17:03:37.0100 6012 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
17:03:37.0193 6012 vds - ok
17:03:37.0209 6012 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
17:03:37.0271 6012 vga - ok
17:03:37.0287 6012 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:03:37.0349 6012 VgaSave - ok
17:03:37.0365 6012 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
17:03:37.0412 6012 viaagp - ok
17:03:37.0443 6012 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
17:03:37.0490 6012 ViaC7 - ok
17:03:37.0521 6012 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
17:03:37.0552 6012 viaide - ok
17:03:37.0568 6012 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:03:37.0599 6012 volmgr - ok
17:03:37.0630 6012 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
17:03:37.0661 6012 volmgrx - ok
17:03:37.0708 6012 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
17:03:37.0739 6012 volsnap - ok
17:03:37.0771 6012 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
17:03:37.0802 6012 vsmraid - ok
17:03:37.0864 6012 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
17:03:37.0958 6012 VSS - ok
17:03:38.0005 6012 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
17:03:38.0051 6012 W32Time - ok
17:03:38.0098 6012 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:03:38.0192 6012 WacomPen - ok
17:03:38.0207 6012 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:03:38.0254 6012 Wanarp - ok
17:03:38.0254 6012 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:03:38.0285 6012 Wanarpv6 - ok
17:03:38.0332 6012 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
17:03:38.0379 6012 wcncsvc - ok
17:03:38.0410 6012 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
17:03:38.0426 6012 WcsPlugInService - ok
17:03:38.0441 6012 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
17:03:38.0457 6012 Wd - ok
17:03:38.0488 6012 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
17:03:38.0519 6012 Wdf01000 - ok
17:03:38.0535 6012 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
17:03:38.0566 6012 WdiServiceHost - ok
17:03:38.0566 6012 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
17:03:38.0597 6012 WdiSystemHost - ok
17:03:38.0629 6012 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
17:03:38.0644 6012 WebClient - ok
17:03:38.0675 6012 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
17:03:38.0707 6012 Wecsvc - ok
17:03:38.0738 6012 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
17:03:38.0753 6012 wercplsupport - ok
17:03:38.0785 6012 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
17:03:38.0800 6012 WerSvc - ok
17:03:38.0816 6012 WinHttpAutoProxySvc - ok
17:03:38.0863 6012 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
17:03:38.0894 6012 Winmgmt - ok
17:03:38.0972 6012 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
17:03:39.0081 6012 WinRM - ok
17:03:39.0143 6012 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
17:03:39.0221 6012 Wlansvc - ok
17:03:39.0409 6012 wlidsvc (d9250b31b353ee3322c1cad411997e38) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:03:39.0627 6012 wlidsvc - ok
17:03:39.0752 6012 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:03:39.0767 6012 WmiAcpi - ok
17:03:39.0830 6012 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
17:03:39.0877 6012 wmiApSrv - ok
17:03:39.0970 6012 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
17:03:40.0033 6012 WMPNetworkSvc - ok
17:03:40.0064 6012 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
17:03:40.0126 6012 WPCSvc - ok
17:03:40.0157 6012 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
17:03:40.0204 6012 WPDBusEnum - ok
17:03:40.0251 6012 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
17:03:40.0282 6012 WpdUsb - ok
17:03:40.0391 6012 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:03:40.0423 6012 WPFFontCache_v0400 - ok
17:03:40.0454 6012 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
17:03:40.0485 6012 ws2ifsl - ok
17:03:40.0516 6012 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
17:03:40.0547 6012 wscsvc - ok
17:03:40.0547 6012 WSearch - ok
17:03:40.0672 6012 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
17:03:40.0750 6012 wuauserv - ok
17:03:40.0875 6012 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:03:40.0937 6012 WUDFRd - ok
17:03:40.0969 6012 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
17:03:41.0000 6012 wudfsvc - ok
17:03:41.0031 6012 MBR (0x1B8) (ef932eaa6ef4c94e66a7f6ceec7eb422) \Device\Harddisk0\DR0
17:03:43.0839 6012 \Device\Harddisk0\DR0 - ok
17:03:43.0839 6012 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
17:03:44.0416 6012 \Device\Harddisk1\DR1 - ok
17:03:44.0447 6012 Boot (0x1200) (c2827fb1daa3287be850444ad07ab3da) \Device\Harddisk0\DR0\Partition0
17:03:44.0447 6012 \Device\Harddisk0\DR0\Partition0 - ok
17:03:44.0463 6012 Boot (0x1200) (61d0cec9cfccd231c244173d1ce9c210) \Device\Harddisk0\DR0\Partition1
17:03:44.0479 6012 \Device\Harddisk0\DR0\Partition1 - ok
17:03:44.0479 6012 Boot (0x1200) (7863642ca0d28963403aa95e66b81cbc) \Device\Harddisk1\DR1\Partition0
17:03:44.0479 6012 \Device\Harddisk1\DR1\Partition0 - ok
17:03:44.0479 6012 ============================================================
17:03:44.0479 6012 Scan finished
17:03:44.0479 6012 ============================================================
17:03:44.0510 5436 Detected object count: 12
17:03:44.0510 5436 Actual detected object count: 12
17:05:37.0582 5436 Acer HomeMedia Connect Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0582 5436 Acer HomeMedia Connect Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0582 5436 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0582 5436 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0582 5436 ElbyCDFL ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0582 5436 ElbyCDFL ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0582 5436 ElbyVCD ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0582 5436 ElbyVCD ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0582 5436 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0582 5436 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0597 5436 ETService ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0597 5436 ETService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0597 5436 ForceWare Intelligent Application Manager (IAM) ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0597 5436 ForceWare Intelligent Application Manager (IAM) ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0597 5436 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0597 5436 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0597 5436 nSvcIp ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0597 5436 nSvcIp ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0597 5436 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0597 5436 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0597 5436 sst41D7 ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0597 5436 sst41D7 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:05:37.0613 5436 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
17:05:37.0613 5436 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:06:32.0650 5452 Deinitialize success


--------------------------------------------------------------------------------------------------------------------------------------------



Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.07.01

Windows Vista Service Pack 2 x86 NTFS (Safe Mode)
Internet Explorer 9.0.8112.16421
michael :: MICHAELS [administrator]

08/05/2012 17:12:09
mbam-log-2012-05-08 (17-12-09).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 410015
Time elapsed: 42 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



---------------------------------------------------------------------------------------------------------------------------------------



MiniToolBox by Farbar Version: 18-01-2012
Ran by michael (administrator) on 08-05-2012 at 19:19:37
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter = Wireless Network Connection 2 (Connected)
NVIDIA nForce Networking Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Local Area Connection" address=0.0.0.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Michaels
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter #2
Physical Address. . . . . . . . . : 00-1B-2F-96-72-2C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::bd46:c8f1:b273:a71e%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 08 May 2012 19:14:20
Lease Expires . . . . . . . . . . : 15 May 2012 19:14:20
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 251665199
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0C-BD-15-DE-00-1F-16-F2-D1-68
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Networking Controller
Physical Address. . . . . . . . . : 00-1F-16-F2-D1-68
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{9C8F1BEA-9A22-4447-A476-AA535398B409}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:34e5:1f8c:3f57:ff9a(Preferred)
Link-local IPv6 Address . . . . . : fe80::34e5:1f8c:3f57:ff9a%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7CDCA9BC-3975-4F34-961E-0C43F3DEEB01}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dir-615
Address: 192.168.0.1

Name: google.com
Addresses: 173.194.41.131
173.194.41.130
173.194.41.135
173.194.41.137
173.194.41.132
173.194.41.129
173.194.41.133
173.194.41.136
173.194.41.128
173.194.41.142
173.194.41.134



Pinging google.com [173.194.41.132] with 32 bytes of data:

Reply from 173.194.41.132: bytes=32 time=230ms TTL=54

Reply from 173.194.41.132: bytes=32 time=26ms TTL=54



Ping statistics for 173.194.41.132:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 26ms, Maximum = 230ms, Average = 128ms

Server: dir-615
Address: 192.168.0.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=230ms TTL=47

Reply from 209.191.122.70: bytes=32 time=196ms TTL=49



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 196ms, Maximum = 230ms, Average = 213ms

Server: dir-615
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
13 ...00 1b 2f 96 72 2c ...... NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter #2
10 ...00 1f 16 f2 d1 68 ...... NVIDIA nForce 10/100/1000 Mbps Networking Controller
1 ........................... Software Loopback Interface 1
14 ...00 00 00 00 00 00 00 e0 isatap.{9C8F1BEA-9A22-4447-A476-AA535398B409}
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
15 ...00 00 00 00 00 00 00 e0 isatap.{7CDCA9BC-3975-4F34-961E-0C43F3DEEB01}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.101 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.101 281
192.168.0.101 255.255.255.255 On-link 192.168.0.101 281
192.168.0.255 255.255.255.255 On-link 192.168.0.101 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.101 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.101 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 18 ::/0 On-link
1 306 ::1/128 On-link
11 18 2001::/32 On-link
11 266 2001:0:5ef5:79fb:34e5:1f8c:3f57:ff9a/128
On-link
13 281 fe80::/64 On-link
11 266 fe80::/64 On-link
11 266 fe80::34e5:1f8c:3f57:ff9a/128
On-link
13 281 fe80::bd46:c8f1:b273:a71e/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\nvLsp.dll [163840] (NVIDIA)
Catalog9 02 C:\Windows\system32\nvLsp.dll [163840] (NVIDIA)
Catalog9 03 C:\Windows\system32\nvLsp.dll [163840] (NVIDIA)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\nvLsp.dll [163840] (NVIDIA)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/08/2012 07:16:26 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid. hr = 0x80070539.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {52343ca3-84ce-4883-bc94-e4c6a1697b78}

Error: (05/08/2012 07:16:26 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {ac5c3926-c48e-4b1b-aff7-89b9755199d4}

Error: (05/08/2012 07:16:23 PM) (Source: profsvc) (User: UpdatusUser)UpdatusUser
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Access is denied.

Error: (05/08/2012 07:15:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/08/2012 05:11:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/08/2012 05:10:50 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (05/08/2012 03:44:53 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid. hr = 0x80070539.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {adb43d40-2c2c-45e1-b400-e93abcd7dbca}

Error: (05/08/2012 01:53:00 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid. hr = 0x80070539.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {e3e5dd86-95f0-4da9-a81a-2d3b97a51d6b}

Error: (05/08/2012 01:53:00 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {242ca3fe-b385-4eb5-a5c6-967574ad9d82}

Error: (05/08/2012 01:52:59 PM) (Source: profsvc) (User: UpdatusUser)UpdatusUser
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Access is denied.


System errors:
=============
Error: (05/08/2012 07:16:23 PM) (Source: Service Control Manager) (User: )
Description: LoadUserProfile%%5

Error: (05/08/2012 07:15:06 PM) (Source: Service Control Manager) (User: )
Description: i8042prt

Error: (05/08/2012 07:15:06 PM) (Source: Service Control Manager) (User: )
Description: Nero BackItUp Scheduler 4.0%%2

Error: (05/08/2012 05:13:44 PM) (Source: DCOM) (User: )
Description: 1084McNaiAnn{DC7EF8E1-824F-4110-AB43-1604DA9B4F40}

Error: (05/08/2012 05:11:33 PM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068

Error: (05/08/2012 05:11:28 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (05/08/2012 05:11:27 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (05/08/2012 05:11:26 PM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068

Error: (05/08/2012 05:11:07 PM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068

Error: (05/08/2012 05:11:07 PM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212)
Acer Arcade Live Main Page (Version: 1.1.1819 SP1901)
Acer DV Magician (Version: 1.5.1730)
Acer DVDivine (Version: 3.2.1730)
Acer eDataSecurity Management (Version: 3.0.3065)
Acer Empowering Technology (Version: 3.0.3011)
Acer eRecovery Management (Version: 3.0.3014)
Acer HomeMedia (Version: 1.5.0530 SP3001)
Acer HomeMedia Connect (Version: 1.4.5330 SP3001)
Acer HomeMedia Trial Creator (Version: 1.5.0530 SP3001)
Acer Product Registration (Version: 3.0.0.10)
Acer ScreenSaver (Version: 4.01.0718)
Acer SlideShow DVD (Version: 1.5.1730)
Acer VideoMagician (Version: 1.4.2203)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader 9 (Version: 9.0.0)
Albelli Photo books
Alice Greenfingers
Alien Shooter
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Applet_App
Applet_Copy
Applet_Creativity
Applet_Email
Applet_Epp
Applet_File
Applet_OCR
Applet_Web
AV Input Selection (Version: 1.02.0047)
Bejeweled 3 (Version: 1.0.8)
Bejeweled 3 (Version: 3)
BitLord 1.1 (Version: 1.1)
Bonjour (Version: 3.0.0.10)
Bookworm Adventures
C:\Program Files\Acer GameZone\GameConsole (Version: 2.0.1.4)
Chicken Invaders 2
CloneCD
CloneDVD2
ConvertXtoDVD 2.2.3.258 (Version: 2.2.3.258)
Copy Utility
DivX Setup (Version: 2.5.0.11)
Dream Day First Home
DVD Decrypter (Remove Only)
EPSON-Drucker-Software
Epson Easy Photo Print 2 (Version: 2.2.3.0)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (Version: 1.00.0000)
Epson Event Manager (Version: 2.40.0001)
EPSON Photo Print
EPSON Scan
EPSON Smart Panel
EPSON SX525WD Series Manual
EPSON SX525WD Series Network Guide
EPSON SX525WD Series Printer Uninstall
EPSON TWAIN 5 (Version: 5.71.0000)
EpsonNet Print (Version: 2.4i)
EpsonNet Setup 3.3 (Version: 3.3a)
ESET Online Scanner v3
eSobi v2 (Version: 2.0.3.000201)
FLV to AVI MPEG WMV 3GP MP4 iPod Converter 5.0.0526
FSA 2.0 (Version: 2.0)
Galapago
Go-Go Gourmet
Google Desktop (Version: 5.9.1005.12335)
Heroes of Hellas
iCloud (Version: 1.1.0.40)
ImagXpress (Version: 7.0.74.0)
iTunes (Version: 10.6.0.40)
Jasc Paint Shop Pro 8 (Version: 8.10.3000)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 14.0.8089.726)
KaraFun 1.18
LeapFrog Connect (Version: 2.9.1.11093)
LeapFrog My Pals Plugin (Version: 2.8.7.11034)
LightScribe System Software (Version: 1.18.22.2)
Magic Farm
Magic Match Adventures
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
McAfee Online Backup
McAfee Online Backup (Version: 1.16.4.0)
McAfee Security Scan Plus (Version: 2.0.181.2)
McAfee Total Protection (Version: 11.0.669)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 08.05.0818)
Mobile Mouse Server (Version: 2.0.2)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MYP2P EPL MEDIA PLAYER v1.1
Mystery Solitaire - Secret Island
neroxml (Version: 1.0.0)
NETGEAR WG111v2 wireless USB 2.0 adapter (Version: 160136)
NTI Backup Now 5 (Version: 5.1.2.616)
NTI Backup Now Standard (Version: 5.1.2.616)
NTI Media Maker 8 (Version: 8.0.2.6509)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Drivers (Version: 1.9)
NVIDIA ForceWare Network Access Manager (Version: 1.00.6776)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.78.0)
NVIDIA Update Components (Version: 1.3.5)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Photo Viewer 2.3
Photodex Presenter
PlayReady PC runtime (Version: 1)
Prism Video File Converter
ProShow Producer
QuickTime (Version: 7.71.80.42)
Realtek High Definition Audio Driver (Version: 6.0.1.5591)
Safari (Version: 5.34.55.3)
ScanToWeb
SopCast 3.2.4 (Version: 3.2.4)
SUPERAntiSpyware (Version: 5.0.1148)
System Requirements Lab
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Veetle TV (Version: 0.9.18)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live ID Sign-in Assistant (Version: 6.500.3146.0)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR
WinZip 12.1 (Version: 12.1.8497)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 2813.8 MB
Available physical RAM: 1616.11 MB
Total Pagefile: 5854.02 MB
Available Pagefile: 4416.12 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.16 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:142.04 GB) (Free:57.73 GB) NTFS
4 Drive f: (DATA) (Fixed) (Total:142.04 GB) (Free:108.22 GB) NTFS
7 Drive i: () (Fixed) (Total:465.76 GB) (Free:337.45 GB) NTFS

========================= Users: ========================================

User accounts for \\MICHAELS

Administrator Guest michael
UpdatusUser

========================= Minidump Files ==================================

No minidump file found

**** End of log ****





----------------------------------------------------------------------------------------------------------------------------------------



Farbar Service Scanner Version: 30-04-2012 01
Ran by michael (administrator) on 08-05-2012 at 19:23:30
Running from "C:\Users\michael\Desktop"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of WinDefend. The value does not exist.
Checking ImagePath: ATTENTION!=====> Unable to retrieve ImagePath of WinDefend. The value does not exist.
Unable to retrieve ServiceDll of WinDefend. The value does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 10 May 2012 - 08:06 AM

Hi

Hi Again finnished all scans seems to have removed the problem

Thats good :). It seems that Minitoolbox solved that.

Please do the following next:

Step 1


Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.



Step 2

How is your computer running now?





Edited by dev00790, 10 May 2012 - 08:10 AM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 10 May 2012 - 08:12 AM

Note - I have edited the previous post.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#10 Mick_R

Mick_R
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:10 AM

Posted 10 May 2012 - 12:41 PM

Results of screen317's Security Check version 0.99.32
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
ESET Online Scanner v3
McAfee Total Protection
McAfee Security Scan Plus
McAfee Online Backup
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

SUPERAntiSpyware
Java™ 6 Update 31
Adobe Flash Player 11.2.202.235
Adobe Reader 9 Adobe Reader out of date!
Mozilla Firefox (12.0.)
````````````````````````````````
Process Check:
objlist.exe by Laurent

McAfee Online Backup MOBKbackup.exe
``````````End of Log````````````



Computer seems to be running fine now not had any problems since thank you!

#11 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 10 May 2012 - 01:56 PM

Hi

Computer seems to be running fine now not had any problems since thank you!

You're welcome :).

We are not finished yet :) - you have some outdated software that needs to be updated:

Step 1

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.

Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 6 and save it to your desktop.
  • Select your Platform.
  • Under Which should I choose?, check the box for Windows Offline Installation and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) or Java™ in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-6u32-windows-i586.exe (or jre-6u32-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
-- Java is updated frequently. If you want to be automatically notified of future updates, just turn on the Java Automatic Update feature and you will not have to remember to update when Java releases a new version.

Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


Step 2

Adobe Reader is outdated
  • Please download the latest version of Adobe Reader from http://get.adobe.com/uk/reader/ to your Desktop
  • Double click the file to start the installation process
  • When it is installed restart the computer


Step 3

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#12 Mick_R

Mick_R
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:10 AM

Posted 10 May 2012 - 03:22 PM

o.k. done them here's the results log


Results of screen317's Security Check version 0.99.32
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
ESET Online Scanner v3
McAfee Total Protection
McAfee Security Scan Plus
McAfee Online Backup
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

SUPERAntiSpyware
Java™ 7 Update 4
Adobe Flash Player 11.2.202.235
Adobe Reader X (10.1.3)
Mozilla Firefox (12.0.)
````````````````````````````````
Process Check:
objlist.exe by Laurent

McAfee Online Backup MOBKbackup.exe
``````````End of Log````````````

#13 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 10 May 2012 - 06:56 PM

Good stuff, your computer appears to be clean! :thumbup2:

Let's do some clearing up

Please set your system to hide all hidden files.

  • Click Start, open My Computer, select the Tools menu and click Folder Options.
  • Select the View Tab. Under the Hidden files and folders heading,
    • Uncheck Show hidden files and folders.
    • Check: Hide file extensions for known file types.
    • Check: Hide protected operating system files (recommended) option.
  • Click Yes to confirm.

<Other clean up steps>

---------------------------------------------------------------------

Here's some advice on how you can keep your PC clean

Use and update your AntiVirus Software

You must have a good antivirus. There are plenty to choose from but I personally recommend the free options of Avast and Avira Antivir - though if you choose Avira you should make sure that you uncheck the box offering to install the Ask toolbar. If you want to purchase a security program then I recommend any of the following: AVG, Norton, McAfee, Kaspersky and ESET Nod32.

It is imperative that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out. If you use a commercial antivirus program you must make sure you keep renewing your subscription. Otherwise, once your subscription runs out, you may not be able to update the programs virus definitions.


Make sure your applications have all of their updates

Use this next program to check for updates for programs already on your system. Download Security Check by screen317 from here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A notepad document should open automatically, make sure that updates on any that are flagged are carried out as soon as possible

It is also possible for other programs on your computer to have security vulnerabilities that can allow malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities. You can check these by visiting Secunia Software Inspector, Calendar of Updates., and FileHippo Update checker


Install an AntiSpyware Program

A highly recommended AntiSpyware program is SuperAntiSpyware. You can download the free Home Version. or the Pro version for a 15 day trial period.

Installing this or another recommended program will provide spyware & hijacker protection on your computer alongside your virus protection. You should scan your computer with an AntiSpyware program on a regular basis just as you would an antivirus software.

That's it, happy surfing!

Cheers,

Edited by dev00790, 11 May 2012 - 12:55 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#14 Mick_R

Mick_R
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:10 AM

Posted 11 May 2012 - 12:41 PM

Thank you! for all you help

#15 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:10 PM

Posted 11 May 2012 - 12:55 PM

You're welcome :)

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users