Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Zero Access Trojan


  • Please log in to reply
11 replies to this topic

#1 hunt1290

hunt1290

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:06:38 AM

Posted 22 June 2012 - 10:48 PM

Looks like I got this virus Zeroaccess Trojan. Macfee on my laptop keeps popping messages that it has been deleted. Log below. Please help

6/22/2012 11:22:52 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\00000001.@ ZeroAccess (Trojan)
6/22/2012 11:22:53 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\80000000.@ ZeroAccess.ee (Trojan)
6/22/2012 11:22:53 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\800000cb.@ ZeroAccess.eh (Trojan)
6/22/2012 11:27:20 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\00000001.@ ZeroAccess (Trojan)
6/22/2012 11:27:21 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\80000000.@ ZeroAccess.ee (Trojan)
6/22/2012 11:27:23 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\800000cb.@ ZeroAccess.eh (Trojan)
6/22/2012 11:31:25 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\00000001.@ ZeroAccess (Trojan)
6/22/2012 11:31:26 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\80000000.@ ZeroAccess.ee (Trojan)
6/22/2012 11:31:26 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\800000cb.@ ZeroAccess.eh (Trojan)
6/22/2012 11:35:25 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\00000001.@ ZeroAccess (Trojan)
6/22/2012 11:35:26 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\800000cb.@ ZeroAccess.eh (Trojan)
6/22/2012 11:35:26 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\80000000.@ ZeroAccess.ee (Trojan)
6/22/2012 11:39:41 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\80000000.@ ZeroAccess.ee (Trojan)
6/22/2012 11:39:41 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\800000cb.@ ZeroAccess.eh (Trojan)
6/22/2012 11:39:56 PM Deleted BTSNJY18990\btsuser C:\Windows\Explorer.EXE C:\Users\btsuser\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}\U\00000001.@ ZeroAccess (Trojan)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:38 AM

Posted 23 June 2012 - 12:48 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 hunt1290

hunt1290
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:06:38 AM

Posted 23 June 2012 - 12:01 PM

Thank you for helping. Please find the scans below. Advice on next steps

11:13:44.0644 2656 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
11:13:44.0944 2656 ============================================================
11:13:44.0944 2656 Current date / time: 2012/06/23 11:13:44.0944
11:13:44.0944 2656 SystemInfo:
11:13:44.0944 2656
11:13:44.0944 2656 OS Version: 6.1.7601 ServicePack: 1.0
11:13:44.0944 2656 Product type: Workstation
11:13:44.0944 2656 ComputerName: BTSNJY18990
11:13:44.0944 2656 UserName: BTSGEN
11:13:44.0944 2656 Windows directory: C:\Windows
11:13:44.0944 2656 System windows directory: C:\Windows
11:13:44.0944 2656 Processor architecture: Intel x86
11:13:44.0944 2656 Number of processors: 4
11:13:44.0944 2656 Page size: 0x1000
11:13:44.0944 2656 Boot type: Normal boot
11:13:44.0944 2656 ============================================================
11:13:46.0484 2656 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:13:46.0484 2656 ============================================================
11:13:46.0484 2656 \Device\Harddisk0\DR0:
11:13:46.0484 2656 MBR partitions:
11:13:46.0484 2656 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
11:13:46.0484 2656 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x1D160800
11:13:46.0484 2656 ============================================================
11:13:46.0504 2656 C: <-> \Device\Harddisk0\DR0\Partition1
11:13:46.0504 2656 ============================================================
11:13:46.0504 2656 Initialize success
11:13:46.0504 2656 ============================================================
11:13:52.0064 2004 ============================================================
11:13:52.0064 2004 Scan started
11:13:52.0064 2004 Mode: Manual;
11:13:52.0064 2004 ============================================================
11:13:53.0224 2004 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
11:13:53.0234 2004 !SASCORE - ok
11:13:53.0424 2004 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys
11:13:53.0434 2004 1394ohci - ok
11:13:53.0464 2004 Accelerometer (24eeafef2f3031ffe8e4e01b37eaa0b5) C:\Windows\system32\DRIVERS\Accelerometer.sys
11:13:53.0604 2004 Accelerometer - ok
11:13:53.0644 2004 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
11:13:53.0654 2004 ACPI - ok
11:13:53.0684 2004 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
11:13:53.0764 2004 AcpiPmi - ok
11:13:53.0874 2004 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:13:53.0874 2004 AdobeARMservice - ok
11:13:53.0884 2004 Scan interrupted by user!
11:13:53.0884 2004 Scan interrupted by user!
11:13:53.0884 2004 Scan interrupted by user!
11:13:53.0884 2004 ============================================================
11:13:53.0884 2004 Scan finished
11:13:53.0884 2004 ============================================================
11:13:53.0904 1520 Detected object count: 0
11:13:53.0904 1520 Actual detected object count: 0
11:14:08.0115 2300 ============================================================
11:14:08.0115 2300 Scan started
11:14:08.0115 2300 Mode: Manual; TDLFS;
11:14:08.0115 2300 ============================================================
11:14:08.0375 2300 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
11:14:08.0375 2300 !SASCORE - ok
11:14:08.0415 2300 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys
11:14:08.0415 2300 1394ohci - ok
11:14:08.0425 2300 Accelerometer (24eeafef2f3031ffe8e4e01b37eaa0b5) C:\Windows\system32\DRIVERS\Accelerometer.sys
11:14:08.0425 2300 Accelerometer - ok
11:14:08.0435 2300 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
11:14:08.0435 2300 ACPI - ok
11:14:08.0445 2300 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
11:14:08.0445 2300 AcpiPmi - ok
11:14:08.0455 2300 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:14:08.0455 2300 AdobeARMservice - ok
11:14:08.0495 2300 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
11:14:08.0525 2300 adp94xx - ok
11:14:08.0575 2300 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
11:14:08.0595 2300 adpahci - ok
11:14:08.0625 2300 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
11:14:08.0645 2300 adpu320 - ok
11:14:08.0675 2300 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
11:14:08.0685 2300 AeLookupSvc - ok
11:14:08.0735 2300 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
11:14:08.0735 2300 AFD - ok
11:14:08.0855 2300 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\Windows\system32\DRIVERS\AGRSM.sys
11:14:08.0905 2300 AgereSoftModem - ok
11:14:08.0935 2300 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
11:14:08.0955 2300 agp440 - ok
11:14:08.0975 2300 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
11:14:08.0985 2300 aic78xx - ok
11:14:09.0025 2300 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
11:14:09.0025 2300 ALG - ok
11:14:09.0055 2300 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
11:14:09.0065 2300 aliide - ok
11:14:09.0085 2300 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
11:14:09.0105 2300 amdagp - ok
11:14:09.0105 2300 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
11:14:09.0115 2300 amdide - ok
11:14:09.0145 2300 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
11:14:09.0155 2300 AmdK8 - ok
11:14:09.0175 2300 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
11:14:09.0185 2300 AmdPPM - ok
11:14:09.0225 2300 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
11:14:09.0335 2300 amdsata - ok
11:14:09.0355 2300 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
11:14:09.0365 2300 amdsbs - ok
11:14:09.0385 2300 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
11:14:09.0475 2300 amdxata - ok
11:14:09.0505 2300 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
11:14:09.0585 2300 AppID - ok
11:14:09.0635 2300 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
11:14:09.0635 2300 AppIDSvc - ok
11:14:09.0655 2300 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
11:14:09.0655 2300 Appinfo - ok
11:14:09.0705 2300 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
11:14:09.0735 2300 AppMgmt - ok
11:14:09.0765 2300 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
11:14:09.0765 2300 arc - ok
11:14:09.0805 2300 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
11:14:09.0825 2300 arcsas - ok
11:14:09.0835 2300 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
11:14:09.0845 2300 AsyncMac - ok
11:14:09.0865 2300 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
11:14:09.0865 2300 atapi - ok
11:14:09.0925 2300 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
11:14:09.0945 2300 AudioEndpointBuilder - ok
11:14:09.0945 2300 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
11:14:09.0955 2300 Audiosrv - ok
11:14:09.0985 2300 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
11:14:09.0985 2300 AxInstSV - ok
11:14:10.0045 2300 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
11:14:10.0075 2300 b06bdrv - ok
11:14:10.0115 2300 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
11:14:10.0135 2300 b57nd60x - ok
11:14:10.0185 2300 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
11:14:10.0185 2300 BDESVC - ok
11:14:10.0205 2300 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
11:14:10.0205 2300 Beep - ok
11:14:10.0365 2300 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
11:14:10.0375 2300 BFE - ok
11:14:10.0465 2300 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
11:14:10.0485 2300 BITS - ok
11:14:10.0505 2300 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
11:14:10.0515 2300 blbdrive - ok
11:14:10.0535 2300 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
11:14:10.0615 2300 bowser - ok
11:14:10.0625 2300 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:14:10.0635 2300 BrFiltLo - ok
11:14:10.0645 2300 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:14:10.0645 2300 BrFiltUp - ok
11:14:10.0675 2300 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
11:14:10.0675 2300 Browser - ok
11:14:10.0705 2300 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
11:14:10.0725 2300 Brserid - ok
11:14:10.0745 2300 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
11:14:10.0755 2300 BrSerWdm - ok
11:14:10.0765 2300 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:14:10.0765 2300 BrUsbMdm - ok
11:14:10.0775 2300 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
11:14:10.0785 2300 BrUsbSer - ok
11:14:10.0815 2300 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
11:14:10.0815 2300 BthEnum - ok
11:14:10.0835 2300 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
11:14:10.0835 2300 BTHMODEM - ok
11:14:10.0855 2300 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
11:14:10.0865 2300 BthPan - ok
11:14:10.0935 2300 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
11:14:11.0045 2300 BTHPORT - ok
11:14:11.0085 2300 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
11:14:11.0085 2300 bthserv - ok
11:14:11.0105 2300 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
11:14:11.0225 2300 BTHUSB - ok
11:14:11.0265 2300 btusbflt (dd5361cf05025bd61a5d0115ecc2566f) C:\Windows\system32\drivers\btusbflt.sys
11:14:11.0335 2300 btusbflt - ok
11:14:11.0345 2300 btwaudio - ok
11:14:11.0355 2300 btwavdt - ok
11:14:11.0365 2300 btwl2cap - ok
11:14:11.0365 2300 btwrchid - ok
11:14:11.0495 2300 CcmExec (a454a9baa25b8c8e76735dd86bd4b017) C:\Windows\system32\CCM\CcmExec.exe
11:14:11.0515 2300 CcmExec - ok
11:14:11.0555 2300 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
11:14:11.0565 2300 cdfs - ok
11:14:11.0605 2300 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
11:14:11.0735 2300 cdrom - ok
11:14:11.0775 2300 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
11:14:11.0775 2300 CertPropSvc - ok
11:14:11.0795 2300 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
11:14:11.0795 2300 circlass - ok
11:14:11.0835 2300 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
11:14:11.0835 2300 CLFS - ok
11:14:11.0905 2300 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:14:11.0945 2300 clr_optimization_v2.0.50727_32 - ok
11:14:11.0995 2300 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:14:12.0025 2300 clr_optimization_v4.0.30319_32 - ok
11:14:12.0035 2300 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
11:14:12.0045 2300 CmBatt - ok
11:14:12.0055 2300 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
11:14:12.0065 2300 cmdide - ok
11:14:12.0135 2300 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
11:14:12.0245 2300 CNG - ok
11:14:12.0265 2300 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
11:14:12.0275 2300 Compbatt - ok
11:14:12.0285 2300 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
11:14:12.0325 2300 CompositeBus - ok
11:14:12.0345 2300 COMSysApp - ok
11:14:12.0355 2300 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
11:14:12.0355 2300 crcdisk - ok
11:14:12.0395 2300 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
11:14:12.0395 2300 CryptSvc - ok
11:14:12.0455 2300 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
11:14:12.0585 2300 CSC - ok
11:14:12.0635 2300 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
11:14:12.0645 2300 CscService - ok
11:14:12.0675 2300 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
11:14:12.0785 2300 CVirtA - ok
11:14:13.0025 2300 CVPND (08d8fa119f2ad6ac0377fb667523482e) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
11:14:13.0075 2300 CVPND - ok
11:14:13.0235 2300 CVPNDRVA (1c2999966f0f36aa44eaecbee70cf770) C:\Windows\system32\Drivers\CVPNDRVA.sys
11:14:13.0315 2300 CVPNDRVA - ok
11:14:13.0375 2300 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
11:14:13.0385 2300 DcomLaunch - ok
11:14:13.0435 2300 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
11:14:13.0445 2300 defragsvc - ok
11:14:13.0485 2300 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
11:14:13.0565 2300 DfsC - ok
11:14:13.0605 2300 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
11:14:13.0615 2300 Dhcp - ok
11:14:13.0635 2300 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
11:14:13.0635 2300 discache - ok
11:14:13.0675 2300 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
11:14:13.0685 2300 Disk - ok
11:14:13.0725 2300 DNE (7b4fdfbe97c047175e613aa96f3de987) C:\Windows\system32\DRIVERS\dne2000.sys
11:14:13.0725 2300 DNE - ok
11:14:13.0775 2300 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
11:14:13.0785 2300 Dnscache - ok
11:14:13.0815 2300 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
11:14:13.0825 2300 dot3svc - ok
11:14:13.0845 2300 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
11:14:13.0845 2300 DPS - ok
11:14:13.0875 2300 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
11:14:13.0875 2300 drmkaud - ok
11:14:13.0955 2300 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
11:14:14.0085 2300 DXGKrnl - ok
11:14:14.0245 2300 e1cexpress (e7c8784942da946f4827af9d314300ff) C:\Windows\system32\DRIVERS\e1c6232.sys
11:14:14.0395 2300 e1cexpress - ok
11:14:14.0405 2300 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
11:14:14.0415 2300 EapHost - ok
11:14:14.0635 2300 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
11:14:14.0755 2300 ebdrv - ok
11:14:14.0875 2300 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
11:14:14.0875 2300 EFS - ok
11:14:14.0985 2300 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
11:14:14.0995 2300 ehRecvr - ok
11:14:15.0015 2300 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
11:14:15.0025 2300 ehSched - ok
11:14:15.0125 2300 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
11:14:15.0155 2300 elxstor - ok
11:14:15.0175 2300 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
11:14:15.0185 2300 ErrDev - ok
11:14:15.0245 2300 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
11:14:15.0265 2300 EventSystem - ok
11:14:15.0295 2300 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
11:14:15.0315 2300 exfat - ok
11:14:15.0355 2300 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
11:14:15.0375 2300 fastfat - ok
11:14:15.0445 2300 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
11:14:15.0465 2300 Fax - ok
11:14:15.0495 2300 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
11:14:15.0495 2300 fdc - ok
11:14:15.0525 2300 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
11:14:15.0525 2300 fdPHost - ok
11:14:15.0545 2300 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
11:14:15.0545 2300 FDResPub - ok
11:14:15.0565 2300 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
11:14:15.0575 2300 FileInfo - ok
11:14:15.0585 2300 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
11:14:15.0605 2300 Filetrace - ok
11:14:15.0625 2300 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
11:14:15.0625 2300 flpydisk - ok
11:14:15.0675 2300 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
11:14:15.0685 2300 FltMgr - ok
11:14:15.0795 2300 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
11:14:15.0815 2300 FontCache - ok
11:14:15.0885 2300 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:14:15.0885 2300 FontCache3.0.0.0 - ok
11:14:15.0905 2300 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
11:14:15.0915 2300 FsDepends - ok
11:14:15.0945 2300 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
11:14:16.0035 2300 Fs_Rec - ok
11:14:16.0075 2300 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
11:14:16.0085 2300 fvevol - ok
11:14:16.0115 2300 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
11:14:16.0125 2300 gagp30kx - ok
11:14:16.0215 2300 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
11:14:16.0235 2300 gpsvc - ok
11:14:16.0335 2300 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
11:14:16.0345 2300 gupdate - ok
11:14:16.0345 2300 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
11:14:16.0355 2300 gupdatem - ok
11:14:16.0415 2300 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:14:16.0415 2300 gusvc - ok
11:14:16.0445 2300 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
11:14:16.0455 2300 hcw85cir - ok
11:14:16.0505 2300 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
11:14:16.0665 2300 HdAudAddService - ok
11:14:16.0695 2300 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
11:14:16.0695 2300 HDAudBus - ok
11:14:16.0705 2300 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
11:14:16.0715 2300 HidBatt - ok
11:14:16.0725 2300 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
11:14:16.0745 2300 HidBth - ok
11:14:16.0765 2300 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
11:14:16.0765 2300 HidIr - ok
11:14:16.0795 2300 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
11:14:16.0795 2300 hidserv - ok
11:14:16.0805 2300 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
11:14:16.0895 2300 HidUsb - ok
11:14:16.0925 2300 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
11:14:16.0925 2300 hkmsvc - ok
11:14:16.0955 2300 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
11:14:16.0965 2300 HomeGroupListener - ok
11:14:17.0015 2300 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
11:14:17.0025 2300 HomeGroupProvider - ok
11:14:17.0035 2300 hpdskflt (548e6d7d723829998408a9a18a11aa8b) C:\Windows\system32\DRIVERS\hpdskflt.sys
11:14:17.0105 2300 hpdskflt - ok
11:14:17.0135 2300 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
11:14:17.0135 2300 HpSAMD - ok
11:14:17.0165 2300 hpsrv (53639b0ad214690f3aa6db11dab07d88) C:\Windows\system32\Hpservice.exe
11:14:17.0175 2300 hpsrv - ok
11:14:17.0245 2300 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
11:14:17.0255 2300 HTTP - ok
11:14:17.0275 2300 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
11:14:17.0275 2300 hwpolicy - ok
11:14:17.0315 2300 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
11:14:17.0325 2300 i8042prt - ok
11:14:17.0385 2300 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
11:14:17.0555 2300 iaStorV - ok
11:14:17.0575 2300 IBMPMDRV (bf648877413f6160e480814a24942b65) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
11:14:17.0635 2300 IBMPMDRV - ok
11:14:17.0795 2300 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:14:17.0935 2300 idsvc - ok
11:14:18.0605 2300 igfx (60cc34ad19af2716ff18ec756d55b9ab) C:\Windows\system32\DRIVERS\igdkmd32.sys
11:14:18.0905 2300 igfx - ok
11:14:19.0065 2300 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
11:14:19.0075 2300 iirsp - ok
11:14:19.0175 2300 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
11:14:19.0195 2300 IKEEXT - ok
11:14:19.0245 2300 Impcd (e3c36ac5ae87ec970ae8ea2a93d59ae1) C:\Windows\system32\DRIVERS\Impcd.sys
11:14:19.0435 2300 Impcd - ok
11:14:19.0475 2300 IntcDAud (5576ad2f0039d2bccca3567fc0bf981c) C:\Windows\system32\DRIVERS\IntcDAud.sys
11:14:19.0615 2300 IntcDAud - ok
11:14:19.0625 2300 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
11:14:19.0625 2300 intelide - ok
11:14:19.0645 2300 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
11:14:19.0655 2300 intelppm - ok
11:14:19.0685 2300 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
11:14:19.0685 2300 IPBusEnum - ok
11:14:19.0695 2300 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:14:19.0705 2300 IpFilterDriver - ok
11:14:19.0765 2300 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
11:14:19.0785 2300 iphlpsvc - ok
11:14:19.0815 2300 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
11:14:19.0895 2300 IPMIDRV - ok
11:14:19.0925 2300 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
11:14:19.0925 2300 IPNAT - ok
11:14:19.0945 2300 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
11:14:19.0955 2300 IRENUM - ok
11:14:19.0975 2300 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
11:14:19.0975 2300 isapnp - ok
11:14:20.0005 2300 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
11:14:20.0075 2300 iScsiPrt - ok
11:14:20.0115 2300 JMCR (4029a265bcd23e0fd7da45e423f80dd1) C:\Windows\system32\DRIVERS\jmcr.sys
11:14:20.0115 2300 JMCR - ok
11:14:20.0155 2300 johci (07712cef42a89b76adb2fc8124fccd14) C:\Windows\system32\DRIVERS\johci.sys
11:14:20.0155 2300 johci - ok
11:14:20.0185 2300 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
11:14:20.0185 2300 kbdclass - ok
11:14:20.0205 2300 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
11:14:20.0305 2300 kbdhid - ok
11:14:20.0325 2300 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:14:20.0335 2300 KeyIso - ok
11:14:20.0345 2300 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
11:14:20.0395 2300 KSecDD - ok
11:14:20.0425 2300 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
11:14:20.0505 2300 KSecPkg - ok
11:14:20.0555 2300 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
11:14:20.0575 2300 KtmRm - ok
11:14:20.0625 2300 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
11:14:20.0635 2300 LanmanServer - ok
11:14:20.0685 2300 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
11:14:20.0695 2300 LanmanWorkstation - ok
11:14:20.0745 2300 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
11:14:20.0755 2300 lltdio - ok
11:14:20.0795 2300 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
11:14:20.0805 2300 lltdsvc - ok
11:14:20.0825 2300 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
11:14:20.0825 2300 lmhosts - ok
11:14:20.0925 2300 LMS (97f9eaac985a663394cd8f54dcd3e73a) C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:14:20.0935 2300 LMS - ok
11:14:20.0975 2300 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
11:14:20.0995 2300 LSI_FC - ok
11:14:21.0015 2300 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
11:14:21.0035 2300 LSI_SAS - ok
11:14:21.0055 2300 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:14:21.0075 2300 LSI_SAS2 - ok
11:14:21.0095 2300 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:14:21.0105 2300 LSI_SCSI - ok
11:14:21.0135 2300 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
11:14:21.0155 2300 luafv - ok
11:14:21.0225 2300 McAfeeFramework (062d80f13d762f7bc2f38430d60f5048) C:\Program Files\McAfee\Common Framework\FrameworkService.exe
11:14:21.0225 2300 McAfeeFramework - ok
11:14:21.0305 2300 McShield (50182e471b44c7a0f63b46e2def08b0f) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
11:14:21.0315 2300 McShield - ok
11:14:21.0355 2300 McTaskManager (b15bb3aef59158b4e1dda5328c842713) C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
11:14:21.0365 2300 McTaskManager - ok
11:14:21.0395 2300 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
11:14:21.0405 2300 Mcx2Svc - ok
11:14:21.0465 2300 MDM (7cf1b716372b89568ae4c0fe769f5869) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
11:14:21.0475 2300 MDM - ok
11:14:21.0505 2300 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
11:14:21.0515 2300 megasas - ok
11:14:21.0735 2300 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
11:14:21.0765 2300 MegaSR - ok
11:14:21.0805 2300 MEI (d86ac00883b9c98b570e7643aaf8e554) C:\Windows\system32\DRIVERS\HECI.sys
11:14:21.0985 2300 MEI - ok
11:14:22.0005 2300 mfeapfk (c0d975d64c1af8057f2d75b1297a6979) C:\Windows\system32\drivers\mfeapfk.sys
11:14:22.0005 2300 mfeapfk - ok
11:14:22.0035 2300 mfeavfk (c169326049a8a03d5f905b34f5a65f8c) C:\Windows\system32\drivers\mfeavfk.sys
11:14:22.0085 2300 mfeavfk - ok
11:14:22.0115 2300 mfeavfk01 - ok
11:14:22.0125 2300 mfebopk (50b0253b2484a306a20d8695c5ae5858) C:\Windows\system32\drivers\mfebopk.sys
11:14:22.0125 2300 mfebopk - ok
11:14:22.0195 2300 mfehidk (188b40866db2ab8ef262febc65291687) C:\Windows\system32\drivers\mfehidk.sys
11:14:22.0365 2300 mfehidk - ok
11:14:22.0395 2300 mferkdet (c1b30af2e18e69bf8ceb39b33f32d3c1) C:\Windows\system32\drivers\mferkdet.sys
11:14:22.0455 2300 mferkdet - ok
11:14:22.0485 2300 mfevtp (49c8e20d178be981ff28523a942a570f) C:\Windows\system32\mfevtps.exe
11:14:22.0495 2300 mfevtp - ok
11:14:22.0535 2300 mfewfpk (451b49f0e10d6058ced5b56852d82c8b) C:\Windows\system32\drivers\mfewfpk.sys
11:14:22.0625 2300 mfewfpk - ok
11:14:22.0695 2300 Microsoft Office Groove Audit Service (7c4c76b39d5525c4a465e0be32528e19) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
11:14:22.0785 2300 Microsoft Office Groove Audit Service - ok
11:14:22.0805 2300 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
11:14:22.0805 2300 MMCSS - ok
11:14:22.0825 2300 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
11:14:22.0835 2300 Modem - ok
11:14:22.0855 2300 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
11:14:22.0855 2300 monitor - ok
11:14:22.0885 2300 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
11:14:22.0885 2300 mouclass - ok
11:14:22.0915 2300 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
11:14:22.0915 2300 mouhid - ok
11:14:22.0935 2300 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
11:14:22.0935 2300 mountmgr - ok
11:14:22.0965 2300 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
11:14:23.0135 2300 mpio - ok
11:14:23.0155 2300 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
11:14:23.0155 2300 mpsdrv - ok
11:14:23.0215 2300 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
11:14:23.0235 2300 MpsSvc - ok
11:14:23.0255 2300 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
11:14:23.0355 2300 MRxDAV - ok
11:14:23.0385 2300 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:14:23.0495 2300 mrxsmb - ok
11:14:23.0535 2300 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:14:23.0695 2300 mrxsmb10 - ok
11:14:23.0715 2300 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:14:23.0795 2300 mrxsmb20 - ok
11:14:23.0815 2300 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
11:14:23.0895 2300 msahci - ok
11:14:23.0915 2300 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
11:14:24.0025 2300 msdsm - ok
11:14:24.0045 2300 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
11:14:24.0055 2300 MSDTC - ok
11:14:24.0095 2300 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
11:14:24.0095 2300 Msfs - ok
11:14:24.0115 2300 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
11:14:24.0115 2300 mshidkmdf - ok
11:14:24.0125 2300 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
11:14:24.0135 2300 msisadrv - ok
11:14:24.0165 2300 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
11:14:24.0175 2300 MSiSCSI - ok
11:14:24.0185 2300 msiserver - ok
11:14:24.0205 2300 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
11:14:24.0215 2300 MSKSSRV - ok
11:14:24.0235 2300 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
11:14:24.0245 2300 MSPCLOCK - ok
11:14:24.0255 2300 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
11:14:24.0265 2300 MSPQM - ok
11:14:24.0295 2300 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
11:14:24.0315 2300 MsRPC - ok
11:14:24.0335 2300 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
11:14:24.0335 2300 mssmbios - ok
11:14:24.0345 2300 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
11:14:24.0355 2300 MSTEE - ok
11:14:24.0365 2300 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
11:14:24.0365 2300 MTConfig - ok
11:14:24.0385 2300 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
11:14:24.0385 2300 Mup - ok
11:14:24.0435 2300 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
11:14:24.0445 2300 napagent - ok
11:14:24.0495 2300 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
11:14:24.0525 2300 NativeWifiP - ok
11:14:24.0605 2300 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
11:14:24.0625 2300 NDIS - ok
11:14:24.0635 2300 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
11:14:24.0655 2300 NdisCap - ok
11:14:24.0725 2300 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
11:14:24.0735 2300 NdisTapi - ok
11:14:24.0775 2300 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
11:14:24.0865 2300 Ndisuio - ok
11:14:24.0895 2300 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
11:14:24.0985 2300 NdisWan - ok
11:14:25.0005 2300 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
11:14:25.0035 2300 NDProxy - ok
11:14:25.0045 2300 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
11:14:25.0055 2300 NetBIOS - ok
11:14:25.0075 2300 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
11:14:25.0075 2300 NetBT - ok
11:14:25.0115 2300 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:14:25.0115 2300 Netlogon - ok
11:14:25.0165 2300 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
11:14:25.0175 2300 Netman - ok
11:14:25.0235 2300 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
11:14:25.0245 2300 netprofm - ok
11:14:25.0325 2300 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:14:25.0425 2300 NetTcpPortSharing - ok
11:14:25.0995 2300 NETwNs32 (814596469bbe40ef99ccfd582a375b83) C:\Windows\system32\DRIVERS\NETwNs32.sys
11:14:26.0125 2300 NETwNs32 - ok
11:14:26.0265 2300 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
11:14:26.0285 2300 nfrd960 - ok
11:14:26.0325 2300 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
11:14:26.0345 2300 NlaSvc - ok
11:14:26.0365 2300 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
11:14:26.0375 2300 Npfs - ok
11:14:26.0395 2300 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
11:14:26.0395 2300 nsi - ok
11:14:26.0425 2300 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
11:14:26.0425 2300 nsiproxy - ok
11:14:26.0565 2300 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
11:14:26.0705 2300 Ntfs - ok
11:14:26.0715 2300 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
11:14:26.0745 2300 Null - ok
11:14:26.0785 2300 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
11:14:26.0925 2300 nvraid - ok
11:14:26.0955 2300 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
11:14:27.0105 2300 nvstor - ok
11:14:27.0135 2300 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
11:14:27.0145 2300 nv_agp - ok
11:14:27.0255 2300 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:14:27.0375 2300 odserv - ok
11:14:27.0395 2300 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
11:14:27.0405 2300 ohci1394 - ok
11:14:27.0465 2300 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:14:27.0565 2300 ose - ok
11:14:27.0615 2300 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
11:14:27.0615 2300 p2pimsvc - ok
11:14:27.0655 2300 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
11:14:27.0695 2300 p2psvc - ok
11:14:27.0725 2300 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
11:14:27.0745 2300 Parport - ok
11:14:27.0765 2300 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
11:14:27.0955 2300 partmgr - ok
11:14:27.0965 2300 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
11:14:27.0975 2300 Parvdm - ok
11:14:27.0995 2300 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
11:14:27.0995 2300 PcaSvc - ok
11:14:28.0025 2300 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
11:14:28.0085 2300 pci - ok
11:14:28.0095 2300 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
11:14:28.0095 2300 pciide - ok
11:14:28.0125 2300 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
11:14:28.0155 2300 pcmcia - ok
11:14:28.0165 2300 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
11:14:28.0175 2300 pcw - ok
11:14:28.0325 2300 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
11:14:28.0365 2300 PEAUTH - ok
11:14:28.0495 2300 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
11:14:28.0535 2300 PeerDistSvc - ok
11:14:28.0695 2300 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
11:14:28.0725 2300 pla - ok
11:14:28.0885 2300 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
11:14:28.0895 2300 PlugPlay - ok
11:14:28.0915 2300 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
11:14:28.0915 2300 PNRPAutoReg - ok
11:14:28.0955 2300 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
11:14:28.0965 2300 PNRPsvc - ok
11:14:29.0025 2300 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
11:14:29.0045 2300 PolicyAgent - ok
11:14:29.0075 2300 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
11:14:29.0085 2300 Power - ok
11:14:29.0135 2300 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
11:14:29.0145 2300 PptpMiniport - ok
11:14:29.0185 2300 prepdrvr (2a4514a9233d35a355f569ff8b8f6240) C:\Windows\system32\CCM\prepdrv.sys
11:14:29.0185 2300 prepdrvr - ok
11:14:29.0215 2300 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
11:14:29.0225 2300 Processor - ok
11:14:29.0265 2300 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
11:14:29.0275 2300 ProfSvc - ok
11:14:29.0315 2300 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:14:29.0315 2300 ProtectedStorage - ok
11:14:29.0365 2300 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
11:14:29.0365 2300 Psched - ok
11:14:29.0515 2300 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
11:14:29.0575 2300 ql2300 - ok
11:14:29.0705 2300 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
11:14:29.0715 2300 ql40xx - ok
11:14:29.0765 2300 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
11:14:29.0775 2300 QWAVE - ok
11:14:29.0805 2300 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
11:14:29.0815 2300 QWAVEdrv - ok
11:14:29.0825 2300 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
11:14:29.0835 2300 RasAcd - ok
11:14:29.0875 2300 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:14:29.0885 2300 RasAgileVpn - ok
11:14:29.0915 2300 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
11:14:29.0925 2300 RasAuto - ok
11:14:29.0945 2300 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:14:29.0955 2300 Rasl2tp - ok
11:14:30.0005 2300 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
11:14:30.0025 2300 RasMan - ok
11:14:30.0045 2300 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
11:14:30.0055 2300 RasPppoe - ok
11:14:30.0075 2300 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
11:14:30.0085 2300 RasSstp - ok
11:14:30.0125 2300 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
11:14:30.0275 2300 rdbss - ok
11:14:30.0295 2300 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
11:14:30.0295 2300 rdpbus - ok
11:14:30.0305 2300 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:14:30.0305 2300 RDPCDD - ok
11:14:30.0325 2300 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
11:14:30.0385 2300 RDPDR - ok
11:14:30.0415 2300 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
11:14:30.0415 2300 RDPENCDD - ok
11:14:30.0425 2300 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
11:14:30.0425 2300 RDPREFMP - ok
11:14:30.0455 2300 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
11:14:30.0505 2300 RdpVideoMiniport - ok
11:14:30.0545 2300 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
11:14:30.0635 2300 RDPWD - ok
11:14:30.0665 2300 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
11:14:30.0775 2300 rdyboost - ok
11:14:30.0795 2300 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
11:14:30.0805 2300 RemoteAccess - ok
11:14:30.0835 2300 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
11:14:30.0845 2300 RemoteRegistry - ok
11:14:30.0895 2300 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
11:14:30.0905 2300 RFCOMM - ok
11:14:30.0925 2300 rimspci (e891f07815af88075705ef6a248711f6) C:\Windows\system32\DRIVERS\rimspe86.sys
11:14:31.0045 2300 rimspci - ok
11:14:31.0055 2300 rixdpcie (6a60626412129c713cc30c81870a8095) C:\Windows\system32\DRIVERS\rixdpe86.sys
11:14:31.0165 2300 rixdpcie - ok
11:14:31.0185 2300 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
11:14:31.0185 2300 RpcEptMapper - ok
11:14:31.0215 2300 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
11:14:31.0215 2300 RpcLocator - ok
11:14:31.0265 2300 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
11:14:31.0275 2300 RpcSs - ok
11:14:31.0315 2300 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
11:14:31.0325 2300 rspndr - ok
11:14:31.0385 2300 RTL8167 (d5ede44ca85899e0478208c8413c1c31) C:\Windows\system32\DRIVERS\Rt86win7.sys
11:14:31.0555 2300 RTL8167 - ok
11:14:31.0665 2300 rtl8192se (8e2cb65b05b102f2adeebe4c76bf11b6) C:\Windows\system32\DRIVERS\rtl8192se.sys
11:14:31.0805 2300 rtl8192se - ok
11:14:31.0815 2300 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
11:14:31.0855 2300 s3cap - ok
11:14:31.0885 2300 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:14:31.0885 2300 SamSs - ok
11:14:31.0975 2300 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
11:14:32.0065 2300 SASDIFSV - ok
11:14:32.0085 2300 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
11:14:32.0125 2300 SASKUTIL - ok
11:14:32.0145 2300 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
11:14:32.0205 2300 sbp2port - ok
11:14:32.0245 2300 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
11:14:32.0255 2300 SCardSvr - ok
11:14:32.0275 2300 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
11:14:32.0365 2300 scfilter - ok
11:14:32.0455 2300 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
11:14:32.0485 2300 Schedule - ok
11:14:32.0525 2300 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
11:14:32.0525 2300 SCPolicySvc - ok
11:14:32.0575 2300 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
11:14:32.0735 2300 sdbus - ok
11:14:32.0765 2300 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
11:14:32.0775 2300 SDRSVC - ok
11:14:32.0795 2300 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:14:32.0805 2300 secdrv - ok
11:14:32.0815 2300 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
11:14:32.0815 2300 seclogon - ok
11:14:32.0835 2300 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
11:14:32.0835 2300 SENS - ok
11:14:32.0865 2300 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
11:14:32.0865 2300 SensrSvc - ok
11:14:32.0895 2300 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
11:14:32.0895 2300 Serenum - ok
11:14:32.0925 2300 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
11:14:32.0925 2300 Serial - ok
11:14:32.0935 2300 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
11:14:32.0935 2300 sermouse - ok
11:14:32.0965 2300 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
11:14:32.0975 2300 SessionEnv - ok
11:14:32.0985 2300 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
11:14:32.0985 2300 sffdisk - ok
11:14:33.0005 2300 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
11:14:33.0005 2300 sffp_mmc - ok
11:14:33.0025 2300 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
11:14:33.0065 2300 sffp_sd - ok
11:14:33.0065 2300 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
11:14:33.0065 2300 sfloppy - ok
11:14:33.0115 2300 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
11:14:33.0125 2300 SharedAccess - ok
11:14:33.0165 2300 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
11:14:33.0175 2300 ShellHWDetection - ok
11:14:33.0195 2300 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
11:14:33.0205 2300 sisagp - ok
11:14:33.0225 2300 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:14:33.0235 2300 SiSRaid2 - ok
11:14:33.0265 2300 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
11:14:33.0265 2300 SiSRaid4 - ok
11:14:33.0295 2300 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
11:14:33.0305 2300 Smb - ok
11:14:33.0335 2300 smstsmgr - ok
11:14:33.0385 2300 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
11:14:33.0395 2300 SNMPTRAP - ok
11:14:33.0405 2300 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
11:14:33.0405 2300 spldr - ok
11:14:33.0455 2300 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
11:14:33.0475 2300 Spooler - ok
11:14:33.0795 2300 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
11:14:33.0895 2300 sppsvc - ok
11:14:34.0005 2300 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
11:14:34.0015 2300 sppuinotify - ok
11:14:34.0065 2300 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
11:14:34.0225 2300 srv - ok
11:14:34.0265 2300 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
11:14:34.0335 2300 srv2 - ok
11:14:34.0355 2300 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
11:14:34.0425 2300 srvnet - ok
11:14:34.0445 2300 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
11:14:34.0455 2300 SSDPSRV - ok
11:14:34.0475 2300 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
11:14:34.0475 2300 SstpSvc - ok
11:14:34.0495 2300 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
11:14:34.0495 2300 stexstor - ok
11:14:34.0565 2300 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
11:14:34.0585 2300 StiSvc - ok
11:14:34.0605 2300 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
11:14:34.0685 2300 storflt - ok
11:14:34.0695 2300 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
11:14:34.0695 2300 StorSvc - ok
11:14:34.0715 2300 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
11:14:34.0775 2300 storvsc - ok
11:14:34.0795 2300 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
11:14:34.0795 2300 swenum - ok
11:14:34.0835 2300 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
11:14:34.0845 2300 swprv - ok
11:14:34.0875 2300 Synth3dVsc - ok
11:14:34.0925 2300 SynTP (d7dc30b8b41e7a913c3fccc0631e72ec) C:\Windows\system32\DRIVERS\SynTP.sys
11:14:35.0015 2300 SynTP - ok
11:14:35.0145 2300 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
11:14:35.0185 2300 SysMain - ok
11:14:35.0205 2300 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
11:14:35.0215 2300 TabletInputService - ok
11:14:35.0265 2300 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
11:14:35.0275 2300 TapiSrv - ok
11:14:35.0295 2300 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
11:14:35.0305 2300 TBS - ok
11:14:35.0495 2300 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
11:14:35.0665 2300 Tcpip - ok
11:14:35.0705 2300 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
11:14:35.0725 2300 TCPIP6 - ok
11:14:35.0745 2300 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
11:14:35.0815 2300 tcpipreg - ok
11:14:35.0835 2300 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
11:14:35.0925 2300 TDPIPE - ok
11:14:35.0945 2300 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
11:14:36.0015 2300 TDTCP - ok
11:14:36.0035 2300 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
11:14:36.0115 2300 tdx - ok
11:14:36.0125 2300 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
11:14:36.0185 2300 TermDD - ok
11:14:36.0255 2300 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
11:14:36.0275 2300 TermService - ok
11:14:36.0295 2300 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
11:14:36.0305 2300 Themes - ok
11:14:36.0335 2300 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
11:14:36.0345 2300 THREADORDER - ok
11:14:36.0375 2300 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
11:14:36.0385 2300 TPM - ok
11:14:36.0425 2300 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
11:14:36.0435 2300 TrkWks - ok
11:14:36.0495 2300 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
11:14:36.0505 2300 TrustedInstaller - ok
11:14:36.0535 2300 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:14:36.0725 2300 tssecsrv - ok
11:14:36.0755 2300 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
11:14:36.0815 2300 TsUsbFlt - ok
11:14:36.0815 2300 tsusbhub - ok
11:14:36.0845 2300 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
11:14:36.0905 2300 tunnel - ok
11:14:36.0925 2300 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
11:14:36.0925 2300 uagp35 - ok
11:14:36.0955 2300 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
11:14:37.0025 2300 udfs - ok
11:14:37.0065 2300 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
11:14:37.0065 2300 UI0Detect - ok
11:14:37.0105 2300 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
11:14:37.0115 2300 uliagpkx - ok
11:14:37.0135 2300 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
11:14:37.0225 2300 umbus - ok
11:14:37.0245 2300 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
11:14:37.0245 2300 UmPass - ok
11:14:37.0275 2300 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
11:14:37.0285 2300 UmRdpService - ok
11:14:37.0575 2300 UNS (a69cd6bdb82872999d2e46f9324ada83) C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:14:37.0655 2300 UNS - ok
11:14:37.0805 2300 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
11:14:37.0825 2300 upnphost - ok
11:14:37.0885 2300 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
11:14:37.0995 2300 usbccgp - ok
11:14:38.0045 2300 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
11:14:38.0055 2300 usbcir - ok
11:14:38.0075 2300 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
11:14:38.0215 2300 usbehci - ok
11:14:38.0265 2300 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
11:14:38.0405 2300 usbhub - ok
11:14:38.0425 2300 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
11:14:38.0495 2300 usbohci - ok
11:14:38.0515 2300 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
11:14:38.0515 2300 usbprint - ok
11:14:38.0545 2300 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
11:14:38.0555 2300 usbscan - ok
11:14:38.0575 2300 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:14:38.0705 2300 USBSTOR - ok
11:14:38.0725 2300 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
11:14:38.0815 2300 usbuhci - ok
11:14:38.0855 2300 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
11:14:38.0945 2300 usbvideo - ok
11:14:38.0965 2300 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
11:14:38.0965 2300 UxSms - ok
11:14:38.0995 2300 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:14:38.0995 2300 VaultSvc - ok
11:14:39.0005 2300 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
11:14:39.0015 2300 vdrvroot - ok
11:14:39.0055 2300 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
11:14:39.0075 2300 vds - ok
11:14:39.0095 2300 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
11:14:39.0105 2300 vga - ok
11:14:39.0125 2300 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
11:14:39.0135 2300 VgaSave - ok
11:14:39.0155 2300 VGPU - ok
11:14:39.0185 2300 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
11:14:39.0315 2300 vhdmp - ok
11:14:39.0345 2300 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
11:14:39.0355 2300 viaagp - ok
11:14:39.0365 2300 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
11:14:39.0375 2300 ViaC7 - ok
11:14:39.0385 2300 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
11:14:39.0385 2300 viaide - ok
11:14:39.0425 2300 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
11:14:39.0505 2300 vmbus - ok
11:14:39.0505 2300 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
11:14:39.0555 2300 VMBusHID - ok
11:14:39.0575 2300 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
11:14:39.0605 2300 volmgr - ok
11:14:39.0635 2300 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
11:14:39.0635 2300 volmgrx - ok
11:14:39.0675 2300 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
11:14:39.0775 2300 volsnap - ok
11:14:39.0815 2300 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
11:14:39.0825 2300 vsmraid - ok
11:14:39.0945 2300 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
11:14:39.0975 2300 VSS - ok
11:14:39.0985 2300 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
11:14:39.0995 2300 vwifibus - ok
11:14:40.0025 2300 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
11:14:40.0045 2300 vwififlt - ok
11:14:40.0065 2300 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
11:14:40.0075 2300 vwifimp - ok
11:14:40.0135 2300 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
11:14:40.0155 2300 W32Time - ok
11:14:40.0185 2300 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
11:14:40.0185 2300 WacomPen - ok
11:14:40.0225 2300 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
11:14:40.0385 2300 WANARP - ok
11:14:40.0385 2300 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
11:14:40.0385 2300 Wanarpv6 - ok
11:14:40.0555 2300 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
11:14:40.0725 2300 WatAdminSvc - ok
11:14:40.0875 2300 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
11:14:40.0915 2300 wbengine - ok
11:14:40.0965 2300 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
11:14:40.0975 2300 WbioSrvc - ok
11:14:41.0025 2300 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
11:14:41.0035 2300 wcncsvc - ok
11:14:41.0055 2300 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
11:14:41.0065 2300 WcsPlugInService - ok
11:14:41.0115 2300 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
11:14:41.0125 2300 Wd - ok
11:14:41.0185 2300 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
11:14:41.0215 2300 Wdf01000 - ok
11:14:41.0245 2300 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
11:14:41.0255 2300 WdiServiceHost - ok
11:14:41.0265 2300 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
11:14:41.0275 2300 WdiSystemHost - ok
11:14:41.0305 2300 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
11:14:41.0325 2300 WebClient - ok
11:14:41.0365 2300 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
11:14:41.0375 2300 Wecsvc - ok
11:14:41.0405 2300 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
11:14:41.0415 2300 wercplsupport - ok
11:14:41.0445 2300 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
11:14:41.0455 2300 WerSvc - ok
11:14:41.0495 2300 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
11:14:41.0505 2300 WfpLwf - ok
11:14:41.0525 2300 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
11:14:41.0535 2300 WIMMount - ok
11:14:41.0665 2300 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
11:14:41.0675 2300 WinDefend - ok
11:14:41.0695 2300 WinHttpAutoProxySvc - ok
11:14:41.0765 2300 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
11:14:41.0765 2300 Winmgmt - ok
11:14:41.0905 2300 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
11:14:41.0945 2300 WinRM - ok
11:14:42.0035 2300 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
11:14:42.0105 2300 WinUsb - ok
11:14:42.0195 2300 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
11:14:42.0225 2300 Wlansvc - ok
11:14:42.0255 2300 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
11:14:42.0255 2300 WmiAcpi - ok
11:14:42.0335 2300 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
11:14:42.0355 2300 wmiApSrv - ok
11:14:42.0525 2300 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
11:14:42.0565 2300 WMPNetworkSvc - ok
11:14:42.0595 2300 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
11:14:42.0605 2300 WPCSvc - ok
11:14:42.0625 2300 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
11:14:42.0645 2300 WPDBusEnum - ok
11:14:42.0695 2300 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
11:14:42.0705 2300 ws2ifsl - ok
11:14:42.0735 2300 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
11:14:42.0735 2300 wscsvc - ok
11:14:42.0745 2300 WSearch - ok
11:14:42.0955 2300 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
11:14:43.0025 2300 wuauserv - ok
11:14:43.0185 2300 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
11:14:43.0345 2300 WudfPf - ok
11:14:43.0375 2300 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:14:43.0505 2300 WUDFRd - ok
11:14:43.0535 2300 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
11:14:43.0535 2300 wudfsvc - ok
11:14:43.0565 2300 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
11:14:43.0575 2300 WwanSvc - ok
11:14:43.0635 2300 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
11:14:44.0055 2300 \Device\Harddisk0\DR0 - ok
11:14:44.0065 2300 Boot (0x1200) (3537b8ea71c7c689ba88b9f00f2305b0) \Device\Harddisk0\DR0\Partition0
11:14:44.0065 2300 \Device\Harddisk0\DR0\Partition0 - ok
11:14:44.0105 2300 Boot (0x1200) (96a7bbf832ce8d2101d7fb7a2af50e94) \Device\Harddisk0\DR0\Partition1
11:14:44.0105 2300 \Device\Harddisk0\DR0\Partition1 - ok
11:14:44.0105 2300 ============================================================
11:14:44.0105 2300 Scan finished
11:14:44.0105 2300 ============================================================
11:14:44.0125 2000 Detected object count: 0
11:14:44.0125 2000 Actual detected object count: 0
11:16:03.0015 2412 ============================================================
11:16:03.0015 2412 Scan started
11:16:03.0015 2412 Mode: Manual; TDLFS;
11:16:03.0015 2412 ============================================================
11:16:03.0545 2412 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
11:16:03.0545 2412 !SASCORE - ok
11:16:03.0605 2412 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys
11:16:03.0615 2412 1394ohci - ok
11:16:03.0665 2412 Accelerometer (24eeafef2f3031ffe8e4e01b37eaa0b5) C:\Windows\system32\DRIVERS\Accelerometer.sys
11:16:03.0675 2412 Accelerometer - ok
11:16:03.0715 2412 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
11:16:03.0715 2412 ACPI - ok
11:16:03.0735 2412 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
11:16:03.0735 2412 AcpiPmi - ok
11:16:03.0815 2412 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:16:03.0815 2412 AdobeARMservice - ok
11:16:03.0865 2412 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
11:16:03.0875 2412 adp94xx - ok
11:16:03.0915 2412 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
11:16:03.0925 2412 adpahci - ok
11:16:03.0955 2412 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
11:16:03.0965 2412 adpu320 - ok
11:16:03.0985 2412 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
11:16:03.0995 2412 AeLookupSvc - ok
11:16:04.0035 2412 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
11:16:04.0035 2412 AFD - ok
11:16:04.0145 2412 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\Windows\system32\DRIVERS\AGRSM.sys
11:16:04.0165 2412 AgereSoftModem - ok
11:16:04.0175 2412 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
11:16:04.0185 2412 agp440 - ok
11:16:04.0195 2412 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
11:16:04.0195 2412 aic78xx - ok
11:16:04.0215 2412 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
11:16:04.0215 2412 ALG - ok
11:16:04.0225 2412 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
11:16:04.0225 2412 aliide - ok
11:16:04.0245 2412 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
11:16:04.0245 2412 amdagp - ok
11:16:04.0255 2412 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
11:16:04.0255 2412 amdide - ok
11:16:04.0275 2412 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
11:16:04.0275 2412 AmdK8 - ok
11:16:04.0295 2412 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
11:16:04.0295 2412 AmdPPM - ok
11:16:04.0325 2412 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
11:16:04.0325 2412 amdsata - ok
11:16:04.0355 2412 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
11:16:04.0355 2412 amdsbs - ok
11:16:04.0375 2412 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
11:16:04.0375 2412 amdxata - ok
11:16:04.0395 2412 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
11:16:04.0395 2412 AppID - ok
11:16:04.0415 2412 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
11:16:04.0415 2412 AppIDSvc - ok
11:16:04.0435 2412 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
11:16:04.0435 2412 Appinfo - ok
11:16:04.0475 2412 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
11:16:04.0475 2412 AppMgmt - ok
11:16:04.0495 2412 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
11:16:04.0495 2412 arc - ok
11:16:04.0505 2412 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
11:16:04.0515 2412 arcsas - ok
11:16:04.0525 2412 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
11:16:04.0535 2412 AsyncMac - ok
11:16:04.0545 2412 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
11:16:04.0545 2412 atapi - ok
11:16:04.0595 2412 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
11:16:04.0595 2412 AudioEndpointBuilder - ok
11:16:04.0605 2412 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
11:16:04.0615 2412 Audiosrv - ok
11:16:04.0635 2412 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
11:16:04.0635 2412 AxInstSV - ok
11:16:04.0685 2412 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
11:16:04.0695 2412 b06bdrv - ok
11:16:04.0725 2412 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
11:16:04.0725 2412 b57nd60x - ok
11:16:04.0745 2412 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
11:16:04.0755 2412 BDESVC - ok
11:16:04.0765 2412 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
11:16:04.0765 2412 Beep - ok
11:16:04.0815 2412 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
11:16:04.0815 2412 BFE - ok
11:16:04.0895 2412 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
11:16:04.0915 2412 BITS - ok
11:16:04.0925 2412 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
11:16:04.0935 2412 blbdrive - ok
11:16:04.0955 2412 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
11:16:04.0955 2412 bowser - ok
11:16:04.0975 2412 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:16:04.0975 2412 BrFiltLo - ok
11:16:04.0985 2412 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:16:04.0985 2412 BrFiltUp - ok
11:16:05.0015 2412 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
11:16:05.0015 2412 Browser - ok
11:16:05.0045 2412 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
11:16:05.0055 2412 Brserid - ok
11:16:05.0075 2412 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
11:16:05.0075 2412 BrSerWdm - ok
11:16:05.0085 2412 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:16:05.0085 2412 BrUsbMdm - ok
11:16:05.0095 2412 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
11:16:05.0095 2412 BrUsbSer - ok
11:16:05.0115 2412 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
11:16:05.0125 2412 BthEnum - ok
11:16:05.0145 2412 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
11:16:05.0145 2412 BTHMODEM - ok
11:16:05.0155 2412 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
11:16:05.0165 2412 BthPan - ok
11:16:05.0205 2412 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
11:16:05.0205 2412 BTHPORT - ok
11:16:05.0225 2412 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
11:16:05.0225 2412 bthserv - ok
11:16:05.0245 2412 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
11:16:05.0245 2412 BTHUSB - ok
11:16:05.0275 2412 btusbflt (dd5361cf05025bd61a5d0115ecc2566f) C:\Windows\system32\drivers\btusbflt.sys
11:16:05.0275 2412 btusbflt - ok
11:16:05.0275 2412 btwaudio - ok
11:16:05.0285 2412 btwavdt - ok
11:16:05.0295 2412 btwl2cap - ok
11:16:05.0295 2412 btwrchid - ok
11:16:05.0415 2412 CcmExec (a454a9baa25b8c8e76735dd86bd4b017) C:\Windows\system32\CCM\CcmExec.exe
11:16:05.0425 2412 CcmExec - ok
11:16:05.0445 2412 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
11:16:05.0445 2412 cdfs - ok
11:16:05.0465 2412 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
11:16:05.0465 2412 cdrom - ok
11:16:05.0485 2412 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
11:16:05.0485 2412 CertPropSvc - ok
11:16:05.0495 2412 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
11:16:05.0495 2412 circlass - ok
11:16:05.0545 2412 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
11:16:05.0555 2412 CLFS - ok
11:16:05.0625 2412 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:16:05.0625 2412 clr_optimization_v2.0.50727_32 - ok
11:16:05.0655 2412 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:16:05.0655 2412 clr_optimization_v4.0.30319_32 - ok
11:16:05.0665 2412 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
11:16:05.0665 2412 CmBatt - ok
11:16:05.0675 2412 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
11:16:05.0675 2412 cmdide - ok
11:16:05.0735 2412 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
11:16:05.0745 2412 CNG - ok
11:16:05.0755 2412 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
11:16:05.0765 2412 Compbatt - ok
11:16:05.0785 2412 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
11:16:05.0785 2412 CompositeBus - ok
11:16:05.0795 2412 COMSysApp - ok
11:16:05.0825 2412 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
11:16:05.0825 2412 crcdisk - ok
11:16:05.0855 2412 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
11:16:05.0865 2412 CryptSvc - ok
11:16:05.0915 2412 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
11:16:05.0915 2412 CSC - ok
11:16:05.0995 2412 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
11:16:06.0005 2412 CscService - ok
11:16:06.0025 2412 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
11:16:06.0025 2412 CVirtA - ok
11:16:06.0225 2412 CVPND (08d8fa119f2ad6ac0377fb667523482e) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
11:16:06.0255 2412 CVPND - ok
11:16:06.0415 2412 CVPNDRVA (1c2999966f0f36aa44eaecbee70cf770) C:\Windows\system32\Drivers\CVPNDRVA.sys
11:16:06.0425 2412 CVPNDRVA - ok
11:16:06.0485 2412 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
11:16:06.0495 2412 DcomLaunch - ok
11:16:06.0545 2412 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
11:16:06.0545 2412 defragsvc - ok
11:16:06.0565 2412 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
11:16:06.0565 2412 DfsC - ok
11:16:06.0605 2412 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
11:16:06.0615 2412 Dhcp - ok
11:16:06.0635 2412 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
11:16:06.0635 2412 discache - ok
11:16:06.0665 2412 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
11:16:06.0665 2412 Disk - ok
11:16:06.0705 2412 DNE (7b4fdfbe97c047175e613aa96f3de987) C:\Windows\system32\DRIVERS\dne2000.sys
11:16:06.0705 2412 DNE - ok
11:16:06.0735 2412 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
11:16:06.0735 2412 Dnscache - ok
11:16:06.0775 2412 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
11:16:06.0785 2412 dot3svc - ok
11:16:06.0815 2412 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
11:16:06.0815 2412 DPS - ok
11:16:06.0835 2412 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
11:16:06.0835 2412 drmkaud - ok
11:16:06.0925 2412 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
11:16:06.0945 2412 DXGKrnl - ok
11:16:06.0985 2412 e1cexpress (e7c8784942da946f4827af9d314300ff) C:\Windows\system32\DRIVERS\e1c6232.sys
11:16:06.0985 2412 e1cexpress - ok
11:16:07.0025 2412 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
11:16:07.0035 2412 EapHost - ok
11:16:07.0255 2412 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
11:16:07.0305 2412 ebdrv - ok
11:16:07.0425 2412 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
11:16:07.0425 2412 EFS - ok
11:16:07.0525 2412 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
11:16:07.0535 2412 ehRecvr - ok
11:16:07.0555 2412 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
11:16:07.0555 2412 ehSched - ok
11:16:07.0705 2412 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
11:16:07.0715 2412 elxstor - ok
11:16:07.0725 2412 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
11:16:07.0735 2412 ErrDev - ok
11:16:07.0785 2412 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
11:16:07.0795 2412 EventSystem - ok
11:16:07.0825 2412 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
11:16:07.0825 2412 exfat - ok
11:16:07.0855 2412 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
11:16:07.0855 2412 fastfat - ok
11:16:07.0925 2412 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
11:16:07.0935 2412 Fax - ok
11:16:07.0955 2412 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
11:16:07.0955 2412 fdc - ok
11:16:07.0975 2412 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
11:16:07.0975 2412 fdPHost - ok
11:16:07.0995 2412 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
11:16:07.0995 2412 FDResPub - ok
11:16:08.0015 2412 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
11:16:08.0025 2412 FileInfo - ok
11:16:08.0035 2412 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
11:16:08.0045 2412 Filetrace - ok
11:16:08.0055 2412 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
11:16:08.0055 2412 flpydisk - ok
11:16:08.0085 2412 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
11:16:08.0095 2412 FltMgr - ok
11:16:08.0275 2412 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
11:16:08.0285 2412 FontCache - ok
11:16:08.0355 2412 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:16:08.0355 2412 FontCache3.0.0.0 - ok
11:16:08.0375 2412 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
11:16:08.0375 2412 FsDepends - ok
11:16:08.0415 2412 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
11:16:08.0415 2412 Fs_Rec - ok
11:16:08.0445 2412 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
11:16:08.0455 2412 fvevol - ok
11:16:08.0475 2412 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
11:16:08.0475 2412 gagp30kx - ok
11:16:08.0555 2412 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
11:16:08.0575 2412 gpsvc - ok
11:16:08.0635 2412 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
11:16:08.0645 2412 gupdate - ok
11:16:08.0645 2412 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
11:16:08.0655 2412 gupdatem - ok
11:16:08.0705 2412 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:16:08.0705 2412 gusvc - ok
11:16:08.0725 2412 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
11:16:08.0735 2412 hcw85cir - ok
11:16:08.0775 2412 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
11:16:08.0775 2412 HdAudAddService - ok
11:16:08.0805 2412 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
11:16:08.0805 2412 HDAudBus - ok
11:16:08.0825 2412 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
11:16:08.0825 2412 HidBatt - ok
11:16:08.0845 2412 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
11:16:08.0845 2412 HidBth - ok
11:16:08.0855 2412 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
11:16:08.0855 2412 HidIr - ok
11:16:08.0885 2412 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
11:16:08.0885 2412 hidserv - ok
11:16:08.0895 2412 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
11:16:08.0905 2412 HidUsb - ok
11:16:08.0925 2412 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
11:16:08.0935 2412 hkmsvc - ok
11:16:08.0965 2412 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
11:16:08.0975 2412 HomeGroupListener - ok
11:16:09.0015 2412 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
11:16:09.0025 2412 HomeGroupProvider - ok
11:16:09.0035 2412 hpdskflt (548e6d7d723829998408a9a18a11aa8b) C:\Windows\system32\DRIVERS\hpdskflt.sys
11:16:09.0045 2412 hpdskflt - ok
11:16:09.0065 2412 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
11:16:09.0075 2412 HpSAMD - ok
11:16:09.0095 2412 hpsrv (53639b0ad214690f3aa6db11dab07d88) C:\Windows\system32\Hpservice.exe
11:16:09.0095 2412 hpsrv - ok
11:16:09.0165 2412 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
11:16:09.0175 2412 HTTP - ok
11:16:09.0185 2412 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
11:16:09.0195 2412 hwpolicy - ok
11:16:09.0215 2412 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
11:16:09.0215 2412 i8042prt - ok
11:16:09.0275 2412 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
11:16:09.0285 2412 iaStorV - ok
11:16:09.0305 2412 IBMPMDRV (bf648877413f6160e480814a24942b65) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
11:16:09.0305 2412 IBMPMDRV - ok
11:16:09.0455 2412 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:16:09.0465 2412 idsvc - ok
11:16:10.0115 2412 igfx (60cc34ad19af2716ff18ec756d55b9ab) C:\Windows\system32\DRIVERS\igdkmd32.sys
11:16:10.0165 2412 igfx - ok
11:16:10.0305 2412 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
11:16:10.0305 2412 iirsp - ok
11:16:10.0385 2412 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
11:16:10.0405 2412 IKEEXT - ok
11:16:10.0445 2412 Impcd (e3c36ac5ae87ec970ae8ea2a93d59ae1) C:\Windows\system32\DRIVERS\Impcd.sys
11:16:10.0445 2412 Impcd - ok
11:16:10.0495 2412 IntcDAud (5576ad2f0039d2bccca3567fc0bf981c) C:\Windows\system32\DRIVERS\IntcDAud.sys
11:16:10.0495 2412 IntcDAud - ok
11:16:10.0505 2412 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
11:16:10.0505 2412 intelide - ok
11:16:10.0525 2412 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
11:16:10.0525 2412 intelppm - ok
11:16:10.0545 2412 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
11:16:10.0555 2412 IPBusEnum - ok
11:16:10.0575 2412 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:16:10.0575 2412 IpFilterDriver - ok
11:16:10.0635 2412 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
11:16:10.0645 2412 iphlpsvc - ok
11:16:10.0665 2412 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
11:16:10.0675 2412 IPMIDRV - ok
11:16:10.0705 2412 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
11:16:10.0705 2412 IPNAT - ok
11:16:10.0715 2412 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
11:16:10.0715 2412 IRENUM - ok
11:16:10.0735 2412 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
11:16:10.0735 2412 isapnp - ok
11:16:10.0775 2412 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
11:16:10.0775 2412 iScsiPrt - ok
11:16:10.0815 2412 JMCR (4029a265bcd23e0fd7da45e423f80dd1) C:\Windows\system32\DRIVERS\jmcr.sys
11:16:10.0825 2412 JMCR - ok
11:16:10.0845 2412 johci (07712cef42a89b76adb2fc8124fccd14) C:\Windows\system32\DRIVERS\johci.sys
11:16:10.0845 2412 johci - ok
11:16:10.0855 2412 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
11:16:10.0855 2412 kbdclass - ok
11:16:10.0875 2412 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
11:16:10.0875 2412 kbdhid - ok
11:16:10.0905 2412 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:16:10.0905 2412 KeyIso - ok
11:16:10.0925 2412 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
11:16:10.0925 2412 KSecDD - ok
11:16:10.0955 2412 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
11:16:10.0955 2412 KSecPkg - ok
11:16:11.0045 2412 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
11:16:11.0055 2412 KtmRm - ok
11:16:11.0095 2412 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
11:16:11.0105 2412 LanmanServer - ok
11:16:11.0145 2412 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
11:16:11.0145 2412 LanmanWorkstation - ok
11:16:11.0185 2412 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
11:16:11.0195 2412 lltdio - ok
11:16:11.0235 2412 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
11:16:11.0235 2412 lltdsvc - ok
11:16:11.0255 2412 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
11:16:11.0265 2412 lmhosts - ok
11:16:11.0345 2412 LMS (97f9eaac985a663394cd8f54dcd3e73a) C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:16:11.0345 2412 LMS - ok
11:16:11.0375 2412 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
11:16:11.0385 2412 LSI_FC - ok
11:16:11.0405 2412 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
11:16:11.0405 2412 LSI_SAS - ok
11:16:11.0435 2412 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:16:11.0435 2412 LSI_SAS2 - ok
11:16:11.0465 2412 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:16:11.0465 2412 LSI_SCSI - ok
11:16:11.0495 2412 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
11:16:11.0495 2412 luafv - ok
11:16:11.0535 2412 McAfeeFramework (062d80f13d762f7bc2f38430d60f5048) C:\Program Files\McAfee\Common Framework\FrameworkService.exe
11:16:11.0535 2412 McAfeeFramework - ok
11:16:11.0595 2412 McShield (50182e471b44c7a0f63b46e2def08b0f) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
11:16:11.0595 2412 McShield - ok
11:16:11.0645 2412 McTaskManager (b15bb3aef59158b4e1dda5328c842713) C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
11:16:11.0655 2412 McTaskManager - ok
11:16:11.0695 2412 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
11:16:11.0705 2412 Mcx2Svc - ok
11:16:11.0775 2412 MDM (7cf1b716372b89568ae4c0fe769f5869) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
11:16:11.0785 2412 MDM - ok
11:16:11.0805 2412 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
11:16:11.0805 2412 megasas - ok
11:16:11.0845 2412 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
11:16:11.0855 2412 MegaSR - ok
11:16:11.0885 2412 MEI (d86ac00883b9c98b570e7643aaf8e554) C:\Windows\system32\DRIVERS\HECI.sys
11:16:11.0885 2412 MEI - ok
11:16:11.0905 2412 mfeapfk (c0d975d64c1af8057f2d75b1297a6979) C:\Windows\system32\drivers\mfeapfk.sys
11:16:11.0905 2412 mfeapfk - ok
11:16:11.0935 2412 mfeavfk (c169326049a8a03d5f905b34f5a65f8c) C:\Windows\system32\drivers\mfeavfk.sys
11:16:11.0945 2412 mfeavfk - ok
11:16:11.0945 2412 mfeavfk01 - ok
11:16:11.0965 2412 mfebopk (50b0253b2484a306a20d8695c5ae5858) C:\Windows\system32\drivers\mfebopk.sys
11:16:11.0975 2412 mfebopk - ok
11:16:12.0025 2412 mfehidk (188b40866db2ab8ef262febc65291687) C:\Windows\system32\drivers\mfehidk.sys
11:16:12.0035 2412 mfehidk - ok
11:16:12.0065 2412 mferkdet (c1b30af2e18e69bf8ceb39b33f32d3c1) C:\Windows\system32\drivers\mferkdet.sys
11:16:12.0065 2412 mferkdet - ok
11:16:12.0105 2412 mfevtp (49c8e20d178be981ff28523a942a570f) C:\Windows\system32\mfevtps.exe
11:16:12.0115 2412 mfevtp - ok
11:16:12.0145 2412 mfewfpk (451b49f0e10d6058ced5b56852d82c8b) C:\Windows\system32\drivers\mfewfpk.sys
11:16:12.0155 2412 mfewfpk - ok
11:16:12.0215 2412 Microsoft Office Groove Audit Service (7c4c76b39d5525c4a465e0be32528e19) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
11:16:12.0225 2412 Microsoft Office Groove Audit Service - ok
11:16:12.0235 2412 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
11:16:12.0245 2412 MMCSS - ok
11:16:12.0265 2412 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
11:16:12.0275 2412 Modem - ok
11:16:12.0285 2412 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
11:16:12.0295 2412 monitor - ok
11:16:12.0305 2412 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
11:16:12.0315 2412 mouclass - ok
11:16:12.0325 2412 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
11:16:12.0325 2412 mouhid - ok
11:16:12.0355 2412 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
11:16:12.0355 2412 mountmgr - ok
11:16:12.0385 2412 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
11:16:12.0385 2412 mpio - ok
11:16:12.0415 2412 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
11:16:12.0415 2412 mpsdrv - ok
11:16:12.0485 2412 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
11:16:12.0495 2412 MpsSvc - ok
11:16:12.0525 2412 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
11:16:12.0535 2412 MRxDAV - ok
11:16:12.0565 2412 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:16:12.0565 2412 mrxsmb - ok
11:16:12.0615 2412 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:16:12.0625 2412 mrxsmb10 - ok
11:16:12.0645 2412 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:16:12.0655 2412 mrxsmb20 - ok
11:16:12.0675 2412 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
11:16:12.0675 2412 msahci - ok
11:16:12.0705 2412 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
11:16:12.0705 2412 msdsm - ok
11:16:12.0735 2412 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
11:16:12.0735 2412 MSDTC - ok
11:16:12.0765 2412 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
11:16:12.0775 2412 Msfs - ok
11:16:12.0785 2412 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
11:16:12.0785 2412 mshidkmdf - ok
11:16:12.0805 2412 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
11:16:12.0805 2412 msisadrv - ok
11:16:12.0845 2412 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
11:16:12.0855 2412 MSiSCSI - ok
11:16:12.0865 2412 msiserver - ok
11:16:12.0885 2412 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
11:16:12.0885 2412 MSKSSRV - ok
11:16:12.0905 2412 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
11:16:12.0905 2412 MSPCLOCK - ok
11:16:12.0925 2412 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
11:16:12.0925 2412 MSPQM - ok
11:16:12.0965 2412 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
11:16:12.0965 2412 MsRPC - ok
11:16:12.0985 2412 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
11:16:12.0995 2412 mssmbios - ok
11:16:13.0015 2412 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
11:16:13.0015 2412 MSTEE - ok
11:16:13.0035 2412 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
11:16:13.0035 2412 MTConfig - ok
11:16:13.0055 2412 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
11:16:13.0055 2412 Mup - ok
11:16:13.0105 2412 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
11:16:13.0115 2412 napagent - ok
11:16:13.0155 2412 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
11:16:13.0165 2412 NativeWifiP - ok
11:16:13.0245 2412 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
11:16:13.0265 2412 NDIS - ok
11:16:13.0285 2412 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
11:16:13.0285 2412 NdisCap - ok
11:16:13.0305 2412 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
11:16:13.0305 2412 NdisTapi - ok
11:16:13.0325 2412 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
11:16:13.0325 2412 Ndisuio - ok
11:16:13.0355 2412 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
11:16:13.0355 2412 NdisWan - ok
11:16:13.0375 2412 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
11:16:13.0375 2412 NDProxy - ok
11:16:13.0385 2412 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
11:16:13.0395 2412 NetBIOS - ok
11:16:13.0425 2412 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
11:16:13.0435 2412 NetBT - ok
11:16:13.0475 2412 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:16:13.0475 2412 Netlogon - ok
11:16:13.0525 2412 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
11:16:13.0535 2412 Netman - ok
11:16:13.0575 2412 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
11:16:13.0585 2412 netprofm - ok
11:16:13.0675 2412 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:16:13.0675 2412 NetTcpPortSharing - ok
11:16:14.0115 2412 NETwNs32 (814596469bbe40ef99ccfd582a375b83) C:\Windows\system32\DRIVERS\NETwNs32.sys
11:16:14.0155 2412 NETwNs32 - ok
11:16:14.0295 2412 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
11:16:14.0295 2412 nfrd960 - ok
11:16:14.0345 2412 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
11:16:14.0355 2412 NlaSvc - ok
11:16:14.0375 2412 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
11:16:14.0375 2412 Npfs - ok
11:16:14.0385 2412 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
11:16:14.0395 2412 nsi - ok
11:16:14.0405 2412 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
11:16:14.0405 2412 nsiproxy - ok
11:16:14.0545 2412 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
11:16:14.0565 2412 Ntfs - ok
11:16:14.0575 2412 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
11:16:14.0575 2412 Null - ok
11:16:14.0605 2412 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
11:16:14.0615 2412 nvraid - ok
11:16:14.0635 2412 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
11:16:14.0635 2412 nvstor - ok
11:16:14.0665 2412 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
11:16:14.0665 2412 nv_agp - ok
11:16:14.0775 2412 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:16:14.0785 2412 odserv - ok
11:16:14.0805 2412 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
11:16:14.0805 2412 ohci1394 - ok
11:16:14.0845 2412 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:16:14.0855 2412 ose - ok
11:16:14.0905 2412 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
11:16:14.0915 2412 p2pimsvc - ok
11:16:14.0975 2412 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
11:16:14.0985 2412 p2psvc - ok
11:16:15.0025 2412 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
11:16:15.0025 2412 Parport - ok
11:16:15.0045 2412 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
11:16:15.0045 2412 partmgr - ok
11:16:15.0055 2412 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
11:16:15.0055 2412 Parvdm - ok
11:16:15.0085 2412 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
11:16:15.0095 2412 PcaSvc - ok
11:16:15.0125 2412 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
11:16:15.0125 2412 pci - ok
11:16:15.0135 2412 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
11:16:15.0135 2412 pciide - ok
11:16:15.0175 2412 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
11:16:15.0175 2412 pcmcia - ok
11:16:15.0195 2412 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
11:16:15.0195 2412 pcw - ok
11:16:15.0265 2412 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
11:16:15.0265 2412 PEAUTH - ok
11:16:15.0375 2412 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
11:16:15.0385 2412 PeerDistSvc - ok
11:16:15.0555 2412 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
11:16:15.0575 2412 pla - ok
11:16:15.0715 2412 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
11:16:15.0725 2412 PlugPlay - ok
11:16:15.0755 2412 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
11:16:15.0765 2412 PNRPAutoReg - ok
11:16:15.0805 2412 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
11:16:15.0815 2412 PNRPsvc - ok
11:16:15.0875 2412 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
11:16:15.0885 2412 PolicyAgent - ok
11:16:15.0925 2412 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
11:16:15.0935 2412 Power - ok
11:16:15.0985 2412 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
11:16:15.0985 2412 PptpMiniport - ok
11:16:16.0045 2412 prepdrvr (2a4514a9233d35a355f569ff8b8f6240) C:\Windows\system32\CCM\prepdrv.sys
11:16:16.0045 2412 prepdrvr - ok
11:16:16.0065 2412 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
11:16:16.0065 2412 Processor - ok
11:16:16.0095 2412 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
11:16:16.0105 2412 ProfSvc - ok
11:16:16.0145 2412 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:16:16.0155 2412 ProtectedStorage - ok
11:16:16.0175 2412 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
11:16:16.0185 2412 Psched - ok
11:16:16.0335 2412 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
11:16:16.0355 2412 ql2300 - ok
11:16:16.0475 2412 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
11:16:16.0485 2412 ql40xx - ok
11:16:16.0525 2412 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
11:16:16.0535 2412 QWAVE - ok
11:16:16.0555 2412 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
11:16:16.0555 2412 QWAVEdrv - ok
11:16:16.0575 2412 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
11:16:16.0575 2412 RasAcd - ok
11:16:16.0605 2412 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:16:16.0615 2412 RasAgileVpn - ok
11:16:16.0635 2412 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
11:16:16.0645 2412 RasAuto - ok
11:16:16.0675 2412 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:16:16.0675 2412 Rasl2tp - ok
11:16:16.0715 2412 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
11:16:16.0725 2412 RasMan - ok
11:16:16.0755 2412 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
11:16:16.0755 2412 RasPppoe - ok
11:16:16.0785 2412 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
11:16:16.0795 2412 RasSstp - ok
11:16:16.0825 2412 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
11:16:16.0835 2412 rdbss - ok
11:16:16.0855 2412 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
11:16:16.0855 2412 rdpbus - ok
11:16:16.0875 2412 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:16:16.0875 2412 RDPCDD - ok
11:16:16.0905 2412 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
11:16:16.0905 2412 RDPDR - ok
11:16:16.0925 2412 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
11:16:16.0925 2412 RDPENCDD - ok
11:16:16.0945 2412 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
11:16:16.0945 2412 RDPREFMP - ok
11:16:16.0975 2412 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
11:16:16.0975 2412 RdpVideoMiniport - ok
11:16:17.0025 2412 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
11:16:17.0035 2412 RDPWD - ok
11:16:17.0065 2412 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
11:16:17.0075 2412 rdyboost - ok
11:16:17.0105 2412 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
11:16:17.0105 2412 RemoteAccess - ok
11:16:17.0145 2412 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
11:16:17.0145 2412 RemoteRegistry - ok
11:16:17.0175 2412 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
11:16:17.0185 2412 RFCOMM - ok
11:16:17.0195 2412 rimspci (e891f07815af88075705ef6a248711f6) C:\Windows\system32\DRIVERS\rimspe86.sys
11:16:17.0195 2412 rimspci - ok
11:16:17.0205 2412 rixdpcie (6a60626412129c713cc30c81870a8095) C:\Windows\system32\DRIVERS\rixdpe86.sys
11:16:17.0205 2412 rixdpcie - ok
11:16:17.0225 2412 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
11:16:17.0235 2412 RpcEptMapper - ok
11:16:17.0255 2412 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
11:16:17.0255 2412 RpcLocator - ok
11:16:17.0295 2412 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
11:16:17.0305 2412 RpcSs - ok
11:16:17.0325 2412 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
11:16:17.0325 2412 rspndr - ok
11:16:17.0355 2412 RTL8167 (d5ede44ca85899e0478208c8413c1c31) C:\Windows\system32\DRIVERS\Rt86win7.sys
11:16:17.0365 2412 RTL8167 - ok
11:16:17.0475 2412 rtl8192se (8e2cb65b05b102f2adeebe4c76bf11b6) C:\Windows\system32\DRIVERS\rtl8192se.sys
11:16:17.0495 2412 rtl8192se - ok
11:16:17.0515 2412 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
11:16:17.0515 2412 s3cap - ok
11:16:17.0555 2412 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:16:17.0555 2412 SamSs - ok
11:16:17.0625 2412 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
11:16:17.0625 2412 SASDIFSV - ok
11:16:17.0655 2412 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
11:16:17.0655 2412 SASKUTIL - ok
11:16:17.0685 2412 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
11:16:17.0695 2412 sbp2port - ok
11:16:17.0725 2412 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
11:16:17.0735 2412 SCardSvr - ok
11:16:17.0755 2412 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
11:16:17.0765 2412 scfilter - ok
11:16:17.0855 2412 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
11:16:17.0865 2412 Schedule - ok
11:16:17.0905 2412 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
11:16:17.0905 2412 SCPolicySvc - ok
11:16:17.0935 2412 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
11:16:17.0935 2412 sdbus - ok
11:16:17.0965 2412 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
11:16:17.0975 2412 SDRSVC - ok
11:16:17.0995 2412 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:16:17.0995 2412 secdrv - ok
11:16:18.0025 2412 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
11:16:18.0025 2412 seclogon - ok
11:16:18.0055 2412 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
11:16:18.0055 2412 SENS - ok
11:16:18.0085 2412 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
11:16:18.0095 2412 SensrSvc - ok
11:16:18.0105 2412 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
11:16:18.0115 2412 Serenum - ok
11:16:18.0135 2412 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
11:16:18.0135 2412 Serial - ok
11:16:18.0155 2412 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
11:16:18.0155 2412 sermouse - ok
11:16:18.0225 2412 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
11:16:18.0225 2412 SessionEnv - ok
11:16:18.0265 2412 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
11:16:18.0265 2412 sffdisk - ok
11:16:18.0275 2412 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
11:16:18.0275 2412 sffp_mmc - ok
11:16:18.0285 2412 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
11:16:18.0285 2412 sffp_sd - ok
11:16:18.0295 2412 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
11:16:18.0295 2412 sfloppy - ok
11:16:18.0345 2412 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
11:16:18.0355 2412 SharedAccess - ok
11:16:18.0395 2412 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
11:16:18.0405 2412 ShellHWDetection - ok
11:16:18.0425 2412 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
11:16:18.0435 2412 sisagp - ok
11:16:18.0445 2412 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:16:18.0445 2412 SiSRaid2 - ok
11:16:18.0475 2412 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
11:16:18.0475 2412 SiSRaid4 - ok
11:16:18.0495 2412 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
11:16:18.0495 2412 Smb - ok
11:16:18.0535 2412 smstsmgr - ok
11:16:18.0565 2412 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
11:16:18.0565 2412 SNMPTRAP - ok
11:16:18.0575 2412 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
11:16:18.0575 2412 spldr - ok
11:16:18.0625 2412 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
11:16:18.0635 2412 Spooler - ok
11:16:18.0885 2412 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
11:16:18.0925 2412 sppsvc - ok
11:16:19.0035 2412 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
11:16:19.0045 2412 sppuinotify - ok
11:16:19.0095 2412 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
11:16:19.0105 2412 srv - ok
11:16:19.0145 2412 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
11:16:19.0145 2412 srv2 - ok
11:16:19.0175 2412 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
11:16:19.0175 2412 srvnet - ok
11:16:19.0205 2412 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
11:16:19.0215 2412 SSDPSRV - ok
11:16:19.0235 2412 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
11:16:19.0235 2412 SstpSvc - ok
11:16:19.0255 2412 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
11:16:19.0255 2412 stexstor - ok
11:16:19.0315 2412 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
11:16:19.0325 2412 StiSvc - ok
11:16:19.0335 2412 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
11:16:19.0345 2412 storflt - ok
11:16:19.0355 2412 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
11:16:19.0355 2412 StorSvc - ok
11:16:19.0375 2412 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
11:16:19.0375 2412 storvsc - ok
11:16:19.0395 2412 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
11:16:19.0395 2412 swenum - ok
11:16:19.0435 2412 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
11:16:19.0445 2412 swprv - ok
11:16:19.0445 2412 Synth3dVsc - ok
11:16:19.0485 2412 SynTP (d7dc30b8b41e7a913c3fccc0631e72ec) C:\Windows\system32\DRIVERS\SynTP.sys
11:16:19.0485 2412 SynTP - ok
11:16:19.0625 2412 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
11:16:19.0655 2412 SysMain - ok
11:16:19.0675 2412 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
11:16:19.0675 2412 TabletInputService - ok
11:16:19.0715 2412 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
11:16:19.0725 2412 TapiSrv - ok
11:16:19.0755 2412 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
11:16:19.0765 2412 TBS - ok
11:16:19.0945 2412 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
11:16:19.0965 2412 Tcpip - ok
11:16:19.0995 2412 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
11:16:20.0005 2412 TCPIP6 - ok
11:16:20.0035 2412 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
11:16:20.0035 2412 tcpipreg - ok
11:16:20.0055 2412 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
11:16:20.0055 2412 TDPIPE - ok
11:16:20.0095 2412 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
11:16:20.0095 2412 TDTCP - ok
11:16:20.0115 2412 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
11:16:20.0115 2412 tdx - ok
11:16:20.0145 2412 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
11:16:20.0145 2412 TermDD - ok
11:16:20.0215 2412 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
11:16:20.0225 2412 TermService - ok
11:16:20.0245 2412 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
11:16:20.0245 2412 Themes - ok
11:16:20.0275 2412 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
11:16:20.0275 2412 THREADORDER - ok
11:16:20.0295 2412 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
11:16:20.0295 2412 TPM - ok
11:16:20.0315 2412 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
11:16:20.0315 2412 TrkWks - ok
11:16:20.0385 2412 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
11:16:20.0385 2412 TrustedInstaller - ok
11:16:20.0415 2412 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:16:20.0415 2412 tssecsrv - ok
11:16:20.0435 2412 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
11:16:20.0435 2412 TsUsbFlt - ok
11:16:20.0445 2412 tsusbhub - ok
11:16:20.0475 2412 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
11:16:20.0485 2412 tunnel - ok
11:16:20.0505 2412 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
11:16:20.0505 2412 uagp35 - ok
11:16:20.0555 2412 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
11:16:20.0555 2412 udfs - ok
11:16:20.0595 2412 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
11:16:20.0605 2412 UI0Detect - ok
11:16:20.0625 2412 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
11:16:20.0625 2412 uliagpkx - ok
11:16:20.0645 2412 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
11:16:20.0655 2412 umbus - ok
11:16:20.0665 2412 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
11:16:20.0665 2412 UmPass - ok
11:16:20.0705 2412 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
11:16:20.0715 2412 UmRdpService - ok
11:16:20.0965 2412 UNS (a69cd6bdb82872999d2e46f9324ada83) C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:16:20.0985 2412 UNS - ok
11:16:21.0115 2412 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
11:16:21.0125 2412 upnphost - ok
11:16:21.0175 2412 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
11:16:21.0185 2412 usbccgp - ok
11:16:21.0215 2412 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
11:16:21.0215 2412 usbcir - ok
11:16:21.0245 2412 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
11:16:21.0245 2412 usbehci - ok
11:16:21.0295 2412 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
11:16:21.0305 2412 usbhub - ok
11:16:21.0325 2412 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
11:16:21.0325 2412 usbohci - ok
11:16:21.0345 2412 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
11:16:21.0345 2412 usbprint - ok
11:16:21.0385 2412 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
11:16:21.0385 2412 usbscan - ok
11:16:21.0405 2412 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:16:21.0405 2412 USBSTOR - ok
11:16:21.0425 2412 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
11:16:21.0435 2412 usbuhci - ok
11:16:21.0465 2412 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
11:16:21.0465 2412 usbvideo - ok
11:16:21.0495 2412 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
11:16:21.0505 2412 UxSms - ok
11:16:21.0585 2412 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
11:16:21.0585 2412 VaultSvc - ok
11:16:21.0695 2412 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
11:16:21.0695 2412 vdrvroot - ok
11:16:21.0755 2412 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
11:16:21.0765 2412 vds - ok
11:16:21.0795 2412 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
11:16:21.0795 2412 vga - ok
11:16:21.0815 2412 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
11:16:21.0825 2412 VgaSave - ok
11:16:21.0825 2412 VGPU - ok
11:16:21.0875 2412 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
11:16:21.0875 2412 vhdmp - ok
11:16:21.0895 2412 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
11:16:21.0895 2412 viaagp - ok
11:16:21.0915 2412 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
11:16:21.0915 2412 ViaC7 - ok
11:16:21.0925 2412 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
11:16:21.0925 2412 viaide - ok
11:16:21.0965 2412 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
11:16:21.0975 2412 vmbus - ok
11:16:21.0985 2412 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
11:16:21.0985 2412 VMBusHID - ok
11:16:22.0005 2412 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
11:16:22.0005 2412 volmgr - ok
11:16:22.0055 2412 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
11:16:22.0065 2412 volmgrx - ok
11:16:22.0095 2412 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
11:16:22.0095 2412 volsnap - ok
11:16:22.0125 2412 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
11:16:22.0125 2412 vsmraid - ok
11:16:22.0235 2412 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
11:16:22.0245 2412 VSS - ok
11:16:22.0265 2412 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
11:16:22.0265 2412 vwifibus - ok
11:16:22.0275 2412 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
11:16:22.0275 2412 vwififlt - ok
11:16:22.0295 2412 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
11:16:22.0305 2412 vwifimp - ok
11:16:22.0355 2412 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
11:16:22.0365 2412 W32Time - ok
11:16:22.0385 2412 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
11:16:22.0385 2412 WacomPen - ok
11:16:22.0395 2412 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
11:16:22.0405 2412 WANARP - ok
11:16:22.0405 2412 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
11:16:22.0415 2412 Wanarpv6 - ok
11:16:22.0555 2412 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
11:16:22.0575 2412 WatAdminSvc - ok
11:16:22.0705 2412 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
11:16:22.0725 2412 wbengine - ok
11:16:22.0765 2412 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
11:16:22.0775 2412 WbioSrvc - ok
11:16:22.0815 2412 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
11:16:22.0825 2412 wcncsvc - ok
11:16:22.0845 2412 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
11:16:22.0855 2412 WcsPlugInService - ok
11:16:22.0915 2412 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
11:16:22.0925 2412 Wd - ok
11:16:22.0985 2412 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
11:16:22.0995 2412 Wdf01000 - ok
11:16:23.0015 2412 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
11:16:23.0025 2412 WdiServiceHost - ok
11:16:23.0035 2412 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
11:16:23.0045 2412 WdiSystemHost - ok
11:16:23.0075 2412 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
11:16:23.0085 2412 WebClient - ok
11:16:23.0115 2412 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
11:16:23.0125 2412 Wecsvc - ok
11:16:23.0145 2412 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
11:16:23.0155 2412 wercplsupport - ok
11:16:23.0185 2412 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
11:16:23.0185 2412 WerSvc - ok
11:16:23.0205 2412 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
11:16:23.0205 2412 WfpLwf - ok
11:16:23.0235 2412 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
11:16:23.0235 2412 WIMMount - ok
11:16:23.0355 2412 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
11:16:23.0365 2412 WinDefend - ok
11:16:23.0385 2412 WinHttpAutoProxySvc - ok
11:16:23.0445 2412 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
11:16:23.0455 2412 Winmgmt - ok
11:16:23.0585 2412 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
11:16:23.0615 2412 WinRM - ok
11:16:23.0685 2412 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
11:16:23.0685 2412 WinUsb - ok
11:16:23.0805 2412 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
11:16:23.0815 2412 Wlansvc - ok
11:16:23.0845 2412 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
11:16:23.0845 2412 WmiAcpi - ok
11:16:23.0885 2412 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
11:16:23.0885 2412 wmiApSrv - ok
11:16:24.0035 2412 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
11:16:24.0055 2412 WMPNetworkSvc - ok
11:16:24.0075 2412 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
11:16:24.0075 2412 WPCSvc - ok
11:16:24.0095 2412 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
11:16:24.0095 2412 WPDBusEnum - ok
11:16:24.0145 2412 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
11:16:24.0145 2412 ws2ifsl - ok
11:16:24.0145 2412 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
11:16:24.0155 2412 wscsvc - ok
11:16:24.0155 2412 WSearch - ok
11:16:24.0355 2412 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
11:16:24.0385 2412 wuauserv - ok
11:16:24.0495 2412 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
11:16:24.0495 2412 WudfPf - ok
11:16:24.0525 2412 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:16:24.0525 2412 WUDFRd - ok
11:16:24.0565 2412 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
11:16:24.0575 2412 wudfsvc - ok
11:16:24.0605 2412 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
11:16:24.0615 2412 WwanSvc - ok
11:16:24.0665 2412 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
11:16:25.0085 2412 \Device\Harddisk0\DR0 - ok
11:16:25.0085 2412 Boot (0x1200) (3537b8ea71c7c689ba88b9f00f2305b0) \Device\Harddisk0\DR0\Partition0
11:16:25.0095 2412 \Device\Harddisk0\DR0\Partition0 - ok
11:16:25.0135 2412 Boot (0x1200) (96a7bbf832ce8d2101d7fb7a2af50e94) \Device\Harddisk0\DR0\Partition1
11:16:25.0135 2412 \Device\Harddisk0\DR0\Partition1 - ok
11:16:25.0135 2412 ============================================================
11:16:25.0135 2412 Scan finished
11:16:25.0135 2412 ============================================================
11:16:25.0155 6092 Detected object count: 0
11:16:25.0155 6092 Actual detected object count: 0
11:35:49.0154 4084 Deinitialize success
**********************************************************************************************************

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-23 11:19:05
-----------------------------
11:19:05.155 OS Version: Windows 6.1.7601 Service Pack 1
11:19:05.155 Number of processors: 4 586 0x2A07
11:19:05.165 ComputerName: BTSNJY18990 UserName: BTSGEN
11:19:07.755 Initialize success
11:20:16.245 AVAST engine defs: 12062300
11:20:21.155 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
11:20:21.165 Disk 0 Vendor: WDC_WD2500BEKT-60PVMT0 01.01A01 Size: 238475MB BusType: 11
11:20:21.185 Disk 0 MBR read successfully
11:20:21.185 Disk 0 MBR scan
11:20:21.205 Disk 0 Windows 7 default MBR code
11:20:21.225 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 200 MB offset 2048
11:20:21.255 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 238273 MB offset 411648
11:20:21.285 Disk 0 scanning sectors +488394752
11:20:21.395 Disk 0 scanning C:\Windows\system32\drivers
11:20:38.065 Service scanning
11:21:07.775 Modules scanning
11:21:17.215 Disk 0 trace - called modules:
11:21:17.235 ntkrnlpa.exe CLASSPNP.SYS disk.sys hpdskflt.sys halmacpi.dll ataport.SYS PCIIDEX.SYS msahci.sys
11:21:17.565 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86abe030]
11:21:17.575 3 CLASSPNP.SYS[8bf0a59e] -> nt!IofCallDriver -> [0x86abd478]
11:21:17.585 5 hpdskflt.sys[8bebbf8a] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x86919030]
11:21:18.875 AVAST engine scan C:\Windows
11:21:20.875 AVAST engine scan C:\Windows\system32
11:24:33.869 AVAST engine scan C:\Windows\system32\drivers
11:24:52.499 AVAST engine scan C:\Users\Btsgen
11:25:09.013 Disk 0 MBR has been saved successfully to "C:\Users\Btsgen\Documents\MBR.dat"
11:25:09.033 The log file has been saved successfully to "C:\Users\Btsgen\Documents\aswMBR.txt
*****************************************************************************************
ESETONLINE
C:\ProgramData\Tarma Installer\{C049526F-B3EB-4151-9B11-B11F00F53A96}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Users\btsgen\AppData\Local\Temp\ICReinstall\cnet2_revosetup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\btsgen\AppData\Local\Temp\YontooSetup-Silent.exe Win32/Adware.Yontoo application cleaned by deleting - quarantined
Operating memory Win32/Sirefef.EV trojan

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:38 AM

Posted 23 June 2012 - 12:32 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


Download

System look

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}

Click on LOOK,post the generated log

Edited by narenxp, 23 June 2012 - 04:54 PM.


#5 hunt1290

hunt1290
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:06:38 AM

Posted 23 June 2012 - 04:30 PM

Looks like it is fixed, havent seen any pop ups. Please confirm

Got a clean MBAM after couple of runs.

MiniToolBox by Farbar Version: 09-06-2012
Ran by btsgen (ATTENTION: The logged in user is not administrator) on 23-06-2012 at 17:15:49
Windows 7 Enterprise Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com


There are 15128 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6205 = Wireless Network Connection 3 (Connected)
Cisco Systems VPN Adapter = Local Area Connection 2 (Hardware not present)
Intel® 82579V Gigabit Network Connection = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 4 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirebts=enabled taskoffload=disabled
set interface interface="Local Area Connection 2" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : BTSNJY18990
Primary Dns Suffix . . . . . . . : bts.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : bts.com

Wireless LAN adapter Wireless Network Connection 4:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : A0-88-B4-3F-EF-25
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6205 #3
Physical Address. . . . . . . . . : A0-88-B4-3F-EF-24
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::6ca3:8bd1:18a5:2e7b%22(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, June 23, 2012 4:38:38 PM
Lease Expires . . . . . . . . . . : Sunday, June 24, 2012 4:38:38 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 530614452
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-6D-B6-AD-64-31-50-8E-26-7A
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
Physical Address. . . . . . . . . : 64-31-50-94-7B-41
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{A7756B28-4A60-400F-8C75-D00518862284}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{D779E166-201F-4877-A69A-E3727421480F}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1046:3d36:3f57:fefd(Preferred)
Link-local IPv6 Address . . . . . : fe80::1046:3d36:3f57:fefd%24(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4002:802::1006
74.125.134.138
74.125.134.101
74.125.134.100
74.125.134.113
74.125.134.102
74.125.134.139


Pinging google.com [74.125.137.100] with 32 bytes of data:
Reply from 74.125.137.100: bytes=32 time=18ms TTL=44
Reply from 74.125.137.100: bytes=32 time=18ms TTL=44

Ping statistics for 74.125.137.100:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 18ms, Average = 18ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=72ms TTL=46
Reply from 98.139.183.24: bytes=32 time=106ms TTL=46

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 72ms, Maximum = 106ms, Average = 89ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
26...a0 88 b4 3f ef 25 ......Microsoft Virtual WiFi Miniport Adapter
22...a0 88 b4 3f ef 24 ......Intel® Centrino® Advanced-N 6205 #3
15...64 31 50 94 7b 41 ......Intel® 82579V Gigabit Network Connection
1...........................Software Loopback Interface 1
28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
29...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
24...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 286
192.168.1.2 255.255.255.255 On-link 192.168.1.2 286
192.168.1.255 255.255.255.255 On-link 192.168.1.2 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
24 58 ::/0 On-link
1 306 ::1/128 On-link
24 58 2001::/32 On-link
24 306 2001:0:4137:9e76:1046:3d36:3f57:fefd/128
On-link
22 286 fe80::/64 On-link
24 306 fe80::/64 On-link
24 306 fe80::1046:3d36:3f57:fefd/128
On-link
22 286 fe80::6ca3:8bd1:18a5:2e7b/128
On-link
1 306 ff00::/8 On-link
24 306 ff00::/8 On-link
22 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ================================

Could not start eventlog service, could not read events.

System error 5 has occurred.

Access is denied.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office Suite Service Pack 2 (SP2)
Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
AT&T Connect Participant Application v8.9.35 (Version: 8.9.35)
Canon MF4100 Series
Cisco Systems VPN Client 5.0.00.0340 (Version: 5.0.0)
Configuration Manager Client (Version: 4.00.6487.2000)
ESET Online Scanner v3
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Network Connections Drivers (Version: 15.4)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
JMicron 1394 Filter Driver (Version: 1.00.21.00)
JMicron Flash Media Controller Driver (Version: 1.0.58.0)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
McAfee Agent (Version: 4.5.0.1810)
McAfee VirusScan Enterprise (Version: 8.8.00000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Communicator 2007 (Version: 2.0.6362.36)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Meeting 2007 (Version: 8.0.6362.187)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Project 2007 Service Pack 2 (SP2)
Microsoft Office Project MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Project Professional 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Visio 2007 Service Pack 2 (SP2)
Microsoft Office Visio MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Visio Professional 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 4.1.10111.0)
Picasa 3 (Version: 3.8)
Revo Uninstaller 1.93 (Version: 1.93)
Solidata PDF Writer
SUPERAntiSpyware (Version: 5.0.1142)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.0.18.0)
ThinkPad Power Management Driver (Version: 1.43)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2597970) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Project 2007 Help (KB963668)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Visio 2007 Help (KB963666)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 2.0.0 (Version: 2.0.0)
WebEx
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9407) (Version: 09/11/2009 6.2.0.9407)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
WinZip 14.0 (Version: 14.0.8688)
Yahoo! Detect

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 3014.37 MB
Available physical RAM: 1492.86 MB
Total Pagefile: 6027.02 MB
Available Pagefile: 4415.99 MB
Total Virtual: 2047.88 MB
Available Virtual: 1939.7 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:232.69 GB) (Free:194.55 GB) NTFS

========================= Users: ========================================

User accounts for \\BTSNJY18990

btsgen btsgen1 Guest
**** End of log ****

Systemlook

SystemLook 30.07.11 by jpshortstuff
Log created at 17:24 on 23/06/2012 by ctsuser1
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\System32\services.exe --a---- 259072 bytes [23:11 13/07/2009] [01:14 14/07/2009] 5F1B6A9C35D3D5CA72D6D6FDEF9747D6
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe --a---- 259072 bytes [23:11 13/07/2009] [01:14 14/07/2009] 5F1B6A9C35D3D5CA72D6D6FDEF9747D6

Invalid Context: folder

No Context: {d7c7c6b8-b1a3-423e-b5e9-191125111a0f}

-= EOF =-

Edited by hunt1290, 23 June 2012 - 04:32 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:38 AM

Posted 23 June 2012 - 04:56 PM

Ran by btsgen (ATTENTION: The logged in user is not administrator) on 23-06-2012 at 17:15:49


I want you to run ESET online scanner and MBAM from administrator acct-normal mode

There was an error in system look script.I have modified it,Please run it again

Run minitoolbox in account with admin privileges and post the log

#7 hunt1290

hunt1290
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:06:38 AM

Posted 23 June 2012 - 08:18 PM

Switched to admin account and ran

1) ESET - It came back clean
2) MBAM - It came back clean

But still have the problem that is IE takes to Funmoods website in admin account only ( not the other user account). No pop up alerts on trojan just IE pointing to wrong site

Ran Minitool as admin and it shows "Funmoods Web Search" still as one of the installed programs. Please help

MiniToolBox by Farbar Version: 09-06-2012
Ran by btsgen1 (administrator) on 23-06-2012 at 20:57:54
Windows 7 Enterprise Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com


There are 15128 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6205 = Wireless Network Connection 3 (Connected)
Cisco Systems VPN Adapter = Local Area Connection 2 (Hardware not present)
Intel® 82579V Gigabit Network Connection = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 4 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirebts=enabled taskoffload=disabled
set interface interface="Local Area Connection 2" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : BTSNJY18990
Primary Dns Suffix . . . . . . . : bts.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : bts.com

Wireless LAN adapter Wireless Network Connection 4:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : A0-88-B4-3F-EF-25
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6205 #3
Physical Address. . . . . . . . . : A0-88-B4-3F-EF-24
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::6ca3:8bd1:18a5:2e7b%22(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, June 23, 2012 6:59:49 PM
Lease Expires . . . . . . . . . . : Sunday, June 24, 2012 6:59:49 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 530614452
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-6D-B6-AD-64-31-50-8E-26-7A
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
Physical Address. . . . . . . . . : 64-31-50-94-7B-41
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{D779E166-201F-4877-A69A-E3727421480F}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{A7756B28-4A60-400F-8C75-D00518862284}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{CDB5A16E-1731-4081-8D5C-0AF64590F4C4}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:388f:20fc:3f57:fefb(Preferred)
Link-local IPv6 Address . . . . . : fe80::388f:20fc:3f57:fefb%24(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4004:800::1005
74.125.228.3
74.125.228.9
74.125.228.5
74.125.228.0
74.125.228.8
74.125.228.2
74.125.228.7
74.125.228.14
74.125.228.1
74.125.228.6
74.125.228.4


Pinging google.com [74.125.228.97] with 32 bytes of data:
Reply from 74.125.228.97: bytes=32 time=35ms TTL=52
Reply from 74.125.228.97: bytes=32 time=31ms TTL=52

Ping statistics for 74.125.228.97:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 31ms, Maximum = 35ms, Average = 33ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=69ms TTL=46
Reply from 98.139.183.24: bytes=32 time=101ms TTL=47

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 69ms, Maximum = 101ms, Average = 85ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
26...a0 88 b4 3f ef 25 ......Microsoft Virtual WiFi Miniport Adapter
22...a0 88 b4 3f ef 24 ......Intel® Centrino® Advanced-N 6205 #3
15...64 31 50 94 7b 41 ......Intel® 82579V Gigabit Network Connection
1...........................Software Loopback Interface 1
28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
29...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
42...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
24...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.4 281
192.168.1.4 255.255.255.255 On-link 192.168.1.4 281
192.168.1.255 255.255.255.255 On-link 192.168.1.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
24 58 ::/0 On-link
1 306 ::1/128 On-link
24 58 2001::/32 On-link
24 306 2001:0:4137:9e76:388f:20fc:3f57:fefb/128
On-link
22 281 fe80::/64 On-link
24 306 fe80::/64 On-link
24 306 fe80::388f:20fc:3f57:fefb/128
On-link
22 281 fe80::6ca3:8bd1:18a5:2e7b/128
On-link
1 306 ff00::/8 On-link
24 306 ff00::/8 On-link
22 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/23/2012 06:59:49 PM) (Source: Communicator) (User: )
Description: Communicator was unable to resolve the DNS hostname of the login server sipinternal.cognizant.com.



Resolution:

If you are using manual configuration for Communicator, please check that the server name is typed correctly and in full. If you are using automatic configuration, the network administrator will need to double-check the DNS A record configuration for sipinternal.cognizant.com because it could not be resolved.

Error: (06/23/2012 06:59:48 PM) (Source: Communicator) (User: )
Description: Communicator was unable to resolve the DNS hostname of the login server sipinternal.cognizant.com.



Resolution:

If you are using manual configuration for Communicator, please check that the server name is typed correctly and in full. If you are using automatic configuration, the network administrator will need to double-check the DNS A record configuration for sipinternal.cognizant.com because it could not be resolved.

Error: (06/23/2012 06:59:45 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/23/2012 06:59:45 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/23/2012 05:46:06 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/23/2012 05:46:06 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/23/2012 05:46:06 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/23/2012 05:35:59 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/23/2012 05:35:58 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (06/23/2012 05:35:58 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.


System errors:
=============
Error: (06/23/2012 05:47:25 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{24FF4FDC-1D9F-4195-8C79-0DA39248FF48}{B292921D-AF50-400C-9B75-0C57A7F29BA1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/23/2012 05:45:49 PM) (Source: Microsoft-Windows-GroupPolicy) (User: SYSTEM)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (06/23/2012 05:45:29 PM) (Source: NETLOGON) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain BTS due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (06/23/2012 05:37:52 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{24FF4FDC-1D9F-4195-8C79-0DA39248FF48}{B292921D-AF50-400C-9B75-0C57A7F29BA1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/23/2012 05:36:10 PM) (Source: Microsoft-Windows-GroupPolicy) (User: SYSTEM)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (06/23/2012 05:35:48 PM) (Source: NETLOGON) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain BTS due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (06/23/2012 04:42:15 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{24FF4FDC-1D9F-4195-8C79-0DA39248FF48}{B292921D-AF50-400C-9B75-0C57A7F29BA1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/23/2012 04:38:50 PM) (Source: Microsoft-Windows-GroupPolicy) (User: SYSTEM)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (06/23/2012 04:38:30 PM) (Source: NETLOGON) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain BTS due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (06/23/2012 04:07:36 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{24FF4FDC-1D9F-4195-8C79-0DA39248FF48}{B292921D-AF50-400C-9B75-0C57A7F29BA1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================
Error: (05/26/2012 08:44:05 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8247 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/22/2012 10:04:55 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 4484 seconds with 780 seconds of active time. This session ended with a crash.

Error: (02/23/2012 05:07:38 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 242 seconds with 240 seconds of active time. This session ended with a crash.

Error: (01/19/2012 11:40:16 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash.

Error: (08/05/2011 00:13:24 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4420 seconds with 360 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office Suite Service Pack 2 (SP2)
Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
AT&T Connect Participant Application v8.9.35 (Version: 8.9.35)
Canon MF4100 Series
Cisco Systems VPN Client 5.0.00.0340 (Version: 5.0.0)
Configuration Manager Client (Version: 4.00.6487.2000)
ESET Online Scanner v3
Funmoods Web Search
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Network Connections Drivers (Version: 15.4)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
JMicron 1394 Filter Driver (Version: 1.00.21.00)
JMicron Flash Media Controller Driver (Version: 1.0.58.0)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
McAfee Agent (Version: 4.5.0.1810)
McAfee VirusScan Enterprise (Version: 8.8.00000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Communicator 2007 (Version: 2.0.6362.36)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Meeting 2007 (Version: 8.0.6362.187)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Project 2007 Service Pack 2 (SP2)
Microsoft Office Project MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Project Professional 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Visio 2007 Service Pack 2 (SP2)
Microsoft Office Visio MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Visio Professional 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 4.1.10111.0)
Picasa 3 (Version: 3.8)
Solidata PDF Writer
SUPERAntiSpyware (Version: 5.0.1142)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.0.18.0)
ThinkPad Power Management Driver (Version: 1.43)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2597970) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Project 2007 Help (KB963668)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Visio 2007 Help (KB963666)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 2.0.0 (Version: 2.0.0)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9407) (Version: 09/11/2009 6.2.0.9407)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
WinZip 14.0 (Version: 14.0.8688)
Yahoo! Detect

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3014.37 MB
Available physical RAM: 1756.38 MB
Total Pagefile: 6027.02 MB
Available Pagefile: 4745.68 MB
Total Virtual: 2047.88 MB
Available Virtual: 1933 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:232.69 GB) (Free:194.63 GB) NTFS

========================= Users: ========================================

User accounts for \\BTSNJY18990

btsgen btsgen1 Guest



**** End of log ****

Edited by hunt1290, 23 June 2012 - 08:21 PM.


#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:38 AM

Posted 23 June 2012 - 08:52 PM

Uninstall funmoods websearch from add or remove programs

Reset your internet explorer

http://support.microsoft.com/kb/923737

Download

Farbar Service Scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

System look

Launch it and copy this script and paste in the BOX

:folderfind
{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}

Click on LOOK,post the generated log

#9 hunt1290

hunt1290
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:06:38 AM

Posted 23 June 2012 - 09:26 PM

Perfect fixed the funmood IE problem also. Uninstalled and did reset of the Internet Explorer

Farbar Service Scanner Version: 23-06-2012
Ran by btsgen1 (administrator) on 23-06-2012 at 22:11:10
Running from "C:\Users\btsgen1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ISEZZQZQ"
Windows 7 Enterprise Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
winmgmt Service is not running. Checking service configuration:
The start type of winmgmt service is OK.
The ImagePath of winmgmt: "%systemroot%\system32\svchost.exe -k netsvcs".
The ServiceDll of winmgmt service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
**** End of log ****


SystemLook 30.07.11 by jpshortstuff
Log created at 22:12 on 23/06/2012 by btsgen1
Administrator - Elevation successful

========== folderfind ==========

Searching for "{d7c7c6b8-b1a3-423e-b5e9-191125111a0f}"
C:\Users\btsgen\AppData\Local\{d7c7c6b8-b1a3-423e-b5e9-191125111a0f} d--hs-- [11:19 11/01/2012]

-= EOF =-

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:38 AM

Posted 23 June 2012 - 09:50 PM

Browse to

C:\Users\btsgen\AppData\Local

On top ,click on organize-folder and search options

Click on view tab and scroll down

Checkmark show hidden files
Uncheck Hide operating system files

CLick ok

Delete this folder {d7c7c6b8-b1a3-423e-b5e9-191125111a0f}

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset Registry Permissions
Reset File Permissions
Repair WMI
Repair Windows Updates
Remove Policies Set By Infections


Checkmark Restart System When Finished option
click the Start button

After repair,system will restart

Let me know if you have current issues before we wrap up

Edited by narenxp, 23 June 2012 - 09:51 PM.


#11 hunt1290

hunt1290
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:06:38 AM

Posted 23 June 2012 - 10:32 PM

Executed all the steps. No issues to report at this time. Thank you for your continous help. Much appreciated

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:38 AM

Posted 23 June 2012 - 10:41 PM

That looks good

Download

Hosts fix

Run it


Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users