Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Search Engine Redirect issue/virus?


  • Please log in to reply
7 replies to this topic

#1 gizmowesel

gizmowesel

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:38 AM

Posted 28 May 2012 - 09:18 PM

Hi, I seem to have some issue/virus that redirects my inquiry to an advertisement page anytime that I select a search result link. This happens with Google search consistently.
I am running Windows 7 x64 Professional with Windows Security Essentials and Malware Bytes anti-malware on the computer.
I have scanned the computer with both programs as well as SuperAntiSpyware free edition and they all report no infections.
I am at a loss on what to do next and could really use help.
Thanks in advance.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:38 AM

Posted 28 May 2012 - 11:28 PM

Hello, Are you on a router? Are other machines on it,if so are they redirecting?

Do you use Firefox

please to this next,


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 gizmowesel

gizmowesel
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:38 AM

Posted 29 May 2012 - 09:52 PM

Hi,
A couple of answers to your questions. I am on a linksys router, but other computers on the router are not redirecting. I am using Chrome, Firefox, and IE.
Here are the logs from TDSSKiller. It did not require a reboot. Following the TDSSKiller log is the log from ESET Online Scan.
I really appreciate your help.
Thanks.

---------------------------------------TDSSKiller Log

17:58:33.0494 7304 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
17:58:33.0792 7304 ============================================================
17:58:33.0793 7304 Current date / time: 2012/05/29 17:58:33.0792
17:58:33.0793 7304 SystemInfo:
17:58:33.0793 7304
17:58:33.0793 7304 OS Version: 6.1.7600 ServicePack: 0.0
17:58:33.0793 7304 Product type: Workstation
17:58:33.0793 7304 ComputerName: DAVE-PC
17:58:33.0794 7304 UserName: Dave
17:58:33.0794 7304 Windows directory: C:\Windows
17:58:33.0794 7304 System windows directory: C:\Windows
17:58:33.0794 7304 Running under WOW64
17:58:33.0794 7304 Processor architecture: Intel x64
17:58:33.0794 7304 Number of processors: 4
17:58:33.0794 7304 Page size: 0x1000
17:58:33.0794 7304 Boot type: Normal boot
17:58:33.0794 7304 ============================================================
17:58:41.0760 7304 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:58:41.0766 7304 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:58:41.0782 7304 ============================================================
17:58:41.0782 7304 \Device\Harddisk0\DR0:
17:58:41.0782 7304 MBR partitions:
17:58:41.0782 7304 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
17:58:41.0782 7304 \Device\Harddisk1\DR1:
17:58:41.0783 7304 MBR partitions:
17:58:41.0783 7304 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
17:58:41.0783 7304 ============================================================
17:58:41.0800 7304 C: <-> \Device\Harddisk1\DR1\Partition0
17:58:41.0825 7304 D: <-> \Device\Harddisk0\DR0\Partition0
17:58:41.0826 7304 ============================================================
17:58:41.0826 7304 Initialize success
17:58:41.0826 7304 ============================================================
17:58:50.0185 5484 ============================================================
17:58:50.0185 5484 Scan started
17:58:50.0185 5484 Mode: Manual; TDLFS;
17:58:50.0185 5484 ============================================================
17:58:54.0820 5484 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
17:58:54.0824 5484 !SASCORE - ok
17:58:54.0949 5484 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
17:58:54.0954 5484 1394ohci - ok
17:58:54.0994 5484 61883 (e0a8525a951addb4655bc2068566407d) C:\Windows\system32\DRIVERS\61883.sys
17:58:54.0998 5484 61883 - ok
17:58:55.0097 5484 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:58:55.0100 5484 ACDaemon - ok
17:58:55.0138 5484 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
17:58:55.0145 5484 ACPI - ok
17:58:55.0161 5484 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
17:58:55.0163 5484 AcpiPmi - ok
17:58:55.0193 5484 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:58:55.0204 5484 adp94xx - ok
17:58:55.0227 5484 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:58:55.0233 5484 adpahci - ok
17:58:55.0249 5484 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:58:55.0252 5484 adpu320 - ok
17:58:55.0274 5484 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:58:55.0276 5484 AeLookupSvc - ok
17:58:55.0320 5484 Afc (6ccd1135320109d6b219f1a6e04ad9f6) C:\Windows\syswow64\drivers\Afc.sys
17:58:55.0322 5484 Afc - ok
17:58:55.0363 5484 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
17:58:55.0369 5484 AFD - ok
17:58:55.0379 5484 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
17:58:55.0381 5484 agp440 - ok
17:58:55.0388 5484 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:58:55.0389 5484 ALG - ok
17:58:55.0393 5484 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
17:58:55.0394 5484 aliide - ok
17:58:55.0498 5484 Amazon Download Agent (ff6f0f6a2d72065ae4300426fa414693) C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
17:58:55.0507 5484 Amazon Download Agent - ok
17:58:55.0552 5484 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
17:58:55.0557 5484 AMD External Events Utility - ok
17:58:55.0565 5484 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
17:58:55.0567 5484 amdide - ok
17:58:55.0593 5484 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:58:55.0595 5484 AmdK8 - ok
17:58:55.0612 5484 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:58:55.0613 5484 AmdPPM - ok
17:58:55.0655 5484 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
17:58:55.0659 5484 amdsata - ok
17:58:55.0679 5484 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:58:55.0685 5484 amdsbs - ok
17:58:55.0693 5484 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
17:58:55.0695 5484 amdxata - ok
17:58:55.0731 5484 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
17:58:55.0732 5484 AppID - ok
17:58:55.0736 5484 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:58:55.0737 5484 AppIDSvc - ok
17:58:55.0745 5484 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
17:58:55.0746 5484 Appinfo - ok
17:58:55.0843 5484 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:58:55.0846 5484 Apple Mobile Device - ok
17:58:55.0891 5484 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
17:58:55.0896 5484 AppMgmt - ok
17:58:55.0910 5484 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:58:55.0913 5484 arc - ok
17:58:55.0930 5484 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:58:55.0932 5484 arcsas - ok
17:58:56.0006 5484 AsIO (8065a7659562005127673ac52898675f) C:\Windows\syswow64\drivers\AsIO.sys
17:58:56.0007 5484 AsIO - ok
17:58:56.0106 5484 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:58:56.0108 5484 aspnet_state - ok
17:58:56.0126 5484 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:58:56.0129 5484 AsyncMac - ok
17:58:56.0142 5484 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
17:58:56.0144 5484 atapi - ok
17:58:56.0183 5484 AtiHdmiService (38467ff83c2b4265d51f418812a91e3c) C:\Windows\system32\drivers\AtiHdmi.sys
17:58:56.0185 5484 AtiHdmiService - ok
17:58:56.0421 5484 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
17:58:56.0534 5484 atikmdag - ok
17:58:56.0593 5484 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
17:58:56.0594 5484 AtiPcie - ok
17:58:56.0640 5484 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
17:58:56.0647 5484 AudioEndpointBuilder - ok
17:58:56.0652 5484 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
17:58:56.0655 5484 AudioSrv - ok
17:58:56.0692 5484 Avc (16fabe84916623d0607e4a975544032c) C:\Windows\system32\DRIVERS\avc.sys
17:58:56.0693 5484 Avc - ok
17:58:56.0716 5484 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
17:58:56.0718 5484 AxInstSV - ok
17:58:56.0743 5484 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:58:56.0747 5484 b06bdrv - ok
17:58:56.0759 5484 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:58:56.0762 5484 b57nd60a - ok
17:58:56.0775 5484 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:58:56.0777 5484 BDESVC - ok
17:58:56.0786 5484 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:58:56.0787 5484 Beep - ok
17:58:56.0822 5484 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
17:58:56.0829 5484 BFE - ok
17:58:56.0871 5484 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
17:58:56.0879 5484 BITS - ok
17:58:56.0906 5484 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:58:56.0907 5484 blbdrive - ok
17:58:56.0985 5484 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:58:56.0994 5484 Bonjour Service - ok
17:58:57.0035 5484 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
17:58:57.0037 5484 bowser - ok
17:58:57.0043 5484 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:58:57.0045 5484 BrFiltLo - ok
17:58:57.0055 5484 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:58:57.0056 5484 BrFiltUp - ok
17:58:57.0078 5484 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
17:58:57.0080 5484 BridgeMP - ok
17:58:57.0099 5484 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
17:58:57.0101 5484 Browser - ok
17:58:57.0119 5484 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:58:57.0123 5484 Brserid - ok
17:58:57.0134 5484 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:58:57.0136 5484 BrSerWdm - ok
17:58:57.0140 5484 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:58:57.0141 5484 BrUsbMdm - ok
17:58:57.0145 5484 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:58:57.0146 5484 BrUsbSer - ok
17:58:57.0160 5484 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:58:57.0162 5484 BTHMODEM - ok
17:58:57.0180 5484 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:58:57.0182 5484 bthserv - ok
17:58:57.0202 5484 catchme - ok
17:58:57.0219 5484 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:58:57.0221 5484 cdfs - ok
17:58:57.0235 5484 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
17:58:57.0237 5484 cdrom - ok
17:58:57.0255 5484 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
17:58:57.0257 5484 CertPropSvc - ok
17:58:57.0267 5484 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:58:57.0268 5484 circlass - ok
17:58:57.0288 5484 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:58:57.0291 5484 CLFS - ok
17:58:57.0338 5484 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:58:57.0341 5484 clr_optimization_v2.0.50727_32 - ok
17:58:57.0358 5484 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:58:57.0360 5484 clr_optimization_v2.0.50727_64 - ok
17:58:57.0442 5484 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:58:57.0446 5484 clr_optimization_v4.0.30319_32 - ok
17:58:57.0486 5484 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:58:57.0489 5484 clr_optimization_v4.0.30319_64 - ok
17:58:57.0499 5484 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:58:57.0501 5484 CmBatt - ok
17:58:57.0510 5484 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
17:58:57.0512 5484 cmdide - ok
17:58:57.0557 5484 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
17:58:57.0562 5484 CNG - ok
17:58:57.0571 5484 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:58:57.0572 5484 Compbatt - ok
17:58:57.0610 5484 CompFilter64 (553aa50f4d8f80320b59c6566d385a2f) C:\Windows\system32\DRIVERS\lvbflt64.sys
17:58:57.0611 5484 CompFilter64 - ok
17:58:57.0629 5484 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:58:57.0630 5484 CompositeBus - ok
17:58:57.0637 5484 COMSysApp - ok
17:58:57.0643 5484 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:58:57.0644 5484 crcdisk - ok
17:58:57.0687 5484 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
17:58:57.0691 5484 CryptSvc - ok
17:58:57.0738 5484 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
17:58:57.0749 5484 CSC - ok
17:58:57.0786 5484 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
17:58:57.0794 5484 CscService - ok
17:58:57.0850 5484 dc3d (1ca90212a99db6975c344826d11055c9) C:\Windows\system32\DRIVERS\dc3d.sys
17:58:57.0853 5484 dc3d - ok
17:58:57.0902 5484 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
17:58:57.0915 5484 DcomLaunch - ok
17:58:57.0984 5484 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:58:57.0993 5484 defragsvc - ok
17:58:58.0044 5484 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
17:58:58.0047 5484 DfsC - ok
17:58:58.0070 5484 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
17:58:58.0078 5484 Dhcp - ok
17:58:58.0092 5484 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:58:58.0093 5484 discache - ok
17:58:58.0118 5484 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:58:58.0120 5484 Disk - ok
17:58:58.0160 5484 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
17:58:58.0162 5484 Dnscache - ok
17:58:58.0181 5484 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
17:58:58.0186 5484 dot3svc - ok
17:58:58.0202 5484 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
17:58:58.0205 5484 DPS - ok
17:58:58.0236 5484 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:58:58.0237 5484 drmkaud - ok
17:58:58.0293 5484 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
17:58:58.0305 5484 DXGKrnl - ok
17:58:58.0318 5484 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:58:58.0320 5484 EapHost - ok
17:58:58.0414 5484 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:58:58.0463 5484 ebdrv - ok
17:58:58.0546 5484 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
17:58:58.0550 5484 EFS - ok
17:58:58.0628 5484 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
17:58:58.0643 5484 ehRecvr - ok
17:58:58.0668 5484 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:58:58.0671 5484 ehSched - ok
17:58:58.0699 5484 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:58:58.0706 5484 elxstor - ok
17:58:58.0720 5484 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
17:58:58.0721 5484 ErrDev - ok
17:58:58.0746 5484 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:58:58.0752 5484 EventSystem - ok
17:58:58.0769 5484 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:58:58.0772 5484 exfat - ok
17:58:58.0784 5484 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:58:58.0787 5484 fastfat - ok
17:58:58.0818 5484 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
17:58:58.0827 5484 Fax - ok
17:58:58.0838 5484 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:58:58.0839 5484 fdc - ok
17:58:58.0850 5484 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:58:58.0851 5484 fdPHost - ok
17:58:58.0859 5484 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:58:58.0860 5484 FDResPub - ok
17:58:58.0867 5484 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:58:58.0868 5484 FileInfo - ok
17:58:58.0877 5484 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:58:58.0878 5484 Filetrace - ok
17:58:59.0009 5484 FLEXnet Licensing Service 64 (259dc094e2d3f08654c8fb73d8ecc0f5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
17:58:59.0097 5484 FLEXnet Licensing Service 64 - ok
17:58:59.0101 5484 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:58:59.0102 5484 flpydisk - ok
17:58:59.0128 5484 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
17:58:59.0131 5484 FltMgr - ok
17:58:59.0190 5484 FlyUsb (6cd6bb45bd3e0eef6ce496bf52854ff1) C:\Windows\system32\DRIVERS\FlyUsb.sys
17:58:59.0193 5484 FlyUsb - ok
17:58:59.0275 5484 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
17:58:59.0298 5484 FontCache - ok
17:58:59.0364 5484 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:58:59.0368 5484 FontCache3.0.0.0 - ok
17:58:59.0478 5484 FreeAgentGoNext Service (81b4a2c6c9bd17ffb6031a0a61c09764) C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
17:58:59.0483 5484 FreeAgentGoNext Service - ok
17:58:59.0520 5484 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:58:59.0523 5484 FsDepends - ok
17:58:59.0563 5484 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
17:58:59.0565 5484 Fs_Rec - ok
17:58:59.0622 5484 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:58:59.0627 5484 fvevol - ok
17:58:59.0688 5484 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:58:59.0691 5484 gagp30kx - ok
17:58:59.0733 5484 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:58:59.0736 5484 GEARAspiWDM - ok
17:58:59.0787 5484 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
17:58:59.0798 5484 gpsvc - ok
17:58:59.0880 5484 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:58:59.0883 5484 gupdate - ok
17:58:59.0903 5484 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:58:59.0906 5484 gupdatem - ok
17:58:59.0946 5484 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:58:59.0949 5484 gusvc - ok
17:58:59.0961 5484 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:58:59.0962 5484 hcw85cir - ok
17:58:59.0993 5484 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
17:58:59.0997 5484 HdAudAddService - ok
17:59:00.0019 5484 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:59:00.0021 5484 HDAudBus - ok
17:59:00.0027 5484 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:59:00.0028 5484 HidBatt - ok
17:59:00.0044 5484 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:59:00.0046 5484 HidBth - ok
17:59:00.0055 5484 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:59:00.0057 5484 HidIr - ok
17:59:00.0067 5484 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
17:59:00.0069 5484 hidserv - ok
17:59:00.0085 5484 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
17:59:00.0087 5484 HidUsb - ok
17:59:00.0097 5484 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
17:59:00.0099 5484 hkmsvc - ok
17:59:00.0117 5484 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
17:59:00.0121 5484 HomeGroupListener - ok
17:59:00.0140 5484 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
17:59:00.0144 5484 HomeGroupProvider - ok
17:59:00.0152 5484 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
17:59:00.0154 5484 HpSAMD - ok
17:59:00.0188 5484 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
17:59:00.0197 5484 HTTP - ok
17:59:00.0206 5484 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
17:59:00.0207 5484 hwpolicy - ok
17:59:00.0216 5484 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
17:59:00.0218 5484 i8042prt - ok
17:59:00.0257 5484 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
17:59:00.0262 5484 iaStorV - ok
17:59:00.0368 5484 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:59:00.0387 5484 idsvc - ok
17:59:00.0405 5484 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:59:00.0406 5484 iirsp - ok
17:59:00.0451 5484 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
17:59:00.0470 5484 IKEEXT - ok
17:59:00.0486 5484 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
17:59:00.0488 5484 intelide - ok
17:59:00.0499 5484 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:59:00.0501 5484 intelppm - ok
17:59:00.0524 5484 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:59:00.0527 5484 IPBusEnum - ok
17:59:00.0535 5484 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:59:00.0536 5484 IpFilterDriver - ok
17:59:00.0565 5484 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
17:59:00.0573 5484 iphlpsvc - ok
17:59:00.0585 5484 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:59:00.0587 5484 IPMIDRV - ok
17:59:00.0600 5484 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:59:00.0603 5484 IPNAT - ok
17:59:00.0703 5484 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
17:59:00.0720 5484 iPod Service - ok
17:59:00.0734 5484 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:59:00.0735 5484 IRENUM - ok
17:59:00.0745 5484 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
17:59:00.0747 5484 isapnp - ok
17:59:00.0758 5484 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
17:59:00.0762 5484 iScsiPrt - ok
17:59:00.0769 5484 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:59:00.0771 5484 kbdclass - ok
17:59:00.0784 5484 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
17:59:00.0785 5484 kbdhid - ok
17:59:00.0818 5484 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:59:00.0821 5484 KeyIso - ok
17:59:00.0845 5484 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
17:59:00.0846 5484 KSecDD - ok
17:59:00.0872 5484 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
17:59:00.0874 5484 KSecPkg - ok
17:59:00.0882 5484 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:59:00.0884 5484 ksthunk - ok
17:59:00.0912 5484 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:59:00.0919 5484 KtmRm - ok
17:59:00.0954 5484 L1E (b8e670d7ef61615fa03104552854fac9) C:\Windows\system32\DRIVERS\L1E62x64.sys
17:59:00.0956 5484 L1E - ok
17:59:00.0997 5484 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
17:59:01.0002 5484 LanmanServer - ok
17:59:01.0022 5484 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
17:59:01.0025 5484 LanmanWorkstation - ok
17:59:01.0130 5484 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
17:59:01.0135 5484 LBTServ - ok
17:59:01.0240 5484 LeapFrog Connect Device Service (549b88970b3cfd211a354a016edf766e) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
17:59:01.0270 5484 LeapFrog Connect Device Service - ok
17:59:01.0357 5484 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:59:01.0361 5484 LHidFilt - ok
17:59:01.0395 5484 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:59:01.0399 5484 lltdio - ok
17:59:01.0452 5484 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:59:01.0461 5484 lltdsvc - ok
17:59:01.0486 5484 lmab_device - ok
17:59:01.0504 5484 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:59:01.0507 5484 lmhosts - ok
17:59:01.0523 5484 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:59:01.0526 5484 LMouFilt - ok
17:59:01.0561 5484 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:59:01.0563 5484 LSI_FC - ok
17:59:01.0569 5484 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:59:01.0572 5484 LSI_SAS - ok
17:59:01.0589 5484 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:59:01.0591 5484 LSI_SAS2 - ok
17:59:01.0607 5484 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:59:01.0610 5484 LSI_SCSI - ok
17:59:01.0619 5484 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:59:01.0621 5484 luafv - ok
17:59:01.0669 5484 LVPr2M64 (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
17:59:01.0672 5484 LVPr2M64 - ok
17:59:01.0683 5484 LVPr2Mon (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
17:59:01.0684 5484 LVPr2Mon - ok
17:59:01.0785 5484 LVPrcS64 (9cd0dc863be5d40a762f7d84f11a8471) C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
17:59:01.0788 5484 LVPrcS64 - ok
17:59:01.0837 5484 LVRS64 (803085f59ec92b3827cc4d90fcbfd335) C:\Windows\system32\DRIVERS\lvrs64.sys
17:59:01.0845 5484 LVRS64 - ok
17:59:01.0985 5484 LVUVC64 (a8d7c97016e6b76ef472a4c7ab357ee3) C:\Windows\system32\DRIVERS\lvuvc64.sys
17:59:02.0040 5484 LVUVC64 - ok
17:59:02.0141 5484 lxdoCATSCustConnectService (741083526ba1c6217d7e664bb86cfa62) C:\Windows\system32\spool\DRIVERS\x64\3\\lxdoserv.exe
17:59:02.0147 5484 lxdoCATSCustConnectService - ok
17:59:02.0154 5484 lxdo_device - ok
17:59:02.0222 5484 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
17:59:02.0225 5484 McComponentHostService - ok
17:59:02.0254 5484 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
17:59:02.0257 5484 Mcx2Svc - ok
17:59:02.0280 5484 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:59:02.0282 5484 megasas - ok
17:59:02.0298 5484 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:59:02.0302 5484 MegaSR - ok
17:59:02.0327 5484 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:59:02.0329 5484 MMCSS - ok
17:59:02.0343 5484 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:59:02.0344 5484 Modem - ok
17:59:02.0390 5484 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:59:02.0391 5484 monitor - ok
17:59:02.0403 5484 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:59:02.0406 5484 mouclass - ok
17:59:02.0419 5484 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:59:02.0422 5484 mouhid - ok
17:59:02.0436 5484 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
17:59:02.0437 5484 mountmgr - ok
17:59:02.0502 5484 MozillaMaintenance (ceec1749f0563e7af27e062072d14d84) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:59:02.0505 5484 MozillaMaintenance - ok
17:59:02.0557 5484 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
17:59:02.0563 5484 MpFilter - ok
17:59:02.0584 5484 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
17:59:02.0590 5484 mpio - ok
17:59:02.0607 5484 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:59:02.0611 5484 mpsdrv - ok
17:59:02.0661 5484 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
17:59:02.0674 5484 MpsSvc - ok
17:59:02.0696 5484 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
17:59:02.0699 5484 MRxDAV - ok
17:59:02.0738 5484 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:59:02.0741 5484 mrxsmb - ok
17:59:02.0778 5484 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:59:02.0781 5484 mrxsmb10 - ok
17:59:02.0791 5484 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:59:02.0793 5484 mrxsmb20 - ok
17:59:02.0803 5484 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
17:59:02.0804 5484 msahci - ok
17:59:02.0820 5484 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
17:59:02.0823 5484 msdsm - ok
17:59:02.0847 5484 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:59:02.0850 5484 MSDTC - ok
17:59:02.0889 5484 MSDV (72949a24d37a20a54b3d4d3dadbb55e9) C:\Windows\system32\DRIVERS\msdv.sys
17:59:02.0891 5484 MSDV - ok
17:59:02.0898 5484 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:59:02.0899 5484 Msfs - ok
17:59:02.0912 5484 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:59:02.0913 5484 mshidkmdf - ok
17:59:02.0926 5484 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
17:59:02.0928 5484 msisadrv - ok
17:59:02.0954 5484 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:59:02.0957 5484 MSiSCSI - ok
17:59:02.0961 5484 msiserver - ok
17:59:02.0986 5484 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:59:02.0987 5484 MSKSSRV - ok
17:59:03.0021 5484 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:59:03.0022 5484 MsMpSvc - ok
17:59:03.0039 5484 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:59:03.0041 5484 MSPCLOCK - ok
17:59:03.0049 5484 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:59:03.0052 5484 MSPQM - ok
17:59:03.0075 5484 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
17:59:03.0079 5484 MsRPC - ok
17:59:03.0091 5484 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
17:59:03.0092 5484 mssmbios - ok
17:59:03.0095 5484 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:59:03.0096 5484 MSTEE - ok
17:59:03.0106 5484 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:59:03.0107 5484 MTConfig - ok
17:59:03.0149 5484 MTsensor (2219a3d695405e7ba2186ba6b9ede14a) C:\Windows\system32\DRIVERS\ASACPI.sys
17:59:03.0150 5484 MTsensor - ok
17:59:03.0174 5484 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:59:03.0176 5484 Mup - ok
17:59:03.0203 5484 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
17:59:03.0210 5484 napagent - ok
17:59:03.0237 5484 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:59:03.0242 5484 NativeWifiP - ok
17:59:03.0276 5484 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
17:59:03.0287 5484 NDIS - ok
17:59:03.0311 5484 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:59:03.0313 5484 NdisCap - ok
17:59:03.0331 5484 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:59:03.0333 5484 NdisTapi - ok
17:59:03.0342 5484 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
17:59:03.0344 5484 Ndisuio - ok
17:59:03.0359 5484 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:59:03.0363 5484 NdisWan - ok
17:59:03.0374 5484 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
17:59:03.0377 5484 NDProxy - ok
17:59:03.0386 5484 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:59:03.0387 5484 NetBIOS - ok
17:59:03.0400 5484 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
17:59:03.0403 5484 NetBT - ok
17:59:03.0441 5484 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:59:03.0443 5484 Netlogon - ok
17:59:03.0484 5484 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:59:03.0495 5484 Netman - ok
17:59:03.0586 5484 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:59:03.0590 5484 NetMsmqActivator - ok
17:59:03.0599 5484 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:59:03.0601 5484 NetPipeActivator - ok
17:59:03.0631 5484 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:59:03.0637 5484 netprofm - ok
17:59:03.0642 5484 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:59:03.0643 5484 NetTcpActivator - ok
17:59:03.0647 5484 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:59:03.0649 5484 NetTcpPortSharing - ok
17:59:03.0685 5484 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:59:03.0687 5484 nfrd960 - ok
17:59:03.0757 5484 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:59:03.0761 5484 NisDrv - ok
17:59:03.0809 5484 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
17:59:03.0815 5484 NisSrv - ok
17:59:03.0919 5484 NitroReaderDriverReadSpool2 (0734398d3d99986bb8006e9bb5eab1e5) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
17:59:03.0924 5484 NitroReaderDriverReadSpool2 - ok
17:59:03.0942 5484 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
17:59:03.0947 5484 NlaSvc - ok
17:59:04.0065 5484 NMIndexingService (a9b3b624d39ce440ba71cad88fa35f4c) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
17:59:04.0071 5484 NMIndexingService - ok
17:59:04.0113 5484 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:59:04.0116 5484 Npfs - ok
17:59:04.0133 5484 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:59:04.0138 5484 nsi - ok
17:59:04.0146 5484 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:59:04.0147 5484 nsiproxy - ok
17:59:04.0252 5484 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
17:59:04.0281 5484 Ntfs - ok
17:59:04.0329 5484 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:59:04.0331 5484 Null - ok
17:59:04.0371 5484 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
17:59:04.0374 5484 nvraid - ok
17:59:04.0400 5484 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
17:59:04.0403 5484 nvstor - ok
17:59:04.0413 5484 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
17:59:04.0415 5484 nv_agp - ok
17:59:04.0501 5484 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:59:04.0511 5484 odserv - ok
17:59:04.0528 5484 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
17:59:04.0531 5484 ohci1394 - ok
17:59:04.0577 5484 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:59:04.0579 5484 ose - ok
17:59:04.0607 5484 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:59:04.0612 5484 p2pimsvc - ok
17:59:04.0631 5484 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:59:04.0638 5484 p2psvc - ok
17:59:04.0655 5484 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:59:04.0657 5484 Parport - ok
17:59:04.0811 5484 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
17:59:04.0859 5484 partmgr - ok
17:59:04.0952 5484 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:59:04.0959 5484 PcaSvc - ok
17:59:04.0977 5484 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
17:59:04.0981 5484 pci - ok
17:59:04.0988 5484 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
17:59:04.0989 5484 pciide - ok
17:59:05.0023 5484 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:59:05.0027 5484 pcmcia - ok
17:59:05.0040 5484 PCTBD - ok
17:59:05.0046 5484 PCTCore - ok
17:59:05.0051 5484 pctDS - ok
17:59:05.0057 5484 pctEFA - ok
17:59:05.0096 5484 PCTSD (577f20ebf1e42bebb238e2412b99c7ee) C:\Windows\system32\Drivers\PCTSD64.sys
17:59:05.0099 5484 PCTSD - ok
17:59:05.0111 5484 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:59:05.0113 5484 pcw - ok
17:59:05.0142 5484 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:59:05.0149 5484 PEAUTH - ok
17:59:05.0199 5484 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
17:59:05.0226 5484 PeerDistSvc - ok
17:59:05.0277 5484 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:59:05.0279 5484 PerfHost - ok
17:59:05.0361 5484 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
17:59:05.0387 5484 pla - ok
17:59:05.0425 5484 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
17:59:05.0431 5484 PlugPlay - ok
17:59:05.0443 5484 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:59:05.0445 5484 PNRPAutoReg - ok
17:59:05.0463 5484 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:59:05.0466 5484 PNRPsvc - ok
17:59:05.0504 5484 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
17:59:05.0506 5484 Point64 - ok
17:59:05.0538 5484 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
17:59:05.0544 5484 PolicyAgent - ok
17:59:05.0564 5484 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:59:05.0567 5484 Power - ok
17:59:05.0590 5484 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
17:59:05.0592 5484 PptpMiniport - ok
17:59:05.0601 5484 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:59:05.0602 5484 Processor - ok
17:59:05.0615 5484 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
17:59:05.0618 5484 ProfSvc - ok
17:59:05.0655 5484 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:59:05.0657 5484 ProtectedStorage - ok
17:59:05.0682 5484 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
17:59:05.0686 5484 Psched - ok
17:59:05.0727 5484 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
17:59:05.0728 5484 PxHlpa64 - ok
17:59:05.0792 5484 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:59:05.0824 5484 ql2300 - ok
17:59:05.0902 5484 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:59:05.0906 5484 ql40xx - ok
17:59:05.0938 5484 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:59:05.0948 5484 QWAVE - ok
17:59:05.0963 5484 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:59:05.0965 5484 QWAVEdrv - ok
17:59:06.0039 5484 RapiMgr (a55e7d0d873b2c97585b3b5926ac6ade) C:\Windows\WindowsMobile\rapimgr.dll
17:59:06.0044 5484 RapiMgr - ok
17:59:06.0060 5484 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:59:06.0061 5484 RasAcd - ok
17:59:06.0074 5484 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:59:06.0076 5484 RasAgileVpn - ok
17:59:06.0088 5484 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:59:06.0091 5484 RasAuto - ok
17:59:06.0105 5484 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:59:06.0108 5484 Rasl2tp - ok
17:59:06.0130 5484 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
17:59:06.0136 5484 RasMan - ok
17:59:06.0147 5484 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:59:06.0149 5484 RasPppoe - ok
17:59:06.0162 5484 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:59:06.0164 5484 RasSstp - ok
17:59:06.0179 5484 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
17:59:06.0183 5484 rdbss - ok
17:59:06.0197 5484 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:59:06.0199 5484 rdpbus - ok
17:59:06.0208 5484 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:59:06.0209 5484 RDPCDD - ok
17:59:06.0233 5484 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
17:59:06.0235 5484 RDPDR - ok
17:59:06.0245 5484 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:59:06.0246 5484 RDPENCDD - ok
17:59:06.0250 5484 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:59:06.0251 5484 RDPREFMP - ok
17:59:06.0287 5484 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
17:59:06.0289 5484 RDPWD - ok
17:59:06.0305 5484 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
17:59:06.0308 5484 rdyboost - ok
17:59:06.0335 5484 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:59:06.0341 5484 RemoteAccess - ok
17:59:06.0362 5484 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:59:06.0369 5484 RemoteRegistry - ok
17:59:06.0390 5484 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:59:06.0396 5484 RpcEptMapper - ok
17:59:06.0413 5484 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:59:06.0417 5484 RpcLocator - ok
17:59:06.0451 5484 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
17:59:06.0456 5484 RpcSs - ok
17:59:06.0471 5484 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:59:06.0473 5484 rspndr - ok
17:59:06.0505 5484 RTL8167 (365ed58b47b46de8b1c5fa759b6fcd6e) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:59:06.0510 5484 RTL8167 - ok
17:59:06.0514 5484 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
17:59:06.0515 5484 s3cap - ok
17:59:06.0546 5484 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:59:06.0548 5484 SamSs - ok
17:59:06.0633 5484 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
17:59:06.0635 5484 SASDIFSV - ok
17:59:06.0663 5484 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
17:59:06.0665 5484 SASKUTIL - ok
17:59:06.0693 5484 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
17:59:06.0698 5484 sbp2port - ok
17:59:06.0721 5484 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:59:06.0725 5484 SCardSvr - ok
17:59:06.0738 5484 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
17:59:06.0740 5484 scfilter - ok
17:59:06.0814 5484 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
17:59:06.0835 5484 Schedule - ok
17:59:06.0855 5484 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
17:59:06.0856 5484 SCPolicySvc - ok
17:59:06.0868 5484 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
17:59:06.0872 5484 SDRSVC - ok
17:59:06.0899 5484 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:59:06.0901 5484 secdrv - ok
17:59:06.0906 5484 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
17:59:06.0909 5484 seclogon - ok
17:59:06.0920 5484 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
17:59:06.0923 5484 SENS - ok
17:59:06.0930 5484 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:59:06.0932 5484 SensrSvc - ok
17:59:06.0937 5484 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:59:06.0938 5484 Serenum - ok
17:59:06.0946 5484 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:59:06.0947 5484 Serial - ok
17:59:06.0958 5484 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:59:06.0960 5484 sermouse - ok
17:59:06.0972 5484 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
17:59:06.0974 5484 SessionEnv - ok
17:59:06.0984 5484 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
17:59:06.0985 5484 sffdisk - ok
17:59:06.0999 5484 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:59:07.0000 5484 sffp_mmc - ok
17:59:07.0006 5484 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
17:59:07.0008 5484 sffp_sd - ok
17:59:07.0017 5484 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:59:07.0018 5484 sfloppy - ok
17:59:07.0068 5484 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:59:07.0078 5484 SharedAccess - ok
17:59:07.0111 5484 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
17:59:07.0117 5484 ShellHWDetection - ok
17:59:07.0131 5484 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:59:07.0133 5484 SiSRaid2 - ok
17:59:07.0144 5484 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:59:07.0146 5484 SiSRaid4 - ok
17:59:07.0155 5484 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:59:07.0157 5484 Smb - ok
17:59:07.0167 5484 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:59:07.0169 5484 SNMPTRAP - ok
17:59:07.0177 5484 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:59:07.0178 5484 spldr - ok
17:59:07.0233 5484 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
17:59:07.0241 5484 Spooler - ok
17:59:07.0343 5484 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
17:59:07.0420 5484 sppsvc - ok
17:59:07.0478 5484 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:59:07.0481 5484 sppuinotify - ok
17:59:07.0555 5484 SpyroService (3f4892c5efbf92b9332a6f3bfa9c57ec) C:\Program Files (x86)\FS\Spyro Portal\FlashPortal.exe
17:59:07.0626 5484 SpyroService - ok
17:59:07.0690 5484 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
17:59:07.0699 5484 srv - ok
17:59:07.0727 5484 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
17:59:07.0732 5484 srv2 - ok
17:59:07.0747 5484 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
17:59:07.0750 5484 srvnet - ok
17:59:07.0775 5484 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:59:07.0780 5484 SSDPSRV - ok
17:59:07.0789 5484 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:59:07.0792 5484 SstpSvc - ok
17:59:07.0808 5484 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:59:07.0809 5484 stexstor - ok
17:59:07.0851 5484 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
17:59:07.0860 5484 stisvc - ok
17:59:07.0880 5484 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
17:59:07.0881 5484 storflt - ok
17:59:07.0902 5484 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
17:59:07.0905 5484 StorSvc - ok
17:59:07.0914 5484 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
17:59:07.0915 5484 storvsc - ok
17:59:07.0923 5484 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
17:59:07.0924 5484 swenum - ok
17:59:07.0948 5484 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:59:07.0957 5484 swprv - ok
17:59:08.0011 5484 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
17:59:08.0036 5484 SysMain - ok
17:59:08.0100 5484 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
17:59:08.0107 5484 TabletInputService - ok
17:59:08.0138 5484 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
17:59:08.0148 5484 TapiSrv - ok
17:59:08.0169 5484 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:59:08.0175 5484 TBS - ok
17:59:08.0311 5484 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
17:59:08.0366 5484 Tcpip - ok
17:59:08.0462 5484 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
17:59:08.0470 5484 TCPIP6 - ok
17:59:08.0512 5484 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
17:59:08.0513 5484 tcpipreg - ok
17:59:08.0525 5484 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:59:08.0527 5484 TDPIPE - ok
17:59:08.0548 5484 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
17:59:08.0549 5484 TDTCP - ok
17:59:08.0567 5484 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
17:59:08.0569 5484 tdx - ok
17:59:08.0578 5484 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
17:59:08.0580 5484 TermDD - ok
17:59:08.0604 5484 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
17:59:08.0611 5484 TermService - ok
17:59:08.0624 5484 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:59:08.0626 5484 Themes - ok
17:59:08.0645 5484 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:59:08.0646 5484 THREADORDER - ok
17:59:08.0698 5484 TomTomHOMEService (fbd16717fd68b206c4ce3bb3c9ee5cb3) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
17:59:08.0701 5484 TomTomHOMEService - ok
17:59:08.0721 5484 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:59:08.0728 5484 TrkWks - ok
17:59:08.0751 5484 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
17:59:08.0755 5484 TrustedInstaller - ok
17:59:08.0767 5484 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:59:08.0769 5484 tssecsrv - ok
17:59:08.0794 5484 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
17:59:08.0796 5484 tunnel - ok
17:59:08.0803 5484 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:59:08.0804 5484 uagp35 - ok
17:59:08.0822 5484 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
17:59:08.0826 5484 udfs - ok
17:59:08.0844 5484 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:59:08.0848 5484 UI0Detect - ok
17:59:08.0859 5484 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
17:59:08.0861 5484 uliagpkx - ok
17:59:08.0879 5484 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
17:59:08.0881 5484 umbus - ok
17:59:08.0885 5484 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:59:08.0886 5484 UmPass - ok
17:59:08.0909 5484 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
17:59:08.0913 5484 UmRdpService - ok
17:59:09.0019 5484 UMVPFSrv (927754abf077aeb5504be4e0f2c60c1b) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:59:09.0088 5484 UMVPFSrv - ok
17:59:09.0109 5484 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:59:09.0113 5484 upnphost - ok
17:59:09.0152 5484 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
17:59:09.0156 5484 USBAAPL64 - ok
17:59:09.0196 5484 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
17:59:09.0201 5484 usbaudio - ok
17:59:09.0243 5484 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
17:59:09.0247 5484 usbccgp - ok
17:59:09.0274 5484 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
17:59:09.0279 5484 usbcir - ok
17:59:09.0321 5484 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
17:59:09.0324 5484 usbehci - ok
17:59:09.0371 5484 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
17:59:09.0379 5484 usbhub - ok
17:59:09.0394 5484 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
17:59:09.0396 5484 usbohci - ok
17:59:09.0406 5484 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:59:09.0408 5484 usbprint - ok
17:59:09.0449 5484 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:59:09.0450 5484 usbscan - ok
17:59:09.0484 5484 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:59:09.0486 5484 USBSTOR - ok
17:59:09.0496 5484 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
17:59:09.0498 5484 usbuhci - ok
17:59:09.0551 5484 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
17:59:09.0554 5484 usb_rndisx - ok
17:59:09.0578 5484 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:59:09.0585 5484 UxSms - ok
17:59:09.0627 5484 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:59:09.0630 5484 VaultSvc - ok
17:59:09.0644 5484 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
17:59:09.0646 5484 vdrvroot - ok
17:59:09.0675 5484 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
17:59:09.0682 5484 vds - ok
17:59:09.0689 5484 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:59:09.0690 5484 vga - ok
17:59:09.0695 5484 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:59:09.0697 5484 VgaSave - ok
17:59:09.0717 5484 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
17:59:09.0720 5484 vhdmp - ok
17:59:09.0808 5484 VIAHdAudAddService (28bcdfe57119b97eef05361906ce74be) C:\Windows\system32\drivers\viahduaa.sys
17:59:09.0836 5484 VIAHdAudAddService - ok
17:59:09.0848 5484 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
17:59:09.0850 5484 viaide - ok
17:59:09.0870 5484 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
17:59:09.0873 5484 vmbus - ok
17:59:09.0886 5484 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
17:59:09.0887 5484 VMBusHID - ok
17:59:09.0896 5484 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
17:59:09.0897 5484 volmgr - ok
17:59:09.0920 5484 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
17:59:09.0925 5484 volmgrx - ok
17:59:09.0979 5484 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
17:59:09.0983 5484 volsnap - ok
17:59:10.0006 5484 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:59:10.0009 5484 vsmraid - ok
17:59:10.0060 5484 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
17:59:10.0092 5484 VSS - ok
17:59:10.0142 5484 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
17:59:10.0144 5484 vwifibus - ok
17:59:10.0168 5484 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:59:10.0175 5484 W32Time - ok
17:59:10.0188 5484 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:59:10.0190 5484 WacomPen - ok
17:59:10.0208 5484 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:59:10.0210 5484 WANARP - ok
17:59:10.0222 5484 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:59:10.0223 5484 Wanarpv6 - ok
17:59:10.0313 5484 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:59:10.0340 5484 WatAdminSvc - ok
17:59:10.0397 5484 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
17:59:10.0430 5484 wbengine - ok
17:59:10.0467 5484 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:59:10.0472 5484 WbioSrvc - ok
17:59:10.0551 5484 WcesComm (8bda6db43aa54e8bb5e0794541ddc209) C:\Windows\WindowsMobile\wcescomm.dll
17:59:10.0561 5484 WcesComm - ok
17:59:10.0624 5484 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
17:59:10.0630 5484 wcncsvc - ok
17:59:10.0644 5484 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:59:10.0646 5484 WcsPlugInService - ok
17:59:10.0657 5484 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:59:10.0658 5484 Wd - ok
17:59:10.0678 5484 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:59:10.0684 5484 Wdf01000 - ok
17:59:10.0693 5484 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:59:10.0696 5484 WdiServiceHost - ok
17:59:10.0698 5484 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:59:10.0699 5484 WdiSystemHost - ok
17:59:10.0732 5484 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
17:59:10.0735 5484 WebClient - ok
17:59:10.0750 5484 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:59:10.0753 5484 Wecsvc - ok
17:59:10.0760 5484 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:59:10.0763 5484 wercplsupport - ok
17:59:10.0778 5484 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:59:10.0781 5484 WerSvc - ok
17:59:10.0797 5484 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:59:10.0798 5484 WfpLwf - ok
17:59:10.0808 5484 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:59:10.0810 5484 WIMMount - ok
17:59:10.0821 5484 WinDefend - ok
17:59:10.0831 5484 WinHttpAutoProxySvc - ok
17:59:10.0862 5484 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:59:10.0865 5484 Winmgmt - ok
17:59:10.0921 5484 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
17:59:10.0951 5484 WinRM - ok
17:59:11.0055 5484 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
17:59:11.0058 5484 WinUsb - ok
17:59:11.0108 5484 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:59:11.0130 5484 Wlansvc - ok
17:59:11.0292 5484 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:59:11.0344 5484 wlidsvc - ok
17:59:11.0395 5484 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:59:11.0395 5484 WmiAcpi - ok
17:59:11.0416 5484 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:59:11.0419 5484 wmiApSrv - ok
17:59:11.0424 5484 WMPNetworkSvc - ok
17:59:11.0430 5484 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:59:11.0433 5484 WPCSvc - ok
17:59:11.0449 5484 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
17:59:11.0452 5484 WPDBusEnum - ok
17:59:11.0465 5484 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:59:11.0467 5484 ws2ifsl - ok
17:59:11.0500 5484 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
17:59:11.0502 5484 wscsvc - ok
17:59:11.0529 5484 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
17:59:11.0531 5484 WSDPrintDevice - ok
17:59:11.0540 5484 WSearch - ok
17:59:11.0639 5484 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
17:59:11.0705 5484 wuauserv - ok
17:59:11.0753 5484 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
17:59:11.0755 5484 WudfPf - ok
17:59:11.0767 5484 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:59:11.0770 5484 WUDFRd - ok
17:59:11.0783 5484 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
17:59:11.0786 5484 wudfsvc - ok
17:59:11.0806 5484 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:59:11.0811 5484 WwanSvc - ok
17:59:11.0833 5484 MBR (0x1B8) (09ce7397af23d4c0b331b89d0297cc7e) \Device\Harddisk0\DR0
17:59:12.0049 5484 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:59:12.0049 5484 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:59:12.0056 5484 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
17:59:12.0121 5484 \Device\Harddisk1\DR1 ( TDSS File System ) - warning
17:59:12.0121 5484 \Device\Harddisk1\DR1 - detected TDSS File System (1)
17:59:12.0129 5484 Boot (0x1200) (374f1ca877112a102e1b19c3a134f013) \Device\Harddisk0\DR0\Partition0
17:59:12.0132 5484 \Device\Harddisk0\DR0\Partition0 - ok
17:59:12.0140 5484 Boot (0x1200) (4c8c5b8cba882b9bd72767c702270e28) \Device\Harddisk1\DR1\Partition0
17:59:12.0143 5484 \Device\Harddisk1\DR1\Partition0 - ok
17:59:12.0145 5484 ============================================================
17:59:12.0145 5484 Scan finished
17:59:12.0145 5484 ============================================================
17:59:12.0199 3196 Detected object count: 2
17:59:12.0199 3196 Actual detected object count: 2
18:00:46.0007 3196 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
18:00:46.0007 3196 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
18:00:46.0008 3196 \Device\Harddisk1\DR1 ( TDSS File System ) - skipped by user
18:00:46.0008 3196 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Skip
18:37:49.0531 5464 Deinitialize success


------------------------------------------------------------ESET Log

C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\402b2b-589d8bfa multiple threats deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\3e671b30-700525dc a variant of Java/TrojanDownloader.Agent.NDJ trojan deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\58007f34-38ca4ff8 multiple threats deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\7cea6c39-70cdb98e a variant of Java/TrojanDownloader.Agent.NDJ trojan deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\5a9edb87-189f2538 a variant of Java/Agent.DW trojan deleted - quarantined
C:\Users\Dave\AppData\Roaming\Mozilla\Firefox\Profiles\htfpp8uv.default\extensions\ogecizsldw@ogecizsldw.org.xpi JS/Redirector.NBX trojan deleted - quarantined
C:\Users\Dave\Downloads\freefileviewer_2_1283 (1).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Dave\Downloads\freefileviewer_2_1283.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Dave\Downloads\InternationalPrimoPDF.exe Win32/OpenCandy application deleted - quarantined
C:\Users\Dave\Downloads\win 7 codec pack\windows.7.codec.pack.v3.1.0.setup.exe a variant of Win32/Toolbar.Widgi application deleted - quarantined
C:\Users\Melissa\AppData\Roaming\Mozilla\Firefox\Profiles\ai4ujazv.default\extensions\ogecizsldw@ogecizsldw.org.xpi JS/Redirector.NBX trojan deleted - quarantined

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:38 AM

Posted 30 May 2012 - 02:02 PM

YOu're Welcome!

Can you re run TDSS and see if you can use the Cure or Delete option on these?

18:00:46.0007 3196 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
18:00:46.0007 3196 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
18:00:46.0008 3196 \Device\Harddisk1\DR1 ( TDSS File System ) - skipped by user
18:00:46.0008 3196 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Skip


If not try running ...
Download the FixTDSS.exe

Save the file to your Windows desktop.
Close all running programs.
If you are running Windows XP, turn off System Restore. How to turn off or turn on Windows XP System Restore
Double-click the FixTDSS.exe file to start the removal tool.
Click Start to begin the process, and then allow the tool to run.
Restart the computer when prompted by the tool.
After the computer has started, the tool will inform you of the state of infection (make sure to let me know what it said)
If you are running Windows XP, re-enable System Restore.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 gizmowesel

gizmowesel
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:38 AM

Posted 30 May 2012 - 04:52 PM

Hi again,
I ran TDSSkiller and used the delete option on the items that it found.
Here is a copy of the log.
Thanks.

17:49:38.0052 7140 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
17:49:38.0354 7140 ============================================================
17:49:38.0354 7140 Current date / time: 2012/05/30 17:49:38.0354
17:49:38.0354 7140 SystemInfo:
17:49:38.0355 7140
17:49:38.0355 7140 OS Version: 6.1.7600 ServicePack: 0.0
17:49:38.0355 7140 Product type: Workstation
17:49:38.0355 7140 ComputerName: DAVE-PC
17:49:38.0355 7140 UserName: Dave
17:49:38.0355 7140 Windows directory: C:\Windows
17:49:38.0355 7140 System windows directory: C:\Windows
17:49:38.0356 7140 Running under WOW64
17:49:38.0356 7140 Processor architecture: Intel x64
17:49:38.0356 7140 Number of processors: 4
17:49:38.0356 7140 Page size: 0x1000
17:49:38.0356 7140 Boot type: Normal boot
17:49:38.0356 7140 ============================================================
17:49:39.0460 7140 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:49:39.0469 7140 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:49:39.0509 7140 ============================================================
17:49:39.0509 7140 \Device\Harddisk0\DR0:
17:49:39.0510 7140 MBR partitions:
17:49:39.0510 7140 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
17:49:39.0510 7140 \Device\Harddisk1\DR1:
17:49:39.0513 7140 MBR partitions:
17:49:39.0513 7140 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
17:49:39.0513 7140 ============================================================
17:49:39.0522 7140 C: <-> \Device\Harddisk1\DR1\Partition0
17:49:39.0542 7140 D: <-> \Device\Harddisk0\DR0\Partition0
17:49:39.0542 7140 ============================================================
17:49:39.0542 7140 Initialize success
17:49:39.0542 7140 ============================================================
17:49:51.0513 7436 ============================================================
17:49:51.0513 7436 Scan started
17:49:51.0513 7436 Mode: Manual; TDLFS;
17:49:51.0513 7436 ============================================================
17:49:54.0820 7436 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
17:49:54.0824 7436 !SASCORE - ok
17:49:54.0958 7436 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
17:49:54.0963 7436 1394ohci - ok
17:49:55.0003 7436 61883 (e0a8525a951addb4655bc2068566407d) C:\Windows\system32\DRIVERS\61883.sys
17:49:55.0006 7436 61883 - ok
17:49:55.0106 7436 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:49:55.0109 7436 ACDaemon - ok
17:49:55.0147 7436 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
17:49:55.0154 7436 ACPI - ok
17:49:55.0169 7436 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
17:49:55.0172 7436 AcpiPmi - ok
17:49:55.0202 7436 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:49:55.0213 7436 adp94xx - ok
17:49:55.0233 7436 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:49:55.0238 7436 adpahci - ok
17:49:55.0249 7436 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:49:55.0252 7436 adpu320 - ok
17:49:55.0274 7436 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:49:55.0276 7436 AeLookupSvc - ok
17:49:55.0321 7436 Afc (6ccd1135320109d6b219f1a6e04ad9f6) C:\Windows\syswow64\drivers\Afc.sys
17:49:55.0322 7436 Afc - ok
17:49:55.0372 7436 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
17:49:55.0378 7436 AFD - ok
17:49:55.0388 7436 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
17:49:55.0389 7436 agp440 - ok
17:49:55.0396 7436 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:49:55.0398 7436 ALG - ok
17:49:55.0402 7436 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
17:49:55.0403 7436 aliide - ok
17:49:55.0499 7436 Amazon Download Agent (ff6f0f6a2d72065ae4300426fa414693) C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
17:49:55.0508 7436 Amazon Download Agent - ok
17:49:55.0549 7436 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
17:49:55.0552 7436 AMD External Events Utility - ok
17:49:55.0556 7436 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
17:49:55.0557 7436 amdide - ok
17:49:55.0568 7436 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:49:55.0570 7436 AmdK8 - ok
17:49:55.0588 7436 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:49:55.0589 7436 AmdPPM - ok
17:49:55.0629 7436 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
17:49:55.0631 7436 amdsata - ok
17:49:55.0644 7436 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:49:55.0647 7436 amdsbs - ok
17:49:55.0651 7436 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
17:49:55.0653 7436 amdxata - ok
17:49:55.0664 7436 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
17:49:55.0666 7436 AppID - ok
17:49:55.0671 7436 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:49:55.0672 7436 AppIDSvc - ok
17:49:55.0687 7436 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
17:49:55.0688 7436 Appinfo - ok
17:49:55.0802 7436 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:49:55.0805 7436 Apple Mobile Device - ok
17:49:55.0834 7436 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
17:49:55.0839 7436 AppMgmt - ok
17:49:55.0853 7436 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:49:55.0856 7436 arc - ok
17:49:55.0873 7436 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:49:55.0877 7436 arcsas - ok
17:49:55.0973 7436 AsIO (8065a7659562005127673ac52898675f) C:\Windows\syswow64\drivers\AsIO.sys
17:49:55.0976 7436 AsIO - ok
17:49:56.0075 7436 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:49:56.0078 7436 aspnet_state - ok
17:49:56.0093 7436 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:49:56.0096 7436 AsyncMac - ok
17:49:56.0109 7436 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
17:49:56.0110 7436 atapi - ok
17:49:56.0158 7436 AtiHdmiService (38467ff83c2b4265d51f418812a91e3c) C:\Windows\system32\drivers\AtiHdmi.sys
17:49:56.0161 7436 AtiHdmiService - ok
17:49:56.0419 7436 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
17:49:56.0534 7436 atikmdag - ok
17:49:56.0654 7436 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
17:49:56.0672 7436 AtiPcie - ok
17:49:56.0857 7436 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
17:49:56.0871 7436 AudioEndpointBuilder - ok
17:49:56.0883 7436 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
17:49:56.0887 7436 AudioSrv - ok
17:49:56.0932 7436 Avc (16fabe84916623d0607e4a975544032c) C:\Windows\system32\DRIVERS\avc.sys
17:49:56.0934 7436 Avc - ok
17:49:56.0949 7436 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
17:49:56.0952 7436 AxInstSV - ok
17:49:56.0986 7436 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:49:56.0993 7436 b06bdrv - ok
17:49:57.0010 7436 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:49:57.0014 7436 b57nd60a - ok
17:49:57.0026 7436 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:49:57.0028 7436 BDESVC - ok
17:49:57.0035 7436 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:49:57.0037 7436 Beep - ok
17:49:57.0075 7436 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
17:49:57.0083 7436 BFE - ok
17:49:57.0124 7436 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
17:49:57.0135 7436 BITS - ok
17:49:57.0148 7436 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:49:57.0149 7436 blbdrive - ok
17:49:57.0226 7436 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:49:57.0235 7436 Bonjour Service - ok
17:49:57.0278 7436 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
17:49:57.0282 7436 bowser - ok
17:49:57.0293 7436 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:49:57.0296 7436 BrFiltLo - ok
17:49:57.0305 7436 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:49:57.0306 7436 BrFiltUp - ok
17:49:57.0328 7436 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
17:49:57.0330 7436 BridgeMP - ok
17:49:57.0349 7436 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
17:49:57.0351 7436 Browser - ok
17:49:57.0368 7436 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:49:57.0373 7436 Brserid - ok
17:49:57.0384 7436 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:49:57.0386 7436 BrSerWdm - ok
17:49:57.0390 7436 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:49:57.0391 7436 BrUsbMdm - ok
17:49:57.0395 7436 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:49:57.0396 7436 BrUsbSer - ok
17:49:57.0410 7436 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:49:57.0412 7436 BTHMODEM - ok
17:49:57.0430 7436 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:49:57.0431 7436 bthserv - ok
17:49:57.0460 7436 catchme - ok
17:49:57.0486 7436 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:49:57.0488 7436 cdfs - ok
17:49:57.0519 7436 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
17:49:57.0521 7436 cdrom - ok
17:49:57.0531 7436 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
17:49:57.0532 7436 CertPropSvc - ok
17:49:57.0542 7436 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:49:57.0544 7436 circlass - ok
17:49:57.0564 7436 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:49:57.0569 7436 CLFS - ok
17:49:57.0613 7436 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:49:57.0616 7436 clr_optimization_v2.0.50727_32 - ok
17:49:57.0632 7436 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:49:57.0634 7436 clr_optimization_v2.0.50727_64 - ok
17:49:57.0717 7436 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:49:57.0722 7436 clr_optimization_v4.0.30319_32 - ok
17:49:57.0771 7436 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:49:57.0776 7436 clr_optimization_v4.0.30319_64 - ok
17:49:57.0791 7436 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:49:57.0792 7436 CmBatt - ok
17:49:57.0802 7436 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
17:49:57.0803 7436 cmdide - ok
17:49:57.0849 7436 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
17:49:57.0855 7436 CNG - ok
17:49:57.0862 7436 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:49:57.0864 7436 Compbatt - ok
17:49:57.0901 7436 CompFilter64 (553aa50f4d8f80320b59c6566d385a2f) C:\Windows\system32\DRIVERS\lvbflt64.sys
17:49:57.0904 7436 CompFilter64 - ok
17:49:57.0929 7436 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:49:57.0932 7436 CompositeBus - ok
17:49:57.0948 7436 COMSysApp - ok
17:49:57.0960 7436 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:49:57.0962 7436 crcdisk - ok
17:49:58.0006 7436 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
17:49:58.0011 7436 CryptSvc - ok
17:49:58.0054 7436 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
17:49:58.0066 7436 CSC - ok
17:49:58.0126 7436 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
17:49:58.0139 7436 CscService - ok
17:49:58.0182 7436 dc3d (1ca90212a99db6975c344826d11055c9) C:\Windows\system32\DRIVERS\dc3d.sys
17:49:58.0184 7436 dc3d - ok
17:49:58.0220 7436 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
17:49:58.0227 7436 DcomLaunch - ok
17:49:58.0255 7436 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:49:58.0260 7436 defragsvc - ok
17:49:58.0293 7436 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
17:49:58.0296 7436 DfsC - ok
17:49:58.0316 7436 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
17:49:58.0321 7436 Dhcp - ok
17:49:58.0333 7436 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:49:58.0334 7436 discache - ok
17:49:58.0360 7436 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:49:58.0362 7436 Disk - ok
17:49:58.0401 7436 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
17:49:58.0404 7436 Dnscache - ok
17:49:58.0423 7436 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
17:49:58.0427 7436 dot3svc - ok
17:49:58.0444 7436 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
17:49:58.0447 7436 DPS - ok
17:49:58.0477 7436 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:49:58.0479 7436 drmkaud - ok
17:49:58.0535 7436 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
17:49:58.0546 7436 DXGKrnl - ok
17:49:58.0559 7436 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:49:58.0561 7436 EapHost - ok
17:49:58.0645 7436 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:49:58.0718 7436 ebdrv - ok
17:49:58.0804 7436 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
17:49:58.0806 7436 EFS - ok
17:49:58.0878 7436 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
17:49:58.0891 7436 ehRecvr - ok
17:49:58.0910 7436 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:49:58.0913 7436 ehSched - ok
17:49:58.0941 7436 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:49:58.0948 7436 elxstor - ok
17:49:58.0962 7436 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
17:49:58.0963 7436 ErrDev - ok
17:49:58.0988 7436 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:49:58.0993 7436 EventSystem - ok
17:49:59.0010 7436 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:49:59.0014 7436 exfat - ok
17:49:59.0026 7436 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:49:59.0029 7436 fastfat - ok
17:49:59.0064 7436 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
17:49:59.0072 7436 Fax - ok
17:49:59.0088 7436 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:49:59.0089 7436 fdc - ok
17:49:59.0100 7436 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:49:59.0101 7436 fdPHost - ok
17:49:59.0109 7436 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:49:59.0110 7436 FDResPub - ok
17:49:59.0125 7436 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:49:59.0127 7436 FileInfo - ok
17:49:59.0135 7436 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:49:59.0136 7436 Filetrace - ok
17:49:59.0266 7436 FLEXnet Licensing Service 64 (259dc094e2d3f08654c8fb73d8ecc0f5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
17:49:59.0420 7436 FLEXnet Licensing Service 64 - ok
17:49:59.0423 7436 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:49:59.0424 7436 flpydisk - ok
17:49:59.0445 7436 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
17:49:59.0448 7436 FltMgr - ok
17:49:59.0498 7436 FlyUsb (6cd6bb45bd3e0eef6ce496bf52854ff1) C:\Windows\system32\DRIVERS\FlyUsb.sys
17:49:59.0501 7436 FlyUsb - ok
17:49:59.0643 7436 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
17:49:59.0681 7436 FontCache - ok
17:49:59.0804 7436 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:49:59.0806 7436 FontCache3.0.0.0 - ok
17:50:00.0010 7436 FreeAgentGoNext Service (81b4a2c6c9bd17ffb6031a0a61c09764) C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
17:50:00.0014 7436 FreeAgentGoNext Service - ok
17:50:00.0069 7436 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:50:00.0071 7436 FsDepends - ok
17:50:00.0113 7436 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
17:50:00.0115 7436 Fs_Rec - ok
17:50:00.0195 7436 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:50:00.0209 7436 fvevol - ok
17:50:00.0226 7436 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:50:00.0230 7436 gagp30kx - ok
17:50:00.0266 7436 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:50:00.0267 7436 GEARAspiWDM - ok
17:50:00.0313 7436 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
17:50:00.0322 7436 gpsvc - ok
17:50:00.0475 7436 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:50:00.0480 7436 gupdate - ok
17:50:00.0503 7436 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:50:00.0505 7436 gupdatem - ok
17:50:00.0561 7436 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:50:00.0563 7436 gusvc - ok
17:50:00.0577 7436 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:50:00.0579 7436 hcw85cir - ok
17:50:00.0609 7436 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
17:50:00.0614 7436 HdAudAddService - ok
17:50:00.0635 7436 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:50:00.0637 7436 HDAudBus - ok
17:50:00.0651 7436 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:50:00.0652 7436 HidBatt - ok
17:50:00.0668 7436 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:50:00.0670 7436 HidBth - ok
17:50:00.0679 7436 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:50:00.0681 7436 HidIr - ok
17:50:00.0700 7436 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
17:50:00.0702 7436 hidserv - ok
17:50:00.0718 7436 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
17:50:00.0720 7436 HidUsb - ok
17:50:00.0729 7436 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
17:50:00.0732 7436 hkmsvc - ok
17:50:00.0750 7436 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
17:50:00.0753 7436 HomeGroupListener - ok
17:50:00.0773 7436 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
17:50:00.0777 7436 HomeGroupProvider - ok
17:50:00.0785 7436 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
17:50:00.0787 7436 HpSAMD - ok
17:50:00.0821 7436 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
17:50:00.0830 7436 HTTP - ok
17:50:00.0839 7436 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
17:50:00.0840 7436 hwpolicy - ok
17:50:00.0849 7436 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
17:50:00.0851 7436 i8042prt - ok
17:50:00.0928 7436 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
17:50:00.0934 7436 iaStorV - ok
17:50:01.0175 7436 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:50:01.0194 7436 idsvc - ok
17:50:01.0212 7436 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:50:01.0214 7436 iirsp - ok
17:50:01.0265 7436 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
17:50:01.0276 7436 IKEEXT - ok
17:50:01.0286 7436 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
17:50:01.0287 7436 intelide - ok
17:50:01.0306 7436 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:50:01.0307 7436 intelppm - ok
17:50:01.0323 7436 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:50:01.0325 7436 IPBusEnum - ok
17:50:01.0334 7436 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:50:01.0335 7436 IpFilterDriver - ok
17:50:01.0363 7436 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
17:50:01.0368 7436 iphlpsvc - ok
17:50:01.0376 7436 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
17:50:01.0377 7436 IPMIDRV - ok
17:50:01.0407 7436 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:50:01.0410 7436 IPNAT - ok
17:50:01.0614 7436 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
17:50:01.0634 7436 iPod Service - ok
17:50:01.0650 7436 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:50:01.0651 7436 IRENUM - ok
17:50:01.0661 7436 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
17:50:01.0663 7436 isapnp - ok
17:50:01.0674 7436 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
17:50:01.0678 7436 iScsiPrt - ok
17:50:01.0685 7436 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:50:01.0686 7436 kbdclass - ok
17:50:01.0692 7436 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
17:50:01.0693 7436 kbdhid - ok
17:50:01.0725 7436 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:50:01.0726 7436 KeyIso - ok
17:50:01.0783 7436 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
17:50:01.0787 7436 KSecDD - ok
17:50:01.0915 7436 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
17:50:01.0920 7436 KSecPkg - ok
17:50:01.0940 7436 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:50:01.0943 7436 ksthunk - ok
17:50:01.0986 7436 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:50:01.0993 7436 KtmRm - ok
17:50:02.0036 7436 L1E (b8e670d7ef61615fa03104552854fac9) C:\Windows\system32\DRIVERS\L1E62x64.sys
17:50:02.0038 7436 L1E - ok
17:50:02.0079 7436 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
17:50:02.0084 7436 LanmanServer - ok
17:50:02.0104 7436 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
17:50:02.0108 7436 LanmanWorkstation - ok
17:50:02.0216 7436 LBTServ (88e52495b47c67126b510af53fdb0bc7) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
17:50:02.0221 7436 LBTServ - ok
17:50:02.0311 7436 LeapFrog Connect Device Service (549b88970b3cfd211a354a016edf766e) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
17:50:02.0333 7436 LeapFrog Connect Device Service - ok
17:50:02.0414 7436 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:50:02.0415 7436 LHidFilt - ok
17:50:02.0435 7436 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:50:02.0436 7436 lltdio - ok
17:50:02.0462 7436 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:50:02.0466 7436 lltdsvc - ok
17:50:02.0481 7436 lmab_device - ok
17:50:02.0494 7436 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:50:02.0496 7436 lmhosts - ok
17:50:02.0504 7436 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:50:02.0505 7436 LMouFilt - ok
17:50:02.0526 7436 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:50:02.0527 7436 LSI_FC - ok
17:50:02.0532 7436 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:50:02.0534 7436 LSI_SAS - ok
17:50:02.0545 7436 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:50:02.0546 7436 LSI_SAS2 - ok
17:50:02.0556 7436 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:50:02.0557 7436 LSI_SCSI - ok
17:50:02.0576 7436 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:50:02.0578 7436 luafv - ok
17:50:02.0618 7436 LVPr2M64 (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
17:50:02.0621 7436 LVPr2M64 - ok
17:50:02.0631 7436 LVPr2Mon (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
17:50:02.0632 7436 LVPr2Mon - ok
17:50:02.0725 7436 LVPrcS64 (9cd0dc863be5d40a762f7d84f11a8471) C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
17:50:02.0728 7436 LVPrcS64 - ok
17:50:02.0783 7436 LVRS64 (803085f59ec92b3827cc4d90fcbfd335) C:\Windows\system32\DRIVERS\lvrs64.sys
17:50:02.0792 7436 LVRS64 - ok
17:50:02.0946 7436 LVUVC64 (a8d7c97016e6b76ef472a4c7ab357ee3) C:\Windows\system32\DRIVERS\lvuvc64.sys
17:50:03.0005 7436 LVUVC64 - ok
17:50:03.0105 7436 lxdoCATSCustConnectService (741083526ba1c6217d7e664bb86cfa62) C:\Windows\system32\spool\DRIVERS\x64\3\\lxdoserv.exe
17:50:03.0112 7436 lxdoCATSCustConnectService - ok
17:50:03.0119 7436 lxdo_device - ok
17:50:03.0196 7436 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
17:50:03.0202 7436 McComponentHostService - ok
17:50:03.0246 7436 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
17:50:03.0252 7436 Mcx2Svc - ok
17:50:03.0280 7436 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:50:03.0283 7436 megasas - ok
17:50:03.0306 7436 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:50:03.0310 7436 MegaSR - ok
17:50:03.0334 7436 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:50:03.0337 7436 MMCSS - ok
17:50:03.0350 7436 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:50:03.0352 7436 Modem - ok
17:50:03.0397 7436 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:50:03.0397 7436 monitor - ok
17:50:03.0410 7436 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:50:03.0412 7436 mouclass - ok
17:50:03.0426 7436 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:50:03.0428 7436 mouhid - ok
17:50:03.0443 7436 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
17:50:03.0445 7436 mountmgr - ok
17:50:03.0642 7436 MozillaMaintenance (ceec1749f0563e7af27e062072d14d84) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:50:03.0645 7436 MozillaMaintenance - ok
17:50:03.0690 7436 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
17:50:03.0695 7436 MpFilter - ok
17:50:03.0716 7436 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
17:50:03.0721 7436 mpio - ok
17:50:03.0730 7436 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:50:03.0732 7436 mpsdrv - ok
17:50:03.0774 7436 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
17:50:03.0785 7436 MpsSvc - ok
17:50:03.0796 7436 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
17:50:03.0798 7436 MRxDAV - ok
17:50:03.0837 7436 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:50:03.0840 7436 mrxsmb - ok
17:50:03.0898 7436 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:50:03.0905 7436 mrxsmb10 - ok
17:50:03.0925 7436 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:50:03.0929 7436 mrxsmb20 - ok
17:50:03.0944 7436 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
17:50:03.0945 7436 msahci - ok
17:50:03.0960 7436 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
17:50:03.0963 7436 msdsm - ok
17:50:03.0987 7436 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:50:03.0991 7436 MSDTC - ok
17:50:04.0030 7436 MSDV (72949a24d37a20a54b3d4d3dadbb55e9) C:\Windows\system32\DRIVERS\msdv.sys
17:50:04.0032 7436 MSDV - ok
17:50:04.0047 7436 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:50:04.0049 7436 Msfs - ok
17:50:04.0060 7436 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:50:04.0062 7436 mshidkmdf - ok
17:50:04.0075 7436 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
17:50:04.0077 7436 msisadrv - ok
17:50:04.0103 7436 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:50:04.0106 7436 MSiSCSI - ok
17:50:04.0110 7436 msiserver - ok
17:50:04.0135 7436 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:50:04.0136 7436 MSKSSRV - ok
17:50:04.0169 7436 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:50:04.0170 7436 MsMpSvc - ok
17:50:04.0188 7436 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:50:04.0190 7436 MSPCLOCK - ok
17:50:04.0199 7436 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:50:04.0201 7436 MSPQM - ok
17:50:04.0225 7436 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
17:50:04.0230 7436 MsRPC - ok
17:50:04.0240 7436 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
17:50:04.0241 7436 mssmbios - ok
17:50:04.0246 7436 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:50:04.0247 7436 MSTEE - ok
17:50:04.0255 7436 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:50:04.0256 7436 MTConfig - ok
17:50:04.0306 7436 MTsensor (2219a3d695405e7ba2186ba6b9ede14a) C:\Windows\system32\DRIVERS\ASACPI.sys
17:50:04.0308 7436 MTsensor - ok
17:50:04.0323 7436 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:50:04.0327 7436 Mup - ok
17:50:04.0369 7436 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
17:50:04.0376 7436 napagent - ok
17:50:04.0403 7436 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:50:04.0408 7436 NativeWifiP - ok
17:50:04.0443 7436 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
17:50:04.0454 7436 NDIS - ok
17:50:04.0477 7436 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:50:04.0478 7436 NdisCap - ok
17:50:04.0497 7436 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:50:04.0498 7436 NdisTapi - ok
17:50:04.0508 7436 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
17:50:04.0510 7436 Ndisuio - ok
17:50:04.0525 7436 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:50:04.0528 7436 NdisWan - ok
17:50:04.0540 7436 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
17:50:04.0542 7436 NDProxy - ok
17:50:04.0551 7436 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:50:04.0553 7436 NetBIOS - ok
17:50:04.0565 7436 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
17:50:04.0568 7436 NetBT - ok
17:50:04.0607 7436 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:50:04.0608 7436 Netlogon - ok
17:50:04.0648 7436 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:50:04.0654 7436 Netman - ok
17:50:04.0758 7436 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:04.0763 7436 NetMsmqActivator - ok
17:50:04.0772 7436 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:04.0774 7436 NetPipeActivator - ok
17:50:04.0806 7436 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:50:04.0813 7436 netprofm - ok
17:50:04.0818 7436 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:04.0819 7436 NetTcpActivator - ok
17:50:04.0823 7436 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:04.0824 7436 NetTcpPortSharing - ok
17:50:04.0868 7436 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:50:04.0871 7436 nfrd960 - ok
17:50:04.0948 7436 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:50:04.0952 7436 NisDrv - ok
17:50:05.0000 7436 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
17:50:05.0007 7436 NisSrv - ok
17:50:05.0132 7436 NitroReaderDriverReadSpool2 (0734398d3d99986bb8006e9bb5eab1e5) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
17:50:05.0139 7436 NitroReaderDriverReadSpool2 - ok
17:50:05.0178 7436 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
17:50:05.0188 7436 NlaSvc - ok
17:50:05.0305 7436 NMIndexingService (a9b3b624d39ce440ba71cad88fa35f4c) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
17:50:05.0311 7436 NMIndexingService - ok
17:50:05.0346 7436 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:50:05.0349 7436 Npfs - ok
17:50:05.0365 7436 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:50:05.0370 7436 nsi - ok
17:50:05.0374 7436 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:50:05.0375 7436 nsiproxy - ok
17:50:05.0458 7436 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
17:50:05.0485 7436 Ntfs - ok
17:50:05.0536 7436 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:50:05.0537 7436 Null - ok
17:50:05.0589 7436 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
17:50:05.0595 7436 nvraid - ok
17:50:05.0625 7436 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
17:50:05.0628 7436 nvstor - ok
17:50:05.0645 7436 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
17:50:05.0648 7436 nv_agp - ok
17:50:05.0740 7436 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:50:05.0751 7436 odserv - ok
17:50:05.0776 7436 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
17:50:05.0778 7436 ohci1394 - ok
17:50:05.0813 7436 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:50:05.0816 7436 ose - ok
17:50:05.0847 7436 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:50:05.0853 7436 p2pimsvc - ok
17:50:05.0888 7436 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:50:05.0894 7436 p2psvc - ok
17:50:05.0912 7436 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:50:05.0914 7436 Parport - ok
17:50:05.0956 7436 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
17:50:05.0958 7436 partmgr - ok
17:50:05.0973 7436 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:50:05.0977 7436 PcaSvc - ok
17:50:05.0989 7436 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
17:50:05.0991 7436 pci - ok
17:50:06.0004 7436 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
17:50:06.0005 7436 pciide - ok
17:50:06.0023 7436 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:50:06.0027 7436 pcmcia - ok
17:50:06.0039 7436 PCTBD - ok
17:50:06.0045 7436 PCTCore - ok
17:50:06.0051 7436 pctDS - ok
17:50:06.0057 7436 pctEFA - ok
17:50:06.0094 7436 PCTSD (577f20ebf1e42bebb238e2412b99c7ee) C:\Windows\system32\Drivers\PCTSD64.sys
17:50:06.0101 7436 PCTSD - ok
17:50:06.0126 7436 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:50:06.0130 7436 pcw - ok
17:50:06.0167 7436 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:50:06.0182 7436 PEAUTH - ok
17:50:06.0243 7436 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
17:50:06.0269 7436 PeerDistSvc - ok
17:50:06.0318 7436 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:50:06.0320 7436 PerfHost - ok
17:50:06.0404 7436 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
17:50:06.0429 7436 pla - ok
17:50:06.0467 7436 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
17:50:06.0474 7436 PlugPlay - ok
17:50:06.0484 7436 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:50:06.0486 7436 PNRPAutoReg - ok
17:50:06.0505 7436 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:50:06.0509 7436 PNRPsvc - ok
17:50:06.0562 7436 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
17:50:06.0564 7436 Point64 - ok
17:50:06.0596 7436 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
17:50:06.0603 7436 PolicyAgent - ok
17:50:06.0646 7436 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:50:06.0650 7436 Power - ok
17:50:06.0672 7436 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
17:50:06.0674 7436 PptpMiniport - ok
17:50:06.0700 7436 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:50:06.0701 7436 Processor - ok
17:50:06.0714 7436 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
17:50:06.0718 7436 ProfSvc - ok
17:50:06.0754 7436 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:50:06.0756 7436 ProtectedStorage - ok
17:50:06.0771 7436 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
17:50:06.0773 7436 Psched - ok
17:50:06.0826 7436 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
17:50:06.0827 7436 PxHlpa64 - ok
17:50:06.0905 7436 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:50:06.0931 7436 ql2300 - ok
17:50:06.0991 7436 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:50:06.0994 7436 ql40xx - ok
17:50:07.0010 7436 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:50:07.0014 7436 QWAVE - ok
17:50:07.0028 7436 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:50:07.0029 7436 QWAVEdrv - ok
17:50:07.0096 7436 RapiMgr (a55e7d0d873b2c97585b3b5926ac6ade) C:\Windows\WindowsMobile\rapimgr.dll
17:50:07.0101 7436 RapiMgr - ok
17:50:07.0117 7436 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:50:07.0120 7436 RasAcd - ok
17:50:07.0149 7436 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:50:07.0152 7436 RasAgileVpn - ok
17:50:07.0171 7436 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:50:07.0174 7436 RasAuto - ok
17:50:07.0187 7436 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:50:07.0190 7436 Rasl2tp - ok
17:50:07.0213 7436 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
17:50:07.0219 7436 RasMan - ok
17:50:07.0229 7436 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:50:07.0231 7436 RasPppoe - ok
17:50:07.0244 7436 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:50:07.0246 7436 RasSstp - ok
17:50:07.0261 7436 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
17:50:07.0266 7436 rdbss - ok
17:50:07.0279 7436 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:50:07.0281 7436 rdpbus - ok
17:50:07.0290 7436 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:50:07.0292 7436 RDPCDD - ok
17:50:07.0316 7436 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
17:50:07.0319 7436 RDPDR - ok
17:50:07.0336 7436 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:50:07.0337 7436 RDPENCDD - ok
17:50:07.0344 7436 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:50:07.0345 7436 RDPREFMP - ok
17:50:07.0378 7436 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
17:50:07.0383 7436 RDPWD - ok
17:50:07.0408 7436 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
17:50:07.0413 7436 rdyboost - ok
17:50:07.0433 7436 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:50:07.0436 7436 RemoteAccess - ok
17:50:07.0450 7436 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:50:07.0455 7436 RemoteRegistry - ok
17:50:07.0463 7436 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:50:07.0466 7436 RpcEptMapper - ok
17:50:07.0478 7436 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:50:07.0480 7436 RpcLocator - ok
17:50:07.0501 7436 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
17:50:07.0504 7436 RpcSs - ok
17:50:07.0511 7436 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:50:07.0513 7436 rspndr - ok
17:50:07.0550 7436 RTL8167 (365ed58b47b46de8b1c5fa759b6fcd6e) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:50:07.0554 7436 RTL8167 - ok
17:50:07.0557 7436 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
17:50:07.0558 7436 s3cap - ok
17:50:07.0603 7436 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:50:07.0606 7436 SamSs - ok
17:50:07.0715 7436 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
17:50:07.0716 7436 SASDIFSV - ok
17:50:07.0731 7436 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
17:50:07.0732 7436 SASKUTIL - ok
17:50:07.0749 7436 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
17:50:07.0751 7436 sbp2port - ok
17:50:07.0768 7436 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:50:07.0771 7436 SCardSvr - ok
17:50:07.0779 7436 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
17:50:07.0780 7436 scfilter - ok
17:50:07.0843 7436 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
17:50:07.0865 7436 Schedule - ok
17:50:07.0879 7436 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
17:50:07.0879 7436 SCPolicySvc - ok
17:50:07.0891 7436 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
17:50:07.0894 7436 SDRSVC - ok
17:50:07.0923 7436 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:50:07.0924 7436 secdrv - ok
17:50:07.0928 7436 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
17:50:07.0930 7436 seclogon - ok
17:50:07.0936 7436 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
17:50:07.0938 7436 SENS - ok
17:50:07.0945 7436 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:50:07.0947 7436 SensrSvc - ok
17:50:07.0953 7436 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:50:07.0953 7436 Serenum - ok
17:50:07.0961 7436 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:50:07.0963 7436 Serial - ok
17:50:07.0974 7436 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:50:07.0976 7436 sermouse - ok
17:50:07.0996 7436 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
17:50:07.0998 7436 SessionEnv - ok
17:50:08.0008 7436 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
17:50:08.0009 7436 sffdisk - ok
17:50:08.0023 7436 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
17:50:08.0024 7436 sffp_mmc - ok
17:50:08.0031 7436 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
17:50:08.0032 7436 sffp_sd - ok
17:50:08.0041 7436 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:50:08.0042 7436 sfloppy - ok
17:50:08.0107 7436 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:50:08.0117 7436 SharedAccess - ok
17:50:08.0144 7436 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
17:50:08.0150 7436 ShellHWDetection - ok
17:50:08.0164 7436 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:50:08.0165 7436 SiSRaid2 - ok
17:50:08.0176 7436 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:50:08.0178 7436 SiSRaid4 - ok
17:50:08.0188 7436 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:50:08.0190 7436 Smb - ok
17:50:08.0199 7436 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:50:08.0202 7436 SNMPTRAP - ok
17:50:08.0209 7436 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:50:08.0211 7436 spldr - ok
17:50:08.0255 7436 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
17:50:08.0261 7436 Spooler - ok
17:50:08.0347 7436 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
17:50:08.0396 7436 sppsvc - ok
17:50:08.0453 7436 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:50:08.0460 7436 sppuinotify - ok
17:50:08.0588 7436 SpyroService (3f4892c5efbf92b9332a6f3bfa9c57ec) C:\Program Files (x86)\FS\Spyro Portal\FlashPortal.exe
17:50:08.0620 7436 SpyroService - ok
17:50:08.0675 7436 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
17:50:08.0681 7436 srv - ok
17:50:08.0702 7436 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
17:50:08.0707 7436 srv2 - ok
17:50:08.0721 7436 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
17:50:08.0724 7436 srvnet - ok
17:50:08.0742 7436 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:50:08.0746 7436 SSDPSRV - ok
17:50:08.0763 7436 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:50:08.0766 7436 SstpSvc - ok
17:50:08.0782 7436 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:50:08.0784 7436 stexstor - ok
17:50:08.0817 7436 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
17:50:08.0826 7436 stisvc - ok
17:50:08.0846 7436 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
17:50:08.0847 7436 storflt - ok
17:50:08.0868 7436 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
17:50:08.0871 7436 StorSvc - ok
17:50:08.0879 7436 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
17:50:08.0881 7436 storvsc - ok
17:50:08.0889 7436 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
17:50:08.0890 7436 swenum - ok
17:50:08.0914 7436 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:50:08.0923 7436 swprv - ok
17:50:08.0987 7436 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
17:50:09.0023 7436 SysMain - ok
17:50:09.0374 7436 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
17:50:09.0381 7436 TabletInputService - ok
17:50:09.0407 7436 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
17:50:09.0413 7436 TapiSrv - ok
17:50:09.0425 7436 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:50:09.0428 7436 TBS - ok
17:50:09.0548 7436 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
17:50:09.0583 7436 Tcpip - ok
17:50:09.0688 7436 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
17:50:09.0697 7436 TCPIP6 - ok
17:50:09.0736 7436 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
17:50:09.0737 7436 tcpipreg - ok
17:50:09.0749 7436 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:50:09.0750 7436 TDPIPE - ok
17:50:09.0766 7436 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
17:50:09.0767 7436 TDTCP - ok
17:50:09.0791 7436 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
17:50:09.0793 7436 tdx - ok
17:50:09.0802 7436 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
17:50:09.0803 7436 TermDD - ok
17:50:09.0828 7436 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
17:50:09.0836 7436 TermService - ok
17:50:09.0848 7436 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:50:09.0850 7436 Themes - ok
17:50:09.0869 7436 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:50:09.0870 7436 THREADORDER - ok
17:50:09.0922 7436 TomTomHOMEService (fbd16717fd68b206c4ce3bb3c9ee5cb3) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
17:50:09.0926 7436 TomTomHOMEService - ok
17:50:09.0945 7436 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:50:09.0952 7436 TrkWks - ok
17:50:09.0984 7436 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
17:50:09.0987 7436 TrustedInstaller - ok
17:50:09.0999 7436 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:50:10.0001 7436 tssecsrv - ok
17:50:10.0026 7436 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
17:50:10.0028 7436 tunnel - ok
17:50:10.0035 7436 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:50:10.0036 7436 uagp35 - ok
17:50:10.0054 7436 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
17:50:10.0058 7436 udfs - ok
17:50:10.0077 7436 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:50:10.0080 7436 UI0Detect - ok
17:50:10.0091 7436 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
17:50:10.0093 7436 uliagpkx - ok
17:50:10.0111 7436 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
17:50:10.0113 7436 umbus - ok
17:50:10.0123 7436 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:50:10.0124 7436 UmPass - ok
17:50:10.0141 7436 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
17:50:10.0145 7436 UmRdpService - ok
17:50:10.0277 7436 UMVPFSrv (927754abf077aeb5504be4e0f2c60c1b) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:50:10.0363 7436 UMVPFSrv - ok
17:50:10.0384 7436 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:50:10.0390 7436 upnphost - ok
17:50:10.0425 7436 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
17:50:10.0427 7436 USBAAPL64 - ok
17:50:10.0459 7436 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
17:50:10.0462 7436 usbaudio - ok
17:50:10.0498 7436 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
17:50:10.0501 7436 usbccgp - ok
17:50:10.0531 7436 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
17:50:10.0536 7436 usbcir - ok
17:50:10.0578 7436 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
17:50:10.0581 7436 usbehci - ok
17:50:10.0629 7436 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
17:50:10.0639 7436 usbhub - ok
17:50:10.0660 7436 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
17:50:10.0661 7436 usbohci - ok
17:50:10.0671 7436 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:50:10.0673 7436 usbprint - ok
17:50:10.0714 7436 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:50:10.0715 7436 usbscan - ok
17:50:10.0758 7436 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:50:10.0759 7436 USBSTOR - ok
17:50:10.0770 7436 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
17:50:10.0772 7436 usbuhci - ok
17:50:10.0816 7436 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
17:50:10.0817 7436 usb_rndisx - ok
17:50:10.0835 7436 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:50:10.0837 7436 UxSms - ok
17:50:10.0875 7436 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
17:50:10.0876 7436 VaultSvc - ok
17:50:10.0884 7436 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
17:50:10.0885 7436 vdrvroot - ok
17:50:10.0906 7436 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
17:50:10.0913 7436 vds - ok
17:50:10.0921 7436 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:50:10.0923 7436 vga - ok
17:50:10.0927 7436 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:50:10.0929 7436 VgaSave - ok
17:50:10.0941 7436 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
17:50:10.0944 7436 vhdmp - ok
17:50:11.0017 7436 VIAHdAudAddService (28bcdfe57119b97eef05361906ce74be) C:\Windows\system32\drivers\viahduaa.sys
17:50:11.0040 7436 VIAHdAudAddService - ok
17:50:11.0055 7436 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
17:50:11.0057 7436 viaide - ok
17:50:11.0076 7436 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
17:50:11.0079 7436 vmbus - ok
17:50:11.0085 7436 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
17:50:11.0086 7436 VMBusHID - ok
17:50:11.0094 7436 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
17:50:11.0096 7436 volmgr - ok
17:50:11.0118 7436 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
17:50:11.0121 7436 volmgrx - ok
17:50:11.0140 7436 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
17:50:11.0143 7436 volsnap - ok
17:50:11.0154 7436 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:50:11.0156 7436 vsmraid - ok
17:50:11.0203 7436 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
17:50:11.0229 7436 VSS - ok
17:50:11.0272 7436 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
17:50:11.0274 7436 vwifibus - ok
17:50:11.0290 7436 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:50:11.0295 7436 W32Time - ok
17:50:11.0304 7436 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:50:11.0305 7436 WacomPen - ok
17:50:11.0324 7436 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:50:11.0325 7436 WANARP - ok
17:50:11.0336 7436 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
17:50:11.0337 7436 Wanarpv6 - ok
17:50:11.0399 7436 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:50:11.0419 7436 WatAdminSvc - ok
17:50:11.0475 7436 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
17:50:11.0501 7436 wbengine - ok
17:50:11.0540 7436 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:50:11.0544 7436 WbioSrvc - ok
17:50:11.0625 7436 WcesComm (8bda6db43aa54e8bb5e0794541ddc209) C:\Windows\WindowsMobile\wcescomm.dll
17:50:11.0635 7436 WcesComm - ok
17:50:11.0681 7436 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
17:50:11.0687 7436 wcncsvc - ok
17:50:11.0701 7436 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:50:11.0705 7436 WcsPlugInService - ok
17:50:11.0715 7436 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:50:11.0716 7436 Wd - ok
17:50:11.0747 7436 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:50:11.0755 7436 Wdf01000 - ok
17:50:11.0776 7436 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:50:11.0780 7436 WdiServiceHost - ok
17:50:11.0783 7436 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:50:11.0786 7436 WdiSystemHost - ok
17:50:11.0831 7436 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
17:50:11.0837 7436 WebClient - ok
17:50:11.0849 7436 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:50:11.0854 7436 Wecsvc - ok
17:50:11.0868 7436 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:50:11.0872 7436 wercplsupport - ok
17:50:11.0894 7436 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:50:11.0898 7436 WerSvc - ok
17:50:11.0913 7436 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:50:11.0914 7436 WfpLwf - ok
17:50:11.0925 7436 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:50:11.0926 7436 WIMMount - ok
17:50:11.0954 7436 WinDefend - ok
17:50:11.0964 7436 WinHttpAutoProxySvc - ok
17:50:11.0994 7436 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:50:11.0997 7436 Winmgmt - ok
17:50:12.0053 7436 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
17:50:12.0083 7436 WinRM - ok
17:50:12.0187 7436 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
17:50:12.0190 7436 WinUsb - ok
17:50:12.0229 7436 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:50:12.0241 7436 Wlansvc - ok
17:50:12.0389 7436 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:50:12.0431 7436 wlidsvc - ok
17:50:12.0494 7436 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:50:12.0494 7436 WmiAcpi - ok
17:50:12.0523 7436 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:50:12.0525 7436 wmiApSrv - ok
17:50:12.0551 7436 WMPNetworkSvc - ok
17:50:12.0556 7436 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:50:12.0559 7436 WPCSvc - ok
17:50:12.0572 7436 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
17:50:12.0575 7436 WPDBusEnum - ok
17:50:12.0581 7436 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:50:12.0582 7436 ws2ifsl - ok
17:50:12.0623 7436 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
17:50:12.0626 7436 wscsvc - ok
17:50:12.0660 7436 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
17:50:12.0662 7436 WSDPrintDevice - ok
17:50:12.0665 7436 WSearch - ok
17:50:12.0732 7436 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
17:50:12.0766 7436 wuauserv - ok
17:50:12.0801 7436 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
17:50:12.0803 7436 WudfPf - ok
17:50:12.0815 7436 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:50:12.0817 7436 WUDFRd - ok
17:50:12.0832 7436 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
17:50:12.0854 7436 wudfsvc - ok
17:50:12.0879 7436 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:50:12.0884 7436 WwanSvc - ok
17:50:12.0915 7436 MBR (0x1B8) (09ce7397af23d4c0b331b89d0297cc7e) \Device\Harddisk0\DR0
17:50:13.0138 7436 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:50:13.0138 7436 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:50:13.0143 7436 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
17:50:13.0229 7436 \Device\Harddisk1\DR1 ( TDSS File System ) - warning
17:50:13.0229 7436 \Device\Harddisk1\DR1 - detected TDSS File System (1)
17:50:13.0237 7436 Boot (0x1200) (374f1ca877112a102e1b19c3a134f013) \Device\Harddisk0\DR0\Partition0
17:50:13.0241 7436 \Device\Harddisk0\DR0\Partition0 - ok
17:50:13.0249 7436 Boot (0x1200) (4c8c5b8cba882b9bd72767c702270e28) \Device\Harddisk1\DR1\Partition0
17:50:13.0252 7436 \Device\Harddisk1\DR1\Partition0 - ok
17:50:13.0254 7436 ============================================================
17:50:13.0254 7436 Scan finished
17:50:13.0254 7436 ============================================================
17:50:13.0270 5752 Detected object count: 2
17:50:13.0270 5752 Actual detected object count: 2
17:51:07.0477 5752 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
17:51:07.0484 5752 \Device\Harddisk0\DR0\TDLFS\tdl - copied to quarantine
17:51:07.0489 5752 \Device\Harddisk0\DR0\TDLFS\rsrc.dat - copied to quarantine
17:51:07.0493 5752 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
17:51:07.0499 5752 \Device\Harddisk0\DR0\TDLFS\tdlcmd.dll - copied to quarantine
17:51:07.0680 5752 \Device\Harddisk0\DR0\TDLFS\keywords - copied to quarantine
17:51:07.0684 5752 \Device\Harddisk0\DR0\TDLFS - deleted
17:51:07.0684 5752 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
17:51:07.0825 5752 \Device\Harddisk1\DR1\TDLFS\ph.dll - copied to quarantine
17:51:07.0879 5752 \Device\Harddisk1\DR1\TDLFS\phx.dll - copied to quarantine
17:51:07.0997 5752 \Device\Harddisk1\DR1\TDLFS\sub.dll - copied to quarantine
17:51:08.0202 5752 \Device\Harddisk1\DR1\TDLFS\subx.dll - copied to quarantine
17:51:08.0308 5752 \Device\Harddisk1\DR1\TDLFS\phd - copied to quarantine
17:51:12.0562 5752 \Device\Harddisk1\DR1\TDLFS\phdx - copied to quarantine
17:51:12.0604 5752 \Device\Harddisk1\DR1\TDLFS\phs - copied to quarantine
17:51:12.0618 5752 \Device\Harddisk1\DR1\TDLFS\phdata - copied to quarantine
17:51:12.0621 5752 \Device\Harddisk1\DR1\TDLFS\phld - copied to quarantine
17:51:12.0783 5752 \Device\Harddisk1\DR1\TDLFS\phln - copied to quarantine
17:51:12.0871 5752 \Device\Harddisk1\DR1\TDLFS\phlx - copied to quarantine
17:51:12.0891 5752 \Device\Harddisk1\DR1\TDLFS\phm - copied to quarantine
17:51:12.0898 5752 \Device\Harddisk1\DR1\TDLFS - deleted
17:51:12.0898 5752 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Delete
17:51:15.0896 5980 Deinitialize success

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:38 AM

Posted 30 May 2012 - 06:31 PM

Please reboot. Are the redirects stopped?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 gizmowesel

gizmowesel
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:38 AM

Posted 30 May 2012 - 08:47 PM

The redirects have stopped.
Is everything fixed?
Thanks again for your help.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:38 AM

Posted 30 May 2012 - 08:58 PM

Yes it looks good now.
If there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Posted Image > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Posted Image > Run... and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.
Vista and Windows 7 users can refer to these links:

You're welcome!!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users