Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Recommended for You Adware Infection


  • Please log in to reply
9 replies to this topic

#1 kaiserrick

kaiserrick

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:02 PM

Posted 03 June 2012 - 11:59 AM

Hello,

A month or so ago my PC became infected with the "Recommended for You" adware. Most sites (in particular ones that employ Google Analytics) cause my browser to bring of a black and white pop up in the lower right corner of my screen, often in the shape of an iPhone. You can hit an 'X' to close it but then it just shrinks to a smaller box that reads "Recommended For You." I've tried running every anti-virus program I have and more but nothing has helped. Any assistance would be greatly appreciated. Thanks!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 03 June 2012 - 12:52 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 kaiserrick

kaiserrick
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:02 PM

Posted 04 June 2012 - 03:12 PM

The GMER scan came up with nothing and provided me nothing for a log. Sorry about that if I am making an error.

Here is the TDSSKiller log:


01:22:09.0337 5384 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
01:22:09.0813 5384 ============================================================
01:22:09.0813 5384 Current date / time: 2012/06/04 01:22:09.0813
01:22:09.0813 5384 SystemInfo:
01:22:09.0813 5384
01:22:09.0813 5384 OS Version: 6.1.7601 ServicePack: 1.0
01:22:09.0813 5384 Product type: Workstation
01:22:09.0813 5384 ComputerName: Rick-PC
01:22:09.0814 5384 UserName: Rick
01:22:09.0814 5384 Windows directory: C:\Windows
01:22:09.0814 5384 System windows directory: C:\Windows
01:22:09.0814 5384 Running under WOW64
01:22:09.0814 5384 Processor architecture: Intel x64
01:22:09.0814 5384 Number of processors: 2
01:22:09.0814 5384 Page size: 0x1000
01:22:09.0814 5384 Boot type: Normal boot
01:22:09.0814 5384 ============================================================
01:22:10.0524 5384 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:22:10.0544 5384 Drive \Device\Harddisk5\DR10 - Size: 0x1DA800000 (7.41 Gb), SectorSize: 0x200, Cylinders: 0x3C7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:22:10.0549 5384 ============================================================
01:22:10.0549 5384 \Device\Harddisk0\DR0:
01:22:10.0551 5384 MBR partitions:
01:22:10.0551 5384 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
01:22:10.0551 5384 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x49006000
01:22:10.0551 5384 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x49038800, BlocksNum 0x181F000
01:22:10.0551 5384 \Device\Harddisk5\DR10:
01:22:10.0551 5384 MBR partitions:
01:22:10.0551 5384 \Device\Harddisk5\DR10\Partition0: MBR, Type 0xC, StartLBA 0x800, BlocksNum 0xED3800
01:22:10.0551 5384 ============================================================
01:22:10.0592 5384 C: <-> \Device\Harddisk0\DR0\Partition1
01:22:10.0627 5384 D: <-> \Device\Harddisk0\DR0\Partition2
01:22:10.0627 5384 ============================================================
01:22:10.0627 5384 Initialize success
01:22:10.0627 5384 ============================================================
01:22:23.0487 4720 ============================================================
01:22:23.0487 4720 Scan started
01:22:23.0487 4720 Mode: Manual; TDLFS;
01:22:23.0487 4720 ============================================================
01:22:25.0008 4720 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
01:22:25.0016 4720 1394ohci - ok
01:22:25.0054 4720 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
01:22:25.0067 4720 ACPI - ok
01:22:25.0122 4720 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
01:22:25.0124 4720 AcpiPmi - ok
01:22:25.0179 4720 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:22:25.0222 4720 adp94xx - ok
01:22:25.0277 4720 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:22:25.0299 4720 adpahci - ok
01:22:25.0340 4720 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:22:25.0351 4720 adpu320 - ok
01:22:25.0553 4720 AdvancedSystemCareService (9eabd21316ccf59e508bd4662ad02843) C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
01:22:25.0557 4720 AdvancedSystemCareService - ok
01:22:25.0589 4720 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:22:25.0591 4720 AeLookupSvc - ok
01:22:25.0648 4720 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
01:22:25.0665 4720 AFD - ok
01:22:25.0731 4720 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
01:22:25.0733 4720 agp440 - ok
01:22:25.0755 4720 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:22:25.0757 4720 ALG - ok
01:22:25.0784 4720 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
01:22:25.0785 4720 aliide - ok
01:22:25.0809 4720 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
01:22:25.0811 4720 amdide - ok
01:22:25.0850 4720 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:22:25.0851 4720 AmdK8 - ok
01:22:25.0866 4720 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:22:25.0868 4720 AmdPPM - ok
01:22:25.0935 4720 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
01:22:25.0940 4720 amdsata - ok
01:22:25.0953 4720 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:22:25.0956 4720 amdsbs - ok
01:22:25.0974 4720 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
01:22:25.0976 4720 amdxata - ok
01:22:26.0037 4720 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
01:22:26.0039 4720 AppID - ok
01:22:26.0059 4720 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:22:26.0061 4720 AppIDSvc - ok
01:22:26.0109 4720 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
01:22:26.0110 4720 Appinfo - ok
01:22:26.0249 4720 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:22:26.0252 4720 Apple Mobile Device - ok
01:22:26.0325 4720 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:22:26.0330 4720 arc - ok
01:22:26.0345 4720 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:22:26.0351 4720 arcsas - ok
01:22:26.0382 4720 ASPI32 - ok
01:22:26.0424 4720 aspnet_state - ok
01:22:26.0446 4720 aswFsBlk (b9da213b5271db5fce962d827e6d620d) C:\Windows\system32\drivers\aswFsBlk.sys
01:22:26.0447 4720 aswFsBlk - ok
01:22:26.0473 4720 aswMonFlt (21c9835d0e5ad2ff0f16134bcb32cc71) C:\Windows\system32\drivers\aswMonFlt.sys
01:22:26.0475 4720 aswMonFlt - ok
01:22:26.0511 4720 aswRdr (1b96a5867abd4fa6135d8298fcccf9c6) C:\Windows\System32\Drivers\aswrdr2.sys
01:22:26.0512 4720 aswRdr - ok
01:22:26.0566 4720 aswSnx (6e98bb288696777a3a8a07a52b0eaee9) C:\Windows\system32\drivers\aswSnx.sys
01:22:26.0583 4720 aswSnx - ok
01:22:26.0607 4720 aswSP (d9fb49f16e4eb02efecae8cbfe4bcb4c) C:\Windows\system32\drivers\aswSP.sys
01:22:26.0613 4720 aswSP - ok
01:22:26.0631 4720 aswTdi (7352bb9a564b94bbd7c9cbf165f55006) C:\Windows\system32\drivers\aswTdi.sys
01:22:26.0633 4720 aswTdi - ok
01:22:26.0659 4720 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:22:26.0660 4720 AsyncMac - ok
01:22:26.0716 4720 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
01:22:26.0718 4720 atapi - ok
01:22:26.0815 4720 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
01:22:26.0828 4720 AudioEndpointBuilder - ok
01:22:26.0840 4720 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
01:22:26.0847 4720 AudioSrv - ok
01:22:26.0921 4720 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
01:22:26.0922 4720 avast! Antivirus - ok
01:22:26.0989 4720 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
01:22:26.0994 4720 AxInstSV - ok
01:22:27.0054 4720 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:22:27.0072 4720 b06bdrv - ok
01:22:27.0108 4720 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:22:27.0115 4720 b57nd60a - ok
01:22:27.0158 4720 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:22:27.0163 4720 BDESVC - ok
01:22:27.0176 4720 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:22:27.0177 4720 Beep - ok
01:22:27.0270 4720 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
01:22:27.0281 4720 BFE - ok
01:22:27.0402 4720 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
01:22:27.0483 4720 BITS - ok
01:22:27.0527 4720 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:22:27.0529 4720 blbdrive - ok
01:22:27.0618 4720 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
01:22:27.0623 4720 Bonjour Service - ok
01:22:27.0676 4720 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
01:22:27.0681 4720 bowser - ok
01:22:27.0701 4720 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:22:27.0703 4720 BrFiltLo - ok
01:22:27.0717 4720 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:22:27.0719 4720 BrFiltUp - ok
01:22:27.0759 4720 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:22:27.0764 4720 BridgeMP - ok
01:22:27.0819 4720 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
01:22:27.0831 4720 Browser - ok
01:22:27.0873 4720 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:22:27.0880 4720 Brserid - ok
01:22:27.0900 4720 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:22:27.0903 4720 BrSerWdm - ok
01:22:27.0917 4720 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:22:27.0919 4720 BrUsbMdm - ok
01:22:27.0929 4720 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:22:27.0930 4720 BrUsbSer - ok
01:22:27.0942 4720 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:22:27.0944 4720 BTHMODEM - ok
01:22:27.0989 4720 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:22:27.0994 4720 bthserv - ok
01:22:28.0052 4720 catchme - ok
01:22:28.0091 4720 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:22:28.0098 4720 cdfs - ok
01:22:28.0162 4720 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
01:22:28.0173 4720 cdrom - ok
01:22:28.0237 4720 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
01:22:28.0239 4720 CertPropSvc - ok
01:22:28.0266 4720 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:22:28.0268 4720 circlass - ok
01:22:28.0342 4720 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:22:28.0362 4720 CLFS - ok
01:22:28.0432 4720 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:22:28.0435 4720 clr_optimization_v2.0.50727_32 - ok
01:22:28.0496 4720 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:22:28.0501 4720 clr_optimization_v2.0.50727_64 - ok
01:22:28.0564 4720 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:22:28.0584 4720 clr_optimization_v4.0.30319_32 - ok
01:22:28.0636 4720 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:22:28.0649 4720 clr_optimization_v4.0.30319_64 - ok
01:22:28.0677 4720 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:22:28.0679 4720 CmBatt - ok
01:22:28.0726 4720 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
01:22:28.0728 4720 cmdide - ok
01:22:28.0798 4720 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
01:22:28.0824 4720 CNG - ok
01:22:28.0855 4720 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:22:28.0857 4720 Compbatt - ok
01:22:28.0909 4720 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
01:22:28.0911 4720 CompositeBus - ok
01:22:28.0928 4720 COMSysApp - ok
01:22:28.0950 4720 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:22:28.0952 4720 crcdisk - ok
01:22:29.0012 4720 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
01:22:29.0023 4720 CryptSvc - ok
01:22:29.0101 4720 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
01:22:29.0114 4720 DcomLaunch - ok
01:22:29.0153 4720 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:22:29.0177 4720 defragsvc - ok
01:22:29.0246 4720 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
01:22:29.0251 4720 DfsC - ok
01:22:29.0314 4720 DgiVecp (2d589a2c024b2fb238535db9f7b3597d) C:\Windows\system32\Drivers\DgiVecp.sys
01:22:29.0316 4720 DgiVecp - ok
01:22:29.0393 4720 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
01:22:29.0416 4720 Dhcp - ok
01:22:29.0438 4720 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:22:29.0440 4720 discache - ok
01:22:29.0471 4720 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:22:29.0476 4720 Disk - ok
01:22:29.0542 4720 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
01:22:29.0561 4720 Dnscache - ok
01:22:29.0630 4720 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
01:22:29.0646 4720 dot3svc - ok
01:22:29.0702 4720 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
01:22:29.0722 4720 DPS - ok
01:22:29.0754 4720 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:22:29.0755 4720 drmkaud - ok
01:22:29.0797 4720 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
01:22:29.0812 4720 dtsoftbus01 - ok
01:22:29.0925 4720 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
01:22:29.0940 4720 DXGKrnl - ok
01:22:29.0974 4720 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:22:29.0978 4720 EapHost - ok
01:22:30.0164 4720 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:22:30.0233 4720 ebdrv - ok
01:22:30.0363 4720 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
01:22:30.0370 4720 EFS - ok
01:22:30.0437 4720 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
01:22:30.0449 4720 ehRecvr - ok
01:22:30.0509 4720 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:22:30.0521 4720 ehSched - ok
01:22:30.0560 4720 ElRawDisk (4778eeecb75c6fb419745beed3530b9d) C:\Windows\system32\drivers\rsdrvx64.sys
01:22:30.0562 4720 ElRawDisk - ok
01:22:30.0612 4720 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:22:30.0661 4720 elxstor - ok
01:22:30.0714 4720 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
01:22:30.0716 4720 ErrDev - ok
01:22:30.0790 4720 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:22:30.0851 4720 EventSystem - ok
01:22:30.0878 4720 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:22:30.0888 4720 exfat - ok
01:22:30.0912 4720 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:22:30.0922 4720 fastfat - ok
01:22:30.0999 4720 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
01:22:31.0019 4720 Fax - ok
01:22:31.0063 4720 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:22:31.0065 4720 fdc - ok
01:22:31.0081 4720 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:22:31.0083 4720 fdPHost - ok
01:22:31.0092 4720 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:22:31.0094 4720 FDResPub - ok
01:22:31.0104 4720 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:22:31.0106 4720 FileInfo - ok
01:22:31.0116 4720 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:22:31.0117 4720 Filetrace - ok
01:22:31.0142 4720 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:22:31.0143 4720 flpydisk - ok
01:22:31.0197 4720 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
01:22:31.0204 4720 FltMgr - ok
01:22:31.0303 4720 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
01:22:31.0326 4720 FontCache - ok
01:22:31.0414 4720 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:22:31.0416 4720 FontCache3.0.0.0 - ok
01:22:31.0441 4720 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:22:31.0442 4720 FsDepends - ok
01:22:31.0528 4720 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
01:22:31.0530 4720 fssfltr - ok
01:22:31.0743 4720 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
01:22:31.0768 4720 fsssvc - ok
01:22:31.0877 4720 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
01:22:31.0879 4720 Fs_Rec - ok
01:22:31.0948 4720 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:22:31.0973 4720 fvevol - ok
01:22:32.0002 4720 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:22:32.0008 4720 gagp30kx - ok
01:22:32.0059 4720 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:22:32.0061 4720 GEARAspiWDM - ok
01:22:32.0153 4720 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
01:22:32.0170 4720 gpsvc - ok
01:22:32.0236 4720 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:22:32.0247 4720 gupdate - ok
01:22:32.0253 4720 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:22:32.0255 4720 gupdatem - ok
01:22:32.0285 4720 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:22:32.0287 4720 hcw85cir - ok
01:22:32.0353 4720 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
01:22:32.0365 4720 HDAudBus - ok
01:22:32.0380 4720 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:22:32.0382 4720 HidBatt - ok
01:22:32.0392 4720 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:22:32.0395 4720 HidBth - ok
01:22:32.0403 4720 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:22:32.0406 4720 HidIr - ok
01:22:32.0423 4720 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:22:32.0425 4720 hidserv - ok
01:22:32.0452 4720 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
01:22:32.0453 4720 HidUsb - ok
01:22:32.0492 4720 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
01:22:32.0497 4720 hkmsvc - ok
01:22:32.0553 4720 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
01:22:32.0562 4720 HomeGroupListener - ok
01:22:32.0612 4720 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
01:22:32.0621 4720 HomeGroupProvider - ok
01:22:32.0703 4720 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
01:22:32.0712 4720 hpqwmiex - ok
01:22:32.0735 4720 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
01:22:32.0741 4720 HpSAMD - ok
01:22:32.0833 4720 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
01:22:32.0846 4720 HTTP - ok
01:22:32.0892 4720 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
01:22:32.0894 4720 hwpolicy - ok
01:22:32.0928 4720 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
01:22:32.0933 4720 i8042prt - ok
01:22:32.0997 4720 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
01:22:33.0009 4720 IAANTMON - ok
01:22:33.0056 4720 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:22:33.0060 4720 iaStor - ok
01:22:33.0110 4720 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
01:22:33.0120 4720 iaStorV - ok
01:22:33.0260 4720 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:22:33.0274 4720 idsvc - ok
01:22:33.0613 4720 igfx (e0b4d51e395b7e8d209365029649aed9) C:\Windows\system32\DRIVERS\igdkmd64.sys
01:22:33.0673 4720 igfx - ok
01:22:33.0790 4720 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:22:33.0792 4720 iirsp - ok
01:22:33.0911 4720 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
01:22:33.0938 4720 IKEEXT - ok
01:22:34.0118 4720 IMFservice (8ae99ebe30e8338907361018d9030835) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
01:22:34.0133 4720 IMFservice - ok
01:22:34.0324 4720 IntcAzAudAddService (bc64b75e8e0a0b8982ab773483164e72) C:\Windows\system32\drivers\RTKVHD64.sys
01:22:34.0350 4720 IntcAzAudAddService - ok
01:22:34.0450 4720 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
01:22:34.0452 4720 intelide - ok
01:22:34.0489 4720 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:22:34.0491 4720 intelppm - ok
01:22:34.0524 4720 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:22:34.0537 4720 IPBusEnum - ok
01:22:34.0598 4720 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:22:34.0600 4720 IpFilterDriver - ok
01:22:34.0690 4720 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
01:22:34.0703 4720 iphlpsvc - ok
01:22:34.0758 4720 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
01:22:34.0772 4720 IPMIDRV - ok
01:22:34.0790 4720 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:22:34.0794 4720 IPNAT - ok
01:22:34.0917 4720 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
01:22:34.0940 4720 iPod Service - ok
01:22:34.0963 4720 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:22:34.0964 4720 IRENUM - ok
01:22:34.0983 4720 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
01:22:34.0985 4720 isapnp - ok
01:22:35.0037 4720 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
01:22:35.0045 4720 iScsiPrt - ok
01:22:35.0069 4720 ISODisk - ok
01:22:35.0092 4720 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
01:22:35.0094 4720 kbdclass - ok
01:22:35.0119 4720 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
01:22:35.0121 4720 kbdhid - ok
01:22:35.0163 4720 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:22:35.0166 4720 KeyIso - ok
01:22:35.0182 4720 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
01:22:35.0187 4720 KSecDD - ok
01:22:35.0205 4720 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
01:22:35.0216 4720 KSecPkg - ok
01:22:35.0220 4720 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:22:35.0221 4720 ksthunk - ok
01:22:35.0267 4720 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:22:35.0279 4720 KtmRm - ok
01:22:35.0361 4720 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
01:22:35.0377 4720 LanmanServer - ok
01:22:35.0449 4720 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
01:22:35.0462 4720 LanmanWorkstation - ok
01:22:35.0475 4720 Lbd - ok
01:22:35.0511 4720 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:22:35.0513 4720 lltdio - ok
01:22:35.0552 4720 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:22:35.0566 4720 lltdsvc - ok
01:22:35.0582 4720 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:22:35.0586 4720 lmhosts - ok
01:22:35.0611 4720 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:22:35.0613 4720 LSI_FC - ok
01:22:35.0622 4720 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:22:35.0624 4720 LSI_SAS - ok
01:22:35.0631 4720 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:22:35.0633 4720 LSI_SAS2 - ok
01:22:35.0642 4720 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:22:35.0644 4720 LSI_SCSI - ok
01:22:35.0659 4720 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:22:35.0663 4720 luafv - ok
01:22:35.0708 4720 LVPr2M64 (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:22:35.0710 4720 LVPr2M64 - ok
01:22:35.0733 4720 LVPr2Mon (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:22:35.0734 4720 LVPr2Mon - ok
01:22:35.0869 4720 LVPrcS64 (9cd0dc863be5d40a762f7d84f11a8471) C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
01:22:35.0878 4720 LVPrcS64 - ok
01:22:35.0911 4720 LVRS64 (803085f59ec92b3827cc4d90fcbfd335) C:\Windows\system32\DRIVERS\lvrs64.sys
01:22:35.0923 4720 LVRS64 - ok
01:22:36.0175 4720 LVUVC64 (a8d7c97016e6b76ef472a4c7ab357ee3) C:\Windows\system32\DRIVERS\lvuvc64.sys
01:22:36.0258 4720 LVUVC64 - ok
01:22:36.0389 4720 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
01:22:36.0395 4720 Mcx2Svc - ok
01:22:36.0432 4720 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:22:36.0434 4720 megasas - ok
01:22:36.0453 4720 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:22:36.0457 4720 MegaSR - ok
01:22:36.0484 4720 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:22:36.0488 4720 MMCSS - ok
01:22:36.0500 4720 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:22:36.0501 4720 Modem - ok
01:22:36.0518 4720 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:22:36.0520 4720 monitor - ok
01:22:36.0571 4720 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
01:22:36.0574 4720 mouclass - ok
01:22:36.0581 4720 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:22:36.0583 4720 mouhid - ok
01:22:36.0632 4720 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
01:22:36.0637 4720 mountmgr - ok
01:22:36.0732 4720 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:22:36.0744 4720 MozillaMaintenance - ok
01:22:36.0797 4720 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
01:22:36.0808 4720 mpio - ok
01:22:36.0834 4720 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:22:36.0840 4720 mpsdrv - ok
01:22:36.0946 4720 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
01:22:36.0970 4720 MpsSvc - ok
01:22:37.0028 4720 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
01:22:37.0040 4720 MRxDAV - ok
01:22:37.0099 4720 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:22:37.0109 4720 mrxsmb - ok
01:22:37.0167 4720 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:22:37.0174 4720 mrxsmb10 - ok
01:22:37.0196 4720 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:22:37.0208 4720 mrxsmb20 - ok
01:22:37.0256 4720 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
01:22:37.0258 4720 msahci - ok
01:22:37.0319 4720 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
01:22:37.0330 4720 msdsm - ok
01:22:37.0365 4720 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:22:37.0377 4720 MSDTC - ok
01:22:37.0419 4720 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:22:37.0421 4720 Msfs - ok
01:22:37.0434 4720 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:22:37.0436 4720 mshidkmdf - ok
01:22:37.0448 4720 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
01:22:37.0449 4720 msisadrv - ok
01:22:37.0471 4720 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:22:37.0483 4720 MSiSCSI - ok
01:22:37.0486 4720 msiserver - ok
01:22:37.0508 4720 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:22:37.0509 4720 MSKSSRV - ok
01:22:37.0531 4720 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:22:37.0532 4720 MSPCLOCK - ok
01:22:37.0536 4720 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:22:37.0537 4720 MSPQM - ok
01:22:37.0607 4720 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
01:22:37.0620 4720 MsRPC - ok
01:22:37.0640 4720 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
01:22:37.0642 4720 mssmbios - ok
01:22:37.0658 4720 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:22:37.0659 4720 MSTEE - ok
01:22:37.0669 4720 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:22:37.0670 4720 MTConfig - ok
01:22:37.0694 4720 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:22:37.0695 4720 Mup - ok
01:22:37.0768 4720 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
01:22:37.0784 4720 napagent - ok
01:22:37.0817 4720 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:22:37.0831 4720 NativeWifiP - ok
01:22:37.0914 4720 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
01:22:37.0936 4720 NDIS - ok
01:22:37.0956 4720 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:22:37.0958 4720 NdisCap - ok
01:22:37.0979 4720 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:22:37.0980 4720 NdisTapi - ok
01:22:38.0035 4720 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
01:22:38.0037 4720 Ndisuio - ok
01:22:38.0092 4720 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
01:22:38.0103 4720 NdisWan - ok
01:22:38.0171 4720 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
01:22:38.0174 4720 NDProxy - ok
01:22:38.0385 4720 Nero BackItUp Scheduler 4.0 (c7f5c284b6f46fcaf6910ea4e644700b) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
01:22:38.0416 4720 Nero BackItUp Scheduler 4.0 - ok
01:22:38.0452 4720 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:22:38.0454 4720 NetBIOS - ok
01:22:38.0517 4720 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
01:22:38.0524 4720 NetBT - ok
01:22:38.0587 4720 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:22:38.0592 4720 Netlogon - ok
01:22:38.0654 4720 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:22:38.0664 4720 Netman - ok
01:22:38.0729 4720 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:22:38.0738 4720 netprofm - ok
01:22:38.0804 4720 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:22:38.0816 4720 NetTcpPortSharing - ok
01:22:38.0834 4720 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:22:38.0836 4720 nfrd960 - ok
01:22:38.0914 4720 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
01:22:38.0925 4720 NlaSvc - ok
01:22:38.0950 4720 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:22:38.0951 4720 Npfs - ok
01:22:38.0963 4720 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:22:38.0966 4720 nsi - ok
01:22:38.0975 4720 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:22:38.0977 4720 nsiproxy - ok
01:22:39.0116 4720 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
01:22:39.0139 4720 Ntfs - ok
01:22:39.0229 4720 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:22:39.0230 4720 Null - ok
01:22:39.0968 4720 nvlddmkm (aaf5559039e99d0cc22e25255f3dc06e) C:\Windows\system32\DRIVERS\nvlddmkm.sys
01:22:40.0141 4720 nvlddmkm - ok
01:22:40.0279 4720 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
01:22:40.0290 4720 nvraid - ok
01:22:40.0341 4720 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
01:22:40.0351 4720 nvstor - ok
01:22:40.0404 4720 nvsvc (c20f9e2deec656c67f7986dd3a50ec62) C:\Windows\system32\nvvsvc.exe
01:22:40.0415 4720 nvsvc - ok
01:22:40.0443 4720 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
01:22:40.0447 4720 nv_agp - ok
01:22:40.0561 4720 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:22:40.0570 4720 odserv - ok
01:22:40.0625 4720 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
01:22:40.0631 4720 ohci1394 - ok
01:22:40.0713 4720 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:22:40.0725 4720 ose - ok
01:22:40.0767 4720 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:22:40.0781 4720 p2pimsvc - ok
01:22:40.0831 4720 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:22:40.0849 4720 p2psvc - ok
01:22:40.0874 4720 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:22:40.0879 4720 Parport - ok
01:22:40.0933 4720 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
01:22:40.0935 4720 partmgr - ok
01:22:40.0960 4720 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:22:40.0970 4720 PcaSvc - ok
01:22:41.0034 4720 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
01:22:41.0044 4720 pci - ok
01:22:41.0065 4720 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
01:22:41.0067 4720 pciide - ok
01:22:41.0099 4720 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:22:41.0102 4720 pcmcia - ok
01:22:41.0159 4720 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
01:22:41.0164 4720 pcouffin - ok
01:22:41.0177 4720 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:22:41.0179 4720 pcw - ok
01:22:41.0221 4720 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:22:41.0232 4720 PEAUTH - ok
01:22:41.0356 4720 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:22:41.0361 4720 PerfHost - ok
01:22:41.0539 4720 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
01:22:41.0566 4720 pla - ok
01:22:41.0645 4720 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
01:22:41.0664 4720 PlugPlay - ok
01:22:41.0696 4720 PnkBstrA - ok
01:22:41.0706 4720 PnkBstrB - ok
01:22:41.0736 4720 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:22:41.0752 4720 PNRPAutoReg - ok
01:22:41.0782 4720 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:22:41.0787 4720 PNRPsvc - ok
01:22:41.0844 4720 Point64 (9abff71ff6f3b9492686d3403fa5dcdb) C:\Windows\system32\DRIVERS\point64k.sys
01:22:41.0846 4720 Point64 - ok
01:22:41.0876 4720 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
01:22:41.0891 4720 PolicyAgent - ok
01:22:41.0930 4720 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:22:41.0941 4720 Power - ok
01:22:41.0998 4720 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
01:22:42.0011 4720 PptpMiniport - ok
01:22:42.0033 4720 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:22:42.0035 4720 Processor - ok
01:22:42.0061 4720 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
01:22:42.0070 4720 ProfSvc - ok
01:22:42.0121 4720 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:22:42.0124 4720 ProtectedStorage - ok
01:22:42.0193 4720 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
01:22:42.0205 4720 Psched - ok
01:22:42.0317 4720 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:22:42.0340 4720 ql2300 - ok
01:22:42.0444 4720 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:22:42.0456 4720 ql40xx - ok
01:22:42.0486 4720 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:22:42.0502 4720 QWAVE - ok
01:22:42.0512 4720 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:22:42.0514 4720 QWAVEdrv - ok
01:22:42.0525 4720 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:22:42.0527 4720 RasAcd - ok
01:22:42.0555 4720 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:22:42.0557 4720 RasAgileVpn - ok
01:22:42.0573 4720 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:22:42.0586 4720 RasAuto - ok
01:22:42.0639 4720 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:22:42.0642 4720 Rasl2tp - ok
01:22:42.0699 4720 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
01:22:42.0712 4720 RasMan - ok
01:22:42.0728 4720 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:22:42.0733 4720 RasPppoe - ok
01:22:42.0740 4720 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:22:42.0742 4720 RasSstp - ok
01:22:42.0800 4720 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
01:22:42.0806 4720 rdbss - ok
01:22:42.0811 4720 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:22:42.0813 4720 rdpbus - ok
01:22:42.0823 4720 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:22:42.0824 4720 RDPCDD - ok
01:22:42.0831 4720 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:22:42.0833 4720 RDPENCDD - ok
01:22:42.0843 4720 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:22:42.0844 4720 RDPREFMP - ok
01:22:42.0903 4720 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
01:22:42.0913 4720 RDPWD - ok
01:22:42.0972 4720 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
01:22:42.0982 4720 rdyboost - ok
01:22:43.0015 4720 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:22:43.0028 4720 RemoteAccess - ok
01:22:43.0069 4720 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:22:43.0080 4720 RemoteRegistry - ok
01:22:43.0134 4720 RimUsb (71700b4c5797da5412e9250e26894586) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
01:22:43.0139 4720 RimUsb - ok
01:22:43.0204 4720 RimVSerPort (c903d49655b4aae46673f0aaa6be0f58) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
01:22:43.0206 4720 RimVSerPort - ok
01:22:43.0239 4720 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
01:22:43.0241 4720 ROOTMODEM - ok
01:22:43.0254 4720 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:22:43.0267 4720 RpcEptMapper - ok
01:22:43.0286 4720 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:22:43.0289 4720 RpcLocator - ok
01:22:43.0346 4720 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\System32\rpcss.dll
01:22:43.0352 4720 RpcSs - ok
01:22:43.0367 4720 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:22:43.0369 4720 rspndr - ok
01:22:43.0476 4720 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
01:22:43.0500 4720 RTL8167 - ok
01:22:43.0556 4720 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:22:43.0558 4720 SamSs - ok
01:22:43.0613 4720 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
01:22:43.0643 4720 sbp2port - ok
01:22:43.0672 4720 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:22:43.0681 4720 SCardSvr - ok
01:22:43.0738 4720 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
01:22:43.0740 4720 scfilter - ok
01:22:43.0846 4720 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
01:22:43.0876 4720 Schedule - ok
01:22:43.0953 4720 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
01:22:43.0954 4720 SCPolicySvc - ok
01:22:43.0978 4720 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
01:22:43.0986 4720 SDRSVC - ok
01:22:44.0021 4720 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:22:44.0023 4720 secdrv - ok
01:22:44.0056 4720 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
01:22:44.0060 4720 seclogon - ok
01:22:44.0099 4720 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:22:44.0164 4720 SENS - ok
01:22:44.0301 4720 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:22:44.0314 4720 SensrSvc - ok
01:22:44.0383 4720 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:22:44.0386 4720 Serenum - ok
01:22:44.0433 4720 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:22:44.0456 4720 Serial - ok
01:22:44.0494 4720 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:22:44.0498 4720 sermouse - ok
01:22:44.0596 4720 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
01:22:44.0609 4720 SessionEnv - ok
01:22:44.0660 4720 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:22:44.0662 4720 sffdisk - ok
01:22:44.0673 4720 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:22:44.0675 4720 sffp_mmc - ok
01:22:44.0713 4720 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
01:22:44.0714 4720 sffp_sd - ok
01:22:44.0736 4720 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:22:44.0738 4720 sfloppy - ok
01:22:44.0780 4720 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:22:44.0817 4720 SharedAccess - ok
01:22:44.0901 4720 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
01:22:44.0944 4720 ShellHWDetection - ok
01:22:44.0959 4720 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:22:44.0962 4720 SiSRaid2 - ok
01:22:44.0979 4720 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:22:44.0993 4720 SiSRaid4 - ok
01:22:45.0031 4720 SmartDefragDriver - ok
01:22:45.0054 4720 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:22:45.0059 4720 Smb - ok
01:22:45.0088 4720 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:22:45.0092 4720 SNMPTRAP - ok
01:22:45.0103 4720 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:22:45.0105 4720 spldr - ok
01:22:45.0141 4720 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
01:22:45.0154 4720 Spooler - ok
01:22:45.0394 4720 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
01:22:45.0440 4720 sppsvc - ok
01:22:45.0518 4720 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:22:45.0524 4720 sppuinotify - ok
01:22:45.0599 4720 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
01:22:45.0607 4720 srv - ok
01:22:45.0676 4720 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
01:22:45.0687 4720 srv2 - ok
01:22:45.0709 4720 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
01:22:45.0719 4720 srvnet - ok
01:22:45.0755 4720 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:22:45.0765 4720 SSDPSRV - ok
01:22:45.0816 4720 SSPORT (0211ab46b73a2623b86c1cfcb30579ab) C:\Windows\system32\Drivers\SSPORT.sys
01:22:45.0818 4720 SSPORT - ok
01:22:45.0828 4720 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:22:45.0833 4720 SstpSvc - ok
01:22:45.0892 4720 Steam Client Service - ok
01:22:45.0933 4720 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:22:45.0935 4720 stexstor - ok
01:22:46.0011 4720 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
01:22:46.0024 4720 stisvc - ok
01:22:46.0071 4720 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
01:22:46.0073 4720 swenum - ok
01:22:46.0107 4720 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:22:46.0127 4720 swprv - ok
01:22:46.0279 4720 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
01:22:46.0306 4720 SysMain - ok
01:22:46.0424 4720 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
01:22:46.0437 4720 TabletInputService - ok
01:22:46.0508 4720 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
01:22:46.0522 4720 TapiSrv - ok
01:22:46.0538 4720 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:22:46.0545 4720 TBS - ok
01:22:46.0719 4720 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
01:22:46.0741 4720 Tcpip - ok
01:22:46.0882 4720 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
01:22:46.0895 4720 TCPIP6 - ok
01:22:46.0979 4720 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
01:22:46.0981 4720 tcpipreg - ok
01:22:47.0004 4720 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:22:47.0006 4720 TDPIPE - ok
01:22:47.0058 4720 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
01:22:47.0060 4720 TDTCP - ok
01:22:47.0116 4720 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
01:22:47.0120 4720 tdx - ok
01:22:47.0162 4720 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
01:22:47.0164 4720 TermDD - ok
01:22:47.0246 4720 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
01:22:47.0259 4720 TermService - ok
01:22:47.0282 4720 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:22:47.0286 4720 Themes - ok
01:22:47.0317 4720 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:22:47.0320 4720 THREADORDER - ok
01:22:47.0338 4720 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:22:47.0350 4720 TrkWks - ok
01:22:47.0401 4720 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
01:22:47.0411 4720 TrustedInstaller - ok
01:22:47.0453 4720 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:22:47.0455 4720 tssecsrv - ok
01:22:47.0497 4720 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
01:22:47.0499 4720 TsUsbFlt - ok
01:22:47.0563 4720 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
01:22:47.0576 4720 tunnel - ok
01:22:47.0604 4720 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:22:47.0610 4720 uagp35 - ok
01:22:47.0674 4720 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
01:22:47.0680 4720 udfs - ok
01:22:47.0699 4720 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:22:47.0714 4720 UI0Detect - ok
01:22:47.0756 4720 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
01:22:47.0761 4720 uliagpkx - ok
01:22:47.0823 4720 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
01:22:47.0825 4720 umbus - ok
01:22:47.0846 4720 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:22:47.0848 4720 UmPass - ok
01:22:47.0875 4720 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:22:47.0888 4720 upnphost - ok
01:22:47.0932 4720 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
01:22:47.0934 4720 USBAAPL64 - ok
01:22:47.0981 4720 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
01:22:47.0986 4720 usbaudio - ok
01:22:48.0007 4720 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
01:22:48.0012 4720 usbccgp - ok
01:22:48.0079 4720 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
01:22:48.0084 4720 usbcir - ok
01:22:48.0100 4720 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
01:22:48.0102 4720 usbehci - ok
01:22:48.0144 4720 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
01:22:48.0182 4720 usbhub - ok
01:22:48.0201 4720 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
01:22:48.0202 4720 usbohci - ok
01:22:48.0223 4720 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:22:48.0224 4720 usbprint - ok
01:22:48.0236 4720 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:22:48.0240 4720 USBSTOR - ok
01:22:48.0253 4720 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
01:22:48.0255 4720 usbuhci - ok
01:22:48.0261 4720 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:22:48.0266 4720 UxSms - ok
01:22:48.0321 4720 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:22:48.0324 4720 VaultSvc - ok
01:22:48.0339 4720 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
01:22:48.0341 4720 vdrvroot - ok
01:22:48.0411 4720 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
01:22:48.0427 4720 vds - ok
01:22:48.0444 4720 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:22:48.0446 4720 vga - ok
01:22:48.0451 4720 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:22:48.0452 4720 VgaSave - ok
01:22:48.0478 4720 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
01:22:48.0487 4720 vhdmp - ok
01:22:48.0527 4720 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
01:22:48.0529 4720 viaide - ok
01:22:48.0549 4720 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
01:22:48.0551 4720 volmgr - ok
01:22:48.0602 4720 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
01:22:48.0631 4720 volmgrx - ok
01:22:48.0658 4720 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
01:22:48.0720 4720 volsnap - ok
01:22:48.0784 4720 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:22:48.0787 4720 vsmraid - ok
01:22:49.0005 4720 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
01:22:49.0072 4720 VSS - ok
01:22:49.0192 4720 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
01:22:49.0193 4720 vwifibus - ok
01:22:49.0231 4720 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:22:49.0265 4720 W32Time - ok
01:22:49.0293 4720 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:22:49.0295 4720 WacomPen - ok
01:22:49.0386 4720 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:49.0388 4720 WANARP - ok
01:22:49.0415 4720 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
01:22:49.0417 4720 Wanarpv6 - ok
01:22:49.0601 4720 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:22:49.0631 4720 WatAdminSvc - ok
01:22:49.0825 4720 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
01:22:49.0870 4720 wbengine - ok
01:22:49.0967 4720 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:22:50.0016 4720 WbioSrvc - ok
01:22:50.0128 4720 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
01:22:50.0146 4720 wcncsvc - ok
01:22:50.0160 4720 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:22:50.0184 4720 WcsPlugInService - ok
01:22:50.0246 4720 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:22:50.0248 4720 Wd - ok
01:22:50.0282 4720 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
01:22:50.0284 4720 WDC_SAM - ok
01:22:50.0381 4720 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:22:50.0426 4720 Wdf01000 - ok
01:22:50.0444 4720 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:50.0466 4720 WdiServiceHost - ok
01:22:50.0470 4720 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:22:50.0477 4720 WdiSystemHost - ok
01:22:50.0544 4720 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
01:22:50.0560 4720 WebClient - ok
01:22:50.0599 4720 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:22:50.0656 4720 Wecsvc - ok
01:22:50.0699 4720 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:22:50.0721 4720 wercplsupport - ok
01:22:50.0746 4720 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:22:50.0760 4720 WerSvc - ok
01:22:50.0851 4720 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:22:50.0852 4720 WfpLwf - ok
01:22:50.0916 4720 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:22:50.0918 4720 WIMMount - ok
01:22:50.0950 4720 WinDefend - ok
01:22:50.0956 4720 WinHttpAutoProxySvc - ok
01:22:51.0050 4720 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:22:51.0113 4720 Winmgmt - ok
01:22:51.0349 4720 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
01:22:51.0429 4720 WinRM - ok
01:22:51.0644 4720 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
01:22:51.0647 4720 WinUSB - ok
01:22:51.0725 4720 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:22:51.0773 4720 Wlansvc - ok
01:22:51.0957 4720 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:22:51.0960 4720 wlcrasvc - ok
01:22:52.0214 4720 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:22:52.0255 4720 wlidsvc - ok
01:22:52.0410 4720 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
01:22:52.0413 4720 WmiAcpi - ok
01:22:52.0486 4720 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:22:52.0496 4720 wmiApSrv - ok
01:22:52.0549 4720 WMPNetworkSvc - ok
01:22:52.0693 4720 WMZuneComm (58540037a4a3eeeefa47c84100e1694f) c:\Program Files\Zune\WMZuneComm.exe
01:22:52.0708 4720 WMZuneComm - ok
01:22:52.0736 4720 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:22:52.0753 4720 WPCSvc - ok
01:22:52.0797 4720 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
01:22:52.0809 4720 WPDBusEnum - ok
01:22:52.0824 4720 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:22:52.0825 4720 ws2ifsl - ok
01:22:52.0856 4720 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
01:22:52.0870 4720 wscsvc - ok
01:22:52.0873 4720 WSearch - ok
01:22:53.0025 4720 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
01:22:53.0062 4720 wuauserv - ok
01:22:53.0187 4720 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
01:22:53.0200 4720 WudfPf - ok
01:22:53.0226 4720 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:22:53.0236 4720 WUDFRd - ok
01:22:53.0292 4720 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
01:22:53.0306 4720 wudfsvc - ok
01:22:53.0338 4720 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:22:53.0380 4720 WwanSvc - ok
01:22:53.0904 4720 ZuneNetworkSvc (d6ef205269c2a584af6b56b9f95010f8) c:\Program Files\Zune\ZuneNss.exe
01:22:54.0011 4720 ZuneNetworkSvc - ok
01:22:54.0141 4720 ZuneWlanCfgSvc (7a565afe58f3822a9e622868e5cc0e5c) c:\Program Files\Zune\ZuneWlanCfgSvc.exe
01:22:54.0149 4720 ZuneWlanCfgSvc - ok
01:22:54.0173 4720 MBR (0x1B8) (77433209f2add5dd7710cd5dae9dc49b) \Device\Harddisk0\DR0
01:22:54.0443 4720 \Device\Harddisk0\DR0 - ok
01:22:54.0460 4720 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR10
01:22:54.0573 4720 \Device\Harddisk5\DR10 - ok
01:22:54.0591 4720 Boot (0x1200) (56d08747e9607992703d3590abef3cff) \Device\Harddisk0\DR0\Partition0
01:22:54.0593 4720 \Device\Harddisk0\DR0\Partition0 - ok
01:22:54.0603 4720 Boot (0x1200) (7a32f6f26edddbf1a9996b1bfc02bef1) \Device\Harddisk0\DR0\Partition1
01:22:54.0606 4720 \Device\Harddisk0\DR0\Partition1 - ok
01:22:54.0634 4720 Boot (0x1200) (6f34de9326b61aae872c3891828d56e2) \Device\Harddisk0\DR0\Partition2
01:22:54.0636 4720 \Device\Harddisk0\DR0\Partition2 - ok
01:22:54.0649 4720 Boot (0x1200) (f2f0e49edf7c8136d50bd0ba929bdc07) \Device\Harddisk5\DR10\Partition0
01:22:54.0650 4720 \Device\Harddisk5\DR10\Partition0 - ok
01:22:54.0651 4720 ============================================================
01:22:54.0651 4720 Scan finished
01:22:54.0651 4720 ============================================================
01:22:54.0671 5600 Detected object count: 0
01:22:54.0671 5600 Actual detected object count: 0
01:24:47.0042 5564 ============================================================
01:24:47.0042 5564 Scan started
01:24:47.0042 5564 Mode: Manual; TDLFS;
01:24:47.0042 5564 ============================================================
01:24:47.0489 5564 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
01:24:47.0492 5564 1394ohci - ok
01:24:47.0527 5564 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
01:24:47.0531 5564 ACPI - ok
01:24:47.0586 5564 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
01:24:47.0587 5564 AcpiPmi - ok
01:24:47.0636 5564 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:24:47.0641 5564 adp94xx - ok
01:24:47.0675 5564 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:24:47.0679 5564 adpahci - ok
01:24:47.0705 5564 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:24:47.0707 5564 adpu320 - ok
01:24:47.0892 5564 AdvancedSystemCareService (9eabd21316ccf59e508bd4662ad02843) C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
01:24:47.0896 5564 AdvancedSystemCareService - ok
01:24:47.0936 5564 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:24:47.0938 5564 AeLookupSvc - ok
01:24:47.0988 5564 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
01:24:47.0993 5564 AFD - ok
01:24:48.0053 5564 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
01:24:48.0055 5564 agp440 - ok
01:24:48.0078 5564 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:24:48.0080 5564 ALG - ok
01:24:48.0115 5564 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
01:24:48.0116 5564 aliide - ok
01:24:48.0132 5564 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
01:24:48.0133 5564 amdide - ok
01:24:48.0156 5564 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:24:48.0158 5564 AmdK8 - ok
01:24:48.0173 5564 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:24:48.0174 5564 AmdPPM - ok
01:24:48.0225 5564 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
01:24:48.0227 5564 amdsata - ok
01:24:48.0244 5564 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:24:48.0247 5564 amdsbs - ok
01:24:48.0272 5564 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
01:24:48.0273 5564 amdxata - ok
01:24:48.0326 5564 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
01:24:48.0328 5564 AppID - ok
01:24:48.0348 5564 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:24:48.0350 5564 AppIDSvc - ok
01:24:48.0398 5564 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
01:24:48.0400 5564 Appinfo - ok
01:24:48.0530 5564 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:24:48.0533 5564 Apple Mobile Device - ok
01:24:48.0573 5564 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:24:48.0574 5564 arc - ok
01:24:48.0602 5564 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:24:48.0604 5564 arcsas - ok
01:24:48.0614 5564 ASPI32 - ok
01:24:48.0655 5564 aspnet_state - ok
01:24:48.0677 5564 aswFsBlk (b9da213b5271db5fce962d827e6d620d) C:\Windows\system32\drivers\aswFsBlk.sys
01:24:48.0678 5564 aswFsBlk - ok
01:24:48.0696 5564 aswMonFlt (21c9835d0e5ad2ff0f16134bcb32cc71) C:\Windows\system32\drivers\aswMonFlt.sys
01:24:48.0697 5564 aswMonFlt - ok
01:24:48.0717 5564 aswRdr (1b96a5867abd4fa6135d8298fcccf9c6) C:\Windows\System32\Drivers\aswrdr2.sys
01:24:48.0718 5564 aswRdr - ok
01:24:48.0772 5564 aswSnx (6e98bb288696777a3a8a07a52b0eaee9) C:\Windows\system32\drivers\aswSnx.sys
01:24:48.0777 5564 aswSnx - ok
01:24:48.0806 5564 aswSP (d9fb49f16e4eb02efecae8cbfe4bcb4c) C:\Windows\system32\drivers\aswSP.sys
01:24:48.0808 5564 aswSP - ok
01:24:48.0828 5564 aswTdi (7352bb9a564b94bbd7c9cbf165f55006) C:\Windows\system32\drivers\aswTdi.sys
01:24:48.0829 5564 aswTdi - ok
01:24:48.0849 5564 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:24:48.0849 5564 AsyncMac - ok
01:24:48.0897 5564 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
01:24:48.0898 5564 atapi - ok
01:24:48.0980 5564 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
01:24:48.0987 5564 AudioEndpointBuilder - ok
01:24:48.0999 5564 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
01:24:49.0004 5564 AudioSrv - ok
01:24:49.0069 5564 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
01:24:49.0070 5564 avast! Antivirus - ok
01:24:49.0129 5564 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
01:24:49.0131 5564 AxInstSV - ok
01:24:49.0178 5564 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:24:49.0184 5564 b06bdrv - ok
01:24:49.0214 5564 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:24:49.0216 5564 b57nd60a - ok
01:24:49.0256 5564 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:24:49.0257 5564 BDESVC - ok
01:24:49.0273 5564 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:24:49.0274 5564 Beep - ok
01:24:49.0348 5564 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
01:24:49.0353 5564 BFE - ok
01:24:49.0449 5564 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
01:24:49.0459 5564 BITS - ok
01:24:49.0508 5564 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:24:49.0510 5564 blbdrive - ok
01:24:49.0608 5564 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
01:24:49.0613 5564 Bonjour Service - ok
01:24:49.0665 5564 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
01:24:49.0667 5564 bowser - ok
01:24:49.0699 5564 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:24:49.0700 5564 BrFiltLo - ok
01:24:49.0715 5564 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:24:49.0716 5564 BrFiltUp - ok
01:24:49.0740 5564 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
01:24:49.0742 5564 BridgeMP - ok
01:24:49.0801 5564 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
01:24:49.0802 5564 Browser - ok
01:24:49.0845 5564 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:24:49.0848 5564 Brserid - ok
01:24:49.0881 5564 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:24:49.0882 5564 BrSerWdm - ok
01:24:49.0890 5564 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:24:49.0891 5564 BrUsbMdm - ok
01:24:49.0901 5564 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:24:49.0902 5564 BrUsbSer - ok
01:24:49.0915 5564 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:24:49.0916 5564 BTHMODEM - ok
01:24:49.0944 5564 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:24:49.0946 5564 bthserv - ok
01:24:49.0992 5564 catchme - ok
01:24:50.0039 5564 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:24:50.0041 5564 cdfs - ok
01:24:50.0109 5564 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
01:24:50.0111 5564 cdrom - ok
01:24:50.0176 5564 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
01:24:50.0177 5564 CertPropSvc - ok
01:24:50.0205 5564 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:24:50.0206 5564 circlass - ok
01:24:50.0239 5564 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:24:50.0242 5564 CLFS - ok
01:24:50.0330 5564 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:24:50.0331 5564 clr_optimization_v2.0.50727_32 - ok
01:24:50.0385 5564 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:24:50.0387 5564 clr_optimization_v2.0.50727_64 - ok
01:24:50.0428 5564 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:24:50.0430 5564 clr_optimization_v4.0.30319_32 - ok
01:24:50.0492 5564 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:24:50.0495 5564 clr_optimization_v4.0.30319_64 - ok
01:24:50.0525 5564 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:24:50.0526 5564 CmBatt - ok
01:24:50.0583 5564 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
01:24:50.0583 5564 cmdide - ok
01:24:50.0654 5564 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
01:24:50.0659 5564 CNG - ok
01:24:50.0694 5564 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:24:50.0695 5564 Compbatt - ok
01:24:50.0732 5564 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
01:24:50.0733 5564 CompositeBus - ok
01:24:50.0741 5564 COMSysApp - ok
01:24:50.0781 5564 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:24:50.0782 5564 crcdisk - ok
01:24:50.0843 5564 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
01:24:50.0845 5564 CryptSvc - ok
01:24:50.0914 5564 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
01:24:50.0921 5564 DcomLaunch - ok
01:24:50.0976 5564 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:24:50.0979 5564 defragsvc - ok
01:24:51.0053 5564 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
01:24:51.0055 5564 DfsC - ok
01:24:51.0120 5564 DgiVecp (2d589a2c024b2fb238535db9f7b3597d) C:\Windows\system32\Drivers\DgiVecp.sys
01:24:51.0121 5564 DgiVecp - ok
01:24:51.0191 5564 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
01:24:51.0196 5564 Dhcp - ok
01:24:51.0244 5564 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:24:51.0245 5564 discache - ok
01:24:51.0260 5564 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:24:51.0262 5564 Disk - ok
01:24:51.0323 5564 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
01:24:51.0325 5564 Dnscache - ok
01:24:51.0394 5564 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
01:24:51.0399 5564 dot3svc - ok
01:24:51.0459 5564 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
01:24:51.0463 5564 DPS - ok
01:24:51.0527 5564 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:24:51.0528 5564 drmkaud - ok
01:24:51.0560 5564 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
01:24:51.0563 5564 dtsoftbus01 - ok
01:24:51.0676 5564 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
01:24:51.0686 5564 DXGKrnl - ok
01:24:51.0764 5564 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:24:51.0767 5564 EapHost - ok
01:24:51.0983 5564 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:24:52.0005 5564 ebdrv - ok
01:24:52.0152 5564 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
01:24:52.0156 5564 EFS - ok
01:24:52.0226 5564 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
01:24:52.0231 5564 ehRecvr - ok
01:24:52.0265 5564 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:24:52.0267 5564 ehSched - ok
01:24:52.0301 5564 ElRawDisk (4778eeecb75c6fb419745beed3530b9d) C:\Windows\system32\drivers\rsdrvx64.sys
01:24:52.0303 5564 ElRawDisk - ok
01:24:52.0351 5564 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:24:52.0356 5564 elxstor - ok
01:24:52.0420 5564 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
01:24:52.0421 5564 ErrDev - ok
01:24:52.0515 5564 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:24:52.0521 5564 EventSystem - ok
01:24:52.0567 5564 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:24:52.0568 5564 exfat - ok
01:24:52.0617 5564 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:24:52.0619 5564 fastfat - ok
01:24:52.0697 5564 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
01:24:52.0706 5564 Fax - ok
01:24:52.0736 5564 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:24:52.0737 5564 fdc - ok
01:24:52.0754 5564 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:24:52.0755 5564 fdPHost - ok
01:24:52.0765 5564 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:24:52.0766 5564 FDResPub - ok
01:24:52.0777 5564 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:24:52.0778 5564 FileInfo - ok
01:24:52.0789 5564 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:24:52.0790 5564 Filetrace - ok
01:24:52.0806 5564 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:24:52.0807 5564 flpydisk - ok
01:24:52.0836 5564 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
01:24:52.0838 5564 FltMgr - ok
01:24:52.0941 5564 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
01:24:52.0952 5564 FontCache - ok
01:24:53.0062 5564 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:24:53.0064 5564 FontCache3.0.0.0 - ok
01:24:53.0089 5564 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:24:53.0091 5564 FsDepends - ok
01:24:53.0134 5564 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
01:24:53.0135 5564 fssfltr - ok
01:24:53.0326 5564 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
01:24:53.0335 5564 fsssvc - ok
01:24:53.0418 5564 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
01:24:53.0420 5564 Fs_Rec - ok
01:24:53.0471 5564 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:24:53.0474 5564 fvevol - ok
01:24:53.0491 5564 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:24:53.0493 5564 gagp30kx - ok
01:24:53.0531 5564 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:24:53.0532 5564 GEARAspiWDM - ok
01:24:53.0607 5564 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
01:24:53.0614 5564 gpsvc - ok
01:24:53.0650 5564 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:24:53.0651 5564 gupdate - ok
01:24:53.0656 5564 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:24:53.0657 5564 gupdatem - ok
01:24:53.0675 5564 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:24:53.0676 5564 hcw85cir - ok
01:24:53.0734 5564 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
01:24:53.0736 5564 HDAudBus - ok
01:24:53.0752 5564 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:24:53.0754 5564 HidBatt - ok
01:24:53.0766 5564 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:24:53.0767 5564 HidBth - ok
01:24:53.0773 5564 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:24:53.0774 5564 HidIr - ok
01:24:53.0787 5564 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
01:24:53.0789 5564 hidserv - ok
01:24:53.0801 5564 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
01:24:53.0802 5564 HidUsb - ok
01:24:53.0840 5564 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
01:24:53.0842 5564 hkmsvc - ok
01:24:53.0902 5564 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
01:24:53.0908 5564 HomeGroupListener - ok
01:24:53.0959 5564 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
01:24:53.0965 5564 HomeGroupProvider - ok
01:24:54.0043 5564 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
01:24:54.0045 5564 hpqwmiex - ok
01:24:54.0066 5564 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
01:24:54.0068 5564 HpSAMD - ok
01:24:54.0155 5564 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
01:24:54.0161 5564 HTTP - ok
01:24:54.0207 5564 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
01:24:54.0208 5564 hwpolicy - ok
01:24:54.0268 5564 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
01:24:54.0269 5564 i8042prt - ok
01:24:54.0327 5564 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
01:24:54.0331 5564 IAANTMON - ok
01:24:54.0378 5564 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
01:24:54.0382 5564 iaStor - ok
01:24:54.0422 5564 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
01:24:54.0426 5564 iaStorV - ok
01:24:54.0531 5564 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:24:54.0538 5564 idsvc - ok
01:24:54.0879 5564 igfx (e0b4d51e395b7e8d209365029649aed9) C:\Windows\system32\DRIVERS\igdkmd64.sys
01:24:54.0911 5564 igfx - ok
01:24:55.0021 5564 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:24:55.0022 5564 iirsp - ok
01:24:55.0108 5564 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
01:24:55.0117 5564 IKEEXT - ok
01:24:55.0308 5564 IMFservice (8ae99ebe30e8338907361018d9030835) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
01:24:55.0316 5564 IMFservice - ok
01:24:55.0485 5564 IntcAzAudAddService (bc64b75e8e0a0b8982ab773483164e72) C:\Windows\system32\drivers\RTKVHD64.sys
01:24:55.0503 5564 IntcAzAudAddService - ok
01:24:55.0589 5564 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
01:24:55.0590 5564 intelide - ok
01:24:55.0620 5564 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:24:55.0621 5564 intelppm - ok
01:24:55.0647 5564 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:24:55.0649 5564 IPBusEnum - ok
01:24:55.0703 5564 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:24:55.0705 5564 IpFilterDriver - ok
01:24:55.0779 5564 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
01:24:55.0788 5564 iphlpsvc - ok
01:24:55.0898 5564 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
01:24:55.0899 5564 IPMIDRV - ok
01:24:55.0921 5564 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:24:55.0923 5564 IPNAT - ok
01:24:56.0023 5564 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
01:24:56.0031 5564 iPod Service - ok
01:24:56.0044 5564 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:24:56.0045 5564 IRENUM - ok
01:24:56.0055 5564 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
01:24:56.0056 5564 isapnp - ok
01:24:56.0104 5564 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
01:24:56.0106 5564 iScsiPrt - ok
01:24:56.0111 5564 ISODisk - ok
01:24:56.0140 5564 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
01:24:56.0141 5564 kbdclass - ok
01:24:56.0167 5564 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
01:24:56.0168 5564 kbdhid - ok
01:24:56.0210 5564 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:24:56.0213 5564 KeyIso - ok
01:24:56.0230 5564 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
01:24:56.0231 5564 KSecDD - ok
01:24:56.0252 5564 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
01:24:56.0254 5564 KSecPkg - ok
01:24:56.0259 5564 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:24:56.0260 5564 ksthunk - ok
01:24:56.0290 5564 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:24:56.0294 5564 KtmRm - ok
01:24:56.0316 5564 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
01:24:56.0322 5564 LanmanServer - ok
01:24:56.0372 5564 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
01:24:56.0377 5564 LanmanWorkstation - ok
01:24:56.0382 5564 Lbd - ok
01:24:56.0409 5564 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:24:56.0410 5564 lltdio - ok
01:24:56.0441 5564 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:24:56.0444 5564 lltdsvc - ok
01:24:56.0463 5564 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:24:56.0465 5564 lmhosts - ok
01:24:56.0492 5564 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:24:56.0493 5564 LSI_FC - ok
01:24:56.0506 5564 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:24:56.0507 5564 LSI_SAS - ok
01:24:56.0515 5564 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:24:56.0516 5564 LSI_SAS2 - ok
01:24:56.0525 5564 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:24:56.0526 5564 LSI_SCSI - ok
01:24:56.0552 5564 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:24:56.0553 5564 luafv - ok
01:24:56.0589 5564 LVPr2M64 (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:24:56.0590 5564 LVPr2M64 - ok
01:24:56.0595 5564 LVPr2Mon (b3944d06eb4b64d57bd7e5fe89415f58) C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:24:56.0596 5564 LVPr2Mon - ok
01:24:56.0733 5564 LVPrcS64 (9cd0dc863be5d40a762f7d84f11a8471) C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
01:24:56.0736 5564 LVPrcS64 - ok
01:24:56.0775 5564 LVRS64 (803085f59ec92b3827cc4d90fcbfd335) C:\Windows\system32\DRIVERS\lvrs64.sys
01:24:56.0779 5564 LVRS64 - ok
01:24:57.0029 5564 LVUVC64 (a8d7c97016e6b76ef472a4c7ab357ee3) C:\Windows\system32\DRIVERS\lvuvc64.sys
01:24:57.0053 5564 LVUVC64 - ok
01:24:57.0171 5564 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
01:24:57.0176 5564 Mcx2Svc - ok
01:24:57.0193 5564 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:24:57.0196 5564 megasas - ok
01:24:57.0227 5564 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:24:57.0229 5564 MegaSR - ok
01:24:57.0257 5564 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:24:57.0260 5564 MMCSS - ok
01:24:57.0273 5564 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:24:57.0274 5564 Modem - ok
01:24:57.0283 5564 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:24:57.0284 5564 monitor - ok
01:24:57.0327 5564 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
01:24:57.0328 5564 mouclass - ok
01:24:57.0334 5564 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:24:57.0335 5564 mouhid - ok
01:24:57.0388 5564 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
01:24:57.0389 5564 mountmgr - ok
01:24:57.0455 5564 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:24:57.0457 5564 MozillaMaintenance - ok
01:24:57.0520 5564 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
01:24:57.0522 5564 mpio - ok
01:24:57.0549 5564 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:24:57.0551 5564 mpsdrv - ok
01:24:57.0641 5564 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
01:24:57.0648 5564 MpsSvc - ok
01:24:57.0692 5564 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
01:24:57.0693 5564 MRxDAV - ok
01:24:57.0747 5564 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:24:57.0748 5564 mrxsmb - ok
01:24:57.0799 5564 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:24:57.0801 5564 mrxsmb10 - ok
01:24:57.0834 5564 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:24:57.0836 5564 mrxsmb20 - ok
01:24:57.0853 5564 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
01:24:57.0855 5564 msahci - ok
01:24:57.0942 5564 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
01:24:57.0943 5564 msdsm - ok
01:24:57.0997 5564 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:24:58.0000 5564 MSDTC - ok
01:24:58.0042 5564 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:24:58.0043 5564 Msfs - ok
01:24:58.0057 5564 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:24:58.0058 5564 mshidkmdf - ok
01:24:58.0104 5564 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
01:24:58.0104 5564 msisadrv - ok
01:24:58.0127 5564 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:24:58.0131 5564 MSiSCSI - ok
01:24:58.0137 5564 msiserver - ok
01:24:58.0211 5564 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:24:58.0212 5564 MSKSSRV - ok
01:24:58.0229 5564 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:24:58.0229 5564 MSPCLOCK - ok
01:24:58.0235 5564 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:24:58.0236 5564 MSPQM - ok
01:24:58.0315 5564 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
01:24:58.0318 5564 MsRPC - ok
01:24:58.0347 5564 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
01:24:58.0348 5564 mssmbios - ok
01:24:58.0398 5564 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:24:58.0398 5564 MSTEE - ok
01:24:58.0416 5564 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:24:58.0418 5564 MTConfig - ok
01:24:58.0441 5564 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:24:58.0442 5564 Mup - ok
01:24:58.0706 5564 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
01:24:58.0717 5564 napagent - ok
01:24:58.0750 5564 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:24:58.0752 5564 NativeWifiP - ok
01:24:58.0817 5564 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
01:24:58.0822 5564 NDIS - ok
01:24:58.0838 5564 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:24:58.0839 5564 NdisCap - ok
01:24:58.0852 5564 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:24:58.0853 5564 NdisTapi - ok
01:24:58.0901 5564 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
01:24:58.0903 5564 Ndisuio - ok
01:24:58.0957 5564 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
01:24:58.0960 5564 NdisWan - ok
01:24:59.0028 5564 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
01:24:59.0029 5564 NDProxy - ok
01:24:59.0221 5564 Nero BackItUp Scheduler 4.0 (c7f5c284b6f46fcaf6910ea4e644700b) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
01:24:59.0227 5564 Nero BackItUp Scheduler 4.0 - ok
01:24:59.0251 5564 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:24:59.0252 5564 NetBIOS - ok
01:24:59.0343 5564 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
01:24:59.0345 5564 NetBT - ok
01:24:59.0394 5564 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:24:59.0397 5564 Netlogon - ok
01:24:59.0434 5564 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:24:59.0439 5564 Netman - ok
01:24:59.0503 5564 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:24:59.0507 5564 netprofm - ok
01:24:59.0635 5564 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:24:59.0637 5564 NetTcpPortSharing - ok
01:24:59.0667 5564 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:24:59.0668 5564 nfrd960 - ok
01:24:59.0757 5564 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
01:24:59.0761 5564 NlaSvc - ok
01:24:59.0781 5564 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:24:59.0782 5564 Npfs - ok
01:24:59.0802 5564 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:24:59.0805 5564 nsi - ok
01:24:59.0819 5564 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:24:59.0820 5564 nsiproxy - ok
01:24:59.0970 5564 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
01:24:59.0979 5564 Ntfs - ok
01:25:00.0043 5564 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:25:00.0044 5564 Null - ok
01:25:00.0759 5564 nvlddmkm (aaf5559039e99d0cc22e25255f3dc06e) C:\Windows\system32\DRIVERS\nvlddmkm.sys
01:25:00.0838 5564 nvlddmkm - ok
01:25:00.0969 5564 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
01:25:00.0971 5564 nvraid - ok
01:25:01.0021 5564 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
01:25:01.0023 5564 nvstor - ok
01:25:01.0076 5564 nvsvc (c20f9e2deec656c67f7986dd3a50ec62) C:\Windows\system32\nvvsvc.exe
01:25:01.0081 5564 nvsvc - ok
01:25:01.0108 5564 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
01:25:01.0110 5564 nv_agp - ok
01:25:01.0234 5564 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:25:01.0239 5564 odserv - ok
01:25:01.0298 5564 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
01:25:01.0300 5564 ohci1394 - ok
01:25:01.0360 5564 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:25:01.0363 5564 ose - ok
01:25:01.0407 5564 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:25:01.0415 5564 p2pimsvc - ok
01:25:01.0462 5564 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:25:01.0471 5564 p2psvc - ok
01:25:01.0505 5564 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:25:01.0507 5564 Parport - ok
01:25:01.0564 5564 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
01:25:01.0566 5564 partmgr - ok
01:25:01.0591 5564 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:25:01.0597 5564 PcaSvc - ok
01:25:01.0615 5564 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
01:25:01.0616 5564 pci - ok
01:25:01.0630 5564 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
01:25:01.0631 5564 pciide - ok
01:25:01.0652 5564 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:25:01.0654 5564 pcmcia - ok
01:25:01.0706 5564 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
01:25:01.0709 5564 pcouffin - ok
01:25:01.0724 5564 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:25:01.0726 5564 pcw - ok
01:25:01.0777 5564 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:25:01.0781 5564 PEAUTH - ok
01:25:01.0912 5564 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:25:01.0915 5564 PerfHost - ok
01:25:02.0103 5564 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
01:25:02.0115 5564 pla - ok
01:25:02.0281 5564 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
01:25:02.0286 5564 PlugPlay - ok
01:25:02.0306 5564 PnkBstrA - ok
01:25:02.0314 5564 PnkBstrB - ok
01:25:02.0360 5564 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:25:02.0365 5564 PNRPAutoReg - ok
01:25:02.0462 5564 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:25:02.0466 5564 PNRPsvc - ok
01:25:02.0550 5564 Point64 (9abff71ff6f3b9492686d3403fa5dcdb) C:\Windows\system32\DRIVERS\point64k.sys
01:25:02.0551 5564 Point64 - ok
01:25:02.0583 5564 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
01:25:02.0587 5564 PolicyAgent - ok
01:25:02.0627 5564 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:25:02.0632 5564 Power - ok
01:25:02.0705 5564 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
01:25:02.0707 5564 PptpMiniport - ok
01:25:02.0756 5564 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:25:02.0758 5564 Processor - ok
01:25:02.0784 5564 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
01:25:02.0791 5564 ProfSvc - ok
01:25:02.0844 5564 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:25:02.0850 5564 ProtectedStorage - ok
01:25:02.0915 5564 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
01:25:02.0918 5564 Psched - ok
01:25:03.0014 5564 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:25:03.0030 5564 ql2300 - ok
01:25:03.0117 5564 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:25:03.0120 5564 ql40xx - ok
01:25:03.0150 5564 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:25:03.0154 5564 QWAVE - ok
01:25:03.0169 5564 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:25:03.0169 5564 QWAVEdrv - ok
01:25:03.0181 5564 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:25:03.0182 5564 RasAcd - ok
01:25:03.0196 5564 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:25:03.0197 5564 RasAgileVpn - ok
01:25:03.0213 5564 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:25:03.0216 5564 RasAuto - ok
01:25:03.0270 5564 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:25:03.0271 5564 Rasl2tp - ok
01:25:03.0331 5564 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
01:25:03.0338 5564 RasMan - ok
01:25:03.0351 5564 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:25:03.0353 5564 RasPppoe - ok
01:25:03.0363 5564 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:25:03.0364 5564 RasSstp - ok
01:25:03.0390 5564 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
01:25:03.0392 5564 rdbss - ok
01:25:03.0397 5564 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:25:03.0398 5564 rdpbus - ok
01:25:03.0404 5564 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:25:03.0405 5564 RDPCDD - ok
01:25:03.0414 5564 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:25:03.0415 5564 RDPENCDD - ok
01:25:03.0424 5564 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:25:03.0425 5564 RDPREFMP - ok
01:25:03.0484 5564 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
01:25:03.0486 5564 RDPWD - ok
01:25:03.0545 5564 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
01:25:03.0549 5564 rdyboost - ok
01:25:03.0571 5564 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:25:03.0576 5564 RemoteAccess - ok
01:25:03.0592 5564 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:25:03.0596 5564 RemoteRegistry - ok
01:25:03.0657 5564 RimUsb (71700b4c5797da5412e9250e26894586) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
01:25:03.0659 5564 RimUsb - ok
01:25:03.0710 5564 RimVSerPort (c903d49655b4aae46673f0aaa6be0f58) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
01:25:03.0712 5564 RimVSerPort - ok
01:25:03.0728 5564 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
01:25:03.0730 5564 ROOTMODEM - ok
01:25:03.0744 5564 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:25:03.0751 5564 RpcEptMapper - ok
01:25:03.0775 5564 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:25:03.0778 5564 RpcLocator - ok
01:25:03.0836 5564 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\System32\rpcss.dll
01:25:03.0842 5564 RpcSs - ok
01:25:03.0850 5564 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:25:03.0851 5564 rspndr - ok
01:25:03.0881 5564 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
01:25:03.0883 5564 RTL8167 - ok
01:25:03.0936 5564 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:25:03.0938 5564 SamSs - ok
01:25:03.0986 5564 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
01:25:03.0988 5564 sbp2port - ok
01:25:04.0020 5564 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:25:04.0024 5564 SCardSvr - ok
01:25:04.0078 5564 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
01:25:04.0079 5564 scfilter - ok
01:25:04.0186 5564 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
01:25:04.0202 5564 Schedule - ok
01:25:04.0268 5564 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
01:25:04.0270 5564 SCPolicySvc - ok
01:25:04.0333 5564 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
01:25:04.0341 5564 SDRSVC - ok
01:25:04.0369 5564 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:25:04.0371 5564 secdrv - ok
01:25:04.0393 5564 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
01:25:04.0398 5564 seclogon - ok
01:25:04.0422 5564 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
01:25:04.0425 5564 SENS - ok
01:25:04.0435 5564 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:25:04.0438 5564 SensrSvc - ok
01:25:04.0456 5564 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:25:04.0457 5564 Serenum - ok
01:25:04.0472 5564 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:25:04.0473 5564 Serial - ok
01:25:04.0484 5564 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:25:04.0485 5564 sermouse - ok
01:25:04.0544 5564 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
01:25:04.0552 5564 SessionEnv - ok
01:25:04.0612 5564 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
01:25:04.0614 5564 sffdisk - ok
01:25:04.0650 5564 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
01:25:04.0652 5564 sffp_mmc - ok
01:25:04.0669 5564 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
01:25:04.0670 5564 sffp_sd - ok
01:25:04.0684 5564 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:25:04.0685 5564 sfloppy - ok
01:25:04.0720 5564 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:25:04.0724 5564 SharedAccess - ok
01:25:04.0789 5564 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
01:25:04.0798 5564 ShellHWDetection - ok
01:25:04.0815 5564 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:25:04.0816 5564 SiSRaid2 - ok
01:25:04.0835 5564 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:25:04.0837 5564 SiSRaid4 - ok
01:25:04.0842 5564 SmartDefragDriver - ok
01:25:04.0860 5564 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:25:04.0862 5564 Smb - ok
01:25:04.0877 5564 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:25:04.0881 5564 SNMPTRAP - ok
01:25:04.0893 5564 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:25:04.0894 5564 spldr - ok
01:25:04.0931 5564 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
01:25:04.0936 5564 Spooler - ok
01:25:05.0158 5564 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
01:25:05.0182 5564 sppsvc - ok
01:25:05.0266 5564 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:25:05.0273 5564 sppuinotify - ok
01:25:05.0358 5564 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
01:25:05.0363 5564 srv - ok
01:25:05.0433 5564 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
01:25:05.0438 5564 srv2 - ok
01:25:05.0457 5564 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
01:25:05.0460 5564 srvnet - ok
01:25:05.0477 5564 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:25:05.0481 5564 SSDPSRV - ok
01:25:05.0523 5564 SSPORT (0211ab46b73a2623b86c1cfcb30579ab) C:\Windows\system32\Drivers\SSPORT.sys
01:25:05.0523 5564 SSPORT - ok
01:25:05.0534 5564 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:25:05.0538 5564 SstpSvc - ok
01:25:05.0590 5564 Steam Client Service - ok
01:25:05.0631 5564 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:25:05.0633 5564 stexstor - ok
01:25:05.0701 5564 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
01:25:05.0714 5564 stisvc - ok
01:25:05.0769 5564 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
01:25:05.0771 5564 swenum - ok
01:25:05.0812 5564 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:25:05.0823 5564 swprv - ok
01:25:05.0967 5564 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
01:25:05.0983 5564 SysMain - ok
01:25:06.0105 5564 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
01:25:06.0113 5564 TabletInputService - ok
01:25:06.0198 5564 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
01:25:06.0207 5564 TapiSrv - ok
01:25:06.0270 5564 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:25:06.0277 5564 TBS - ok
01:25:06.0435 5564 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
01:25:06.0454 5564 Tcpip - ok
01:25:06.0606 5564 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
01:25:06.0625 5564 TCPIP6 - ok
01:25:06.0710 5564 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
01:25:06.0712 5564 tcpipreg - ok
01:25:06.0736 5564 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:25:06.0737 5564 TDPIPE - ok
01:25:06.0781 5564 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
01:25:06.0782 5564 TDTCP - ok
01:25:06.0839 5564 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
01:25:06.0841 5564 tdx - ok
01:25:06.0885 5564 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
01:25:06.0887 5564 TermDD - ok
01:25:06.0971 5564 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
01:25:06.0984 5564 TermService - ok
01:25:06.0997 5564 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:25:07.0000 5564 Themes - ok
01:25:07.0032 5564 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:25:07.0035 5564 THREADORDER - ok
01:25:07.0052 5564 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:25:07.0056 5564 TrkWks - ok
01:25:07.0107 5564 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
01:25:07.0109 5564 TrustedInstaller - ok
01:25:07.0151 5564 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:25:07.0152 5564 tssecsrv - ok
01:25:07.0195 5564 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
01:25:07.0197 5564 TsUsbFlt - ok
01:25:07.0253 5564 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
01:25:07.0255 5564 tunnel - ok
01:25:07.0277 5564 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:25:07.0278 5564 uagp35 - ok
01:25:07.0340 5564 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
01:25:07.0344 5564 udfs - ok
01:25:07.0364 5564 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:25:07.0370 5564 UI0Detect - ok
01:25:07.0386 5564 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
01:25:07.0387 5564 uliagpkx - ok
01:25:07.0437 5564 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
01:25:07.0438 5564 umbus - ok
01:25:07.0452 5564 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:25:07.0453 5564 UmPass - ok
01:25:07.0481 5564 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:25:07.0486 5564 upnphost - ok
01:25:07.0529 5564 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
01:25:07.0531 5564 USBAAPL64 - ok
01:25:07.0581 5564 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
01:25:07.0584 5564 usbaudio - ok
01:25:07.0622 5564 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
01:25:07.0625 5564 usbccgp - ok
01:25:07.0685 5564 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
01:25:07.0688 5564 usbcir - ok
01:25:07.0723 5564 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
01:25:07.0725 5564 usbehci - ok
01:25:07.0801 5564 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
01:25:07.0806 5564 usbhub - ok
01:25:07.0824 5564 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
01:25:07.0825 5564 usbohci - ok
01:25:07.0849 5564 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:25:07.0850 5564 usbprint - ok
01:25:07.0867 5564 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:25:07.0869 5564 USBSTOR - ok
01:25:07.0884 5564 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
01:25:07.0885 5564 usbuhci - ok
01:25:07.0890 5564 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:25:07.0894 5564 UxSms - ok
01:25:07.0944 5564 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
01:25:07.0946 5564 VaultSvc - ok
01:25:07.0953 5564 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
01:25:07.0954 5564 vdrvroot - ok
01:25:08.0028 5564 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
01:25:08.0040 5564 vds - ok
01:25:08.0058 5564 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:25:08.0059 5564 vga - ok
01:25:08.0064 5564 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:25:08.0065 5564 VgaSave - ok
01:25:08.0093 5564 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
01:25:08.0095 5564 vhdmp - ok
01:25:08.0117 5564 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
01:25:08.0118 5564 viaide - ok
01:25:08.0138 5564 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
01:25:08.0139 5564 volmgr - ok
01:25:08.0192 5564 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
01:25:08.0195 5564 volmgrx - ok
01:25:08.0229 5564 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
01:25:08.0233 5564 volsnap - ok
01:25:08.0263 5564 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:25:08.0266 5564 vsmraid - ok
01:25:08.0402 5564 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
01:25:08.0424 5564 VSS - ok
01:25:08.0500 5564 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
01:25:08.0502 5564 vwifibus - ok
01:25:08.0537 5564 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:25:08.0547 5564 W32Time - ok
01:25:08.0566 5564 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:25:08.0567 5564 WacomPen - ok
01:25:08.0583 5564 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
01:25:08.0584 5564 WANARP - ok
01:25:08.0587 5564 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
01:25:08.0589 5564 Wanarpv6 - ok
01:25:08.0709 5564 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:25:08.0722 5564 WatAdminSvc - ok
01:25:08.0855 5564 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
01:25:08.0877 5564 wbengine - ok
01:25:08.0946 5564 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:25:08.0953 5564 WbioSrvc - ok
01:25:09.0016 5564 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
01:25:09.0026 5564 wcncsvc - ok
01:25:09.0042 5564 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:25:09.0045 5564 WcsPlugInService - ok
01:25:09.0061 5564 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:25:09.0062 5564 Wd - ok
01:25:09.0088 5564 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
01:25:09.0089 5564 WDC_SAM - ok
01:25:09.0131 5564 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:25:09.0135 5564 Wdf01000 - ok
01:25:09.0150 5564 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:25:09.0154 5564 WdiServiceHost - ok
01:25:09.0157 5564 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:25:09.0162 5564 WdiSystemHost - ok
01:25:09.0226 5564 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
01:25:09.0236 5564 WebClient - ok
01:25:09.0262 5564 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:25:09.0267 5564 Wecsvc - ok
01:25:09.0280 5564 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:25:09.0285 5564 wercplsupport - ok
01:25:09.0303 5564 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:25:09.0308 5564 WerSvc - ok
01:25:09.0324 5564 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:25:09.0325 5564 WfpLwf - ok
01:25:09.0339 5564 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:25:09.0341 5564 WIMMount - ok
01:25:09.0365 5564 WinDefend - ok
01:25:09.0372 5564 WinHttpAutoProxySvc - ok
01:25:09.0445 5564 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:25:09.0448 5564 Winmgmt - ok
01:25:09.0603 5564 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
01:25:09.0621 5564 WinRM - ok
01:25:09.0725 5564 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
01:25:09.0727 5564 WinUSB - ok
01:25:09.0790 5564 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:25:09.0806 5564 Wlansvc - ok
01:25:09.0947 5564 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:25:09.0948 5564 wlcrasvc - ok
01:25:10.0164 5564 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:25:10.0186 5564 wlidsvc - ok
01:25:10.0241 5564 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
01:25:10.0242 5564 WmiAcpi - ok
01:25:10.0309 5564 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:25:10.0312 5564 wmiApSrv - ok
01:25:10.0339 5564 WMPNetworkSvc - ok
01:25:10.0433 5564 WMZuneComm (58540037a4a3eeeefa47c84100e1694f) c:\Program Files\Zune\WMZuneComm.exe
01:25:10.0436 5564 WMZuneComm - ok
01:25:10.0476 5564 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:25:10.0484 5564 WPCSvc - ok
01:25:10.0529 5564 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
01:25:10.0537 5564 WPDBusEnum - ok
01:25:10.0556 5564 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:25:10.0558 5564 ws2ifsl - ok
01:25:10.0580 5564 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
01:25:10.0585 5564 wscsvc - ok
01:25:10.0589 5564 WSearch - ok
01:25:10.0749 5564 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
01:25:10.0768 5564 wuauserv - ok
01:25:10.0902 5564 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
01:25:10.0905 5564 WudfPf - ok
01:25:10.0924 5564 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:25:10.0927 5564 WUDFRd - ok
01:25:10.0973 5564 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
01:25:10.0982 5564 wudfsvc - ok
01:25:11.0004 5564 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:25:11.0014 5564 WwanSvc - ok
01:25:11.0455 5564 ZuneNetworkSvc (d6ef205269c2a584af6b56b9f95010f8) c:\Program Files\Zune\ZuneNss.exe
01:25:11.0500 5564 ZuneNetworkSvc - ok
01:25:11.0565 5564 ZuneWlanCfgSvc (7a565afe58f3822a9e622868e5cc0e5c) c:\Program Files\Zune\ZuneWlanCfgSvc.exe
01:25:11.0570 5564 ZuneWlanCfgSvc - ok
01:25:11.0596 5564 MBR (0x1B8) (77433209f2add5dd7710cd5dae9dc49b) \Device\Harddisk0\DR0
01:25:11.0856 5564 \Device\Harddisk0\DR0 - ok
01:25:11.0863 5564 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR10
01:25:11.0960 5564 \Device\Harddisk5\DR10 - ok
01:25:11.0989 5564 Boot (0x1200) (56d08747e9607992703d3590abef3cff) \Device\Harddisk0\DR0\Partition0
01:25:11.0991 5564 \Device\Harddisk0\DR0\Partition0 - ok
01:25:12.0001 5564 Boot (0x1200) (7a32f6f26edddbf1a9996b1bfc02bef1) \Device\Harddisk0\DR0\Partition1
01:25:12.0003 5564 \Device\Harddisk0\DR0\Partition1 - ok
01:25:12.0032 5564 Boot (0x1200) (6f34de9326b61aae872c3891828d56e2) \Device\Harddisk0\DR0\Partition2
01:25:12.0034 5564 \Device\Harddisk0\DR0\Partition2 - ok
01:25:12.0039 5564 Boot (0x1200) (f2f0e49edf7c8136d50bd0ba929bdc07) \Device\Harddisk5\DR10\Partition0
01:25:12.0041 5564 \Device\Harddisk5\DR10\Partition0 - ok
01:25:12.0042 5564 ============================================================
01:25:12.0042 5564 Scan finished
01:25:12.0042 5564 ============================================================
01:25:12.0157 5084 Detected object count: 0
01:25:12.0157 5084 Actual detected object count: 0
01:38:35.0655 6120 Deinitialize success






Here is the aswMBR log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-04 15:00:07
-----------------------------
15:00:07.096 OS Version: Windows x64 6.1.7601 Service Pack 1
15:00:07.096 Number of processors: 2 586 0x170A
15:00:07.099 ComputerName: RICK-PC UserName: Rick
15:00:10.968 Initialize success
15:00:12.625 AVAST engine defs: 12060400
15:00:25.611 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
15:00:25.615 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 8
15:00:25.674 Disk 0 MBR read successfully
15:00:25.679 Disk 0 MBR scan
15:00:25.685 Disk 0 unknown MBR code
15:00:25.710 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
15:00:25.723 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 598028 MB offset 206848
15:00:25.753 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 12350 MB offset 1224968192
15:00:25.902 Disk 0 scanning C:\Windows\system32\drivers
15:00:36.761 Service scanning
15:00:58.797 Modules scanning
15:00:58.798 Disk 0 trace - called modules:
15:00:58.817 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
15:00:58.819 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003f64400]
15:00:58.819 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8003a35050]
15:01:01.301 AVAST engine scan C:\
15:05:40.978 Disk 0 MBR has been saved successfully to "C:\Users\Rick\Desktop\MBR.dat"
15:05:40.980 The log file has been saved successfully to "C:\Users\Rick\Desktop\aswMBR.txt"


Thanks!

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 04 June 2012 - 10:04 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 kaiserrick

kaiserrick
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:02 PM

Posted 06 June 2012 - 09:33 AM

Here's the Malwarebytes scan:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.05.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Rick :: RICK-PC [administrator]

6/4/2012 11:40:25 PM
mbam-log-2012-06-04 (23-40-25).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 623712
Time elapsed: 1 hour(s), 46 minute(s), 22 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




Here's the ESET scan:

C:\Program Files (x86)\Square Enix\Batman Arkham Asylum GOTY\Binaries\paul.dll a variant of Win32/Packed.VMProtect.AAH trojan cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\ActualSpy15.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\28sj9hgm.default\extensions\{6f55b19b-ac10-48e4-8385-03b080169db6}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\28sj9hgm.default\extensions\{6f55b19b-ac10-48e4-8385-03b080169db6}\chrome\xulcache.jar.vir JS/Agent.NDO trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\28sj9hgm.default\extensions\{a29e7026-c1f3-412a-8704-d08a1082d257}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\28sj9hgm.default\extensions\{a29e7026-c1f3-412a-8704-d08a1082d257}\chrome\xulcache.jar.vir JS/Agent.NDO trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\28sj9hgm.default\extensions\{f19e809b-8460-4043-80be-ff398b19f5c6}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\28sj9hgm.default\extensions\{f19e809b-8460-4043-80be-ff398b19f5c6}\chrome\xulcache.jar.vir JS/Agent.NDO trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\qor85drh.default\extensions\{6f55b19b-ac10-48e4-8385-03b080169db6}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\qor85drh.default\extensions\{6f55b19b-ac10-48e4-8385-03b080169db6}\chrome\xulcache.jar.vir JS/Agent.NDO trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\qor85drh.default\extensions\{a29e7026-c1f3-412a-8704-d08a1082d257}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\qor85drh.default\extensions\{a29e7026-c1f3-412a-8704-d08a1082d257}\chrome\xulcache.jar.vir JS/Agent.NDO trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\qor85drh.default\extensions\{f19e809b-8460-4043-80be-ff398b19f5c6}\chrome.manifest.vir Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\qor85drh.default\extensions\{f19e809b-8460-4043-80be-ff398b19f5c6}\chrome\xulcache.jar.vir JS/Agent.NDO trojan cleaned by deleting - quarantined
C:\Users\Rick\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\12beb5e4-6b7b1eaf multiple threats deleted - quarantined
C:\Users\Rick\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\6264c872-2d3acc2a a variant of Java/Exploit.CVE-2011-3544.AQ trojan deleted - quarantined
C:\Users\Rick\AppData\Roaming\4B5EE757E09D691D2859A58A40B059CD\enemies-names.txt Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined
C:\Users\Rick\AppData\Roaming\4B5EE757E09D691D2859A58A40B059CD\local.ini Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined
C:\Users\Rick\Downloads\7zipap_718.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Rick\Downloads\asc-setup(2).exe a variant of Win32/Toolbar.Widgi application deleted - quarantined
C:\Users\Rick\Downloads\baagoty-tvm\tvm-baagoty.iso a variant of Win32/Packed.VMProtect.AAH trojan deleted - quarantined




Here's the Rouge Killer scan:


RogueKiller V7.5.3 [06/05/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User: Rick [Admin rights]
Mode: HOSTSFix -- Date: 06/06/2012 09:24:12

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt






And here's the minitoolbox report:

MiniToolBox by Farbar Version: 04-06-2012
Ran by Rick (administrator) on 06-06-2012 at 09:25:36
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Rick-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 90-E6-BA-B3-80-15
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::1013:ac56:eade:9904%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, June 02, 2012 1:47:38 PM
Lease Expires . . . . . . . . . . : Wednesday, June 06, 2012 9:41:18 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 244377274
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-CB-E1-06-90-E6-BA-B3-80-15
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{BEF72E27-19B6-4A1E-AA45-AB65B555622F}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:8f:19c3:3f57:fefd(Preferred)
Link-local IPv6 Address . . . . . : fe80::8f:19c3:3f57:fefd%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4009:802::1008
74.125.225.105
74.125.225.110
74.125.225.96
74.125.225.97
74.125.225.98
74.125.225.99
74.125.225.100
74.125.225.101
74.125.225.102
74.125.225.103
74.125.225.104


Pinging google.com [74.125.225.98] with 32 bytes of data:
Reply from 74.125.225.98: bytes=32 time=24ms TTL=53
Reply from 74.125.225.98: bytes=32 time=21ms TTL=53

Ping statistics for 74.125.225.98:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 21ms, Maximum = 24ms, Average = 22ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=37ms TTL=48
Reply from 209.191.122.70: bytes=32 time=37ms TTL=48

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 37ms, Maximum = 37ms, Average = 37ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...90 e6 ba b3 80 15 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 276
192.168.1.2 255.255.255.255 On-link 192.168.1.2 276
192.168.1.255 255.255.255.255 On-link 192.168.1.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:4137:9e76:8f:19c3:3f57:fefd/128
On-link
10 276 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::8f:19c3:3f57:fefd/128
On-link
10 276 fe80::1013:ac56:eade:9904/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be %SystemRoot%\system32\NLAapi.dll

Catalog5 04 C:\Windows\SysWOW64\nwprovau.dll [File Not found] ()
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\winrnr.dll"

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/06/2012 05:54:39 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/05/2012 10:11:01 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/05/2012 05:31:17 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/05/2012 03:49:53 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/05/2012 00:50:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/05/2012 09:51:18 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/05/2012 05:12:49 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/04/2012 05:44:37 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/04/2012 07:44:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7956

Error: (06/04/2012 07:44:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7956


System errors:
=============
Error: (06/05/2012 07:19:55 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.127.1364.0).

Error: (06/05/2012 07:19:46 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (06/05/2012 06:22:11 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk5\DR14.

Error: (06/05/2012 06:22:10 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk5\DR14.

Error: (06/04/2012 10:25:33 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.127.1171.0).

Error: (06/04/2012 10:25:21 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (06/04/2012 03:44:32 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.127.1171.0).

Error: (06/04/2012 03:44:24 AM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (06/03/2012 11:53:44 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

Error: (06/03/2012 06:43:29 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.127.1171.0).


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 4.65
ActiveCheck component for HP Active Support Library (Version: 3.0.0.1)
Adobe Flash Player 10 ActiveX (Version: 10.3.183.10)
Adobe Flash Player 11 Plugin (Version: 11.0.1.152)
Adobe Reader 9.5.1 (Version: 9.5.1)
Advanced SystemCare 4 (Version: 4.1.0)
Advertising Center (Version: 0.0.0.1)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 7.0.1426.0)
BlackBerry Desktop Software 6.0.1 (Version: 6.0.1.18)
Bonjour (Version: 3.0.0.10)
Brothers in Arms: Hell's Highway
bsnes .87 (Version: .87)
calibre (Version: 0.8.38)
CameraHelperMsi (Version: 13.25.1010.0)
CamStudio
CCleaner (Version: 2.30)
Celtx (2.9.1) (Version: 2.9.1 (en-US))
Close Combat The Longest Day (Version: 5.50)
Close Combat Wacht am Rhein (Version: 4.50)
Combat Mission Afrika Korps
Company of Heroes: Opposing Fronts
Company of Heroes: Tales of Valor
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CyberLink DVD Suite Deluxe (Version: 6.0.3101)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.2.0287)
Debut Video Capture Software
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
DiskRedactor (Version: 1.2)
DivX Setup (Version: 2.2.1.2)
DivX Version Checker (Version: 7.1.0.9)
DolbyFiles (Version: 2.0)
Dropbox (Version: 1.2.52)
Dual-Core Optimizer (Version: 1.1.4.0169)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
DVD Shrink 3.2
DVDFab 7.0.6.7 (30/05/2010)
EasyCleaner (Version: 2.0.6.380)
EAX Unified
Eraser 5.8.8 (Version: Eraser 5.8.8)
Eraser 6.0.10.2620 (Version: 6.0.2620)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
FCEUX 2.1.5 (Version: 2.1.5)
Feedback Tool (Version: 1.1.0)
FileASSASSIN (Version: 1.06)
Freecorder 4 (Version: 5)
Game Booster (Version: 2.4.1.0)
GameSpy Arcade
Google Chrome (Version: 19.0.1084.52)
Google Update Helper (Version: 1.3.21.111)
Haali Media Splitter
Hardware Diagnostic Tools (Version: 6.0.5205.31)
HiJackThis (Version: 1.0.0)
HP Customer Experience Enhancements (Version: 5.7.0.3036)
HP MediaSmart Demo (Version: 1.00.0000)
HP MediaSmart DVD (Version: 3.0.3123)
HP MediaSmart Movie Themes (Version: 3.0.3102)
HP MediaSmart Music/Photo/Video (Version: 3.0.3205)
HP MediaSmart SmartMenu (Version: 3.0.28.2)
HP Odometer (Version: 2.10.0000)
HP Remote Solution (Version: 1.1.9.0)
HP Setup (Version: 1.2.3220.3079)
HP Support Assistant (Version: 4.1.11.3)
HP Support Information (Version: 10.1.0002)
HP Update (Version: 5.001.000.014)
HPAsset component for HP Active Support Library (Version: 3.0.0.2)
iCloud (Version: 1.1.0.40)
ImagXpress (Version: 7.0.74.0)
ImgBurn (Version: 2.5.5.0)
Intel® Matrix Storage Manager
IObit Malware Fighter (Version: 1.0)
ISODisk 1.1
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
Kega Fusion 3.64 (Version: 3.64)
LabelPrint (Version: 2.5.1901)
LightScribe System Software (Version: 1.18.8.1)
LockHunter version 1.0 beta 3, 64 bit edition
Logitech Vid HD (Version: 7.2 (7248))
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.20.1166.0)
LWS Gallery (Version: 13.20.1166.0)
LWS Help_main (Version: 13.25.1016.0)
LWS Launcher (Version: 13.10.1224.0)
LWS Motion Detection (Version: 13.10.1218.0)
LWS Pictures And Video (Version: 13.10.1218.0)
LWS Twitter (Version: 13.20.1166.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.00.1774.0)
LWS Webcam Software (Version: 13.20.1168.0)
LWS WLM Plugin (Version: 1.20.1166.0)
LWS YouTube Plugin (Version: 13.20.1166.0)
Mafia Game
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Matroska Pack
Max Payne
Max Payne 2: The Fall of Max Payne
Media Player Classic - Home Cinema v. 1.3.1249.0
Menu Templates - Starter Kit (Version: 9.0.4.0)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft IntelliPoint 7.1 (Version: 7.10.344.0)
Microsoft Live Search Toolbar (Version: 3.0.560.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 60 day trial
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual J# .NET Redistributable Package 1.1 (Version: 1.1.4322)
Microsoft Works (Version: 9.7.0621)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Movie Templates - Starter Kit (Version: 9.0.4.0)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA Display Control Panel (Version: 6.14.11.9745)
NVIDIA Drivers (Version: 1.10.59.37)
NVIDIA PhysX (Version: 9.10.0513)
Octoshape add-in for Adobe Flash Player
OeyEnc (Version: 1.0.601.0)
OpenAL
OpenOffice.org 3.1 (Version: 3.1.9420)
Original CD Emulator Personal Edition (Version: 2.4.0)
Pando Media Booster (Version: 2.3.6.0)
PC SleepTimer 1.0.0
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
PictureMover (Version: 3.3.1.19)
Power2Go (Version: 6.0.3101)
PowerDirector (Version: 7.0.3101)
PowerRecover (Version: 5.5.1931)
PunkBuster Services (Version: 0.986)
PVSonyDll (Version: 1.00.0001)
Python 2.5.2 (Version: 2.5.2150)
Python 2.7.1 (Version: 2.7.1150)
QuickStores-Toolbar 1.1.0 (Version: 1.1.0)
QuickTime (Version: 7.71.80.42)
Readiris Pro 7.5
Realtek High Definition Audio Driver (Version: 6.0.1.5898)
Recover My Files (Version: 4.6.6.830)
Recuva (Version: 1.41)
RollerCoaster Tycoon 3 Platinum (Version: 1.00.000)
Safari (Version: 5.34.55.3)
Samsung SCX-4100 Series
Sid Meier's Civilization V
Sid Meier's Railroads!
Skype Toolbars (Version: 5.2.4170)
Skype™ 5.1 (Version: 5.1.112)
SmarThru 4
Snes9x 1.52 (Version: 1.52)
SoundTrax (Version: 4.0.18.0)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
The Sims™ 3 (Version: 1.8.25)
Tom Clancy's Rainbow Six Vegas 2 (Version: 1.03)
Unlocker 1.9.1 (Version: 1.9.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
VLC media player 1.1.9 (Version: 1.1.9)
Warhammer® 40,000™: Dawn of War® II
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live Family Safety (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Updater Component (Version: 04.07.1404.01)
Windows Movie Maker 2.6 (Version: 2.6.4038.0)
WinRAR archiver
WinX Free DVD Ripper 4.5.6
Wisdom-soft Set up ScreenHunter 5.1 Free
Wrye Bash (Version: 2.9.4.2)
X-COM: Apocalypse
Xvid 1.2.2 final uninstall (Version: 1.2)
ZSNESw 1.51 (Version: 1.51)
Zune (Version: 04.07.1404.01)
Zune Language Pack (DEU) (Version: 04.07.1404.01)
Zune Language Pack (ESP) (Version: 04.07.1404.01)
Zune Language Pack (FRA) (Version: 04.07.1404.01)
Zune Language Pack (ITA) (Version: 04.07.1404.01)
Zune Language Pack (NLD) (Version: 04.07.1404.01)
Zune Language Pack (PTB) (Version: 04.07.1404.01)
Zune Language Pack (PTG) (Version: 04.07.1404.01)

========================= Memory info: ===================================

Percentage of memory in use: 70%
Total physical RAM: 3071.23 MB
Available physical RAM: 904.35 MB
Total Pagefile: 7024.71 MB
Available Pagefile: 1737.88 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.51 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:584.01 GB) (Free:64.28 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:12.06 GB) (Free:2.18 GB) NTFS
8 Drive j: (DV_907) (CDROM) (Total:4.36 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\RICK-PC

Administrator ASPNET Guest
Rick Mcx1-RICK-PC Mcx2-RICK-PC


**** End of log ****


Thanks!

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 06 June 2012 - 10:24 AM

It seems you ran combofix before following my instructions.Combofix should not be used without proper guidance.

Click on startmenu and type

cmd

right click on it and select run as administrator & run this command

netsh winsock reset

press ENTER

Restart the PC,launch mini toolbox again and check mark

List winsock entries alone

Click on GO and post the result

Edited by narenxp, 06 June 2012 - 10:25 AM.


#7 kaiserrick

kaiserrick
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:02 PM

Posted 06 June 2012 - 02:15 PM

Sorry about the Combofix, I used it before I posted on here. I'll be more careful before employing such in the future.

The minitoolbox log read:


an by Rick (administrator) on 06-06-2012 at 14:13:48
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be %SystemRoot%\system32\NLAapi.dll

Catalog5 04 C:\Windows\SysWOW64\nwprovau.dll [File Not found] ()
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\winrnr.dll"

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 06 June 2012 - 02:24 PM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#9 kaiserrick

kaiserrick
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:02 PM

Posted 06 June 2012 - 05:19 PM

Thanks so much! I do believe the bug is gone, finally! I greatly appreciate your assistance.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:02 PM

Posted 06 June 2012 - 07:45 PM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users