Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need some help with svchost.exe please!


  • Please log in to reply
19 replies to this topic

#1 shirorya

shirorya

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 01 June 2012 - 06:23 PM

Hello! Some help with my computer would be very much appreciated. :)

Last night when I was researching something, my computer randomly restarted which made me suspicious so I ran a Malwarebytes scan and it came up with two trojan agents svchost.exe. When I restarted as Malawarbytes said to, then scanned again, it was still there. Today I've had my computer in safe mode to scan again and was able to manually delete the svchost.exe file so now Malawarebytes comes up clean. I also scanned with TDSSKiller and it did come up with a few things, then scanned again after it fixed it and it came up with nothing. I haven't noticed any strange behavior with my computer, though my friend who knows a lot about them suggested I post here so someone can make sure I got it all and don't have a backdoor virus from it. I do have a lot of svchost.exe running under processes in the task manager, including one called svchost.exe*32 under Windows/SysWOW64, though that one seems to be tied to my HP printer so am not sure if those are a problem or not.

My computer is a Dell 64-bit running Windows 7 and here are the two logs from TDSSKiller. The first was the scan I did when it found a few things, then the latest one that came up clean.

Thanks in advance!

14:39:27.0508 1428 OS Version: 6.1.7601 ServicePack: 1.0
14:39:27.0508 1428 Product type: Workstation
14:39:27.0508 1428 ComputerName: STEPHDESKTOP
14:39:27.0508 1428 UserName: Stephanie
14:39:27.0508 1428 Windows directory: C:\Windows
14:39:27.0508 1428 System windows directory: C:\Windows
14:39:27.0508 1428 Running under WOW64
14:39:27.0508 1428 Processor architecture: Intel x64
14:39:27.0508 1428 Number of processors: 8
14:39:27.0508 1428 Page size: 0x1000
14:39:27.0508 1428 Boot type: Safe boot with network
14:39:27.0508 1428 ============================================================
14:39:29.0970 1428 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:39:30.0008 1428 ============================================================
14:39:30.0008 1428 \Device\Harddisk0\DR0:
14:39:30.0010 1428 MBR partitions:
14:39:30.0010 1428 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000
14:39:30.0010 1428 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x48A38000
14:39:30.0010 1428 ============================================================
14:39:30.0062 1428 C: <-> \Device\Harddisk0\DR0\Partition1
14:39:30.0117 1428 D: <-> \Device\Harddisk0\DR0\Partition0
14:39:30.0118 1428 ============================================================
14:39:30.0118 1428 Initialize success
14:39:30.0118 1428 ============================================================
14:39:32.0790 1704 ============================================================
14:39:32.0790 1704 Scan started
14:39:32.0790 1704 Mode: Manual;
14:39:32.0790 1704 ============================================================
14:39:36.0659 1704 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
14:39:36.0660 1704 1394ohci - ok
14:39:36.0693 1704 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
14:39:36.0700 1704 ACPI - ok
14:39:36.0726 1704 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
14:39:36.0727 1704 AcpiPmi - ok
14:39:36.0768 1704 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
14:39:36.0769 1704 adfs - ok
14:39:36.0925 1704 Adobe Version Cue CS4 (9444a3530c2e88b7ed96a566ff9ccc13) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
14:39:36.0951 1704 Adobe Version Cue CS4 - ok
14:39:37.0040 1704 AdobeActiveFileMonitor5.0 (177ff6608b48638d4066726f3a3f8444) C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
14:39:37.0042 1704 AdobeActiveFileMonitor5.0 - ok
14:39:37.0190 1704 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:39:37.0208 1704 AdobeFlashPlayerUpdateSvc - ok
14:39:37.0601 1704 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:39:37.0613 1704 adp94xx - ok
14:39:37.0639 1704 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:39:37.0646 1704 adpahci - ok
14:39:37.0677 1704 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:39:37.0688 1704 adpu320 - ok
14:39:37.0724 1704 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:39:37.0725 1704 AeLookupSvc - ok
14:39:37.0778 1704 AERTFilters (233ee06f203f6fd78ccbb8e0d139a271) C:\Windows\system32\AERTSr64.exe
14:39:37.0778 1704 AERTFilters - ok
14:39:37.0832 1704 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
14:39:37.0844 1704 AFD - ok
14:39:37.0867 1704 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:39:37.0868 1704 agp440 - ok
14:39:37.0910 1704 aksdf (89cd44c10d9b4d87725ff07f18a5702f) C:\Windows\system32\drivers\aksdf.sys
14:39:37.0910 1704 aksdf - ok
14:39:37.0951 1704 aksfridge (ba0b6fd78ae88d39b9d3d984f295a137) C:\Windows\system32\DRIVERS\aksfridge.sys
14:39:37.0952 1704 aksfridge - ok
14:39:37.0991 1704 akshasp (a56f1b0f967aef8a82d7771e6d166def) C:\Windows\system32\DRIVERS\akshasp.sys
14:39:37.0992 1704 akshasp - ok
14:39:38.0025 1704 akshhl (67dff8c8f95cb21c9c3380dd4c0387f2) C:\Windows\system32\DRIVERS\akshhl.sys
14:39:38.0026 1704 akshhl - ok
14:39:38.0041 1704 aksusb (a9a09bc526e614ce9f29bb23c2a76ced) C:\Windows\system32\DRIVERS\aksusb.sys
14:39:38.0042 1704 aksusb - ok
14:39:38.0056 1704 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:39:38.0057 1704 ALG - ok
14:39:38.0067 1704 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:39:38.0068 1704 aliide - ok
14:39:38.0233 1704 ALSysIO - ok
14:39:38.0386 1704 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
14:39:38.0396 1704 AMD External Events Utility - ok
14:39:38.0437 1704 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:39:38.0437 1704 amdide - ok
14:39:38.0477 1704 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:39:38.0478 1704 AmdK8 - ok
14:39:38.0988 1704 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
14:39:39.0119 1704 amdkmdag - ok
14:39:39.0325 1704 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
14:39:39.0327 1704 amdkmdap - ok
14:39:39.0357 1704 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:39:39.0358 1704 AmdPPM - ok
14:39:39.0400 1704 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
14:39:39.0405 1704 amdsata - ok
14:39:39.0433 1704 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:39:39.0444 1704 amdsbs - ok
14:39:39.0447 1704 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
14:39:39.0447 1704 amdxata - ok
14:39:39.0557 1704 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
14:39:39.0566 1704 Amsp - ok
14:39:39.0614 1704 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
14:39:39.0615 1704 AppID - ok
14:39:39.0649 1704 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:39:39.0649 1704 AppIDSvc - ok
14:39:39.0690 1704 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
14:39:39.0691 1704 Appinfo - ok
14:39:39.0871 1704 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:39:39.0906 1704 Apple Mobile Device - ok
14:39:39.0938 1704 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:39:39.0941 1704 arc - ok
14:39:39.0955 1704 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:39:39.0956 1704 arcsas - ok
14:39:40.0152 1704 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:39:40.0169 1704 aspnet_state - ok
14:39:40.0201 1704 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:39:40.0202 1704 AsyncMac - ok
14:39:40.0226 1704 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:39:40.0226 1704 atapi - ok
14:39:40.0286 1704 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
14:39:40.0286 1704 AtiHDAudioService - ok
14:39:41.0072 1704 atikmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
14:39:41.0117 1704 atikmdag - ok
14:39:41.0281 1704 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:39:41.0296 1704 AudioEndpointBuilder - ok
14:39:41.0299 1704 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:39:41.0302 1704 AudioSrv - ok
14:39:41.0356 1704 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
14:39:41.0357 1704 AxInstSV - ok
14:39:41.0454 1704 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:39:41.0466 1704 b06bdrv - ok
14:39:41.0523 1704 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:39:41.0532 1704 b57nd60a - ok
14:39:41.0581 1704 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:39:41.0583 1704 BDESVC - ok
14:39:41.0596 1704 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:39:41.0596 1704 Beep - ok
14:39:41.0673 1704 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
14:39:41.0688 1704 BFE - ok
14:39:41.0759 1704 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
14:39:41.0779 1704 BITS - ok
14:39:41.0792 1704 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:39:41.0793 1704 blbdrive - ok
14:39:41.0918 1704 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
14:39:41.0932 1704 Bonjour Service - ok
14:39:41.0957 1704 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
14:39:41.0958 1704 bowser - ok
14:39:41.0971 1704 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:39:41.0972 1704 BrFiltLo - ok
14:39:41.0985 1704 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:39:41.0986 1704 BrFiltUp - ok
14:39:42.0036 1704 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
14:39:42.0037 1704 Browser - ok
14:39:42.0060 1704 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:39:42.0069 1704 Brserid - ok
14:39:42.0085 1704 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:39:42.0086 1704 BrSerWdm - ok
14:39:42.0097 1704 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:39:42.0098 1704 BrUsbMdm - ok
14:39:42.0107 1704 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:39:42.0107 1704 BrUsbSer - ok
14:39:42.0141 1704 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:39:42.0142 1704 BTHMODEM - ok
14:39:42.0181 1704 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:39:42.0182 1704 bthserv - ok
14:39:42.0208 1704 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:39:42.0210 1704 cdfs - ok
14:39:42.0243 1704 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
14:39:42.0243 1704 cdrom - ok
14:39:42.0287 1704 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:39:42.0288 1704 CertPropSvc - ok
14:39:42.0315 1704 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:39:42.0317 1704 circlass - ok
14:39:42.0355 1704 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:39:42.0362 1704 CLFS - ok
14:39:42.0444 1704 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:39:42.0447 1704 clr_optimization_v2.0.50727_32 - ok
14:39:42.0513 1704 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:39:42.0518 1704 clr_optimization_v2.0.50727_64 - ok
14:39:42.0569 1704 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:39:42.0641 1704 clr_optimization_v4.0.30319_32 - ok
14:39:42.0667 1704 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:39:42.0671 1704 clr_optimization_v4.0.30319_64 - ok
14:39:42.0700 1704 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:39:42.0701 1704 CmBatt - ok
14:39:42.0723 1704 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:39:42.0724 1704 cmdide - ok
14:39:42.0780 1704 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
14:39:42.0809 1704 CNG - ok
14:39:42.0841 1704 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:39:42.0842 1704 Compbatt - ok
14:39:42.0870 1704 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
14:39:42.0870 1704 CompositeBus - ok
14:39:42.0876 1704 COMSysApp - ok
14:39:42.0878 1704 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:39:42.0879 1704 crcdisk - ok
14:39:42.0936 1704 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
14:39:42.0939 1704 CryptSvc - ok
14:39:42.0989 1704 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:39:42.0994 1704 DcomLaunch - ok
14:39:43.0040 1704 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:39:43.0049 1704 defragsvc - ok
14:39:43.0093 1704 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
14:39:43.0093 1704 DfsC - ok
14:39:43.0136 1704 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
14:39:43.0144 1704 Dhcp - ok
14:39:43.0155 1704 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:39:43.0155 1704 discache - ok
14:39:43.0172 1704 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:39:43.0172 1704 Disk - ok
14:39:43.0202 1704 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
14:39:43.0214 1704 Dnscache - ok
14:39:43.0303 1704 DockLoginService (db29915209770d8b59654345ec2d943a) C:\Program Files\Dell\DellDock\DockLogin.exe
14:39:43.0304 1704 DockLoginService - ok
14:39:43.0348 1704 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
14:39:43.0358 1704 dot3svc - ok
14:39:43.0401 1704 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
14:39:43.0404 1704 DPS - ok
14:39:43.0443 1704 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:39:43.0444 1704 drmkaud - ok
14:39:43.0523 1704 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
14:39:43.0528 1704 DXGKrnl - ok
14:39:43.0573 1704 e1yexpress (50ad8fc1dc800ff36087994c8f7fdff2) C:\Windows\system32\DRIVERS\e1y60x64.sys
14:39:43.0574 1704 e1yexpress - ok
14:39:43.0624 1704 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:39:43.0625 1704 EapHost - ok
14:39:43.0663 1704 easytether (1e8d0e318d3f17b2eaaf993db20c76f0) C:\Windows\system32\DRIVERS\easytthr.sys
14:39:43.0663 1704 easytether - ok
14:39:43.0808 1704 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:39:43.0855 1704 ebdrv - ok
14:39:43.0990 1704 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
14:39:43.0990 1704 EFS - ok
14:39:44.0076 1704 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
14:39:44.0090 1704 ehRecvr - ok
14:39:44.0128 1704 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
14:39:44.0132 1704 ehSched - ok
14:39:44.0226 1704 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:39:44.0238 1704 elxstor - ok
14:39:44.0267 1704 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:39:44.0268 1704 ErrDev - ok
14:39:44.0325 1704 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:39:44.0330 1704 EventSystem - ok
14:39:44.0348 1704 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:39:44.0359 1704 exfat - ok
14:39:44.0372 1704 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:39:44.0373 1704 fastfat - ok
14:39:44.0446 1704 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
14:39:44.0460 1704 Fax - ok
14:39:44.0469 1704 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:39:44.0470 1704 fdc - ok
14:39:44.0484 1704 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:39:44.0485 1704 fdPHost - ok
14:39:44.0495 1704 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:39:44.0496 1704 FDResPub - ok
14:39:44.0574 1704 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:39:44.0575 1704 FileInfo - ok
14:39:44.0645 1704 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:39:44.0646 1704 Filetrace - ok
14:39:44.0809 1704 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
14:39:44.0824 1704 FLEXnet Licensing Service - ok
14:39:45.0002 1704 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
14:39:45.0014 1704 FLEXnet Licensing Service 64 - ok
14:39:45.0184 1704 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:39:45.0185 1704 flpydisk - ok
14:39:45.0237 1704 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
14:39:45.0271 1704 FltMgr - ok
14:39:45.0338 1704 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
14:39:45.0389 1704 FontCache - ok
14:39:45.0493 1704 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:39:45.0494 1704 FontCache3.0.0.0 - ok
14:39:45.0564 1704 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:39:45.0565 1704 FsDepends - ok
14:39:45.0765 1704 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
14:39:45.0765 1704 Fs_Rec - ok
14:39:47.0512 1704 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:39:47.0547 1704 fvevol - ok
14:39:48.0300 1704 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:39:48.0334 1704 gagp30kx - ok
14:39:48.0628 1704 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:39:48.0628 1704 GEARAspiWDM - ok
14:39:51.0281 1704 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
14:39:51.0292 1704 gpsvc - ok
14:39:52.0146 1704 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:39:52.0173 1704 gupdate - ok
14:39:52.0242 1704 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:39:52.0243 1704 gupdatem - ok
14:39:52.0705 1704 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:39:52.0732 1704 gusvc - ok
14:39:53.0354 1704 hardlock (78fad9117e4527f2ca82259da10f40bd) C:\Windows\system32\drivers\hardlock.sys
14:39:53.0356 1704 hardlock - ok
14:39:53.0357 1704 hasplms - ok
14:39:53.0482 1704 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:39:53.0521 1704 hcw85cir - ok
14:39:54.0176 1704 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
14:39:54.0205 1704 HdAudAddService - ok
14:39:54.0460 1704 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
14:39:54.0461 1704 HDAudBus - ok
14:39:54.0597 1704 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:39:54.0612 1704 HidBatt - ok
14:39:54.0786 1704 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:39:54.0800 1704 HidBth - ok
14:39:55.0052 1704 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:39:55.0091 1704 HidIr - ok
14:39:55.0244 1704 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:39:55.0245 1704 hidserv - ok
14:39:55.0354 1704 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
14:39:55.0354 1704 HidUsb - ok
14:39:55.0767 1704 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
14:39:55.0843 1704 hkmsvc - ok
14:39:56.0253 1704 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
14:39:56.0256 1704 HomeGroupListener - ok
14:39:56.0816 1704 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
14:39:56.0819 1704 HomeGroupProvider - ok
14:39:57.0488 1704 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
14:39:57.0491 1704 hpqcxs08 - ok
14:39:57.0895 1704 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
14:39:57.0903 1704 hpqddsvc - ok
14:39:58.0700 1704 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
14:39:58.0703 1704 HpSAMD - ok
14:39:59.0517 1704 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
14:39:59.0521 1704 HTTP - ok
14:39:59.0609 1704 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
14:39:59.0609 1704 hwpolicy - ok
14:39:59.0866 1704 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
14:39:59.0867 1704 i8042prt - ok
14:40:01.0574 1704 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
14:40:01.0610 1704 iaStorV - ok
14:40:02.0149 1704 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:40:02.0151 1704 IDriverT - ok
14:40:03.0820 1704 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:40:03.0914 1704 idsvc - ok
14:40:06.0433 1704 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:40:06.0478 1704 iirsp - ok
14:40:07.0052 1704 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
14:40:07.0060 1704 IKEEXT - ok
14:40:07.0989 1704 IntcAzAudAddService (358a23acf3a78893eeacd4beb20953d5) C:\Windows\system32\drivers\RTKVHD64.sys
14:40:08.0010 1704 IntcAzAudAddService - ok
14:40:09.0038 1704 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:40:09.0038 1704 intelide - ok
14:40:09.0177 1704 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:40:09.0177 1704 intelppm - ok
14:40:09.0363 1704 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:40:09.0393 1704 IPBusEnum - ok
14:40:09.0554 1704 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:40:09.0555 1704 IpFilterDriver - ok
14:40:09.0653 1704 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
14:40:09.0659 1704 iphlpsvc - ok
14:40:09.0710 1704 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
14:40:09.0711 1704 IPMIDRV - ok
14:40:09.0881 1704 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:40:09.0882 1704 IPNAT - ok
14:40:11.0184 1704 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
14:40:11.0221 1704 iPod Service - ok
14:40:11.0311 1704 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:40:11.0315 1704 IRENUM - ok
14:40:11.0394 1704 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:40:11.0394 1704 isapnp - ok
14:40:12.0013 1704 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
14:40:12.0091 1704 iScsiPrt - ok
14:40:12.0243 1704 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:40:12.0243 1704 kbdclass - ok
14:40:12.0363 1704 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
14:40:12.0363 1704 kbdhid - ok
14:40:12.0435 1704 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:40:12.0436 1704 KeyIso - ok
14:40:12.0459 1704 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
14:40:12.0460 1704 KSecDD - ok
14:40:12.0498 1704 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
14:40:12.0501 1704 KSecPkg - ok
14:40:12.0600 1704 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:40:12.0600 1704 ksthunk - ok
14:40:12.0790 1704 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:40:12.0795 1704 KtmRm - ok
14:40:13.0034 1704 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
14:40:13.0037 1704 LanmanServer - ok
14:40:13.0197 1704 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
14:40:13.0203 1704 LanmanWorkstation - ok
14:40:13.0664 1704 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:40:13.0665 1704 lltdio - ok
14:40:13.0733 1704 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:40:13.0754 1704 lltdsvc - ok
14:40:13.0816 1704 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:40:13.0817 1704 lmhosts - ok
14:40:14.0004 1704 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:40:14.0013 1704 LSI_FC - ok
14:40:14.0227 1704 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:40:14.0240 1704 LSI_SAS - ok
14:40:14.0259 1704 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:40:14.0260 1704 LSI_SAS2 - ok
14:40:14.0358 1704 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:40:14.0360 1704 LSI_SCSI - ok
14:40:14.0495 1704 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:40:14.0496 1704 luafv - ok
14:40:14.0965 1704 lxdxCATSCustConnectService (4208b958e35f0e596aa241efb664636b) C:\Windows\system32\spool\DRIVERS\x64\3\\lxdxserv.exe
14:40:15.0067 1704 lxdxCATSCustConnectService - ok
14:40:15.0068 1704 lxdx_device - ok
14:40:15.0294 1704 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
14:40:15.0296 1704 Mcx2Svc - ok
14:40:15.0512 1704 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:40:15.0513 1704 megasas - ok
14:40:15.0638 1704 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:40:15.0659 1704 MegaSR - ok
14:40:15.0850 1704 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:40:15.0851 1704 MMCSS - ok
14:40:15.0953 1704 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:40:15.0976 1704 Modem - ok
14:40:16.0009 1704 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:40:16.0010 1704 monitor - ok
14:40:16.0030 1704 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:40:16.0031 1704 mouclass - ok
14:40:16.0047 1704 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:40:16.0047 1704 mouhid - ok
14:40:16.0236 1704 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
14:40:16.0254 1704 mountmgr - ok
14:40:16.0383 1704 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:40:16.0388 1704 MozillaMaintenance - ok
14:40:16.0696 1704 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
14:40:16.0698 1704 mpio - ok
14:40:16.0728 1704 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:40:16.0728 1704 mpsdrv - ok
14:40:16.0869 1704 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
14:40:16.0891 1704 MpsSvc - ok
14:40:16.0995 1704 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
14:40:17.0023 1704 MRxDAV - ok
14:40:17.0064 1704 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:40:17.0065 1704 mrxsmb - ok
14:40:17.0119 1704 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:40:17.0121 1704 mrxsmb10 - ok
14:40:17.0354 1704 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:40:17.0355 1704 mrxsmb20 - ok
14:40:17.0377 1704 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
14:40:17.0378 1704 msahci - ok
14:40:17.0469 1704 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
14:40:17.0471 1704 msdsm - ok
14:40:17.0543 1704 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:40:17.0545 1704 MSDTC - ok
14:40:17.0574 1704 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:40:17.0575 1704 Msfs - ok
14:40:17.0595 1704 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:40:17.0596 1704 mshidkmdf - ok
14:40:17.0641 1704 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:40:17.0642 1704 msisadrv - ok
14:40:17.0695 1704 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:40:17.0707 1704 MSiSCSI - ok
14:40:17.0709 1704 msiserver - ok
14:40:17.0800 1704 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:40:17.0809 1704 MSKSSRV - ok
14:40:17.0869 1704 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:40:17.0870 1704 MSPCLOCK - ok
14:40:17.0890 1704 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:40:17.0891 1704 MSPQM - ok
14:40:18.0210 1704 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
14:40:18.0237 1704 MsRPC - ok
14:40:18.0302 1704 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:40:18.0302 1704 mssmbios - ok
14:40:18.0373 1704 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:40:18.0392 1704 MSTEE - ok
14:40:18.0462 1704 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:40:18.0828 1704 MTConfig - ok
14:40:18.0976 1704 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:40:18.0976 1704 Mup - ok
14:40:19.0071 1704 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
14:40:19.0082 1704 napagent - ok
14:40:19.0472 1704 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:40:19.0474 1704 NativeWifiP - ok
14:40:20.0104 1704 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
14:40:20.0123 1704 NDIS - ok
14:40:20.0176 1704 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:40:20.0177 1704 NdisCap - ok
14:40:20.0262 1704 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:40:20.0262 1704 NdisTapi - ok
14:40:20.0387 1704 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
14:40:20.0387 1704 Ndisuio - ok
14:40:20.0491 1704 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
14:40:20.0493 1704 NdisWan - ok
14:40:20.0575 1704 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
14:40:20.0575 1704 NDProxy - ok
14:40:20.0664 1704 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:40:20.0664 1704 NetBIOS - ok
14:40:20.0742 1704 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
14:40:20.0743 1704 NetBT - ok
14:40:20.0789 1704 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:40:20.0789 1704 Netlogon - ok
14:40:20.0924 1704 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:40:20.0928 1704 Netman - ok
14:40:21.0076 1704 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:40:21.0083 1704 NetMsmqActivator - ok
14:40:21.0085 1704 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:40:21.0086 1704 NetPipeActivator - ok
14:40:21.0267 1704 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:40:21.0272 1704 netprofm - ok
14:40:21.0625 1704 netr28ux (26672f93749ac9fd28da1b0f94efa78d) C:\Windows\system32\DRIVERS\Dnetr28ux.sys
14:40:21.0630 1704 netr28ux - ok
14:40:21.0976 1704 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:40:21.0977 1704 NetTcpActivator - ok
14:40:21.0979 1704 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:40:21.0980 1704 NetTcpPortSharing - ok
14:40:22.0109 1704 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:40:22.0120 1704 nfrd960 - ok
14:40:23.0788 1704 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
14:40:23.0834 1704 NlaSvc - ok
14:40:23.0848 1704 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:40:23.0849 1704 Npfs - ok
14:40:23.0981 1704 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:40:23.0982 1704 nsi - ok
14:40:24.0207 1704 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:40:24.0208 1704 nsiproxy - ok
14:40:24.0473 1704 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
14:40:24.0508 1704 Ntfs - ok
14:40:25.0458 1704 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:40:25.0458 1704 Null - ok
14:40:25.0529 1704 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
14:40:25.0531 1704 nvraid - ok
14:40:25.0650 1704 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
14:40:25.0664 1704 nvstor - ok
14:40:25.0731 1704 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:40:25.0733 1704 nv_agp - ok
14:40:26.0204 1704 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:40:26.0209 1704 odserv - ok
14:40:26.0316 1704 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:40:26.0317 1704 ohci1394 - ok
14:40:26.0397 1704 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:40:26.0399 1704 ose - ok
14:40:26.0613 1704 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:40:26.0616 1704 p2pimsvc - ok
14:40:26.0662 1704 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:40:26.0684 1704 p2psvc - ok
14:40:26.0733 1704 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:40:26.0735 1704 Parport - ok
14:40:26.0766 1704 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
14:40:26.0767 1704 partmgr - ok
14:40:26.0782 1704 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:40:26.0793 1704 PcaSvc - ok
14:40:26.0825 1704 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
14:40:26.0836 1704 pci - ok
14:40:26.0847 1704 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:40:26.0847 1704 pciide - ok
14:40:26.0889 1704 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:40:26.0891 1704 pcmcia - ok
14:40:26.0938 1704 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:40:26.0939 1704 pcw - ok
14:40:26.0968 1704 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:40:26.0972 1704 PEAUTH - ok
14:40:27.0131 1704 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:40:27.0133 1704 PerfHost - ok
14:40:27.0272 1704 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
14:40:27.0302 1704 pla - ok
14:40:27.0365 1704 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
14:40:27.0396 1704 PlugPlay - ok
14:40:27.0439 1704 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:40:27.0440 1704 PNRPAutoReg - ok
14:40:27.0481 1704 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:40:27.0483 1704 PNRPsvc - ok
14:40:27.0604 1704 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
14:40:27.0649 1704 PolicyAgent - ok
14:40:27.0709 1704 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:40:27.0721 1704 Power - ok
14:40:27.0805 1704 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
14:40:27.0806 1704 PptpMiniport - ok
14:40:27.0834 1704 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:40:27.0835 1704 Processor - ok
14:40:27.0884 1704 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
14:40:27.0911 1704 ProfSvc - ok
14:40:27.0964 1704 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:40:27.0965 1704 ProtectedStorage - ok
14:40:28.0001 1704 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
14:40:28.0002 1704 Psched - ok
14:40:28.0110 1704 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
14:40:28.0121 1704 PSI_SVC_2 - ok
14:40:28.0148 1704 PxHlpa64 (46851bc18322da70f3f2299a1007c479) C:\Windows\system32\Drivers\PxHlpa64.sys
14:40:28.0148 1704 PxHlpa64 - ok
14:40:28.0486 1704 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:40:28.0534 1704 ql2300 - ok
14:40:28.0716 1704 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:40:28.0720 1704 ql40xx - ok
14:40:28.0765 1704 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:40:28.0775 1704 QWAVE - ok
14:40:28.0809 1704 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:40:28.0810 1704 QWAVEdrv - ok
14:40:28.0823 1704 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:40:28.0824 1704 RasAcd - ok
14:40:28.0883 1704 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:40:28.0883 1704 RasAgileVpn - ok
14:40:28.0894 1704 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:40:28.0896 1704 RasAuto - ok
14:40:28.0933 1704 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:40:28.0934 1704 Rasl2tp - ok
14:40:28.0979 1704 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
14:40:28.0987 1704 RasMan - ok
14:40:29.0010 1704 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:40:29.0011 1704 RasPppoe - ok
14:40:29.0038 1704 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:40:29.0038 1704 RasSstp - ok
14:40:29.0087 1704 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
14:40:29.0089 1704 rdbss - ok
14:40:29.0104 1704 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:40:29.0105 1704 rdpbus - ok
14:40:29.0119 1704 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:40:29.0119 1704 RDPCDD - ok
14:40:29.0172 1704 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:40:29.0173 1704 RDPENCDD - ok
14:40:29.0185 1704 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:40:29.0185 1704 RDPREFMP - ok
14:40:29.0226 1704 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
14:40:29.0237 1704 RDPWD - ok
14:40:29.0287 1704 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
14:40:29.0297 1704 rdyboost - ok
14:40:29.0326 1704 regi (88e128c45699ab390f40f3520f2ee29f) C:\Windows\system32\drivers\regi.sys
14:40:29.0327 1704 regi - ok
14:40:29.0358 1704 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:40:29.0363 1704 RemoteAccess - ok
14:40:29.0400 1704 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:40:29.0404 1704 RemoteRegistry - ok
14:40:29.0411 1704 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:40:29.0412 1704 RpcEptMapper - ok
14:40:29.0448 1704 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:40:29.0449 1704 RpcLocator - ok
14:40:29.0529 1704 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:40:29.0532 1704 RpcSs - ok
14:40:29.0576 1704 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:40:29.0576 1704 rspndr - ok
14:40:29.0614 1704 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:40:29.0615 1704 SamSs - ok
14:40:29.0639 1704 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
14:40:29.0641 1704 sbp2port - ok
14:40:29.0661 1704 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:40:29.0672 1704 SCardSvr - ok
14:40:29.0732 1704 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
14:40:29.0733 1704 scfilter - ok
14:40:29.0816 1704 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
14:40:29.0836 1704 Schedule - ok
14:40:29.0917 1704 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:40:29.0918 1704 SCPolicySvc - ok
14:40:29.0959 1704 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
14:40:29.0971 1704 SDRSVC - ok
14:40:30.0086 1704 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:40:30.0086 1704 secdrv - ok
14:40:30.0123 1704 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
14:40:30.0125 1704 seclogon - ok
14:40:30.0205 1704 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:40:30.0206 1704 SENS - ok
14:40:30.0236 1704 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:40:30.0237 1704 SensrSvc - ok
14:40:30.0253 1704 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:40:30.0254 1704 Serenum - ok
14:40:30.0333 1704 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:40:30.0334 1704 Serial - ok
14:40:30.0374 1704 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:40:30.0375 1704 sermouse - ok
14:40:30.0455 1704 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
14:40:30.0457 1704 SessionEnv - ok
14:40:30.0478 1704 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:40:30.0479 1704 sffdisk - ok
14:40:30.0483 1704 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:40:30.0484 1704 sffp_mmc - ok
14:40:30.0488 1704 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
14:40:30.0489 1704 sffp_sd - ok
14:40:30.0512 1704 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:40:30.0532 1704 sfloppy - ok
14:40:30.0625 1704 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
14:40:30.0629 1704 SharedAccess - ok
14:40:30.0679 1704 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
14:40:30.0693 1704 ShellHWDetection - ok
14:40:30.0711 1704 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:40:30.0712 1704 SiSRaid2 - ok
14:40:30.0729 1704 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:40:30.0730 1704 SiSRaid4 - ok
14:40:30.0763 1704 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:40:30.0764 1704 Smb - ok
14:40:30.0819 1704 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:40:30.0820 1704 SNMPTRAP - ok
14:40:30.0830 1704 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:40:30.0831 1704 spldr - ok
14:40:30.0882 1704 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
14:40:30.0918 1704 Spooler - ok
14:40:31.0118 1704 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
14:40:31.0174 1704 sppsvc - ok
14:40:31.0331 1704 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:40:31.0332 1704 sppuinotify - ok
14:40:31.0399 1704 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
14:40:31.0402 1704 srv - ok
14:40:31.0462 1704 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
14:40:31.0464 1704 srv2 - ok
14:40:31.0528 1704 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
14:40:31.0530 1704 srvnet - ok
14:40:31.0626 1704 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:40:31.0641 1704 SSDPSRV - ok
14:40:31.0696 1704 ssfs0bbc (028f6f489280ab1c42d8a971ef59657b) C:\Windows\system32\DRIVERS\ssfs0bbc.sys
14:40:31.0696 1704 ssfs0bbc - ok
14:40:31.0710 1704 ssidrv (2383a44524cec4dbb4ddbe0deef17826) C:\Windows\system32\DRIVERS\ssidrv.sys
14:40:31.0715 1704 ssidrv - ok
14:40:31.0722 1704 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:40:31.0724 1704 SstpSvc - ok
14:40:31.0793 1704 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:40:31.0794 1704 stexstor - ok
14:40:31.0948 1704 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
14:40:31.0955 1704 stisvc - ok
14:40:32.0051 1704 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
14:40:32.0052 1704 stllssvr - ok
14:40:32.0069 1704 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:40:32.0070 1704 swenum - ok
14:40:32.0150 1704 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:40:32.0175 1704 swprv - ok
14:40:32.0291 1704 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
14:40:32.0319 1704 SysMain - ok
14:40:32.0468 1704 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
14:40:32.0470 1704 TabletInputService - ok
14:40:33.0557 1704 TabletServiceWacom (ffdf8b9b796e5243214233a8db622e3d) C:\Windows\system32\Wacom_Tablet.exe
14:40:33.0672 1704 TabletServiceWacom - ok
14:40:34.0045 1704 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
14:40:34.0048 1704 TapiSrv - ok
14:40:34.0128 1704 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:40:34.0130 1704 TBS - ok
14:40:34.0356 1704 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
14:40:34.0403 1704 Tcpip - ok
14:40:35.0468 1704 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
14:40:35.0476 1704 TCPIP6 - ok
14:40:35.0822 1704 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
14:40:35.0823 1704 tcpipreg - ok
14:40:35.0857 1704 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:40:35.0857 1704 TDPIPE - ok
14:40:35.0907 1704 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
14:40:35.0908 1704 TDTCP - ok
14:40:35.0935 1704 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
14:40:35.0936 1704 tdx - ok
14:40:35.0956 1704 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
14:40:35.0956 1704 TermDD - ok
14:40:36.0024 1704 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
14:40:36.0300 1704 TermService - ok
14:40:36.0349 1704 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:40:36.0350 1704 Themes - ok
14:40:36.0428 1704 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:40:36.0429 1704 THREADORDER - ok
14:40:36.0678 1704 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\Windows\system32\DRIVERS\tmactmon.sys
14:40:36.0679 1704 tmactmon - ok
14:40:36.0973 1704 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\Windows\system32\DRIVERS\tmcomm.sys
14:40:36.0974 1704 tmcomm - ok
14:40:37.0085 1704 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\Windows\system32\DRIVERS\tmevtmgr.sys
14:40:37.0085 1704 tmevtmgr - ok
14:40:37.0217 1704 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\Windows\system32\DRIVERS\tmtdi.sys
14:40:37.0218 1704 tmtdi - ok
14:40:37.0394 1704 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:40:37.0427 1704 TrkWks - ok
14:40:37.0566 1704 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
14:40:37.0583 1704 TrustedInstaller - ok
14:40:37.0661 1704 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:40:37.0694 1704 tssecsrv - ok
14:40:37.0985 1704 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
14:40:38.0005 1704 TsUsbFlt - ok
14:40:38.0221 1704 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
14:40:38.0221 1704 tunnel - ok
14:40:38.0995 1704 tvnserver (aaf458cc200326bef602b5339400bf86) C:\Program Files (x86)\TightVNC\tvnserver.exe
14:40:39.0040 1704 tvnserver - ok
14:40:39.0077 1704 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:40:39.0134 1704 uagp35 - ok
14:40:39.0331 1704 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
14:40:39.0382 1704 udfs - ok
14:40:39.0415 1704 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:40:39.0417 1704 UI0Detect - ok
14:40:39.0436 1704 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:40:39.0437 1704 uliagpkx - ok
14:40:39.0471 1704 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
14:40:39.0471 1704 umbus - ok
14:40:39.0526 1704 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:40:39.0592 1704 UmPass - ok
14:40:39.0634 1704 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:40:39.0658 1704 upnphost - ok
14:40:39.0749 1704 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
14:40:39.0751 1704 USBAAPL64 - ok
14:40:39.0782 1704 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
14:40:39.0783 1704 usbccgp - ok
14:40:39.0848 1704 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:40:39.0897 1704 usbcir - ok
14:40:39.0995 1704 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
14:40:39.0996 1704 usbehci - ok
14:40:40.0056 1704 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
14:40:40.0058 1704 usbhub - ok
14:40:40.0148 1704 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
14:40:40.0179 1704 usbohci - ok
14:40:40.0284 1704 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:40:40.0303 1704 usbprint - ok
14:40:40.0500 1704 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
14:40:40.0500 1704 USBSTOR - ok
14:40:40.0875 1704 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
14:40:40.0875 1704 usbuhci - ok
14:40:41.0368 1704 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:40:41.0369 1704 UxSms - ok
14:40:41.0656 1704 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:40:41.0657 1704 VaultSvc - ok
14:40:41.0999 1704 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:40:42.0000 1704 vdrvroot - ok
14:40:43.0489 1704 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
14:40:43.0531 1704 vds - ok
14:40:43.0695 1704 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:40:43.0696 1704 vga - ok
14:40:43.0711 1704 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:40:43.0712 1704 VgaSave - ok
14:40:44.0571 1704 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
14:40:44.0627 1704 vhdmp - ok
14:40:44.0869 1704 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:40:44.0919 1704 viaide - ok
14:40:45.0048 1704 Viewpoint Manager Service (5f974fde801c73952770736becde11e7) C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
14:40:45.0049 1704 Viewpoint Manager Service - ok
14:40:45.0314 1704 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
14:40:45.0356 1704 volmgr - ok
14:40:46.0046 1704 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
14:40:46.0079 1704 volmgrx - ok
14:40:46.0578 1704 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
14:40:46.0596 1704 volsnap - ok
14:40:47.0355 1704 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:40:47.0374 1704 vsmraid - ok
14:40:49.0410 1704 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
14:40:49.0446 1704 VSS - ok
14:40:50.0987 1704 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
14:40:50.0988 1704 vwifibus - ok
14:40:51.0007 1704 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
14:40:51.0007 1704 vwififlt - ok
14:40:51.0044 1704 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
14:40:51.0044 1704 vwifimp - ok
14:40:51.0178 1704 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:40:51.0183 1704 W32Time - ok
14:40:51.0266 1704 wacmoumonitor (f39fc224758290a3193c68c091e6f11a) C:\Windows\system32\DRIVERS\wacmoumonitor.sys
14:40:51.0267 1704 wacmoumonitor - ok
14:40:51.0300 1704 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:40:51.0312 1704 WacomPen - ok
14:40:51.0474 1704 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:40:51.0475 1704 WANARP - ok
14:40:51.0508 1704 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:40:51.0508 1704 Wanarpv6 - ok
14:40:52.0421 1704 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
14:40:52.0458 1704 WatAdminSvc - ok
14:40:53.0133 1704 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
14:40:53.0175 1704 wbengine - ok
14:40:53.0338 1704 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:40:53.0349 1704 WbioSrvc - ok
14:40:53.0485 1704 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
14:40:53.0532 1704 wcncsvc - ok
14:40:53.0604 1704 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:40:53.0616 1704 WcsPlugInService - ok
14:40:53.0739 1704 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:40:53.0739 1704 Wd - ok
14:40:53.0773 1704 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:40:53.0781 1704 Wdf01000 - ok
14:40:53.0840 1704 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:40:53.0845 1704 WdiServiceHost - ok
14:40:53.0847 1704 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:40:53.0848 1704 WdiSystemHost - ok
14:40:53.0989 1704 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
14:40:54.0011 1704 WebClient - ok
14:40:54.0471 1704 WebrootSpySweeperService (3102fd5f65b3ca05aadd1c1aa1a42220) C:\Program Files (x86)\Webroot\WebrootSecurity\SpySweeper.exe
14:40:54.0628 1704 WebrootSpySweeperService - ok
14:40:54.0819 1704 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:40:54.0822 1704 Wecsvc - ok
14:40:54.0836 1704 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:40:54.0838 1704 wercplsupport - ok
14:40:54.0860 1704 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:40:54.0861 1704 WerSvc - ok
14:40:54.0939 1704 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:40:54.0940 1704 WfpLwf - ok
14:40:54.0955 1704 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:40:54.0956 1704 WIMMount - ok
14:40:55.0005 1704 WinDefend - ok
14:40:55.0009 1704 WinHttpAutoProxySvc - ok
14:40:55.0277 1704 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:40:55.0284 1704 Winmgmt - ok
14:40:55.0570 1704 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
14:40:55.0780 1704 WinRM - ok
14:40:56.0132 1704 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
14:40:56.0147 1704 WinUsb - ok
14:40:56.0201 1704 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:40:56.0217 1704 Wlansvc - ok
14:40:56.0702 1704 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:40:56.0953 1704 wlidsvc - ok
14:40:57.0200 1704 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:40:57.0201 1704 WmiAcpi - ok
14:40:57.0272 1704 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:40:57.0283 1704 wmiApSrv - ok
14:40:57.0355 1704 WMPNetworkSvc - ok
14:40:57.0425 1704 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:40:57.0427 1704 WPCSvc - ok
14:40:57.0528 1704 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
14:40:57.0534 1704 WPDBusEnum - ok
14:40:57.0578 1704 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:40:57.0579 1704 ws2ifsl - ok
14:40:57.0624 1704 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
14:40:57.0633 1704 wscsvc - ok
14:40:57.0687 1704 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
14:40:57.0688 1704 WSDPrintDevice - ok
14:40:57.0690 1704 WSearch - ok
14:40:57.0912 1704 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
14:40:58.0045 1704 wuauserv - ok
14:41:03.0586 1704 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
14:41:03.0587 1704 WudfPf - ok
14:41:04.0104 1704 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:41:04.0105 1704 WUDFRd - ok
14:41:04.0146 1704 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
14:41:04.0148 1704 wudfsvc - ok
14:41:04.0377 1704 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:41:04.0385 1704 WwanSvc - ok
14:41:04.0966 1704 WysePocketCloud (3d47152cfbe400b1d2b9945164e0255d) C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
14:41:04.0990 1704 WysePocketCloud - ok
14:41:05.0684 1704 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
14:41:05.0703 1704 YahooAUService - ok
14:41:05.0826 1704 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:41:05.0896 1704 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
14:41:05.0896 1704 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
14:41:05.0921 1704 Boot (0x1200) (29c920872d25ced685c389646765e1e5) \Device\Harddisk0\DR0\Partition0
14:41:05.0978 1704 \Device\Harddisk0\DR0\Partition0 - ok
14:41:06.0014 1704 Boot (0x1200) (35c19e96af79d1ffa081f3bdd4dffe45) \Device\Harddisk0\DR0\Partition1
14:41:06.0075 1704 \Device\Harddisk0\DR0\Partition1 - ok
14:41:06.0075 1704 ============================================================
14:41:06.0075 1704 Scan finished
14:41:06.0075 1704 ============================================================
14:41:06.0080 1944 Detected object count: 1
14:41:06.0080 1944 Actual detected object count: 1
14:42:11.0742 1944 \Device\Harddisk0\DR0\# - copied to quarantine
14:42:11.0743 1944 \Device\Harddisk0\DR0 - copied to quarantine
14:42:11.0816 1944 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
14:42:11.0818 1944 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
14:42:11.0826 1944 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
14:42:11.0831 1944 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
14:42:11.0832 1944 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
14:42:11.0832 1944 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
14:42:11.0833 1944 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
14:42:11.0834 1944 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
14:42:11.0836 1944 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
14:42:11.0836 1944 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
14:42:11.0837 1944 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
14:42:11.0838 1944 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
14:42:11.0846 1944 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
14:42:11.0847 1944 \Device\Harddisk0\DR0 - ok
14:42:11.0917 1944 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
14:42:19.0211 1948 Deinitialize success


-------


17:50:35.0026 1032 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
17:50:35.0669 1032 ============================================================
17:50:35.0670 1032 Current date / time: 2012/06/01 17:50:35.0669
17:50:35.0670 1032 SystemInfo:
17:50:35.0670 1032
17:50:35.0670 1032 OS Version: 6.1.7601 ServicePack: 1.0
17:50:35.0670 1032 Product type: Workstation
17:50:35.0670 1032 ComputerName: STEPHDESKTOP
17:50:35.0670 1032 UserName: Stephanie
17:50:35.0670 1032 Windows directory: C:\Windows
17:50:35.0670 1032 System windows directory: C:\Windows
17:50:35.0670 1032 Running under WOW64
17:50:35.0670 1032 Processor architecture: Intel x64
17:50:35.0670 1032 Number of processors: 8
17:50:35.0670 1032 Page size: 0x1000
17:50:35.0670 1032 Boot type: Normal boot
17:50:35.0670 1032 ============================================================
17:50:39.0056 1032 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:50:39.0131 1032 ============================================================
17:50:39.0131 1032 \Device\Harddisk0\DR0:
17:50:39.0157 1032 MBR partitions:
17:50:39.0157 1032 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000
17:50:39.0157 1032 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x48A38000
17:50:39.0157 1032 ============================================================
17:50:39.0297 1032 C: <-> \Device\Harddisk0\DR0\Partition1
17:50:39.0370 1032 D: <-> \Device\Harddisk0\DR0\Partition0
17:50:39.0371 1032 ============================================================
17:50:39.0371 1032 Initialize success
17:50:39.0371 1032 ============================================================
17:50:42.0383 7396 ============================================================
17:50:42.0383 7396 Scan started
17:50:42.0383 7396 Mode: Manual;
17:50:42.0383 7396 ============================================================
17:50:45.0590 7396 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:50:45.0632 7396 1394ohci - ok
17:50:45.0876 7396 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:50:45.0989 7396 ACPI - ok
17:50:46.0098 7396 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:50:46.0113 7396 AcpiPmi - ok
17:50:46.0364 7396 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
17:50:46.0383 7396 adfs - ok
17:50:46.0743 7396 Adobe Version Cue CS4 (9444a3530c2e88b7ed96a566ff9ccc13) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
17:50:46.0825 7396 Adobe Version Cue CS4 - ok
17:50:47.0072 7396 AdobeActiveFileMonitor5.0 (177ff6608b48638d4066726f3a3f8444) C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
17:50:47.0087 7396 AdobeActiveFileMonitor5.0 - ok
17:50:48.0306 7396 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:50:48.0489 7396 AdobeFlashPlayerUpdateSvc - ok
17:50:49.0046 7396 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
17:50:49.0068 7396 adp94xx - ok
17:50:49.0225 7396 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
17:50:49.0285 7396 adpahci - ok
17:50:49.0530 7396 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
17:50:49.0546 7396 adpu320 - ok
17:50:49.0627 7396 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:50:49.0666 7396 AeLookupSvc - ok
17:50:49.0722 7396 AERTFilters (233ee06f203f6fd78ccbb8e0d139a271) C:\Windows\system32\AERTSr64.exe
17:50:49.0724 7396 AERTFilters - ok
17:50:50.0305 7396 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:50:50.0370 7396 AFD - ok
17:50:50.0568 7396 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:50:50.0619 7396 agp440 - ok
17:50:50.0832 7396 aksdf (89cd44c10d9b4d87725ff07f18a5702f) C:\Windows\system32\drivers\aksdf.sys
17:50:50.0911 7396 aksdf - ok
17:50:51.0415 7396 aksfridge (ba0b6fd78ae88d39b9d3d984f295a137) C:\Windows\system32\DRIVERS\aksfridge.sys
17:50:51.0504 7396 aksfridge - ok
17:50:51.0662 7396 akshasp (a56f1b0f967aef8a82d7771e6d166def) C:\Windows\system32\DRIVERS\akshasp.sys
17:50:51.0675 7396 akshasp - ok
17:50:51.0892 7396 akshhl (67dff8c8f95cb21c9c3380dd4c0387f2) C:\Windows\system32\DRIVERS\akshhl.sys
17:50:51.0933 7396 akshhl - ok
17:50:52.0018 7396 aksusb (a9a09bc526e614ce9f29bb23c2a76ced) C:\Windows\system32\DRIVERS\aksusb.sys
17:50:52.0036 7396 aksusb - ok
17:50:52.0762 7396 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:50:52.0785 7396 ALG - ok
17:50:52.0930 7396 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:50:52.0964 7396 aliide - ok
17:50:57.0107 7396 ALSysIO - ok
17:50:58.0509 7396 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
17:50:58.0520 7396 AMD External Events Utility - ok
17:50:58.0895 7396 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:50:58.0928 7396 amdide - ok
17:50:59.0149 7396 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
17:50:59.0167 7396 AmdK8 - ok
17:51:24.0266 7396 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
17:51:38.0030 7396 amdkmdag - ok
17:51:43.0093 7396 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
17:51:43.0257 7396 amdkmdap - ok
17:51:43.0477 7396 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
17:51:43.0496 7396 AmdPPM - ok
17:51:43.0977 7396 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:51:44.0020 7396 amdsata - ok
17:51:44.0667 7396 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
17:51:44.0738 7396 amdsbs - ok
17:51:44.0946 7396 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:51:44.0957 7396 amdxata - ok
17:51:46.0732 7396 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
17:51:46.0751 7396 Amsp - ok
17:51:47.0139 7396 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:51:47.0184 7396 AppID - ok
17:51:47.0438 7396 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:51:47.0461 7396 AppIDSvc - ok
17:51:47.0894 7396 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:51:47.0947 7396 Appinfo - ok
17:51:48.0877 7396 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:51:48.0917 7396 Apple Mobile Device - ok
17:51:49.0270 7396 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
17:51:49.0389 7396 arc - ok
17:51:49.0983 7396 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
17:51:50.0051 7396 arcsas - ok
17:51:51.0470 7396 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:51:51.0873 7396 aspnet_state - ok
17:51:52.0402 7396 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:51:52.0448 7396 AsyncMac - ok
17:51:52.0617 7396 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:51:52.0618 7396 atapi - ok
17:51:53.0804 7396 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
17:51:53.0913 7396 AtiHDAudioService - ok
17:52:44.0852 7396 atikmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
17:52:45.0072 7396 atikmdag - ok
17:52:51.0849 7396 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:52:52.0253 7396 AudioEndpointBuilder - ok
17:52:52.0260 7396 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:52:52.0264 7396 AudioSrv - ok
17:52:53.0193 7396 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:52:53.0340 7396 AxInstSV - ok
17:52:55.0970 7396 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
17:52:56.0123 7396 b06bdrv - ok
17:52:57.0256 7396 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:52:57.0482 7396 b57nd60a - ok
17:52:58.0289 7396 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:52:58.0397 7396 BDESVC - ok
17:52:58.0549 7396 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:52:58.0625 7396 Beep - ok
17:53:02.0373 7396 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:53:04.0116 7396 BFE - ok
17:53:07.0818 7396 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
17:53:08.0531 7396 BITS - ok
17:53:09.0051 7396 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:53:09.0080 7396 blbdrive - ok
17:53:11.0879 7396 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:53:11.0924 7396 Bonjour Service - ok
17:53:12.0537 7396 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:53:12.0584 7396 bowser - ok
17:53:12.0795 7396 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:53:12.0817 7396 BrFiltLo - ok
17:53:12.0935 7396 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:53:12.0970 7396 BrFiltUp - ok
17:53:13.0723 7396 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:53:13.0862 7396 Browser - ok
17:53:15.0181 7396 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:53:15.0313 7396 Brserid - ok
17:53:15.0610 7396 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:53:15.0665 7396 BrSerWdm - ok
17:53:15.0816 7396 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:53:15.0846 7396 BrUsbMdm - ok
17:53:15.0941 7396 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:53:15.0999 7396 BrUsbSer - ok
17:53:16.0421 7396 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
17:53:16.0507 7396 BTHMODEM - ok
17:53:17.0025 7396 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:53:17.0102 7396 bthserv - ok
17:53:17.0596 7396 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:53:17.0683 7396 cdfs - ok
17:53:18.0703 7396 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:53:18.0877 7396 cdrom - ok
17:53:19.0434 7396 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:53:19.0531 7396 CertPropSvc - ok
17:53:19.0998 7396 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
17:53:20.0095 7396 circlass - ok
17:53:21.0816 7396 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:53:22.0202 7396 CLFS - ok
17:53:23.0134 7396 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:53:23.0550 7396 clr_optimization_v2.0.50727_32 - ok
17:53:24.0619 7396 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:53:24.0791 7396 clr_optimization_v2.0.50727_64 - ok
17:53:26.0143 7396 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:53:27.0380 7396 clr_optimization_v4.0.30319_32 - ok
17:53:29.0081 7396 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:53:29.0522 7396 clr_optimization_v4.0.30319_64 - ok
17:53:29.0671 7396 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
17:53:29.0709 7396 CmBatt - ok
17:53:29.0934 7396 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:53:29.0984 7396 cmdide - ok
17:53:33.0563 7396 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:53:33.0809 7396 CNG - ok
17:53:33.0988 7396 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
17:53:34.0045 7396 Compbatt - ok
17:53:34.0333 7396 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:53:34.0496 7396 CompositeBus - ok
17:53:34.0534 7396 COMSysApp - ok
17:53:34.0735 7396 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
17:53:34.0803 7396 crcdisk - ok
17:53:36.0041 7396 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
17:53:36.0252 7396 CryptSvc - ok
17:53:39.0599 7396 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:53:39.0660 7396 DcomLaunch - ok
17:53:41.0075 7396 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:53:41.0233 7396 defragsvc - ok
17:53:41.0921 7396 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:53:42.0055 7396 DfsC - ok
17:53:43.0977 7396 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:53:44.0454 7396 Dhcp - ok
17:53:44.0858 7396 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:53:44.0976 7396 discache - ok
17:53:45.0869 7396 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
17:53:45.0906 7396 Disk - ok
17:53:47.0588 7396 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:53:47.0836 7396 Dnscache - ok
17:53:49.0397 7396 DockLoginService (db29915209770d8b59654345ec2d943a) C:\Program Files\Dell\DellDock\DockLogin.exe
17:53:49.0421 7396 DockLoginService - ok
17:53:51.0564 7396 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:53:51.0906 7396 dot3svc - ok
17:53:54.0105 7396 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:53:54.0369 7396 DPS - ok
17:53:54.0579 7396 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:53:54.0620 7396 drmkaud - ok
17:54:01.0535 7396 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:54:02.0380 7396 DXGKrnl - ok
17:54:04.0519 7396 e1yexpress (50ad8fc1dc800ff36087994c8f7fdff2) C:\Windows\system32\DRIVERS\e1y60x64.sys
17:54:04.0825 7396 e1yexpress - ok
17:54:06.0077 7396 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:54:06.0178 7396 EapHost - ok
17:54:06.0458 7396 easytether (1e8d0e318d3f17b2eaaf993db20c76f0) C:\Windows\system32\DRIVERS\easytthr.sys
17:54:06.0481 7396 easytether - ok
17:54:34.0338 7396 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
17:54:38.0477 7396 ebdrv - ok
17:54:42.0629 7396 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:54:42.0632 7396 EFS - ok
17:54:45.0195 7396 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:54:45.0595 7396 ehRecvr - ok
17:54:46.0008 7396 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:54:46.0046 7396 ehSched - ok
17:54:47.0486 7396 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
17:54:47.0701 7396 elxstor - ok
17:54:47.0864 7396 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:54:47.0879 7396 ErrDev - ok
17:54:49.0856 7396 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:54:49.0931 7396 EventSystem - ok
17:54:51.0195 7396 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:54:51.0312 7396 exfat - ok
17:54:51.0983 7396 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:54:52.0108 7396 fastfat - ok
17:54:53.0406 7396 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:54:53.0903 7396 Fax - ok
17:54:54.0613 7396 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
17:54:54.0670 7396 fdc - ok
17:54:54.0908 7396 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:54:55.0010 7396 fdPHost - ok
17:54:55.0729 7396 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:54:55.0857 7396 FDResPub - ok
17:54:56.0935 7396 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:54:57.0235 7396 FileInfo - ok
17:54:57.0704 7396 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:54:57.0860 7396 Filetrace - ok
17:55:05.0582 7396 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:55:06.0748 7396 FLEXnet Licensing Service - ok
17:55:12.0419 7396 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
17:55:13.0587 7396 FLEXnet Licensing Service 64 - ok
17:55:22.0274 7396 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
17:55:22.0302 7396 flpydisk - ok
17:55:26.0609 7396 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:55:27.0280 7396 FltMgr - ok
17:55:40.0464 7396 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:55:40.0789 7396 FontCache - ok
17:55:40.0958 7396 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:55:40.0959 7396 FontCache3.0.0.0 - ok
17:55:41.0120 7396 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:55:41.0130 7396 FsDepends - ok
17:55:41.0183 7396 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:55:41.0193 7396 Fs_Rec - ok
17:55:41.0283 7396 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:55:41.0332 7396 fvevol - ok
17:55:41.0419 7396 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:55:41.0443 7396 gagp30kx - ok
17:55:41.0515 7396 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:55:41.0540 7396 GEARAspiWDM - ok
17:55:41.0792 7396 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:55:42.0027 7396 gpsvc - ok
17:55:42.0256 7396 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:55:42.0324 7396 gupdate - ok
17:55:42.0355 7396 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:55:42.0356 7396 gupdatem - ok
17:55:42.0437 7396 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:55:42.0474 7396 gusvc - ok
17:55:42.0643 7396 hardlock (78fad9117e4527f2ca82259da10f40bd) C:\Windows\system32\drivers\hardlock.sys
17:55:42.0694 7396 hardlock - ok
17:55:42.0717 7396 hasplms - ok
17:55:42.0789 7396 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:55:42.0796 7396 hcw85cir - ok
17:55:43.0395 7396 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
17:55:43.0420 7396 HdAudAddService - ok
17:55:43.0562 7396 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:55:43.0577 7396 HDAudBus - ok
17:55:43.0632 7396 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
17:55:43.0644 7396 HidBatt - ok
17:55:43.0704 7396 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
17:55:43.0728 7396 HidBth - ok
17:55:43.0841 7396 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
17:55:43.0853 7396 HidIr - ok
17:55:43.0937 7396 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:55:43.0958 7396 hidserv - ok
17:55:44.0008 7396 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:55:44.0037 7396 HidUsb - ok
17:55:44.0088 7396 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:55:44.0098 7396 hkmsvc - ok
17:55:44.0348 7396 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:55:44.0373 7396 HomeGroupListener - ok
17:55:44.0491 7396 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:55:44.0499 7396 HomeGroupProvider - ok
17:55:44.0808 7396 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:55:44.0811 7396 hpqcxs08 - ok
17:55:44.0944 7396 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:55:44.0960 7396 hpqddsvc - ok
17:55:45.0061 7396 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:55:45.0069 7396 HpSAMD - ok
17:55:45.0309 7396 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:55:45.0337 7396 HTTP - ok
17:55:45.0414 7396 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:55:45.0422 7396 hwpolicy - ok
17:55:45.0684 7396 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:55:45.0700 7396 i8042prt - ok
17:55:45.0823 7396 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:55:45.0853 7396 iaStorV - ok
17:55:46.0013 7396 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:55:46.0050 7396 IDriverT - ok
17:55:46.0377 7396 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:55:46.0426 7396 idsvc - ok
17:55:46.0886 7396 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
17:55:46.0893 7396 iirsp - ok
17:55:47.0080 7396 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:55:47.0109 7396 IKEEXT - ok
17:55:47.0416 7396 IntcAzAudAddService (358a23acf3a78893eeacd4beb20953d5) C:\Windows\system32\drivers\RTKVHD64.sys
17:55:47.0459 7396 IntcAzAudAddService - ok
17:55:47.0856 7396 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:55:47.0875 7396 intelide - ok
17:55:47.0965 7396 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:55:47.0977 7396 intelppm - ok
17:55:48.0068 7396 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:55:48.0076 7396 IPBusEnum - ok
17:55:48.0134 7396 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:55:48.0161 7396 IpFilterDriver - ok
17:55:48.0355 7396 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:55:48.0432 7396 iphlpsvc - ok
17:55:48.0581 7396 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:55:48.0596 7396 IPMIDRV - ok
17:55:48.0693 7396 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:55:48.0708 7396 IPNAT - ok
17:55:49.0014 7396 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
17:55:49.0034 7396 iPod Service - ok
17:55:49.0132 7396 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:55:49.0167 7396 IRENUM - ok
17:55:49.0270 7396 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:55:49.0300 7396 isapnp - ok
17:55:49.0848 7396 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:55:49.0908 7396 iScsiPrt - ok
17:55:50.0056 7396 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:55:50.0077 7396 kbdclass - ok
17:55:50.0338 7396 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
17:55:50.0374 7396 kbdhid - ok
17:55:50.0623 7396 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:55:50.0624 7396 KeyIso - ok
17:55:51.0076 7396 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:55:51.0127 7396 KSecDD - ok
17:55:51.0589 7396 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:55:51.0637 7396 KSecPkg - ok
17:55:51.0706 7396 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:55:51.0717 7396 ksthunk - ok
17:55:52.0877 7396 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:55:53.0113 7396 KtmRm - ok
17:55:54.0205 7396 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
17:55:54.0319 7396 LanmanServer - ok
17:55:54.0574 7396 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:55:54.0623 7396 LanmanWorkstation - ok
17:55:54.0920 7396 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:55:54.0946 7396 lltdio - ok
17:55:55.0830 7396 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:55:55.0985 7396 lltdsvc - ok
17:55:56.0126 7396 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:55:56.0135 7396 lmhosts - ok
17:55:56.0567 7396 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:55:56.0596 7396 LSI_FC - ok
17:55:56.0883 7396 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:55:56.0946 7396 LSI_SAS - ok
17:55:57.0149 7396 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:55:57.0158 7396 LSI_SAS2 - ok
17:55:57.0621 7396 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:55:57.0679 7396 LSI_SCSI - ok
17:55:58.0012 7396 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:55:58.0073 7396 luafv - ok
17:55:58.0313 7396 lxdxCATSCustConnectService (4208b958e35f0e596aa241efb664636b) C:\Windows\system32\spool\DRIVERS\x64\3\\lxdxserv.exe
17:55:58.0490 7396 lxdxCATSCustConnectService - ok
17:55:58.0493 7396 lxdx_device - ok
17:55:58.0892 7396 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:55:58.0927 7396 Mcx2Svc - ok
17:55:59.0057 7396 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
17:55:59.0082 7396 megasas - ok
17:56:00.0001 7396 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
17:56:00.0233 7396 MegaSR - ok
17:56:00.0727 7396 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:56:00.0744 7396 MMCSS - ok
17:56:00.0907 7396 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:56:00.0950 7396 Modem - ok
17:56:01.0175 7396 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:56:01.0208 7396 monitor - ok
17:56:01.0456 7396 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:56:01.0469 7396 mouclass - ok
17:56:01.0631 7396 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:56:01.0667 7396 mouhid - ok
17:56:01.0957 7396 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:56:02.0020 7396 mountmgr - ok
17:56:02.0722 7396 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:56:02.0820 7396 MozillaMaintenance - ok
17:56:03.0092 7396 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:56:03.0153 7396 mpio - ok
17:56:03.0561 7396 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:56:03.0617 7396 mpsdrv - ok
17:56:05.0315 7396 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:56:05.0366 7396 MpsSvc - ok
17:56:05.0787 7396 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:56:05.0899 7396 MRxDAV - ok
17:56:06.0457 7396 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:56:06.0557 7396 mrxsmb - ok
17:56:07.0422 7396 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:56:07.0581 7396 mrxsmb10 - ok
17:56:07.0920 7396 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:56:08.0046 7396 mrxsmb20 - ok
17:56:08.0155 7396 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:56:08.0174 7396 msahci - ok
17:56:08.0462 7396 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:56:08.0527 7396 msdsm - ok
17:56:08.0906 7396 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:56:08.0978 7396 MSDTC - ok
17:56:09.0153 7396 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:56:09.0166 7396 Msfs - ok
17:56:09.0218 7396 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:56:09.0247 7396 mshidkmdf - ok
17:56:09.0366 7396 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:56:09.0392 7396 msisadrv - ok
17:56:09.0920 7396 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:56:10.0036 7396 MSiSCSI - ok
17:56:10.0070 7396 msiserver - ok
17:56:10.0214 7396 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:56:10.0243 7396 MSKSSRV - ok
17:56:10.0333 7396 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:56:10.0362 7396 MSPCLOCK - ok
17:56:10.0438 7396 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:56:10.0462 7396 MSPQM - ok
17:56:11.0475 7396 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:56:11.0624 7396 MsRPC - ok
17:56:11.0782 7396 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:56:11.0790 7396 mssmbios - ok
17:56:11.0908 7396 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:56:11.0940 7396 MSTEE - ok
17:56:11.0983 7396 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
17:56:12.0015 7396 MTConfig - ok
17:56:12.0180 7396 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:56:12.0225 7396 Mup - ok
17:56:13.0354 7396 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:56:13.0605 7396 napagent - ok
17:56:14.0734 7396 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:56:14.0970 7396 NativeWifiP - ok
17:56:17.0142 7396 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:56:17.0905 7396 NDIS - ok
17:56:18.0075 7396 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:56:18.0116 7396 NdisCap - ok
17:56:18.0252 7396 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:56:18.0271 7396 NdisTapi - ok
17:56:18.0604 7396 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:56:18.0624 7396 Ndisuio - ok
17:56:19.0197 7396 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:56:19.0327 7396 NdisWan - ok
17:56:19.0687 7396 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:56:19.0735 7396 NDProxy - ok
17:56:20.0006 7396 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:56:20.0026 7396 NetBIOS - ok
17:56:20.0823 7396 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:56:20.0976 7396 NetBT - ok
17:56:21.0133 7396 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:56:21.0134 7396 Netlogon - ok
17:56:22.0094 7396 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:56:22.0323 7396 Netman - ok
17:56:23.0125 7396 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:56:23.0501 7396 NetMsmqActivator - ok
17:56:23.0536 7396 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:56:23.0537 7396 NetPipeActivator - ok
17:56:24.0907 7396 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:56:24.0951 7396 netprofm - ok
17:56:26.0841 7396 netr28ux (26672f93749ac9fd28da1b0f94efa78d) C:\Windows\system32\DRIVERS\Dnetr28ux.sys
17:56:27.0274 7396 netr28ux - ok
17:56:27.0805 7396 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:56:27.0808 7396 NetTcpActivator - ok
17:56:27.0812 7396 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:56:27.0813 7396 NetTcpPortSharing - ok
17:56:27.0986 7396 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
17:56:28.0011 7396 nfrd960 - ok
17:56:29.0040 7396 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:56:29.0279 7396 NlaSvc - ok
17:56:29.0396 7396 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:56:29.0453 7396 Npfs - ok
17:56:29.0605 7396 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:56:29.0631 7396 nsi - ok
17:56:29.0697 7396 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:56:29.0711 7396 nsiproxy - ok
17:56:33.0871 7396 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:56:34.0791 7396 Ntfs - ok
17:56:37.0401 7396 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:56:37.0415 7396 Null - ok
17:56:37.0975 7396 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:56:38.0044 7396 nvraid - ok
17:56:38.0728 7396 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:56:38.0847 7396 nvstor - ok
17:56:39.0356 7396 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:56:39.0418 7396 nv_agp - ok
17:56:41.0298 7396 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:56:41.0682 7396 odserv - ok
17:56:42.0076 7396 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:56:42.0137 7396 ohci1394 - ok
17:56:42.0907 7396 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:56:43.0033 7396 ose - ok
17:56:43.0637 7396 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:56:43.0909 7396 p2pimsvc - ok
17:56:45.0279 7396 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:56:45.0514 7396 p2psvc - ok
17:56:45.0703 7396 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
17:56:45.0747 7396 Parport - ok
17:56:45.0891 7396 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:56:45.0913 7396 partmgr - ok
17:56:46.0249 7396 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:56:46.0286 7396 PcaSvc - ok
17:56:46.0594 7396 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:56:46.0647 7396 pci - ok
17:56:46.0718 7396 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:56:46.0733 7396 pciide - ok
17:56:47.0087 7396 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
17:56:47.0162 7396 pcmcia - ok
17:56:47.0344 7396 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:56:47.0368 7396 pcw - ok
17:56:48.0362 7396 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:56:48.0627 7396 PEAUTH - ok
17:56:49.0749 7396 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:56:49.0782 7396 PerfHost - ok
17:56:52.0001 7396 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:56:52.0271 7396 pla - ok
17:56:52.0521 7396 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:56:52.0671 7396 PlugPlay - ok
17:56:52.0737 7396 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:56:52.0756 7396 PNRPAutoReg - ok
17:56:52.0980 7396 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:56:52.0983 7396 PNRPsvc - ok
17:56:53.0809 7396 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:56:53.0966 7396 PolicyAgent - ok
17:56:54.0439 7396 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:56:54.0574 7396 Power - ok
17:56:55.0112 7396 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:56:55.0166 7396 PptpMiniport - ok
17:56:55.0268 7396 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
17:56:55.0284 7396 Processor - ok
17:56:55.0631 7396 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
17:56:55.0714 7396 ProfSvc - ok
17:56:55.0847 7396 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:56:55.0867 7396 ProtectedStorage - ok
17:56:56.0416 7396 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:56:56.0419 7396 Psched - ok
17:56:57.0081 7396 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
17:56:57.0084 7396 PSI_SVC_2 - ok
17:56:57.0268 7396 PxHlpa64 (46851bc18322da70f3f2299a1007c479) C:\Windows\system32\Drivers\PxHlpa64.sys
17:56:57.0313 7396 PxHlpa64 - ok
17:57:01.0064 7396 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
17:57:02.0492 7396 ql2300 - ok
17:57:07.0110 7396 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
17:57:07.0238 7396 ql40xx - ok
17:57:09.0207 7396 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:57:09.0508 7396 QWAVE - ok
17:57:09.0669 7396 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:57:09.0721 7396 QWAVEdrv - ok
17:57:09.0864 7396 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:57:09.0911 7396 RasAcd - ok
17:57:10.0670 7396 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:57:10.0754 7396 RasAgileVpn - ok
17:57:11.0274 7396 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:57:11.0343 7396 RasAuto - ok
17:57:11.0822 7396 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:57:11.0878 7396 Rasl2tp - ok
17:57:14.0217 7396 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:57:14.0724 7396 RasMan - ok
17:57:15.0611 7396 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:57:15.0735 7396 RasPppoe - ok
17:57:16.0476 7396 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:57:16.0619 7396 RasSstp - ok
17:57:18.0529 7396 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:57:18.0856 7396 rdbss - ok
17:57:19.0139 7396 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:57:19.0167 7396 rdpbus - ok
17:57:19.0430 7396 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:57:19.0475 7396 RDPCDD - ok
17:57:19.0703 7396 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:57:19.0759 7396 RDPENCDD - ok
17:57:19.0864 7396 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:57:19.0924 7396 RDPREFMP - ok
17:57:22.0120 7396 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
17:57:22.0490 7396 RDPWD - ok
17:57:24.0190 7396 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:57:24.0318 7396 rdyboost - ok
17:57:24.0492 7396 regi (88e128c45699ab390f40f3520f2ee29f) C:\Windows\system32\drivers\regi.sys
17:57:24.0524 7396 regi - ok
17:57:25.0256 7396 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:57:25.0360 7396 RemoteAccess - ok
17:57:25.0884 7396 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:57:25.0946 7396 RemoteRegistry - ok
17:57:26.0231 7396 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:57:26.0254 7396 RpcEptMapper - ok
17:57:26.0386 7396 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:57:26.0402 7396 RpcLocator - ok
17:57:27.0674 7396 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:57:27.0721 7396 RpcSs - ok
17:57:28.0251 7396 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:57:28.0334 7396 rspndr - ok
17:57:28.0510 7396 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:57:28.0512 7396 SamSs - ok
17:57:28.0880 7396 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:57:28.0959 7396 sbp2port - ok
17:57:35.0418 7396 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
17:57:35.0467 7396 SBSDWSCService - ok
17:57:36.0364 7396 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:57:36.0584 7396 SCardSvr - ok
17:57:37.0156 7396 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:57:37.0179 7396 scfilter - ok
17:57:40.0500 7396 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:57:41.0255 7396 Schedule - ok
17:57:41.0675 7396 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:57:41.0698 7396 SCPolicySvc - ok
17:57:42.0705 7396 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:57:42.0858 7396 SDRSVC - ok
17:57:43.0321 7396 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:57:43.0361 7396 secdrv - ok
17:57:43.0620 7396 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:57:43.0658 7396 seclogon - ok
17:57:43.0857 7396 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:57:43.0907 7396 SENS - ok
17:57:44.0373 7396 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:57:44.0398 7396 SensrSvc - ok
17:57:44.0608 7396 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
17:57:44.0634 7396 Serenum - ok
17:57:45.0104 7396 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
17:57:45.0148 7396 Serial - ok
17:57:45.0318 7396 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
17:57:45.0354 7396 sermouse - ok
17:57:46.0080 7396 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:57:46.0214 7396 SessionEnv - ok
17:57:46.0419 7396 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:57:46.0453 7396 sffdisk - ok
17:57:46.0638 7396 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:57:46.0671 7396 sffp_mmc - ok
17:57:46.0740 7396 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:57:46.0780 7396 sffp_sd - ok
17:57:46.0864 7396 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
17:57:46.0904 7396 sfloppy - ok
17:57:48.0101 7396 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:57:48.0381 7396 SharedAccess - ok
17:57:49.0832 7396 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:57:50.0321 7396 ShellHWDetection - ok
17:57:50.0737 7396 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:57:50.0791 7396 SiSRaid2 - ok
17:57:51.0595 7396 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
17:57:51.0641 7396 SiSRaid4 - ok
17:57:52.0091 7396 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:57:52.0145 7396 Smb - ok
17:57:52.0288 7396 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:57:52.0300 7396 SNMPTRAP - ok
17:57:52.0515 7396 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:57:52.0541 7396 spldr - ok
17:57:54.0617 7396 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:57:54.0664 7396 Spooler - ok
17:58:05.0192 7396 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:58:08.0027 7396 sppsvc - ok
17:58:09.0626 7396 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:58:09.0638 7396 sppuinotify - ok
17:58:10.0845 7396 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:58:11.0125 7396 srv - ok
17:58:11.0883 7396 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:58:12.0135 7396 srv2 - ok
17:58:12.0587 7396 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:58:12.0651 7396 srvnet - ok
17:58:13.0052 7396 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:58:13.0095 7396 SSDPSRV - ok
17:58:13.0272 7396 ssfs0bbc (028f6f489280ab1c42d8a971ef59657b) C:\Windows\system32\DRIVERS\ssfs0bbc.sys
17:58:13.0287 7396 ssfs0bbc - ok
17:58:13.0465 7396 ssidrv (2383a44524cec4dbb4ddbe0deef17826) C:\Windows\system32\DRIVERS\ssidrv.sys
17:58:13.0487 7396 ssidrv - ok
17:58:13.0702 7396 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:58:13.0742 7396 SstpSvc - ok
17:58:13.0872 7396 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
17:58:13.0883 7396 stexstor - ok
17:58:14.0790 7396 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:58:15.0111 7396 stisvc - ok
17:58:15.0590 7396 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
17:58:15.0805 7396 stllssvr - ok
17:58:15.0899 7396 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
17:58:15.0907 7396 swenum - ok
17:58:16.0694 7396 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:58:17.0079 7396 swprv - ok
17:58:19.0621 7396 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:58:20.0471 7396 SysMain - ok
17:58:22.0134 7396 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:58:22.0159 7396 TabletInputService - ok
17:58:33.0968 7396 TabletServiceWacom (ffdf8b9b796e5243214233a8db622e3d) C:\Windows\system32\Wacom_Tablet.exe
17:58:34.0044 7396 TabletServiceWacom - ok
17:58:36.0471 7396 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:58:36.0721 7396 TapiSrv - ok
17:58:36.0913 7396 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:58:36.0944 7396 TBS - ok
17:58:47.0006 7396 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:58:47.0920 7396 Tcpip - ok
17:58:59.0215 7396 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:58:59.0229 7396 TCPIP6 - ok
17:59:01.0749 7396 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:59:01.0774 7396 tcpipreg - ok
17:59:02.0003 7396 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:59:02.0023 7396 TDPIPE - ok
17:59:02.0171 7396 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:59:02.0195 7396 TDTCP - ok
17:59:02.0540 7396 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:59:02.0577 7396 tdx - ok
17:59:02.0805 7396 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
17:59:02.0840 7396 TermDD - ok
17:59:05.0815 7396 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:59:06.0292 7396 TermService - ok
17:59:06.0556 7396 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:59:06.0593 7396 Themes - ok
17:59:06.0931 7396 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:59:06.0958 7396 THREADORDER - ok
17:59:07.0330 7396 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\Windows\system32\DRIVERS\tmactmon.sys
17:59:07.0378 7396 tmactmon - ok
17:59:07.0737 7396 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\Windows\system32\DRIVERS\tmcomm.sys
17:59:07.0799 7396 tmcomm - ok
17:59:07.0980 7396 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\Windows\system32\DRIVERS\tmevtmgr.sys
17:59:08.0005 7396 tmevtmgr - ok
17:59:08.0365 7396 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\Windows\system32\DRIVERS\tmtdi.sys
17:59:08.0412 7396 tmtdi - ok
17:59:09.0071 7396 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:59:09.0184 7396 TrkWks - ok
17:59:10.0496 7396 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:59:10.0574 7396 TrustedInstaller - ok
17:59:10.0671 7396 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:59:10.0686 7396 tssecsrv - ok
17:59:10.0927 7396 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:59:10.0954 7396 TsUsbFlt - ok
17:59:11.0266 7396 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:59:11.0303 7396 tunnel - ok
17:59:13.0808 7396 tvnserver (aaf458cc200326bef602b5339400bf86) C:\Program Files (x86)\TightVNC\tvnserver.exe
17:59:13.0827 7396 tvnserver - ok
17:59:13.0934 7396 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
17:59:13.0949 7396 uagp35 - ok
17:59:15.0091 7396 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:59:15.0196 7396 udfs - ok
17:59:15.0370 7396 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:59:15.0390 7396 UI0Detect - ok
17:59:15.0626 7396 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:59:15.0658 7396 uliagpkx - ok
17:59:15.0811 7396 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
17:59:15.0829 7396 umbus - ok
17:59:15.0954 7396 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
17:59:15.0963 7396 UmPass - ok
17:59:16.0426 7396 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:59:16.0569 7396 upnphost - ok
17:59:16.0799 7396 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
17:59:16.0820 7396 USBAAPL64 - ok
17:59:17.0164 7396 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:59:17.0203 7396 usbccgp - ok
17:59:17.0452 7396 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:59:17.0480 7396 usbcir - ok
17:59:17.0673 7396 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
17:59:17.0688 7396 usbehci - ok
17:59:18.0426 7396 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:59:18.0527 7396 usbhub - ok
17:59:18.0629 7396 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
17:59:18.0643 7396 usbohci - ok
17:59:18.0745 7396 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:59:18.0758 7396 usbprint - ok
17:59:19.0056 7396 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
17:59:19.0123 7396 USBSTOR - ok
17:59:19.0335 7396 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:59:19.0381 7396 usbuhci - ok
17:59:19.0673 7396 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:59:19.0726 7396 UxSms - ok
17:59:19.0925 7396 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:59:19.0943 7396 VaultSvc - ok
17:59:20.0236 7396 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:59:20.0284 7396 vdrvroot - ok
17:59:22.0546 7396 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:59:22.0693 7396 vds - ok
17:59:22.0857 7396 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:59:22.0884 7396 vga - ok
17:59:23.0057 7396 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:59:23.0085 7396 VgaSave - ok
17:59:23.0642 7396 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:59:23.0726 7396 vhdmp - ok
17:59:23.0831 7396 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:59:23.0869 7396 viaide - ok
17:59:24.0138 7396 Viewpoint Manager Service (5f974fde801c73952770736becde11e7) C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
17:59:24.0145 7396 Viewpoint Manager Service - ok
17:59:24.0332 7396 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:59:24.0376 7396 volmgr - ok
17:59:25.0178 7396 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:59:25.0392 7396 volmgrx - ok
17:59:26.0159 7396 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:59:26.0417 7396 volsnap - ok
17:59:27.0225 7396 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
17:59:27.0239 7396 vsmraid - ok
17:59:29.0441 7396 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:59:29.0653 7396 VSS - ok
17:59:30.0127 7396 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:59:30.0160 7396 vwifibus - ok
17:59:30.0235 7396 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:59:30.0246 7396 vwififlt - ok
17:59:30.0544 7396 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
17:59:30.0555 7396 vwifimp - ok
17:59:31.0033 7396 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:59:31.0051 7396 W32Time - ok
17:59:31.0107 7396 wacmoumonitor (f39fc224758290a3193c68c091e6f11a) C:\Windows\system32\DRIVERS\wacmoumonitor.sys
17:59:31.0126 7396 wacmoumonitor - ok
17:59:31.0181 7396 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
17:59:31.0190 7396 WacomPen - ok
17:59:31.0371 7396 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:59:31.0386 7396 WANARP - ok
17:59:31.0409 7396 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:59:31.0410 7396 Wanarpv6 - ok
17:59:31.0779 7396 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:59:31.0871 7396 WatAdminSvc - ok
17:59:32.0288 7396 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:59:32.0370 7396 wbengine - ok
17:59:32.0562 7396 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:59:32.0581 7396 WbioSrvc - ok
17:59:32.0692 7396 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:59:32.0711 7396 wcncsvc - ok
17:59:32.0745 7396 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:59:32.0756 7396 WcsPlugInService - ok
17:59:32.0865 7396 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
17:59:32.0875 7396 Wd - ok
17:59:33.0013 7396 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:59:33.0049 7396 Wdf01000 - ok
17:59:33.0114 7396 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:59:33.0126 7396 WdiServiceHost - ok
17:59:33.0129 7396 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:59:33.0132 7396 WdiSystemHost - ok
17:59:33.0187 7396 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:59:33.0205 7396 WebClient - ok
17:59:33.0710 7396 WebrootSpySweeperService (3102fd5f65b3ca05aadd1c1aa1a42220) C:\Program Files (x86)\Webroot\WebrootSecurity\SpySweeper.exe
17:59:33.0869 7396 WebrootSpySweeperService - ok
17:59:34.0151 7396 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:59:34.0172 7396 Wecsvc - ok
17:59:34.0190 7396 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:59:34.0206 7396 wercplsupport - ok
17:59:34.0263 7396 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:59:34.0275 7396 WerSvc - ok
17:59:34.0398 7396 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:59:34.0409 7396 WfpLwf - ok
17:59:34.0440 7396 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:59:34.0451 7396 WIMMount - ok
17:59:34.0494 7396 WinDefend - ok
17:59:34.0614 7396 WinHttpAutoProxySvc - ok
17:59:34.0742 7396 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:59:34.0761 7396 Winmgmt - ok
17:59:35.0273 7396 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:59:35.0376 7396 WinRM - ok
17:59:35.0700 7396 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
17:59:35.0715 7396 WinUsb - ok
17:59:36.0233 7396 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:59:36.0332 7396 Wlansvc - ok
17:59:38.0364 7396 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:59:38.0417 7396 wlidsvc - ok
17:59:39.0040 7396 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:59:39.0063 7396 WmiAcpi - ok
17:59:39.0294 7396 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:59:39.0323 7396 wmiApSrv - ok
17:59:39.0430 7396 WMPNetworkSvc - ok
17:59:39.0465 7396 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:59:39.0488 7396 WPCSvc - ok
17:59:39.0591 7396 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:59:39.0604 7396 WPDBusEnum - ok
17:59:39.0674 7396 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:59:39.0685 7396 ws2ifsl - ok
17:59:39.0772 7396 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
17:59:39.0794 7396 wscsvc - ok
17:59:39.0929 7396 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
17:59:39.0944 7396 WSDPrintDevice - ok
17:59:39.0947 7396 WSearch - ok
17:59:41.0785 7396 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
17:59:41.0999 7396 wuauserv - ok
17:59:42.0540 7396 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:59:42.0580 7396 WudfPf - ok
17:59:42.0687 7396 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:59:42.0704 7396 WUDFRd - ok
17:59:42.0787 7396 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:59:42.0814 7396 wudfsvc - ok
17:59:42.0993 7396 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:59:43.0013 7396 WwanSvc - ok
17:59:43.0431 7396 WysePocketCloud (3d47152cfbe400b1d2b9945164e0255d) C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
17:59:43.0449 7396 WysePocketCloud - ok
17:59:44.0012 7396 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
17:59:44.0045 7396 YahooAUService - ok
17:59:44.0225 7396 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:59:46.0108 7396 \Device\Harddisk0\DR0 - ok
17:59:46.0138 7396 Boot (0x1200) (29c920872d25ced685c389646765e1e5) \Device\Harddisk0\DR0\Partition0
17:59:46.0140 7396 \Device\Harddisk0\DR0\Partition0 - ok
17:59:46.0156 7396 Boot (0x1200) (35c19e96af79d1ffa081f3bdd4dffe45) \Device\Harddisk0\DR0\Partition1
17:59:46.0158 7396 \Device\Harddisk0\DR0\Partition1 - ok
17:59:46.0159 7396 ============================================================
17:59:46.0159 7396 Scan finished
17:59:46.0159 7396 ============================================================
17:59:46.0169 7188 Detected object count: 0
17:59:46.0169 7188 Actual detected object count: 0

BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:02 PM

Posted 01 June 2012 - 06:55 PM

Can you rerun tdsskiller and make sure all options are checked.

Also post the logs from Malwarebytes via the Log Tab.

Edited by cryptodan, 01 June 2012 - 06:55 PM.


#3 shirorya

shirorya
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 01 June 2012 - 07:17 PM

Sure thing! When I checked all the options for TDSSKiller, it did find some things but I wasn't sure what to do and if they were a problem so I've included a screenshot. The first Malawarebyte log is from last night, the first scan I did, and then the second is from earlier today. I'm running one right now to check again but it hasn't finished yet.


18:59:59.0343 8968 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
19:00:00.0703 8968 ============================================================
19:00:00.0703 8968 Current date / time: 2012/06/01 19:00:00.0703
19:00:00.0703 8968 SystemInfo:
19:00:00.0703 8968
19:00:00.0703 8968 OS Version: 6.1.7601 ServicePack: 1.0
19:00:00.0703 8968 Product type: Workstation
19:00:00.0703 8968 ComputerName: STEPHDESKTOP
19:00:00.0703 8968 UserName: Stephanie
19:00:00.0703 8968 Windows directory: C:\Windows
19:00:00.0703 8968 System windows directory: C:\Windows
19:00:00.0703 8968 Running under WOW64
19:00:00.0703 8968 Processor architecture: Intel x64
19:00:00.0703 8968 Number of processors: 8
19:00:00.0703 8968 Page size: 0x1000
19:00:00.0703 8968 Boot type: Normal boot
19:00:00.0703 8968 ============================================================
19:00:02.0716 8968 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:00:02.0791 8968 ============================================================
19:00:02.0791 8968 \Device\Harddisk0\DR0:
19:00:02.0831 8968 MBR partitions:
19:00:02.0831 8968 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000
19:00:02.0831 8968 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x48A38000
19:00:02.0831 8968 ============================================================
19:00:02.0912 8968 C: <-> \Device\Harddisk0\DR0\Partition1
19:00:02.0964 8968 D: <-> \Device\Harddisk0\DR0\Partition0
19:00:02.0964 8968 ============================================================
19:00:02.0964 8968 Initialize success
19:00:02.0964 8968 ============================================================
19:00:18.0663 7232 ============================================================
19:00:18.0663 7232 Scan started
19:00:18.0663 7232 Mode: Manual; SigCheck; TDLFS;
19:00:18.0663 7232 ============================================================
19:00:20.0895 7232 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
19:00:21.0474 7232 1394ohci - ok
19:00:21.0533 7232 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
19:00:21.0597 7232 ACPI - ok
19:00:21.0618 7232 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
19:00:21.0748 7232 AcpiPmi - ok
19:00:21.0787 7232 adfs (d44bcaf639e4e45307c2bc80715273d5) C:\Windows\system32\drivers\adfs.sys
19:00:22.0149 7232 adfs - ok
19:00:22.0427 7232 Adobe Version Cue CS4 (9444a3530c2e88b7ed96a566ff9ccc13) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
19:00:22.0471 7232 Adobe Version Cue CS4 - ok
19:00:22.0830 7232 AdobeActiveFileMonitor5.0 (177ff6608b48638d4066726f3a3f8444) C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
19:00:22.0939 7232 AdobeActiveFileMonitor5.0 ( UnsignedFile.Multi.Generic ) - warning
19:00:22.0939 7232 AdobeActiveFileMonitor5.0 - detected UnsignedFile.Multi.Generic (1)
19:00:23.0391 7232 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:00:23.0530 7232 AdobeFlashPlayerUpdateSvc - ok
19:00:23.0874 7232 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:00:23.0953 7232 adp94xx - ok
19:00:24.0103 7232 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:00:24.0179 7232 adpahci - ok
19:00:24.0378 7232 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:00:24.0457 7232 adpu320 - ok
19:00:24.0564 7232 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:00:25.0121 7232 AeLookupSvc - ok
19:00:25.0182 7232 AERTFilters (233ee06f203f6fd78ccbb8e0d139a271) C:\Windows\system32\AERTSr64.exe
19:00:25.0432 7232 AERTFilters - ok
19:00:25.0520 7232 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
19:00:25.0784 7232 AFD - ok
19:00:25.0863 7232 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
19:00:25.0899 7232 agp440 - ok
19:00:25.0963 7232 aksdf (89cd44c10d9b4d87725ff07f18a5702f) C:\Windows\system32\drivers\aksdf.sys
19:00:26.0089 7232 aksdf - ok
19:00:26.0121 7232 aksfridge (ba0b6fd78ae88d39b9d3d984f295a137) C:\Windows\system32\DRIVERS\aksfridge.sys
19:00:26.0212 7232 aksfridge - ok
19:00:26.0269 7232 akshasp (a56f1b0f967aef8a82d7771e6d166def) C:\Windows\system32\DRIVERS\akshasp.sys
19:00:26.0461 7232 akshasp - ok
19:00:26.0531 7232 akshhl (67dff8c8f95cb21c9c3380dd4c0387f2) C:\Windows\system32\DRIVERS\akshhl.sys
19:00:26.0810 7232 akshhl - ok
19:00:26.0894 7232 aksusb (a9a09bc526e614ce9f29bb23c2a76ced) C:\Windows\system32\DRIVERS\aksusb.sys
19:00:26.0945 7232 aksusb - ok
19:00:27.0078 7232 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:00:27.0307 7232 ALG - ok
19:00:27.0360 7232 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
19:00:27.0395 7232 aliide - ok
19:00:28.0603 7232 ALSysIO - ok
19:00:28.0903 7232 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
19:00:28.0965 7232 AMD External Events Utility - ok
19:00:29.0034 7232 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
19:00:29.0061 7232 amdide - ok
19:00:29.0178 7232 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:00:29.0324 7232 AmdK8 - ok
19:00:32.0733 7232 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
19:00:34.0712 7232 amdkmdag - ok
19:00:34.0994 7232 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
19:00:35.0070 7232 amdkmdap - ok
19:00:35.0110 7232 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:00:35.0178 7232 AmdPPM - ok
19:00:35.0244 7232 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
19:00:35.0303 7232 amdsata - ok
19:00:35.0402 7232 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:00:35.0433 7232 amdsbs - ok
19:00:35.0438 7232 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
19:00:35.0461 7232 amdxata - ok
19:00:36.0385 7232 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
19:00:36.0547 7232 Amsp - ok
19:00:36.0610 7232 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
19:00:36.0988 7232 AppID - ok
19:00:37.0065 7232 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:00:37.0176 7232 AppIDSvc - ok
19:00:37.0246 7232 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
19:00:37.0338 7232 Appinfo - ok
19:00:37.0571 7232 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:00:37.0602 7232 Apple Mobile Device - ok
19:00:37.0698 7232 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:00:37.0744 7232 arc - ok
19:00:37.0789 7232 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:00:37.0839 7232 arcsas - ok
19:00:37.0978 7232 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:00:38.0173 7232 aspnet_state - ok
19:00:38.0276 7232 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:00:38.0439 7232 AsyncMac - ok
19:00:38.0564 7232 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
19:00:38.0613 7232 atapi - ok
19:00:39.0581 7232 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
19:00:39.0726 7232 AtiHDAudioService - ok
19:00:43.0766 7232 atikmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
19:00:43.0886 7232 atikmdag - ok
19:00:44.0179 7232 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:00:44.0267 7232 AudioEndpointBuilder - ok
19:00:44.0271 7232 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:00:44.0318 7232 AudioSrv - ok
19:00:44.0394 7232 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
19:00:44.0560 7232 AxInstSV - ok
19:00:44.0712 7232 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:00:44.0887 7232 b06bdrv - ok
19:00:45.0065 7232 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:00:45.0137 7232 b57nd60a - ok
19:00:45.0217 7232 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:00:45.0328 7232 BDESVC - ok
19:00:45.0355 7232 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:00:45.0450 7232 Beep - ok
19:00:45.0597 7232 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
19:00:45.0699 7232 BFE - ok
19:00:45.0812 7232 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
19:00:45.0937 7232 BITS - ok
19:00:46.0053 7232 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:00:46.0119 7232 blbdrive - ok
19:00:46.0497 7232 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
19:00:46.0524 7232 Bonjour Service - ok
19:00:46.0567 7232 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
19:00:46.0633 7232 bowser - ok
19:00:46.0692 7232 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:00:47.0279 7232 BrFiltLo - ok
19:00:47.0310 7232 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:00:47.0432 7232 BrFiltUp - ok
19:00:47.0668 7232 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
19:00:47.0848 7232 Browser - ok
19:00:48.0824 7232 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:00:49.0266 7232 Brserid - ok
19:00:49.0418 7232 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:00:49.0575 7232 BrSerWdm - ok
19:00:49.0673 7232 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:00:49.0729 7232 BrUsbMdm - ok
19:00:49.0775 7232 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:00:49.0825 7232 BrUsbSer - ok
19:00:49.0855 7232 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:00:49.0924 7232 BTHMODEM - ok
19:00:49.0970 7232 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:00:50.0068 7232 bthserv - ok
19:00:50.0246 7232 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:00:50.0329 7232 cdfs - ok
19:00:50.0663 7232 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
19:00:50.0756 7232 cdrom - ok
19:00:50.0864 7232 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:00:50.0958 7232 CertPropSvc - ok
19:00:51.0023 7232 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:00:51.0087 7232 circlass - ok
19:00:51.0145 7232 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:00:51.0181 7232 CLFS - ok
19:00:51.0313 7232 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:00:51.0501 7232 clr_optimization_v2.0.50727_32 - ok
19:00:51.0569 7232 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:00:51.0632 7232 clr_optimization_v2.0.50727_64 - ok
19:00:51.0807 7232 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:00:52.0416 7232 clr_optimization_v4.0.30319_32 - ok
19:00:53.0135 7232 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:00:53.0186 7232 clr_optimization_v4.0.30319_64 - ok
19:00:53.0264 7232 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:00:53.0339 7232 CmBatt - ok
19:00:53.0369 7232 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
19:00:53.0399 7232 cmdide - ok
19:00:53.0454 7232 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
19:00:53.0515 7232 CNG - ok
19:00:53.0596 7232 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:00:53.0652 7232 Compbatt - ok
19:00:53.0716 7232 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
19:00:53.0912 7232 CompositeBus - ok
19:00:53.0956 7232 COMSysApp - ok
19:00:53.0997 7232 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:00:54.0033 7232 crcdisk - ok
19:00:54.0279 7232 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
19:00:54.0360 7232 CryptSvc - ok
19:00:54.0467 7232 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:00:54.0654 7232 DcomLaunch - ok
19:00:55.0087 7232 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:00:55.0286 7232 defragsvc - ok
19:00:55.0603 7232 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
19:00:55.0786 7232 DfsC - ok
19:00:55.0942 7232 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
19:00:56.0038 7232 Dhcp - ok
19:00:56.0107 7232 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:00:56.0343 7232 discache - ok
19:00:56.0460 7232 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:00:56.0497 7232 Disk - ok
19:00:56.0532 7232 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
19:00:56.0611 7232 Dnscache - ok
19:00:56.0770 7232 DockLoginService (db29915209770d8b59654345ec2d943a) C:\Program Files\Dell\DellDock\DockLogin.exe
19:00:56.0851 7232 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
19:00:56.0851 7232 DockLoginService - detected UnsignedFile.Multi.Generic (1)
19:00:56.0978 7232 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
19:00:57.0174 7232 dot3svc - ok
19:00:57.0245 7232 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
19:00:57.0335 7232 DPS - ok
19:00:57.0515 7232 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:00:57.0596 7232 drmkaud - ok
19:00:57.0822 7232 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
19:00:58.0123 7232 DXGKrnl - ok
19:00:59.0112 7232 e1yexpress (50ad8fc1dc800ff36087994c8f7fdff2) C:\Windows\system32\DRIVERS\e1y60x64.sys
19:00:59.0278 7232 e1yexpress - ok
19:00:59.0401 7232 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:00:59.0524 7232 EapHost - ok
19:00:59.0659 7232 easytether (1e8d0e318d3f17b2eaaf993db20c76f0) C:\Windows\system32\DRIVERS\easytthr.sys
19:00:59.0712 7232 easytether - ok
19:01:00.0504 7232 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:01:00.0742 7232 ebdrv - ok
19:01:00.0963 7232 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
19:01:01.0137 7232 EFS - ok
19:01:01.0591 7232 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
19:01:01.0783 7232 ehRecvr - ok
19:01:01.0826 7232 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:01:01.0930 7232 ehSched - ok
19:01:02.0092 7232 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:01:02.0316 7232 elxstor - ok
19:01:02.0355 7232 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
19:01:02.0521 7232 ErrDev - ok
19:01:02.0696 7232 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:01:02.0777 7232 EventSystem - ok
19:01:02.0833 7232 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:01:02.0893 7232 exfat - ok
19:01:02.0918 7232 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:01:02.0987 7232 fastfat - ok
19:01:03.0137 7232 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
19:01:03.0442 7232 Fax - ok
19:01:03.0465 7232 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:01:03.0528 7232 fdc - ok
19:01:03.0573 7232 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:01:03.0752 7232 fdPHost - ok
19:01:03.0774 7232 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:01:03.0839 7232 FDResPub - ok
19:01:03.0872 7232 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:01:03.0909 7232 FileInfo - ok
19:01:03.0925 7232 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:01:03.0995 7232 Filetrace - ok
19:01:04.0177 7232 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:01:04.0219 7232 FLEXnet Licensing Service - ok
19:01:04.0429 7232 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
19:01:04.0612 7232 FLEXnet Licensing Service 64 - ok
19:01:05.0030 7232 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:01:05.0073 7232 flpydisk - ok
19:01:05.0180 7232 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
19:01:05.0290 7232 FltMgr - ok
19:01:06.0450 7232 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
19:01:06.0642 7232 FontCache - ok
19:01:06.0812 7232 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:01:06.0842 7232 FontCache3.0.0.0 - ok
19:01:06.0971 7232 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:01:07.0013 7232 FsDepends - ok
19:01:07.0036 7232 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
19:01:07.0083 7232 Fs_Rec - ok
19:01:07.0181 7232 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:01:07.0239 7232 fvevol - ok
19:01:07.0312 7232 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:01:07.0356 7232 gagp30kx - ok
19:01:07.0485 7232 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:01:07.0509 7232 GEARAspiWDM - ok
19:01:07.0644 7232 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
19:01:07.0766 7232 gpsvc - ok
19:01:07.0940 7232 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:01:07.0982 7232 gupdate - ok
19:01:07.0995 7232 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:01:08.0015 7232 gupdatem - ok
19:01:08.0149 7232 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:01:08.0177 7232 gusvc - ok
19:01:08.0238 7232 hardlock (78fad9117e4527f2ca82259da10f40bd) C:\Windows\system32\drivers\hardlock.sys
19:01:08.0310 7232 hardlock - ok
19:01:08.0312 7232 hasplms - ok
19:01:08.0377 7232 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:01:08.0737 7232 hcw85cir - ok
19:01:09.0097 7232 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
19:01:09.0149 7232 HdAudAddService - ok
19:01:09.0200 7232 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
19:01:09.0268 7232 HDAudBus - ok
19:01:09.0348 7232 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:01:09.0425 7232 HidBatt - ok
19:01:09.0494 7232 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:01:09.0560 7232 HidBth - ok
19:01:09.0599 7232 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:01:09.0986 7232 HidIr - ok
19:01:10.0019 7232 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
19:01:10.0095 7232 hidserv - ok
19:01:10.0211 7232 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
19:01:10.0261 7232 HidUsb - ok
19:01:10.0315 7232 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
19:01:10.0397 7232 hkmsvc - ok
19:01:10.0460 7232 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
19:01:10.0581 7232 HomeGroupListener - ok
19:01:10.0779 7232 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
19:01:10.0829 7232 HomeGroupProvider - ok
19:01:11.0747 7232 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
19:01:11.0844 7232 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
19:01:11.0845 7232 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
19:01:12.0182 7232 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
19:01:12.0357 7232 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
19:01:12.0357 7232 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
19:01:12.0437 7232 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
19:01:12.0482 7232 HpSAMD - ok
19:01:12.0661 7232 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
19:01:12.0764 7232 HTTP - ok
19:01:12.0811 7232 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
19:01:12.0855 7232 hwpolicy - ok
19:01:12.0898 7232 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
19:01:12.0988 7232 i8042prt - ok
19:01:13.0054 7232 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
19:01:13.0213 7232 iaStorV - ok
19:01:13.0422 7232 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:01:13.0572 7232 IDriverT ( UnsignedFile.Multi.Generic ) - warning
19:01:13.0572 7232 IDriverT - detected UnsignedFile.Multi.Generic (1)
19:01:13.0784 7232 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:01:13.0833 7232 idsvc - ok
19:01:14.0045 7232 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:01:14.0089 7232 iirsp - ok
19:01:14.0227 7232 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
19:01:14.0334 7232 IKEEXT - ok
19:01:14.0530 7232 IntcAzAudAddService (358a23acf3a78893eeacd4beb20953d5) C:\Windows\system32\drivers\RTKVHD64.sys
19:01:14.0596 7232 IntcAzAudAddService - ok
19:01:14.0765 7232 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
19:01:14.0783 7232 intelide - ok
19:01:14.0915 7232 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:01:14.0982 7232 intelppm - ok
19:01:15.0043 7232 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:01:15.0105 7232 IPBusEnum - ok
19:01:15.0189 7232 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:01:15.0253 7232 IpFilterDriver - ok
19:01:15.0388 7232 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
19:01:15.0500 7232 iphlpsvc - ok
19:01:15.0522 7232 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
19:01:15.0578 7232 IPMIDRV - ok
19:01:15.0615 7232 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:01:15.0750 7232 IPNAT - ok
19:01:15.0932 7232 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
19:01:15.0977 7232 iPod Service - ok
19:01:16.0153 7232 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:01:16.0215 7232 IRENUM - ok
19:01:16.0263 7232 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
19:01:16.0300 7232 isapnp - ok
19:01:16.0346 7232 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
19:01:16.0470 7232 iScsiPrt - ok
19:01:16.0489 7232 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:01:16.0589 7232 kbdclass - ok
19:01:16.0625 7232 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
19:01:16.0701 7232 kbdhid - ok
19:01:16.0897 7232 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:01:17.0040 7232 KeyIso - ok
19:01:17.0290 7232 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
19:01:17.0387 7232 KSecDD - ok
19:01:17.0669 7232 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
19:01:17.0827 7232 KSecPkg - ok
19:01:17.0923 7232 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:01:18.0149 7232 ksthunk - ok
19:01:18.0287 7232 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:01:18.0484 7232 KtmRm - ok
19:01:18.0599 7232 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
19:01:18.0686 7232 LanmanServer - ok
19:01:18.0766 7232 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
19:01:18.0874 7232 LanmanWorkstation - ok
19:01:18.0986 7232 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:01:19.0040 7232 lltdio - ok
19:01:19.0137 7232 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:01:19.0302 7232 lltdsvc - ok
19:01:19.0353 7232 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:01:19.0467 7232 lmhosts - ok
19:01:19.0519 7232 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:01:19.0599 7232 LSI_FC - ok
19:01:19.0671 7232 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:01:19.0704 7232 LSI_SAS - ok
19:01:19.0727 7232 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:01:19.0758 7232 LSI_SAS2 - ok
19:01:19.0796 7232 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:01:19.0816 7232 LSI_SCSI - ok
19:01:19.0891 7232 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:01:19.0980 7232 luafv - ok
19:01:20.0164 7232 lxdxCATSCustConnectService (4208b958e35f0e596aa241efb664636b) C:\Windows\system32\spool\DRIVERS\x64\3\\lxdxserv.exe
19:01:20.0203 7232 lxdxCATSCustConnectService ( UnsignedFile.Multi.Generic ) - warning
19:01:20.0203 7232 lxdxCATSCustConnectService - detected UnsignedFile.Multi.Generic (1)
19:01:20.0205 7232 lxdx_device - ok
19:01:20.0255 7232 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
19:01:20.0280 7232 Mcx2Svc - ok
19:01:20.0365 7232 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:01:20.0397 7232 megasas - ok
19:01:20.0479 7232 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:01:20.0534 7232 MegaSR - ok
19:01:20.0639 7232 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:01:20.0725 7232 MMCSS - ok
19:01:20.0738 7232 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:01:20.0799 7232 Modem - ok
19:01:20.0847 7232 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:01:20.0929 7232 monitor - ok
19:01:21.0017 7232 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:01:21.0066 7232 mouclass - ok
19:01:21.0182 7232 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:01:21.0256 7232 mouhid - ok
19:01:21.0300 7232 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
19:01:21.0366 7232 mountmgr - ok
19:01:21.0881 7232 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:01:21.0985 7232 MozillaMaintenance - ok
19:01:22.0378 7232 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
19:01:22.0494 7232 mpio - ok
19:01:22.0578 7232 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:01:22.0640 7232 mpsdrv - ok
19:01:22.0763 7232 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
19:01:22.0913 7232 MpsSvc - ok
19:01:23.0012 7232 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
19:01:23.0102 7232 MRxDAV - ok
19:01:23.0196 7232 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:01:23.0387 7232 mrxsmb - ok
19:01:23.0447 7232 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:01:23.0520 7232 mrxsmb10 - ok
19:01:23.0633 7232 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:01:23.0690 7232 mrxsmb20 - ok
19:01:23.0747 7232 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
19:01:23.0792 7232 msahci - ok
19:01:23.0840 7232 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
19:01:23.0875 7232 msdsm - ok
19:01:23.0981 7232 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:01:24.0040 7232 MSDTC - ok
19:01:24.0098 7232 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:01:24.0146 7232 Msfs - ok
19:01:24.0165 7232 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:01:24.0206 7232 mshidkmdf - ok
19:01:24.0241 7232 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
19:01:24.0273 7232 msisadrv - ok
19:01:24.0345 7232 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:01:24.0498 7232 MSiSCSI - ok
19:01:24.0501 7232 msiserver - ok
19:01:24.0692 7232 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:01:24.0767 7232 MSKSSRV - ok
19:01:24.0815 7232 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:01:24.0916 7232 MSPCLOCK - ok
19:01:24.0939 7232 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:01:25.0008 7232 MSPQM - ok
19:01:25.0137 7232 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
19:01:25.0308 7232 MsRPC - ok
19:01:25.0336 7232 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
19:01:25.0360 7232 mssmbios - ok
19:01:25.0392 7232 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:01:25.0536 7232 MSTEE - ok
19:01:25.0566 7232 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:01:25.0646 7232 MTConfig - ok
19:01:25.0761 7232 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:01:25.0825 7232 Mup - ok
19:01:25.0968 7232 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
19:01:26.0315 7232 napagent - ok
19:01:26.0429 7232 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:01:26.0542 7232 NativeWifiP - ok
19:01:26.0656 7232 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
19:01:26.0700 7232 NDIS - ok
19:01:26.0857 7232 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:01:26.0997 7232 NdisCap - ok
19:01:27.0163 7232 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:01:27.0302 7232 NdisTapi - ok
19:01:27.0492 7232 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
19:01:27.0614 7232 Ndisuio - ok
19:01:27.0872 7232 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
19:01:28.0060 7232 NdisWan - ok
19:01:28.0142 7232 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
19:01:28.0220 7232 NDProxy - ok
19:01:28.0291 7232 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:01:28.0454 7232 NetBIOS - ok
19:01:28.0683 7232 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
19:01:28.0871 7232 NetBT - ok
19:01:28.0934 7232 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:01:28.0972 7232 Netlogon - ok
19:01:29.0076 7232 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:01:29.0268 7232 Netman - ok
19:01:29.0571 7232 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:01:29.0701 7232 NetMsmqActivator - ok
19:01:29.0704 7232 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:01:29.0735 7232 NetPipeActivator - ok
19:01:29.0895 7232 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:01:30.0074 7232 netprofm - ok
19:01:30.0408 7232 netr28ux (26672f93749ac9fd28da1b0f94efa78d) C:\Windows\system32\DRIVERS\Dnetr28ux.sys
19:01:30.0548 7232 netr28ux - ok
19:01:30.0867 7232 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:01:30.0904 7232 NetTcpActivator - ok
19:01:30.0907 7232 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:01:30.0944 7232 NetTcpPortSharing - ok
19:01:31.0031 7232 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:01:31.0077 7232 nfrd960 - ok
19:01:31.0303 7232 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
19:01:31.0396 7232 NlaSvc - ok
19:01:31.0441 7232 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:01:31.0533 7232 Npfs - ok
19:01:31.0584 7232 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:01:31.0692 7232 nsi - ok
19:01:31.0737 7232 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:01:31.0836 7232 nsiproxy - ok
19:01:32.0262 7232 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
19:01:32.0460 7232 Ntfs - ok
19:01:32.0961 7232 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:01:33.0150 7232 Null - ok
19:01:33.0439 7232 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
19:01:33.0524 7232 nvraid - ok
19:01:33.0911 7232 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
19:01:34.0169 7232 nvstor - ok
19:01:34.0258 7232 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
19:01:34.0309 7232 nv_agp - ok
19:01:34.0624 7232 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:01:34.0663 7232 odserv - ok
19:01:34.0687 7232 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
19:01:34.0763 7232 ohci1394 - ok
19:01:34.0868 7232 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:01:34.0901 7232 ose - ok
19:01:35.0006 7232 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:01:35.0133 7232 p2pimsvc - ok
19:01:35.0254 7232 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:01:35.0312 7232 p2psvc - ok
19:01:35.0370 7232 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:01:35.0403 7232 Parport - ok
19:01:35.0480 7232 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
19:01:35.0506 7232 partmgr - ok
19:01:35.0547 7232 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:01:35.0622 7232 PcaSvc - ok
19:01:35.0730 7232 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
19:01:35.0762 7232 pci - ok
19:01:35.0785 7232 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:01:35.0814 7232 pciide - ok
19:01:35.0965 7232 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:01:35.0990 7232 pcmcia - ok
19:01:36.0013 7232 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:01:36.0052 7232 pcw - ok
19:01:36.0159 7232 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:01:36.0286 7232 PEAUTH - ok
19:01:36.0468 7232 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:01:36.0541 7232 PerfHost - ok
19:01:36.0842 7232 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
19:01:37.0157 7232 pla - ok
19:01:37.0893 7232 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
19:01:38.0190 7232 PlugPlay - ok
19:01:38.0335 7232 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:01:38.0367 7232 PNRPAutoReg - ok
19:01:38.0495 7232 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:01:38.0536 7232 PNRPsvc - ok
19:01:38.0813 7232 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
19:01:38.0898 7232 PolicyAgent - ok
19:01:39.0001 7232 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:01:39.0205 7232 Power - ok
19:01:39.0307 7232 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
19:01:39.0388 7232 PptpMiniport - ok
19:01:39.0421 7232 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:01:39.0540 7232 Processor - ok
19:01:39.0629 7232 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
19:01:39.0697 7232 ProfSvc - ok
19:01:39.0761 7232 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:01:39.0886 7232 ProtectedStorage - ok
19:01:40.0085 7232 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
19:01:40.0145 7232 Psched - ok
19:01:40.0339 7232 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
19:01:40.0437 7232 PSI_SVC_2 - ok
19:01:40.0470 7232 PxHlpa64 (46851bc18322da70f3f2299a1007c479) C:\Windows\system32\Drivers\PxHlpa64.sys
19:01:40.0499 7232 PxHlpa64 - ok
19:01:40.0759 7232 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:01:40.0857 7232 ql2300 - ok
19:01:41.0123 7232 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:01:41.0159 7232 ql40xx - ok
19:01:41.0232 7232 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:01:41.0381 7232 QWAVE - ok
19:01:41.0412 7232 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:01:41.0443 7232 QWAVEdrv - ok
19:01:41.0460 7232 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:01:41.0557 7232 RasAcd - ok
19:01:41.0742 7232 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:01:41.0858 7232 RasAgileVpn - ok
19:01:42.0061 7232 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:01:42.0281 7232 RasAuto - ok
19:01:42.0709 7232 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:01:42.0923 7232 Rasl2tp - ok
19:01:43.0094 7232 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
19:01:43.0171 7232 RasMan - ok
19:01:43.0377 7232 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:01:43.0429 7232 RasPppoe - ok
19:01:43.0503 7232 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:01:43.0584 7232 RasSstp - ok
19:01:43.0687 7232 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
19:01:43.0852 7232 rdbss - ok
19:01:43.0915 7232 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:01:43.0991 7232 rdpbus - ok
19:01:44.0005 7232 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:01:44.0104 7232 RDPCDD - ok
19:01:44.0146 7232 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:01:44.0230 7232 RDPENCDD - ok
19:01:44.0268 7232 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:01:44.0305 7232 RDPREFMP - ok
19:01:44.0449 7232 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
19:01:44.0654 7232 RDPWD - ok
19:01:44.0754 7232 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
19:01:44.0826 7232 rdyboost - ok
19:01:44.0887 7232 regi (88e128c45699ab390f40f3520f2ee29f) C:\Windows\system32\drivers\regi.sys
19:01:44.0920 7232 regi - ok
19:01:44.0994 7232 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:01:45.0247 7232 RemoteAccess - ok
19:01:45.0287 7232 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:01:45.0353 7232 RemoteRegistry - ok
19:01:45.0394 7232 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:01:45.0454 7232 RpcEptMapper - ok
19:01:45.0493 7232 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:01:45.0571 7232 RpcLocator - ok
19:01:45.0769 7232 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:01:45.0822 7232 RpcSs - ok
19:01:45.0934 7232 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:01:46.0036 7232 rspndr - ok
19:01:46.0090 7232 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:01:46.0106 7232 SamSs - ok
19:01:46.0143 7232 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
19:01:46.0177 7232 sbp2port - ok
19:01:46.0511 7232 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
19:01:46.0570 7232 SBSDWSCService - ok
19:01:46.0677 7232 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:01:46.0744 7232 SCardSvr - ok
19:01:46.0982 7232 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
19:01:47.0115 7232 scfilter - ok
19:01:48.0162 7232 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
19:01:48.0283 7232 Schedule - ok
19:01:48.0447 7232 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:01:48.0492 7232 SCPolicySvc - ok
19:01:48.0585 7232 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
19:01:48.0700 7232 SDRSVC - ok
19:01:48.0797 7232 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:01:48.0896 7232 secdrv - ok
19:01:48.0973 7232 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
19:01:49.0024 7232 seclogon - ok
19:01:49.0063 7232 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:01:49.0139 7232 SENS - ok
19:01:49.0170 7232 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:01:49.0410 7232 SensrSvc - ok
19:01:49.0457 7232 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:01:49.0534 7232 Serenum - ok
19:01:49.0561 7232 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:01:49.0608 7232 Serial - ok
19:01:49.0670 7232 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:01:49.0822 7232 sermouse - ok
19:01:49.0935 7232 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
19:01:50.0087 7232 SessionEnv - ok
19:01:50.0129 7232 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:01:50.0208 7232 sffdisk - ok
19:01:50.0254 7232 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:01:50.0328 7232 sffp_mmc - ok
19:01:50.0350 7232 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
19:01:50.0449 7232 sffp_sd - ok
19:01:50.0541 7232 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:01:50.0598 7232 sfloppy - ok
19:01:50.0685 7232 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
19:01:50.0794 7232 SharedAccess - ok
19:01:50.0884 7232 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
19:01:51.0017 7232 ShellHWDetection - ok
19:01:51.0114 7232 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:01:51.0148 7232 SiSRaid2 - ok
19:01:51.0195 7232 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:01:51.0226 7232 SiSRaid4 - ok
19:01:51.0265 7232 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:01:51.0326 7232 Smb - ok
19:01:51.0454 7232 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:01:51.0558 7232 SNMPTRAP - ok
19:01:51.0635 7232 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:01:51.0741 7232 spldr - ok
19:01:52.0448 7232 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
19:01:52.0505 7232 Spooler - ok
19:01:53.0902 7232 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
19:01:54.0208 7232 sppsvc - ok
19:01:54.0428 7232 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:01:54.0516 7232 sppuinotify - ok
19:01:54.0750 7232 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
19:01:54.0897 7232 srv - ok
19:01:54.0982 7232 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
19:01:55.0077 7232 srv2 - ok
19:01:55.0129 7232 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
19:01:55.0221 7232 srvnet - ok
19:01:55.0320 7232 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:01:55.0401 7232 SSDPSRV - ok
19:01:55.0464 7232 ssfs0bbc (028f6f489280ab1c42d8a971ef59657b) C:\Windows\system32\DRIVERS\ssfs0bbc.sys
19:01:55.0497 7232 ssfs0bbc - ok
19:01:55.0614 7232 ssidrv (2383a44524cec4dbb4ddbe0deef17826) C:\Windows\system32\DRIVERS\ssidrv.sys
19:01:55.0700 7232 ssidrv - ok
19:01:55.0818 7232 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:01:55.0906 7232 SstpSvc - ok
19:01:55.0962 7232 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:01:55.0994 7232 stexstor - ok
19:01:56.0158 7232 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
19:01:56.0234 7232 stisvc - ok
19:01:56.0410 7232 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
19:01:56.0448 7232 stllssvr - ok
19:01:56.0494 7232 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
19:01:56.0585 7232 swenum - ok
19:01:57.0608 7232 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:01:57.0831 7232 swprv - ok
19:01:58.0226 7232 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
19:01:58.0379 7232 SysMain - ok
19:01:58.0588 7232 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
19:01:58.0691 7232 TabletInputService - ok
19:01:59.0065 7232 TabletServiceWacom (ffdf8b9b796e5243214233a8db622e3d) C:\Windows\system32\Wacom_Tablet.exe
19:01:59.0424 7232 TabletServiceWacom - ok
19:01:59.0635 7232 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
19:01:59.0765 7232 TapiSrv - ok
19:02:00.0073 7232 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:02:00.0170 7232 TBS - ok
19:02:00.0779 7232 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
19:02:00.0949 7232 Tcpip - ok
19:02:01.0353 7232 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
19:02:01.0419 7232 TCPIP6 - ok
19:02:01.0558 7232 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
19:02:01.0681 7232 tcpipreg - ok
19:02:01.0743 7232 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:02:01.0873 7232 TDPIPE - ok
19:02:01.0936 7232 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
19:02:02.0022 7232 TDTCP - ok
19:02:02.0091 7232 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
19:02:02.0204 7232 tdx - ok
19:02:02.0249 7232 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
19:02:02.0319 7232 TermDD - ok
19:02:02.0457 7232 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
19:02:02.0563 7232 TermService - ok
19:02:02.0613 7232 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
19:02:02.0718 7232 Themes - ok
19:02:02.0798 7232 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:02:02.0848 7232 THREADORDER - ok
19:02:02.0947 7232 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\Windows\system32\DRIVERS\tmactmon.sys
19:02:03.0025 7232 tmactmon - ok
19:02:03.0139 7232 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\Windows\system32\DRIVERS\tmcomm.sys
19:02:03.0182 7232 tmcomm - ok
19:02:03.0237 7232 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\Windows\system32\DRIVERS\tmevtmgr.sys
19:02:03.0292 7232 tmevtmgr - ok
19:02:03.0385 7232 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\Windows\system32\DRIVERS\tmtdi.sys
19:02:03.0438 7232 tmtdi - ok
19:02:03.0517 7232 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:02:03.0627 7232 TrkWks - ok
19:02:03.0773 7232 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
19:02:03.0940 7232 TrustedInstaller - ok
19:02:04.0013 7232 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:02:04.0097 7232 tssecsrv - ok
19:02:04.0185 7232 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
19:02:04.0254 7232 TsUsbFlt - ok
19:02:05.0119 7232 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
19:02:05.0431 7232 tunnel - ok
19:02:09.0981 7232 tvnserver (aaf458cc200326bef602b5339400bf86) C:\Program Files (x86)\TightVNC\tvnserver.exe
19:02:10.0092 7232 tvnserver - ok
19:02:10.0528 7232 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:02:10.0576 7232 uagp35 - ok
19:02:10.0724 7232 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
19:02:10.0813 7232 udfs - ok
19:02:10.0862 7232 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:02:10.0884 7232 UI0Detect - ok
19:02:10.0914 7232 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
19:02:10.0934 7232 uliagpkx - ok
19:02:11.0002 7232 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
19:02:11.0069 7232 umbus - ok
19:02:11.0147 7232 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:02:11.0227 7232 UmPass - ok
19:02:11.0292 7232 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:02:11.0412 7232 upnphost - ok
19:02:11.0467 7232 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
19:02:11.0538 7232 USBAAPL64 - ok
19:02:11.0610 7232 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
19:02:11.0671 7232 usbccgp - ok
19:02:11.0703 7232 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
19:02:11.0773 7232 usbcir - ok
19:02:11.0812 7232 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
19:02:11.0906 7232 usbehci - ok
19:02:11.0960 7232 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
19:02:12.0046 7232 usbhub - ok
19:02:12.0092 7232 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
19:02:12.0164 7232 usbohci - ok
19:02:12.0239 7232 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:02:12.0321 7232 usbprint - ok
19:02:12.0395 7232 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
19:02:12.0651 7232 USBSTOR - ok
19:02:12.0792 7232 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
19:02:12.0853 7232 usbuhci - ok
19:02:12.0993 7232 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:02:13.0142 7232 UxSms - ok
19:02:13.0266 7232 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:02:13.0316 7232 VaultSvc - ok
19:02:13.0457 7232 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
19:02:13.0580 7232 vdrvroot - ok
19:02:13.0676 7232 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
19:02:13.0931 7232 vds - ok
19:02:13.0973 7232 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:02:14.0006 7232 vga - ok
19:02:14.0021 7232 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:02:14.0115 7232 VgaSave - ok
19:02:14.0153 7232 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
19:02:14.0194 7232 vhdmp - ok
19:02:14.0222 7232 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
19:02:14.0251 7232 viaide - ok
19:02:14.0341 7232 Viewpoint Manager Service (5f974fde801c73952770736becde11e7) C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
19:02:14.0446 7232 Viewpoint Manager Service ( UnsignedFile.Multi.Generic ) - warning
19:02:14.0446 7232 Viewpoint Manager Service - detected UnsignedFile.Multi.Generic (1)
19:02:14.0502 7232 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
19:02:14.0613 7232 volmgr - ok
19:02:14.0724 7232 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
19:02:14.0805 7232 volmgrx - ok
19:02:14.0865 7232 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
19:02:15.0027 7232 volsnap - ok
19:02:15.0166 7232 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:02:15.0204 7232 vsmraid - ok
19:02:15.0390 7232 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
19:02:15.0607 7232 VSS - ok
19:02:16.0638 7232 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:02:16.0736 7232 vwifibus - ok
19:02:16.0831 7232 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:02:16.0933 7232 vwififlt - ok
19:02:17.0018 7232 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
19:02:17.0098 7232 vwifimp - ok
19:02:17.0259 7232 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:02:17.0336 7232 W32Time - ok
19:02:17.0368 7232 wacmoumonitor (f39fc224758290a3193c68c091e6f11a) C:\Windows\system32\DRIVERS\wacmoumonitor.sys
19:02:17.0395 7232 wacmoumonitor - ok
19:02:17.0421 7232 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:02:17.0498 7232 WacomPen - ok
19:02:17.0577 7232 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:02:17.0705 7232 WANARP - ok
19:02:17.0719 7232 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:02:17.0759 7232 Wanarpv6 - ok
19:02:17.0931 7232 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
19:02:18.0042 7232 WatAdminSvc - ok
19:02:19.0284 7232 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
19:02:19.0454 7232 wbengine - ok
19:02:19.0667 7232 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:02:19.0743 7232 WbioSrvc - ok
19:02:19.0944 7232 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
19:02:20.0044 7232 wcncsvc - ok
19:02:20.0082 7232 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:02:20.0347 7232 WcsPlugInService - ok
19:02:20.0449 7232 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:02:20.0509 7232 Wd - ok
19:02:20.0590 7232 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:02:20.0664 7232 Wdf01000 - ok
19:02:20.0752 7232 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:02:20.0957 7232 WdiServiceHost - ok
19:02:20.0960 7232 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:02:20.0990 7232 WdiSystemHost - ok
19:02:21.0047 7232 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
19:02:21.0174 7232 WebClient - ok
19:02:22.0953 7232 WebrootSpySweeperService (3102fd5f65b3ca05aadd1c1aa1a42220) C:\Program Files (x86)\Webroot\WebrootSecurity\SpySweeper.exe
19:02:23.0202 7232 WebrootSpySweeperService - ok
19:02:23.0389 7232 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:02:23.0483 7232 Wecsvc - ok
19:02:23.0509 7232 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:02:23.0590 7232 wercplsupport - ok
19:02:23.0675 7232 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:02:23.0740 7232 WerSvc - ok
19:02:23.0850 7232 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:02:23.0910 7232 WfpLwf - ok
19:02:23.0935 7232 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:02:23.0964 7232 WIMMount - ok
19:02:24.0041 7232 WinDefend - ok
19:02:24.0048 7232 WinHttpAutoProxySvc - ok
19:02:24.0428 7232 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:02:24.0533 7232 Winmgmt - ok
19:02:24.0861 7232 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
19:02:25.0045 7232 WinRM - ok
19:02:25.0294 7232 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
19:02:25.0350 7232 WinUsb - ok
19:02:25.0526 7232 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:02:25.0631 7232 Wlansvc - ok
19:02:26.0036 7232 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:02:26.0173 7232 wlidsvc - ok
19:02:26.0360 7232 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
19:02:26.0479 7232 WmiAcpi - ok
19:02:26.0584 7232 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:02:26.0694 7232 wmiApSrv - ok
19:02:26.0783 7232 WMPNetworkSvc - ok
19:02:26.0832 7232 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:02:26.0945 7232 WPCSvc - ok
19:02:26.0990 7232 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
19:02:27.0069 7232 WPDBusEnum - ok
19:02:27.0190 7232 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:02:27.0293 7232 ws2ifsl - ok
19:02:27.0482 7232 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
19:02:27.0612 7232 wscsvc - ok
19:02:27.0668 7232 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
19:02:27.0826 7232 WSDPrintDevice - ok
19:02:27.0829 7232 WSearch - ok
19:02:28.0365 7232 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
19:02:28.0551 7232 wuauserv - ok
19:02:28.0885 7232 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
19:02:28.0985 7232 WudfPf - ok
19:02:29.0054 7232 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:02:29.0151 7232 WUDFRd - ok
19:02:29.0217 7232 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
19:02:29.0299 7232 wudfsvc - ok
19:02:29.0364 7232 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:02:29.0485 7232 WwanSvc - ok
19:02:29.0752 7232 WysePocketCloud (3d47152cfbe400b1d2b9945164e0255d) C:\Program Files (x86)\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
19:02:29.0785 7232 WysePocketCloud - ok
19:02:29.0925 7232 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:02:30.0047 7232 YahooAUService - ok
19:02:30.0121 7232 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:02:30.0741 7232 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:02:30.0741 7232 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:02:30.0757 7232 Boot (0x1200) (29c920872d25ced685c389646765e1e5) \Device\Harddisk0\DR0\Partition0
19:02:30.0759 7232 \Device\Harddisk0\DR0\Partition0 - ok
19:02:30.0784 7232 Boot (0x1200) (35c19e96af79d1ffa081f3bdd4dffe45) \Device\Harddisk0\DR0\Partition1
19:02:30.0792 7232 \Device\Harddisk0\DR0\Partition1 - ok
19:02:30.0792 7232 ============================================================
19:02:30.0792 7232 Scan finished
19:02:30.0792 7232 ============================================================
19:02:30.0803 5712 Detected object count: 8
19:02:30.0803 5712 Actual detected object count: 8


-----

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.27.01

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Stephanie :: STEPHDESKTOP [administrator]

6/1/2012 4:13:39 AM
mbam-log-2012-06-01 (04-13-39).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 223157
Time elapsed: 8 minute(s), 39 second(s)

Memory Processes Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> 1160 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> Delete on reboot.

(end)

-----

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.27.01

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Stephanie :: STEPHDESKTOP [administrator]

6/1/2012 2:53:04 PM
mbam-log-2012-06-01 (14-53-04).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 516660
Time elapsed: 1 hour(s), 6 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\TDSSKiller_Quarantine\01.06.2012_14.39.27\mbr0000\tdlfs0000\tsk0000.dta (Trojan.Agent.CR) -> Quarantined and deleted successfully.

(end)

-----

Posted Image

#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:02 PM

Posted 01 June 2012 - 07:34 PM

Can you perform a complete scan with Malwarebytes?

#5 shirorya

shirorya
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 01 June 2012 - 08:15 PM

Here we go:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.27.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Stephanie :: STEPHDESKTOP [administrator]

6/1/2012 7:37:36 PM
mbam-log-2012-06-01 (19-37-36).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 529119
Time elapsed: 33 minute(s), 41 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#6 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:02 PM

Posted 01 June 2012 - 08:19 PM

Please download and run Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

SUPERAntiSpyware:

Please download and scan with SUPERAntiSpyware Free

  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are unchecked (leave all others checked):
    • Ignore files larger then 4mb
    • Ignore non-executable files

    Now Perform the scan with SUPERAntiSpyware as follows:
    • Launch the program and back on the main screen, under "Scan for Harmful Software" click Scan your computer.
    • On the left, make sure you check C:\Fixed Drive.
    • On the right, under "Complete Scan", choose Perform Complete Scan and click "Next".
    • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
    • Make sure everything has a checkmark next to it and click "Next".
    • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
    • If asked if you want to reboot, click "Yes" and reboot normally.
    • To retrieve the removal information after reboot, launch SUPERAntispyware again.[list]
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.

SAS Portable
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.


Now GMER

GMER does not work in 64bit Mode!!!!!!

Please download GMER from one of the following locations and save it to your desktop:

  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.


All scans above should be performed in regular boot mode, and if that is not possible then I will post instructions in a follow up reply on how to get into Safe Mode to perform the scans. Also all scans should be COMPLETE and not quick unless specifically instructed to do so.

#7 shirorya

shirorya
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 01 June 2012 - 08:26 PM

I will do that and get back to you, thanks! What about GMER though being my computer is a 64 bit?

#8 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:02 PM

Posted 01 June 2012 - 08:30 PM

run it anyways

#9 shirorya

shirorya
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 02 June 2012 - 12:31 AM

Okay, here are the logs from the scans. The GMER one said "GMER hasn't found any system modifications" and the log was blank.

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 06/01/2012 at 11:18 PM

Application Version : 5.0.1150

Core Rules Database Version : 8675
Trace Rules Database Version: 6487

Scan type : Complete Scan
Total Scan Time : 02:46:48

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 973
Memory threats detected : 0
Registry items scanned : 70620
Registry threats detected : 0
File items scanned : 124989
File threats detected : 13

Adware.Tracking Cookie
C:\Users\Stephanie\AppData\Roaming\Microsoft\Windows\Cookies\68AD9YNN.txt [ /invitemedia.com ]
C:\Users\Stephanie\AppData\Roaming\Microsoft\Windows\Cookies\02VDV5MF.txt [ /adxpose.com ]
C:\Users\Stephanie\AppData\Roaming\Microsoft\Windows\Cookies\SIPJAR3U.txt [ /ad.yieldmanager.com ]
C:\USERS\STEPHANIE\AppData\Roaming\Microsoft\Windows\Cookies\80O0HQ6B.txt [ Cookie:stephanie@www.google.com/accounts ]
C:\USERS\STEPHANIE\Cookies\68AD9YNN.txt [ Cookie:stephanie@invitemedia.com/ ]
C:\USERS\STEPHANIE\Cookies\80O0HQ6B.txt [ Cookie:stephanie@www.google.com/accounts ]
C:\USERS\STEPHANIE\Cookies\02VDV5MF.txt [ Cookie:stephanie@adxpose.com/ ]
C:\$WINDOWS.~Q\DATA\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\STEPHANIE@ATDMT[2].TXT [ /ATDMT ]
cdn.tremormedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\UWYS55NF ]
core.insightexpressai.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\UWYS55NF ]
objects.tremormedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\UWYS55NF ]
tag.2bluemedia.hiro.tv [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\UWYS55NF ]

PUP.CNETInstaller
C:\USERS\STEPHANIE\DOWNLOADS\CNET2_COMBOFIX_EXE.EXE

-Just a note for this one, I downloaded the combofix.exe last night since a few help sites had mentioned it but I didn't install or run it.

-----

Results of screen317's Security Check version 0.99.41
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Trend Micro Titanium Internet Security 2012
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
MVPS Hosts File
Spy Sweeper Core
Spybot - Search & Destroy
Malwarebytes Anti-Malware version 1.61.0.1400
Java™ 6 Update 31
Java™ 6 Update 7
Java version out of date!
Adobe Flash Player 11.2.202.235
Adobe Reader 9 Adobe Reader out of date!
Mozilla Firefox (12.0)
Google Chrome 19.0.1084.46
Google Chrome 19.0.1084.52
````````Process Check: objlist.exe by Laurent````````
Trend Micro AMSP coreServiceShell.exe
Trend Micro UniClient UiFrmWrk uiWatchDog.exe
Trend Micro UniClient UiFrmWrk uiSeAgnt.exe
Trend Micro AMSP coreFrameworkHost.exe
Trend Micro Titanium UIFramework uiWinMgr.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 1%
````````````````````End of Log``````````````````````

#10 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:02 PM

Posted 02 June 2012 - 12:40 AM

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

#11 shirorya

shirorya
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 02 June 2012 - 01:29 AM

MiniToolBox by Farbar Version: 14-01-2012
Ran by Stephanie (administrator) on 02-06-2012 at 01:21:15
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com

There are 15218 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

D-Link DWA-140 RangeBooster N USB Adapter = Wireless Network Connection (Connected)
Intel® 82567LF-2 Gigabit Network Connection = Local Area Connection (Media disconnected)
EasyTether Network Adapter = Local Area Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : StephDesktop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-1E-58-B2-93-11
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : EasyTether Network Adapter
Physical Address. . . . . . . . . : 02-00-54-74-68-72
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : D-Link DWA-140 RangeBooster N USB Adapter
Physical Address. . . . . . . . . : 00-1E-58-B2-93-10
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::397a:9693:9119:b475%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, June 01, 2012 4:09:13 PM
Lease Expires . . . . . . . . . . : Sunday, June 03, 2012 12:26:23 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 218111576
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-F8-06-07-00-21-9B-22-C4-FC
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82567LF-2 Gigabit Network Connection
Physical Address. . . . . . . . . : 00-21-9B-22-C4-FC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{ED198A5C-3E84-45FB-BC5C-13272ED7925C}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3EC1FB51-55EA-4DCD-8FCD-34A9DABD4484}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{885797BC-4208-4A16-B6E0-19362A2340A1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{58FC5BCA-7C7C-4506-809D-729681A8547F}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 173.194.37.34
173.194.37.46
173.194.37.37
173.194.37.38
173.194.37.33
173.194.37.39
173.194.37.32
173.194.37.41
173.194.37.40
173.194.37.36
173.194.37.35


Pinging google.com [173.194.37.46] with 32 bytes of data:
Reply from 173.194.37.46: bytes=32 time=39ms TTL=53
Reply from 173.194.37.46: bytes=32 time=39ms TTL=53

Ping statistics for 173.194.37.46:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 39ms, Maximum = 39ms, Average = 39ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=79ms TTL=51
Reply from 72.30.38.140: bytes=32 time=79ms TTL=51

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 79ms, Maximum = 79ms, Average = 79ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
18...00 1e 58 b2 93 11 ......Microsoft Virtual WiFi Miniport Adapter
14...02 00 54 74 68 72 ......EasyTether Network Adapter
10...00 1e 58 b2 93 10 ......D-Link DWA-140 RangeBooster N USB Adapter
9...00 21 9b 22 c4 fc ......Intel® 82567LF-2 Gigabit Network Connection
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
35...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
36...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
37...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
38...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 281 fe80::/64 On-link
10 281 fe80::397a:9693:9119:b475/128
On-link
1 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/01/2012 04:11:42 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2012 04:11:42 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2012 04:11:42 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2012 04:11:42 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2012 04:11:41 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (06/01/2012 04:11:36 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2012 04:11:35 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog

Details:
The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (HRESULT : 0x8004117f) (0x8004117f)

Error: (06/01/2012 04:11:35 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=1100}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (06/01/2012 04:11:29 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.

Details:
0x%08x (0x8004117f - The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (HRESULT : 0x8004117f))

Error: (06/01/2012 04:11:17 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (06/01/2012 04:12:24 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (06/01/2012 04:11:47 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/01/2012 04:11:43 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (06/01/2012 04:11:43 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.

Error: (06/01/2012 04:10:55 PM) (Source: Service Control Manager) (User: )
Description: The Webroot Spy Sweeper Engine service failed to start due to the following error:
%%1053

Error: (06/01/2012 04:10:55 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Webroot Spy Sweeper Engine service to connect.

Error: (06/01/2012 04:09:59 PM) (Source: Service Control Manager) (User: )
Description: The lxdxCATSCustConnectService service failed to start due to the following error:
%%1053

Error: (06/01/2012 04:09:59 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the lxdxCATSCustConnectService service to connect.

Error: (06/01/2012 04:06:18 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/01/2012 04:06:18 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (09/28/2011 00:29:54 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.5.1)
Adobe Acrobat 9.5.1 - CPSID_83708
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Asset Services CS4 (Version: 4)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Creative Suite 4 Design Premium (Version: 4.0)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Fireworks CS4 (Version: 10.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Help Center 2.1 (Version: 2.1)
Adobe Illustrator CS4 (Version: 14.0)
Adobe InDesign CS4 (Version: 6.0)
Adobe InDesign CS4 Application Feature Set Files (Roman) (Version: 6.0)
Adobe InDesign CS4 Common Base Files (Version: 6.0)
Adobe InDesign CS4 Icon Handler (Version: 6.0)
Adobe InDesign CS4 Icon Handler x64 (Version: 6.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Photoshop Elements 5.0 (Version: 5.0)
Adobe Reader 9.1.2 (Version: 9.1.2)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe SGM CS4 (Version: 3.0)
Adobe Shockwave Player 11.5 (Version: 11.5)
Adobe SING CS4 (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe Version Cue CS4 Server (Version: 4.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
AIM 7
AIM for Windows
Amazon MP3 Downloader 1.0.12 (Version: 1.0.12)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.923.1)
AMD Catalyst Install Manager (Version: 8.0.873.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.70405.2224)
ANIWZCS2 Service
AOL Messaging Toolbar
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Autodesk SketchBookExpress 2010 (Version: 4.00.0000)
Bonjour (Version: 3.0.0.10)
Browser Address Error Redirector
Browser Address Error Redirector (Version: 1.00.0000)
BufferChm (Version: 130.0.331.000)
BUFKIT
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.0405.2205.37728)
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728)
Catalyst Control Center InstallProxy (Version: 2008.0828.2144.37162)
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728)
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728)
ccc-utility64 (Version: 2012.0405.2205.37728)
CCC Help Chinese Standard (Version: 2012.0405.2204.37728)
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728)
CCC Help Czech (Version: 2012.0405.2204.37728)
CCC Help Danish (Version: 2012.0405.2204.37728)
CCC Help Dutch (Version: 2012.0405.2204.37728)
CCC Help English (Version: 2012.0405.2204.37728)
CCC Help Finnish (Version: 2012.0405.2204.37728)
CCC Help French (Version: 2012.0405.2204.37728)
CCC Help German (Version: 2012.0405.2204.37728)
CCC Help Greek (Version: 2012.0405.2204.37728)
CCC Help Hungarian (Version: 2012.0405.2204.37728)
CCC Help Italian (Version: 2012.0405.2204.37728)
CCC Help Japanese (Version: 2012.0405.2204.37728)
CCC Help Korean (Version: 2012.0405.2204.37728)
CCC Help Norwegian (Version: 2012.0405.2204.37728)
CCC Help Polish (Version: 2012.0405.2204.37728)
CCC Help Portuguese (Version: 2012.0405.2204.37728)
CCC Help Russian (Version: 2012.0405.2204.37728)
CCC Help Spanish (Version: 2012.0405.2204.37728)
CCC Help Swedish (Version: 2012.0405.2204.37728)
CCC Help Thai (Version: 2012.0405.2204.37728)
CCC Help Turkish (Version: 2012.0405.2204.37728)
CCleaner (Version: 3.18)
Color Efex Pro 3.0 Wacom Edition 6 (Version: 3.1.0.2)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Connect (Version: 1.0.0.1)
Content (Version: 1.00.0000)
Cook'n Recipe Organizer
Core Temp version 0.99.8 (Version: 0.99.8)
Corel Painter 11
Corel Painter 11 - ICA (Version: 11.0)
Corel Painter 11 - IPM (Version: 11.2)
Corel Painter 11 (Version: 11.2)
Corel Painter Sketch Pad
Corel SketchPad - ICA (Version: 1.0)
Cozi (Version: 1.0.3220.15315)
CustomerResearchQFolder (Version: 1.00.0000)
CutePDF Writer 2.8
D-Link RangeBooster N DWA-140
D1500 (Version: 130.0.365.000)
D3DX10 (Version: 15.4.2368.0902)
Dell Dock (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Video Chat (remove only) (Version: 6.0 (6551))
DeviceDiscovery (Version: 130.0.465.000)
DeviceManagementQFolder (Version: 1.00.0000)
DigitizerJr (Version: 10.0.0018)
DigitizerJr (Version: 10.0.0029)
DJ_SF_03_D1500_Software_Min (Version: 130.0.365.000)
Download Updater (AOL LLC)
Easy DVD Clone
EasyTether (Version: 1.1.14)
EasyWeather
EDocs
eSupportQFolder (Version: 1.00.0000)
Google Chrome (Version: 19.0.1084.52)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
GPBaseService (Version: 100.0.187.000)
GPBaseService2 (Version: 130.0.371.000)
GR Manual Storm Tracks v2.5
GR2Analyst Version 1.60
Greeting Card Factory Photo Card Maker (Version: 1.0.0.5)
GRLevel3 version 1.92
GRLevel3 version 2.00
Hallmark Card Studio 2006 Deluxe (Version: 7.0.0.15)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Deskjet D1500 Printer Driver Software 13.0 Rel. 3 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
iCloud (Version: 1.1.0.40)
IconHandler 32 bit (Version: 2.0)
IconHandler 64 bit (Version: 2.0)
Intel® Network Connections 13.1.33.0 (Version: 13.1.33.0)
IPM (Version: 01)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 30 (64-bit) (Version: 6.0.300)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 6 Update 7 (Version: 1.6.0.70)
kuler (Version: 2.0)
Langauge (Version: 1.2)
Lexmark 3600-4600 Series
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MarketResearch (Version: 130.0.374.000)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2000 Premium (Version: 9.00.2720)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Small Business 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Monogram Wizard Janome Special Edition (Version: 2.50.0017)
Move Networks Media Player for Internet Explorer
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCSetup (Version: 1.00.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 and SOAP Toolkit 3.0 (Version: 1.0.0.0)
Origin (Version: 8.5.0.4554)
OverDrive Media Console (Version: 3.2.10)
Paint Shop Pro 7 (Version: 7.0.2.0000)
Painter Sketch Pad (Version: 1.0)
PDF Settings CS4 (Version: 9.0)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Pixel Bender Toolkit (Version: 1.0)
PocketCloud Windows Companion (Version: 2.4.19)
PSSWCORE (Version: 2.02.0000)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver
Registration (Version: 01)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator DE (Version: 10.1)
Roxio Creator DE (Version: 3.7.0)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio Update Manager (Version: 6.0.0)
Safari (Version: 5.34.57.2)
Shop for HP Supplies (Version: 13.0)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 130.0.373.000)
SolveigMM AVI Trimmer (Version: 2.0.1106.20)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Spy Sweeper Core (Version: 4.4.0.80)
Spybot - Search & Destroy (Version: 1.6.2)
SSH Secure Shell
Status (Version: 130.0.469.000)
Suite Shared Configuration CS4 (Version: 1.0)
SUPERAntiSpyware (Version: 5.0.1150)
The Sims 2
The Sims 2 Nightlife
The Sims 2 Open For Business
The Sims 2 Pets
The Sims 2 University
The Sims Medieval (Version: 2.0.113)
The Sims Medieval Pirates and Nobles (Version: 2.0.109)
The Sims™ 2 Apartment Life
The Sims™ 2 Bon Voyage
The Sims™ 2 FreeTime
The Sims™ 2 Seasons
The Sims™ 3 (Version: 1.33.2)
The Sims™ 3 Ambitions (Version: 4.0.87)
The Sims™ 3 Generations (Version: 8.0.152)
The Sims™ 3 Late Night (Version: 6.0.81)
The Sims™ 3 Master Suite Stuff (Version: 11.0.84)
The Sims™ 3 Outdoor Living Stuff (Version: 7.0.55)
The Sims™ 3 Pets (Version: 10.0.96)
The Sims™ 3 Showtime (Version: 12.0.273)
The Sims™ 3 World Adventures (Version: 2.0.86)
TightVNC 2.0.4 (Version: 2.0.4)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.422.000)
Trend Micro Titanium (Version: 5.00)
Trend Micro Titanium Internet Security 2012 (Version: 5.2)
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VideoToolkit01 (Version: 100.0.128.000)
Viewpoint Media Player
Wacom Tablet
WebReg (Version: 130.0.132.017)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver
Yahoo! Detect
Yahoo! Messenger
Yahoo! Software Update

========================= Memory info: ===================================

Percentage of memory in use: 49%
Total physical RAM: 4087.18 MB
Available physical RAM: 2060.73 MB
Total Pagefile: 8172.55 MB
Available Pagefile: 5111.23 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.05 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:581.11 GB) (Free:312.64 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:15 GB) (Free:8.42 GB) NTFS

========================= Users: ========================================

User accounts for \\STEPHDESKTOP

Administrator Guest Stephanie

========================= Minidump Files ==================================

No minidump file found


**** End of log ****

#12 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:02 PM

Posted 02 June 2012 - 12:26 PM

Are you still seeing any issues?

#13 shirorya

shirorya
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 02 June 2012 - 02:16 PM

Everything seems to be okay with it, I'm not noticing anything strange. I just wanted to make sure that I got it all and didn't pick up a backdoor virus from it. My friend thought that possibly could have happened and that I might even need to reformat and reinstall Windows. Is it normal to have all those svchost processes?

#14 shirorya

shirorya
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 02 June 2012 - 02:29 PM

Here's also the log from the past week for Trend Micro Anti-Virus if it helps. :)

Date/Time,Affected Files,Threat,Source,Response
5/16/2012 9:40 PM,C:\Users\Stephanie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VEWU36RW\8[1].exe,0,Threat,Removed
5/16/2012 10:45 PM,ad.yieldmanager.com,Cookie_YieldManager,Cookie,Removed
5/16/2012 10:45 PM,doubleclick.net,Cookie_DoubleClick,Cookie,Removed
5/16/2012 10:45 PM,atwola.com,Cookie_Atwola,Cookie,Removed
5/16/2012 10:45 PM,advertising.com,Cookie_Advertising,Cookie,Removed
5/17/2012 3:35 PM,advertising.com,Cookie_Advertising,Cookie,Removed
5/17/2012 3:35 PM,atwola.com,Cookie_Atwola,Cookie,Removed
5/17/2012 3:35 PM,match.com,Cookie_Match,Cookie,Removed
6/1/2012 5:41 PM,C:\TDSSKiller_Quarantine\01.06.2012_14.39.27\mbr0000\tdlfs0000\tsk0007.dta,TROJ_GEN.R3ACDED,Malware,Removed
6/1/2012 7:14 PM,C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H2UWL1IT\jquery[1].htm,Mal_Hifrm,Malware,Removed
6/1/2012 7:14 PM,C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H2UWL1IT\jquery[2].htm,Mal_Hifrm,Malware,Removed
6/1/2012 7:14 PM,C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OWYIPZ3V\jquery[1].htm,Mal_Hifrm,Malware,Removed
6/2/2012 3:44 AM,ad.yieldmanager.com,Cookie_YieldManager,Cookie,Removed

#15 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:02 PM

Posted 02 June 2012 - 02:55 PM

It would appear that the system is clean. If you notice any more issues post back in the next 48 hours.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users