Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Trojan.Dropper/SVCHost-Fake and Firefox browser redirecting


  • Please log in to reply
9 replies to this topic

#1 Mark U

Mark U

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 19 June 2012 - 06:54 PM

Just within the last day and a half Ive come to realize that I am infected with one of the hardest viruses to get rid of... google redirect virus. I've run a number of programs to try and get rid of it, but nothing has been successful. I have run Malwarebytes, which did not pick anything up. I ran MSE and didn't catch anything. I ran SAS and it was the only program that gave me the detected threat. I know that it is not an extreme virus, but it is extremely annoying. Any help would be great!

Edit: Moved topic from Windows 7 to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:40 PM

Posted 19 June 2012 - 07:47 PM

Hello, did you run RKill before SAS and MBAM?

RKill....

Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


Immediately run.

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. [color=green]In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.



Now SAS and MABM.

Let me see the logs and tell me how it is.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Mark U

Mark U
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 19 June 2012 - 08:36 PM

RKill:

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 06/19/2012 at 20:52:09.
Operating System: Windows 7 Home Premium


Processes terminated by Rkill or while it was running:

C:\Users\Mark\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Windows\SysWOW64\rundll32.exe


Rkill completed on 06/19/2012 at 20:52:17.


TDSS:

20:52:56.0648 0660 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
20:52:57.0007 0660 ============================================================
20:52:57.0007 0660 Current date / time: 2012/06/19 20:52:57.0007
20:52:57.0007 0660 SystemInfo:
20:52:57.0007 0660
20:52:57.0007 0660 OS Version: 6.1.7601 ServicePack: 1.0
20:52:57.0007 0660 Product type: Workstation
20:52:57.0007 0660 ComputerName: MARK-PC
20:52:57.0022 0660 UserName: Mark
20:52:57.0022 0660 Windows directory: C:\Windows
20:52:57.0022 0660 System windows directory: C:\Windows
20:52:57.0022 0660 Running under WOW64
20:52:57.0022 0660 Processor architecture: Intel x64
20:52:57.0022 0660 Number of processors: 2
20:52:57.0022 0660 Page size: 0x1000
20:52:57.0022 0660 Boot type: Normal boot
20:52:57.0022 0660 ============================================================
20:52:58.0380 0660 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:52:58.0395 0660 ============================================================
20:52:58.0395 0660 \Device\Harddisk0\DR0:
20:52:58.0395 0660 MBR partitions:
20:52:58.0395 0660 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
20:52:58.0395 0660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x236CE8EB
20:52:58.0395 0660 ============================================================
20:52:58.0442 0660 C: <-> \Device\Harddisk0\DR0\Partition1
20:52:58.0473 0660 D: <-> \Device\Harddisk0\DR0\Partition0
20:52:58.0473 0660 ============================================================
20:52:58.0473 0660 Initialize success
20:52:58.0473 0660 ============================================================
20:53:07.0537 1804 ============================================================
20:53:07.0537 1804 Scan started
20:53:07.0537 1804 Mode: Manual;
20:53:07.0537 1804 ============================================================
20:53:08.0317 1804 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
20:53:08.0317 1804 1394ohci - ok
20:53:08.0379 1804 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
20:53:08.0395 1804 ACPI - ok
20:53:08.0426 1804 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
20:53:08.0426 1804 AcpiPmi - ok
20:53:08.0551 1804 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:53:08.0551 1804 AdobeARMservice - ok
20:53:08.0738 1804 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:53:08.0738 1804 AdobeFlashPlayerUpdateSvc - ok
20:53:08.0800 1804 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
20:53:08.0816 1804 adp94xx - ok
20:53:08.0894 1804 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
20:53:08.0910 1804 adpahci - ok
20:53:08.0941 1804 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
20:53:08.0956 1804 adpu320 - ok
20:53:08.0988 1804 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
20:53:08.0988 1804 AeLookupSvc - ok
20:53:09.0097 1804 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
20:53:09.0097 1804 AESTFilters - ok
20:53:09.0159 1804 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
20:53:09.0159 1804 AFD - ok
20:53:09.0206 1804 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
20:53:09.0222 1804 agp440 - ok
20:53:09.0253 1804 aksdf (94c0972b06c75456ed574dd46417b1d8) C:\Windows\system32\drivers\aksdf.sys
20:53:09.0268 1804 aksdf - ok
20:53:09.0315 1804 aksfridge (7b0bc062ca6abab23f88ea483b5a538e) C:\Windows\system32\drivers\aksfridge.sys
20:53:09.0331 1804 aksfridge - ok
20:53:09.0362 1804 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
20:53:09.0362 1804 ALG - ok
20:53:09.0378 1804 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
20:53:09.0378 1804 aliide - ok
20:53:09.0393 1804 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
20:53:09.0409 1804 amdide - ok
20:53:09.0440 1804 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
20:53:09.0440 1804 AmdK8 - ok
20:53:09.0456 1804 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
20:53:09.0456 1804 AmdPPM - ok
20:53:09.0502 1804 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
20:53:09.0518 1804 amdsata - ok
20:53:09.0549 1804 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
20:53:09.0565 1804 amdsbs - ok
20:53:09.0580 1804 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
20:53:09.0580 1804 amdxata - ok
20:53:09.0627 1804 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
20:53:09.0627 1804 AppID - ok
20:53:09.0658 1804 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
20:53:09.0658 1804 AppIDSvc - ok
20:53:09.0705 1804 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
20:53:09.0705 1804 Appinfo - ok
20:53:09.0799 1804 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:53:09.0799 1804 Apple Mobile Device - ok
20:53:09.0908 1804 appliand (0eeff7103e4f3e783f3d2b870af67f1c) C:\Windows\system32\DRIVERS\appliand.sys
20:53:09.0908 1804 appliand - ok
20:53:09.0908 1804 appliandMP (0eeff7103e4f3e783f3d2b870af67f1c) C:\Windows\system32\DRIVERS\appliand.sys
20:53:09.0908 1804 appliandMP - ok
20:53:09.0939 1804 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
20:53:09.0939 1804 arc - ok
20:53:09.0970 1804 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
20:53:09.0970 1804 arcsas - ok
20:53:10.0111 1804 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:53:10.0111 1804 aspnet_state - ok
20:53:10.0142 1804 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
20:53:10.0142 1804 AsyncMac - ok
20:53:10.0173 1804 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
20:53:10.0173 1804 atapi - ok
20:53:10.0282 1804 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
20:53:10.0298 1804 AudioEndpointBuilder - ok
20:53:10.0314 1804 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
20:53:10.0314 1804 AudioSrv - ok
20:53:10.0360 1804 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
20:53:10.0376 1804 AxInstSV - ok
20:53:10.0423 1804 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
20:53:10.0438 1804 b06bdrv - ok
20:53:10.0470 1804 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
20:53:10.0485 1804 b57nd60a - ok
20:53:10.0766 1804 BCM43XX (fb4fda64f2e8552eaeb5986c3f34462c) C:\Windows\system32\DRIVERS\bcmwl664.sys
20:53:10.0797 1804 BCM43XX - ok
20:53:10.0922 1804 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
20:53:10.0938 1804 BDESVC - ok
20:53:10.0984 1804 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
20:53:10.0984 1804 Beep - ok
20:53:11.0094 1804 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
20:53:11.0109 1804 BFE - ok
20:53:11.0406 1804 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
20:53:11.0452 1804 BITS - ok
20:53:11.0484 1804 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
20:53:11.0484 1804 blbdrive - ok
20:53:11.0577 1804 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
20:53:11.0593 1804 Bonjour Service - ok
20:53:11.0624 1804 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
20:53:11.0624 1804 bowser - ok
20:53:11.0655 1804 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:53:11.0655 1804 BrFiltLo - ok
20:53:11.0671 1804 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:53:11.0671 1804 BrFiltUp - ok
20:53:11.0702 1804 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
20:53:11.0702 1804 BridgeMP - ok
20:53:11.0749 1804 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
20:53:11.0749 1804 Browser - ok
20:53:11.0796 1804 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
20:53:11.0796 1804 Brserid - ok
20:53:11.0827 1804 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
20:53:11.0827 1804 BrSerWdm - ok
20:53:11.0842 1804 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:53:11.0842 1804 BrUsbMdm - ok
20:53:11.0858 1804 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
20:53:11.0858 1804 BrUsbSer - ok
20:53:11.0889 1804 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
20:53:11.0889 1804 BTHMODEM - ok
20:53:11.0920 1804 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
20:53:11.0920 1804 bthserv - ok
20:53:11.0952 1804 catchme - ok
20:53:11.0983 1804 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
20:53:11.0983 1804 cdfs - ok
20:53:12.0030 1804 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
20:53:12.0045 1804 cdrom - ok
20:53:12.0092 1804 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
20:53:12.0092 1804 CertPropSvc - ok
20:53:12.0108 1804 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
20:53:12.0108 1804 circlass - ok
20:53:12.0170 1804 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
20:53:12.0170 1804 CLFS - ok
20:53:12.0248 1804 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:53:12.0248 1804 clr_optimization_v2.0.50727_32 - ok
20:53:12.0326 1804 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:53:12.0326 1804 clr_optimization_v2.0.50727_64 - ok
20:53:12.0435 1804 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:53:12.0435 1804 clr_optimization_v4.0.30319_32 - ok
20:53:12.0482 1804 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:53:12.0482 1804 clr_optimization_v4.0.30319_64 - ok
20:53:12.0498 1804 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
20:53:12.0498 1804 CmBatt - ok
20:53:12.0529 1804 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
20:53:12.0529 1804 cmdide - ok
20:53:12.0591 1804 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
20:53:12.0607 1804 CNG - ok
20:53:12.0622 1804 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
20:53:12.0622 1804 Compbatt - ok
20:53:12.0654 1804 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
20:53:12.0669 1804 CompositeBus - ok
20:53:12.0669 1804 COMSysApp - ok
20:53:12.0747 1804 cpuz134 - ok
20:53:12.0794 1804 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
20:53:12.0794 1804 crcdisk - ok
20:53:12.0856 1804 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
20:53:12.0856 1804 CryptSvc - ok
20:53:12.0888 1804 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:53:12.0903 1804 CtClsFlt - ok
20:53:12.0981 1804 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
20:53:12.0997 1804 DcomLaunch - ok
20:53:13.0044 1804 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
20:53:13.0075 1804 defragsvc - ok
20:53:13.0137 1804 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
20:53:13.0137 1804 DfsC - ok
20:53:13.0231 1804 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
20:53:13.0246 1804 Dhcp - ok
20:53:13.0293 1804 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
20:53:13.0293 1804 discache - ok
20:53:13.0340 1804 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
20:53:13.0340 1804 Disk - ok
20:53:13.0340 1804 dlcc_device - ok
20:53:13.0402 1804 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
20:53:13.0402 1804 Dnscache - ok
20:53:13.0465 1804 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
20:53:13.0480 1804 dot3svc - ok
20:53:13.0527 1804 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
20:53:13.0527 1804 DPS - ok
20:53:13.0574 1804 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
20:53:13.0574 1804 drmkaud - ok
20:53:13.0683 1804 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
20:53:13.0699 1804 DXGKrnl - ok
20:53:13.0746 1804 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
20:53:13.0746 1804 EapHost - ok
20:53:14.0058 1804 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
20:53:14.0120 1804 ebdrv - ok
20:53:14.0245 1804 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
20:53:14.0245 1804 EFS - ok
20:53:14.0370 1804 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
20:53:14.0370 1804 ehRecvr - ok
20:53:14.0416 1804 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
20:53:14.0432 1804 ehSched - ok
20:53:14.0526 1804 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
20:53:14.0541 1804 elxstor - ok
20:53:14.0572 1804 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
20:53:14.0572 1804 ErrDev - ok
20:53:14.0666 1804 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
20:53:14.0682 1804 EventSystem - ok
20:53:14.0713 1804 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
20:53:14.0728 1804 exfat - ok
20:53:14.0760 1804 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
20:53:14.0760 1804 fastfat - ok
20:53:14.0869 1804 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
20:53:14.0884 1804 Fax - ok
20:53:14.0916 1804 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
20:53:14.0916 1804 fdc - ok
20:53:14.0931 1804 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
20:53:14.0931 1804 fdPHost - ok
20:53:14.0947 1804 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
20:53:14.0962 1804 FDResPub - ok
20:53:14.0978 1804 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
20:53:14.0994 1804 FileInfo - ok
20:53:15.0009 1804 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
20:53:15.0009 1804 Filetrace - ok
20:53:15.0025 1804 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
20:53:15.0025 1804 flpydisk - ok
20:53:15.0072 1804 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
20:53:15.0087 1804 FltMgr - ok
20:53:15.0212 1804 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
20:53:15.0228 1804 FontCache - ok
20:53:15.0306 1804 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:53:15.0306 1804 FontCache3.0.0.0 - ok
20:53:15.0352 1804 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
20:53:15.0368 1804 FsDepends - ok
20:53:15.0430 1804 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
20:53:15.0430 1804 fssfltr - ok
20:53:15.0664 1804 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:53:15.0696 1804 fsssvc - ok
20:53:15.0836 1804 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
20:53:15.0836 1804 Fs_Rec - ok
20:53:15.0883 1804 FTDIBUS (0f210048c6bfbfbc0f50816bce40b575) C:\Windows\system32\drivers\ftdibus.sys
20:53:15.0883 1804 FTDIBUS - ok
20:53:15.0930 1804 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
20:53:15.0945 1804 fvevol - ok
20:53:15.0992 1804 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:53:15.0992 1804 gagp30kx - ok
20:53:16.0023 1804 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:53:16.0023 1804 GEARAspiWDM - ok
20:53:16.0132 1804 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
20:53:16.0148 1804 gpsvc - ok
20:53:16.0195 1804 hardlock (78fad9117e4527f2ca82259da10f40bd) C:\Windows\system32\drivers\hardlock.sys
20:53:16.0195 1804 hardlock - ok
20:53:16.0210 1804 hasplms - ok
20:53:16.0226 1804 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
20:53:16.0226 1804 hcw85cir - ok
20:53:16.0273 1804 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
20:53:16.0288 1804 HDAudBus - ok
20:53:16.0304 1804 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
20:53:16.0304 1804 HidBatt - ok
20:53:16.0335 1804 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
20:53:16.0335 1804 HidBth - ok
20:53:16.0366 1804 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
20:53:16.0366 1804 HidIr - ok
20:53:16.0398 1804 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
20:53:16.0398 1804 hidserv - ok
20:53:16.0413 1804 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
20:53:16.0429 1804 HidUsb - ok
20:53:16.0460 1804 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
20:53:16.0476 1804 hkmsvc - ok
20:53:16.0538 1804 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
20:53:16.0538 1804 HomeGroupListener - ok
20:53:16.0585 1804 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
20:53:16.0585 1804 HomeGroupProvider - ok
20:53:16.0632 1804 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
20:53:16.0632 1804 HpSAMD - ok
20:53:16.0741 1804 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
20:53:16.0756 1804 HTTP - ok
20:53:16.0803 1804 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
20:53:16.0803 1804 hwpolicy - ok
20:53:16.0834 1804 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
20:53:16.0834 1804 i8042prt - ok
20:53:16.0897 1804 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
20:53:16.0912 1804 iaStorV - ok
20:53:17.0084 1804 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:53:17.0100 1804 idsvc - ok
20:53:18.0051 1804 igfx (c6238c6abd6ac99f5d152da4e9439a3d) C:\Windows\system32\DRIVERS\igdkmd64.sys
20:53:18.0301 1804 igfx - ok
20:53:18.0441 1804 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
20:53:18.0441 1804 iirsp - ok
20:53:18.0566 1804 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
20:53:18.0597 1804 IKEEXT - ok
20:53:18.0628 1804 IntcHdmiAddService (d485d3bd3e2179aa86853a182f70699f) C:\Windows\system32\drivers\IntcHdmi.sys
20:53:18.0644 1804 IntcHdmiAddService - ok
20:53:18.0675 1804 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
20:53:18.0675 1804 intelide - ok
20:53:18.0691 1804 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
20:53:18.0706 1804 intelppm - ok
20:53:18.0738 1804 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
20:53:18.0753 1804 IPBusEnum - ok
20:53:18.0784 1804 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:53:18.0800 1804 IpFilterDriver - ok
20:53:18.0894 1804 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
20:53:18.0909 1804 iphlpsvc - ok
20:53:18.0940 1804 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
20:53:18.0956 1804 IPMIDRV - ok
20:53:18.0987 1804 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
20:53:19.0003 1804 IPNAT - ok
20:53:19.0174 1804 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
20:53:19.0174 1804 iPod Service - ok
20:53:19.0206 1804 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
20:53:19.0206 1804 IRENUM - ok
20:53:19.0237 1804 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
20:53:19.0237 1804 isapnp - ok
20:53:19.0284 1804 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
20:53:19.0299 1804 iScsiPrt - ok
20:53:19.0362 1804 k57nd60a (7dbafe10c1b777305c80bea42fbda710) C:\Windows\system32\DRIVERS\k57nd60a.sys
20:53:19.0377 1804 k57nd60a - ok
20:53:19.0393 1804 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
20:53:19.0393 1804 kbdclass - ok
20:53:19.0424 1804 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
20:53:19.0424 1804 kbdhid - ok
20:53:19.0455 1804 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:19.0471 1804 KeyIso - ok
20:53:19.0502 1804 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
20:53:19.0502 1804 KSecDD - ok
20:53:19.0533 1804 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
20:53:19.0533 1804 KSecPkg - ok
20:53:19.0549 1804 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
20:53:19.0549 1804 ksthunk - ok
20:53:19.0611 1804 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
20:53:19.0611 1804 KtmRm - ok
20:53:19.0658 1804 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
20:53:19.0674 1804 LanmanServer - ok
20:53:19.0720 1804 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
20:53:19.0720 1804 LanmanWorkstation - ok
20:53:19.0736 1804 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
20:53:19.0736 1804 lltdio - ok
20:53:19.0798 1804 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
20:53:19.0814 1804 lltdsvc - ok
20:53:19.0830 1804 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
20:53:19.0845 1804 lmhosts - ok
20:53:19.0876 1804 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:53:19.0892 1804 LSI_FC - ok
20:53:19.0908 1804 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:53:19.0923 1804 LSI_SAS - ok
20:53:19.0939 1804 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:53:19.0939 1804 LSI_SAS2 - ok
20:53:19.0970 1804 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:53:19.0986 1804 LSI_SCSI - ok
20:53:20.0017 1804 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
20:53:20.0017 1804 luafv - ok
20:53:20.0064 1804 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
20:53:20.0064 1804 Mcx2Svc - ok
20:53:20.0095 1804 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
20:53:20.0095 1804 megasas - ok
20:53:20.0126 1804 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
20:53:20.0142 1804 MegaSR - ok
20:53:20.0266 1804 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
20:53:20.0266 1804 Microsoft Office Groove Audit Service - ok
20:53:20.0313 1804 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
20:53:20.0313 1804 MMCSS - ok
20:53:20.0368 1804 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
20:53:20.0370 1804 Modem - ok
20:53:20.0380 1804 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
20:53:20.0381 1804 monitor - ok
20:53:20.0418 1804 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
20:53:20.0419 1804 mouclass - ok
20:53:20.0444 1804 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
20:53:20.0446 1804 mouhid - ok
20:53:20.0488 1804 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
20:53:20.0490 1804 mountmgr - ok
20:53:20.0576 1804 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:53:20.0577 1804 MozillaMaintenance - ok
20:53:20.0640 1804 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
20:53:20.0643 1804 MpFilter - ok
20:53:20.0688 1804 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
20:53:20.0701 1804 mpio - ok
20:53:20.0727 1804 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
20:53:20.0729 1804 mpsdrv - ok
20:53:20.0839 1804 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
20:53:20.0853 1804 MpsSvc - ok
20:53:20.0892 1804 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
20:53:20.0906 1804 MRxDAV - ok
20:53:20.0959 1804 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:53:20.0971 1804 mrxsmb - ok
20:53:21.0029 1804 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:53:21.0044 1804 mrxsmb10 - ok
20:53:21.0078 1804 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:53:21.0092 1804 mrxsmb20 - ok
20:53:21.0129 1804 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
20:53:21.0130 1804 msahci - ok
20:53:21.0179 1804 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
20:53:21.0193 1804 msdsm - ok
20:53:21.0225 1804 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
20:53:21.0237 1804 MSDTC - ok
20:53:21.0278 1804 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
20:53:21.0280 1804 Msfs - ok
20:53:21.0296 1804 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
20:53:21.0297 1804 mshidkmdf - ok
20:53:21.0329 1804 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
20:53:21.0330 1804 msisadrv - ok
20:53:21.0364 1804 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
20:53:21.0375 1804 MSiSCSI - ok
20:53:21.0381 1804 msiserver - ok
20:53:21.0401 1804 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
20:53:21.0403 1804 MSKSSRV - ok
20:53:21.0555 1804 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:53:21.0556 1804 MsMpSvc - ok
20:53:21.0565 1804 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
20:53:21.0567 1804 MSPCLOCK - ok
20:53:21.0573 1804 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
20:53:21.0574 1804 MSPQM - ok
20:53:21.0640 1804 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
20:53:21.0646 1804 MsRPC - ok
20:53:21.0687 1804 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
20:53:21.0688 1804 mssmbios - ok
20:53:21.0696 1804 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
20:53:21.0698 1804 MSTEE - ok
20:53:21.0715 1804 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
20:53:21.0716 1804 MTConfig - ok
20:53:21.0748 1804 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
20:53:21.0749 1804 Mup - ok
20:53:21.0831 1804 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
20:53:21.0843 1804 napagent - ok
20:53:21.0875 1804 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
20:53:21.0889 1804 NativeWifiP - ok
20:53:21.0997 1804 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
20:53:22.0017 1804 NDIS - ok
20:53:22.0044 1804 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
20:53:22.0046 1804 NdisCap - ok
20:53:22.0069 1804 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
20:53:22.0070 1804 NdisTapi - ok
20:53:22.0120 1804 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
20:53:22.0122 1804 Ndisuio - ok
20:53:22.0171 1804 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
20:53:22.0183 1804 NdisWan - ok
20:53:22.0230 1804 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
20:53:22.0232 1804 NDProxy - ok
20:53:22.0255 1804 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
20:53:22.0256 1804 NetBIOS - ok
20:53:22.0306 1804 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
20:53:22.0323 1804 NetBT - ok
20:53:22.0381 1804 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:22.0383 1804 Netlogon - ok
20:53:22.0439 1804 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
20:53:22.0445 1804 Netman - ok
20:53:22.0560 1804 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0573 1804 NetMsmqActivator - ok
20:53:22.0579 1804 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0581 1804 NetPipeActivator - ok
20:53:22.0635 1804 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
20:53:22.0644 1804 netprofm - ok
20:53:22.0650 1804 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0652 1804 NetTcpActivator - ok
20:53:22.0661 1804 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0663 1804 NetTcpPortSharing - ok
20:53:22.0712 1804 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
20:53:22.0714 1804 nfrd960 - ok
20:53:22.0785 1804 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:53:22.0788 1804 NisDrv - ok
20:53:22.0941 1804 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
20:53:22.0955 1804 NisSrv - ok
20:53:23.0017 1804 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
20:53:23.0031 1804 NlaSvc - ok
20:53:23.0050 1804 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
20:53:23.0052 1804 Npfs - ok
20:53:23.0083 1804 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
20:53:23.0086 1804 nsi - ok
20:53:23.0098 1804 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
20:53:23.0099 1804 nsiproxy - ok
20:53:23.0288 1804 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
20:53:23.0323 1804 Ntfs - ok
20:53:23.0469 1804 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
20:53:23.0470 1804 Null - ok
20:53:23.0513 1804 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
20:53:23.0526 1804 nvraid - ok
20:53:23.0559 1804 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
20:53:23.0571 1804 nvstor - ok
20:53:23.0598 1804 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
20:53:23.0612 1804 nv_agp - ok
20:53:23.0651 1804 OA008Ufd (d09cc91e92fd1ff81af3a14be2cbb20d) C:\Windows\system32\DRIVERS\OA008Ufd.sys
20:53:23.0662 1804 OA008Ufd - ok
20:53:23.0702 1804 OA008Vid (60fd277cfd34f680a1668ac123b324ae) C:\Windows\system32\DRIVERS\OA008Vid.sys
20:53:23.0716 1804 OA008Vid - ok
20:53:23.0839 1804 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:53:23.0855 1804 odserv - ok
20:53:23.0888 1804 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
20:53:23.0890 1804 ohci1394 - ok
20:53:23.0955 1804 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:53:23.0957 1804 ose - ok
20:53:24.0569 1804 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:53:24.0681 1804 osppsvc - ok
20:53:24.0831 1804 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
20:53:24.0837 1804 p2pimsvc - ok
20:53:24.0891 1804 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
20:53:24.0900 1804 p2psvc - ok
20:53:24.0950 1804 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
20:53:24.0965 1804 Parport - ok
20:53:25.0010 1804 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
20:53:25.0012 1804 partmgr - ok
20:53:25.0047 1804 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
20:53:25.0058 1804 PcaSvc - ok
20:53:25.0107 1804 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
20:53:25.0110 1804 pci - ok
20:53:25.0147 1804 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
20:53:25.0148 1804 pciide - ok
20:53:25.0187 1804 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
20:53:25.0196 1804 pcmcia - ok
20:53:25.0221 1804 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
20:53:25.0223 1804 pcw - ok
20:53:25.0321 1804 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
20:53:25.0382 1804 PEAUTH - ok
20:53:25.0537 1804 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
20:53:25.0540 1804 PerfHost - ok
20:53:25.0716 1804 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
20:53:25.0749 1804 pla - ok
20:53:25.0819 1804 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
20:53:25.0838 1804 PlugPlay - ok
20:53:25.0864 1804 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
20:53:25.0868 1804 PNRPAutoReg - ok
20:53:25.0911 1804 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
20:53:25.0916 1804 PNRPsvc - ok
20:53:25.0975 1804 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
20:53:25.0984 1804 PolicyAgent - ok
20:53:26.0034 1804 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
20:53:26.0038 1804 Power - ok
20:53:26.0099 1804 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
20:53:26.0114 1804 PptpMiniport - ok
20:53:26.0149 1804 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
20:53:26.0151 1804 Processor - ok
20:53:26.0197 1804 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
20:53:26.0202 1804 ProfSvc - ok
20:53:26.0241 1804 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:26.0243 1804 ProtectedStorage - ok
20:53:26.0286 1804 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
20:53:26.0302 1804 Psched - ok
20:53:26.0340 1804 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
20:53:26.0341 1804 PxHlpa64 - ok
20:53:26.0497 1804 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
20:53:26.0530 1804 ql2300 - ok
20:53:26.0673 1804 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
20:53:26.0687 1804 ql40xx - ok
20:53:26.0737 1804 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
20:53:26.0754 1804 QWAVE - ok
20:53:26.0767 1804 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
20:53:26.0769 1804 QWAVEdrv - ok
20:53:26.0787 1804 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
20:53:26.0788 1804 RasAcd - ok
20:53:26.0822 1804 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:53:26.0823 1804 RasAgileVpn - ok
20:53:26.0849 1804 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
20:53:26.0865 1804 RasAuto - ok
20:53:26.0913 1804 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:53:26.0927 1804 Rasl2tp - ok
20:53:26.0995 1804 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
20:53:27.0006 1804 RasMan - ok
20:53:27.0030 1804 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
20:53:27.0033 1804 RasPppoe - ok
20:53:27.0059 1804 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
20:53:27.0061 1804 RasSstp - ok
20:53:27.0091 1804 rcmirror (96597c96d5acf4a3ef0b24d396853879) C:\Windows\system32\DRIVERS\rcmirror.sys
20:53:27.0093 1804 rcmirror - ok
20:53:27.0152 1804 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
20:53:27.0166 1804 rdbss - ok
20:53:27.0191 1804 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
20:53:27.0193 1804 rdpbus - ok
20:53:27.0210 1804 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:53:27.0211 1804 RDPCDD - ok
20:53:27.0223 1804 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
20:53:27.0224 1804 RDPENCDD - ok
20:53:27.0250 1804 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
20:53:27.0251 1804 RDPREFMP - ok
20:53:27.0311 1804 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
20:53:27.0319 1804 RDPWD - ok
20:53:27.0380 1804 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
20:53:27.0383 1804 rdyboost - ok
20:53:27.0467 1804 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
20:53:27.0483 1804 RemoteAccess - ok
20:53:27.0560 1804 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
20:53:27.0573 1804 RemoteRegistry - ok
20:53:27.0606 1804 rimmptsk (6faf5b04bedc66d300d9d233b2d222f0) C:\Windows\system32\DRIVERS\rimmpx64.sys
20:53:27.0608 1804 rimmptsk - ok
20:53:27.0651 1804 rimsptsk (67f50c31713106fd1b0f286f86aa2b2e) C:\Windows\system32\DRIVERS\rimspx64.sys
20:53:27.0653 1804 rimsptsk - ok
20:53:27.0683 1804 RimUsb (5790bca445cc40df8b38c2c48608aac2) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
20:53:27.0684 1804 RimUsb - ok
20:53:27.0709 1804 RimVSerPort (c903d49655b4aae46673f0aaa6be0f58) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
20:53:27.0711 1804 RimVSerPort - ok
20:53:27.0757 1804 rismxdp (4d7ef3d46346ec4c58784db964b365de) C:\Windows\system32\DRIVERS\rixdpx64.sys
20:53:27.0759 1804 rismxdp - ok
20:53:27.0794 1804 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
20:53:27.0795 1804 ROOTMODEM - ok
20:53:27.0890 1804 Roxio UPnP Renderer 9 (afd61a7c48a3e15c86a6fadf0b69a2e4) C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
20:53:27.0892 1804 Roxio UPnP Renderer 9 - ok
20:53:27.0934 1804 Roxio Upnp Server 9 (efbb36e2bb02169d26e9980778fc20d3) C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
20:53:27.0940 1804 Roxio Upnp Server 9 - ok
20:53:28.0058 1804 RoxLiveShare9 (78e680a105f47b6aa0003bd23ed9fa51) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
20:53:28.0065 1804 RoxLiveShare9 - ok
20:53:28.0191 1804 RoxMediaDB9 (9d5c024170c376d7cc66ed853fda9068) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
20:53:28.0229 1804 RoxMediaDB9 - ok
20:53:28.0275 1804 RoxWatch9 (87f175539dbba297018aa7fcdd563ff7) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
20:53:28.0286 1804 RoxWatch9 - ok
20:53:28.0400 1804 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
20:53:28.0404 1804 RpcEptMapper - ok
20:53:28.0430 1804 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
20:53:28.0433 1804 RpcLocator - ok
20:53:28.0514 1804 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
20:53:28.0525 1804 RpcSs - ok
20:53:28.0576 1804 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
20:53:28.0579 1804 rspndr - ok
20:53:28.0618 1804 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:28.0620 1804 SamSs - ok
20:53:28.0726 1804 SASDIFSV (99df79c258b3342b6c8a5f802998de56) C:\Users\Mark\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.SYS
20:53:28.0727 1804 SASDIFSV - ok
20:53:28.0740 1804 SASKUTIL (2859c35c0651e8eb0d86d48e740388f2) C:\Users\Mark\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.SYS
20:53:28.0741 1804 SASKUTIL - ok
20:53:28.0778 1804 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
20:53:28.0780 1804 sbp2port - ok
20:53:28.0929 1804 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
20:53:28.0941 1804 SBSDWSCService - ok
20:53:28.0985 1804 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
20:53:28.0995 1804 SCardSvr - ok
20:53:29.0061 1804 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
20:53:29.0062 1804 scfilter - ok
20:53:29.0191 1804 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
20:53:29.0205 1804 Schedule - ok
20:53:29.0250 1804 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
20:53:29.0252 1804 SCPolicySvc - ok
20:53:29.0304 1804 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
20:53:29.0318 1804 sdbus - ok
20:53:29.0370 1804 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
20:53:29.0381 1804 SDRSVC - ok
20:53:29.0413 1804 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
20:53:29.0414 1804 secdrv - ok
20:53:29.0460 1804 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
20:53:29.0464 1804 seclogon - ok
20:53:29.0492 1804 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
20:53:29.0496 1804 SENS - ok
20:53:29.0521 1804 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
20:53:29.0525 1804 SensrSvc - ok
20:53:29.0550 1804 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
20:53:29.0551 1804 Serenum - ok
20:53:29.0572 1804 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
20:53:29.0578 1804 Serial - ok
20:53:29.0620 1804 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
20:53:29.0621 1804 sermouse - ok
20:53:29.0690 1804 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
20:53:29.0704 1804 SessionEnv - ok
20:53:29.0735 1804 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
20:53:29.0737 1804 sffdisk - ok
20:53:29.0762 1804 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
20:53:29.0764 1804 sffp_mmc - ok
20:53:29.0783 1804 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\DRIVERS\sffp_sd.sys
20:53:29.0784 1804 sffp_sd - ok
20:53:29.0809 1804 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
20:53:29.0811 1804 sfloppy - ok
20:53:29.0903 1804 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
20:53:29.0923 1804 SharedAccess - ok
20:53:30.0027 1804 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
20:53:30.0033 1804 ShellHWDetection - ok
20:53:30.0057 1804 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:53:30.0059 1804 SiSRaid2 - ok
20:53:30.0078 1804 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
20:53:30.0080 1804 SiSRaid4 - ok
20:53:30.0103 1804 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
20:53:30.0108 1804 Smb - ok
20:53:30.0150 1804 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
20:53:30.0154 1804 SNMPTRAP - ok
20:53:30.0169 1804 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
20:53:30.0170 1804 spldr - ok
20:53:30.0238 1804 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
20:53:30.0246 1804 Spooler - ok
20:53:30.0615 1804 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
20:53:30.0679 1804 sppsvc - ok
20:53:30.0823 1804 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
20:53:30.0830 1804 sppuinotify - ok
20:53:30.0913 1804 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
20:53:30.0926 1804 srv - ok
20:53:30.0970 1804 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
20:53:30.0988 1804 srv2 - ok
20:53:31.0010 1804 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
20:53:31.0023 1804 srvnet - ok
20:53:31.0096 1804 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
20:53:31.0101 1804 SSDPSRV - ok
20:53:31.0125 1804 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
20:53:31.0144 1804 SstpSvc - ok
20:53:31.0252 1804 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
20:53:31.0255 1804 STacSV - ok
20:53:31.0288 1804 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
20:53:31.0290 1804 stexstor - ok
20:53:31.0346 1804 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
20:53:31.0361 1804 STHDA - ok
20:53:31.0395 1804 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
20:53:31.0396 1804 StillCam - ok
20:53:31.0487 1804 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
20:53:31.0499 1804 stisvc - ok
20:53:31.0588 1804 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
20:53:31.0590 1804 stllssvr - ok
20:53:31.0624 1804 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
20:53:31.0625 1804 swenum - ok
20:53:31.0688 1804 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
20:53:31.0709 1804 swprv - ok
20:53:31.0775 1804 SynTP (79a93ec9d224b1f43c0e2f023d61dca3) C:\Windows\system32\DRIVERS\SynTP.sys
20:53:31.0778 1804 SynTP - ok
20:53:31.0990 1804 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
20:53:32.0015 1804 SysMain - ok
20:53:32.0147 1804 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
20:53:32.0163 1804 TabletInputService - ok
20:53:32.0222 1804 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
20:53:32.0235 1804 TapiSrv - ok
20:53:32.0300 1804 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
20:53:32.0304 1804 TBS - ok
20:53:32.0535 1804 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
20:53:32.0567 1804 Tcpip - ok
20:53:32.0847 1804 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
20:53:32.0865 1804 TCPIP6 - ok
20:53:32.0975 1804 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
20:53:32.0977 1804 tcpipreg - ok
20:53:33.0030 1804 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
20:53:33.0031 1804 TDPIPE - ok
20:53:33.0039 1804 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
20:53:33.0041 1804 TDTCP - ok
20:53:33.0105 1804 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
20:53:33.0119 1804 tdx - ok
20:53:33.0152 1804 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
20:53:33.0154 1804 TermDD - ok
20:53:33.0229 1804 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
20:53:33.0254 1804 TermService - ok
20:53:33.0291 1804 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
20:53:33.0295 1804 Themes - ok
20:53:33.0332 1804 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
20:53:33.0335 1804 THREADORDER - ok
20:53:33.0389 1804 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
20:53:33.0394 1804 TrkWks - ok
20:53:33.0457 1804 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
20:53:33.0460 1804 TrustedInstaller - ok
20:53:33.0506 1804 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:53:33.0508 1804 tssecsrv - ok
20:53:33.0552 1804 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
20:53:33.0554 1804 TsUsbFlt - ok
20:53:33.0596 1804 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
20:53:33.0599 1804 tunnel - ok
20:53:33.0628 1804 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
20:53:33.0630 1804 uagp35 - ok
20:53:33.0683 1804 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
20:53:33.0695 1804 udfs - ok
20:53:33.0730 1804 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
20:53:33.0734 1804 UI0Detect - ok
20:53:33.0773 1804 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
20:53:33.0775 1804 uliagpkx - ok
20:53:33.0821 1804 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
20:53:33.0823 1804 umbus - ok
20:53:33.0844 1804 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
20:53:33.0845 1804 UmPass - ok
20:53:33.0893 1804 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
20:53:33.0904 1804 upnphost - ok
20:53:33.0945 1804 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
20:53:33.0951 1804 USBAAPL64 - ok
20:53:33.0983 1804 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
20:53:33.0986 1804 usbccgp - ok
20:53:34.0025 1804 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
20:53:34.0033 1804 usbcir - ok
20:53:34.0071 1804 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
20:53:34.0074 1804 usbehci - ok
20:53:34.0123 1804 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
20:53:34.0130 1804 usbhub - ok
20:53:34.0154 1804 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
20:53:34.0156 1804 usbohci - ok
20:53:34.0179 1804 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
20:53:34.0180 1804 usbprint - ok
20:53:34.0218 1804 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
20:53:34.0220 1804 usbscan - ok
20:53:34.0250 1804 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:53:34.0253 1804 USBSTOR - ok
20:53:34.0282 1804 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
20:53:34.0284 1804 usbuhci - ok
20:53:34.0309 1804 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
20:53:34.0313 1804 UxSms - ok
20:53:34.0345 1804 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:34.0347 1804 VaultSvc - ok
20:53:34.0368 1804 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
20:53:34.0369 1804 vdrvroot - ok
20:53:34.0450 1804 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
20:53:34.0473 1804 vds - ok
20:53:34.0496 1804 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
20:53:34.0498 1804 vga - ok
20:53:34.0521 1804 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
20:53:34.0522 1804 VgaSave - ok
20:53:34.0570 1804 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
20:53:34.0581 1804 vhdmp - ok
20:53:34.0635 1804 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
20:53:34.0637 1804 viaide - ok
20:53:34.0666 1804 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
20:53:34.0671 1804 volmgr - ok
20:53:34.0734 1804 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
20:53:34.0741 1804 volmgrx - ok
20:53:34.0785 1804 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
20:53:34.0790 1804 volsnap - ok
20:53:34.0824 1804 vpnva - ok
20:53:34.0866 1804 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
20:53:34.0878 1804 vsmraid - ok
20:53:35.0049 1804 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
20:53:35.0090 1804 VSS - ok
20:53:35.0220 1804 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
20:53:35.0221 1804 vwifibus - ok
20:53:35.0242 1804 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
20:53:35.0244 1804 vwififlt - ok
20:53:35.0263 1804 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
20:53:35.0264 1804 vwifimp - ok
20:53:35.0334 1804 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
20:53:35.0343 1804 W32Time - ok
20:53:35.0362 1804 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
20:53:35.0364 1804 WacomPen - ok
20:53:35.0407 1804 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:53:35.0409 1804 WANARP - ok
20:53:35.0415 1804 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:53:35.0418 1804 Wanarpv6 - ok
20:53:35.0559 1804 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
20:53:35.0591 1804 WatAdminSvc - ok
20:53:35.0763 1804 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
20:53:35.0800 1804 wbengine - ok
20:53:35.0940 1804 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
20:53:35.0959 1804 WbioSrvc - ok
20:53:36.0030 1804 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
20:53:36.0049 1804 wcncsvc - ok
20:53:36.0080 1804 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
20:53:36.0085 1804 WcsPlugInService - ok
20:53:36.0128 1804 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
20:53:36.0129 1804 Wd - ok
20:53:36.0198 1804 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
20:53:36.0208 1804 Wdf01000 - ok
20:53:36.0235 1804 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
20:53:36.0240 1804 WdiServiceHost - ok
20:53:36.0248 1804 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
20:53:36.0252 1804 WdiSystemHost - ok
20:53:36.0316 1804 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
20:53:36.0333 1804 WebClient - ok
20:53:36.0362 1804 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
20:53:36.0381 1804 Wecsvc - ok
20:53:36.0406 1804 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
20:53:36.0411 1804 wercplsupport - ok
20:53:36.0435 1804 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
20:53:36.0439 1804 WerSvc - ok
20:53:36.0464 1804 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
20:53:36.0465 1804 WfpLwf - ok
20:53:36.0490 1804 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
20:53:36.0491 1804 WIMMount - ok
20:53:36.0520 1804 WinDefend - ok
20:53:36.0556 1804 WinHttpAutoProxySvc - ok
20:53:36.0640 1804 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
20:53:36.0645 1804 Winmgmt - ok
20:53:36.0870 1804 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
20:53:36.0909 1804 WinRM - ok
20:53:37.0051 1804 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
20:53:37.0053 1804 WinUsb - ok
20:53:37.0164 1804 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
20:53:37.0191 1804 Wlansvc - ok
20:53:37.0297 1804 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:53:37.0299 1804 wlcrasvc - ok
20:53:37.0597 1804 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:53:37.0639 1804 wlidsvc - ok
20:53:37.0783 1804 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
20:53:37.0785 1804 WmiAcpi - ok
20:53:37.0857 1804 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
20:53:37.0867 1804 wmiApSrv - ok
20:53:37.0891 1804 WMPNetworkSvc - ok
20:53:37.0933 1804 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
20:53:37.0937 1804 WPCSvc - ok
20:53:37.0986 1804 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
20:53:38.0002 1804 WPDBusEnum - ok
20:53:38.0029 1804 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
20:53:38.0030 1804 ws2ifsl - ok
20:53:38.0061 1804 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
20:53:38.0066 1804 wscsvc - ok
20:53:38.0101 1804 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
20:53:38.0102 1804 WSDPrintDevice - ok
20:53:38.0110 1804 WSearch - ok
20:53:38.0349 1804 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
20:53:38.0385 1804 wuauserv - ok
20:53:38.0545 1804 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
20:53:38.0559 1804 WudfPf - ok
20:53:38.0595 1804 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:53:38.0607 1804 WUDFRd - ok
20:53:38.0642 1804 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
20:53:38.0660 1804 wudfsvc - ok
20:53:38.0707 1804 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
20:53:38.0726 1804 WwanSvc - ok
20:53:38.0801 1804 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} (1cacfef9e5dd866c5b79a135ee729e18) C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
20:53:38.0803 1804 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
20:53:38.0832 1804 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:53:39.0208 1804 \Device\Harddisk0\DR0 - ok
20:53:39.0232 1804 Boot (0x1200) (5137cb185b10339b529ca2ccd62b8a85) \Device\Harddisk0\DR0\Partition0
20:53:39.0234 1804 \Device\Harddisk0\DR0\Partition0 - ok
20:53:39.0253 1804 Boot (0x1200) (954870a8f90aab033266e3aaf0c00aa1) \Device\Harddisk0\DR0\Partition1
20:53:39.0255 1804 \Device\Harddisk0\DR0\Partition1 - ok
20:53:39.0256 1804 ============================================================
20:53:39.0256 1804 Scan finished
20:53:39.0256 1804 ============================================================
20:53:39.0273 2580 Detected object count: 0
20:53:39.0273 2580 Actual detected object count: 0


SAS & MABM:

I ran the quick scan, because prior to receiving your response, I ran SAS and it came up with the Trojan.Dropper/SVCHost-Fake. I restarted my computer as requested and I am assuming it cleaned it up, but I want to be sure. I ran MABM and it did not find anything. I am still having the redirect issue.

Thanks

Mark

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:40 PM

Posted 19 June 2012 - 09:29 PM

Hello...Are you on a router? Are other machines on it,if so are they redirecting?

Do you use Firefox?



Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Open TDSS again
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Mark U

Mark U
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 19 June 2012 - 09:48 PM

Yes I am running on a wireless router.. From my knowledge, this problem is only affecting my laptop



MiniToolBox by Farbar Version: 09-06-2012
Ran by Mark (administrator) on 19-06-2012 at 22:43:49
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Mark-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-22-5F-C2-69-23
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
Physical Address. . . . . . . . . : 00-22-5F-C2-69-23
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::dd39:cc37:b279:de98%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, June 19, 2012 8:26:41 PM
Lease Expires . . . . . . . . . . : Wednesday, June 20, 2012 10:38:16 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 201335391
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-E8-2E-E5-00-22-19-F8-69-EB
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 00-22-19-F8-69-EB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2830:2dd1:3f57:fef8(Preferred)
Link-local IPv6 Address . . . . . : fe80::2830:2dd1:3f57:fef8%19(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{C353EE19-3F04-4B4E-85FC-A6AB3C1C71B8}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4006:802::100e
173.194.43.3
173.194.43.9
173.194.43.7
173.194.43.4
173.194.43.5
173.194.43.2
173.194.43.8
173.194.43.6
173.194.43.0
173.194.43.1
173.194.43.14


Pinging google.com [173.194.43.7] with 32 bytes of data:
Reply from 173.194.43.7: bytes=32 time=12ms TTL=251
Reply from 173.194.43.7: bytes=32 time=13ms TTL=251

Ping statistics for 173.194.43.7:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 12ms, Maximum = 13ms, Average = 12ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=40ms TTL=50
Reply from 98.139.183.24: bytes=32 time=45ms TTL=50

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 40ms, Maximum = 45ms, Average = 42ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...00 22 5f c2 69 23 ......Microsoft Virtual WiFi Miniport Adapter
11...00 22 5f c2 69 23 ......Dell Wireless 1397 WLAN Mini-Card
10...00 22 19 f8 69 eb ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
34...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.7 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.7 281
192.168.1.7 255.255.255.255 On-link 192.168.1.7 281
192.168.1.255 255.255.255.255 On-link 192.168.1.7 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
19 58 ::/0 On-link
1 306 ::1/128 On-link
19 58 2001::/32 On-link
19 306 2001:0:4137:9e76:2830:2dd1:3f57:fef8/128
On-link
11 281 fe80::/64 On-link
19 306 fe80::/64 On-link
19 306 fe80::2830:2dd1:3f57:fef8/128
On-link
11 281 fe80::dd39:cc37:b279:de98/128
On-link
1 306 ff00::/8 On-link
19 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/19/2012 09:42:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8346

Error: (06/19/2012 09:42:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8346

Error: (06/19/2012 09:42:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/19/2012 09:42:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6100

Error: (06/19/2012 09:42:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6100

Error: (06/19/2012 09:42:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/19/2012 09:42:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5101

Error: (06/19/2012 09:42:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5101

Error: (06/19/2012 09:42:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/19/2012 09:42:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4103


System errors:
=============
Error: (06/19/2012 08:46:03 PM) (Source: ACPI) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (06/19/2012 08:27:46 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/19/2012 08:27:12 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Roxio Hard Drive Watcher 9 service to connect.

Error: (06/19/2012 06:24:38 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/19/2012 06:24:03 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASDIFSV
SASKUTIL

Error: (06/19/2012 06:24:00 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Roxio Hard Drive Watcher 9 service to connect.

Error: (06/19/2012 06:22:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition.

Error: (06/19/2012 06:13:49 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/19/2012 06:13:06 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASDIFSV
SASKUTIL

Error: (06/19/2012 06:13:05 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126


Microsoft Office Sessions:
=========================
Error: (06/06/2012 05:05:59 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 17 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/06/2012 05:03:55 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 24 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/06/2012 05:03:02 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 212 seconds with 180 seconds of active time. This session ended with a crash.

Error: (06/06/2012 04:58:44 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 296 seconds with 180 seconds of active time. This session ended with a crash.

Error: (06/06/2012 04:53:24 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 13098 seconds with 6780 seconds of active time. This session ended with a crash.

Error: (05/22/2012 01:30:00 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 83700 seconds with 9000 seconds of active time. This session ended with a crash.

Error: (05/01/2012 10:54:40 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 81 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/01/2012 08:16:59 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 405 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/01/2012 08:16:32 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 378 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/01/2012 08:16:32 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 378 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 2.5.1.17730)
Adobe Community Help (Version: 3.4.980)
Adobe Download Assistant (Version: 1.0.6)
Adobe Dreamweaver CS5.5 (Version: 11.5)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.257)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
Advanced Audio FX Engine (Version: 1.12.05)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
AutocompletePro
Banctec Service Agreement (Version: 2.0.0)
BlackBerry Desktop Software 5.0.1 (Version: 5.0.1.37)
BlackBerry Device Software Updater (Version: 6.0.1.13)
BlackBerry® Media Sync (Version: 3.0.0.39)
Bonjour (Version: 3.0.0.10)
Brother HL-2140 (Version: 1.00)
CCleaner (Version: 3.15)
Choice Guard (Version: 1.2.87.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Core FTP LE
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Dock (Version: 1.0.0)
Dell Driver Download Manager (Version: 2.1.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Photo AIO Printer 924
Dell Touchpad (Version: 12.0.1.0)
Dell Video Chat (Version: 6.1 (6751))
Dell Webcam Central (Version: 1.40.05)
Digital Photo Viewer 3.01
Dropbox (Version: 1.4.7)
EASEUS Partition Recovery 5.0.1
HiJackThis (Version: 1.0.0)
HP Photo Creations (Version: 1.0.0.3341)
HP Photosmart Plus B210 series Basic Device Software (Version: 22.0.334.0)
HP Photosmart Plus B210 series Help (Version: 140.0.54.54)
HP Photosmart Plus B210 series Product Improvement Study (Version: 22.0.334.0)
HP Update (Version: 5.002.005.003)
HPDiagnosticAlert (Version: 1.00.0000)
IBM Lotus Forms Viewer 3.5.1 (Version: 7.6.1.333)
iCloud (Version: 1.1.0.40)
IDT Audio (Version: 1.0.6217.0)
Integrated Webcam Driver (1.02.02.0106) (Version: 1.02.02.0106)
Intel® Graphics Media Accelerator Driver
Internet TV for Windows Media Center (Version: 4.2.2.0)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (64-bit) (Version: 6.0.290)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
Little Registry Cleaner
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MATLAB Student R2009a (Version: 7.8)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Access 2010 (Version: 14.0.6029.1000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access 2010 (Version: 14.0.6029.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office SharePoint Designer 2007 (Version: 12.0.6612.1000)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office SharePoint Designer MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
Mozilla Thunderbird 10.0.2 (x86 en-US) (Version: 10.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Notepad++ (Version: 5.9.3)
ooVoo (Version: 2.9.0105)
PowerDVD DX (Version: 8.3.5424)
PxMergeModule (Version: 1.00.0000)
Quickset64 (Version: 9.6.8)
QuickTime (Version: 7.72.80.56)
Recuva (Version: 1.39)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator DE (Version: 10.1)
Roxio Creator DE (Version: 3.7.0)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio Media Manager (Version: 9.4.067)
Roxio Update Manager (Version: 6.0.0)
Safari (Version: 5.34.57.2)
Skype Toolbars (Version: 5.0.4137)
Skype™ 5.0 (Version: 5.0.156)
Speccy (Version: 1.15)
Spotify (Version: 0.8.3.222.g317ab79d)
Spybot - Search & Destroy (Version: 1.6.2)
Swag Bucks Toolbar (Version: 6.3.3.3)
swMSM (Version: 12.0.0.1)
System Requirements Lab CYRI (Version: 4.5.1.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Sharepoint Designer 2007 Help (KB963675)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
VD64Inst (Version: 1.00.0000)
Vegas Movie Studio HD Platinum 10.0 (Version: 10.0.179)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live Family Safety (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Movie Maker 2.6 (Version: 2.6.4037.0)
WinRAR 4.10 beta 3 (64-bit) (Version: 4.10.3)

========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 4054.86 MB
Available physical RAM: 2219.52 MB
Total Pagefile: 8107.91 MB
Available Pagefile: 6465.12 MB
Total Virtual: 4095.88 MB
Available Virtual: 3957 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:283.4 GB) (Free:144.42 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:7.85 GB) NTFS

========================= Users: ========================================

User accounts for \\MARK-PC

Administrator Guest Mark


**** End of log ****


TDSS


20:52:56.0648 0660 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
20:52:57.0007 0660 ============================================================
20:52:57.0007 0660 Current date / time: 2012/06/19 20:52:57.0007
20:52:57.0007 0660 SystemInfo:
20:52:57.0007 0660
20:52:57.0007 0660 OS Version: 6.1.7601 ServicePack: 1.0
20:52:57.0007 0660 Product type: Workstation
20:52:57.0007 0660 ComputerName: MARK-PC
20:52:57.0022 0660 UserName: Mark
20:52:57.0022 0660 Windows directory: C:\Windows
20:52:57.0022 0660 System windows directory: C:\Windows
20:52:57.0022 0660 Running under WOW64
20:52:57.0022 0660 Processor architecture: Intel x64
20:52:57.0022 0660 Number of processors: 2
20:52:57.0022 0660 Page size: 0x1000
20:52:57.0022 0660 Boot type: Normal boot
20:52:57.0022 0660 ============================================================
20:52:58.0380 0660 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:52:58.0395 0660 ============================================================
20:52:58.0395 0660 \Device\Harddisk0\DR0:
20:52:58.0395 0660 MBR partitions:
20:52:58.0395 0660 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
20:52:58.0395 0660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x236CE8EB
20:52:58.0395 0660 ============================================================
20:52:58.0442 0660 C: <-> \Device\Harddisk0\DR0\Partition1
20:52:58.0473 0660 D: <-> \Device\Harddisk0\DR0\Partition0
20:52:58.0473 0660 ============================================================
20:52:58.0473 0660 Initialize success
20:52:58.0473 0660 ============================================================
20:53:07.0537 1804 ============================================================
20:53:07.0537 1804 Scan started
20:53:07.0537 1804 Mode: Manual;
20:53:07.0537 1804 ============================================================
20:53:08.0317 1804 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
20:53:08.0317 1804 1394ohci - ok
20:53:08.0379 1804 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
20:53:08.0395 1804 ACPI - ok
20:53:08.0426 1804 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
20:53:08.0426 1804 AcpiPmi - ok
20:53:08.0551 1804 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:53:08.0551 1804 AdobeARMservice - ok
20:53:08.0738 1804 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:53:08.0738 1804 AdobeFlashPlayerUpdateSvc - ok
20:53:08.0800 1804 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
20:53:08.0816 1804 adp94xx - ok
20:53:08.0894 1804 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
20:53:08.0910 1804 adpahci - ok
20:53:08.0941 1804 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
20:53:08.0956 1804 adpu320 - ok
20:53:08.0988 1804 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
20:53:08.0988 1804 AeLookupSvc - ok
20:53:09.0097 1804 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
20:53:09.0097 1804 AESTFilters - ok
20:53:09.0159 1804 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
20:53:09.0159 1804 AFD - ok
20:53:09.0206 1804 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
20:53:09.0222 1804 agp440 - ok
20:53:09.0253 1804 aksdf (94c0972b06c75456ed574dd46417b1d8) C:\Windows\system32\drivers\aksdf.sys
20:53:09.0268 1804 aksdf - ok
20:53:09.0315 1804 aksfridge (7b0bc062ca6abab23f88ea483b5a538e) C:\Windows\system32\drivers\aksfridge.sys
20:53:09.0331 1804 aksfridge - ok
20:53:09.0362 1804 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
20:53:09.0362 1804 ALG - ok
20:53:09.0378 1804 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
20:53:09.0378 1804 aliide - ok
20:53:09.0393 1804 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
20:53:09.0409 1804 amdide - ok
20:53:09.0440 1804 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
20:53:09.0440 1804 AmdK8 - ok
20:53:09.0456 1804 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
20:53:09.0456 1804 AmdPPM - ok
20:53:09.0502 1804 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
20:53:09.0518 1804 amdsata - ok
20:53:09.0549 1804 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
20:53:09.0565 1804 amdsbs - ok
20:53:09.0580 1804 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
20:53:09.0580 1804 amdxata - ok
20:53:09.0627 1804 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
20:53:09.0627 1804 AppID - ok
20:53:09.0658 1804 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
20:53:09.0658 1804 AppIDSvc - ok
20:53:09.0705 1804 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
20:53:09.0705 1804 Appinfo - ok
20:53:09.0799 1804 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:53:09.0799 1804 Apple Mobile Device - ok
20:53:09.0908 1804 appliand (0eeff7103e4f3e783f3d2b870af67f1c) C:\Windows\system32\DRIVERS\appliand.sys
20:53:09.0908 1804 appliand - ok
20:53:09.0908 1804 appliandMP (0eeff7103e4f3e783f3d2b870af67f1c) C:\Windows\system32\DRIVERS\appliand.sys
20:53:09.0908 1804 appliandMP - ok
20:53:09.0939 1804 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
20:53:09.0939 1804 arc - ok
20:53:09.0970 1804 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
20:53:09.0970 1804 arcsas - ok
20:53:10.0111 1804 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:53:10.0111 1804 aspnet_state - ok
20:53:10.0142 1804 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
20:53:10.0142 1804 AsyncMac - ok
20:53:10.0173 1804 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
20:53:10.0173 1804 atapi - ok
20:53:10.0282 1804 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
20:53:10.0298 1804 AudioEndpointBuilder - ok
20:53:10.0314 1804 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
20:53:10.0314 1804 AudioSrv - ok
20:53:10.0360 1804 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
20:53:10.0376 1804 AxInstSV - ok
20:53:10.0423 1804 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
20:53:10.0438 1804 b06bdrv - ok
20:53:10.0470 1804 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
20:53:10.0485 1804 b57nd60a - ok
20:53:10.0766 1804 BCM43XX (fb4fda64f2e8552eaeb5986c3f34462c) C:\Windows\system32\DRIVERS\bcmwl664.sys
20:53:10.0797 1804 BCM43XX - ok
20:53:10.0922 1804 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
20:53:10.0938 1804 BDESVC - ok
20:53:10.0984 1804 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
20:53:10.0984 1804 Beep - ok
20:53:11.0094 1804 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
20:53:11.0109 1804 BFE - ok
20:53:11.0406 1804 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
20:53:11.0452 1804 BITS - ok
20:53:11.0484 1804 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
20:53:11.0484 1804 blbdrive - ok
20:53:11.0577 1804 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
20:53:11.0593 1804 Bonjour Service - ok
20:53:11.0624 1804 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
20:53:11.0624 1804 bowser - ok
20:53:11.0655 1804 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:53:11.0655 1804 BrFiltLo - ok
20:53:11.0671 1804 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:53:11.0671 1804 BrFiltUp - ok
20:53:11.0702 1804 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
20:53:11.0702 1804 BridgeMP - ok
20:53:11.0749 1804 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
20:53:11.0749 1804 Browser - ok
20:53:11.0796 1804 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
20:53:11.0796 1804 Brserid - ok
20:53:11.0827 1804 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
20:53:11.0827 1804 BrSerWdm - ok
20:53:11.0842 1804 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:53:11.0842 1804 BrUsbMdm - ok
20:53:11.0858 1804 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
20:53:11.0858 1804 BrUsbSer - ok
20:53:11.0889 1804 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
20:53:11.0889 1804 BTHMODEM - ok
20:53:11.0920 1804 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
20:53:11.0920 1804 bthserv - ok
20:53:11.0952 1804 catchme - ok
20:53:11.0983 1804 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
20:53:11.0983 1804 cdfs - ok
20:53:12.0030 1804 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
20:53:12.0045 1804 cdrom - ok
20:53:12.0092 1804 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
20:53:12.0092 1804 CertPropSvc - ok
20:53:12.0108 1804 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
20:53:12.0108 1804 circlass - ok
20:53:12.0170 1804 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
20:53:12.0170 1804 CLFS - ok
20:53:12.0248 1804 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:53:12.0248 1804 clr_optimization_v2.0.50727_32 - ok
20:53:12.0326 1804 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:53:12.0326 1804 clr_optimization_v2.0.50727_64 - ok
20:53:12.0435 1804 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:53:12.0435 1804 clr_optimization_v4.0.30319_32 - ok
20:53:12.0482 1804 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:53:12.0482 1804 clr_optimization_v4.0.30319_64 - ok
20:53:12.0498 1804 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
20:53:12.0498 1804 CmBatt - ok
20:53:12.0529 1804 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
20:53:12.0529 1804 cmdide - ok
20:53:12.0591 1804 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
20:53:12.0607 1804 CNG - ok
20:53:12.0622 1804 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
20:53:12.0622 1804 Compbatt - ok
20:53:12.0654 1804 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
20:53:12.0669 1804 CompositeBus - ok
20:53:12.0669 1804 COMSysApp - ok
20:53:12.0747 1804 cpuz134 - ok
20:53:12.0794 1804 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
20:53:12.0794 1804 crcdisk - ok
20:53:12.0856 1804 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
20:53:12.0856 1804 CryptSvc - ok
20:53:12.0888 1804 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:53:12.0903 1804 CtClsFlt - ok
20:53:12.0981 1804 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
20:53:12.0997 1804 DcomLaunch - ok
20:53:13.0044 1804 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
20:53:13.0075 1804 defragsvc - ok
20:53:13.0137 1804 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
20:53:13.0137 1804 DfsC - ok
20:53:13.0231 1804 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
20:53:13.0246 1804 Dhcp - ok
20:53:13.0293 1804 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
20:53:13.0293 1804 discache - ok
20:53:13.0340 1804 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
20:53:13.0340 1804 Disk - ok
20:53:13.0340 1804 dlcc_device - ok
20:53:13.0402 1804 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
20:53:13.0402 1804 Dnscache - ok
20:53:13.0465 1804 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
20:53:13.0480 1804 dot3svc - ok
20:53:13.0527 1804 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
20:53:13.0527 1804 DPS - ok
20:53:13.0574 1804 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
20:53:13.0574 1804 drmkaud - ok
20:53:13.0683 1804 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
20:53:13.0699 1804 DXGKrnl - ok
20:53:13.0746 1804 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
20:53:13.0746 1804 EapHost - ok
20:53:14.0058 1804 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
20:53:14.0120 1804 ebdrv - ok
20:53:14.0245 1804 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
20:53:14.0245 1804 EFS - ok
20:53:14.0370 1804 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
20:53:14.0370 1804 ehRecvr - ok
20:53:14.0416 1804 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
20:53:14.0432 1804 ehSched - ok
20:53:14.0526 1804 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
20:53:14.0541 1804 elxstor - ok
20:53:14.0572 1804 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
20:53:14.0572 1804 ErrDev - ok
20:53:14.0666 1804 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
20:53:14.0682 1804 EventSystem - ok
20:53:14.0713 1804 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
20:53:14.0728 1804 exfat - ok
20:53:14.0760 1804 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
20:53:14.0760 1804 fastfat - ok
20:53:14.0869 1804 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
20:53:14.0884 1804 Fax - ok
20:53:14.0916 1804 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
20:53:14.0916 1804 fdc - ok
20:53:14.0931 1804 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
20:53:14.0931 1804 fdPHost - ok
20:53:14.0947 1804 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
20:53:14.0962 1804 FDResPub - ok
20:53:14.0978 1804 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
20:53:14.0994 1804 FileInfo - ok
20:53:15.0009 1804 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
20:53:15.0009 1804 Filetrace - ok
20:53:15.0025 1804 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
20:53:15.0025 1804 flpydisk - ok
20:53:15.0072 1804 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
20:53:15.0087 1804 FltMgr - ok
20:53:15.0212 1804 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
20:53:15.0228 1804 FontCache - ok
20:53:15.0306 1804 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:53:15.0306 1804 FontCache3.0.0.0 - ok
20:53:15.0352 1804 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
20:53:15.0368 1804 FsDepends - ok
20:53:15.0430 1804 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
20:53:15.0430 1804 fssfltr - ok
20:53:15.0664 1804 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:53:15.0696 1804 fsssvc - ok
20:53:15.0836 1804 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
20:53:15.0836 1804 Fs_Rec - ok
20:53:15.0883 1804 FTDIBUS (0f210048c6bfbfbc0f50816bce40b575) C:\Windows\system32\drivers\ftdibus.sys
20:53:15.0883 1804 FTDIBUS - ok
20:53:15.0930 1804 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
20:53:15.0945 1804 fvevol - ok
20:53:15.0992 1804 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:53:15.0992 1804 gagp30kx - ok
20:53:16.0023 1804 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:53:16.0023 1804 GEARAspiWDM - ok
20:53:16.0132 1804 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
20:53:16.0148 1804 gpsvc - ok
20:53:16.0195 1804 hardlock (78fad9117e4527f2ca82259da10f40bd) C:\Windows\system32\drivers\hardlock.sys
20:53:16.0195 1804 hardlock - ok
20:53:16.0210 1804 hasplms - ok
20:53:16.0226 1804 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
20:53:16.0226 1804 hcw85cir - ok
20:53:16.0273 1804 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
20:53:16.0288 1804 HDAudBus - ok
20:53:16.0304 1804 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
20:53:16.0304 1804 HidBatt - ok
20:53:16.0335 1804 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
20:53:16.0335 1804 HidBth - ok
20:53:16.0366 1804 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
20:53:16.0366 1804 HidIr - ok
20:53:16.0398 1804 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
20:53:16.0398 1804 hidserv - ok
20:53:16.0413 1804 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
20:53:16.0429 1804 HidUsb - ok
20:53:16.0460 1804 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
20:53:16.0476 1804 hkmsvc - ok
20:53:16.0538 1804 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
20:53:16.0538 1804 HomeGroupListener - ok
20:53:16.0585 1804 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
20:53:16.0585 1804 HomeGroupProvider - ok
20:53:16.0632 1804 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
20:53:16.0632 1804 HpSAMD - ok
20:53:16.0741 1804 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
20:53:16.0756 1804 HTTP - ok
20:53:16.0803 1804 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
20:53:16.0803 1804 hwpolicy - ok
20:53:16.0834 1804 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
20:53:16.0834 1804 i8042prt - ok
20:53:16.0897 1804 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
20:53:16.0912 1804 iaStorV - ok
20:53:17.0084 1804 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:53:17.0100 1804 idsvc - ok
20:53:18.0051 1804 igfx (c6238c6abd6ac99f5d152da4e9439a3d) C:\Windows\system32\DRIVERS\igdkmd64.sys
20:53:18.0301 1804 igfx - ok
20:53:18.0441 1804 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
20:53:18.0441 1804 iirsp - ok
20:53:18.0566 1804 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
20:53:18.0597 1804 IKEEXT - ok
20:53:18.0628 1804 IntcHdmiAddService (d485d3bd3e2179aa86853a182f70699f) C:\Windows\system32\drivers\IntcHdmi.sys
20:53:18.0644 1804 IntcHdmiAddService - ok
20:53:18.0675 1804 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
20:53:18.0675 1804 intelide - ok
20:53:18.0691 1804 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
20:53:18.0706 1804 intelppm - ok
20:53:18.0738 1804 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
20:53:18.0753 1804 IPBusEnum - ok
20:53:18.0784 1804 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:53:18.0800 1804 IpFilterDriver - ok
20:53:18.0894 1804 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
20:53:18.0909 1804 iphlpsvc - ok
20:53:18.0940 1804 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
20:53:18.0956 1804 IPMIDRV - ok
20:53:18.0987 1804 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
20:53:19.0003 1804 IPNAT - ok
20:53:19.0174 1804 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
20:53:19.0174 1804 iPod Service - ok
20:53:19.0206 1804 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
20:53:19.0206 1804 IRENUM - ok
20:53:19.0237 1804 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
20:53:19.0237 1804 isapnp - ok
20:53:19.0284 1804 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
20:53:19.0299 1804 iScsiPrt - ok
20:53:19.0362 1804 k57nd60a (7dbafe10c1b777305c80bea42fbda710) C:\Windows\system32\DRIVERS\k57nd60a.sys
20:53:19.0377 1804 k57nd60a - ok
20:53:19.0393 1804 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
20:53:19.0393 1804 kbdclass - ok
20:53:19.0424 1804 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
20:53:19.0424 1804 kbdhid - ok
20:53:19.0455 1804 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:19.0471 1804 KeyIso - ok
20:53:19.0502 1804 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
20:53:19.0502 1804 KSecDD - ok
20:53:19.0533 1804 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
20:53:19.0533 1804 KSecPkg - ok
20:53:19.0549 1804 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
20:53:19.0549 1804 ksthunk - ok
20:53:19.0611 1804 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
20:53:19.0611 1804 KtmRm - ok
20:53:19.0658 1804 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
20:53:19.0674 1804 LanmanServer - ok
20:53:19.0720 1804 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
20:53:19.0720 1804 LanmanWorkstation - ok
20:53:19.0736 1804 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
20:53:19.0736 1804 lltdio - ok
20:53:19.0798 1804 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
20:53:19.0814 1804 lltdsvc - ok
20:53:19.0830 1804 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
20:53:19.0845 1804 lmhosts - ok
20:53:19.0876 1804 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:53:19.0892 1804 LSI_FC - ok
20:53:19.0908 1804 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:53:19.0923 1804 LSI_SAS - ok
20:53:19.0939 1804 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:53:19.0939 1804 LSI_SAS2 - ok
20:53:19.0970 1804 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:53:19.0986 1804 LSI_SCSI - ok
20:53:20.0017 1804 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
20:53:20.0017 1804 luafv - ok
20:53:20.0064 1804 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
20:53:20.0064 1804 Mcx2Svc - ok
20:53:20.0095 1804 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
20:53:20.0095 1804 megasas - ok
20:53:20.0126 1804 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
20:53:20.0142 1804 MegaSR - ok
20:53:20.0266 1804 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
20:53:20.0266 1804 Microsoft Office Groove Audit Service - ok
20:53:20.0313 1804 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
20:53:20.0313 1804 MMCSS - ok
20:53:20.0368 1804 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
20:53:20.0370 1804 Modem - ok
20:53:20.0380 1804 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
20:53:20.0381 1804 monitor - ok
20:53:20.0418 1804 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
20:53:20.0419 1804 mouclass - ok
20:53:20.0444 1804 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
20:53:20.0446 1804 mouhid - ok
20:53:20.0488 1804 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
20:53:20.0490 1804 mountmgr - ok
20:53:20.0576 1804 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:53:20.0577 1804 MozillaMaintenance - ok
20:53:20.0640 1804 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
20:53:20.0643 1804 MpFilter - ok
20:53:20.0688 1804 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
20:53:20.0701 1804 mpio - ok
20:53:20.0727 1804 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
20:53:20.0729 1804 mpsdrv - ok
20:53:20.0839 1804 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
20:53:20.0853 1804 MpsSvc - ok
20:53:20.0892 1804 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
20:53:20.0906 1804 MRxDAV - ok
20:53:20.0959 1804 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:53:20.0971 1804 mrxsmb - ok
20:53:21.0029 1804 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:53:21.0044 1804 mrxsmb10 - ok
20:53:21.0078 1804 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:53:21.0092 1804 mrxsmb20 - ok
20:53:21.0129 1804 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
20:53:21.0130 1804 msahci - ok
20:53:21.0179 1804 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
20:53:21.0193 1804 msdsm - ok
20:53:21.0225 1804 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
20:53:21.0237 1804 MSDTC - ok
20:53:21.0278 1804 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
20:53:21.0280 1804 Msfs - ok
20:53:21.0296 1804 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
20:53:21.0297 1804 mshidkmdf - ok
20:53:21.0329 1804 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
20:53:21.0330 1804 msisadrv - ok
20:53:21.0364 1804 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
20:53:21.0375 1804 MSiSCSI - ok
20:53:21.0381 1804 msiserver - ok
20:53:21.0401 1804 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
20:53:21.0403 1804 MSKSSRV - ok
20:53:21.0555 1804 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:53:21.0556 1804 MsMpSvc - ok
20:53:21.0565 1804 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
20:53:21.0567 1804 MSPCLOCK - ok
20:53:21.0573 1804 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
20:53:21.0574 1804 MSPQM - ok
20:53:21.0640 1804 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
20:53:21.0646 1804 MsRPC - ok
20:53:21.0687 1804 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
20:53:21.0688 1804 mssmbios - ok
20:53:21.0696 1804 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
20:53:21.0698 1804 MSTEE - ok
20:53:21.0715 1804 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
20:53:21.0716 1804 MTConfig - ok
20:53:21.0748 1804 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
20:53:21.0749 1804 Mup - ok
20:53:21.0831 1804 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
20:53:21.0843 1804 napagent - ok
20:53:21.0875 1804 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
20:53:21.0889 1804 NativeWifiP - ok
20:53:21.0997 1804 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
20:53:22.0017 1804 NDIS - ok
20:53:22.0044 1804 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
20:53:22.0046 1804 NdisCap - ok
20:53:22.0069 1804 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
20:53:22.0070 1804 NdisTapi - ok
20:53:22.0120 1804 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
20:53:22.0122 1804 Ndisuio - ok
20:53:22.0171 1804 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
20:53:22.0183 1804 NdisWan - ok
20:53:22.0230 1804 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
20:53:22.0232 1804 NDProxy - ok
20:53:22.0255 1804 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
20:53:22.0256 1804 NetBIOS - ok
20:53:22.0306 1804 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
20:53:22.0323 1804 NetBT - ok
20:53:22.0381 1804 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:22.0383 1804 Netlogon - ok
20:53:22.0439 1804 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
20:53:22.0445 1804 Netman - ok
20:53:22.0560 1804 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0573 1804 NetMsmqActivator - ok
20:53:22.0579 1804 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0581 1804 NetPipeActivator - ok
20:53:22.0635 1804 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
20:53:22.0644 1804 netprofm - ok
20:53:22.0650 1804 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0652 1804 NetTcpActivator - ok
20:53:22.0661 1804 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:53:22.0663 1804 NetTcpPortSharing - ok
20:53:22.0712 1804 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
20:53:22.0714 1804 nfrd960 - ok
20:53:22.0785 1804 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:53:22.0788 1804 NisDrv - ok
20:53:22.0941 1804 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
20:53:22.0955 1804 NisSrv - ok
20:53:23.0017 1804 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
20:53:23.0031 1804 NlaSvc - ok
20:53:23.0050 1804 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
20:53:23.0052 1804 Npfs - ok
20:53:23.0083 1804 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
20:53:23.0086 1804 nsi - ok
20:53:23.0098 1804 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
20:53:23.0099 1804 nsiproxy - ok
20:53:23.0288 1804 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
20:53:23.0323 1804 Ntfs - ok
20:53:23.0469 1804 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
20:53:23.0470 1804 Null - ok
20:53:23.0513 1804 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
20:53:23.0526 1804 nvraid - ok
20:53:23.0559 1804 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
20:53:23.0571 1804 nvstor - ok
20:53:23.0598 1804 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
20:53:23.0612 1804 nv_agp - ok
20:53:23.0651 1804 OA008Ufd (d09cc91e92fd1ff81af3a14be2cbb20d) C:\Windows\system32\DRIVERS\OA008Ufd.sys
20:53:23.0662 1804 OA008Ufd - ok
20:53:23.0702 1804 OA008Vid (60fd277cfd34f680a1668ac123b324ae) C:\Windows\system32\DRIVERS\OA008Vid.sys
20:53:23.0716 1804 OA008Vid - ok
20:53:23.0839 1804 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:53:23.0855 1804 odserv - ok
20:53:23.0888 1804 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
20:53:23.0890 1804 ohci1394 - ok
20:53:23.0955 1804 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:53:23.0957 1804 ose - ok
20:53:24.0569 1804 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:53:24.0681 1804 osppsvc - ok
20:53:24.0831 1804 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
20:53:24.0837 1804 p2pimsvc - ok
20:53:24.0891 1804 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
20:53:24.0900 1804 p2psvc - ok
20:53:24.0950 1804 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
20:53:24.0965 1804 Parport - ok
20:53:25.0010 1804 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
20:53:25.0012 1804 partmgr - ok
20:53:25.0047 1804 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
20:53:25.0058 1804 PcaSvc - ok
20:53:25.0107 1804 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
20:53:25.0110 1804 pci - ok
20:53:25.0147 1804 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
20:53:25.0148 1804 pciide - ok
20:53:25.0187 1804 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
20:53:25.0196 1804 pcmcia - ok
20:53:25.0221 1804 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
20:53:25.0223 1804 pcw - ok
20:53:25.0321 1804 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
20:53:25.0382 1804 PEAUTH - ok
20:53:25.0537 1804 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
20:53:25.0540 1804 PerfHost - ok
20:53:25.0716 1804 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
20:53:25.0749 1804 pla - ok
20:53:25.0819 1804 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
20:53:25.0838 1804 PlugPlay - ok
20:53:25.0864 1804 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
20:53:25.0868 1804 PNRPAutoReg - ok
20:53:25.0911 1804 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
20:53:25.0916 1804 PNRPsvc - ok
20:53:25.0975 1804 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
20:53:25.0984 1804 PolicyAgent - ok
20:53:26.0034 1804 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
20:53:26.0038 1804 Power - ok
20:53:26.0099 1804 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
20:53:26.0114 1804 PptpMiniport - ok
20:53:26.0149 1804 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
20:53:26.0151 1804 Processor - ok
20:53:26.0197 1804 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
20:53:26.0202 1804 ProfSvc - ok
20:53:26.0241 1804 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:26.0243 1804 ProtectedStorage - ok
20:53:26.0286 1804 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
20:53:26.0302 1804 Psched - ok
20:53:26.0340 1804 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
20:53:26.0341 1804 PxHlpa64 - ok
20:53:26.0497 1804 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
20:53:26.0530 1804 ql2300 - ok
20:53:26.0673 1804 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
20:53:26.0687 1804 ql40xx - ok
20:53:26.0737 1804 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
20:53:26.0754 1804 QWAVE - ok
20:53:26.0767 1804 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
20:53:26.0769 1804 QWAVEdrv - ok
20:53:26.0787 1804 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
20:53:26.0788 1804 RasAcd - ok
20:53:26.0822 1804 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:53:26.0823 1804 RasAgileVpn - ok
20:53:26.0849 1804 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
20:53:26.0865 1804 RasAuto - ok
20:53:26.0913 1804 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:53:26.0927 1804 Rasl2tp - ok
20:53:26.0995 1804 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
20:53:27.0006 1804 RasMan - ok
20:53:27.0030 1804 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
20:53:27.0033 1804 RasPppoe - ok
20:53:27.0059 1804 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
20:53:27.0061 1804 RasSstp - ok
20:53:27.0091 1804 rcmirror (96597c96d5acf4a3ef0b24d396853879) C:\Windows\system32\DRIVERS\rcmirror.sys
20:53:27.0093 1804 rcmirror - ok
20:53:27.0152 1804 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
20:53:27.0166 1804 rdbss - ok
20:53:27.0191 1804 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
20:53:27.0193 1804 rdpbus - ok
20:53:27.0210 1804 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:53:27.0211 1804 RDPCDD - ok
20:53:27.0223 1804 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
20:53:27.0224 1804 RDPENCDD - ok
20:53:27.0250 1804 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
20:53:27.0251 1804 RDPREFMP - ok
20:53:27.0311 1804 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
20:53:27.0319 1804 RDPWD - ok
20:53:27.0380 1804 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
20:53:27.0383 1804 rdyboost - ok
20:53:27.0467 1804 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
20:53:27.0483 1804 RemoteAccess - ok
20:53:27.0560 1804 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
20:53:27.0573 1804 RemoteRegistry - ok
20:53:27.0606 1804 rimmptsk (6faf5b04bedc66d300d9d233b2d222f0) C:\Windows\system32\DRIVERS\rimmpx64.sys
20:53:27.0608 1804 rimmptsk - ok
20:53:27.0651 1804 rimsptsk (67f50c31713106fd1b0f286f86aa2b2e) C:\Windows\system32\DRIVERS\rimspx64.sys
20:53:27.0653 1804 rimsptsk - ok
20:53:27.0683 1804 RimUsb (5790bca445cc40df8b38c2c48608aac2) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
20:53:27.0684 1804 RimUsb - ok
20:53:27.0709 1804 RimVSerPort (c903d49655b4aae46673f0aaa6be0f58) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
20:53:27.0711 1804 RimVSerPort - ok
20:53:27.0757 1804 rismxdp (4d7ef3d46346ec4c58784db964b365de) C:\Windows\system32\DRIVERS\rixdpx64.sys
20:53:27.0759 1804 rismxdp - ok
20:53:27.0794 1804 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
20:53:27.0795 1804 ROOTMODEM - ok
20:53:27.0890 1804 Roxio UPnP Renderer 9 (afd61a7c48a3e15c86a6fadf0b69a2e4) C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
20:53:27.0892 1804 Roxio UPnP Renderer 9 - ok
20:53:27.0934 1804 Roxio Upnp Server 9 (efbb36e2bb02169d26e9980778fc20d3) C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
20:53:27.0940 1804 Roxio Upnp Server 9 - ok
20:53:28.0058 1804 RoxLiveShare9 (78e680a105f47b6aa0003bd23ed9fa51) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
20:53:28.0065 1804 RoxLiveShare9 - ok
20:53:28.0191 1804 RoxMediaDB9 (9d5c024170c376d7cc66ed853fda9068) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
20:53:28.0229 1804 RoxMediaDB9 - ok
20:53:28.0275 1804 RoxWatch9 (87f175539dbba297018aa7fcdd563ff7) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
20:53:28.0286 1804 RoxWatch9 - ok
20:53:28.0400 1804 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
20:53:28.0404 1804 RpcEptMapper - ok
20:53:28.0430 1804 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
20:53:28.0433 1804 RpcLocator - ok
20:53:28.0514 1804 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
20:53:28.0525 1804 RpcSs - ok
20:53:28.0576 1804 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
20:53:28.0579 1804 rspndr - ok
20:53:28.0618 1804 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:28.0620 1804 SamSs - ok
20:53:28.0726 1804 SASDIFSV (99df79c258b3342b6c8a5f802998de56) C:\Users\Mark\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.SYS
20:53:28.0727 1804 SASDIFSV - ok
20:53:28.0740 1804 SASKUTIL (2859c35c0651e8eb0d86d48e740388f2) C:\Users\Mark\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.SYS
20:53:28.0741 1804 SASKUTIL - ok
20:53:28.0778 1804 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
20:53:28.0780 1804 sbp2port - ok
20:53:28.0929 1804 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
20:53:28.0941 1804 SBSDWSCService - ok
20:53:28.0985 1804 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
20:53:28.0995 1804 SCardSvr - ok
20:53:29.0061 1804 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
20:53:29.0062 1804 scfilter - ok
20:53:29.0191 1804 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
20:53:29.0205 1804 Schedule - ok
20:53:29.0250 1804 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
20:53:29.0252 1804 SCPolicySvc - ok
20:53:29.0304 1804 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
20:53:29.0318 1804 sdbus - ok
20:53:29.0370 1804 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
20:53:29.0381 1804 SDRSVC - ok
20:53:29.0413 1804 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
20:53:29.0414 1804 secdrv - ok
20:53:29.0460 1804 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
20:53:29.0464 1804 seclogon - ok
20:53:29.0492 1804 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
20:53:29.0496 1804 SENS - ok
20:53:29.0521 1804 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
20:53:29.0525 1804 SensrSvc - ok
20:53:29.0550 1804 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
20:53:29.0551 1804 Serenum - ok
20:53:29.0572 1804 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
20:53:29.0578 1804 Serial - ok
20:53:29.0620 1804 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
20:53:29.0621 1804 sermouse - ok
20:53:29.0690 1804 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
20:53:29.0704 1804 SessionEnv - ok
20:53:29.0735 1804 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
20:53:29.0737 1804 sffdisk - ok
20:53:29.0762 1804 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
20:53:29.0764 1804 sffp_mmc - ok
20:53:29.0783 1804 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\DRIVERS\sffp_sd.sys
20:53:29.0784 1804 sffp_sd - ok
20:53:29.0809 1804 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
20:53:29.0811 1804 sfloppy - ok
20:53:29.0903 1804 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
20:53:29.0923 1804 SharedAccess - ok
20:53:30.0027 1804 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
20:53:30.0033 1804 ShellHWDetection - ok
20:53:30.0057 1804 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:53:30.0059 1804 SiSRaid2 - ok
20:53:30.0078 1804 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
20:53:30.0080 1804 SiSRaid4 - ok
20:53:30.0103 1804 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
20:53:30.0108 1804 Smb - ok
20:53:30.0150 1804 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
20:53:30.0154 1804 SNMPTRAP - ok
20:53:30.0169 1804 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
20:53:30.0170 1804 spldr - ok
20:53:30.0238 1804 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
20:53:30.0246 1804 Spooler - ok
20:53:30.0615 1804 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
20:53:30.0679 1804 sppsvc - ok
20:53:30.0823 1804 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
20:53:30.0830 1804 sppuinotify - ok
20:53:30.0913 1804 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
20:53:30.0926 1804 srv - ok
20:53:30.0970 1804 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
20:53:30.0988 1804 srv2 - ok
20:53:31.0010 1804 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
20:53:31.0023 1804 srvnet - ok
20:53:31.0096 1804 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
20:53:31.0101 1804 SSDPSRV - ok
20:53:31.0125 1804 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
20:53:31.0144 1804 SstpSvc - ok
20:53:31.0252 1804 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
20:53:31.0255 1804 STacSV - ok
20:53:31.0288 1804 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
20:53:31.0290 1804 stexstor - ok
20:53:31.0346 1804 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
20:53:31.0361 1804 STHDA - ok
20:53:31.0395 1804 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
20:53:31.0396 1804 StillCam - ok
20:53:31.0487 1804 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
20:53:31.0499 1804 stisvc - ok
20:53:31.0588 1804 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
20:53:31.0590 1804 stllssvr - ok
20:53:31.0624 1804 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
20:53:31.0625 1804 swenum - ok
20:53:31.0688 1804 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
20:53:31.0709 1804 swprv - ok
20:53:31.0775 1804 SynTP (79a93ec9d224b1f43c0e2f023d61dca3) C:\Windows\system32\DRIVERS\SynTP.sys
20:53:31.0778 1804 SynTP - ok
20:53:31.0990 1804 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
20:53:32.0015 1804 SysMain - ok
20:53:32.0147 1804 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
20:53:32.0163 1804 TabletInputService - ok
20:53:32.0222 1804 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
20:53:32.0235 1804 TapiSrv - ok
20:53:32.0300 1804 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
20:53:32.0304 1804 TBS - ok
20:53:32.0535 1804 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
20:53:32.0567 1804 Tcpip - ok
20:53:32.0847 1804 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
20:53:32.0865 1804 TCPIP6 - ok
20:53:32.0975 1804 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
20:53:32.0977 1804 tcpipreg - ok
20:53:33.0030 1804 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
20:53:33.0031 1804 TDPIPE - ok
20:53:33.0039 1804 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
20:53:33.0041 1804 TDTCP - ok
20:53:33.0105 1804 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
20:53:33.0119 1804 tdx - ok
20:53:33.0152 1804 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
20:53:33.0154 1804 TermDD - ok
20:53:33.0229 1804 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
20:53:33.0254 1804 TermService - ok
20:53:33.0291 1804 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
20:53:33.0295 1804 Themes - ok
20:53:33.0332 1804 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
20:53:33.0335 1804 THREADORDER - ok
20:53:33.0389 1804 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
20:53:33.0394 1804 TrkWks - ok
20:53:33.0457 1804 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
20:53:33.0460 1804 TrustedInstaller - ok
20:53:33.0506 1804 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:53:33.0508 1804 tssecsrv - ok
20:53:33.0552 1804 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
20:53:33.0554 1804 TsUsbFlt - ok
20:53:33.0596 1804 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
20:53:33.0599 1804 tunnel - ok
20:53:33.0628 1804 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
20:53:33.0630 1804 uagp35 - ok
20:53:33.0683 1804 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
20:53:33.0695 1804 udfs - ok
20:53:33.0730 1804 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
20:53:33.0734 1804 UI0Detect - ok
20:53:33.0773 1804 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
20:53:33.0775 1804 uliagpkx - ok
20:53:33.0821 1804 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
20:53:33.0823 1804 umbus - ok
20:53:33.0844 1804 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
20:53:33.0845 1804 UmPass - ok
20:53:33.0893 1804 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
20:53:33.0904 1804 upnphost - ok
20:53:33.0945 1804 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
20:53:33.0951 1804 USBAAPL64 - ok
20:53:33.0983 1804 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
20:53:33.0986 1804 usbccgp - ok
20:53:34.0025 1804 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
20:53:34.0033 1804 usbcir - ok
20:53:34.0071 1804 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
20:53:34.0074 1804 usbehci - ok
20:53:34.0123 1804 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
20:53:34.0130 1804 usbhub - ok
20:53:34.0154 1804 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
20:53:34.0156 1804 usbohci - ok
20:53:34.0179 1804 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
20:53:34.0180 1804 usbprint - ok
20:53:34.0218 1804 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
20:53:34.0220 1804 usbscan - ok
20:53:34.0250 1804 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:53:34.0253 1804 USBSTOR - ok
20:53:34.0282 1804 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
20:53:34.0284 1804 usbuhci - ok
20:53:34.0309 1804 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
20:53:34.0313 1804 UxSms - ok
20:53:34.0345 1804 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:53:34.0347 1804 VaultSvc - ok
20:53:34.0368 1804 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
20:53:34.0369 1804 vdrvroot - ok
20:53:34.0450 1804 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
20:53:34.0473 1804 vds - ok
20:53:34.0496 1804 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
20:53:34.0498 1804 vga - ok
20:53:34.0521 1804 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
20:53:34.0522 1804 VgaSave - ok
20:53:34.0570 1804 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
20:53:34.0581 1804 vhdmp - ok
20:53:34.0635 1804 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
20:53:34.0637 1804 viaide - ok
20:53:34.0666 1804 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
20:53:34.0671 1804 volmgr - ok
20:53:34.0734 1804 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
20:53:34.0741 1804 volmgrx - ok
20:53:34.0785 1804 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
20:53:34.0790 1804 volsnap - ok
20:53:34.0824 1804 vpnva - ok
20:53:34.0866 1804 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
20:53:34.0878 1804 vsmraid - ok
20:53:35.0049 1804 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
20:53:35.0090 1804 VSS - ok
20:53:35.0220 1804 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
20:53:35.0221 1804 vwifibus - ok
20:53:35.0242 1804 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
20:53:35.0244 1804 vwififlt - ok
20:53:35.0263 1804 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
20:53:35.0264 1804 vwifimp - ok
20:53:35.0334 1804 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
20:53:35.0343 1804 W32Time - ok
20:53:35.0362 1804 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
20:53:35.0364 1804 WacomPen - ok
20:53:35.0407 1804 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:53:35.0409 1804 WANARP - ok
20:53:35.0415 1804 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:53:35.0418 1804 Wanarpv6 - ok
20:53:35.0559 1804 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
20:53:35.0591 1804 WatAdminSvc - ok
20:53:35.0763 1804 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
20:53:35.0800 1804 wbengine - ok
20:53:35.0940 1804 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
20:53:35.0959 1804 WbioSrvc - ok
20:53:36.0030 1804 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
20:53:36.0049 1804 wcncsvc - ok
20:53:36.0080 1804 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
20:53:36.0085 1804 WcsPlugInService - ok
20:53:36.0128 1804 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
20:53:36.0129 1804 Wd - ok
20:53:36.0198 1804 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
20:53:36.0208 1804 Wdf01000 - ok
20:53:36.0235 1804 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
20:53:36.0240 1804 WdiServiceHost - ok
20:53:36.0248 1804 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
20:53:36.0252 1804 WdiSystemHost - ok
20:53:36.0316 1804 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
20:53:36.0333 1804 WebClient - ok
20:53:36.0362 1804 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
20:53:36.0381 1804 Wecsvc - ok
20:53:36.0406 1804 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
20:53:36.0411 1804 wercplsupport - ok
20:53:36.0435 1804 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
20:53:36.0439 1804 WerSvc - ok
20:53:36.0464 1804 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
20:53:36.0465 1804 WfpLwf - ok
20:53:36.0490 1804 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
20:53:36.0491 1804 WIMMount - ok
20:53:36.0520 1804 WinDefend - ok
20:53:36.0556 1804 WinHttpAutoProxySvc - ok
20:53:36.0640 1804 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
20:53:36.0645 1804 Winmgmt - ok
20:53:36.0870 1804 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
20:53:36.0909 1804 WinRM - ok
20:53:37.0051 1804 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
20:53:37.0053 1804 WinUsb - ok
20:53:37.0164 1804 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
20:53:37.0191 1804 Wlansvc - ok
20:53:37.0297 1804 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:53:37.0299 1804 wlcrasvc - ok
20:53:37.0597 1804 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:53:37.0639 1804 wlidsvc - ok
20:53:37.0783 1804 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
20:53:37.0785 1804 WmiAcpi - ok
20:53:37.0857 1804 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
20:53:37.0867 1804 wmiApSrv - ok
20:53:37.0891 1804 WMPNetworkSvc - ok
20:53:37.0933 1804 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
20:53:37.0937 1804 WPCSvc - ok
20:53:37.0986 1804 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
20:53:38.0002 1804 WPDBusEnum - ok
20:53:38.0029 1804 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
20:53:38.0030 1804 ws2ifsl - ok
20:53:38.0061 1804 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
20:53:38.0066 1804 wscsvc - ok
20:53:38.0101 1804 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
20:53:38.0102 1804 WSDPrintDevice - ok
20:53:38.0110 1804 WSearch - ok
20:53:38.0349 1804 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
20:53:38.0385 1804 wuauserv - ok
20:53:38.0545 1804 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
20:53:38.0559 1804 WudfPf - ok
20:53:38.0595 1804 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:53:38.0607 1804 WUDFRd - ok
20:53:38.0642 1804 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
20:53:38.0660 1804 wudfsvc - ok
20:53:38.0707 1804 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
20:53:38.0726 1804 WwanSvc - ok
20:53:38.0801 1804 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} (1cacfef9e5dd866c5b79a135ee729e18) C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
20:53:38.0803 1804 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
20:53:38.0832 1804 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:53:39.0208 1804 \Device\Harddisk0\DR0 - ok
20:53:39.0232 1804 Boot (0x1200) (5137cb185b10339b529ca2ccd62b8a85) \Device\Harddisk0\DR0\Partition0
20:53:39.0234 1804 \Device\Harddisk0\DR0\Partition0 - ok
20:53:39.0253 1804 Boot (0x1200) (954870a8f90aab033266e3aaf0c00aa1) \Device\Harddisk0\DR0\Partition1
20:53:39.0255 1804 \Device\Harddisk0\DR0\Partition1 - ok
20:53:39.0256 1804 ============================================================
20:53:39.0256 1804 Scan finished
20:53:39.0256 1804 ============================================================
20:53:39.0273 2580 Detected object count: 0
20:53:39.0273 2580 Actual detected object count: 0
22:46:49.0795 4960 ============================================================
22:46:49.0795 4960 Scan started
22:46:49.0795 4960 Mode: Manual; TDLFS;
22:46:49.0795 4960 ============================================================
22:46:50.0606 4960 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
22:46:50.0715 4960 1394ohci - ok
22:46:50.0793 4960 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
22:46:50.0793 4960 ACPI - ok
22:46:50.0855 4960 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
22:46:50.0855 4960 AcpiPmi - ok
22:46:50.0949 4960 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:46:50.0949 4960 AdobeARMservice - ok
22:46:51.0152 4960 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:46:51.0152 4960 AdobeFlashPlayerUpdateSvc - ok
22:46:51.0214 4960 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
22:46:51.0230 4960 adp94xx - ok
22:46:51.0323 4960 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
22:46:51.0339 4960 adpahci - ok
22:46:51.0370 4960 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
22:46:51.0370 4960 adpu320 - ok
22:46:51.0401 4960 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
22:46:51.0401 4960 AeLookupSvc - ok
22:46:51.0526 4960 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
22:46:51.0526 4960 AESTFilters - ok
22:46:51.0604 4960 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
22:46:51.0620 4960 AFD - ok
22:46:51.0667 4960 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
22:46:51.0667 4960 agp440 - ok
22:46:51.0713 4960 aksdf (94c0972b06c75456ed574dd46417b1d8) C:\Windows\system32\drivers\aksdf.sys
22:46:51.0713 4960 aksdf - ok
22:46:51.0901 4960 aksfridge (7b0bc062ca6abab23f88ea483b5a538e) C:\Windows\system32\drivers\aksfridge.sys
22:46:51.0901 4960 aksfridge - ok
22:46:51.0947 4960 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
22:46:51.0947 4960 ALG - ok
22:46:51.0963 4960 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
22:46:51.0963 4960 aliide - ok
22:46:51.0979 4960 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
22:46:51.0979 4960 amdide - ok
22:46:52.0025 4960 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
22:46:52.0025 4960 AmdK8 - ok
22:46:52.0041 4960 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
22:46:52.0041 4960 AmdPPM - ok
22:46:52.0072 4960 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
22:46:52.0088 4960 amdsata - ok
22:46:52.0119 4960 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
22:46:52.0135 4960 amdsbs - ok
22:46:52.0150 4960 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
22:46:52.0150 4960 amdxata - ok
22:46:52.0197 4960 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
22:46:52.0197 4960 AppID - ok
22:46:52.0228 4960 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
22:46:52.0228 4960 AppIDSvc - ok
22:46:52.0275 4960 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
22:46:52.0275 4960 Appinfo - ok
22:46:52.0369 4960 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:46:52.0369 4960 Apple Mobile Device - ok
22:46:52.0478 4960 appliand (0eeff7103e4f3e783f3d2b870af67f1c) C:\Windows\system32\DRIVERS\appliand.sys
22:46:52.0478 4960 appliand - ok
22:46:52.0478 4960 appliandMP (0eeff7103e4f3e783f3d2b870af67f1c) C:\Windows\system32\DRIVERS\appliand.sys
22:46:52.0478 4960 appliandMP - ok
22:46:52.0525 4960 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
22:46:52.0525 4960 arc - ok
22:46:52.0540 4960 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
22:46:52.0540 4960 arcsas - ok
22:46:52.0649 4960 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:46:52.0649 4960 aspnet_state - ok
22:46:52.0681 4960 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
22:46:52.0681 4960 AsyncMac - ok
22:46:52.0712 4960 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
22:46:52.0712 4960 atapi - ok
22:46:52.0805 4960 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
22:46:52.0821 4960 AudioEndpointBuilder - ok
22:46:52.0821 4960 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
22:46:52.0837 4960 AudioSrv - ok
22:46:52.0946 4960 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
22:46:52.0961 4960 AxInstSV - ok
22:46:53.0055 4960 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
22:46:53.0180 4960 b06bdrv - ok
22:46:53.0227 4960 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
22:46:53.0242 4960 b57nd60a - ok
22:46:53.0570 4960 BCM43XX (fb4fda64f2e8552eaeb5986c3f34462c) C:\Windows\system32\DRIVERS\bcmwl664.sys
22:46:53.0617 4960 BCM43XX - ok
22:46:53.0757 4960 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
22:46:53.0757 4960 BDESVC - ok
22:46:53.0804 4960 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
22:46:53.0804 4960 Beep - ok
22:46:53.0929 4960 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
22:46:53.0944 4960 BFE - ok
22:46:54.0053 4960 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
22:46:54.0085 4960 BITS - ok
22:46:54.0116 4960 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
22:46:54.0116 4960 blbdrive - ok
22:46:54.0225 4960 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
22:46:54.0241 4960 Bonjour Service - ok
22:46:54.0272 4960 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
22:46:54.0272 4960 bowser - ok
22:46:54.0303 4960 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:46:54.0303 4960 BrFiltLo - ok
22:46:54.0334 4960 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:46:54.0334 4960 BrFiltUp - ok
22:46:54.0350 4960 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
22:46:54.0350 4960 BridgeMP - ok
22:46:54.0397 4960 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
22:46:54.0397 4960 Browser - ok
22:46:54.0443 4960 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
22:46:54.0459 4960 Brserid - ok
22:46:54.0490 4960 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
22:46:54.0490 4960 BrSerWdm - ok
22:46:54.0506 4960 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:46:54.0521 4960 BrUsbMdm - ok
22:46:54.0537 4960 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
22:46:54.0537 4960 BrUsbSer - ok
22:46:54.0553 4960 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
22:46:54.0553 4960 BTHMODEM - ok
22:46:54.0599 4960 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
22:46:54.0615 4960 bthserv - ok
22:46:54.0646 4960 catchme - ok
22:46:54.0677 4960 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
22:46:54.0677 4960 cdfs - ok
22:46:54.0740 4960 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
22:46:54.0755 4960 cdrom - ok
22:46:54.0787 4960 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
22:46:54.0787 4960 CertPropSvc - ok
22:46:54.0818 4960 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
22:46:54.0818 4960 circlass - ok
22:46:54.0865 4960 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
22:46:54.0880 4960 CLFS - ok
22:46:54.0958 4960 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:46:54.0974 4960 clr_optimization_v2.0.50727_32 - ok
22:46:55.0052 4960 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:46:55.0052 4960 clr_optimization_v2.0.50727_64 - ok
22:46:55.0145 4960 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:46:55.0161 4960 clr_optimization_v4.0.30319_32 - ok
22:46:55.0208 4960 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:46:55.0239 4960 clr_optimization_v4.0.30319_64 - ok
22:46:55.0286 4960 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
22:46:55.0286 4960 CmBatt - ok
22:46:55.0333 4960 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
22:46:55.0348 4960 cmdide - ok
22:46:55.0457 4960 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
22:46:55.0504 4960 CNG - ok
22:46:55.0535 4960 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
22:46:55.0535 4960 Compbatt - ok
22:46:55.0613 4960 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
22:46:55.0613 4960 CompositeBus - ok
22:46:55.0613 4960 COMSysApp - ok
22:46:55.0707 4960 cpuz134 - ok
22:46:55.0723 4960 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
22:46:55.0723 4960 crcdisk - ok
22:46:55.0801 4960 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
22:46:55.0801 4960 CryptSvc - ok
22:46:55.0863 4960 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:46:55.0925 4960 CtClsFlt - ok
22:46:56.0035 4960 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
22:46:56.0050 4960 DcomLaunch - ok
22:46:56.0097 4960 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
22:46:56.0113 4960 defragsvc - ok
22:46:56.0159 4960 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
22:46:56.0175 4960 DfsC - ok
22:46:56.0269 4960 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
22:46:56.0284 4960 Dhcp - ok
22:46:56.0315 4960 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
22:46:56.0315 4960 discache - ok
22:46:56.0362 4960 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
22:46:56.0362 4960 Disk - ok
22:46:56.0378 4960 dlcc_device - ok
22:46:56.0425 4960 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
22:46:56.0425 4960 Dnscache - ok
22:46:56.0471 4960 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
22:46:56.0503 4960 dot3svc - ok
22:46:56.0549 4960 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
22:46:56.0565 4960 DPS - ok
22:46:56.0581 4960 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
22:46:56.0581 4960 drmkaud - ok
22:46:56.0705 4960 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
22:46:56.0737 4960 DXGKrnl - ok
22:46:56.0783 4960 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
22:46:56.0783 4960 EapHost - ok
22:46:57.0142 4960 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
22:46:57.0205 4960 ebdrv - ok
22:46:57.0345 4960 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
22:46:57.0345 4960 EFS - ok
22:46:57.0454 4960 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
22:46:57.0470 4960 ehRecvr - ok
22:46:57.0501 4960 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
22:46:57.0501 4960 ehSched - ok
22:46:57.0595 4960 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
22:46:57.0610 4960 elxstor - ok
22:46:57.0641 4960 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
22:46:57.0641 4960 ErrDev - ok
22:46:57.0735 4960 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
22:46:57.0751 4960 EventSystem - ok
22:46:57.0782 4960 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
22:46:57.0797 4960 exfat - ok
22:46:57.0829 4960 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
22:46:57.0829 4960 fastfat - ok
22:46:57.0953 4960 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
22:46:58.0000 4960 Fax - ok
22:46:58.0063 4960 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
22:46:58.0063 4960 fdc - ok
22:46:58.0125 4960 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
22:46:58.0125 4960 fdPHost - ok
22:46:58.0141 4960 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
22:46:58.0156 4960 FDResPub - ok
22:46:58.0219 4960 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
22:46:58.0219 4960 FileInfo - ok
22:46:58.0250 4960 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
22:46:58.0250 4960 Filetrace - ok
22:46:58.0312 4960 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
22:46:58.0312 4960 flpydisk - ok
22:46:58.0375 4960 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
22:46:58.0390 4960 FltMgr - ok
22:46:58.0624 4960 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
22:46:58.0656 4960 FontCache - ok
22:46:58.0749 4960 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:46:58.0749 4960 FontCache3.0.0.0 - ok
22:46:58.0796 4960 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
22:46:58.0796 4960 FsDepends - ok
22:46:58.0874 4960 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
22:46:58.0874 4960 fssfltr - ok
22:46:59.0092 4960 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
22:46:59.0139 4960 fsssvc - ok
22:46:59.0295 4960 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
22:46:59.0295 4960 Fs_Rec - ok
22:46:59.0326 4960 FTDIBUS (0f210048c6bfbfbc0f50816bce40b575) C:\Windows\system32\drivers\ftdibus.sys
22:46:59.0326 4960 FTDIBUS - ok
22:46:59.0373 4960 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
22:46:59.0404 4960 fvevol - ok
22:46:59.0436 4960 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
22:46:59.0436 4960 gagp30kx - ok
22:46:59.0482 4960 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:46:59.0482 4960 GEARAspiWDM - ok
22:46:59.0576 4960 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
22:46:59.0592 4960 gpsvc - ok
22:46:59.0654 4960 hardlock (78fad9117e4527f2ca82259da10f40bd) C:\Windows\system32\drivers\hardlock.sys
22:46:59.0670 4960 hardlock - ok
22:46:59.0670 4960 hasplms - ok
22:46:59.0685 4960 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
22:46:59.0685 4960 hcw85cir - ok
22:46:59.0732 4960 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
22:46:59.0748 4960 HDAudBus - ok
22:46:59.0763 4960 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
22:46:59.0779 4960 HidBatt - ok
22:46:59.0794 4960 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
22:46:59.0810 4960 HidBth - ok
22:46:59.0841 4960 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
22:46:59.0841 4960 HidIr - ok
22:46:59.0872 4960 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
22:46:59.0872 4960 hidserv - ok
22:46:59.0888 4960 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
22:46:59.0904 4960 HidUsb - ok
22:46:59.0950 4960 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
22:46:59.0950 4960 hkmsvc - ok
22:46:59.0997 4960 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
22:47:00.0028 4960 HomeGroupListener - ok
22:47:00.0075 4960 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
22:47:00.0075 4960 HomeGroupProvider - ok
22:47:00.0138 4960 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
22:47:00.0138 4960 HpSAMD - ok
22:47:00.0247 4960 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
22:47:00.0262 4960 HTTP - ok
22:47:00.0309 4960 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
22:47:00.0309 4960 hwpolicy - ok
22:47:00.0340 4960 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
22:47:00.0356 4960 i8042prt - ok
22:47:00.0418 4960 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
22:47:00.0434 4960 iaStorV - ok
22:47:00.0777 4960 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:47:00.0808 4960 idsvc - ok
22:47:01.0791 4960 igfx (c6238c6abd6ac99f5d152da4e9439a3d) C:\Windows\system32\DRIVERS\igdkmd64.sys
22:47:02.0041 4960 igfx - ok
22:47:02.0212 4960 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
22:47:02.0212 4960 iirsp - ok
22:47:02.0337 4960 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
22:47:02.0368 4960 IKEEXT - ok
22:47:02.0400 4960 IntcHdmiAddService (d485d3bd3e2179aa86853a182f70699f) C:\Windows\system32\drivers\IntcHdmi.sys
22:47:02.0415 4960 IntcHdmiAddService - ok
22:47:02.0446 4960 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
22:47:02.0446 4960 intelide - ok
22:47:02.0478 4960 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
22:47:02.0478 4960 intelppm - ok
22:47:02.0509 4960 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
22:47:02.0509 4960 IPBusEnum - ok
22:47:02.0556 4960 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:47:02.0556 4960 IpFilterDriver - ok
22:47:02.0665 4960 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
22:47:02.0680 4960 iphlpsvc - ok
22:47:02.0727 4960 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
22:47:02.0727 4960 IPMIDRV - ok
22:47:02.0774 4960 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
22:47:02.0821 4960 IPNAT - ok
22:47:03.0102 4960 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
22:47:03.0148 4960 iPod Service - ok
22:47:03.0180 4960 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
22:47:03.0180 4960 IRENUM - ok
22:47:03.0211 4960 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
22:47:03.0211 4960 isapnp - ok
22:47:03.0258 4960 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
22:47:03.0273 4960 iScsiPrt - ok
22:47:03.0336 4960 k57nd60a (7dbafe10c1b777305c80bea42fbda710) C:\Windows\system32\DRIVERS\k57nd60a.sys
22:47:03.0336 4960 k57nd60a - ok
22:47:03.0367 4960 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
22:47:03.0367 4960 kbdclass - ok
22:47:03.0398 4960 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
22:47:03.0398 4960 kbdhid - ok
22:47:03.0429 4960 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:47:03.0429 4960 KeyIso - ok
22:47:03.0476 4960 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
22:47:03.0492 4960 KSecDD - ok
22:47:03.0523 4960 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
22:47:03.0538 4960 KSecPkg - ok
22:47:03.0554 4960 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
22:47:03.0554 4960 ksthunk - ok
22:47:03.0616 4960 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
22:47:03.0632 4960 KtmRm - ok
22:47:03.0679 4960 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
22:47:03.0679 4960 LanmanServer - ok
22:47:03.0726 4960 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
22:47:03.0741 4960 LanmanWorkstation - ok
22:47:03.0757 4960 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
22:47:03.0757 4960 lltdio - ok
22:47:03.0819 4960 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
22:47:03.0835 4960 lltdsvc - ok
22:47:03.0850 4960 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
22:47:03.0850 4960 lmhosts - ok
22:47:03.0882 4960 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
22:47:03.0897 4960 LSI_FC - ok
22:47:03.0928 4960 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
22:47:03.0928 4960 LSI_SAS - ok
22:47:03.0960 4960 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:47:03.0960 4960 LSI_SAS2 - ok
22:47:03.0991 4960 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:47:03.0991 4960 LSI_SCSI - ok
22:47:04.0022 4960 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
22:47:04.0038 4960 luafv - ok
22:47:04.0084 4960 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
22:47:04.0100 4960 Mcx2Svc - ok
22:47:04.0116 4960 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
22:47:04.0116 4960 megasas - ok
22:47:04.0162 4960 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
22:47:04.0178 4960 MegaSR - ok
22:47:04.0287 4960 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
22:47:04.0287 4960 Microsoft Office Groove Audit Service - ok
22:47:04.0334 4960 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
22:47:04.0334 4960 MMCSS - ok
22:47:04.0350 4960 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
22:47:04.0350 4960 Modem - ok
22:47:04.0381 4960 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
22:47:04.0381 4960 monitor - ok
22:47:04.0412 4960 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
22:47:04.0412 4960 mouclass - ok
22:47:04.0443 4960 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
22:47:04.0443 4960 mouhid - ok
22:47:04.0490 4960 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
22:47:04.0506 4960 mountmgr - ok
22:47:04.0584 4960 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:47:04.0599 4960 MozillaMaintenance - ok
22:47:04.0646 4960 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
22:47:04.0662 4960 MpFilter - ok
22:47:04.0693 4960 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
22:47:04.0708 4960 mpio - ok
22:47:04.0740 4960 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
22:47:04.0740 4960 mpsdrv - ok
22:47:04.0849 4960 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
22:47:04.0864 4960 MpsSvc - ok
22:47:04.0911 4960 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
22:47:04.0927 4960 MRxDAV - ok
22:47:04.0974 4960 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:47:04.0989 4960 mrxsmb - ok
22:47:05.0052 4960 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:47:05.0083 4960 mrxsmb10 - ok
22:47:05.0114 4960 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:47:05.0145 4960 mrxsmb20 - ok
22:47:05.0223 4960 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
22:47:05.0223 4960 msahci - ok
22:47:05.0270 4960 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
22:47:05.0286 4960 msdsm - ok
22:47:05.0364 4960 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
22:47:05.0364 4960 MSDTC - ok
22:47:05.0410 4960 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
22:47:05.0410 4960 Msfs - ok
22:47:05.0426 4960 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
22:47:05.0426 4960 mshidkmdf - ok
22:47:05.0457 4960 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
22:47:05.0457 4960 msisadrv - ok
22:47:05.0488 4960 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
22:47:05.0504 4960 MSiSCSI - ok
22:47:05.0520 4960 msiserver - ok
22:47:05.0535 4960 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
22:47:05.0535 4960 MSKSSRV - ok
22:47:05.0691 4960 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:47:05.0691 4960 MsMpSvc - ok
22:47:05.0691 4960 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
22:47:05.0691 4960 MSPCLOCK - ok
22:47:05.0707 4960 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
22:47:05.0707 4960 MSPQM - ok
22:47:05.0769 4960 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
22:47:05.0800 4960 MsRPC - ok
22:47:05.0832 4960 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
22:47:05.0832 4960 mssmbios - ok
22:47:05.0832 4960 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
22:47:05.0832 4960 MSTEE - ok
22:47:05.0863 4960 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
22:47:05.0863 4960 MTConfig - ok
22:47:05.0878 4960 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
22:47:05.0878 4960 Mup - ok
22:47:05.0956 4960 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
22:47:05.0956 4960 napagent - ok
22:47:06.0003 4960 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
22:47:06.0003 4960 NativeWifiP - ok
22:47:06.0112 4960 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
22:47:06.0144 4960 NDIS - ok
22:47:06.0159 4960 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
22:47:06.0159 4960 NdisCap - ok
22:47:06.0190 4960 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
22:47:06.0190 4960 NdisTapi - ok
22:47:06.0237 4960 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
22:47:06.0237 4960 Ndisuio - ok
22:47:06.0284 4960 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
22:47:06.0300 4960 NdisWan - ok
22:47:06.0331 4960 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
22:47:06.0346 4960 NDProxy - ok
22:47:06.0362 4960 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
22:47:06.0362 4960 NetBIOS - ok
22:47:06.0424 4960 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
22:47:06.0440 4960 NetBT - ok
22:47:06.0502 4960 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:47:06.0502 4960 Netlogon - ok
22:47:06.0565 4960 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
22:47:06.0580 4960 Netman - ok
22:47:06.0721 4960 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:47:06.0736 4960 NetMsmqActivator - ok
22:47:06.0736 4960 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:47:06.0752 4960 NetPipeActivator - ok
22:47:06.0799 4960 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
22:47:06.0814 4960 netprofm - ok
22:47:06.0814 4960 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:47:06.0814 4960 NetTcpActivator - ok
22:47:06.0830 4960 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:47:06.0830 4960 NetTcpPortSharing - ok
22:47:06.0877 4960 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
22:47:06.0877 4960 nfrd960 - ok
22:47:06.0955 4960 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:47:06.0970 4960 NisDrv - ok
22:47:07.0111 4960 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
22:47:07.0126 4960 NisSrv - ok
22:47:07.0189 4960 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
22:47:07.0204 4960 NlaSvc - ok
22:47:07.0251 4960 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
22:47:07.0251 4960 Npfs - ok
22:47:07.0407 4960 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
22:47:07.0423 4960 nsi - ok
22:47:07.0423 4960 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
22:47:07.0438 4960 nsiproxy - ok
22:47:07.0626 4960 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
22:47:07.0672 4960 Ntfs - ok
22:47:07.0813 4960 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
22:47:07.0813 4960 Null - ok
22:47:07.0860 4960 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
22:47:07.0875 4960 nvraid - ok
22:47:07.0906 4960 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
22:47:07.0906 4960 nvstor - ok
22:47:07.0938 4960 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
22:47:07.0953 4960 nv_agp - ok
22:47:08.0000 4960 OA008Ufd (d09cc91e92fd1ff81af3a14be2cbb20d) C:\Windows\system32\DRIVERS\OA008Ufd.sys
22:47:08.0000 4960 OA008Ufd - ok
22:47:08.0062 4960 OA008Vid (60fd277cfd34f680a1668ac123b324ae) C:\Windows\system32\DRIVERS\OA008Vid.sys
22:47:08.0078 4960 OA008Vid - ok
22:47:08.0187 4960 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:47:08.0203 4960 odserv - ok
22:47:08.0250 4960 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
22:47:08.0250 4960 ohci1394 - ok
22:47:08.0312 4960 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:47:08.0328 4960 ose - ok
22:47:08.0905 4960 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:47:09.0030 4960 osppsvc - ok
22:47:09.0186 4960 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
22:47:09.0201 4960 p2pimsvc - ok
22:47:09.0264 4960 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
22:47:09.0264 4960 p2psvc - ok
22:47:09.0310 4960 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
22:47:09.0326 4960 Parport - ok
22:47:09.0373 4960 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
22:47:09.0373 4960 partmgr - ok
22:47:09.0404 4960 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
22:47:09.0466 4960 PcaSvc - ok
22:47:09.0560 4960 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
22:47:09.0576 4960 pci - ok
22:47:09.0654 4960 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
22:47:09.0654 4960 pciide - ok
22:47:09.0716 4960 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
22:47:09.0778 4960 pcmcia - ok
22:47:09.0794 4960 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
22:47:09.0794 4960 pcw - ok
22:47:09.0903 4960 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
22:47:09.0919 4960 PEAUTH - ok
22:47:10.0028 4960 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
22:47:10.0028 4960 PerfHost - ok
22:47:10.0200 4960 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
22:47:10.0231 4960 pla - ok
22:47:10.0293 4960 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
22:47:10.0309 4960 PlugPlay - ok
22:47:10.0340 4960 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
22:47:10.0340 4960 PNRPAutoReg - ok
22:47:10.0387 4960 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
22:47:10.0387 4960 PNRPsvc - ok
22:47:10.0449 4960 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
22:47:10.0480 4960 PolicyAgent - ok
22:47:10.0527 4960 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
22:47:10.0527 4960 Power - ok
22:47:10.0590 4960 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
22:47:10.0605 4960 PptpMiniport - ok
22:47:10.0636 4960 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
22:47:10.0636 4960 Processor - ok
22:47:10.0683 4960 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
22:47:10.0699 4960 ProfSvc - ok
22:47:10.0730 4960 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:47:10.0730 4960 ProtectedStorage - ok
22:47:10.0777 4960 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
22:47:10.0792 4960 Psched - ok
22:47:10.0824 4960 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
22:47:10.0824 4960 PxHlpa64 - ok
22:47:10.0980 4960 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
22:47:11.0011 4960 ql2300 - ok
22:47:11.0151 4960 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
22:47:11.0167 4960 ql40xx - ok
22:47:11.0214 4960 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
22:47:11.0229 4960 QWAVE - ok
22:47:11.0245 4960 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
22:47:11.0245 4960 QWAVEdrv - ok
22:47:11.0276 4960 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
22:47:11.0276 4960 RasAcd - ok
22:47:11.0307 4960 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:47:11.0307 4960 RasAgileVpn - ok
22:47:11.0338 4960 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
22:47:11.0338 4960 RasAuto - ok
22:47:11.0385 4960 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:47:11.0401 4960 Rasl2tp - ok
22:47:11.0479 4960 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
22:47:11.0494 4960 RasMan - ok
22:47:11.0526 4960 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
22:47:11.0526 4960 RasPppoe - ok
22:47:11.0541 4960 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
22:47:11.0557 4960 RasSstp - ok
22:47:11.0572 4960 rcmirror (96597c96d5acf4a3ef0b24d396853879) C:\Windows\system32\DRIVERS\rcmirror.sys
22:47:11.0572 4960 rcmirror - ok
22:47:11.0635 4960 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
22:47:11.0650 4960 rdbss - ok
22:47:11.0682 4960 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
22:47:11.0682 4960 rdpbus - ok
22:47:11.0697 4960 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:47:11.0697 4960 RDPCDD - ok
22:47:11.0713 4960 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
22:47:11.0713 4960 RDPENCDD - ok
22:47:11.0728 4960 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
22:47:11.0728 4960 RDPREFMP - ok
22:47:11.0775 4960 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
22:47:11.0791 4960 RDPWD - ok
22:47:11.0853 4960 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
22:47:11.0884 4960 rdyboost - ok
22:47:11.0947 4960 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
22:47:11.0962 4960 RemoteAccess - ok
22:47:12.0009 4960 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
22:47:12.0009 4960 RemoteRegistry - ok
22:47:12.0056 4960 rimmptsk (6faf5b04bedc66d300d9d233b2d222f0) C:\Windows\system32\DRIVERS\rimmpx64.sys
22:47:12.0056 4960 rimmptsk - ok
22:47:12.0103 4960 rimsptsk (67f50c31713106fd1b0f286f86aa2b2e) C:\Windows\system32\DRIVERS\rimspx64.sys
22:47:12.0103 4960 rimsptsk - ok
22:47:12.0165 4960 RimUsb (5790bca445cc40df8b38c2c48608aac2) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
22:47:12.0165 4960 RimUsb - ok
22:47:12.0181 4960 RimVSerPort (c903d49655b4aae46673f0aaa6be0f58) C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
22:47:12.0181 4960 RimVSerPort - ok
22:47:12.0228 4960 rismxdp (4d7ef3d46346ec4c58784db964b365de) C:\Windows\system32\DRIVERS\rixdpx64.sys
22:47:12.0228 4960 rismxdp - ok
22:47:12.0259 4960 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
22:47:12.0259 4960 ROOTMODEM - ok
22:47:12.0352 4960 Roxio UPnP Renderer 9 (afd61a7c48a3e15c86a6fadf0b69a2e4) C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
22:47:12.0352 4960 Roxio UPnP Renderer 9 - ok
22:47:12.0399 4960 Roxio Upnp Server 9 (efbb36e2bb02169d26e9980778fc20d3) C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
22:47:12.0415 4960 Roxio Upnp Server 9 - ok
22:47:12.0540 4960 RoxLiveShare9 (78e680a105f47b6aa0003bd23ed9fa51) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
22:47:12.0555 4960 RoxLiveShare9 - ok
22:47:12.0649 4960 RoxMediaDB9 (9d5c024170c376d7cc66ed853fda9068) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
22:47:12.0696 4960 RoxMediaDB9 - ok
22:47:12.0742 4960 RoxWatch9 (87f175539dbba297018aa7fcdd563ff7) C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
22:47:12.0758 4960 RoxWatch9 - ok
22:47:12.0867 4960 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
22:47:12.0867 4960 RpcEptMapper - ok
22:47:12.0898 4960 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
22:47:12.0898 4960 RpcLocator - ok
22:47:12.0976 4960 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
22:47:12.0992 4960 RpcSs - ok
22:47:13.0023 4960 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
22:47:13.0039 4960 rspndr - ok
22:47:13.0070 4960 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:47:13.0070 4960 SamSs - ok
22:47:13.0195 4960 SASDIFSV (99df79c258b3342b6c8a5f802998de56) C:\Users\Mark\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.SYS
22:47:13.0195 4960 SASDIFSV - ok
22:47:13.0210 4960 SASKUTIL (2859c35c0651e8eb0d86d48e740388f2) C:\Users\Mark\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.SYS
22:47:13.0210 4960 SASKUTIL - ok
22:47:13.0242 4960 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
22:47:13.0242 4960 sbp2port - ok
22:47:13.0398 4960 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
22:47:13.0429 4960 SBSDWSCService - ok
22:47:13.0476 4960 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
22:47:13.0476 4960 SCardSvr - ok
22:47:13.0538 4960 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
22:47:13.0538 4960 scfilter - ok
22:47:13.0663 4960 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
22:47:13.0710 4960 Schedule - ok
22:47:13.0756 4960 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
22:47:13.0756 4960 SCPolicySvc - ok
22:47:13.0803 4960 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
22:47:13.0819 4960 sdbus - ok
22:47:13.0866 4960 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
22:47:13.0866 4960 SDRSVC - ok
22:47:13.0897 4960 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:47:13.0897 4960 secdrv - ok
22:47:13.0944 4960 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
22:47:13.0944 4960 seclogon - ok
22:47:13.0975 4960 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
22:47:13.0975 4960 SENS - ok
22:47:13.0990 4960 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
22:47:13.0990 4960 SensrSvc - ok
22:47:14.0006 4960 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
22:47:14.0006 4960 Serenum - ok
22:47:14.0022 4960 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
22:47:14.0037 4960 Serial - ok
22:47:14.0084 4960 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
22:47:14.0084 4960 sermouse - ok
22:47:14.0178 4960 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
22:47:14.0178 4960 SessionEnv - ok
22:47:14.0209 4960 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
22:47:14.0209 4960 sffdisk - ok
22:47:14.0287 4960 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
22:47:14.0287 4960 sffp_mmc - ok
22:47:14.0302 4960 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\DRIVERS\sffp_sd.sys
22:47:14.0302 4960 sffp_sd - ok
22:47:14.0334 4960 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
22:47:14.0334 4960 sfloppy - ok
22:47:14.0536 4960 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
22:47:14.0568 4960 SharedAccess - ok
22:47:14.0661 4960 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
22:47:14.0661 4960 ShellHWDetection - ok
22:47:14.0692 4960 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:47:14.0692 4960 SiSRaid2 - ok
22:47:14.0755 4960 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
22:47:14.0755 4960 SiSRaid4 - ok
22:47:14.0786 4960 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
22:47:14.0802 4960 Smb - ok
22:47:14.0833 4960 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
22:47:14.0848 4960 SNMPTRAP - ok
22:47:14.0864 4960 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
22:47:14.0864 4960 spldr - ok
22:47:14.0926 4960 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
22:47:14.0942 4960 Spooler - ok
22:47:15.0316 4960 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
22:47:15.0363 4960 sppsvc - ok
22:47:15.0488 4960 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
22:47:15.0488 4960 sppuinotify - ok
22:47:15.0597 4960 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
22:47:15.0597 4960 srv - ok
22:47:15.0644 4960 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
22:47:15.0660 4960 srv2 - ok
22:47:15.0675 4960 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
22:47:15.0691 4960 srvnet - ok
22:47:15.0722 4960 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
22:47:15.0722 4960 SSDPSRV - ok
22:47:15.0753 4960 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
22:47:15.0753 4960 SstpSvc - ok
22:47:15.0862 4960 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
22:47:15.0878 4960 STacSV - ok
22:47:15.0925 4960 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
22:47:15.0925 4960 stexstor - ok
22:47:15.0987 4960 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
22:47:15.0987 4960 STHDA - ok
22:47:16.0034 4960 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
22:47:16.0034 4960 StillCam - ok
22:47:16.0112 4960 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
22:47:16.0128 4960 stisvc - ok
22:47:16.0206 4960 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
22:47:16.0206 4960 stllssvr - ok
22:47:16.0252 4960 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
22:47:16.0252 4960 swenum - ok
22:47:16.0346 4960 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
22:47:16.0362 4960 swprv - ok
22:47:16.0408 4960 SynTP (79a93ec9d224b1f43c0e2f023d61dca3) C:\Windows\system32\DRIVERS\SynTP.sys
22:47:16.0424 4960 SynTP - ok
22:47:16.0627 4960 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
22:47:16.0642 4960 SysMain - ok
22:47:16.0814 4960 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
22:47:16.0814 4960 TabletInputService - ok
22:47:16.0908 4960 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
22:47:16.0908 4960 TapiSrv - ok
22:47:17.0032 4960 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
22:47:17.0032 4960 TBS - ok
22:47:17.0266 4960 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
22:47:17.0313 4960 Tcpip - ok
22:47:17.0578 4960 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
22:47:17.0594 4960 TCPIP6 - ok
22:47:17.0703 4960 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
22:47:17.0703 4960 tcpipreg - ok
22:47:17.0766 4960 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
22:47:17.0766 4960 TDPIPE - ok
22:47:17.0766 4960 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
22:47:17.0781 4960 TDTCP - ok
22:47:17.0844 4960 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
22:47:17.0859 4960 tdx - ok
22:47:17.0890 4960 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
22:47:17.0890 4960 TermDD - ok
22:47:17.0968 4960 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
22:47:17.0968 4960 TermService - ok
22:47:18.0000 4960 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
22:47:18.0000 4960 Themes - ok
22:47:18.0046 4960 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
22:47:18.0046 4960 THREADORDER - ok
22:47:18.0078 4960 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
22:47:18.0093 4960 TrkWks - ok
22:47:18.0156 4960 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
22:47:18.0171 4960 TrustedInstaller - ok
22:47:18.0218 4960 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:47:18.0218 4960 tssecsrv - ok
22:47:18.0265 4960 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
22:47:18.0265 4960 TsUsbFlt - ok
22:47:18.0312 4960 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
22:47:18.0312 4960 tunnel - ok
22:47:18.0343 4960 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
22:47:18.0343 4960 uagp35 - ok
22:47:18.0390 4960 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
22:47:18.0421 4960 udfs - ok
22:47:18.0452 4960 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
22:47:18.0452 4960 UI0Detect - ok
22:47:18.0499 4960 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
22:47:18.0499 4960 uliagpkx - ok
22:47:18.0546 4960 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
22:47:18.0546 4960 umbus - ok
22:47:18.0561 4960 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
22:47:18.0561 4960 UmPass - ok
22:47:18.0624 4960 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
22:47:18.0624 4960 upnphost - ok
22:47:18.0670 4960 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
22:47:18.0670 4960 USBAAPL64 - ok
22:47:18.0702 4960 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
22:47:18.0717 4960 usbccgp - ok
22:47:18.0764 4960 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
22:47:18.0780 4960 usbcir - ok
22:47:18.0795 4960 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
22:47:18.0811 4960 usbehci - ok
22:47:18.0858 4960 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
22:47:18.0858 4960 usbhub - ok
22:47:18.0889 4960 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
22:47:18.0889 4960 usbohci - ok
22:47:18.0904 4960 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
22:47:18.0904 4960 usbprint - ok
22:47:18.0951 4960 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
22:47:18.0951 4960 usbscan - ok
22:47:18.0998 4960 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:47:19.0014 4960 USBSTOR - ok
22:47:19.0076 4960 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
22:47:19.0076 4960 usbuhci - ok
22:47:19.0123 4960 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
22:47:19.0123 4960 UxSms - ok
22:47:19.0216 4960 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
22:47:19.0216 4960 VaultSvc - ok
22:47:19.0263 4960 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
22:47:19.0263 4960 vdrvroot - ok
22:47:19.0341 4960 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
22:47:19.0372 4960 vds - ok
22:47:19.0388 4960 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
22:47:19.0404 4960 vga - ok
22:47:19.0419 4960 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
22:47:19.0419 4960 VgaSave - ok
22:47:19.0466 4960 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
22:47:19.0482 4960 vhdmp - ok
22:47:19.0497 4960 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
22:47:19.0497 4960 viaide - ok
22:47:19.0544 4960 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
22:47:19.0544 4960 volmgr - ok
22:47:19.0606 4960 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
22:47:19.0638 4960 volmgrx - ok
22:47:19.0669 4960 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
22:47:19.0684 4960 volsnap - ok
22:47:19.0684 4960 vpnva - ok
22:47:19.0731 4960 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
22:47:19.0747 4960 vsmraid - ok
22:47:19.0918 4960 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
22:47:19.0950 4960 VSS - ok
22:47:20.0059 4960 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
22:47:20.0059 4960 vwifibus - ok
22:47:20.0090 4960 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
22:47:20.0090 4960 vwififlt - ok
22:47:20.0106 4960 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
22:47:20.0106 4960 vwifimp - ok
22:47:20.0168 4960 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
22:47:20.0184 4960 W32Time - ok
22:47:20.0199 4960 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
22:47:20.0199 4960 WacomPen - ok
22:47:20.0246 4960 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
22:47:20.0246 4960 WANARP - ok
22:47:20.0262 4960 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
22:47:20.0262 4960 Wanarpv6 - ok
22:47:20.0402 4960 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
22:47:20.0418 4960 WatAdminSvc - ok
22:47:20.0589 4960 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
22:47:20.0636 4960 wbengine - ok
22:47:20.0776 4960 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
22:47:20.0792 4960 WbioSrvc - ok
22:47:20.0854 4960 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
22:47:20.0870 4960 wcncsvc - ok
22:47:20.0901 4960 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
22:47:20.0901 4960 WcsPlugInService - ok
22:47:20.0932 4960 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
22:47:20.0932 4960 Wd - ok
22:47:21.0010 4960 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
22:47:21.0026 4960 Wdf01000 - ok
22:47:21.0042 4960 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
22:47:21.0057 4960 WdiServiceHost - ok
22:47:21.0057 4960 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
22:47:21.0057 4960 WdiSystemHost - ok
22:47:21.0120 4960 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
22:47:21.0135 4960 WebClient - ok
22:47:21.0182 4960 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
22:47:21.0198 4960 Wecsvc - ok
22:47:21.0213 4960 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
22:47:21.0213 4960 wercplsupport - ok
22:47:21.0244 4960 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
22:47:21.0244 4960 WerSvc - ok
22:47:21.0322 4960 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
22:47:21.0322 4960 WfpLwf - ok
22:47:21.0354 4960 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
22:47:21.0354 4960 WIMMount - ok
22:47:21.0385 4960 WinDefend - ok
22:47:21.0416 4960 WinHttpAutoProxySvc - ok
22:47:21.0510 4960 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
22:47:21.0510 4960 Winmgmt - ok
22:47:21.0712 4960 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
22:47:21.0744 4960 WinRM - ok
22:47:21.0915 4960 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
22:47:21.0915 4960 WinUsb - ok
22:47:22.0071 4960 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
22:47:22.0087 4960 Wlansvc - ok
22:47:22.0134 4960 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:47:22.0149 4960 wlcrasvc - ok
22:47:22.0414 4960 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:47:22.0461 4960 wlidsvc - ok
22:47:22.0617 4960 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
22:47:22.0617 4960 WmiAcpi - ok
22:47:22.0695 4960 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
22:47:22.0711 4960 wmiApSrv - ok
22:47:22.0742 4960 WMPNetworkSvc - ok
22:47:22.0773 4960 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
22:47:22.0773 4960 WPCSvc - ok
22:47:22.0836 4960 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
22:47:22.0851 4960 WPDBusEnum - ok
22:47:22.0867 4960 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
22:47:22.0867 4960 ws2ifsl - ok
22:47:22.0898 4960 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
22:47:22.0914 4960 wscsvc - ok
22:47:22.0945 4960 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
22:47:22.0945 4960 WSDPrintDevice - ok
22:47:22.0960 4960 WSearch - ok
22:47:23.0210 4960 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
22:47:23.0241 4960 wuauserv - ok
22:47:23.0428 4960 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
22:47:23.0444 4960 WudfPf - ok
22:47:23.0553 4960 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:47:23.0553 4960 WUDFRd - ok
22:47:23.0600 4960 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
22:47:23.0600 4960 wudfsvc - ok
22:47:23.0647 4960 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
22:47:23.0662 4960 WwanSvc - ok
22:47:23.0740 4960 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} (1cacfef9e5dd866c5b79a135ee729e18) C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
22:47:23.0756 4960 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7} - ok
22:47:23.0787 4960 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
22:47:24.0255 4960 \Device\Harddisk0\DR0 - ok
22:47:24.0286 4960 Boot (0x1200) (5137cb185b10339b529ca2ccd62b8a85) \Device\Harddisk0\DR0\Partition0
22:47:24.0286 4960 \Device\Harddisk0\DR0\Partition0 - ok
22:47:24.0302 4960 Boot (0x1200) (954870a8f90aab033266e3aaf0c00aa1) \Device\Harddisk0\DR0\Partition1
22:47:24.0302 4960 \Device\Harddisk0\DR0\Partition1 - ok
22:47:24.0318 4960 ============================================================
22:47:24.0318 4960 Scan finished
22:47:24.0318 4960 ============================================================
22:47:24.0318 2084 Detected object count: 0
22:47:24.0318 2084 Actual detected object count: 0

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:40 PM

Posted 20 June 2012 - 05:08 PM

Sorry for the delay...

In FireFox it may be the Add ons/Plugins. try disabling them one at a time and see which one was at fault.

How to disable extensions and plugins

Keeping your third-party plugins up to date
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Mark U

Mark U
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 21 June 2012 - 03:22 PM

I just completely removed firefox and reinstalled it.. It seemed to have done the trick. I did several google search and there was no redirection *knock knock*. Please leave this post open while I still test and check.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:40 PM

Posted 21 June 2012 - 07:29 PM

OK, that will work too..
I am not sure how you picked that up,but watch when you download things.. you may see things like this and you may want to UN check the box that installs a free tool bar.
Example.

Free! Google Toolbar search Google from any web page, block pop-ups


Yes, install Google Toolbar - optional


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Mark U

Mark U
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:40 PM

Posted 22 June 2012 - 04:03 PM

The thing I don't remember downloading anything in the days leading up to the first notice of it. But if it is completely gone, I am happy haha and if not I'll have to do more troubleshooting. Thanks again Boopme!

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:40 PM

Posted 22 June 2012 - 08:01 PM

You may not have. It may have piggy backed on something else,maybe an infected page..

Anyway Now if there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Posted Image > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Posted Image > Run... and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.
Vista and Windows 7 users can refer to these links:
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users