Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Google Redirect & TDSS Scan did not fix the problem


  • This topic is locked This topic is locked
18 replies to this topic

#1 Slainte2008

Slainte2008

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 27 May 2012 - 11:37 PM

Infected with Google Redirect. Ran TDSS; no threats found unless I change parameters to include Verify File Digital Signatures & Detect TDLFS file system. Then, 2 threats found: Unsigned File:ENTECH and Unsigned File USBAAPL. Unable to cure these two threats & quarantene does not do anything.

Ran full Malware Scan, did not find anything either.

Here is my DDS log. Let me know if youwant my Attach.txt log.

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by JOSH MAHONEY at 21:25:31 on 2012-05-27
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2047.912 [GMT -7:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
C:\Program Files\McAfee Online Backup\MOBKbackup.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\Program Files\Ideazon\ZEngine\Zboard.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\McAfee Online Backup\MOBKbackup.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientSystemTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.msnbc.com/
uSearch Bar = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No File
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20120524230907.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.5612.1312\swg.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
EB: {0483894e-2422-45e0-8384-021aff1af3cd} - iOpus iMacros
uRun: [Sidebar] "c:\program files\windows sidebar\sidebar.exe" /autoRun
uRun: [RunSpySweeperScheduleAtStartup] "c:\windows\system32\msfeedssync.exe" /ScheduleSweep=User_Feed_Synchronization-{BD5EE5DC-3C01-4D97-B357-2133980CEE56}
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Desktop Software] "c:\program files\common files\supportsoft\bin\bcont.exe" /ini "c:\program files\comcastui\desktop software\uinstaller.ini" /fromrun /starthidden
uRun: [Google Update] "c:\users\josh mahoney\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [googletalk] c:\users\josh mahoney\appdata\roaming\google\google talk\googletalk.exe /autostart
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [DW6] "c:\program files\the weather channel fw\desktop\DesktopWeather.exe"
uRun: [Ideazon,_Inc] rundll32.exe "c:\users\josh mahoney\appdata\local\kodakgallery\ideazon,_inc\rejur.dll",DllRegisterServer
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
mRun: [Windows Defender] "c:\program files\windows defender\MSASCui.exe" -hide
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [ddoctorv2] "c:\program files\comcast\desktop doctor\bin\sprtcmd.exe" /P ddoctorv2
mRun: [<NO NAME>]
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [Zboard] c:\program files\ideazon\zengine\Zboard.exe
mRun: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
mRun: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\users\joshma~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\josh mahoney\appdata\roaming\dropbox\bin\Dropbox.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\amazon~1.lnk - c:\program files\amazon\amazon unbox video\ADVWindowsClientSystemTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\setpoint\SetPoint.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {0483894E-2422-45E0-8384-021AFF1AF3CD} - {0483894E-2422-45E0-8384-021AFF1AF3CD}
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
Trusted Zone: teachtci.com\dev.qa
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{B8B76571-9500-4EF2-B961-9081CACD161B} : DhcpNameServer = 75.75.75.75 75.75.76.76
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\McSnIePl.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Hosts: 127.0.0.1 www.spywareinfo.com
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-1-5 464304]
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\drivers\mfenlfk.sys [2010-5-24 64912]
R1 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-5-24 169608]
R1 MOBKFilter;MOBKFilter;c:\windows\system32\drivers\MOBK.sys [2010-5-24 54776]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-6-23 21504]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2010-5-24 214904]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2010-5-24 214904]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2010-5-24 214904]
R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2010-5-24 214904]
R2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2010-5-24 166288]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2010-5-24 161632]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\common files\mcafee\systemcore\mfevtps.exe [2010-5-24 151880]
R2 MOBKbackup;McAfee Online Backup;c:\program files\mcafee online backup\MOBKbackup.exe [2010-2-5 229688]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2011-1-7 378984]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-5-24 57600]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-5-24 180848]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2010-5-24 59456]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-5-24 340920]
R3 netr73;Linksys Compact Wireless-G USB Adapter Driver for Vista;c:\windows\system32\drivers\WUSB54GCx86.sys [2012-5-23 256000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-5-3 158856]
S3 Alpham;Ideazon Merc Composite Keyboard Driver;c:\windows\system32\drivers\Alpham.sys [2005-12-4 34944]
S3 BrlAPI;BrlAPI;c:\cygwin\bin\cygrunsrv.exe --> c:\cygwin\bin\cygrunsrv.exe [?]
S3 hcw72ADFilter;WinTV HVR-950 USB Audio Filter Driver;c:\windows\system32\drivers\hcw72ADFilter.sys [2010-1-11 28928]
S3 hcw72ATV;WinTV HVR-950 NTSC;c:\windows\system32\drivers\hcw72ATV.sys [2010-1-11 1217920]
S3 hcw72DTV;WinTV HVR-950 ATSC/QAM;c:\windows\system32\drivers\hcw72DTV.sys [2010-1-11 1220224]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-5-24 87656]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-05-28 01:55:36 -------- d-----w- C:\TDSSKiller_Quarantine
2012-05-26 02:07:32 -------- d-----r- c:\program files\Skype
2012-05-25 14:26:42 -------- d-----w- c:\users\josh mahoney\appdata\local\SWTOR
2012-05-25 03:49:57 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-05-25 03:17:43 5120 ----a-w- c:\windows\system32\wmi.dll
2012-05-25 03:17:43 172032 ----a-w- c:\windows\system32\wintrust.dll
2012-05-25 03:17:43 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-05-25 03:17:43 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-05-25 03:01:13 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-25 03:00:28 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-05-25 03:00:26 189952 ----a-w- c:\windows\system32\winmm.dll
2012-05-25 03:00:25 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-05-25 03:00:03 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-05-25 03:00:03 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-05-25 03:00:03 1069056 ----a-w- c:\windows\system32\DWrite.dll
2012-05-25 03:00:02 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-05-25 03:00:02 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-05-25 02:58:09 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-05-25 02:58:01 66560 ----a-w- c:\windows\system32\packager.dll
2012-05-25 02:54:00 -------- d-----w- c:\program files\common files\BioWare
2012-05-25 02:46:55 3550080 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-25 02:46:55 2044928 ----a-w- c:\windows\system32\win32k.sys
2012-05-25 02:46:54 3602816 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-25 02:46:21 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-05-25 02:46:20 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-05-23 23:51:58 256000 ----a-w- c:\windows\system32\drivers\WUSB54GCx86.sys
.
==================== Find3M ====================
.
2012-05-25 03:49:57 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-04 22:56:40 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-30 12:39:11 905600 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
============= FINISH: 21:26:06.18 ===============

BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:23 PM

Posted 28 May 2012 - 01:06 AM

Hello and Welcome to Bleeping Computer!!

My name is Gringo and I'll be glad to help you with your computer problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

Security Check

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.



Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 28 May 2012 - 11:37 AM

I was unable to disable my McAfee Total Protection software prior to running the ComboFix, so I removed it entirely,then ran ComboFix. My log is below. Using Google search seems to be working now. Thanks for the help! Now to reload my virus protection...

ComboFix 12-05-28.02 - JOSH MAHONEY 05/28/2012 9:16.1.2 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2047.1300 [GMT -7:00]
Running from: c:\users\JOSH MAHONEY\Desktop\ComboFix.exe
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\users\JOSH MAHONEY\AppData\Local\{6395B5E5-1364-464F-ABA8-75B44AFDCC14}
c:\users\JOSH MAHONEY\AppData\Local\{6395B5E5-1364-464F-ABA8-75B44AFDCC14}\chrome.manifest
c:\users\JOSH MAHONEY\AppData\Local\{6395B5E5-1364-464F-ABA8-75B44AFDCC14}\chrome\content\overlay.xul
c:\users\JOSH MAHONEY\AppData\Local\{6395B5E5-1364-464F-ABA8-75B44AFDCC14}\install.rdf
c:\users\JOSH MAHONEY\AppData\Local\KodakGallery\Ideazon,_Inc\rejur.dll
c:\users\JOSH MAHONEY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AntiVirus System 2011
c:\users\JOSH MAHONEY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AntiVirus System 2011\Help AntiVirus System 2011.lnk
c:\users\JOSH MAHONEY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AntiVirus System 2011\How to Activate AntiVirus System 2011.lnk
c:\users\JOSH MAHONEY\AppData\Roaming\RapidGet
c:\users\JOSH MAHONEY\AppData\Roaming\RapidGet\DLQueue.dat
c:\users\JOSH MAHONEY\AppData\Roaming\RapidGet\settings.ini
.
.
((((((((((((((((((((((((( Files Created from 2012-04-28 to 2012-05-28 )))))))))))))))))))))))))))))))
.
.
2012-05-28 16:23 . 2012-05-28 16:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-28 15:29 . 2012-05-28 15:29 -------- d-----w- C:\Whale's Vagina
2012-05-28 15:28 . 2012-05-28 15:28 -------- d-----w- C:\CDS PIcs
2012-05-28 01:55 . 2012-05-28 01:55 -------- d-----w- C:\TDSSKiller_Quarantine
2012-05-28 01:51 . 2012-05-28 01:51 -------- d-----w- c:\program files\7-zip
2012-05-26 02:08 . 2012-05-28 16:12 -------- d-----w- c:\users\JOSH MAHONEY\AppData\Roaming\Skype
2012-05-26 02:07 . 2012-05-26 02:07 -------- d-----w- c:\program files\Common Files\Skype
2012-05-26 02:07 . 2012-05-26 02:07 -------- d-----r- c:\program files\Skype
2012-05-26 02:07 . 2012-05-26 02:07 -------- d-----w- c:\programdata\Skype
2012-05-25 14:26 . 2012-05-25 14:26 -------- d-----w- c:\users\JOSH MAHONEY\AppData\Local\SWTOR
2012-05-25 03:49 . 2012-05-25 03:49 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-05-25 03:17 . 2012-02-29 15:11 5120 ----a-w- c:\windows\system32\wmi.dll
2012-05-25 03:17 . 2012-02-29 15:11 172032 ----a-w- c:\windows\system32\wintrust.dll
2012-05-25 03:17 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-05-25 03:17 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-05-25 03:01 . 2012-03-20 23:28 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-25 03:00 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-05-25 03:00 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-05-25 03:00 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-05-25 03:00 . 2012-03-01 14:46 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-05-25 03:00 . 2012-02-29 14:08 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-05-25 03:00 . 2012-02-29 13:41 1069056 ----a-w- c:\windows\system32\DWrite.dll
2012-05-25 03:00 . 2012-03-01 14:46 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-05-25 03:00 . 2012-02-29 13:44 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-05-25 02:58 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-05-25 02:58 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-05-25 02:54 . 2012-05-25 02:54 -------- d-----w- c:\program files\Common Files\BioWare
2012-05-25 02:54 . 2012-05-25 02:54 -------- d-----w- c:\program files\Electronic Arts
2012-05-25 02:46 . 2012-04-03 08:16 3550080 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-25 02:46 . 2012-04-02 13:36 2044928 ----a-w- c:\windows\system32\win32k.sys
2012-05-25 02:46 . 2012-04-03 08:16 3602816 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-25 02:46 . 2012-01-09 15:54 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-05-25 02:46 . 2012-01-09 13:58 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-05-23 23:51 . 2007-03-11 19:12 256000 ----a-w- c:\windows\system32\drivers\WUSB54GCx86.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-25 03:49 . 2011-06-09 01:04 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-04 22:56 . 2011-05-04 02:24 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"RunSpySweeperScheduleAtStartup"="c:\windows\system32\msfeedssync.exe" [2012-05-25 10752]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-11-06 68856]
"Desktop Software"="c:\program files\Common Files\SupportSoft\bin\bcont.exe" [2009-04-24 1025320]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-05-03 17355912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-08-10 421888]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-09-08 47904]
"ddoctorv2"="c:\program files\Comcast\Desktop Doctor\bin\sprtcmd.exe" [2008-04-24 202560]
"Zboard"="c:\program files\Ideazon\ZEngine\Zboard.exe" [2009-06-05 57344]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 76304]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 76304]
"TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2011-09-14 273528]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
c:\users\JOSH MAHONEY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-2-14 24246216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-7-4 805392]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKLM\~\startupfolder\C:^Users^JOSH MAHONEY^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk]
path=c:\users\JOSH MAHONEY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
backup=c:\windows\pss\OpenOffice.org 3.2.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-12 03:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2010-09-08 23:31 47904 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrStsWnd]
2008-01-08 13:28 864256 ------w- c:\program files\Brownie\BrStsWnd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2006-12-06 05:55 54832 ----a-w- c:\program files\CyberLink\PowerDVD\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-08-10 11:15 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2006-11-23 22:10 56928 ------w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2007-11-06 22:26 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
R2 0280371338221027mcinstcleanup;McAfee Application Installer Cleanup (0280371338221027);c:\users\JOSHMA~1\AppData\Local\Temp\028037~1.EXE [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2012-05-27 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-11-06 13:25]
.
2012-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1949449671-3625677529-1182809245-1000Core.job
- c:\users\JOSH MAHONEY\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-03 00:17]
.
2012-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1949449671-3625677529-1182809245-1000UA.job
- c:\users\JOSH MAHONEY\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-03 00:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.msnbc.com/
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
Trusted Zone: teachtci.com\dev.qa
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-googletalk - c:\users\JOSH MAHONEY\AppData\Roaming\Google\Google Talk\googletalk.exe
HKCU-Run-DW6 - c:\program files\The Weather Channel FW\Desktop\DesktopWeather.exe
MSConfigStartUp-CarboniteSetupLite - c:\program files\Carbonite\CarbonitePreinstaller.exe
MSConfigStartUp-iTunesHelper - c:\program files\iTunes\iTunesHelper.exe
MSConfigStartUp-mcui_exe - c:\program files\McAfee.com\Agent\mcagent.exe
AddRemove-RealPlayer 12.0 - c:\program files\real\realplayer\Update\r1puninst.exe
.
.
.
**************************************************************************
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files:
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1949449671-3625677529-1182809245-1000_Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):f4,78,6b,bb,0e,d7,65,9a,63,04,50,fd,e5,87,63,2c,71,e3,0e,72,9d,
10,7f,e6,41,f4,25,66,48,7e,15,61,74,e5,0e,30,fb,e5,31,ce,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1949449671-3625677529-1182809245-1000_Classes\CLSID\{d62339aa-89c6-44b4-ae60-4b1a6ff36de0}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000075
"Therad"=dword:00000010
.
Completion time: 2012-05-28 09:25:30
ComboFix-quarantined-files.txt 2012-05-28 16:25
.
Pre-Run: 85,996,498,944 bytes free
Post-Run: 86,127,017,984 bytes free
.
- - End Of File - - 85FED93F5C335F2ACE67141350770F19

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:23 PM

Posted 28 May 2012 - 11:45 AM

Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 28 May 2012 - 01:55 PM

I was unable to post both logs in one email,it said it was too long,so I will split it up over 2-3 posts.
TDSS Log:

Part 1

11:12:19.0270 5072 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
11:12:19.0739 5072 ============================================================
11:12:19.0739 5072 Current date / time: 2012/05/28 11:12:19.0739
11:12:19.0739 5072 SystemInfo:
11:12:19.0739 5072
11:12:19.0739 5072 OS Version: 6.0.6002 ServicePack: 2.0
11:12:19.0739 5072 Product type: Workstation
11:12:19.0739 5072 ComputerName: JOSHMAHONEY-PC
11:12:19.0739 5072 UserName: JOSH MAHONEY
11:12:19.0739 5072 Windows directory: C:\Windows
11:12:19.0739 5072 System windows directory: C:\Windows
11:12:19.0739 5072 Processor architecture: Intel x86
11:12:19.0739 5072 Number of processors: 2
11:12:19.0739 5072 Page size: 0x1000
11:12:19.0739 5072 Boot type: Normal boot
11:12:19.0739 5072 ============================================================
11:12:20.0614 5072 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:12:20.0614 5072 ============================================================
11:12:20.0614 5072 \Device\Harddisk0\DR0:
11:12:20.0614 5072 MBR partitions:
11:12:20.0614 5072 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
11:12:20.0614 5072 ============================================================
11:12:20.0645 5072 C: <-> \Device\Harddisk0\DR0\Partition0
11:12:20.0645 5072 ============================================================
11:12:20.0645 5072 Initialize success
11:12:20.0645 5072 ============================================================
11:12:23.0989 5116 ============================================================
11:12:23.0989 5116 Scan started
11:12:23.0989 5116 Mode: Manual;
11:12:23.0989 5116 ============================================================
11:12:25.0676 5116 0280371338221027mcinstcleanup - ok
11:12:26.0004 5116 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
11:12:26.0020 5116 ACPI - ok
11:12:26.0067 5116 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
11:12:26.0067 5116 adp94xx - ok
11:12:26.0098 5116 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
11:12:26.0098 5116 adpahci - ok
11:12:26.0114 5116 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
11:12:26.0114 5116 adpu160m - ok
11:12:26.0145 5116 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
11:12:26.0145 5116 adpu320 - ok
11:12:26.0192 5116 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
11:12:26.0192 5116 AeLookupSvc - ok
11:12:26.0239 5116 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
11:12:26.0270 5116 AFD - ok
11:12:26.0317 5116 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
11:12:26.0317 5116 agp440 - ok
11:12:26.0348 5116 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
11:12:26.0348 5116 aic78xx - ok
11:12:26.0567 5116 ALCXWDM (7997b6f02cbda0e31fa18cc85871b938) C:\Windows\system32\drivers\RTKVAC.SYS
11:12:26.0598 5116 ALCXWDM - ok
11:12:26.0692 5116 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
11:12:26.0692 5116 ALG - ok
11:12:26.0707 5116 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
11:12:26.0707 5116 aliide - ok
11:12:26.0754 5116 Alpham (7a4aedb2d0c25ab8b95683c2944891c6) C:\Windows\system32\DRIVERS\Alpham.sys
11:12:26.0754 5116 Alpham - ok
11:12:26.0785 5116 Alpham1 (acd2f2df292b6cc28f58095bba63a068) C:\Windows\system32\DRIVERS\Alpham1.sys
11:12:26.0785 5116 Alpham1 - ok
11:12:26.0801 5116 Alpham2 (f4fafb2e74b83a156408b1b02302799e) C:\Windows\system32\DRIVERS\Alpham2.sys
11:12:26.0801 5116 Alpham2 - ok
11:12:26.0817 5116 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
11:12:26.0817 5116 amdagp - ok
11:12:26.0848 5116 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
11:12:26.0848 5116 amdide - ok
11:12:26.0864 5116 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
11:12:26.0864 5116 AmdK7 - ok
11:12:26.0895 5116 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
11:12:26.0895 5116 AmdK8 - ok
11:12:26.0942 5116 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
11:12:26.0942 5116 Appinfo - ok
11:12:26.0989 5116 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
11:12:27.0004 5116 arc - ok
11:12:27.0035 5116 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
11:12:27.0035 5116 arcsas - ok
11:12:27.0067 5116 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
11:12:27.0067 5116 AsyncMac - ok
11:12:27.0098 5116 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
11:12:27.0098 5116 atapi - ok
11:12:27.0145 5116 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:12:27.0160 5116 AudioEndpointBuilder - ok
11:12:27.0160 5116 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:12:27.0160 5116 Audiosrv - ok
11:12:27.0192 5116 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
11:12:27.0192 5116 Beep - ok
11:12:27.0239 5116 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
11:12:27.0239 5116 BFE - ok
11:12:27.0364 5116 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
11:12:27.0410 5116 BITS - ok
11:12:27.0410 5116 blbdrive - ok
11:12:27.0442 5116 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
11:12:27.0457 5116 bowser - ok
11:12:27.0489 5116 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
11:12:27.0489 5116 BrFiltLo - ok
11:12:27.0504 5116 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
11:12:27.0504 5116 BrFiltUp - ok
11:12:27.0520 5116 BrlAPI - ok
11:12:27.0551 5116 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
11:12:27.0551 5116 Browser - ok
11:12:27.0567 5116 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
11:12:27.0567 5116 Brserid - ok
11:12:27.0582 5116 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
11:12:27.0598 5116 BrSerWdm - ok
11:12:27.0660 5116 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
11:12:27.0676 5116 BrUsbMdm - ok
11:12:27.0707 5116 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
11:12:27.0707 5116 BrUsbSer - ok
11:12:27.0723 5116 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
11:12:27.0723 5116 BTHMODEM - ok
11:12:27.0817 5116 catchme - ok
11:12:27.0848 5116 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
11:12:27.0848 5116 cdfs - ok
11:12:27.0864 5116 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
11:12:27.0879 5116 cdrom - ok
11:12:27.0926 5116 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:12:27.0926 5116 CertPropSvc - ok
11:12:27.0942 5116 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
11:12:27.0942 5116 circlass - ok
11:12:27.0973 5116 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
11:12:28.0020 5116 CLFS - ok
11:12:28.0082 5116 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:12:28.0082 5116 clr_optimization_v2.0.50727_32 - ok
11:12:28.0145 5116 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:12:28.0145 5116 clr_optimization_v4.0.30319_32 - ok
11:12:28.0160 5116 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
11:12:28.0160 5116 cmdide - ok
11:12:28.0176 5116 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
11:12:28.0176 5116 Compbatt - ok
11:12:28.0192 5116 COMSysApp - ok
11:12:28.0207 5116 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
11:12:28.0207 5116 crcdisk - ok
11:12:28.0223 5116 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
11:12:28.0223 5116 Crusoe - ok
11:12:28.0254 5116 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
11:12:28.0254 5116 CryptSvc - ok
11:12:28.0301 5116 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:12:28.0317 5116 DcomLaunch - ok
11:12:28.0332 5116 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
11:12:28.0332 5116 DfsC - ok
11:12:28.0457 5116 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
11:12:28.0520 5116 DFSR - ok
11:12:28.0645 5116 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
11:12:28.0645 5116 Dhcp - ok
11:12:28.0692 5116 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
11:12:28.0692 5116 disk - ok
11:12:28.0723 5116 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
11:12:28.0723 5116 Dnscache - ok
11:12:28.0754 5116 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
11:12:28.0754 5116 dot3svc - ok
11:12:28.0785 5116 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
11:12:28.0801 5116 DPS - ok
11:12:28.0848 5116 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
11:12:28.0848 5116 drmkaud - ok
11:12:28.0895 5116 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
11:12:28.0910 5116 DXGKrnl - ok
11:12:28.0957 5116 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
11:12:28.0957 5116 E1G60 - ok
11:12:28.0989 5116 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
11:12:28.0989 5116 EapHost - ok
11:12:29.0020 5116 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
11:12:29.0020 5116 Ecache - ok
11:12:29.0067 5116 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
11:12:29.0067 5116 elxstor - ok
11:12:29.0114 5116 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
11:12:29.0114 5116 EMDMgmt - ok
11:12:29.0192 5116 ENTECH (fd9fc82f134b1c91004ffc76a5ae494b) C:\Windows\system32\DRIVERS\ENTECH.sys
11:12:29.0192 5116 ENTECH - ok
11:12:29.0254 5116 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
11:12:29.0254 5116 EventSystem - ok
11:12:29.0301 5116 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
11:12:29.0301 5116 exfat - ok
11:12:29.0332 5116 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
11:12:29.0348 5116 fastfat - ok
11:12:29.0379 5116 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
11:12:29.0379 5116 fdc - ok
11:12:29.0410 5116 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
11:12:29.0410 5116 fdPHost - ok
11:12:29.0426 5116 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
11:12:29.0426 5116 FDResPub - ok
11:12:29.0457 5116 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
11:12:29.0457 5116 FileInfo - ok
11:12:29.0489 5116 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
11:12:29.0489 5116 Filetrace - ok
11:12:29.0489 5116 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
11:12:29.0489 5116 flpydisk - ok
11:12:29.0551 5116 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
11:12:29.0551 5116 FltMgr - ok
11:12:29.0629 5116 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
11:12:29.0660 5116 FontCache - ok
11:12:29.0754 5116 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:12:29.0754 5116 FontCache3.0.0.0 - ok
11:12:29.0785 5116 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
11:12:29.0785 5116 Fs_Rec - ok
11:12:29.0801 5116 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
11:12:29.0801 5116 gagp30kx - ok
11:12:29.0848 5116 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\Windows\system32\Drivers\GEARAspiWDM.sys
11:12:29.0848 5116 GEARAspiWDM - ok
11:12:29.0879 5116 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
11:12:29.0910 5116 gpsvc - ok
11:12:29.0973 5116 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:12:29.0973 5116 gusvc - ok
11:12:30.0035 5116 hcw72ADFilter (da1f19058c5420959cc59888f4e608eb) C:\Windows\system32\DRIVERS\hcw72ADFilter.sys
11:12:30.0035 5116 hcw72ADFilter - ok
11:12:30.0114 5116 hcw72ATV (6ca0bd5e8a841145fec608565c3a1c80) C:\Windows\system32\DRIVERS\hcw72ATV.sys
11:12:30.0129 5116 hcw72ATV - ok
11:12:30.0223 5116 hcw72DTV (2c1571c8a0bc1101081631dbf4efcf1e) C:\Windows\system32\DRIVERS\hcw72DTV.sys
11:12:30.0223 5116 hcw72DTV - ok
11:12:30.0239 5116 HDAudBus (5fd053f305b77ebe97f284b20d89dc1c) C:\Windows\system32\drivers\hdaudbus.sys
11:12:30.0239 5116 HDAudBus - ok
11:12:30.0254 5116 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
11:12:30.0254 5116 HidBth - ok
11:12:30.0270 5116 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
11:12:30.0270 5116 HidIr - ok
11:12:30.0301 5116 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
11:12:30.0301 5116 hidserv - ok
11:12:30.0317 5116 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
11:12:30.0317 5116 HidUsb - ok
11:12:30.0348 5116 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
11:12:30.0348 5116 hkmsvc - ok
11:12:30.0364 5116 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
11:12:30.0364 5116 HpCISSs - ok
11:12:30.0410 5116 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
11:12:30.0426 5116 HTTP - ok
11:12:30.0442 5116 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
11:12:30.0442 5116 i2omp - ok
11:12:30.0489 5116 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
11:12:30.0489 5116 i8042prt - ok
11:12:30.0551 5116 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
11:12:30.0551 5116 iaStorV - ok
11:12:30.0660 5116 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:12:30.0676 5116 idsvc - ok
11:12:30.0707 5116 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
11:12:30.0707 5116 iirsp - ok
11:12:30.0754 5116 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
11:12:30.0770 5116 IKEEXT - ok
11:12:30.0801 5116 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
11:12:30.0801 5116 intelide - ok
11:12:30.0817 5116 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
11:12:30.0817 5116 intelppm - ok
11:12:30.0848 5116 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
11:12:30.0848 5116 IPBusEnum - ok
11:12:30.0879 5116 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:12:30.0879 5116 IpFilterDriver - ok
11:12:30.0910 5116 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
11:12:30.0910 5116 iphlpsvc - ok
11:12:30.0910 5116 IpInIp - ok
11:12:30.0942 5116 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
11:12:30.0942 5116 IPMIDRV - ok
11:12:30.0973 5116 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
11:12:30.0973 5116 IPNAT - ok
11:12:31.0004 5116 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
11:12:31.0004 5116 IRENUM - ok
11:12:31.0020 5116 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
11:12:31.0020 5116 isapnp - ok
11:12:31.0067 5116 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
11:12:31.0067 5116 iScsiPrt - ok
11:12:31.0082 5116 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
11:12:31.0098 5116 iteatapi - ok
11:12:31.0098 5116 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
11:12:31.0098 5116 iteraid - ok
11:12:31.0114 5116 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
11:12:31.0129 5116 kbdclass - ok
11:12:31.0145 5116 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
11:12:31.0145 5116 kbdhid - ok
11:12:31.0176 5116 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:12:31.0176 5116 KeyIso - ok
11:12:31.0207 5116 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
11:12:31.0223 5116 KSecDD - ok
11:12:31.0270 5116 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
11:12:31.0285 5116 KtmRm - ok
11:12:31.0317 5116 L8042Kbd (d1968dea7baff4a917858c384339cec8) C:\Windows\system32\DRIVERS\L8042Kbd.sys
11:12:31.0317 5116 L8042Kbd - ok
11:12:31.0364 5116 L8042mou (d6fc755ff505d99e6cc73e83492310df) C:\Windows\system32\DRIVERS\L8042mou.Sys
11:12:31.0364 5116 L8042mou - ok
11:12:31.0395 5116 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
11:12:31.0395 5116 LanmanServer - ok
11:12:31.0442 5116 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
11:12:31.0457 5116 LanmanWorkstation - ok
11:12:31.0520 5116 LBTServ (a0f7dc0080e4f97dc97de08b699e231b) C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
11:12:31.0520 5116 LBTServ - ok
11:12:31.0567 5116 LHidFilt (c91206ca84684057118265e8377c77b6) C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:12:31.0567 5116 LHidFilt - ok
11:12:31.0598 5116 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
11:12:31.0598 5116 lltdio - ok
11:12:31.0629 5116 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
11:12:31.0645 5116 lltdsvc - ok
11:12:31.0676 5116 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
11:12:31.0676 5116 lmhosts - ok
11:12:31.0707 5116 LMouFilt (9f03720fa5e6d14cd4dfea610f2c1a7c) C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:12:31.0707 5116 LMouFilt - ok
11:12:31.0723 5116 LMouKE (c149bdad13194df16ea33f9f601ed7bf) C:\Windows\system32\DRIVERS\LMouKE.Sys
11:12:31.0723 5116 LMouKE - ok
11:12:31.0770 5116 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
11:12:31.0770 5116 LSI_FC - ok
11:12:31.0785 5116 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
11:12:31.0785 5116 LSI_SAS - ok
11:12:31.0801 5116 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
11:12:31.0801 5116 LSI_SCSI - ok
11:12:31.0832 5116 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
11:12:31.0832 5116 luafv - ok
11:12:31.0848 5116 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
11:12:31.0848 5116 megasas - ok
11:12:31.0864 5116 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:12:31.0864 5116 MMCSS - ok
11:12:31.0879 5116 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
11:12:31.0895 5116 Modem - ok
11:12:31.0910 5116 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
11:12:31.0910 5116 monitor - ok
11:12:31.0942 5116 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
11:12:31.0942 5116 mouclass - ok
11:12:31.0942 5116 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
11:12:31.0942 5116 mouhid - ok
11:12:31.0973 5116 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
11:12:31.0973 5116 MountMgr - ok
11:12:31.0989 5116 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
11:12:31.0989 5116 mpio - ok
11:12:32.0020 5116 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
11:12:32.0020 5116 mpsdrv - ok
11:12:32.0051 5116 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
11:12:32.0114 5116 MpsSvc - ok
11:12:32.0129 5116 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
11:12:32.0129 5116 Mraid35x - ok
11:12:32.0145 5116 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
11:12:32.0160 5116 MRxDAV - ok
11:12:32.0176 5116 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:12:32.0176 5116 mrxsmb - ok
11:12:32.0192 5116 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:12:32.0223 5116 mrxsmb10 - ok
11:12:32.0239 5116 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:12:32.0239 5116 mrxsmb20 - ok
11:12:32.0254 5116 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
11:12:32.0254 5116 msahci - ok
11:12:32.0270 5116 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
11:12:32.0270 5116 msdsm - ok
11:12:32.0301 5116 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
11:12:32.0301 5116 MSDTC - ok
11:12:32.0348 5116 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
11:12:32.0348 5116 Msfs - ok
11:12:32.0379 5116 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
11:12:32.0379 5116 msisadrv - ok
11:12:32.0395 5116 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
11:12:32.0410 5116 MSiSCSI - ok
11:12:32.0410 5116 msiserver - ok
11:12:32.0442 5116 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
11:12:32.0442 5116 MSKSSRV - ok
11:12:32.0457 5116 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
11:12:32.0457 5116 MSPCLOCK - ok
11:12:32.0473 5116 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
11:12:32.0473 5116 MSPQM - ok
11:12:32.0504 5116 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
11:12:32.0551 5116 MsRPC - ok
11:12:32.0598 5116 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
11:12:32.0598 5116 mssmbios - ok
11:12:32.0614 5116 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
11:12:32.0614 5116 MSTEE - ok
11:12:32.0629 5116 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
11:12:32.0629 5116 Mup - ok
11:12:32.0660 5116 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
11:12:32.0692 5116 napagent - ok
11:12:32.0739 5116 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
11:12:32.0739 5116 NativeWifiP - ok
11:12:32.0785 5116 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
11:12:32.0785 5116 NDIS - ok
11:12:32.0817 5116 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
11:12:32.0817 5116 NdisTapi - ok
11:12:32.0848 5116 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
11:12:32.0848 5116 Ndisuio - ok
11:12:32.0879 5116 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
11:12:32.0879 5116 NdisWan - ok
11:12:32.0910 5116 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
11:12:32.0910 5116 NDProxy - ok
11:12:32.0942 5116 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
11:12:32.0942 5116 NetBIOS - ok
11:12:32.0973 5116 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
11:12:32.0973 5116 netbt - ok
11:12:33.0004 5116 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:12:33.0004 5116 Netlogon - ok
11:12:33.0035 5116 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
11:12:33.0082 5116 Netman - ok
11:12:33.0114 5116 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
11:12:33.0114 5116 netprofm - ok
11:12:33.0192 5116 netr73 (757f999aa72b55780ee810d4cd1bdd47) C:\Windows\system32\DRIVERS\WUSB54GCx86.sys
11:12:33.0192 5116 netr73 - ok
11:12:33.0254 5116 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:12:33.0254 5116 NetTcpPortSharing - ok
11:12:33.0285 5116 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
11:12:33.0285 5116 nfrd960 - ok
11:12:33.0317 5116 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
11:12:33.0332 5116 NlaSvc - ok
11:12:33.0364 5116 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
11:12:33.0364 5116 Npfs - ok
11:12:33.0379 5116 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
11:12:33.0379 5116 nsi - ok
11:12:33.0395 5116 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
11:12:33.0395 5116 nsiproxy - ok
11:12:33.0457 5116 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
11:12:33.0489 5116 Ntfs - ok
11:12:33.0504 5116 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
11:12:33.0504 5116 ntrigdigi - ok
11:12:33.0520 5116 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
11:12:33.0520 5116 Null - ok
11:12:33.0598 5116 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
11:12:33.0614 5116 NVENETFD - ok
11:12:34.0129 5116 nvlddmkm (73a70f1d89c942eedd99a3f10459b051) C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:12:34.0192 5116 nvlddmkm - ok
11:12:34.0301 5116 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
11:12:34.0301 5116 nvraid - ok
11:12:34.0301 5116 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
11:12:34.0301 5116 nvstor - ok
11:12:34.0364 5116 nvsvc (538a52e480c816d1990579a8faaffa20) C:\Windows\system32\nvvsvc.exe
11:12:34.0364 5116 nvsvc - ok
11:12:34.0379 5116 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
11:12:34.0379 5116 nv_agp - ok
11:12:34.0395 5116 NwlnkFlt - ok
11:12:34.0395 5116 NwlnkFwd - ok
11:12:34.0426 5116 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
11:12:34.0426 5116 ohci1394 - ok
11:12:34.0489 5116 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:12:34.0504 5116 p2pimsvc - ok
11:12:34.0520 5116 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:12:34.0520 5116 p2psvc - ok
11:12:34.0551 5116 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
11:12:34.0551 5116 Parport - ok
11:12:34.0582 5116 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
11:12:34.0598 5116 partmgr - ok
11:12:34.0598 5116 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
11:12:34.0614 5116 Parvdm - ok
11:12:34.0629 5116 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
11:12:34.0629 5116 PcaSvc - ok
11:12:34.0660 5116 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
11:12:34.0660 5116 pci - ok
11:12:34.0676 5116 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
11:12:34.0676 5116 pciide - ok
11:12:34.0707 5116 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
11:12:34.0707 5116 pcmcia - ok
11:12:34.0754 5116 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
11:12:34.0832 5116 PEAUTH - ok
11:12:34.0942 5116 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
11:12:34.0973 5116 pla - ok
11:12:35.0035 5116 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
11:12:35.0067 5116 PlugPlay - ok
11:12:35.0098 5116 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:12:35.0114 5116 PNRPAutoReg - ok
11:12:35.0114 5116 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:12:35.0114 5116 PNRPsvc - ok
11:12:35.0160 5116 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
11:12:35.0160 5116 PolicyAgent - ok
11:12:35.0223 5116 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
11:12:35.0223 5116 PptpMiniport - ok
11:12:35.0239 5116 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
11:12:35.0239 5116 Processor - ok
11:12:35.0270 5116 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
11:12:35.0285 5116 ProfSvc - ok
11:12:35.0301 5116 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:12:35.0301 5116 ProtectedStorage - ok
11:12:35.0332 5116 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
11:12:35.0332 5116 PSched - ok
11:12:35.0395 5116 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
11:12:35.0410 5116 ql2300 - ok
11:12:35.0426 5116 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
11:12:35.0426 5116 ql40xx - ok
11:12:35.0473 5116 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
11:12:35.0473 5116 QWAVE - ok
11:12:35.0504 5116 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
11:12:35.0504 5116 QWAVEdrv - ok
11:12:35.0535 5116 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
11:12:35.0535 5116 RasAcd - ok
11:12:35.0567 5116 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
11:12:35.0567 5116 RasAuto - ok
11:12:35.0598 5116 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:12:35.0598 5116 Rasl2tp - ok
11:12:35.0645 5116 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
11:12:35.0660 5116 RasMan - ok
11:12:35.0676 5116 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
11:12:35.0676 5116 RasPppoe - ok
11:12:35.0707 5116 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
11:12:35.0723 5116 RasSstp - ok
11:12:35.0739 5116 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
11:12:35.0739 5116 rdbss - ok
11:12:35.0785 5116 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:12:35.0785 5116 RDPCDD - ok
11:12:35.0817 5116 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
11:12:35.0817 5116 rdpdr - ok
11:12:35.0832 5116 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
11:12:35.0832 5116 RDPENCDD - ok
11:12:36.0176 5116 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
11:12:36.0192 5116 RDPWD - ok
11:12:36.0223 5116 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
11:12:36.0239 5116 RemoteAccess - ok
11:12:36.0270 5116 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
11:12:36.0270 5116 RemoteRegistry - ok
11:12:36.0364 5116 RichVideo (616f6e52cae254727a886ba8eda1beea) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
11:12:36.0364 5116 RichVideo - ok
11:12:36.0410 5116 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
11:12:36.0410 5116 RpcLocator - ok
11:12:36.0473 5116 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:12:36.0473 5116 RpcSs - ok
11:12:36.0489 5116 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
11:12:36.0504 5116 rspndr - ok
11:12:36.0520 5116 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:12:36.0520 5116 SamSs - ok
11:12:36.0551 5116 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
11:12:36.0551 5116 sbp2port - ok
11:12:36.0582 5116 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
11:12:36.0598 5116 SCardSvr - ok
11:12:36.0645 5116 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
11:12:36.0645 5116 Schedule - ok
11:12:36.0676 5116 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:12:36.0676 5116 SCPolicySvc - ok
11:12:36.0707 5116 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
11:12:36.0707 5116 SDRSVC - ok
11:12:36.0723 5116 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:12:36.0723 5116 secdrv - ok
11:12:36.0754 5116 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
11:12:36.0754 5116 seclogon - ok
11:12:36.0770 5116 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
11:12:36.0770 5116 SENS - ok
11:12:36.0801 5116 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
11:12:36.0801 5116 Serenum - ok
11:12:36.0832 5116 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
11:12:36.0832 5116 Serial - ok
11:12:36.0864 5116 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
11:12:36.0864 5116 sermouse - ok
11:12:36.0895 5116 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
11:12:36.0895 5116 SessionEnv - ok
11:12:36.0910 5116 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
11:12:36.0926 5116 sffdisk - ok
11:12:36.0926 5116 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
11:12:36.0926 5116 sffp_mmc - ok
11:12:36.0942 5116 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
11:12:36.0942 5116 sffp_sd - ok
11:12:36.0957 5116 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
11:12:36.0957 5116 sfloppy - ok
11:12:36.0973 5116 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
11:12:36.0989 5116 SharedAccess - ok
11:12:37.0020 5116 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
11:12:37.0020 5116 ShellHWDetection - ok
11:12:37.0035 5116 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
11:12:37.0035 5116 sisagp - ok
11:12:37.0051 5116 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
11:12:37.0051 5116 SiSRaid2 - ok
11:12:37.0067 5116 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
11:12:37.0067 5116 SiSRaid4 - ok
11:12:37.0129 5116 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files\Skype\Updater\Updater.exe
11:12:37.0129 5116 SkypeUpdate - ok
11:12:37.0301 5116 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
11:12:37.0332 5116 slsvc - ok
11:12:37.0426 5116 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
11:12:37.0426 5116 SLUINotify - ok
11:12:37.0457 5116 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
11:12:37.0473 5116 Smb - ok
11:12:37.0520 5116 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
11:12:37.0520 5116 SNMPTRAP - ok
11:12:37.0551 5116 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
11:12:37.0551 5116 spldr - ok
11:12:37.0567 5116 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
11:12:37.0567 5116 Spooler - ok
11:12:37.0660 5116 sprtsvc_ddoctorv2 (c3716ec0d36ad924b6888d794563e647) C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
11:12:37.0660 5116 sprtsvc_ddoctorv2 - ok
11:12:37.0692 5116 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
11:12:37.0707 5116 srv - ok
11:12:37.0739 5116 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
11:12:37.0739 5116 srv2 - ok
11:12:37.0770 5116 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
11:12:37.0770 5116 srvnet - ok
11:12:37.0801 5116 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
11:12:37.0801 5116 SSDPSRV - ok
11:12:37.0864 5116 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
11:12:37.0879 5116 SstpSvc - ok
11:12:37.0895 5116 Steam Client Service - ok
11:12:37.0973 5116 Stereo Service (8c37c35fb2d9692dda0eddbca58bfe18) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:12:37.0973 5116 Stereo Service - ok
11:12:38.0020 5116 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
11:12:38.0035 5116 stisvc - ok
11:12:38.0082 5116 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
11:12:38.0082 5116 swenum - ok
11:12:38.0114 5116 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
11:12:38.0145 5116 swprv - ok
11:12:38.0176 5116 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
11:12:38.0176 5116 Symc8xx - ok
11:12:38.0192 5116 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
11:12:38.0192 5116 Sym_hi - ok
11:12:38.0207 5116 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
11:12:38.0207 5116 Sym_u3 - ok
11:12:38.0254 5116 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
11:12:38.0317 5116 SysMain - ok
11:12:38.0332 5116 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
11:12:38.0348 5116 TabletInputService - ok
11:12:38.0379 5116 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
11:12:38.0379 5116 TapiSrv - ok
11:12:38.0410 5116 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
11:12:38.0410 5116 TBS - ok
11:12:38.0473 5116 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
11:12:38.0489 5116 Tcpip - ok
11:12:38.0504 5116 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
11:12:38.0504 5116 Tcpip6 - ok
11:12:38.0535 5116 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
11:12:38.0535 5116 tcpipreg - ok
11:12:38.0551 5116 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
11:12:38.0551 5116 TDPIPE - ok
11:12:38.0567 5116 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
11:12:38.0567 5116 TDTCP - ok
11:12:38.0598 5116 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
11:12:38.0598 5116 tdx - ok
11:12:38.0614 5116 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
11:12:38.0614 5116 TermDD - ok
11:12:38.0660 5116 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
11:12:38.0676 5116 TermService - ok
11:12:38.0723 5116 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
11:12:38.0723 5116 Themes - ok
11:12:38.0754 5116 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:12:38.0754 5116 THREADORDER - ok
11:12:38.0785 5116 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
11:12:38.0785 5116 TrkWks - ok
11:12:38.0832 5116 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
11:12:38.0832 5116 TrustedInstaller - ok
11:12:38.0848 5116 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:12:38.0848 5116 tssecsrv - ok
11:12:38.0879 5116 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
11:12:38.0879 5116 tunmp - ok
11:12:38.0926 5116 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
11:12:38.0926 5116 tunnel - ok
11:12:38.0957 5116 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
11:12:38.0957 5116 uagp35 - ok
11:12:38.0989 5116 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
11:12:39.0004 5116 udfs - ok
11:12:39.0035 5116 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
11:12:39.0035 5116 UI0Detect - ok
11:12:39.0051 5116 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
11:12:39.0051 5116 uliagpkx - ok
11:12:39.0082 5116 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
11:12:39.0082 5116 uliahci - ok
11:12:39.0129 5116 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
11:12:39.0129 5116 UlSata - ok
11:12:39.0145 5116 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
11:12:39.0145 5116 ulsata2 - ok
11:12:39.0176 5116 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
11:12:39.0176 5116 umbus - ok
11:12:39.0207 5116 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
11:12:39.0223 5116 upnphost - ok
11:12:39.0270 5116 USBAAPL (e8c1b9ebac65288e1b51e8a987d98af6) C:\Windows\system32\Drivers\usbaapl.sys
11:12:39.0270 5116 USBAAPL - ok
11:12:39.0285 5116 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
11:12:39.0285 5116 usbaudio - ok
11:12:39.0317 5116 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
11:12:39.0317 5116 usbccgp - ok
11:12:39.0348 5116 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
11:12:39.0348 5116 usbcir - ok
11:12:39.0379 5116 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
11:12:39.0379 5116 usbehci - ok
11:12:39.0426 5116 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
11:12:39.0457 5116 usbhub - ok
11:12:39.0489 5116 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
11:12:39.0489 5116 usbohci - ok
11:12:39.0504 5116 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
11:12:39.0520 5116 usbprint - ok
11:12:39.0535 5116 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:12:39.0535 5116 USBSTOR - ok
11:12:39.0551 5116 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
11:12:39.0551 5116 usbuhci - ok
11:12:39.0582 5116 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
11:12:39.0582 5116 UxSms - ok
11:12:39.0614 5116 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
11:12:39.0614 5116 vds - ok
11:12:39.0645 5116 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
11:12:39.0645 5116 vga - ok
11:12:39.0676 5116 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
11:12:39.0676 5116 VgaSave - ok
11:12:39.0692 5116 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
11:12:39.0692 5116 viaagp - ok
11:12:39.0723 5116 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
11:12:39.0723 5116 ViaC7 - ok
11:12:39.0739 5116 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
11:12:39.0739 5116 viaide - ok
11:12:39.0770 5116 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
11:12:39.0770 5116 volmgr - ok
11:12:39.0785 5116 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
11:12:39.0801 5116 volmgrx - ok
11:12:39.0832 5116 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
11:12:39.0848 5116 volsnap - ok
11:12:39.0864 5116 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
11:12:39.0864 5116 vsmraid - ok
11:12:39.0910 5116 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
11:12:39.0926 5116 VSS - ok
11:12:39.0957 5116 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
11:12:39.0973 5116 W32Time - ok
11:12:40.0004 5116 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
11:12:40.0004 5116 WacomPen - ok
11:12:40.0035 5116 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:12:40.0035 5116 Wanarp - ok
11:12:40.0035 5116 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:12:40.0035 5116 Wanarpv6 - ok
11:12:40.0067 5116 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
11:12:40.0114 5116 wcncsvc - ok
11:12:40.0129 5116 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
11:12:40.0145 5116 WcsPlugInService - ok
11:12:40.0160 5116 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
11:12:40.0160 5116 Wd - ok
11:12:40.0207 5116 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
11:12:40.0223 5116 Wdf01000 - ok
11:12:40.0254 5116 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:12:40.0254 5116 WdiServiceHost - ok
11:12:40.0254 5116 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:12:40.0270 5116 WdiSystemHost - ok
11:12:40.0301 5116 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
11:12:40.0301 5116 WebClient - ok
11:12:40.0317 5116 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
11:12:40.0364 5116 Wecsvc - ok
11:12:40.0379 5116 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
11:12:40.0395 5116 wercplsupport - ok
11:12:40.0426 5116 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
11:12:40.0426 5116 WerSvc - ok
11:12:40.0489 5116 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
11:12:40.0520 5116 WinDefend - ok
11:12:40.0520 5116 WinHttpAutoProxySvc - ok
11:12:40.0582 5116 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
11:12:40.0598 5116 Winmgmt - ok
11:12:40.0676 5116 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
11:12:40.0707 5116 WinRM - ok
11:12:40.0754 5116 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
11:12:40.0770 5116 Wlansvc - ok
11:12:40.0817 5116 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
11:12:40.0817 5116 WmiAcpi - ok
11:12:40.0832 5116 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
11:12:40.0832 5116 wmiApSrv - ok
11:12:40.0910 5116 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
11:12:40.0957 5116 WMPNetworkSvc - ok
11:12:40.0989 5116 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
11:12:41.0020 5116 WPCSvc - ok
11:12:41.0051 5116 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
11:12:41.0067 5116 WPDBusEnum - ok
11:12:41.0098 5116 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
11:12:41.0098 5116 WpdUsb - ok
11:12:41.0239 5116 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:12:41.0239 5116 WPFFontCache_v0400 - ok
11:12:41.0254 5116 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
11:12:41.0270 5116 ws2ifsl - ok
11:12:41.0285 5116 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
11:12:41.0285 5116 wscsvc - ok
11:12:41.0285 5116 WSearch - ok
11:12:41.0410 5116 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
11:12:41.0473 5116 wuauserv - ok
11:12:41.0551 5116 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:12:41.0551 5116 WUDFRd - ok
11:12:41.0567 5116 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
11:12:41.0567 5116 wudfsvc - ok
11:12:41.0598 5116 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
11:12:41.0754 5116 \Device\Harddisk0\DR0 - ok
11:12:41.0754 5116 Boot (0x1200) (626f9be40f52f0dbde6c47d46214a56a) \Device\Harddisk0\DR0\Partition0
11:12:41.0770 5116 \Device\Harddisk0\DR0\Partition0 - ok
11:12:41.0770 5116 ============================================================
11:12:41.0770 5116 Scan finished
11:12:41.0770 5116 ============================================================
11:12:41.0785 5108 Detected object count: 0
11:12:41.0785 5108 Actual detected object count: 0
11:14:36.0245 5568 ============================================================
11:14:36.0245 5568 Scan started
11:14:36.0245 5568 Mode: Manual;
11:14:36.0245 5568 ============================================================
11:14:36.0480 5568 0280371338221027mcinstcleanup - ok
11:14:36.0511 5568 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
11:14:36.0527 5568 ACPI - ok
11:14:36.0573 5568 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
11:14:36.0573 5568 adp94xx - ok
11:14:36.0605 5568 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
11:14:36.0605 5568 adpahci - ok
11:14:36.0620 5568 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
11:14:36.0620 5568 adpu160m - ok
11:14:36.0636 5568 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
11:14:36.0636 5568 adpu320 - ok
11:14:36.0667 5568 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
11:14:36.0667 5568 AeLookupSvc - ok
11:14:36.0698 5568 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
11:14:36.0714 5568 AFD - ok
11:14:36.0730 5568 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
11:14:36.0730 5568 agp440 - ok
11:14:36.0745 5568 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
11:14:36.0745 5568 aic78xx - ok
11:14:36.0948 5568 ALCXWDM (7997b6f02cbda0e31fa18cc85871b938) C:\Windows\system32\drivers\RTKVAC.SYS
11:14:36.0980 5568 ALCXWDM - ok
11:14:37.0058 5568 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
11:14:37.0058 5568 ALG - ok
11:14:37.0089 5568 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
11:14:37.0089 5568 aliide - ok
11:14:37.0120 5568 Alpham (7a4aedb2d0c25ab8b95683c2944891c6) C:\Windows\system32\DRIVERS\Alpham.sys
11:14:37.0120 5568 Alpham - ok
11:14:37.0136 5568 Alpham1 (acd2f2df292b6cc28f58095bba63a068) C:\Windows\system32\DRIVERS\Alpham1.sys
11:14:37.0136 5568 Alpham1 - ok
11:14:37.0152 5568 Alpham2 (f4fafb2e74b83a156408b1b02302799e) C:\Windows\system32\DRIVERS\Alpham2.sys
11:14:37.0152 5568 Alpham2 - ok
11:14:37.0183 5568 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
11:14:37.0183 5568 amdagp - ok
11:14:37.0198 5568 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
11:14:37.0198 5568 amdide - ok
11:14:37.0214 5568 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
11:14:37.0214 5568 AmdK7 - ok
11:14:37.0245 5568 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
11:14:37.0245 5568 AmdK8 - ok
11:14:37.0277 5568 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
11:14:37.0277 5568 Appinfo - ok
11:14:37.0292 5568 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
11:14:37.0292 5568 arc - ok
11:14:37.0308 5568 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
11:14:37.0323 5568 arcsas - ok
11:14:37.0339 5568 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
11:14:37.0339 5568 AsyncMac - ok
11:14:37.0355 5568 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
11:14:37.0355 5568 atapi - ok
11:14:37.0402 5568 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:14:37.0402 5568 AudioEndpointBuilder - ok
11:14:37.0402 5568 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:14:37.0402 5568 Audiosrv - ok
11:14:37.0433 5568 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
11:14:37.0433 5568 Beep - ok
11:14:37.0464 5568 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
11:14:37.0464 5568 BFE - ok
11:14:37.0527 5568 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
11:14:37.0527 5568 BITS - ok
11:14:37.0527 5568 blbdrive - ok
11:14:37.0558 5568 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
11:14:37.0558 5568 bowser - ok
11:14:37.0573 5568 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
11:14:37.0573 5568 BrFiltLo - ok
11:14:37.0589 5568 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
11:14:37.0589 5568 BrFiltUp - ok
11:14:37.0589 5568 BrlAPI - ok
11:14:37.0620 5568 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
11:14:37.0636 5568 Browser - ok
11:14:37.0652 5568 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
11:14:37.0652 5568 Brserid - ok
11:14:37.0667 5568 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
11:14:37.0667 5568 BrSerWdm - ok
11:14:37.0683 5568 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
11:14:37.0683 5568 BrUsbMdm - ok
11:14:37.0698 5568 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
11:14:37.0698 5568 BrUsbSer - ok
11:14:37.0714 5568 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
11:14:37.0714 5568 BTHMODEM - ok
11:14:37.0761 5568 catchme - ok
11:14:37.0792 5568 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
11:14:37.0792 5568 cdfs - ok
11:14:37.0808 5568 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
11:14:37.0808 5568 cdrom - ok
11:14:37.0839 5568 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:14:37.0839 5568 CertPropSvc - ok
11:14:37.0855 5568 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
11:14:37.0855 5568 circlass - ok
11:14:37.0886 5568 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
11:14:37.0886 5568 CLFS - ok
11:14:37.0948 5568 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:14:37.0948 5568 clr_optimization_v2.0.50727_32 - ok
11:14:37.0995 5568 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:14:37.0995 5568 clr_optimization_v4.0.30319_32 - ok
11:14:38.0011 5568 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
11:14:38.0011 5568 cmdide - ok
11:14:38.0011 5568 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
11:14:38.0011 5568 Compbatt - ok
11:14:38.0027 5568 COMSysApp - ok
11:14:38.0042 5568 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
11:14:38.0042 5568 crcdisk - ok
11:14:38.0058 5568 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
11:14:38.0058 5568 Crusoe - ok
11:14:38.0089 5568 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
11:14:38.0089 5568 CryptSvc - ok
11:14:38.0136 5568 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:14:38.0136 5568 DcomLaunch - ok
11:14:38.0167 5568 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
11:14:38.0167 5568 DfsC - ok
11:14:38.0261 5568 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
11:14:38.0277 5568 DFSR - ok
11:14:38.0386 5568 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
11:14:38.0386 5568 Dhcp - ok
11:14:38.0402 5568 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
11:14:38.0402 5568 disk - ok
11:14:38.0433 5568 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
11:14:38.0433 5568 Dnscache - ok
11:14:38.0464 5568 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
11:14:38.0464 5568 dot3svc - ok
11:14:38.0495 5568 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
11:14:38.0495 5568 DPS - ok
11:14:38.0527 5568 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
11:14:38.0527 5568 drmkaud - ok
11:14:38.0573 5568 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
11:14:38.0573 5568 DXGKrnl - ok
11:14:38.0605 5568 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
11:14:38.0605 5568 E1G60 - ok
11:14:38.0636 5568 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
11:14:38.0636 5568 EapHost - ok
11:14:38.0667 5568 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
11:14:38.0667 5568 Ecache - ok
11:14:38.0698 5568 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
11:14:38.0698 5568 elxstor - ok
11:14:38.0745 5568 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
11:14:38.0745 5568 EMDMgmt - ok
11:14:38.0792 5568 ENTECH (fd9fc82f134b1c91004ffc76a5ae494b) C:\Windows\system32\DRIVERS\ENTECH.sys
11:14:38.0792 5568 ENTECH - ok
11:14:38.0855 5568 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
11:14:38.0855 5568 EventSystem - ok
11:14:38.0886 5568 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
11:14:38.0886 5568 exfat - ok
11:14:38.0917 5568 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
11:14:38.0917 5568 fastfat - ok
11:14:38.0933 5568 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
11:14:38.0933 5568 fdc - ok
11:14:38.0964 5568 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
11:14:38.0964 5568 fdPHost - ok
11:14:38.0980 5568 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
11:14:38.0980 5568 FDResPub - ok
11:14:38.0995 5568 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
11:14:39.0011 5568 FileInfo - ok
11:14:39.0027 5568 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
11:14:39.0042 5568 Filetrace - ok
11:14:39.0042 5568 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
11:14:39.0042 5568 flpydisk - ok
11:14:39.0058 5568 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
11:14:39.0058 5568 FltMgr - ok
11:14:39.0120 5568 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
11:14:39.0120 5568 FontCache - ok
11:14:39.0198 5568 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:14:39.0198 5568 FontCache3.0.0.0 - ok
11:14:39.0230 5568 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
11:14:39.0230 5568 Fs_Rec - ok
11:14:39.0245 5568 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
11:14:39.0245 5568 gagp30kx - ok
11:14:39.0277 5568 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\Windows\system32\Drivers\GEARAspiWDM.sys
11:14:39.0277 5568 GEARAspiWDM - ok
11:14:39.0323 5568 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
11:14:39.0323 5568 gpsvc - ok
11:14:39.0386 5568 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:14:39.0386 5568 gusvc - ok
11:14:39.0417 5568 hcw72ADFilter (da1f19058c5420959cc59888f4e608eb) C:\Windows\system32\DRIVERS\hcw72ADFilter.sys
11:14:39.0417 5568 hcw72ADFilter - ok
11:14:39.0495 5568 hcw72ATV (6ca0bd5e8a841145fec608565c3a1c80) C:\Windows\system32\DRIVERS\hcw72ATV.sys
11:14:39.0495 5568 hcw72ATV - ok
11:14:39.0573 5568 hcw72DTV (2c1571c8a0bc1101081631dbf4efcf1e) C:\Windows\system32\DRIVERS\hcw72DTV.sys
11:14:39.0573 5568 hcw72DTV - ok
11:14:39.0620 5568 HDAudBus (5fd053f305b77ebe97f284b20d89dc1c) C:\Windows\system32\drivers\hdaudbus.sys
11:14:39.0620 5568 HDAudBus - ok
11:14:39.0636 5568 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
11:14:39.0636 5568 HidBth - ok
11:14:39.0652 5568 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
11:14:39.0652 5568 HidIr - ok
11:14:39.0683 5568 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
11:14:39.0683 5568 hidserv - ok
11:14:39.0698 5568 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
11:14:39.0698 5568 HidUsb - ok
11:14:39.0730 5568 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
11:14:39.0730 5568 hkmsvc - ok
11:14:39.0745 5568 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
11:14:39.0745 5568 HpCISSs - ok
11:14:39.0777 5568 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
11:14:39.0777 5568 HTTP - ok
11:14:39.0808 5568 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
11:14:39.0808 5568 i2omp - ok
11:14:39.0823 5568 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
11:14:39.0823 5568 i8042prt - ok
11:14:39.0855 5568 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
11:14:39.0855 5568 iaStorV - ok
11:14:39.0917 5568 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:14:39.0933 5568 idsvc - ok
11:14:39.0948 5568 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
11:14:39.0948 5568 iirsp - ok
11:14:39.0995 5568 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
11:14:39.0995 5568 IKEEXT - ok
11:14:40.0011 5568 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
11:14:40.0011 5568 intelide - ok
11:14:40.0027 5568 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
11:14:40.0027 5568 intelppm - ok
11:14:40.0058 5568 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
11:14:40.0058 5568 IPBusEnum - ok
11:14:40.0089 5568 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:14:40.0089 5568 IpFilterDriver - ok
11:14:40.0120 5568 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
11:14:40.0120 5568 iphlpsvc - ok
11:14:40.0120 5568 IpInIp - ok
11:14:40.0136 5568 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
11:14:40.0136 5568 IPMIDRV - ok
11:14:40.0167 5568 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
11:14:40.0167 5568 IPNAT - ok
11:14:40.0183 5568 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
11:14:40.0198 5568 IRENUM - ok
11:14:40.0214 5568 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
11:14:40.0214 5568 isapnp - ok
11:14:40.0245 5568 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
11:14:40.0245 5568 iScsiPrt - ok
11:14:40.0261 5568 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
11:14:40.0261 5568 iteatapi - ok
11:14:40.0277 5568 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
11:14:40.0277 5568 iteraid - ok
11:14:40.0292 5568 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
11:14:40.0292 5568 kbdclass - ok
11:14:40.0323 5568 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
11:14:40.0323 5568 kbdhid - ok
11:14:40.0339 5568 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:14:40.0339 5568 KeyIso - ok
11:14:40.0386 5568 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
11:14:40.0386 5568 KSecDD - ok
11:14:40.0417 5568 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
11:14:40.0433 5568 KtmRm - ok
11:14:40.0464 5568 L8042Kbd (d1968dea7baff4a917858c384339cec8) C:\Windows\system32\DRIVERS\L8042Kbd.sys
11:14:40.0464 5568 L8042Kbd - ok
11:14:40.0480 5568 L8042mou (d6fc755ff505d99e6cc73e83492310df) C:\Windows\system32\DRIVERS\L8042mou.Sys
11:14:40.0495 5568 L8042mou - ok
11:14:40.0527 5568 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
11:14:40.0527 5568 LanmanServer - ok
11:14:40.0558 5568 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
11:14:40.0573 5568 LanmanWorkstation - ok
11:14:40.0636 5568 LBTServ (a0f7dc0080e4f97dc97de08b699e231b) C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
11:14:40.0636 5568 LBTServ - ok
11:14:40.0667 5568 LHidFilt (c91206ca84684057118265e8377c77b6) C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:14:40.0667 5568 LHidFilt - ok
11:14:40.0683 5568 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
11:14:40.0683 5568 lltdio - ok
11:14:40.0730 5568 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
11:14:40.0745 5568 lltdsvc - ok
11:14:40.0777 5568 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
11:14:40.0777 5568 lmhosts - ok
11:14:40.0808 5568 LMouFilt (9f03720fa5e6d14cd4dfea610f2c1a7c) C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:14:40.0808 5568 LMouFilt - ok
11:14:40.0839 5568 LMouKE (c149bdad13194df16ea33f9f601ed7bf) C:\Windows\system32\DRIVERS\LMouKE.Sys
11:14:40.0839 5568 LMouKE - ok
11:14:40.0870 5568 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
11:14:40.0870 5568 LSI_FC - ok
11:14:40.0886 5568 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
11:14:40.0886 5568 LSI_SAS - ok
11:14:40.0902 5568 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
11:14:40.0902 5568 LSI_SCSI - ok
11:14:40.0933 5568 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
11:14:40.0933 5568 luafv - ok
11:14:40.0948 5568 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
11:14:40.0948 5568 megasas - ok
11:14:40.0964 5568 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:14:40.0964 5568 MMCSS - ok
11:14:40.0995 5568 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
11:14:40.0995 5568 Modem - ok
11:14:41.0011 5568 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
11:14:41.0011 5568 monitor - ok
11:14:41.0042 5568 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
11:14:41.0042 5568 mouclass - ok
11:14:41.0042 5568 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
11:14:41.0042 5568 mouhid - ok
11:14:41.0058 5568 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
11:14:41.0058 5568 MountMgr - ok
11:14:41.0073 5568 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
11:14:41.0089 5568 mpio - ok
11:14:41.0105 5568 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
11:14:41.0105 5568 mpsdrv - ok
11:14:41.0152 5568 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
11:14:41.0198 5568 MpsSvc - ok
11:14:41.0214 5568 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
11:14:41.0214 5568 Mraid35x - ok
11:14:41.0230 5568 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
11:14:41.0230 5568 MRxDAV - ok
11:14:41.0261 5568 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:14:41.0261 5568 mrxsmb - ok
11:14:41.0277 5568 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:14:41.0277 5568 mrxsmb10 - ok
11:14:41.0323 5568 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:14:41.0323 5568 mrxsmb20 - ok
11:14:41.0339 5568 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
11:14:41.0339 5568 msahci - ok
11:14:41.0355 5568 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
11:14:41.0355 5568 msdsm - ok
11:14:41.0370 5568 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
11:14:41.0386 5568 MSDTC - ok
11:14:41.0417 5568 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
11:14:41.0417 5568 Msfs - ok
11:14:41.0433 5568 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
11:14:41.0433 5568 msisadrv - ok
11:14:41.0448 5568 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
11:14:41.0448 5568 MSiSCSI - ok
11:14:41.0464 5568 msiserver - ok
11:14:41.0480 5568 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
11:14:41.0480 5568 MSKSSRV - ok
11:14:41.0511 5568 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
11:14:41.0511 5568 MSPCLOCK - ok
11:14:41.0527 5568 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
11:14:41.0527 5568 MSPQM - ok
11:14:41.0558 5568 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
11:14:41.0558 5568 MsRPC - ok
11:14:41.0605 5568 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
11:14:41.0605 5568 mssmbios - ok
11:14:41.0620 5568 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
11:14:41.0620 5568 MSTEE - ok
11:14:41.0636 5568 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
11:14:41.0636 5568 Mup - ok
11:14:41.0667 5568 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
11:14:41.0667 5568 napagent - ok
11:14:41.0698 5568 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
11:14:41.0698 5568 NativeWifiP - ok
11:14:41.0761 5568 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
11:14:41.0761 5568 NDIS - ok
11:14:41.0792 5568 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
11:14:41.0792 5568 NdisTapi - ok
11:14:41.0823 5568 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
11:14:41.0823 5568 Ndisuio - ok
11:14:41.0855 5568 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
11:14:41.0855 5568 NdisWan - ok
11:14:41.0870 5568 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
11:14:41.0870 5568 NDProxy - ok
11:14:41.0902 5568 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
11:14:41.0902 5568 NetBIOS - ok
11:14:41.0933 5568 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
11:14:41.0933 5568 netbt - ok
11:14:41.0964 5568 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:14:41.0964 5568 Netlogon - ok
11:14:41.0995 5568 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
11:14:41.0995 5568 Netman - ok
11:14:42.0027 5568 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
11:14:42.0027 5568 netprofm - ok
11:14:42.0058 5568 netr73 (757f999aa72b55780ee810d4cd1bdd47) C:\Windows\system32\DRIVERS\WUSB54GCx86.sys
11:14:42.0058 5568 netr73 - ok
11:14:42.0120 5568 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:14:42.0120 5568 NetTcpPortSharing - ok
11:14:42.0152 5568 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
11:14:42.0152 5568 nfrd960 - ok
11:14:42.0183 5568 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
11:14:42.0183 5568 NlaSvc - ok
11:14:42.0214 5568 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
11:14:42.0214 5568 Npfs - ok
11:14:42.0230 5568 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
11:14:42.0230 5568 nsi - ok
11:14:42.0245 5568 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
11:14:42.0245 5568 nsiproxy - ok
11:14:42.0323 5568 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
11:14:42.0323 5568 Ntfs - ok
11:14:42.0339 5568 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
11:14:42.0339 5568 ntrigdigi - ok
11:14:42.0355 5568 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
11:14:42.0355 5568 Null - ok
11:14:42.0417 5568 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
11:14:42.0417 5568 NVENETFD - ok
11:14:42.0917 5568 nvlddmkm (73a70f1d89c942eedd99a3f10459b051) C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:14:42.0980 5568 nvlddmkm - ok
11:14:43.0058 5568 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
11:14:43.0058 5568 nvraid - ok
11:14:43.0073 5568 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
11:14:43.0073 5568 nvstor - ok
11:14:43.0105 5568 nvsvc (538a52e480c816d1990579a8faaffa20) C:\Windows\system32\nvvsvc.exe
11:14:43.0120 5568 nvsvc - ok
11:14:43.0136 5568 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
11:14:43.0136 5568 nv_agp - ok
11:14:43.0136 5568 NwlnkFlt - ok
11:14:43.0152 5568 NwlnkFwd - ok
11:14:43.0167 5568 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
11:14:43.0167 5568 ohci1394 - ok
11:14:43.0230 5568 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:14:43.0230 5568 p2pimsvc - ok
11:14:43.0230 5568 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:14:43.0245 5568 p2psvc - ok
11:14:43.0261 5568 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
11:14:43.0261 5568 Parport - ok
11:14:43.0292 5568 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
11:14:43.0292 5568 partmgr - ok
11:14:43.0323 5568 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
11:14:43.0323 5568 Parvdm - ok
11:14:43.0339 5568 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
11:14:43.0355 5568 PcaSvc - ok
11:14:43.0386 5568 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
11:14:43.0386 5568 pci - ok
11:14:43.0386 5568 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
11:14:43.0386 5568 pciide - ok
11:14:43.0417 5568 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
11:14:43.0417 5568 pcmcia - ok
11:14:43.0480 5568 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
11:14:43.0480 5568 PEAUTH - ok
11:14:43.0589 5568 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
11:14:43.0589 5568 pla - ok
11:14:43.0698 5568 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
11:14:43.0698 5568 PlugPlay - ok
11:14:43.0761 5568 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:14:43.0761 5568 PNRPAutoReg - ok
11:14:43.0761 5568 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:14:43.0777 5568 PNRPsvc - ok
11:14:43.0808 5568 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
11:14:43.0823 5568 PolicyAgent - ok
11:14:43.0839 5568 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
11:14:43.0839 5568 PptpMiniport - ok
11:14:43.0870 5568 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
11:14:43.0870 5568 Processor - ok
11:14:43.0902 5568 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
11:14:43.0902 5568 ProfSvc - ok
11:14:43.0933 5568 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:14:43.0933 5568 ProtectedStorage - ok
11:14:43.0964 5568 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
11:14:43.0964 5568 PSched - ok
11:14:44.0011 5568 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
11:14:44.0027 5568 ql2300 - ok
11:14:44.0042 5568 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
11:14:44.0058 5568 ql40xx - ok
11:14:44.0089 5568 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
11:14:44.0089 5568 QWAVE - ok
11:14:44.0120 5568 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
11:14:44.0120 5568 QWAVEdrv - ok
11:14:44.0152 5568 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
11:14:44.0152 5568 RasAcd - ok
11:14:44.0167 5568 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
11:14:44.0183 5568 RasAuto - ok
11:14:44.0183 5568 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:14:44.0183 5568 Rasl2tp - ok
11:14:44.0214 5568 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
11:14:44.0230 5568 RasMan - ok
11:14:44.0261 5568 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
11:14:44.0261 5568 RasPppoe - ok
11:14:44.0292 5568 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
11:14:44.0292 5568 RasSstp - ok
11:14:44.0323 5568 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
11:14:44.0323 5568 rdbss - ok
11:14:44.0339 5568 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:14:44.0339 5568 RDPCDD - ok
11:14:44.0386 5568 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
11:14:44.0386 5568 rdpdr - ok
11:14:44.0386 5568 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
11:14:44.0386 5568 RDPENCDD - ok
11:14:44.0417 5568 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
11:14:44.0417 5568 RDPWD - ok
11:14:44.0448 5568 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
11:14:44.0448 5568 RemoteAccess - ok
11:14:44.0480 5568 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
11:14:44.0480 5568 RemoteRegistry - ok
11:14:44.0573 5568 RichVideo (616f6e52cae254727a886ba8eda1beea) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
11:14:44.0573 5568 RichVideo - ok
11:14:44.0620 5568 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
11:14:44.0620 5568 RpcLocator - ok
11:14:44.0652 5568 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:14:44.0667 5568 RpcSs - ok
11:14:44.0683 5568 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
11:14:44.0683 5568 rspndr - ok
11:14:44.0714 5568 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:14:44.0714 5568 SamSs - ok
11:14:44.0730 5568 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
11:14:44.0730 5568 sbp2port - ok
11:14:44.0761 5568 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
11:14:44.0761 5568 SCardSvr - ok
11:14:44.0808 5568 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
11:14:44.0808 5568 Schedule - ok
11:14:44.0839 5568 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:14:44.0839 5568 SCPolicySvc - ok
11:14:44.0870 5568 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
11:14:44.0870 5568 SDRSVC - ok
11:14:44.0902 5568 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:14:44.0902 5568 secdrv - ok
11:14:44.0933 5568 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
11:14:44.0933 5568 seclogon - ok
11:14:44.0948 5568 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
11:14:44.0948 5568 SENS - ok
11:14:44.0980 5568 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
11:14:44.0980 5568 Serenum - ok
11:14:44.0995 5568 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
11:14:45.0011 5568 Serial - ok
11:14:45.0027 5568 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
11:14:45.0027 5568 sermouse - ok
11:14:45.0073 5568 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
11:14:45.0073 5568 SessionEnv - ok
11:14:45.0089 5568 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
11:14:45.0089 5568 sffdisk - ok
11:14:45.0105 5568 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
11:14:45.0105 5568 sffp_mmc - ok
11:14:45.0120 5568 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
11:14:45.0120 5568 sffp_sd - ok
11:14:45.0136 5568 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
11:14:45.0136 5568 sfloppy - ok
11:14:45.0152 5568 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
11:14:45.0152 5568 SharedAccess - ok
11:14:45.0183 5568 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
11:14:45.0183 5568 ShellHWDetection - ok
11:14:45.0198 5568 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
11:14:45.0214 5568 sisagp - ok
11:14:45.0230 5568 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
11:14:45.0230 5568 SiSRaid2 - ok
11:14:45.0245 5568 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
11:14:45.0245 5568 SiSRaid4 - ok
11:14:45.0292 5568 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files\Skype\Updater\Updater.exe
11:14:45.0292 5568 SkypeUpdate - ok
11:14:45.0464 5568 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
11:14:45.0495 5568 slsvc - ok
11:14:45.0573 5568 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
11:14:45.0589 5568 SLUINotify - ok
11:14:45.0620 5568 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
11:14:45.0620 5568 Smb - ok
11:14:45.0652 5568 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
11:14:45.0652 5568 SNMPTRAP - ok
11:14:45.0683 5568 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
11:14:45.0683 5568 spldr - ok
11:14:45.0698 5568 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
11:14:45.0698 5568 Spooler - ok
11:14:45.0777 5568 sprtsvc_ddoctorv2 (c3716ec0d36ad924b6888d794563e647) C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
11:14:45.0777 5568 sprtsvc_ddoctorv2 - ok
11:14:45.0808 5568 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
11:14:45.0808 5568 srv - ok
11:14:45.0839 5568 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
11:14:45.0855 5568 srv2 - ok
11:14:45.0870 5568 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
11:14:45.0870 5568 srvnet - ok
11:14:45.0902 5568 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
11:14:45.0917 5568 SSDPSRV - ok
11:14:45.0933 5568 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
11:14:45.0933 5568 SstpSvc - ok
11:14:45.0948 5568 Steam Client Service - ok
11:14:46.0011 5568 Stereo Service (8c37c35fb2d9692dda0eddbca58bfe18) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:14:46.0011 5568 Stereo Service - ok
11:14:46.0058 5568 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
11:14:46.0073 5568 stisvc - ok
11:14:46.0089 5568 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
11:14:46.0089 5568 swenum - ok
11:14:46.0136 5568 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
11:14:46.0136 5568 swprv - ok
11:14:46.0183 5568 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
11:14:46.0183 5568 Symc8xx - ok
11:14:46.0198 5568 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
11:14:46.0198 5568 Sym_hi - ok
11:14:46.0214 5568 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
11:14:46.0214 5568 Sym_u3 - ok
11:14:46.0261 5568 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
11:14:46.0277 5568 SysMain - ok
11:14:46.0277 5568 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
11:14:46.0277 5568 TabletInputService - ok
11:14:46.0323 5568 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
11:14:46.0323 5568 TapiSrv - ok
11:14:46.0339 5568 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
11:14:46.0355 5568 TBS - ok
11:14:46.0417 5568 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
11:14:46.0417 5568 Tcpip - ok
11:14:46.0433 5568 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
11:14:46.0433 5568 Tcpip6 - ok
11:14:46.0464 5568 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
11:14:46.0464 5568 tcpipreg - ok
11:14:46.0480 5568 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
11:14:46.0480 5568 TDPIPE - ok
11:14:46.0495 5568 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
11:14:46.0495 5568 TDTCP - ok
11:14:46.0527 5568 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
11:14:46.0527 5568 tdx - ok
11:14:46.0542 5568 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
11:14:46.0542 5568 TermDD - ok
11:14:46.0589 5568 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
11:14:46.0589 5568 TermService - ok
11:14:46.0620 5568 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
11:14:46.0636 5568 Themes - ok
11:14:46.0652 5568 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:14:46.0652 5568 THREADORDER - ok
11:14:46.0683 5568 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
11:14:46.0683 5568 TrkWks - ok
11:14:46.0730 5568 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
11:14:46.0730 5568 TrustedInstaller - ok
11:14:46.0761 5568 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:14:46.0761 5568 tssecsrv - ok
11:14:46.0777 5568 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
11:14:46.0777 5568 tunmp - ok
11:14:46.0808 5568 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
11:14:46.0808 5568 tunnel - ok
11:14:46.0839 5568 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
11:14:46.0839 5568 uagp35 - ok
11:14:46.0870 5568 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
11:14:46.0870 5568 udfs - ok
11:14:46.0902 5568 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
11:14:46.0902 5568 UI0Detect - ok
11:14:46.0933 5568 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
11:14:46.0933 5568 uliagpkx - ok
11:14:46.0948 5568 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
11:14:46.0964 5568 uliahci - ok
11:14:46.0995 5568 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
11:14:46.0995 5568 UlSata - ok
11:14:47.0027 5568 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
11:14:47.0027 5568 ulsata2 - ok
11:14:47.0042 5568 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
11:14:47.0042 5568 umbus - ok
11:14:47.0073 5568 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
11:14:47.0073 5568 upnphost - ok
11:14:47.0120 5568 USBAAPL (e8c1b9ebac65288e1b51e8a987d98af6) C:\Windows\system32\Drivers\usbaapl.sys
11:14:47.0120 5568 USBAAPL - ok
11:14:47.0136 5568 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
11:14:47.0136 5568 usbaudio - ok
11:14:47.0152 5568 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
11:14:47.0152 5568 usbccgp - ok
11:14:47.0183 5568 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
11:14:47.0183 5568 usbcir - ok
11:14:47.0198 5568 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
11:14:47.0198 5568 usbehci - ok
11:14:47.0230 5568 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
11:14:47.0245 5568 usbhub - ok
11:14:47.0261 5568 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
11:14:47.0261 5568 usbohci - ok
11:14:47.0292 5568 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
11:14:47.0292 5568 usbprint - ok
11:14:47.0292 5568 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:14:47.0308 5568 USBSTOR - ok
11:14:47.0323 5568 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
11:14:47.0323 5568 usbuhci - ok
11:14:47.0339 5568 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
11:14:47.0355 5568 UxSms - ok
11:14:47.0386 5568 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
11:14:47.0386 5568 vds - ok
11:14:47.0402 5568 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
11:14:47.0402 5568 vga - ok
11:14:47.0417 5568 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
11:14:47.0433 5568 VgaSave - ok
11:14:47.0448 5568 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
11:14:47.0448 5568 viaagp - ok
11:14:47.0464 5568 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
11:14:47.0464 5568 ViaC7 - ok
11:14:47.0480 5568 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
11:14:47.0480 5568 viaide - ok
11:14:47.0495 5568 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
11:14:47.0495 5568 volmgr - ok
11:14:47.0527 5568 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
11:14:47.0527 5568 volmgrx - ok
11:14:47.0558 5568 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
11:14:47.0558 5568 volsnap - ok
11:14:47.0589 5568 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
11:14:47.0589 5568 vsmraid - ok
11:14:47.0652 5568 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
11:14:47.0667 5568 VSS - ok
11:14:47.0698 5568 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
11:14:47.0698 5568 W32Time - ok
11:14:47.0730 5568 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
11:14:47.0745 5568 WacomPen - ok
11:14:47.0777 5568 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:14:47.0777 5568 Wanarp - ok
11:14:47.0792 5568 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:14:47.0792 5568 Wanarpv6 - ok
11:14:47.0808 5568 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
11:14:47.0808 5568 wcncsvc - ok
11:14:47.0839 5568 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
11:14:47.0855 5568 WcsPlugInService - ok
11:14:47.0855 5568 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
11:14:47.0855 5568 Wd - ok
11:14:47.0902 5568 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
11:14:47.0902 5568 Wdf01000 - ok
11:14:47.0933 5568 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:14:47.0933 5568 WdiServiceHost - ok
11:14:47.0933 5568 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:14:47.0948 5568 WdiSystemHost - ok
11:14:47.0980 5568 WebClient (04c37d8107320312fbae099

TDSS Log Part 2:

11:14:48.0027 5568 WebClient - ok
11:14:48.0042 5568 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
11:14:48.0058 5568 Wecsvc - ok
11:14:48.0073 5568 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
11:14:48.0089 5568 wercplsupport - ok
11:14:48.0105 5568 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
11:14:48.0120 5568 WerSvc - ok
11:14:48.0198 5568 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
11:14:48.0198 5568 WinDefend - ok
11:14:48.0214 5568 WinHttpAutoProxySvc - ok
11:14:48.0261 5568 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
11:14:48.0261 5568 Winmgmt - ok
11:14:48.0339 5568 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
11:14:48.0339 5568 WinRM - ok
11:14:48.0386 5568 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
11:14:48.0402 5568 Wlansvc - ok
11:14:48.0448 5568 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
11:14:48.0448 5568 WmiAcpi - ok
11:14:48.0464 5568 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
11:14:48.0480 5568 wmiApSrv - ok
11:14:48.0542 5568 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
11:14:48.0542 5568 WMPNetworkSvc - ok
11:14:48.0589 5568 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
11:14:48.0589 5568 WPCSvc - ok
11:14:48.0620 5568 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
11:14:48.0620 5568 WPDBusEnum - ok
11:14:48.0667 5568 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
11:14:48.0667 5568 WpdUsb - ok
11:14:48.0808 5568 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:14:48.0808 5568 WPFFontCache_v0400 - ok
11:14:48.0839 5568 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
11:14:48.0839 5568 ws2ifsl - ok
11:14:48.0855 5568 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
11:14:48.0855 5568 wscsvc - ok
11:14:48.0870 5568 WSearch - ok
11:14:48.0980 5568 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
11:14:48.0995 5568 wuauserv - ok
11:14:49.0073 5568 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:14:49.0073 5568 WUDFRd - ok
11:14:49.0105 5568 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
11:14:49.0105 5568 wudfsvc - ok
11:14:49.0136 5568 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
11:14:49.0277 5568 \Device\Harddisk0\DR0 - ok
11:14:49.0292 5568 Boot (0x1200) (626f9be40f52f0dbde6c47d46214a56a) \Device\Harddisk0\DR0\Partition0
11:14:49.0292 5568 \Device\Harddisk0\DR0\Partition0 - ok
11:14:49.0292 5568 ============================================================
11:14:49.0292 5568 Scan finished
11:14:49.0292 5568 ============================================================
11:14:49.0308 5560 Detected object count: 0
11:14:49.0308 5560 Actual detected object count: 0
11:14:55.0855 5600 ============================================================
11:14:55.0855 5600 Scan started
11:14:55.0855 5600 Mode: Manual;
11:14:55.0855 5600 ============================================================
11:14:56.0042 5600 0280371338221027mcinstcleanup - ok
11:14:56.0073 5600 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
11:14:56.0073 5600 ACPI - ok
11:14:56.0120 5600 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
11:14:56.0120 5600 adp94xx - ok
11:14:56.0152 5600 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
11:14:56.0152 5600 adpahci - ok
11:14:56.0167 5600 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
11:14:56.0167 5600 adpu160m - ok
11:14:56.0214 5600 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
11:14:56.0214 5600 adpu320 - ok
11:14:56.0245 5600 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
11:14:56.0245 5600 AeLookupSvc - ok
11:14:56.0292 5600 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
11:14:56.0292 5600 AFD - ok
11:14:56.0308 5600 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
11:14:56.0308 5600 agp440 - ok
11:14:56.0323 5600 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
11:14:56.0323 5600 aic78xx - ok
11:14:56.0527 5600 ALCXWDM (7997b6f02cbda0e31fa18cc85871b938) C:\Windows\system32\drivers\RTKVAC.SYS
11:14:56.0558 5600 ALCXWDM - ok
11:14:56.0636 5600 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
11:14:56.0636 5600 ALG - ok
11:14:56.0667 5600 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
11:14:56.0667 5600 aliide - ok
11:14:56.0683 5600 Alpham (7a4aedb2d0c25ab8b95683c2944891c6) C:\Windows\system32\DRIVERS\Alpham.sys
11:14:56.0683 5600 Alpham - ok
11:14:56.0714 5600 Alpham1 (acd2f2df292b6cc28f58095bba63a068) C:\Windows\system32\DRIVERS\Alpham1.sys
11:14:56.0714 5600 Alpham1 - ok
11:14:56.0714 5600 Alpham2 (f4fafb2e74b83a156408b1b02302799e) C:\Windows\system32\DRIVERS\Alpham2.sys
11:14:56.0714 5600 Alpham2 - ok
11:14:56.0730 5600 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
11:14:56.0745 5600 amdagp - ok
11:14:56.0761 5600 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
11:14:56.0761 5600 amdide - ok
11:14:56.0777 5600 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
11:14:56.0777 5600 AmdK7 - ok
11:14:56.0808 5600 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
11:14:56.0808 5600 AmdK8 - ok
11:14:56.0823 5600 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
11:14:56.0823 5600 Appinfo - ok
11:14:56.0855 5600 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
11:14:56.0855 5600 arc - ok
11:14:56.0870 5600 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
11:14:56.0870 5600 arcsas - ok
11:14:56.0902 5600 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
11:14:56.0902 5600 AsyncMac - ok
11:14:56.0917 5600 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
11:14:56.0917 5600 atapi - ok
11:14:56.0948 5600 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:14:56.0964 5600 AudioEndpointBuilder - ok
11:14:56.0964 5600 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:14:56.0980 5600 Audiosrv - ok
11:14:56.0995 5600 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
11:14:56.0995 5600 Beep - ok
11:14:57.0027 5600 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
11:14:57.0027 5600 BFE - ok
11:14:57.0089 5600 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
11:14:57.0105 5600 BITS - ok
11:14:57.0105 5600 blbdrive - ok
11:14:57.0136 5600 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
11:14:57.0136 5600 bowser - ok
11:14:57.0152 5600 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
11:14:57.0152 5600 BrFiltLo - ok
11:14:57.0167 5600 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
11:14:57.0167 5600 BrFiltUp - ok
11:14:57.0167 5600 BrlAPI - ok
11:14:57.0198 5600 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
11:14:57.0198 5600 Browser - ok
11:14:57.0214 5600 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
11:14:57.0214 5600 Brserid - ok
11:14:57.0230 5600 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
11:14:57.0230 5600 BrSerWdm - ok
11:14:57.0245 5600 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
11:14:57.0245 5600 BrUsbMdm - ok
11:14:57.0261 5600 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
11:14:57.0261 5600 BrUsbSer - ok
11:14:57.0277 5600 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
11:14:57.0277 5600 BTHMODEM - ok
11:14:57.0323 5600 catchme - ok
11:14:57.0355 5600 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
11:14:57.0355 5600 cdfs - ok
11:14:57.0386 5600 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
11:14:57.0386 5600 cdrom - ok
11:14:57.0402 5600 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:14:57.0402 5600 CertPropSvc - ok
11:14:57.0417 5600 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
11:14:57.0417 5600 circlass - ok
11:14:57.0448 5600 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
11:14:57.0464 5600 CLFS - ok
11:14:57.0511 5600 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:14:57.0511 5600 clr_optimization_v2.0.50727_32 - ok
11:14:57.0558 5600 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:14:57.0558 5600 clr_optimization_v4.0.30319_32 - ok
11:14:57.0573 5600 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
11:14:57.0573 5600 cmdide - ok
11:14:57.0573 5600 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
11:14:57.0573 5600 Compbatt - ok
11:14:57.0589 5600 COMSysApp - ok
11:14:57.0605 5600 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
11:14:57.0605 5600 crcdisk - ok
11:14:57.0620 5600 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
11:14:57.0620 5600 Crusoe - ok
11:14:57.0652 5600 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
11:14:57.0652 5600 CryptSvc - ok
11:14:57.0698 5600 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:14:57.0714 5600 DcomLaunch - ok
11:14:57.0730 5600 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
11:14:57.0730 5600 DfsC - ok
11:14:57.0855 5600 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
11:14:57.0870 5600 DFSR - ok
11:14:57.0980 5600 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
11:14:57.0980 5600 Dhcp - ok
11:14:57.0995 5600 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
11:14:57.0995 5600 disk - ok
11:14:58.0027 5600 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
11:14:58.0027 5600 Dnscache - ok
11:14:58.0058 5600 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
11:14:58.0058 5600 dot3svc - ok
11:14:58.0089 5600 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
11:14:58.0089 5600 DPS - ok
11:14:58.0105 5600 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
11:14:58.0105 5600 drmkaud - ok
11:14:58.0152 5600 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
11:14:58.0152 5600 DXGKrnl - ok
11:14:58.0183 5600 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
11:14:58.0183 5600 E1G60 - ok
11:14:58.0214 5600 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
11:14:58.0214 5600 EapHost - ok
11:14:58.0245 5600 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
11:14:58.0245 5600 Ecache - ok
11:14:58.0261 5600 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
11:14:58.0261 5600 elxstor - ok
11:14:58.0308 5600 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
11:14:58.0323 5600 EMDMgmt - ok
11:14:58.0370 5600 ENTECH (fd9fc82f134b1c91004ffc76a5ae494b) C:\Windows\system32\DRIVERS\ENTECH.sys
11:14:58.0370 5600 ENTECH - ok
11:14:58.0402 5600 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
11:14:58.0402 5600 EventSystem - ok
11:14:58.0433 5600 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
11:14:58.0433 5600 exfat - ok
11:14:58.0464 5600 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
11:14:58.0464 5600 fastfat - ok
11:14:58.0495 5600 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
11:14:58.0495 5600 fdc - ok
11:14:58.0511 5600 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
11:14:58.0511 5600 fdPHost - ok
11:14:58.0542 5600 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
11:14:58.0542 5600 FDResPub - ok
11:14:58.0573 5600 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
11:14:58.0573 5600 FileInfo - ok
11:14:58.0605 5600 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
11:14:58.0605 5600 Filetrace - ok
11:14:58.0605 5600 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
11:14:58.0605 5600 flpydisk - ok
11:14:58.0636 5600 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
11:14:58.0636 5600 FltMgr - ok
11:14:58.0683 5600 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
11:14:58.0698 5600 FontCache - ok
11:14:58.0777 5600 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:14:58.0777 5600 FontCache3.0.0.0 - ok
11:14:58.0808 5600 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
11:14:58.0808 5600 Fs_Rec - ok
11:14:58.0823 5600 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
11:14:58.0823 5600 gagp30kx - ok
11:14:58.0870 5600 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\Windows\system32\Drivers\GEARAspiWDM.sys
11:14:58.0870 5600 GEARAspiWDM - ok
11:14:58.0902 5600 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
11:14:58.0902 5600 gpsvc - ok
11:14:58.0964 5600 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:14:58.0964 5600 gusvc - ok
11:14:58.0995 5600 hcw72ADFilter (da1f19058c5420959cc59888f4e608eb) C:\Windows\system32\DRIVERS\hcw72ADFilter.sys
11:14:58.0995 5600 hcw72ADFilter - ok
11:14:59.0073 5600 hcw72ATV (6ca0bd5e8a841145fec608565c3a1c80) C:\Windows\system32\DRIVERS\hcw72ATV.sys
11:14:59.0073 5600 hcw72ATV - ok
11:14:59.0152 5600 hcw72DTV (2c1571c8a0bc1101081631dbf4efcf1e) C:\Windows\system32\DRIVERS\hcw72DTV.sys
11:14:59.0152 5600 hcw72DTV - ok
11:14:59.0183 5600 HDAudBus (5fd053f305b77ebe97f284b20d89dc1c) C:\Windows\system32\drivers\hdaudbus.sys
11:14:59.0183 5600 HDAudBus - ok
11:14:59.0198 5600 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
11:14:59.0198 5600 HidBth - ok
11:14:59.0214 5600 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
11:14:59.0214 5600 HidIr - ok
11:14:59.0245 5600 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
11:14:59.0245 5600 hidserv - ok
11:14:59.0277 5600 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
11:14:59.0277 5600 HidUsb - ok
11:14:59.0292 5600 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
11:14:59.0292 5600 hkmsvc - ok
11:14:59.0308 5600 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
11:14:59.0308 5600 HpCISSs - ok
11:14:59.0339 5600 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
11:14:59.0355 5600 HTTP - ok
11:14:59.0370 5600 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
11:14:59.0370 5600 i2omp - ok
11:14:59.0402 5600 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
11:14:59.0402 5600 i8042prt - ok
11:14:59.0417 5600 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
11:14:59.0417 5600 iaStorV - ok
11:14:59.0480 5600 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:14:59.0480 5600 idsvc - ok
11:14:59.0495 5600 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
11:14:59.0495 5600 iirsp - ok
11:14:59.0542 5600 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
11:14:59.0542 5600 IKEEXT - ok
11:14:59.0573 5600 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
11:14:59.0573 5600 intelide - ok
11:14:59.0589 5600 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
11:14:59.0589 5600 intelppm - ok
11:14:59.0620 5600 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
11:14:59.0620 5600 IPBusEnum - ok
11:14:59.0636 5600 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:14:59.0636 5600 IpFilterDriver - ok
11:14:59.0667 5600 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
11:14:59.0667 5600 iphlpsvc - ok
11:14:59.0683 5600 IpInIp - ok
11:14:59.0698 5600 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
11:14:59.0698 5600 IPMIDRV - ok
11:14:59.0714 5600 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
11:14:59.0730 5600 IPNAT - ok
11:14:59.0745 5600 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
11:14:59.0745 5600 IRENUM - ok
11:14:59.0761 5600 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
11:14:59.0761 5600 isapnp - ok
11:14:59.0792 5600 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
11:14:59.0792 5600 iScsiPrt - ok
11:14:59.0808 5600 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
11:14:59.0808 5600 iteatapi - ok
11:14:59.0823 5600 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
11:14:59.0823 5600 iteraid - ok
11:14:59.0839 5600 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
11:14:59.0839 5600 kbdclass - ok
11:14:59.0870 5600 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
11:14:59.0870 5600 kbdhid - ok
11:14:59.0902 5600 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:14:59.0902 5600 KeyIso - ok
11:14:59.0933 5600 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
11:14:59.0948 5600 KSecDD - ok
11:14:59.0995 5600 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
11:14:59.0995 5600 KtmRm - ok
11:15:00.0027 5600 L8042Kbd (d1968dea7baff4a917858c384339cec8) C:\Windows\system32\DRIVERS\L8042Kbd.sys
11:15:00.0027 5600 L8042Kbd - ok
11:15:00.0042 5600 L8042mou (d6fc755ff505d99e6cc73e83492310df) C:\Windows\system32\DRIVERS\L8042mou.Sys
11:15:00.0042 5600 L8042mou - ok
11:15:00.0073 5600 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
11:15:00.0073 5600 LanmanServer - ok
11:15:00.0105 5600 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
11:15:00.0105 5600 LanmanWorkstation - ok
11:15:00.0167 5600 LBTServ (a0f7dc0080e4f97dc97de08b699e231b) C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
11:15:00.0167 5600 LBTServ - ok
11:15:00.0198 5600 LHidFilt (c91206ca84684057118265e8377c77b6) C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:15:00.0198 5600 LHidFilt - ok
11:15:00.0230 5600 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
11:15:00.0230 5600 lltdio - ok
11:15:00.0261 5600 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
11:15:00.0261 5600 lltdsvc - ok
11:15:00.0292 5600 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
11:15:00.0292 5600 lmhosts - ok
11:15:00.0323 5600 LMouFilt (9f03720fa5e6d14cd4dfea610f2c1a7c) C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:15:00.0323 5600 LMouFilt - ok
11:15:00.0339 5600 LMouKE (c149bdad13194df16ea33f9f601ed7bf) C:\Windows\system32\DRIVERS\LMouKE.Sys
11:15:00.0339 5600 LMouKE - ok
11:15:00.0370 5600 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
11:15:00.0370 5600 LSI_FC - ok
11:15:00.0386 5600 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
11:15:00.0386 5600 LSI_SAS - ok
11:15:00.0402 5600 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
11:15:00.0402 5600 LSI_SCSI - ok
11:15:00.0433 5600 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
11:15:00.0433 5600 luafv - ok
11:15:00.0448 5600 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
11:15:00.0448 5600 megasas - ok
11:15:00.0464 5600 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:15:00.0464 5600 MMCSS - ok
11:15:00.0480 5600 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
11:15:00.0480 5600 Modem - ok
11:15:00.0511 5600 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
11:15:00.0511 5600 monitor - ok
11:15:00.0542 5600 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
11:15:00.0542 5600 mouclass - ok
11:15:00.0558 5600 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
11:15:00.0558 5600 mouhid - ok
11:15:00.0573 5600 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
11:15:00.0573 5600 MountMgr - ok
11:15:00.0589 5600 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
11:15:00.0605 5600 mpio - ok
11:15:00.0620 5600 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
11:15:00.0620 5600 mpsdrv - ok
11:15:00.0667 5600 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
11:15:00.0667 5600 MpsSvc - ok
11:15:00.0683 5600 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
11:15:00.0683 5600 Mraid35x - ok
11:15:00.0714 5600 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
11:15:00.0714 5600 MRxDAV - ok
11:15:00.0730 5600 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:00.0730 5600 mrxsmb - ok
11:15:00.0761 5600 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:00.0761 5600 mrxsmb10 - ok
11:15:00.0792 5600 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:00.0792 5600 mrxsmb20 - ok
11:15:00.0808 5600 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
11:15:00.0808 5600 msahci - ok
11:15:00.0839 5600 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
11:15:00.0839 5600 msdsm - ok
11:15:00.0855 5600 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
11:15:00.0855 5600 MSDTC - ok
11:15:00.0886 5600 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
11:15:00.0902 5600 Msfs - ok
11:15:00.0917 5600 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
11:15:00.0917 5600 msisadrv - ok
11:15:00.0933 5600 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
11:15:00.0933 5600 MSiSCSI - ok
11:15:00.0948 5600 msiserver - ok
11:15:00.0964 5600 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
11:15:00.0964 5600 MSKSSRV - ok
11:15:00.0980 5600 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:00.0980 5600 MSPCLOCK - ok
11:15:01.0027 5600 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
11:15:01.0027 5600 MSPQM - ok
11:15:01.0058 5600 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
11:15:01.0058 5600 MsRPC - ok
11:15:01.0089 5600 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
11:15:01.0089 5600 mssmbios - ok
11:15:01.0105 5600 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
11:15:01.0105 5600 MSTEE - ok
11:15:01.0120 5600 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
11:15:01.0120 5600 Mup - ok
11:15:01.0152 5600 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
11:15:01.0152 5600 napagent - ok
11:15:01.0183 5600 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
11:15:01.0183 5600 NativeWifiP - ok
11:15:01.0245 5600 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
11:15:01.0245 5600 NDIS - ok
11:15:01.0277 5600 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:01.0277 5600 NdisTapi - ok
11:15:01.0308 5600 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
11:15:01.0308 5600 Ndisuio - ok
11:15:01.0323 5600 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
11:15:01.0323 5600 NdisWan - ok
11:15:01.0355 5600 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
11:15:01.0355 5600 NDProxy - ok
11:15:01.0386 5600 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
11:15:01.0386 5600 NetBIOS - ok
11:15:01.0417 5600 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
11:15:01.0417 5600 netbt - ok
11:15:01.0433 5600 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:15:01.0433 5600 Netlogon - ok
11:15:01.0464 5600 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
11:15:01.0480 5600 Netman - ok
11:15:01.0511 5600 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
11:15:01.0511 5600 netprofm - ok
11:15:01.0542 5600 netr73 (757f999aa72b55780ee810d4cd1bdd47) C:\Windows\system32\DRIVERS\WUSB54GCx86.sys
11:15:01.0542 5600 netr73 - ok
11:15:01.0605 5600 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:15:01.0605 5600 NetTcpPortSharing - ok
11:15:01.0636 5600 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
11:15:01.0636 5600 nfrd960 - ok
11:15:01.0667 5600 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
11:15:01.0667 5600 NlaSvc - ok
11:15:01.0683 5600 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
11:15:01.0683 5600 Npfs - ok
11:15:01.0714 5600 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
11:15:01.0714 5600 nsi - ok
11:15:01.0730 5600 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
11:15:01.0730 5600 nsiproxy - ok
11:15:01.0792 5600 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
11:15:01.0792 5600 Ntfs - ok
11:15:01.0808 5600 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
11:15:01.0808 5600 ntrigdigi - ok
11:15:01.0823 5600 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
11:15:01.0823 5600 Null - ok
11:15:01.0886 5600 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
11:15:01.0902 5600 NVENETFD - ok
11:15:02.0417 5600 nvlddmkm (73a70f1d89c942eedd99a3f10459b051) C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:15:02.0464 5600 nvlddmkm - ok
11:15:02.0558 5600 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
11:15:02.0558 5600 nvraid - ok
11:15:02.0573 5600 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
11:15:02.0573 5600 nvstor - ok
11:15:02.0605 5600 nvsvc (538a52e480c816d1990579a8faaffa20) C:\Windows\system32\nvvsvc.exe
11:15:02.0620 5600 nvsvc - ok
11:15:02.0636 5600 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
11:15:02.0636 5600 nv_agp - ok
11:15:02.0636 5600 NwlnkFlt - ok
11:15:02.0652 5600 NwlnkFwd - ok
11:15:02.0667 5600 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
11:15:02.0667 5600 ohci1394 - ok
11:15:02.0714 5600 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:02.0714 5600 p2pimsvc - ok
11:15:02.0730 5600 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:02.0730 5600 p2psvc - ok
11:15:02.0745 5600 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
11:15:02.0745 5600 Parport - ok
11:15:02.0777 5600 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
11:15:02.0777 5600 partmgr - ok
11:15:02.0792 5600 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
11:15:02.0792 5600 Parvdm - ok
11:15:02.0823 5600 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
11:15:02.0823 5600 PcaSvc - ok
11:15:02.0855 5600 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
11:15:02.0855 5600 pci - ok
11:15:02.0870 5600 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
11:15:02.0870 5600 pciide - ok
11:15:02.0902 5600 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
11:15:02.0902 5600 pcmcia - ok
11:15:02.0948 5600 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
11:15:02.0948 5600 PEAUTH - ok
11:15:03.0058 5600 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
11:15:03.0058 5600 pla - ok
11:15:03.0136 5600 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
11:15:03.0136 5600 PlugPlay - ok
11:15:03.0183 5600 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:03.0198 5600 PNRPAutoReg - ok
11:15:03.0198 5600 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:03.0214 5600 PNRPsvc - ok
11:15:03.0245 5600 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
11:15:03.0245 5600 PolicyAgent - ok
11:15:03.0277 5600 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
11:15:03.0277 5600 PptpMiniport - ok
11:15:03.0292 5600 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
11:15:03.0292 5600 Processor - ok
11:15:03.0339 5600 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
11:15:03.0339 5600 ProfSvc - ok
11:15:03.0370 5600 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:15:03.0370 5600 ProtectedStorage - ok
11:15:03.0386 5600 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
11:15:03.0386 5600 PSched - ok
11:15:03.0448 5600 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
11:15:03.0448 5600 ql2300 - ok
11:15:03.0480 5600 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
11:15:03.0480 5600 ql40xx - ok
11:15:03.0511 5600 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
11:15:03.0527 5600 QWAVE - ok
11:15:03.0542 5600 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
11:15:03.0558 5600 QWAVEdrv - ok
11:15:03.0573 5600 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
11:15:03.0573 5600 RasAcd - ok
11:15:03.0605 5600 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
11:15:03.0605 5600 RasAuto - ok
11:15:03.0652 5600 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:15:03.0652 5600 Rasl2tp - ok
11:15:03.0667 5600 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
11:15:03.0683 5600 RasMan - ok
11:15:03.0714 5600 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
11:15:03.0714 5600 RasPppoe - ok
11:15:03.0745 5600 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
11:15:03.0745 5600 RasSstp - ok
11:15:03.0777 5600 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
11:15:03.0777 5600 rdbss - ok
11:15:03.0792 5600 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:15:03.0808 5600 RDPCDD - ok
11:15:03.0839 5600 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
11:15:03.0839 5600 rdpdr - ok
11:15:03.0839 5600 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
11:15:03.0839 5600 RDPENCDD - ok
11:15:03.0870 5600 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
11:15:03.0886 5600 RDPWD - ok
11:15:03.0902 5600 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
11:15:03.0902 5600 RemoteAccess - ok
11:15:03.0933 5600 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
11:15:03.0948 5600 RemoteRegistry - ok
11:15:04.0027 5600 RichVideo (616f6e52cae254727a886ba8eda1beea) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
11:15:04.0027 5600 RichVideo - ok
11:15:04.0073 5600 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
11:15:04.0073 5600 RpcLocator - ok
11:15:04.0120 5600 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:15:04.0120 5600 RpcSs - ok
11:15:04.0152 5600 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
11:15:04.0152 5600 rspndr - ok
11:15:04.0183 5600 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:15:04.0183 5600 SamSs - ok
11:15:04.0198 5600 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
11:15:04.0198 5600 sbp2port - ok
11:15:04.0214 5600 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
11:15:04.0230 5600 SCardSvr - ok
11:15:04.0277 5600 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
11:15:04.0277 5600 Schedule - ok
11:15:04.0292 5600 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:15:04.0308 5600 SCPolicySvc - ok
11:15:04.0323 5600 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
11:15:04.0339 5600 SDRSVC - ok
11:15:04.0370 5600 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:15:04.0370 5600 secdrv - ok
11:15:04.0386 5600 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
11:15:04.0386 5600 seclogon - ok
11:15:04.0402 5600 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
11:15:04.0402 5600 SENS - ok
11:15:04.0433 5600 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
11:15:04.0433 5600 Serenum - ok
11:15:04.0464 5600 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
11:15:04.0464 5600 Serial - ok
11:15:04.0480 5600 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
11:15:04.0480 5600 sermouse - ok
11:15:04.0527 5600 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
11:15:04.0527 5600 SessionEnv - ok
11:15:04.0558 5600 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
11:15:04.0558 5600 sffdisk - ok
11:15:04.0573 5600 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
11:15:04.0573 5600 sffp_mmc - ok
11:15:04.0573 5600 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
11:15:04.0589 5600 sffp_sd - ok
11:15:04.0589 5600 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
11:15:04.0589 5600 sfloppy - ok
11:15:04.0620 5600 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
11:15:04.0620 5600 SharedAccess - ok
11:15:04.0652 5600 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
11:15:04.0652 5600 ShellHWDetection - ok
11:15:04.0667 5600 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
11:15:04.0667 5600 sisagp - ok
11:15:04.0698 5600 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
11:15:04.0698 5600 SiSRaid2 - ok
11:15:04.0714 5600 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
11:15:04.0714 5600 SiSRaid4 - ok
11:15:04.0761 5600 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files\Skype\Updater\Updater.exe
11:15:04.0777 5600 SkypeUpdate - ok
11:15:04.0933 5600 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
11:15:04.0948 5600 slsvc - ok
11:15:05.0042 5600 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
11:15:05.0042 5600 SLUINotify - ok
11:15:05.0089 5600 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
11:15:05.0089 5600 Smb - ok
11:15:05.0120 5600 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
11:15:05.0120 5600 SNMPTRAP - ok
11:15:05.0152 5600 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
11:15:05.0152 5600 spldr - ok
11:15:05.0167 5600 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
11:15:05.0167 5600 Spooler - ok
11:15:05.0245 5600 sprtsvc_ddoctorv2 (c3716ec0d36ad924b6888d794563e647) C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
11:15:05.0245 5600 sprtsvc_ddoctorv2 - ok
11:15:05.0277 5600 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
11:15:05.0277 5600 srv - ok
11:15:05.0308 5600 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
11:15:05.0308 5600 srv2 - ok
11:15:05.0339 5600 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
11:15:05.0339 5600 srvnet - ok
11:15:05.0355 5600 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
11:15:05.0355 5600 SSDPSRV - ok
11:15:05.0386 5600 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
11:15:05.0386 5600 SstpSvc - ok
11:15:05.0402 5600 Steam Client Service - ok
11:15:05.0464 5600 Stereo Service (8c37c35fb2d9692dda0eddbca58bfe18) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:15:05.0464 5600 Stereo Service - ok
11:15:05.0511 5600 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
11:15:05.0511 5600 stisvc - ok
11:15:05.0542 5600 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
11:15:05.0542 5600 swenum - ok
11:15:05.0573 5600 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
11:15:05.0589 5600 swprv - ok
11:15:05.0620 5600 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
11:15:05.0620 5600 Symc8xx - ok
11:15:05.0636 5600 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
11:15:05.0636 5600 Sym_hi - ok
11:15:05.0652 5600 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
11:15:05.0652 5600 Sym_u3 - ok
11:15:05.0698 5600 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
11:15:05.0714 5600 SysMain - ok
11:15:05.0745 5600 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
11:15:05.0745 5600 TabletInputService - ok
11:15:05.0777 5600 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
11:15:05.0792 5600 TapiSrv - ok
11:15:05.0808 5600 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
11:15:05.0808 5600 TBS - ok
11:15:05.0870 5600 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
11:15:05.0870 5600 Tcpip - ok
11:15:05.0886 5600 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
11:15:05.0886 5600 Tcpip6 - ok
11:15:05.0917 5600 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
11:15:05.0917 5600 tcpipreg - ok
11:15:05.0933 5600 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
11:15:05.0933 5600 TDPIPE - ok
11:15:05.0948 5600 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
11:15:05.0948 5600 TDTCP - ok
11:15:05.0980 5600 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
11:15:05.0980 5600 tdx - ok
11:15:06.0011 5600 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
11:15:06.0011 5600 TermDD - ok
11:15:06.0042 5600 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
11:15:06.0058 5600 TermService - ok
11:15:06.0089 5600 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
11:15:06.0089 5600 Themes - ok
11:15:06.0105 5600 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:15:06.0120 5600 THREADORDER - ok
11:15:06.0136 5600 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
11:15:06.0136 5600 TrkWks - ok
11:15:06.0183 5600 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
11:15:06.0183 5600 TrustedInstaller - ok
11:15:06.0198 5600 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:15:06.0198 5600 tssecsrv - ok
11:15:06.0230 5600 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
11:15:06.0230 5600 tunmp - ok
11:15:06.0245 5600 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
11:15:06.0245 5600 tunnel - ok
11:15:06.0277 5600 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
11:15:06.0277 5600 uagp35 - ok
11:15:06.0323 5600 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
11:15:06.0323 5600 udfs - ok
11:15:06.0355 5600 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
11:15:06.0355 5600 UI0Detect - ok
11:15:06.0386 5600 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
11:15:06.0386 5600 uliagpkx - ok
11:15:06.0402 5600 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
11:15:06.0402 5600 uliahci - ok
11:15:06.0448 5600 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
11:15:06.0448 5600 UlSata - ok
11:15:06.0464 5600 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
11:15:06.0464 5600 ulsata2 - ok
11:15:06.0495 5600 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
11:15:06.0495 5600 umbus - ok
11:15:06.0527 5600 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
11:15:06.0542 5600 upnphost - ok
11:15:06.0558 5600 USBAAPL (e8c1b9ebac65288e1b51e8a987d98af6) C:\Windows\system32\Drivers\usbaapl.sys
11:15:06.0558 5600 USBAAPL - ok
11:15:06.0589 5600 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
11:15:06.0589 5600 usbaudio - ok
11:15:06.0605 5600 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
11:15:06.0605 5600 usbccgp - ok
11:15:06.0636 5600 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
11:15:06.0636 5600 usbcir - ok
11:15:06.0667 5600 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
11:15:06.0667 5600 usbehci - ok
11:15:06.0698 5600 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
11:15:06.0698 5600 usbhub - ok
11:15:06.0714 5600 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
11:15:06.0714 5600 usbohci - ok
11:15:06.0745 5600 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
11:15:06.0745 5600 usbprint - ok
11:15:06.0761 5600 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:15:06.0761 5600 USBSTOR - ok
11:15:06.0777 5600 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
11:15:06.0777 5600 usbuhci - ok
11:15:06.0808 5600 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
11:15:06.0808 5600 UxSms - ok
11:15:06.0839 5600 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
11:15:06.0839 5600 vds - ok
11:15:06.0855 5600 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
11:15:06.0855 5600 vga - ok
11:15:06.0886 5600 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
11:15:06.0886 5600 VgaSave - ok
11:15:06.0902 5600 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
11:15:06.0902 5600 viaagp - ok
11:15:06.0917 5600 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
11:15:06.0917 5600 ViaC7 - ok
11:15:06.0933 5600 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
11:15:06.0933 5600 viaide - ok
11:15:06.0948 5600 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
11:15:06.0948 5600 volmgr - ok
11:15:06.0980 5600 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
11:15:06.0980 5600 volmgrx - ok
11:15:07.0011 5600 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
11:15:07.0011 5600 volsnap - ok
11:15:07.0042 5600 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
11:15:07.0042 5600 vsmraid - ok
11:15:07.0105 5600 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
11:15:07.0120 5600 VSS - ok
11:15:07.0152 5600 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
11:15:07.0152 5600 W32Time - ok
11:15:07.0183 5600 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
11:15:07.0183 5600 WacomPen - ok
11:15:07.0214 5600 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:15:07.0214 5600 Wanarp - ok
11:15:07.0214 5600 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:15:07.0214 5600 Wanarpv6 - ok
11:15:07.0245 5600 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
11:15:07.0261 5600 wcncsvc - ok
11:15:07.0292 5600 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
11:15:07.0292 5600 WcsPlugInService - ok
11:15:07.0292 5600 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
11:15:07.0308 5600 Wd - ok
11:15:07.0339 5600 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
11:15:07.0339 5600 Wdf01000 - ok
11:15:07.0370 5600 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:15:07.0370 5600 WdiServiceHost - ok
11:15:07.0370 5600 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:15:07.0370 5600 WdiSystemHost - ok
11:15:07.0402 5600 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
11:15:07.0448 5600 WebClient - ok
11:15:07.0480 5600 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
11:15:07.0480 5600 Wecsvc - ok
11:15:07.0511 5600 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
11:15:07.0511 5600 wercplsupport - ok
11:15:07.0542 5600 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
11:15:07.0542 5600 WerSvc - ok
11:15:07.0620 5600 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
11:15:07.0620 5600 WinDefend - ok
11:15:07.0636 5600 WinHttpAutoProxySvc - ok
11:15:07.0683 5600 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
11:15:07.0683 5600 Winmgmt - ok
11:15:07.0761 5600 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
11:15:07.0777 5600 WinRM - ok
11:15:07.0808 5600 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
11:15:07.0823 5600 Wlansvc - ok
11:15:07.0870 5600 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
11:15:07.0870 5600 WmiAcpi - ok
11:15:07.0886 5600 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
11:15:07.0902 5600 wmiApSrv - ok
11:15:07.0964 5600 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
11:15:07.0980 5600 WMPNetworkSvc - ok
11:15:08.0011 5600 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
11:15:08.0011 5600 WPCSvc - ok
11:15:08.0042 5600 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
11:15:08.0042 5600 WPDBusEnum - ok
11:15:08.0089 5600 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
11:15:08.0089 5600 WpdUsb - ok
11:15:08.0230 5600 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:15:08.0245 5600 WPFFontCache_v0400 - ok
11:15:08.0261 5600 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
11:15:08.0261 5600 ws2ifsl - ok
11:15:08.0277 5600 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
11:15:08.0292 5600 wscsvc - ok
11:15:08.0292 5600 WSearch - ok
11:15:08.0402 5600 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
11:15:08.0417 5600 wuauserv - ok
11:15:08.0495 5600 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:15:08.0495 5600 WUDFRd - ok
11:15:08.0527 5600 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
11:15:08.0527 5600 wudfsvc - ok
11:15:08.0542 5600 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
11:15:08.0698 5600 \Device\Harddisk0\DR0 - ok
11:15:08.0698 5600 Boot (0x1200) (626f9be40f52f0dbde6c47d46214a56a) \Device\Harddisk0\DR0\Partition0
11:15:08.0698 5600 \Device\Harddisk0\DR0\Partition0 - ok
11:15:08.0698 5600 ============================================================
11:15:08.0698 5600 Scan finished
11:15:08.0698 5600 ============================================================
11:15:08.0714 5592 Detected object count: 0
11:15:08.0714 5592 Actual detected object count: 0
11:15:32.0277 5696 ============================================================
11:15:32.0277 5696 Scan started
11:15:32.0277 5696 Mode: Manual;
11:15:32.0277 5696 ============================================================
11:15:32.0417 5696 0280371338221027mcinstcleanup - ok
11:15:32.0448 5696 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
11:15:32.0448 5696 ACPI - ok
11:15:32.0495 5696 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
11:15:32.0495 5696 adp94xx - ok
11:15:32.0542 5696 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
11:15:32.0542 5696 adpahci - ok
11:15:32.0558 5696 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
11:15:32.0558 5696 adpu160m - ok
11:15:32.0605 5696 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
11:15:32.0605 5696 adpu320 - ok
11:15:32.0636 5696 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
11:15:32.0636 5696 AeLookupSvc - ok
11:15:32.0667 5696 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
11:15:32.0667 5696 AFD - ok
11:15:32.0698 5696 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
11:15:32.0698 5696 agp440 - ok
11:15:32.0714 5696 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
11:15:32.0714 5696 aic78xx - ok
11:15:32.0902 5696 ALCXWDM (7997b6f02cbda0e31fa18cc85871b938) C:\Windows\system32\drivers\RTKVAC.SYS
11:15:32.0933 5696 ALCXWDM - ok
11:15:32.0995 5696 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
11:15:32.0995 5696 ALG - ok
11:15:33.0027 5696 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
11:15:33.0027 5696 aliide - ok
11:15:33.0042 5696 Alpham (7a4aedb2d0c25ab8b95683c2944891c6) C:\Windows\system32\DRIVERS\Alpham.sys
11:15:33.0042 5696 Alpham - ok
11:15:33.0073 5696 Alpham1 (acd2f2df292b6cc28f58095bba63a068) C:\Windows\system32\DRIVERS\Alpham1.sys
11:15:33.0073 5696 Alpham1 - ok
11:15:33.0073 5696 Alpham2 (f4fafb2e74b83a156408b1b02302799e) C:\Windows\system32\DRIVERS\Alpham2.sys
11:15:33.0073 5696 Alpham2 - ok
11:15:33.0089 5696 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
11:15:33.0089 5696 amdagp - ok
11:15:33.0120 5696 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
11:15:33.0120 5696 amdide - ok
11:15:33.0136 5696 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
11:15:33.0136 5696 AmdK7 - ok
11:15:33.0152 5696 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
11:15:33.0152 5696 AmdK8 - ok
11:15:33.0183 5696 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
11:15:33.0183 5696 Appinfo - ok
11:15:33.0214 5696 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
11:15:33.0214 5696 arc - ok
11:15:33.0230 5696 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
11:15:33.0230 5696 arcsas - ok
11:15:33.0261 5696 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
11:15:33.0261 5696 AsyncMac - ok
11:15:33.0277 5696 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
11:15:33.0277 5696 atapi - ok
11:15:33.0323 5696 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:15:33.0323 5696 AudioEndpointBuilder - ok
11:15:33.0339 5696 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:15:33.0339 5696 Audiosrv - ok
11:15:33.0355 5696 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
11:15:33.0355 5696 Beep - ok
11:15:33.0402 5696 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
11:15:33.0402 5696 BFE - ok
11:15:33.0464 5696 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
11:15:33.0464 5696 BITS - ok
11:15:33.0464 5696 blbdrive - ok
11:15:33.0495 5696 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
11:15:33.0495 5696 bowser - ok
11:15:33.0511 5696 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
11:15:33.0511 5696 BrFiltLo - ok
11:15:33.0527 5696 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
11:15:33.0527 5696 BrFiltUp - ok
11:15:33.0527 5696 BrlAPI - ok
11:15:33.0558 5696 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
11:15:33.0558 5696 Browser - ok
11:15:33.0573 5696 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
11:15:33.0573 5696 Brserid - ok
11:15:33.0589 5696 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
11:15:33.0589 5696 BrSerWdm - ok
11:15:33.0620 5696 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
11:15:33.0620 5696 BrUsbMdm - ok
11:15:33.0636 5696 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
11:15:33.0636 5696 BrUsbSer - ok
11:15:33.0652 5696 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
11:15:33.0652 5696 BTHMODEM - ok
11:15:33.0698 5696 catchme - ok
11:15:33.0730 5696 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
11:15:33.0730 5696 cdfs - ok
11:15:33.0745 5696 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
11:15:33.0745 5696 cdrom - ok
11:15:33.0777 5696 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:15:33.0777 5696 CertPropSvc - ok
11:15:33.0792 5696 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
11:15:33.0792 5696 circlass - ok
11:15:33.0823 5696 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
11:15:33.0839 5696 CLFS - ok
11:15:33.0886 5696 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:15:33.0886 5696 clr_optimization_v2.0.50727_32 - ok
11:15:33.0948 5696 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:15:33.0948 5696 clr_optimization_v4.0.30319_32 - ok
11:15:33.0948 5696 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
11:15:33.0948 5696 cmdide - ok
11:15:33.0964 5696 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
11:15:33.0964 5696 Compbatt - ok
11:15:33.0964 5696 COMSysApp - ok
11:15:33.0980 5696 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
11:15:33.0980 5696 crcdisk - ok
11:15:34.0011 5696 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
11:15:34.0011 5696 Crusoe - ok
11:15:34.0042 5696 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
11:15:34.0042 5696 CryptSvc - ok
11:15:34.0089 5696 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:15:34.0089 5696 DcomLaunch - ok
11:15:34.0120 5696 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
11:15:34.0120 5696 DfsC - ok
11:15:34.0245 5696 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
11:15:34.0245 5696 DFSR - ok
11:15:34.0355 5696 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
11:15:34.0355 5696 Dhcp - ok
11:15:34.0386 5696 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
11:15:34.0386 5696 disk - ok
11:15:34.0402 5696 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
11:15:34.0402 5696 Dnscache - ok
11:15:34.0433 5696 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
11:15:34.0433 5696 dot3svc - ok
11:15:34.0464 5696 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
11:15:34.0464 5696 DPS - ok
11:15:34.0480 5696 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
11:15:34.0480 5696 drmkaud - ok
11:15:34.0527 5696 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
11:15:34.0542 5696 DXGKrnl - ok
11:15:34.0573 5696 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
11:15:34.0573 5696 E1G60 - ok
11:15:34.0605 5696 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
11:15:34.0605 5696 EapHost - ok
11:15:34.0636 5696 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
11:15:34.0636 5696 Ecache - ok
11:15:34.0667 5696 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
11:15:34.0667 5696 elxstor - ok
11:15:34.0714 5696 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
11:15:34.0714 5696 EMDMgmt - ok
11:15:34.0777 5696 ENTECH (fd9fc82f134b1c91004ffc76a5ae494b) C:\Windows\system32\DRIVERS\ENTECH.sys
11:15:34.0777 5696 ENTECH - ok
11:15:34.0808 5696 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
11:15:34.0808 5696 EventSystem - ok
11:15:34.0839 5696 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
11:15:34.0855 5696 exfat - ok
11:15:34.0870 5696 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
11:15:34.0870 5696 fastfat - ok
11:15:34.0902 5696 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
11:15:34.0902 5696 fdc - ok
11:15:34.0917 5696 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
11:15:34.0917 5696 fdPHost - ok
11:15:34.0948 5696 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
11:15:34.0948 5696 FDResPub - ok
11:15:34.0964 5696 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
11:15:34.0964 5696 FileInfo - ok
11:15:34.0995 5696 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
11:15:34.0995 5696 Filetrace - ok
11:15:34.0995 5696 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
11:15:35.0011 5696 flpydisk - ok
11:15:35.0027 5696 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
11:15:35.0027 5696 FltMgr - ok
11:15:35.0089 5696 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
11:15:35.0089 5696 FontCache - ok
11:15:35.0167 5696 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:15:35.0167 5696 FontCache3.0.0.0 - ok
11:15:35.0198 5696 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
11:15:35.0198 5696 Fs_Rec - ok
11:15:35.0214 5696 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
11:15:35.0214 5696 gagp30kx - ok
11:15:35.0261 5696 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\Windows\system32\Drivers\GEARAspiWDM.sys
11:15:35.0261 5696 GEARAspiWDM - ok
11:15:35.0308 5696 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
11:15:35.0308 5696 gpsvc - ok
11:15:35.0370 5696 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:15:35.0370 5696 gusvc - ok
11:15:35.0402 5696 hcw72ADFilter (da1f19058c5420959cc59888f4e608eb) C:\Windows\system32\DRIVERS\hcw72ADFilter.sys
11:15:35.0402 5696 hcw72ADFilter - ok
11:15:35.0480 5696 hcw72ATV (6ca0bd5e8a841145fec608565c3a1c80) C:\Windows\system32\DRIVERS\hcw72ATV.sys
11:15:35.0480 5696 hcw72ATV - ok
11:15:35.0558 5696 hcw72DTV (2c1571c8a0bc1101081631dbf4efcf1e) C:\Windows\system32\DRIVERS\hcw72DTV.sys
11:15:35.0573 5696 hcw72DTV - ok
11:15:35.0605 5696 HDAudBus (5fd053f305b77ebe97f284b20d89dc1c) C:\Windows\system32\drivers\hdaudbus.sys
11:15:35.0605 5696 HDAudBus - ok
11:15:35.0620 5696 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
11:15:35.0620 5696 HidBth - ok
11:15:35.0636 5696 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
11:15:35.0636 5696 HidIr - ok
11:15:35.0667 5696 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
11:15:35.0667 5696 hidserv - ok
11:15:35.0683 5696 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
11:15:35.0683 5696 HidUsb - ok
11:15:35.0714 5696 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
11:15:35.0714 5696 hkmsvc - ok
11:15:35.0730 5696 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
11:15:35.0730 5696 HpCISSs - ok
11:15:35.0777 5696 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
11:15:35.0777 5696 HTTP - ok
11:15:35.0792 5696 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
11:15:35.0792 5696 i2omp - ok
11:15:35.0808 5696 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
11:15:35.0808 5696 i8042prt - ok
11:15:35.0839 5696 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
11:15:35.0839 5696 iaStorV - ok
11:15:35.0902 5696 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:15:35.0902 5696 idsvc - ok
11:15:35.0917 5696 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
11:15:35.0917 5696 iirsp - ok
11:15:35.0964 5696 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
11:15:35.0980 5696 IKEEXT - ok
11:15:35.0995 5696 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
11:15:35.0995 5696 intelide - ok
11:15:36.0011 5696 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
11:15:36.0011 5696 intelppm - ok
11:15:36.0042 5696 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
11:15:36.0042 5696 IPBusEnum - ok
11:15:36.0058 5696 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:36.0058 5696 IpFilterDriver - ok
11:15:36.0089 5696 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
11:15:36.0105 5696 iphlpsvc - ok
11:15:36.0105 5696 IpInIp - ok
11:15:36.0120 5696 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
11:15:36.0120 5696 IPMIDRV - ok
11:15:36.0152 5696 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
11:15:36.0152 5696 IPNAT - ok
11:15:36.0167 5696 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
11:15:36.0167 5696 IRENUM - ok
11:15:36.0183 5696 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
11:15:36.0198 5696 isapnp - ok
11:15:36.0214 5696 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
11:15:36.0230 5696 iScsiPrt - ok
11:15:36.0245 5696 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
11:15:36.0245 5696 iteatapi - ok
11:15:36.0245 5696 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
11:15:36.0245 5696 iteraid - ok
11:15:36.0277 5696 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
11:15:36.0277 5696 kbdclass - ok
11:15:36.0292 5696 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
11:15:36.0292 5696 kbdhid - ok
11:15:36.0323 5696 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:15:36.0323 5696 KeyIso - ok
11:15:36.0339 5696 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
11:15:36.0355 5696 KSecDD - ok
11:15:36.0402 5696 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
11:15:36.0402 5696 KtmRm - ok
11:15:36.0433 5696 L8042Kbd (d1968dea7baff4a917858c384339cec8) C:\Windows\system32\DRIVERS\L8042Kbd.sys
11:15:36.0433 5696 L8042Kbd - ok
11:15:36.0448 5696 L8042mou (d6fc755ff505d99e6cc73e83492310df) C:\Windows\system32\DRIVERS\L8042mou.Sys
11:15:36.0448 5696 L8042mou - ok
11:15:36.0480 5696 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
11:15:36.0480 5696 LanmanServer - ok
11:15:36.0511 5696 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
11:15:36.0511 5696 LanmanWorkstation - ok
11:15:36.0573 5696 LBTServ (a0f7dc0080e4f97dc97de08b699e231b) C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
11:15:36.0573 5696 LBTServ - ok
11:15:36.0620 5696 LHidFilt (c91206ca84684057118265e8377c77b6) C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:15:36.0620 5696 LHidFilt - ok
11:15:36.0636 5696 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
11:15:36.0636 5696 lltdio - ok
11:15:36.0667 5696 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
11:15:36.0667 5696 lltdsvc - ok
11:15:36.0698 5696 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
11:15:36.0698 5696 lmhosts - ok
11:15:36.0730 5696 LMouFilt (9f03720fa5e6d14cd4dfea610f2c1a7c) C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:15:36.0730 5696 LMouFilt - ok
11:15:36.0745 5696 LMouKE (c149bdad13194df16ea33f9f601ed7bf) C:\Windows\system32\DRIVERS\LMouKE.Sys
11:15:36.0745 5696 LMouKE - ok
11:15:36.0777 5696 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
11:15:36.0777 5696 LSI_FC - ok
11:15:36.0792 5696 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
11:15:36.0792 5696 LSI_SAS - ok
11:15:36.0808 5696 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
11:15:36.0808 5696 LSI_SCSI - ok
11:15:36.0839 5696 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
11:15:36.0839 5696 luafv - ok
11:15:36.0855 5696 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
11:15:36.0855 5696 megasas - ok
11:15:36.0870 5696 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:15:36.0870 5696 MMCSS - ok
11:15:36.0886 5696 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
11:15:36.0902 5696 Modem - ok
11:15:36.0917 5696 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
11:15:36.0917 5696 monitor - ok
11:15:36.0948 5696 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
11:15:36.0948 5696 mouclass - ok
11:15:36.0948 5696 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
11:15:36.0948 5696 mouhid - ok
11:15:36.0964 5696 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
11:15:36.0964 5696 MountMgr - ok
11:15:36.0980 5696 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
11:15:36.0980 5696 mpio - ok
11:15:37.0011 5696 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
11:15:37.0011 5696 mpsdrv - ok
11:15:37.0058 5696 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
11:15:37.0058 5696 MpsSvc - ok
11:15:37.0073 5696 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
11:15:37.0073 5696 Mraid35x - ok
11:15:37.0105 5696 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
11:15:37.0105 5696 MRxDAV - ok
11:15:37.0120 5696 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:37.0136 5696 mrxsmb - ok
11:15:37.0152 5696 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:37.0152 5696 mrxsmb10 - ok
11:15:37.0183 5696 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:37.0183 5696 mrxsmb20 - ok
11:15:37.0198 5696 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
11:15:37.0198 5696 msahci - ok
11:15:37.0230 5696 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
11:15:37.0230 5696 msdsm - ok
11:15:37.0261 5696 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
11:15:37.0261 5696 MSDTC - ok
11:15:37.0292 5696 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
11:15:37.0292 5696 Msfs - ok
11:15:37.0308 5696 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
11:15:37.0308 5696 msisadrv - ok
11:15:37.0339 5696 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
11:15:37.0339 5696 MSiSCSI - ok
11:15:37.0339 5696 msiserver - ok
11:15:37.0370 5696 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
11:15:37.0370 5696 MSKSSRV - ok
11:15:37.0386 5696 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:37.0386 5696 MSPCLOCK - ok
11:15:37.0402 5696 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
11:15:37.0402 5696 MSPQM - ok
11:15:37.0433 5696 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
11:15:37.0433 5696 MsRPC - ok
11:15:37.0464 5696 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
11:15:37.0480 5696 mssmbios - ok
11:15:37.0480 5696 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
11:15:37.0480 5696 MSTEE - ok
11:15:37.0495 5696 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
11:15:37.0495 5696 Mup - ok
11:15:37.0527 5696 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
11:15:37.0527 5696 napagent - ok
11:15:37.0558 5696 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
11:15:37.0558 5696 NativeWifiP - ok
11:15:37.0620 5696 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
11:15:37.0620 5696 NDIS - ok
11:15:37.0652 5696 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:37.0652 5696 NdisTapi - ok
11:15:37.0683 5696 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
11:15:37.0683 5696 Ndisuio - ok
11:15:37.0714 5696 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
11:15:37.0714 5696 NdisWan - ok
11:15:37.0730 5696 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
11:15:37.0730 5696 NDProxy - ok
11:15:37.0761 5696 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
11:15:37.0761 5696 NetBIOS - ok
11:15:37.0792 5696 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
11:15:37.0792 5696 netbt - ok
11:15:37.0808 5696 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:15:37.0808 5696 Netlogon - ok
11:15:37.0839 5696 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
11:15:37.0855 5696 Netman - ok
11:15:37.0886 5696 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
11:15:37.0886 5696 netprofm - ok
11:15:37.0917 5696 netr73 (757f999aa72b55780ee810d4cd1bdd47) C:\Windows\system32\DRIVERS\WUSB54GCx86.sys
11:15:37.0917 5696 netr73 - ok
11:15:37.0980 5696 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:15:37.0980 5696 NetTcpPortSharing - ok
11:15:38.0011 5696 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
11:15:38.0011 5696 nfrd960 - ok
11:15:38.0042 5696 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
11:15:38.0042 5696 NlaSvc - ok
11:15:38.0058 5696 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
11:15:38.0058 5696 Npfs - ok
11:15:38.0089 5696 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
11:15:38.0089 5696 nsi - ok
11:15:38.0105 5696 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
11:15:38.0105 5696 nsiproxy - ok
11:15:38.0167 5696 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
11:15:38.0183 5696 Ntfs - ok
11:15:38.0198 5696 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
11:15:38.0198 5696 ntrigdigi - ok
11:15:38.0214 5696 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
11:15:38.0214 5696 Null - ok
11:15:38.0277 5696 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
11:15:38.0277 5696 NVENETFD - ok
11:15:38.0777 5696 nvlddmkm (73a70f1d89c942eedd99a3f10459b051) C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:15:38.0839 5696 nvlddmkm - ok
11:15:38.0933 5696 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
11:15:38.0933 5696 nvraid - ok
11:15:38.0933 5696 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
11:15:38.0933 5696 nvstor - ok
11:15:38.0980 5696 nvsvc (538a52e480c816d1990579a8faaffa20) C:\Windows\system32\nvvsvc.exe
11:15:38.0995 5696 nvsvc - ok
11:15:39.0011 5696 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
11:15:39.0011 5696 nv_agp - ok
11:15:39.0011 5696 NwlnkFlt - ok
11:15:39.0027 5696 NwlnkFwd - ok
11:15:39.0042 5696 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
11:15:39.0042 5696 ohci1394 - ok
11:15:39.0089 5696 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:39.0105 5696 p2pimsvc - ok
11:15:39.0105 5696 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:39.0120 5696 p2psvc - ok
11:15:39.0136 5696 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
11:15:39.0136 5696 Parport - ok
11:15:39.0167 5696 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
11:15:39.0167 5696 partmgr - ok
11:15:39.0183 5696 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
11:15:39.0183 5696 Parvdm - ok
11:15:39.0198 5696 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
11:15:39.0198 5696 PcaSvc - ok
11:15:39.0230 5696 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
11:15:39.0230 5696 pci - ok
11:15:39.0245 5696 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
11:15:39.0245 5696 pciide - ok
11:15:39.0277 5696 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
11:15:39.0277 5696 pcmcia - ok
11:15:39.0323 5696 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
11:15:39.0323 5696 PEAUTH - ok
11:15:39.0433 5696 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
11:15:39.0448 5696 pla - ok
11:15:39.0527 5696 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
11:15:39.0527 5696 PlugPlay - ok
11:15:39.0589 5696 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:39.0605 5696 PNRPAutoReg - ok
11:15:39.0605 5696 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:15:39.0620 5696 PNRPsvc - ok
11:15:39.0652 5696 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
11:15:39.0652 5696 PolicyAgent - ok
11:15:39.0667 5696 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
11:15:39.0667 5696 PptpMiniport - ok
11:15:39.0683 5696 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
11:15:39.0683 5696 Processor - ok
11:15:39.0730 5696 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
11:15:39.0730 5696 ProfSvc - ok
11:15:39.0745 5696 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:15:39.0761 5696 ProtectedStorage - ok
11:15:39.0777 5696 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
11:15:39.0777 5696 PSched - ok
11:15:39.0839 5696 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
11:15:39.0839 5696 ql2300 - ok
11:15:39.0870 5696 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
11:15:39.0870 5696 ql40xx - ok
11:15:39.0902 5696 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
11:15:39.0902 5696 QWAVE - ok
11:15:39.0933 5696 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
11:15:39.0948 5696 QWAVEdrv - ok
11:15:39.0964 5696 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
11:15:39.0964 5696 RasAcd - ok
11:15:39.0995 5696 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
11:15:39.0995 5696 RasAuto - ok
11:15:40.0011 5696 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:15:40.0011 5696 Rasl2tp - ok
11:15:40.0042 5696 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
11:15:40.0058 5696 RasMan - ok
11:15:40.0073 5696 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
11:15:40.0073 5696 RasPppoe - ok
11:15:40.0105 5696 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
11:15:40.0120 5696 RasSstp - ok
11:15:40.0136 5696 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
11:15:40.0136 5696 rdbss - ok
11:15:40.0167 5696 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:15:40.0167 5696 RDPCDD - ok
11:15:40.0198 5696 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
11:15:40.0198 5696 rdpdr - ok
11:15:40.0214 5696 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
11:15:40.0214 5696 RDPENCDD - ok
11:15:40.0245 5696 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
11:15:40.0245 5696 RDPWD - ok
11:15:40.0277 5696 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
11:15:40.0277 5696 RemoteAccess - ok
11:15:40.0308 5696 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
11:15:40.0308 5696 RemoteRegistry - ok
11:15:40.0386 5696 RichVideo (616f6e52cae254727a886ba8eda1beea) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
11:15:40.0402 5696 RichVideo - ok
11:15:40.0433 5696 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
11:15:40.0433 5696 RpcLocator - ok
11:15:40.0480 5696 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:15:40.0480 5696 RpcSs - ok
11:15:40.0511 5696 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
11:15:40.0511 5696 rspndr - ok
11:15:40.0542 5696 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:15:40.0542 5696 SamSs - ok
11:15:40.0558 5696 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
11:15:40.0558 5696 sbp2port - ok
11:15:40.0589 5696 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
11:15:40.0589 5696 SCardSvr - ok
11:15:40.0636 5696 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
11:15:40.0636 5696 Schedule - ok
11:15:40.0667 5696 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:15:40.0667 5696 SCPolicySvc - ok
11:15:40.0698 5696 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
11:15:40.0698 5696 SDRSVC - ok
11:15:40.0730 5696 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:15:40.0730 5696 secdrv - ok
11:15:40.0761 5696 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
11:15:40.0761 5696 seclogon - ok
11:15:40.0777 5696 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
11:15:40.0777 5696 SENS - ok
11:15:40.0808 5696 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
11:15:40.0808 5696 Serenum - ok
11:15:40.0823 5696 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
11:15:40.0823 5696 Serial - ok
11:15:40.0855 5696 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
11:15:40.0855 5696 sermouse - ok
11:15:40.0886 5696 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
11:15:40.0902 5696 SessionEnv - ok
11:15:40.0917 5696 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
11:15:40.0917 5696 sffdisk - ok
11:15:40.0917 5696 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
11:15:40.0917 5696 sffp_mmc - ok
11:15:40.0933 5696 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
11:15:40.0933 5696 sffp_sd - ok
11:15:40.0948 5696 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
11:15:40.0948 5696 sfloppy - ok
11:15:40.0980 5696 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
11:15:40.0980 5696 SharedAccess - ok
11:15:41.0011 5696 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
11:15:41.0011 5696 ShellHWDetection - ok
11:15:41.0027 5696 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
11:15:41.0027 5696 sisagp - ok
11:15:41.0042 5696 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
11:15:41.0042 5696 SiSRaid2 - ok
11:15:41.0058 5696 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
11:15:41.0073 5696 SiSRaid4 - ok
11:15:41.0105 5696 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files\Skype\Updater\Updater.exe
11:15:41.0120 5696 SkypeUpdate - ok
11:15:41.0292 5696 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
11:15:41.0308 5696 slsvc - ok
11:15:41.0402 5696 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
11:15:41.0402 5696 SLUINotify - ok
11:15:41.0433 5696 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
11:15:41.0433 5696 Smb - ok
11:15:41.0464 5696 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
11:15:41.0464 5696 SNMPTRAP - ok
11:15:41.0495 5696 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
11:15:41.0495 5696 spldr - ok
11:15:41.0527 5696 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
11:15:41.0527 5696 Spooler - ok
11:15:41.0605 5696 sprtsvc_ddoctorv2 (c3716ec0d36ad924b6888d794563e647) C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
11:15:41.0605 5696 sprtsvc_ddoctorv2 - ok
11:15:41.0636 5696 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
11:15:41.0636 5696 srv - ok
11:15:41.0683 5696 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
11:15:41.0683 5696 srv2 - ok
11:15:41.0698 5696 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
11:15:41.0714 5696 srvnet - ok
11:15:41.0730 5696 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
11:15:41.0745 5696 SSDPSRV - ok
11:15:41.0777 5696 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
11:15:41.0777 5696 SstpSvc - ok
11:15:41.0792 5696 Steam Client Service - ok
11:15:41.0855 5696 Stereo Service (8c37c35fb2d9692dda0eddbca58bfe18) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:15:41.0855 5696 Stereo Service - ok
11:15:41.0902 5696 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
11:15:41.0902 5696 stisvc - ok
11:15:41.0933 5696 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
11:15:41.0933 5696 swenum - ok
11:15:41.0964 5696 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
11:15:41.0980 5696 swprv - ok
11:15:42.0011 5696 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
11:15:42.0011 5696 Symc8xx - ok
11:15:42.0027 5696 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
11:15:42.0027 5696 Sym_hi - ok
11:15:42.0042 5696 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
11:15:42.0042 5696 Sym_u3 - ok
11:15:42.0089 5696 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
11:15:42.0105 5696 SysMain - ok
11:15:42.0136 5696 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
11:15:42.0136 5696 TabletInputService - ok
11:15:42.0167 5696 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
11:15:42.0183 5696 TapiSrv - ok
11:15:42.0198 5696 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
11:15:42.0198 5696 TBS - ok
11:15:42.0261 5696 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
11:15:42.0277 5696 Tcpip - ok
11:15:42.0277 5696 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
11:15:42.0292 5696 Tcpip6 - ok
11:15:42.0323 5696 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
11:15:42.0323 5696 tcpipreg - ok
11:15:42.0339 5696 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
11:15:42.0339 5696 TDPIPE - ok
11:15:42.0355 5696 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
11:15:42.0355 5696 TDTCP - ok
11:15:42.0370 5696 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
11:15:42.0370 5696 tdx - ok
11:15:42.0402 5696 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
11:15:42.0402 5696 TermDD - ok
11:15:42.0433 5696 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
11:15:42.0448 5696 TermService - ok
11:15:42.0480 5696 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
11:15:42.0480 5696 Themes - ok
11:15:42.0511 5696 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:15:42.0511 5696 THREADORDER - ok
11:15:42.0542 5696 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
11:15:42.0542 5696 TrkWks - ok
11:15:42.0589 5696 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
11:15:42.0589 5696 TrustedInstaller - ok
11:15:42.0605 5696 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:15:42.0620 5696 tssecsrv - ok
11:15:42.0636 5696 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
11:15:42.0636 5696 tunmp - ok
11:15:42.0652 5696 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
11:15:42.0652 5696 tunnel - ok
11:15:42.0683 5696 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
11:15:42.0698 5696 uagp35 - ok
11:15:42.0730 5696 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
11:15:42.0730 5696 udfs - ok
11:15:42.0761 5696 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
11:15:42.0761 5696 UI0Detect - ok
11:15:42.0792 5696 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
11:15:42.0792 5696 uliagpkx - ok
11:15:42.0808 5696 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
11:15:42.0808 5696 uliahci - ok
11:15:42.0855 5696 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
11:15:42.0855 5696 UlSata - ok
11:15:42.0870 5696 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
11:15:42.0870 5696 ulsata2 - ok
11:15:42.0902 5696 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
11:15:42.0902 5696 umbus - ok
11:15:42.0933 5696 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
11:15:42.0948 5696 upnphost - ok
11:15:42.0964 5696 USBAAPL (e8c1b9ebac65288e1b51e8a987d98af6) C:\Windows\system32\Drivers\usbaapl.sys
11:15:42.0964 5696 USBAAPL - ok
11:15:42.0995 5696 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
11:15:42.0995 5696 usbaudio - ok
11:15:43.0027 5696 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
11:15:43.0027 5696 usbccgp - ok
11:15:43.0042 5696 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
11:15:43.0042 5696 usbcir - ok
11:15:43.0073 5696 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
11:15:43.0073 5696 usbehci - ok
11:15:43.0105 5696 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
11:15:43.0105 5696 usbhub - ok
11:15:43.0120 5696 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
11:15:43.0120 5696 usbohci - ok
11:15:43.0152 5696 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
11:15:43.0152 5696 usbprint - ok
11:15:43.0167 5696 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:15:43.0167 5696 USBSTOR - ok
11:15:43.0183 5696 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
11:15:43.0183 5696 usbuhci - ok
11:15:43.0214 5696 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
11:15:43.0214 5696 UxSms - ok
11:15:43.0261 5696 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
11:15:43.0261 5696 vds - ok
11:15:43.0277 5696 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
11:15:43.0277 5696 vga - ok
11:15:43.0292 5696 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
11:15:43.0292 5696 VgaSave - ok
11:15:43.0323 5696 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
11:15:43.0323 5696 viaagp - ok
11:15:43.0323 5696 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
11:15:43.0323 5696 ViaC7 - ok
11:15:43.0355 5696 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
11:15:43.0355 5696 viaide - ok
11:15:43.0370 5696 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
11:15:43.0370 5696 volmgr - ok
11:15:43.0402 5696 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
11:15:43.0402 5696 volmgrx - ok
11:15:43.0417 5696 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
11:15:43.0417 5696 volsnap - ok
11:15:43.0448 5696 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
11:15:43.0448 5696 vsmraid - ok
11:15:43.0527 5696 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
11:15:43.0527 5696 VSS - ok
11:15:43.0558 5696 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
11:15:43.0558 5696 W32Time - ok
11:15:43.0605 5696 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
11:15:43.0605 5696 WacomPen - ok
11:15:43.0636 5696 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:15:43.0636 5696 Wanarp - ok
11:15:43.0636 5696 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:15:43.0636 5696 Wanarpv6 - ok
11:15:43.0667 5696 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
11:15:43.0683 5696 wcncsvc - ok
11:15:43.0714 5696 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
11:15:43.0714 5696 WcsPlugInService - ok
11:15:43.0730 5696 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
11:15:43.0730 5696 Wd - ok
11:15:43.0777 5696 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
11:15:43.0777 5696 Wdf01000 - ok
11:15:43.0808 5696 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:15:43.0808 5696 WdiServiceHost - ok
11:15:43.0808 5696 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:15:43.0808 5696 WdiSystemHost - ok
11:15:43.0855 5696 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
11:15:43.0886 5696 WebClient - ok
11:15:43.0917 5696 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
11:15:43.0917 5696 Wecsvc - ok
11:15:43.0948 5696 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
11:15:43.0948 5696 wercplsupport - ok
11:15:43.0980 5696 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
11:15:43.0980 5696 WerSvc - ok
11:15:44.0073 5696 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
11:15:44.0073 5696 WinDefend - ok
11:15:44.0073 5696 WinHttpAutoProxySvc - ok
11:15:44.0136 5696 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
11:15:44.0136 5696 Winmgmt - ok
11:15:44.0214 5696 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
11:15:44.0214 5696 WinRM - ok
11:15:44.0261 5696 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
11:15:44.0261 5696 Wlansvc - ok
11:15:44.0308 5696 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
11:15:44.0308 5696 WmiAcpi - ok
11:15:44.0339 5696 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
11:15:44.0339 5696 wmiApSrv - ok
11:15:44.0402 5696 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
11:15:44.0417 5696 WMPNetworkSvc - ok
11:15:44.0448 5696 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
11:15:44.0448 5696 WPCSvc - ok
11:15:44.0480 5696 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
11:15:44.0480 5696 WPDBusEnum - ok
11:15:44.0527 5696 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
11:15:44.0527 5696 WpdUsb - ok
11:15:44.0652 5696 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:15:44.0667 5696 WPFFontCache_v0400 - ok
11:15:44.0698 5696 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
11:15:44.0698 5696 ws2ifsl - ok
11:15:44.0714 5696 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
11:15:44.0714 5696 wscsvc - ok
11:15:44.0714 5696 WSearch - ok
11:15:44.0823 5696 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
11:15:44.0839 5696 wuauserv - ok
11:15:44.0917 5696 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:15:44.0917 5696 WUDFRd - ok
11:15:44.0948 5696 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
11:15:44.0948 5696 wudfsvc - ok
11:15:44.0980 5696 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
11:15:45.0120 5696 \Device\Harddisk0\DR0 - ok
11:15:45.0120 5696 Boot (0x1200) (626f9be40f52f0dbde6c47d46214a56a) \Device\Harddisk0\DR0\Partition0
11:15:45.0136 5696 \Device\Harddisk0\DR0\Partition0 - ok
11:15:45.0136 5696 ============================================================
11:15:45.0136 5696 Scan finished
11:15:45.0136 5696 ============================================================
11:15:45.0136 5688 Detected object count: 0
11:15:45.0136 5688 Actual detected object count: 0

aswBMR Log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-28 11:18:06
-----------------------------
11:18:06.929 OS Version: Windows 6.0.6002 Service Pack 2
11:18:06.929 Number of processors: 2 586 0x4303
11:18:06.929 ComputerName: JOSHMAHONEY-PC UserName: JOSH MAHONEY
11:18:10.273 Initialize success
11:19:03.335 AVAST engine defs: 12052800
11:19:26.679 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP4T0L0-4
11:19:26.679 Disk 0 Vendor: WDC_WD2500JS-22NCB1 10.02E02 Size: 238475MB BusType: 3
11:19:26.679 Disk 0 MBR read successfully
11:19:26.694 Disk 0 MBR scan
11:19:26.694 Disk 0 Windows VISTA default MBR code
11:19:26.694 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 238473 MB offset 2048
11:19:26.710 Disk 0 scanning sectors +488394752
11:19:26.772 Disk 0 scanning C:\Windows\system32\drivers
11:19:35.272 Service scanning
11:19:54.897 Modules scanning
11:19:59.804 Disk 0 trace - called modules:
11:19:59.835 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
11:19:59.835 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85712ac8]
11:19:59.851 3 CLASSPNP.SYS[883a38b3] -> nt!IofCallDriver -> [0x8467d5c0]
11:19:59.851 5 acpi.sys[806166bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP4T0L0-4[0x85015660]
11:20:02.569 AVAST engine scan C:\Windows
11:20:05.835 AVAST engine scan C:\Windows\system32
11:22:04.351 File: C:\Windows\system32\uxqsnin.exe **INFECTED** Win32:Malware-gen
11:23:15.991 AVAST engine scan C:\Windows\system32\drivers
11:23:27.897 AVAST engine scan C:\Users\JOSH MAHONEY
11:36:25.147 AVAST engine scan C:\ProgramData
11:44:53.476 Scan finished successfully
11:46:58.538 Disk 0 MBR has been saved successfully to "C:\Users\JOSH MAHONEY\Desktop\MBR.dat"
11:46:58.538 The log file has been saved successfully to "C:\Users\JOSH MAHONEY\Desktop\aswMBR.txt"

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:23 PM

Posted 28 May 2012 - 02:18 PM

Greetings

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Open Notepad and copy/paste the text in the box into the window:

ClearJavaCache::

File::
C:\Windows\system32\uxqsnin.exe

Save it to your desktop as CFScript.txt

Refering to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 28 May 2012 - 02:45 PM

Here is the log. When I dragged the requested file to re-run ComboFix, it said a newer Combofix version was available, so I updated, then redragged the file onto Combofix and it restarted. I have not had anymore issues with the Google redirect and the computer seems to be working a lot better.



ComboFix 12-05-28.05 - JOSH MAHONEY 05/28/2012 12:32:13.2.2 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.2047.945 [GMT -7:00]
Running from: c:\users\JOSH MAHONEY\Desktop\ComboFix.exe
Command switches used :: c:\users\JOSH MAHONEY\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\uxqsnin.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\uxqsnin.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-04-28 to 2012-05-28 )))))))))))))))))))))))))))))))
.
.
2012-05-28 19:37 . 2012-05-28 19:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-28 16:56 . 2012-05-28 16:56 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D5E0934D-5F61-41EF-B6C2-EFADA3D890DD}\offreg.dll
2012-05-28 16:31 . 2012-05-15 08:43 6737808 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D5E0934D-5F61-41EF-B6C2-EFADA3D890DD}\mpengine.dll
2012-05-28 15:29 . 2012-05-28 15:29 -------- d-----w- C:\Whale's Vagina
2012-05-28 15:28 . 2012-05-28 15:28 -------- d-----w- C:\CDS PIcs
2012-05-28 01:55 . 2012-05-28 01:55 -------- d-----w- C:\TDSSKiller_Quarantine
2012-05-28 01:51 . 2012-05-28 01:51 -------- d-----w- c:\program files\7-zip
2012-05-26 02:08 . 2012-05-28 19:22 -------- d-----w- c:\users\JOSH MAHONEY\AppData\Roaming\Skype
2012-05-26 02:07 . 2012-05-26 02:07 -------- d-----w- c:\program files\Common Files\Skype
2012-05-26 02:07 . 2012-05-26 02:07 -------- d-----r- c:\program files\Skype
2012-05-26 02:07 . 2012-05-26 02:07 -------- d-----w- c:\programdata\Skype
2012-05-25 14:26 . 2012-05-25 14:26 -------- d-----w- c:\users\JOSH MAHONEY\AppData\Local\SWTOR
2012-05-25 03:49 . 2012-05-25 03:49 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-05-25 03:17 . 2012-02-29 15:11 5120 ----a-w- c:\windows\system32\wmi.dll
2012-05-25 03:17 . 2012-02-29 15:11 172032 ----a-w- c:\windows\system32\wintrust.dll
2012-05-25 03:17 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-05-25 03:17 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-05-25 03:01 . 2012-03-20 23:28 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-25 03:00 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-05-25 03:00 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2012-05-25 03:00 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-05-25 03:00 . 2012-03-01 14:46 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-05-25 03:00 . 2012-02-29 14:08 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-05-25 03:00 . 2012-02-29 13:41 1069056 ----a-w- c:\windows\system32\DWrite.dll
2012-05-25 03:00 . 2012-03-01 14:46 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-05-25 03:00 . 2012-02-29 13:44 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-05-25 02:58 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-05-25 02:58 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-05-25 02:54 . 2012-05-25 02:54 -------- d-----w- c:\program files\Common Files\BioWare
2012-05-25 02:54 . 2012-05-25 02:54 -------- d-----w- c:\program files\Electronic Arts
2012-05-25 02:46 . 2012-04-03 08:16 3550080 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-25 02:46 . 2012-04-02 13:36 2044928 ----a-w- c:\windows\system32\win32k.sys
2012-05-25 02:46 . 2012-04-03 08:16 3602816 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-25 02:46 . 2012-01-09 15:54 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-05-25 02:46 . 2012-01-09 13:58 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-05-23 23:51 . 2007-03-11 19:12 256000 ----a-w- c:\windows\system32\drivers\WUSB54GCx86.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-25 03:49 . 2011-06-09 01:04 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-04 22:56 . 2011-05-04 02:24 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"RunSpySweeperScheduleAtStartup"="c:\windows\system32\msfeedssync.exe" [2012-05-25 10752]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-11-06 68856]
"Desktop Software"="c:\program files\Common Files\SupportSoft\bin\bcont.exe" [2009-04-24 1025320]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-05-03 17355912]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-08-10 421888]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-09-08 47904]
"ddoctorv2"="c:\program files\Comcast\Desktop Doctor\bin\sprtcmd.exe" [2008-04-24 202560]
"Zboard"="c:\program files\Ideazon\ZEngine\Zboard.exe" [2009-06-05 57344]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 76304]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 76304]
"TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2011-09-14 273528]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
c:\users\JOSH MAHONEY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-2-14 24246216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-7-4 805392]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKLM\~\startupfolder\C:^Users^JOSH MAHONEY^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk]
path=c:\users\JOSH MAHONEY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
backup=c:\windows\pss\OpenOffice.org 3.2.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-01-12 03:16 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2010-09-08 23:31 47904 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrStsWnd]
2008-01-08 13:28 864256 ------w- c:\program files\Brownie\BrStsWnd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2006-12-06 05:55 54832 ----a-w- c:\program files\CyberLink\PowerDVD\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-08-10 11:15 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2006-11-23 22:10 56928 ------w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2007-11-06 22:26 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
R2 0280371338221027mcinstcleanup;McAfee Application Installer Cleanup (0280371338221027);c:\users\JOSHMA~1\AppData\Local\Temp\028037~1.EXE [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 13101925
*NewlyCreated* - ASWMBR
*NewlyCreated* - WS2IFSL
*Deregistered* - 13101925
*Deregistered* - aswMBR
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2012-05-27 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-11-06 13:25]
.
2012-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1949449671-3625677529-1182809245-1000Core.job
- c:\users\JOSH MAHONEY\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-03 00:17]
.
2012-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1949449671-3625677529-1182809245-1000UA.job
- c:\users\JOSH MAHONEY\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-03 00:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.msnbc.com/
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
Trusted Zone: teachtci.com\dev.qa
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-05-28 12:37
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1949449671-3625677529-1182809245-1000_Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):f4,78,6b,bb,0e,d7,65,9a,63,04,50,fd,e5,87,63,2c,71,e3,0e,72,9d,
10,7f,e6,41,f4,25,66,48,7e,15,61,74,e5,0e,30,fb,e5,31,ce,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1949449671-3625677529-1182809245-1000_Classes\CLSID\{d62339aa-89c6-44b4-ae60-4b1a6ff36de0}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000075
"Therad"=dword:00000010
.
Completion time: 2012-05-28 12:39:06
ComboFix-quarantined-files.txt 2012-05-28 19:39
ComboFix2.txt 2012-05-28 16:25
.
Pre-Run: 78,033,477,632 bytes free
Post-Run: 78,216,679,424 bytes free
.
- - End Of File - - 80F2ECAEBDE29DF47D6FE9D094CC7628

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:23 PM

Posted 28 May 2012 - 04:28 PM

Hello

I would like to see a report that combofix makes.

extra combofix report

  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box
C:\Qoobox\Add-Remove Programs.txt
  • click ok

copy and paste the report into this topic for me to review

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 28 May 2012 - 10:04 PM

Here is the report

7-zip v9.20
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
Adobe Flash Player 10 Plugin
Adobe Flash Player 11 ActiveX
Adobe Reader 8.1.2
Brother HL-2170W
CDDRV_Installer
Comcast Desktop Software (v1.2.0.9)
Comcast High-Speed Internet Install Wizard
Desktop Doctor
Dropbox
Google Talk (remove only)
Google Talk Plugin
Google Toolbar for Internet Explorer
Google Updater
Half-Life 2: Episode One
Half-Life 2: Episode Two
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Product Detection
Java Auto Updater
Java™ 6 Update 29
KhalInstallWrapper
Logitech SetPoint
Malwarebytes Anti-Malware version 1.61.0.1400
Media Player Codec Pack 3.9.2
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
MobileMe Control Panel
Move Networks Media Player for Internet Explorer
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NBA 2K10
Netflix Movie Viewer
NVIDIA 3D Vision Driver 266.58
NVIDIA Control Panel 266.58
NVIDIA Graphics Driver 266.58
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.10.0514
NVIDIA Stereoscopic 3D Driver
OpenOffice.org 3.2
Portal
PowerDVD
PVSonyDll
QuickTime
RealNetworks - Microsoft Visual C++ 2008 Runtime
Realtek AC'97 Audio
RealUpgrade 1.1
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Skype™ 5.9
Spybot - Search & Destroy
Star Wars: The Old Republic
Steam
System Requirements Lab
System Requirements Lab CYRI
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Ventrilo Client
WinRAR archiver
World of Warcraft
Yahoo! BrowserPlus 2.9.8
Z Engine

#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:23 PM

Posted 28 May 2012 - 10:18 PM

These logs are looking allot better. But we still have some work to do.

Please print out these instructions, or copy them to a Notepad file. It will make it easier for you to follow the instructions and complete all of the necessary steps..

uninstall some programs

NOTE** Because of the cleanup process some of the programs I have listed may not be in add/remove anymore this is fine just move to the next item on the list.

You can remove these programs using add/remove or you can use the free uninstaller from Revo (Revo does allot better of a job)

Programs to remove

Adobe Reader 8.1.2
Java™ 6 Update 29
[/list]


  • Please download and install Revo Uninstaller Free
  • Double click Revo Uninstaller to run it.
  • From the list of programs double click on The Program to remove
  • When prompted if you want to uninstall click Yes.
  • Be sure the Moderate option is selected then click Next.
  • The program will run, If prompted again click Yes
  • when the built-in uninstaller is finished click on Next.
  • Once the program has searched for leftovers click Next.
  • Check/tick the bolded items only on the list then click Delete
  • when prompted click on Yes and then on next.
  • put a check on any folders that are found and select delete
  • when prompted select yes then on next
  • Once done click Finish.
.

Update Adobe Reader

Recently there have been vulnerabilities detected in older versions of Adobe Reader. It is strongly suggested that you update to the current version.

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

If you don't like Adobe Reader (53 MB), you can download Foxit PDF Reader(7 MB) from here. It's a much smaller file to download and uses a lot less resources than Adobe Reader.

Note: When installing FoxitReader, be careful not to install anything to do with AskBar.
[/list]

Install Java:

Please go here to install Java

  • click on the Free Java Download Button
  • click on Agree and start Free download
  • click on Run
  • click on run again
  • click on install
  • when install is complete click on close

Clean Out Temp Files

  • This small application you may want to keep and use once a week to keep the computer clean.

    Download CCleaner from here http://www.ccleaner.com/

  • Run the installer to install the application.
  • When it gives you the option to install Yahoo toolbar uncheck the box next to it.
  • Run CCleaner. (make sure under Windows tab all the boxes of Internet Explorer and Windows explorer are checked. Under System check Empty Recycle Bin and Temporary Files. Under Application tab all the boxes should be checked).
  • Click Run Cleaner.
  • Close CCleaner.

: Malwarebytes' Anti-Malware :

  • I would like you to rerun MBAM
  • Double-click mbam icon
  • go to the update tab at the top
  • click on check for updates
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is Checked (ticked) except items in the C:\System Volume Information folder and click on Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply
  • If you accidentally close it, the log file is saved here and will be named like this:
  • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.


Download HijackThis

If you have any problems running Hijackthis see NOTE** below (Host file not read, blank notepad ...)

  • Go Here to download HijackThis Installer
  • Save HijackThis Installer to your desktop.
  • Double-click on the HijackThis Installer icon on your desktop. (Vista and Win 7 right click and run as admin)
  • By default it will install to C:\Program Files\Trend Micro\HijackThis .
  • Click on Install.
  • It will create a HijackThis icon on the desktop.
  • Once installed it will launch Hijackthis.
  • Click on the Do a system scan and save a log file button. It will scan and the log should open in notepad.
  • Click on Edit > Select All then click on Edit > Copy to copy the entire contents of the log.
  • Come back here to this thread and Paste the log in your next reply.
  • DO NOT use the Analyze This button its findings are dangerous if misinterpreted.
  • DO NOT have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.

NOTE**
sometimes we have to run it like this To run HijackThis as an administrator, right-click HijackThis.exe
(located: C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe)<--32bit
(located: C:\Program Files(86)\Trend Micro\HiJackThis\HiJackThis.exe)<--64bit
and select to run as administrator

"information and logs"

  • In your next post I need the following

  • Log From MBAM
  • report from Hijackthis
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:23 PM

Posted 31 May 2012 - 01:29 AM

Greetings


I have not heard from you in a couple of days so I am coming by to check on you to see if you are having problems or you just need some more time.

Also to remind you that it is very important that we finish the process completely so as to not get reinfected. I will let you know when we are complete and I will ask to remove our tools




Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 31 May 2012 - 12:13 PM

I am working on this today. I will post the requested information soon.

#13 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 31 May 2012 - 01:04 PM

Here is the Malware Log. I was able to download the HijackThis and run it, but an error message came up that HijackThis could not look at all files. I've tried to run it as an administrator,but keep getting a message that HijackThis is already running. I cannot get back to the start scan & log screen again.I've tried to uninstall and reinstall, then start the program, but it is not getting to the start scan screen.

Other than that, the computer appears to be workingbetter, although a do get an error message on startup about a missing .dll file for Ideazon program. Also, a windows message keeps popping up about some programs being stopped from starting.

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.31.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
JOSH MAHONEY :: JOSHMAHONEY-PC [administrator]

5/31/2012 10:27:42 AM
mbam-log-2012-05-31 (10-27-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 189421
Time elapsed: 4 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#14 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 31 May 2012 - 01:21 PM

Here is the RunDLL error message that started to pop up at startup after the work we've done.

Error loading C:\Users JOSH Mahoney\App Data\Local\Kodak Gallery\Ideazon._inc\rejur.dll

The specified module could not be found.

#15 Slainte2008

Slainte2008
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 31 May 2012 - 01:27 PM

Ok,got the HijackThis to run as an administrator.Here is the log. Also,since I didn't say it earlier, I did run Revo and removed the old Adobe and Java as requested. I then downloaded and installed the newAdobe Reader and Java. I also ran the CCcleaner.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:23:31 AM, on 5/31/2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\Program Files\Ideazon\ZEngine\Zboard.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_ActiveX.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msnbc.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - (no file)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [ddoctorv2] "C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2
O4 - HKLM\..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [RunSpySweeperScheduleAtStartup] "C:\Windows\system32\msfeedssync.exe" /ScheduleSweep=User_Feed_Synchronization-{BD5EE5DC-3C01-4D97-B357-2133980CEE56}
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Desktop Software] "C:\Program Files\Common Files\SupportSoft\bin\bcont.exe" /ini "C:\Program Files\ComcastUI\Desktop Software\uinstaller.ini" /fromrun /starthidden
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Ideazon,_Inc] rundll32.exe "C:\Users\JOSH MAHONEY\AppData\Local\KodakGallery\Ideazon,_Inc\rejur.dll",DllRegisterServer
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: Dropbox.lnk = C:\Users\JOSH MAHONEY\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O9 - Extra button: iOpus iMacros - {0483894E-2422-45E0-8384-021AFF1AF3CD} - (no file)
O9 - Extra 'Tools' menuitem: iMacros Web Automation - {0483894E-2422-45E0-8384-021AFF1AF3CD} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dev.qa.teachtci.com
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: McAfee Application Installer Cleanup (0280371338221027) (0280371338221027mcinstcleanup) - Unknown owner - C:\Users\JOSHMA~1\AppData\Local\Temp\028037~1.EXE (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: BrlAPI - Unknown owner - C:\cygwin\bin\cygrunsrv.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SupportSoft Sprocket Service (ddoctorv2) (sprtsvc_ddoctorv2) - SupportSoft, Inc. - C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 8171 bytes




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users