Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help With Trojan


  • This topic is locked This topic is locked
6 replies to this topic

#1 Nevermind3

Nevermind3

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:45 PM

Posted 08 July 2012 - 03:35 PM

Hey all, new poster here but I'm familiar enough with the site and some of its programs. It helped me get rid of the Windows Antivirus infection a while back, which I'm thankful for.

Unfortunately it appears that I've just gotten another infection today. It doesn't appear to be doing anything as my Antivirus program (Trend) continues to halt it, but the notice keeps popping up every few minutes.

The four programs that continue to give me the notice are described as the following:

TROJ_SIREFEF.GF
TROJ_SIREFEF.FU
TROJ_SIREFEF.UT
TROJ_SIREFEF.UV

The threats continuously get removed (or are described as such), yet they continue to come back.

I ran a scan with the TDSS Killer (three threats found) and have a log prepared if requested. I am also doing a run with Malwarebytes at this moment. I'd prefer not to run Combofix unless prompted.

Any tips?

Edit: Forgot, my operating system is Windows 7 Home Premium, 64 bit.

Also forgot to add that at around the same time the thing started I had a prompt to update Adobe and initially went along but then cancelled after figuring out what was happening (that took about a second or two).

Edited by Nevermind3, 08 July 2012 - 04:26 PM.


BC AdBot (Login to Remove)

 


#2 Nevermind3

Nevermind3
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:45 PM

Posted 08 July 2012 - 04:10 PM

Well, since I see other people are posting their logs, I'll just post it here:

16:01:34.0799 1464 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
16:01:35.0091 1464 ============================================================
16:01:35.0091 1464 Current date / time: 2012/07/08 16:01:35.0091
16:01:35.0091 1464 SystemInfo:
16:01:35.0091 1464
16:01:35.0092 1464 OS Version: 6.1.7601 ServicePack: 1.0
16:01:35.0092 1464 Product type: Workstation
16:01:35.0092 1464 ComputerName: JORDAN-PC
16:01:35.0092 1464 UserName: Jordan
16:01:35.0092 1464 Windows directory: C:\windows
16:01:35.0092 1464 System windows directory: C:\windows
16:01:35.0092 1464 Running under WOW64
16:01:35.0092 1464 Processor architecture: Intel x64
16:01:35.0092 1464 Number of processors: 4
16:01:35.0092 1464 Page size: 0x1000
16:01:35.0092 1464 Boot type: Normal boot
16:01:35.0092 1464 ============================================================
16:01:36.0173 1464 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:01:36.0187 1464 ============================================================
16:01:36.0188 1464 \Device\Harddisk0\DR0:
16:01:36.0188 1464 MBR partitions:
16:01:36.0188 1464 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:01:36.0188 1464 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3B800000
16:01:36.0232 1464 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3B833000, BlocksNum 0xC6EF800
16:01:36.0232 1464 ============================================================
16:01:36.0270 1464 C: <-> \Device\Harddisk0\DR0\Partition1
16:01:36.0408 1464 D: <-> \Device\Harddisk0\DR0\Partition2
16:01:36.0409 1464 ============================================================
16:01:36.0409 1464 Initialize success
16:01:36.0409 1464 ============================================================
16:02:08.0715 6996 ============================================================
16:02:08.0715 6996 Scan started
16:02:08.0715 6996 Mode: Manual; SigCheck; TDLFS;
16:02:08.0715 6996 ============================================================
16:02:13.0153 6996 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
16:02:13.0407 6996 1394ohci - ok
16:02:13.0988 6996 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
16:02:14.0047 6996 ACPI - ok
16:02:14.0121 6996 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
16:02:14.0380 6996 AcpiPmi - ok
16:02:15.0740 6996 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:02:15.0808 6996 AdobeFlashPlayerUpdateSvc - ok
16:02:16.0115 6996 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
16:02:16.0312 6996 adp94xx - ok
16:02:16.0976 6996 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
16:02:17.0097 6996 adpahci - ok
16:02:17.0224 6996 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
16:02:17.0277 6996 adpu320 - ok
16:02:17.0389 6996 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
16:02:18.0201 6996 AeLookupSvc - ok
16:02:18.0590 6996 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
16:02:18.0692 6996 AFD - ok
16:02:19.0088 6996 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
16:02:19.0114 6996 agp440 - ok
16:02:19.0540 6996 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
16:02:19.0606 6996 ALG - ok
16:02:19.0726 6996 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
16:02:19.0753 6996 aliide - ok
16:02:19.0776 6996 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
16:02:19.0802 6996 amdide - ok
16:02:19.0858 6996 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
16:02:20.0063 6996 AmdK8 - ok
16:02:20.0258 6996 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\drivers\amdppm.sys
16:02:20.0354 6996 AmdPPM - ok
16:02:20.0487 6996 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
16:02:20.0513 6996 amdsata - ok
16:02:20.0681 6996 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
16:02:20.0707 6996 amdsbs - ok
16:02:20.0838 6996 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
16:02:20.0865 6996 amdxata - ok
16:02:21.0489 6996 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
16:02:21.0534 6996 Amsp - ok
16:02:21.0726 6996 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
16:02:21.0803 6996 AppID - ok
16:02:21.0990 6996 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
16:02:22.0092 6996 AppIDSvc - ok
16:02:22.0385 6996 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
16:02:22.0486 6996 Appinfo - ok
16:02:22.0928 6996 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:02:22.0951 6996 Apple Mobile Device - ok
16:02:23.0145 6996 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
16:02:23.0186 6996 arc - ok
16:02:23.0258 6996 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
16:02:23.0302 6996 arcsas - ok
16:02:23.0398 6996 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
16:02:23.0495 6996 AsyncMac - ok
16:02:23.0631 6996 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
16:02:23.0664 6996 atapi - ok
16:02:24.0055 6996 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
16:02:24.0459 6996 AudioEndpointBuilder - ok
16:02:24.0467 6996 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
16:02:24.0525 6996 AudioSrv - ok
16:02:24.0616 6996 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
16:02:24.0656 6996 AxInstSV - ok
16:02:25.0039 6996 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
16:02:25.0321 6996 b06bdrv - ok
16:02:25.0442 6996 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
16:02:25.0538 6996 b57nd60a - ok
16:02:25.0965 6996 BBSvc (93ee7d9c35ae7e9ffda148d7805f1421) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
16:02:25.0986 6996 BBSvc - ok
16:02:26.0012 6996 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
16:02:26.0085 6996 BDESVC - ok
16:02:26.0141 6996 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
16:02:26.0233 6996 Beep - ok
16:02:26.0538 6996 BFE (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
16:02:26.0795 6996 BFE - ok
16:02:27.0326 6996 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
16:02:27.0576 6996 BITS - ok
16:02:27.0958 6996 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
16:02:28.0066 6996 blbdrive - ok
16:02:28.0404 6996 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
16:02:28.0444 6996 Bonjour Service - ok
16:02:28.0544 6996 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
16:02:28.0582 6996 bowser - ok
16:02:28.0775 6996 bpenum (0aa04e09c6b7cd806a64489c3078e6e1) C:\windows\system32\DRIVERS\bpenum.sys
16:02:28.0863 6996 bpenum - ok
16:02:29.0010 6996 bpmp (960f860f4c3c469bae94b3e867116ae0) C:\windows\system32\DRIVERS\bpmp.sys
16:02:29.0072 6996 bpmp - ok
16:02:29.0271 6996 bpusb (7959ec01d55b9d838c27d5153cf55858) C:\windows\system32\Drivers\bpusb.sys
16:02:29.0315 6996 bpusb - ok
16:02:29.0478 6996 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
16:02:29.0552 6996 BrFiltLo - ok
16:02:29.0667 6996 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
16:02:29.0715 6996 BrFiltUp - ok
16:02:29.0927 6996 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
16:02:30.0016 6996 Browser - ok
16:02:30.0173 6996 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
16:02:30.0268 6996 Brserid - ok
16:02:30.0354 6996 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
16:02:30.0410 6996 BrSerWdm - ok
16:02:30.0546 6996 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
16:02:30.0587 6996 BrUsbMdm - ok
16:02:30.0642 6996 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
16:02:30.0666 6996 BrUsbSer - ok
16:02:30.0748 6996 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
16:02:30.0777 6996 BTHMODEM - ok
16:02:30.0891 6996 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
16:02:30.0961 6996 bthserv - ok
16:02:31.0068 6996 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
16:02:31.0160 6996 cdfs - ok
16:02:31.0294 6996 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
16:02:31.0323 6996 cdrom - ok
16:02:31.0381 6996 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
16:02:31.0455 6996 CertPropSvc - ok
16:02:31.0547 6996 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
16:02:31.0612 6996 circlass - ok
16:02:31.0761 6996 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
16:02:31.0799 6996 CLFS - ok
16:02:32.0139 6996 CLKMSVC10_38F51D56 (fe1c81a049e5c5d67c4ab7c31c899f6f) C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
16:02:32.0154 6996 CLKMSVC10_38F51D56 - ok
16:02:32.0547 6996 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:02:32.0733 6996 clr_optimization_v2.0.50727_32 - ok
16:02:33.0597 6996 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:02:33.0680 6996 clr_optimization_v2.0.50727_64 - ok
16:02:34.0384 6996 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:02:34.0566 6996 clr_optimization_v4.0.30319_32 - ok
16:02:35.0354 6996 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:02:35.0559 6996 clr_optimization_v4.0.30319_64 - ok
16:02:35.0788 6996 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\windows\system32\DRIVERS\clwvd.sys
16:02:35.0808 6996 clwvd - ok
16:02:35.0924 6996 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
16:02:35.0985 6996 CmBatt - ok
16:02:36.0099 6996 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
16:02:36.0135 6996 cmdide - ok
16:02:36.0301 6996 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
16:02:36.0412 6996 CNG - ok
16:02:36.0533 6996 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
16:02:36.0554 6996 Compbatt - ok
16:02:36.0746 6996 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
16:02:36.0809 6996 CompositeBus - ok
16:02:36.0818 6996 COMSysApp - ok
16:02:36.0851 6996 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
16:02:36.0871 6996 crcdisk - ok
16:02:37.0567 6996 CryptSvc (4f5414602e2544a4554d95517948b705) C:\windows\system32\cryptsvc.dll
16:02:37.0689 6996 CryptSvc - ok
16:02:39.0857 6996 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:02:39.0935 6996 cvhsvc - ok
16:02:40.0733 6996 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
16:02:40.0859 6996 DcomLaunch - ok
16:02:41.0523 6996 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
16:02:41.0652 6996 defragsvc - ok
16:02:42.0282 6996 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
16:02:42.0382 6996 DfsC - ok
16:02:42.0987 6996 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
16:02:43.0096 6996 Dhcp - ok
16:02:43.0314 6996 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
16:02:43.0435 6996 discache - ok
16:02:43.0623 6996 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
16:02:43.0656 6996 Disk - ok
16:02:43.0978 6996 DMAgent (948e8b99bd47a53dcffbf07ec8a2cf58) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
16:02:44.0038 6996 DMAgent ( UnsignedFile.Multi.Generic ) - warning
16:02:44.0038 6996 DMAgent - detected UnsignedFile.Multi.Generic (1)
16:02:44.0408 6996 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
16:02:44.0487 6996 Dnscache - ok
16:02:44.0928 6996 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
16:02:45.0001 6996 dot3svc - ok
16:02:45.0156 6996 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
16:02:45.0218 6996 DPS - ok
16:02:45.0334 6996 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
16:02:45.0470 6996 drmkaud - ok
16:02:45.0697 6996 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
16:02:45.0796 6996 DXGKrnl - ok
16:02:46.0056 6996 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
16:02:46.0131 6996 EapHost - ok
16:02:47.0583 6996 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
16:02:48.0580 6996 ebdrv - ok
16:02:49.0709 6996 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
16:02:49.0795 6996 EFS - ok
16:02:50.0018 6996 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
16:02:50.0180 6996 ehRecvr - ok
16:02:50.0316 6996 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
16:02:50.0384 6996 ehSched - ok
16:02:51.0735 6996 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
16:02:52.0230 6996 elxstor - ok
16:02:52.0302 6996 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
16:02:52.0352 6996 ErrDev - ok
16:02:53.0563 6996 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
16:02:53.0842 6996 EventSystem - ok
16:02:56.0085 6996 EvtEng (7ee9f35bc1dd0ce1a4976032f9ac5162) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:02:56.0200 6996 EvtEng - ok
16:02:56.0348 6996 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
16:02:56.0424 6996 exfat - ok
16:02:56.0519 6996 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
16:02:56.0647 6996 fastfat - ok
16:02:57.0086 6996 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
16:02:57.0189 6996 Fax - ok
16:02:57.0368 6996 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
16:02:57.0426 6996 fdc - ok
16:02:57.0548 6996 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
16:02:57.0644 6996 fdPHost - ok
16:02:57.0685 6996 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
16:02:57.0758 6996 FDResPub - ok
16:02:57.0820 6996 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
16:02:57.0843 6996 FileInfo - ok
16:02:58.0060 6996 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
16:02:58.0180 6996 Filetrace - ok
16:02:58.0604 6996 FlipShare Service (1c8401072e39784cda54e1ba8d8ee845) C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
16:02:58.0708 6996 FlipShare Service - ok
16:02:58.0770 6996 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
16:02:58.0797 6996 flpydisk - ok
16:02:58.0954 6996 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
16:02:58.0987 6996 FltMgr - ok
16:02:59.0179 6996 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
16:02:59.0488 6996 FontCache - ok
16:02:59.0680 6996 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:02:59.0692 6996 FontCache3.0.0.0 - ok
16:02:59.0864 6996 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
16:02:59.0889 6996 FsDepends - ok
16:03:00.0063 6996 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
16:03:00.0085 6996 Fs_Rec - ok
16:03:00.0287 6996 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
16:03:00.0328 6996 fvevol - ok
16:03:00.0772 6996 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
16:03:00.0828 6996 gagp30kx - ok
16:03:02.0685 6996 GameConsoleService (521a469caf61f00e1de081cc2099c1d6) C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
16:03:02.0980 6996 GameConsoleService - ok
16:03:03.0438 6996 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
16:03:03.0483 6996 GEARAspiWDM - ok
16:03:08.0564 6996 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
16:03:09.0594 6996 gpsvc - ok
16:03:09.0746 6996 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
16:03:09.0911 6996 hcw85cir - ok
16:03:13.0495 6996 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
16:03:14.0078 6996 HdAudAddService - ok
16:03:15.0109 6996 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
16:03:15.0184 6996 HDAudBus - ok
16:03:15.0417 6996 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
16:03:15.0500 6996 HidBatt - ok
16:03:16.0351 6996 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
16:03:16.0504 6996 HidBth - ok
16:03:16.0760 6996 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
16:03:16.0851 6996 HidIr - ok
16:03:17.0216 6996 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
16:03:17.0353 6996 hidserv - ok
16:03:17.0631 6996 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
16:03:17.0674 6996 HidUsb - ok
16:03:18.0721 6996 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
16:03:18.0908 6996 hkmsvc - ok
16:03:20.0879 6996 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
16:03:21.0224 6996 HomeGroupListener - ok
16:03:22.0497 6996 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
16:03:22.0828 6996 HomeGroupProvider - ok
16:03:23.0667 6996 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
16:03:23.0781 6996 HpSAMD - ok
16:03:29.0844 6996 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
16:03:30.0683 6996 HTTP - ok
16:03:30.0856 6996 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
16:03:30.0954 6996 hwpolicy - ok
16:03:31.0506 6996 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
16:03:31.0583 6996 i8042prt - ok
16:03:35.0496 6996 iaStor (53cc5bf8b5a219119953c7abb19a7705) C:\windows\system32\DRIVERS\iaStor.sys
16:03:35.0530 6996 iaStor - ok
16:03:37.0358 6996 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
16:03:37.0677 6996 iaStorV - ok
16:03:41.0012 6996 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:03:41.0177 6996 idsvc - ok
16:04:10.0212 6996 igfx (8cb8667f5a3b5515f2585f3254f3aaf7) C:\windows\system32\DRIVERS\igdkmd64.sys
16:04:11.0011 6996 igfx - ok
16:04:12.0141 6996 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
16:04:12.0172 6996 iirsp - ok
16:04:12.0368 6996 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
16:04:12.0439 6996 IKEEXT - ok
16:04:13.0534 6996 IntcAzAudAddService (a0c2c3d4c03c4fb896cfc53873784178) C:\windows\system32\drivers\RTKVHD64.sys
16:04:15.0805 6996 IntcAzAudAddService - ok
16:04:16.0380 6996 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
16:04:16.0449 6996 IntcDAud - ok
16:04:16.0558 6996 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
16:04:16.0618 6996 intelide - ok
16:04:16.0818 6996 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
16:04:16.0903 6996 intelppm - ok
16:04:17.0652 6996 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
16:04:17.0787 6996 IPBusEnum - ok
16:04:17.0886 6996 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
16:04:18.0141 6996 IpFilterDriver - ok
16:04:18.0177 6996 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
16:04:18.0225 6996 IPMIDRV - ok
16:04:18.0590 6996 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
16:04:18.0711 6996 IPNAT - ok
16:04:19.0209 6996 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
16:04:19.0268 6996 iPod Service - ok
16:04:19.0336 6996 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
16:04:19.0414 6996 IRENUM - ok
16:04:19.0472 6996 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
16:04:19.0500 6996 isapnp - ok
16:04:19.0530 6996 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
16:04:19.0566 6996 iScsiPrt - ok
16:04:19.0683 6996 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
16:04:19.0714 6996 kbdclass - ok
16:04:19.0779 6996 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
16:04:19.0812 6996 kbdhid - ok
16:04:19.0884 6996 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:04:19.0979 6996 KeyIso - ok
16:04:20.0061 6996 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
16:04:20.0095 6996 KSecDD - ok
16:04:20.0372 6996 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
16:04:20.0413 6996 KSecPkg - ok
16:04:20.0585 6996 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
16:04:20.0747 6996 ksthunk - ok
16:04:21.0957 6996 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
16:04:22.0065 6996 KtmRm - ok
16:04:22.0196 6996 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
16:04:22.0308 6996 LanmanServer - ok
16:04:22.0795 6996 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
16:04:22.0971 6996 LanmanWorkstation - ok
16:04:23.0170 6996 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
16:04:23.0260 6996 lltdio - ok
16:04:23.0718 6996 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
16:04:23.0869 6996 lltdsvc - ok
16:04:23.0895 6996 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
16:04:24.0062 6996 lmhosts - ok
16:04:24.0488 6996 LMS (926eba26a8b49d1597751ced06b50862) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:04:24.0540 6996 LMS - ok
16:04:24.0591 6996 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
16:04:24.0626 6996 LSI_FC - ok
16:04:24.0732 6996 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
16:04:24.0772 6996 LSI_SAS - ok
16:04:24.0807 6996 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
16:04:24.0837 6996 LSI_SAS2 - ok
16:04:24.0877 6996 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
16:04:24.0913 6996 LSI_SCSI - ok
16:04:24.0966 6996 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
16:04:25.0090 6996 luafv - ok
16:04:25.0317 6996 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
16:04:25.0358 6996 Mcx2Svc - ok
16:04:25.0448 6996 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
16:04:25.0481 6996 megasas - ok
16:04:25.0668 6996 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
16:04:25.0711 6996 MegaSR - ok
16:04:25.0824 6996 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\windows\system32\DRIVERS\HECIx64.sys
16:04:25.0870 6996 MEIx64 - ok
16:04:26.0157 6996 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
16:04:26.0326 6996 MMCSS - ok
16:04:26.0481 6996 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
16:04:26.0615 6996 Modem - ok
16:04:26.0718 6996 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
16:04:26.0782 6996 monitor - ok
16:04:26.0923 6996 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
16:04:26.0971 6996 mouclass - ok
16:04:27.0141 6996 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
16:04:27.0260 6996 mouhid - ok
16:04:27.0336 6996 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
16:04:27.0366 6996 mountmgr - ok
16:04:27.0637 6996 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:04:27.0659 6996 MozillaMaintenance - ok
16:04:27.0733 6996 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
16:04:27.0772 6996 mpio - ok
16:04:27.0824 6996 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
16:04:27.0893 6996 mpsdrv - ok
16:04:27.0918 6996 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
16:04:28.0056 6996 MRxDAV - ok
16:04:28.0222 6996 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
16:04:28.0354 6996 mrxsmb - ok
16:04:28.0477 6996 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
16:04:28.0601 6996 mrxsmb10 - ok
16:04:28.0926 6996 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
16:04:28.0997 6996 mrxsmb20 - ok
16:04:29.0077 6996 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
16:04:29.0112 6996 msahci - ok
16:04:29.0229 6996 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
16:04:29.0263 6996 msdsm - ok
16:04:29.0395 6996 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
16:04:29.0479 6996 MSDTC - ok
16:04:29.0609 6996 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
16:04:29.0743 6996 Msfs - ok
16:04:29.0958 6996 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
16:04:30.0086 6996 mshidkmdf - ok
16:04:30.0168 6996 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
16:04:30.0205 6996 msisadrv - ok
16:04:30.0352 6996 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
16:04:30.0420 6996 MSiSCSI - ok
16:04:30.0424 6996 msiserver - ok
16:04:30.0496 6996 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
16:04:30.0566 6996 MSKSSRV - ok
16:04:30.0589 6996 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
16:04:30.0683 6996 MSPCLOCK - ok
16:04:30.0719 6996 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
16:04:30.0844 6996 MSPQM - ok
16:04:30.0982 6996 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
16:04:31.0025 6996 MsRPC - ok
16:04:31.0284 6996 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
16:04:31.0384 6996 mssmbios - ok
16:04:31.0450 6996 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
16:04:31.0541 6996 MSTEE - ok
16:04:31.0571 6996 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
16:04:31.0641 6996 MTConfig - ok
16:04:31.0690 6996 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
16:04:31.0739 6996 Mup - ok
16:04:32.0039 6996 MyWiFiDHCPDNS (0cf5580f27918ffd2e165ecafa734103) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:04:32.0074 6996 MyWiFiDHCPDNS - ok
16:04:32.0246 6996 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
16:04:32.0351 6996 napagent - ok
16:04:32.0599 6996 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
16:04:32.0701 6996 NativeWifiP - ok
16:04:32.0861 6996 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\windows\system32\drivers\ndis.sys
16:04:32.0929 6996 NDIS - ok
16:04:32.0968 6996 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
16:04:33.0056 6996 NdisCap - ok
16:04:33.0095 6996 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
16:04:33.0167 6996 NdisTapi - ok
16:04:33.0202 6996 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
16:04:33.0318 6996 Ndisuio - ok
16:04:33.0511 6996 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
16:04:33.0681 6996 NdisWan - ok
16:04:33.0768 6996 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
16:04:33.0851 6996 NDProxy - ok
16:04:33.0914 6996 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
16:04:33.0996 6996 NetBIOS - ok
16:04:34.0596 6996 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
16:04:34.0702 6996 NetBT - ok
16:04:34.0801 6996 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:04:34.0821 6996 Netlogon - ok
16:04:34.0872 6996 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
16:04:35.0193 6996 Netman - ok
16:04:36.0821 6996 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
16:04:36.0960 6996 netprofm - ok
16:04:37.0436 6996 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:04:37.0485 6996 NetTcpPortSharing - ok
16:04:39.0571 6996 NETwNs64 (b9c587bdaa61a689883439d5ae6fe7f3) C:\windows\system32\DRIVERS\NETwNs64.sys
16:04:40.0415 6996 NETwNs64 - ok
16:04:40.0614 6996 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
16:04:40.0644 6996 nfrd960 - ok
16:04:40.0945 6996 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
16:04:41.0335 6996 NlaSvc - ok
16:04:41.0540 6996 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
16:04:41.0597 6996 Npfs - ok
16:04:41.0920 6996 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
16:04:42.0253 6996 nsi - ok
16:04:42.0354 6996 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
16:04:42.0424 6996 nsiproxy - ok
16:04:42.0510 6996 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
16:04:42.0643 6996 Ntfs - ok
16:04:43.0394 6996 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
16:04:43.0559 6996 Null - ok
16:04:43.0604 6996 nusb3hub (a7127e86f9ffe2a53e271b56b2c4cedf) C:\windows\system32\DRIVERS\nusb3hub.sys
16:04:43.0645 6996 nusb3hub - ok
16:04:43.0683 6996 nusb3xhc (49bbec6f48d5f9284b03abf3a959b19b) C:\windows\system32\DRIVERS\nusb3xhc.sys
16:04:43.0835 6996 nusb3xhc - ok
16:04:46.0165 6996 nvlddmkm (fbe6ac1c3591cb67543fad15abd26bcb) C:\windows\system32\DRIVERS\nvlddmkm.sys
16:04:47.0618 6996 nvlddmkm - ok
16:04:48.0661 6996 nvpciflt (680c5baf7d0190b1485068fc4ba75f1c) C:\windows\system32\DRIVERS\nvpciflt.sys
16:04:48.0697 6996 nvpciflt - ok
16:04:48.0764 6996 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
16:04:48.0819 6996 nvraid - ok
16:04:48.0847 6996 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
16:04:48.0906 6996 nvstor - ok
16:04:49.0049 6996 NVSvc (147b0d17255fd796f990cc6f745605c5) C:\windows\system32\nvvsvc.exe
16:04:49.0188 6996 NVSvc - ok
16:04:49.0559 6996 nvUpdatusService (812bf9531c827e1d8029843cddb2b5d6) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
16:04:49.0664 6996 nvUpdatusService - ok
16:04:50.0228 6996 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
16:04:50.0278 6996 nv_agp - ok
16:04:50.0310 6996 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
16:04:50.0374 6996 ohci1394 - ok
16:04:50.0486 6996 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:04:50.0511 6996 ose - ok
16:04:51.0012 6996 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:04:51.0251 6996 osppsvc - ok
16:04:51.0769 6996 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
16:04:51.0849 6996 p2pimsvc - ok
16:04:52.0180 6996 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
16:04:52.0242 6996 p2psvc - ok
16:04:52.0378 6996 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
16:04:52.0460 6996 Parport - ok
16:04:52.0509 6996 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
16:04:52.0553 6996 partmgr - ok
16:04:52.0593 6996 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
16:04:52.0668 6996 PcaSvc - ok
16:04:52.0706 6996 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
16:04:52.0757 6996 pci - ok
16:04:52.0783 6996 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
16:04:52.0816 6996 pciide - ok
16:04:52.0835 6996 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
16:04:52.0892 6996 pcmcia - ok
16:04:52.0915 6996 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
16:04:52.0957 6996 pcw - ok
16:04:52.0995 6996 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
16:04:53.0120 6996 PEAUTH - ok
16:04:53.0236 6996 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
16:04:53.0311 6996 PerfHost - ok
16:04:53.0383 6996 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
16:04:53.0527 6996 pla - ok
16:04:53.0653 6996 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
16:04:53.0847 6996 PlugPlay - ok
16:04:53.0907 6996 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
16:04:53.0982 6996 PNRPAutoReg - ok
16:04:54.0068 6996 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
16:04:54.0119 6996 PNRPsvc - ok
16:04:54.0188 6996 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
16:04:54.0373 6996 PolicyAgent - ok
16:04:54.0426 6996 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
16:04:54.0585 6996 Power - ok
16:04:54.0677 6996 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
16:04:54.0798 6996 PptpMiniport - ok
16:04:54.0845 6996 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
16:04:54.0898 6996 Processor - ok
16:04:54.0966 6996 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\windows\system32\profsvc.dll
16:04:55.0069 6996 ProfSvc - ok
16:04:55.0288 6996 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:04:55.0325 6996 ProtectedStorage - ok
16:04:55.0556 6996 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
16:04:55.0660 6996 Psched - ok
16:04:57.0461 6996 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
16:04:58.0069 6996 ql2300 - ok
16:04:58.0238 6996 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
16:04:58.0280 6996 ql40xx - ok
16:04:58.0375 6996 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
16:04:58.0433 6996 QWAVE - ok
16:04:58.0481 6996 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
16:04:58.0553 6996 QWAVEdrv - ok
16:04:58.0559 6996 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
16:04:58.0669 6996 RasAcd - ok
16:04:58.0747 6996 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
16:04:58.0836 6996 RasAgileVpn - ok
16:04:58.0887 6996 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
16:04:59.0036 6996 RasAuto - ok
16:04:59.0126 6996 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
16:04:59.0291 6996 Rasl2tp - ok
16:04:59.0429 6996 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
16:04:59.0614 6996 RasMan - ok
16:04:59.0657 6996 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
16:04:59.0789 6996 RasPppoe - ok
16:04:59.0835 6996 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
16:04:59.0959 6996 RasSstp - ok
16:04:59.0984 6996 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
16:05:00.0102 6996 rdbss - ok
16:05:00.0150 6996 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
16:05:00.0208 6996 rdpbus - ok
16:05:00.0228 6996 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
16:05:00.0327 6996 RDPCDD - ok
16:05:00.0355 6996 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
16:05:00.0456 6996 RDPENCDD - ok
16:05:00.0474 6996 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
16:05:00.0576 6996 RDPREFMP - ok
16:05:00.0628 6996 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\windows\system32\drivers\RDPWD.sys
16:05:00.0709 6996 RDPWD - ok
16:05:00.0786 6996 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
16:05:00.0841 6996 rdyboost - ok
16:05:01.0000 6996 RegSrvc (aa9fd849c028ccb441a78061b57db734) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:05:01.0054 6996 RegSrvc - ok
16:05:01.0080 6996 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
16:05:01.0254 6996 RemoteAccess - ok
16:05:01.0319 6996 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
16:05:01.0442 6996 RemoteRegistry - ok
16:05:01.0576 6996 RichVideo (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
16:05:01.0621 6996 RichVideo ( UnsignedFile.Multi.Generic ) - warning
16:05:01.0621 6996 RichVideo - detected UnsignedFile.Multi.Generic (1)
16:05:01.0671 6996 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
16:05:01.0775 6996 RpcEptMapper - ok
16:05:01.0806 6996 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
16:05:01.0865 6996 RpcLocator - ok
16:05:02.0027 6996 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
16:05:02.0138 6996 RpcSs - ok
16:05:02.0198 6996 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
16:05:02.0312 6996 rspndr - ok
16:05:02.0377 6996 RTL8167 (ea5532868ba76923d75bcb2a1448d810) C:\windows\system32\DRIVERS\Rt64win7.sys
16:05:02.0427 6996 RTL8167 - ok
16:05:02.0618 6996 rtport (4ca0dba9e224473d664c25e411f5a3bd) C:\windows\SysWOW64\drivers\rtport.sys
16:05:02.0657 6996 rtport - ok
16:05:02.0688 6996 SABI (62db6cc4b0818f1b5f3441241b098f12) C:\windows\system32\Drivers\SABI.sys
16:05:02.0737 6996 SABI - ok
16:05:02.0921 6996 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:05:02.0948 6996 SamSs - ok
16:05:03.0499 6996 Samsung UPD Service (d641337b75b9a9d5ae10687aa1097755) C:\windows\System32\SUPDSvc.exe
16:05:03.0528 6996 Samsung UPD Service - ok
16:05:03.0750 6996 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
16:05:03.0785 6996 sbp2port - ok
16:05:04.0348 6996 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
16:05:04.0454 6996 SCardSvr - ok
16:05:04.0572 6996 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
16:05:04.0639 6996 scfilter - ok
16:05:05.0105 6996 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
16:05:05.0350 6996 Schedule - ok
16:05:05.0533 6996 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
16:05:05.0615 6996 SCPolicySvc - ok
16:05:05.0750 6996 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
16:05:05.0834 6996 SDRSVC - ok
16:05:06.0042 6996 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
16:05:06.0127 6996 SeaPort - ok
16:05:06.0207 6996 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
16:05:06.0362 6996 secdrv - ok
16:05:06.0552 6996 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
16:05:06.0646 6996 seclogon - ok
16:05:06.0732 6996 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
16:05:06.0833 6996 SENS - ok
16:05:07.0087 6996 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
16:05:07.0174 6996 SensrSvc - ok
16:05:07.0344 6996 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
16:05:07.0386 6996 Serenum - ok
16:05:07.0492 6996 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
16:05:07.0557 6996 Serial - ok
16:05:07.0707 6996 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
16:05:07.0771 6996 sermouse - ok
16:05:07.0834 6996 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
16:05:07.0968 6996 SessionEnv - ok
16:05:07.0991 6996 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
16:05:08.0071 6996 sffdisk - ok
16:05:08.0162 6996 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
16:05:08.0224 6996 sffp_mmc - ok
16:05:08.0299 6996 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
16:05:08.0381 6996 sffp_sd - ok
16:05:08.0440 6996 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
16:05:08.0512 6996 sfloppy - ok
16:05:11.0190 6996 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\windows\system32\DRIVERS\Sftfslh.sys
16:05:11.0930 6996 Sftfs - ok
16:05:15.0029 6996 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:05:15.0560 6996 sftlist - ok
16:05:15.0933 6996 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\windows\system32\DRIVERS\Sftplaylh.sys
16:05:15.0995 6996 Sftplay - ok
16:05:16.0193 6996 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\windows\system32\DRIVERS\Sftredirlh.sys
16:05:16.0231 6996 Sftredir - ok
16:05:16.0371 6996 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\windows\system32\DRIVERS\Sftvollh.sys
16:05:16.0401 6996 Sftvol - ok
16:05:16.0745 6996 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:05:16.0832 6996 sftvsa - ok
16:05:17.0264 6996 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
16:05:17.0473 6996 ShellHWDetection - ok
16:05:17.0606 6996 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
16:05:17.0639 6996 SiSRaid2 - ok
16:05:17.0688 6996 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
16:05:17.0712 6996 SiSRaid4 - ok
16:05:18.0224 6996 Skype C2C Service (2a99850c2a6edd6c6602e822c716edaf) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:05:19.0749 6996 Skype C2C Service - ok
16:05:20.0146 6996 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
16:05:20.0160 6996 SkypeUpdate - ok
16:05:20.0547 6996 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
16:05:20.0606 6996 Smb - ok
16:05:20.0730 6996 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
16:05:20.0811 6996 SNMPTRAP - ok
16:05:20.0873 6996 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
16:05:20.0901 6996 spldr - ok
16:05:21.0019 6996 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
16:05:21.0098 6996 Spooler - ok
16:05:21.0421 6996 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
16:05:21.0563 6996 sppsvc - ok
16:05:21.0971 6996 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
16:05:22.0027 6996 sppuinotify - ok
16:05:22.0189 6996 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
16:05:22.0330 6996 srv - ok
16:05:22.0433 6996 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
16:05:22.0685 6996 srv2 - ok
16:05:22.0817 6996 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
16:05:22.0877 6996 srvnet - ok
16:05:22.0908 6996 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
16:05:22.0983 6996 SSDPSRV - ok
16:05:23.0429 6996 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
16:05:23.0580 6996 SstpSvc - ok
16:05:23.0748 6996 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
16:05:23.0861 6996 stexstor - ok
16:05:23.0937 6996 StillCam (decacb6921ded1a38642642685d77dac) C:\windows\system32\DRIVERS\serscan.sys
16:05:24.0012 6996 StillCam - ok
16:05:24.0597 6996 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
16:05:24.0820 6996 stisvc - ok
16:05:24.0856 6996 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
16:05:24.0881 6996 swenum - ok
16:05:25.0009 6996 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
16:05:25.0149 6996 swprv - ok
16:05:25.0435 6996 SynTP (a066a93804f464ae1f49658899998470) C:\windows\system32\DRIVERS\SynTP.sys
16:05:25.0505 6996 SynTP - ok
16:05:26.0791 6996 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
16:05:26.0986 6996 SysMain - ok
16:05:27.0346 6996 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
16:05:27.0393 6996 TabletInputService - ok
16:05:27.0603 6996 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
16:05:27.0732 6996 TapiSrv - ok
16:05:27.0941 6996 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
16:05:28.0101 6996 TBS - ok
16:05:30.0234 6996 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
16:05:30.0423 6996 Tcpip - ok
16:05:31.0774 6996 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
16:05:31.0843 6996 TCPIP6 - ok
16:05:33.0252 6996 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
16:05:36.0074 6996 tcpipreg - ok
16:05:36.0667 6996 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
16:05:36.0975 6996 TDPIPE - ok
16:05:37.0148 6996 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
16:05:37.0271 6996 TDTCP - ok
16:05:37.0322 6996 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
16:05:37.0398 6996 tdx - ok
16:05:37.0721 6996 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
16:05:37.0755 6996 TermDD - ok
16:05:37.0938 6996 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
16:05:38.0637 6996 TermService - ok
16:05:38.0740 6996 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
16:05:38.0837 6996 Themes - ok
16:05:39.0323 6996 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
16:05:39.0385 6996 THREADORDER - ok
16:05:39.0718 6996 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\windows\system32\DRIVERS\tmactmon.sys
16:05:41.0380 6996 tmactmon - ok
16:05:43.0668 6996 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\windows\system32\DRIVERS\tmcomm.sys
16:05:44.0004 6996 tmcomm - ok
16:05:44.0431 6996 tmeevw (1161f882b3cfa8076870a09924e0adc2) C:\windows\system32\DRIVERS\tmeevw.sys
16:05:44.0455 6996 tmeevw - ok
16:05:44.0755 6996 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\windows\system32\DRIVERS\tmevtmgr.sys
16:05:44.0813 6996 tmevtmgr - ok
16:05:45.0150 6996 tmnciesc (f0ae672ee91e7f1ef24644621b57ca7f) C:\windows\system32\DRIVERS\tmnciesc.sys
16:05:45.0201 6996 tmnciesc - ok
16:05:45.0587 6996 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\windows\system32\DRIVERS\tmtdi.sys
16:05:45.0617 6996 tmtdi - ok
16:05:45.0817 6996 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
16:05:45.0895 6996 TrkWks - ok
16:05:46.0746 6996 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
16:05:46.0800 6996 TrustedInstaller - ok
16:05:46.0833 6996 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
16:05:46.0933 6996 tssecsrv - ok
16:05:47.0020 6996 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
16:05:47.0148 6996 TsUsbFlt - ok
16:05:47.0410 6996 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
16:05:47.0469 6996 TsUsbGD - ok
16:05:47.0541 6996 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
16:05:47.0623 6996 tunnel - ok
16:05:47.0718 6996 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
16:05:47.0807 6996 uagp35 - ok
16:05:47.0858 6996 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
16:05:47.0958 6996 udfs - ok
16:05:48.0410 6996 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
16:05:48.0458 6996 UI0Detect - ok
16:05:48.0715 6996 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
16:05:48.0744 6996 uliagpkx - ok
16:05:48.0776 6996 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
16:05:48.0895 6996 umbus - ok
16:05:48.0998 6996 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
16:05:49.0081 6996 UmPass - ok
16:05:50.0387 6996 UNS (fdf92ec84fecee834fb10a2a0a19bcda) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:05:50.0537 6996 UNS - ok
16:05:51.0253 6996 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
16:05:51.0412 6996 upnphost - ok
16:05:51.0805 6996 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\windows\system32\Drivers\usbaapl64.sys
16:05:51.0881 6996 USBAAPL64 - ok
16:05:52.0391 6996 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
16:05:52.0433 6996 usbccgp - ok
16:05:52.0792 6996 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
16:05:52.0845 6996 usbcir - ok
16:05:53.0086 6996 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
16:05:53.0131 6996 usbehci - ok
16:05:53.0521 6996 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
16:05:53.0567 6996 usbhub - ok
16:05:53.0700 6996 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
16:05:53.0752 6996 usbohci - ok
16:05:53.0870 6996 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\drivers\usbprint.sys
16:05:53.0951 6996 usbprint - ok
16:05:53.0981 6996 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
16:05:54.0060 6996 USBSTOR - ok
16:05:54.0190 6996 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
16:05:54.0237 6996 usbuhci - ok
16:05:54.0593 6996 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
16:05:54.0650 6996 usbvideo - ok
16:05:54.0727 6996 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
16:05:54.0844 6996 UxSms - ok
16:05:55.0015 6996 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:05:55.0061 6996 VaultSvc - ok
16:05:55.0300 6996 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
16:05:55.0344 6996 vdrvroot - ok
16:05:55.0685 6996 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
16:05:55.0798 6996 vds - ok
16:05:55.0962 6996 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
16:05:56.0010 6996 vga - ok
16:05:56.0159 6996 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
16:05:56.0256 6996 VgaSave - ok
16:05:56.0868 6996 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
16:05:56.0898 6996 vhdmp - ok
16:05:56.0914 6996 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
16:05:56.0936 6996 viaide - ok
16:05:56.0964 6996 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
16:05:56.0998 6996 volmgr - ok
16:05:57.0334 6996 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
16:05:57.0369 6996 volmgrx - ok
16:05:57.0684 6996 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
16:05:58.0030 6996 volsnap - ok
16:05:58.0072 6996 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
16:05:58.0102 6996 vsmraid - ok
16:05:58.0465 6996 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
16:05:58.0539 6996 VSS - ok
16:05:59.0492 6996 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
16:05:59.0603 6996 vwifibus - ok
16:05:59.0960 6996 VWiFiFlt (13a0decd1794de60a8427862c8669d27) C:\windows\system32\DRIVERS\vwififlt.sys
16:06:00.0049 6996 VWiFiFlt - ok
16:06:00.0306 6996 vwifimp (49003b357d101cdc474937437ecf5abc) C:\windows\system32\DRIVERS\vwifimp.sys
16:06:00.0352 6996 vwifimp - ok
16:06:00.0992 6996 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
16:06:01.0116 6996 W32Time - ok
16:06:01.0377 6996 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
16:06:01.0438 6996 WacomPen - ok
16:06:01.0942 6996 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
16:06:02.0029 6996 WANARP - ok
16:06:02.0062 6996 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
16:06:02.0110 6996 Wanarpv6 - ok
16:06:03.0149 6996 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
16:06:03.0194 6996 WatAdminSvc - ok
16:06:03.0853 6996 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
16:06:03.0990 6996 wbengine - ok
16:06:04.0222 6996 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
16:06:04.0269 6996 WbioSrvc - ok
16:06:04.0663 6996 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
16:06:04.0752 6996 wcncsvc - ok
16:06:04.0833 6996 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
16:06:04.0920 6996 WcsPlugInService - ok
16:06:05.0256 6996 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
16:06:05.0275 6996 Wd - ok
16:06:05.0317 6996 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
16:06:05.0371 6996 Wdf01000 - ok
16:06:05.0817 6996 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
16:06:06.0422 6996 WdiServiceHost - ok
16:06:06.0426 6996 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
16:06:06.0463 6996 WdiSystemHost - ok
16:06:06.0753 6996 wdkmd (94dc2bf6cbaaa95e369c3756d3115a76) C:\windows\system32\DRIVERS\WDKMD.sys
16:06:06.0786 6996 wdkmd - ok
16:06:07.0164 6996 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
16:06:07.0276 6996 WebClient - ok
16:06:07.0434 6996 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
16:06:07.0580 6996 Wecsvc - ok
16:06:07.0621 6996 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
16:06:07.0672 6996 wercplsupport - ok
16:06:08.0112 6996 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
16:06:08.0234 6996 WerSvc - ok
16:06:08.0739 6996 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
16:06:08.0815 6996 WfpLwf - ok
16:06:09.0374 6996 WiMAXAppSrv (81730f74eb47552f1ece857b2f491a31) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
16:06:09.0442 6996 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - warning
16:06:09.0442 6996 WiMAXAppSrv - detected UnsignedFile.Multi.Generic (1)
16:06:09.0510 6996 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
16:06:09.0533 6996 WIMMount - ok
16:06:09.0540 6996 WinHttpAutoProxySvc - ok
16:06:09.0603 6996 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
16:06:09.0666 6996 Winmgmt - ok
16:06:10.0261 6996 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
16:06:13.0502 6996 WinRM - ok
16:06:14.0145 6996 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
16:06:14.0263 6996 Wlansvc - ok
16:06:14.0577 6996 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:06:14.0589 6996 wlcrasvc - ok
16:06:23.0559 6996 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:06:23.0674 6996 wlidsvc - ok
16:06:25.0869 6996 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\DRIVERS\wmiacpi.sys
16:06:25.0938 6996 WmiAcpi - ok
16:06:26.0299 6996 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
16:06:26.0352 6996 wmiApSrv - ok
16:06:26.0598 6996 WMPNetworkSvc - ok
16:06:26.0694 6996 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
16:06:26.0758 6996 WPCSvc - ok
16:06:27.0081 6996 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
16:06:27.0405 6996 WPDBusEnum - ok
16:06:27.0469 6996 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
16:06:27.0554 6996 ws2ifsl - ok
16:06:28.0042 6996 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\system32\wscsvc.dll
16:06:28.0130 6996 wscsvc - ok
16:06:28.0134 6996 WSearch - ok
16:06:28.0861 6996 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\windows\system32\wuaueng.dll
16:06:28.0968 6996 wuauserv - ok
16:06:29.0086 6996 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
16:06:29.0154 6996 WudfPf - ok
16:06:29.0292 6996 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
16:06:29.0355 6996 WUDFRd - ok
16:06:29.0587 6996 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
16:06:29.0681 6996 wudfsvc - ok
16:06:29.0725 6996 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
16:06:29.0793 6996 WwanSvc - ok
16:06:29.0895 6996 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0
16:06:30.0521 6996 \Device\Harddisk0\DR0 - ok
16:06:30.0558 6996 Boot (0x1200) (3f290f70e06328cff83e5084e2c4ff03) \Device\Harddisk0\DR0\Partition0
16:06:30.0560 6996 \Device\Harddisk0\DR0\Partition0 - ok
16:06:30.0589 6996 Boot (0x1200) (bc0390f8ca437f7777720829aa7cf4d7) \Device\Harddisk0\DR0\Partition1
16:06:30.0618 6996 \Device\Harddisk0\DR0\Partition1 - ok
16:06:30.0649 6996 Boot (0x1200) (e97005ef8eacc8249868f66df0774371) \Device\Harddisk0\DR0\Partition2
16:06:30.0679 6996 \Device\Harddisk0\DR0\Partition2 - ok
16:06:30.0681 6996 ============================================================
16:06:30.0681 6996 Scan finished
16:06:30.0681 6996 ============================================================
16:06:30.0690 4328 Detected object count: 3
16:06:30.0690 4328 Actual detected object count: 3
16:09:10.0944 4328 DMAgent ( UnsignedFile.Multi.Generic ) - skipped by user
16:09:10.0944 4328 DMAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:09:10.0945 4328 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
16:09:10.0945 4328 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:09:10.0947 4328 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - skipped by user
16:09:10.0948 4328 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:09:46.0006 6984 ============================================================
16:09:46.0006 6984 Scan started
16:09:46.0006 6984 Mode: Manual; SigCheck; TDLFS;
16:09:46.0006 6984 ============================================================
16:09:47.0311 6984 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
16:09:47.0341 6984 1394ohci - ok
16:09:47.0971 6984 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
16:09:47.0998 6984 ACPI - ok
16:09:48.0120 6984 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
16:09:48.0158 6984 AcpiPmi - ok
16:09:49.0392 6984 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:09:49.0410 6984 AdobeFlashPlayerUpdateSvc - ok
16:09:49.0664 6984 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
16:09:49.0692 6984 adp94xx - ok
16:09:50.0211 6984 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
16:09:50.0251 6984 adpahci - ok
16:09:50.0611 6984 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
16:09:50.0626 6984 adpu320 - ok
16:09:50.0684 6984 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
16:09:50.0735 6984 AeLookupSvc - ok
16:09:51.0298 6984 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
16:09:51.0320 6984 AFD - ok
16:09:51.0411 6984 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
16:09:51.0433 6984 agp440 - ok
16:09:51.0562 6984 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
16:09:51.0587 6984 ALG - ok
16:09:51.0721 6984 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
16:09:51.0733 6984 aliide - ok
16:09:51.0774 6984 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
16:09:51.0787 6984 amdide - ok
16:09:52.0034 6984 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
16:09:52.0064 6984 AmdK8 - ok
16:09:52.0339 6984 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\drivers\amdppm.sys
16:09:52.0357 6984 AmdPPM - ok
16:09:53.0259 6984 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
16:09:53.0277 6984 amdsata - ok
16:09:53.0356 6984 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
16:09:53.0372 6984 amdsbs - ok
16:09:53.0478 6984 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
16:09:53.0496 6984 amdxata - ok
16:09:54.0357 6984 Amsp (1b7d1f0a0dfadbc797c16364792a7aa5) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
16:09:54.0382 6984 Amsp - ok
16:09:54.0506 6984 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
16:09:54.0566 6984 AppID - ok
16:09:54.0614 6984 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
16:09:54.0667 6984 AppIDSvc - ok
16:09:54.0749 6984 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
16:09:54.0812 6984 Appinfo - ok
16:09:55.0347 6984 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:09:55.0359 6984 Apple Mobile Device - ok
16:09:55.0491 6984 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
16:09:55.0506 6984 arc - ok
16:09:55.0519 6984 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
16:09:55.0535 6984 arcsas - ok
16:09:55.0661 6984 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
16:09:55.0701 6984 AsyncMac - ok
16:09:56.0084 6984 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
16:09:56.0097 6984 atapi - ok
16:09:56.0794 6984 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
16:09:56.0871 6984 AudioEndpointBuilder - ok
16:09:56.0880 6984 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
16:09:56.0947 6984 AudioSrv - ok
16:09:57.0099 6984 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
16:09:57.0140 6984 AxInstSV - ok
16:09:57.0686 6984 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
16:09:57.0773 6984 b06bdrv - ok
16:09:58.0504 6984 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
16:09:58.0541 6984 b57nd60a - ok
16:09:58.0959 6984 BBSvc (93ee7d9c35ae7e9ffda148d7805f1421) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
16:09:58.0975 6984 BBSvc - ok
16:09:59.0039 6984 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
16:09:59.0100 6984 BDESVC - ok
16:09:59.0172 6984 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
16:09:59.0246 6984 Beep - ok
16:09:59.0325 6984 BFE (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
16:09:59.0383 6984 BFE - ok
16:09:59.0479 6984 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
16:09:59.0534 6984 BITS - ok
16:09:59.0880 6984 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
16:09:59.0895 6984 blbdrive - ok
16:10:00.0101 6984 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
16:10:00.0120 6984 Bonjour Service - ok
16:10:00.0177 6984 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
16:10:00.0200 6984 bowser - ok
16:10:00.0426 6984 bpenum (0aa04e09c6b7cd806a64489c3078e6e1) C:\windows\system32\DRIVERS\bpenum.sys
16:10:00.0457 6984 bpenum - ok
16:10:00.0486 6984 bpmp (960f860f4c3c469bae94b3e867116ae0) C:\windows\system32\DRIVERS\bpmp.sys
16:10:00.0522 6984 bpmp - ok
16:10:00.0554 6984 bpusb (7959ec01d55b9d838c27d5153cf55858) C:\windows\system32\Drivers\bpusb.sys
16:10:00.0666 6984 bpusb - ok
16:10:00.0764 6984 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
16:10:00.0795 6984 BrFiltLo - ok
16:10:00.0833 6984 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
16:10:00.0860 6984 BrFiltUp - ok
16:10:01.0047 6984 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
16:10:01.0112 6984 Browser - ok
16:10:01.0146 6984 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
16:10:01.0173 6984 Brserid - ok
16:10:01.0197 6984 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
16:10:01.0222 6984 BrSerWdm - ok
16:10:01.0241 6984 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
16:10:01.0267 6984 BrUsbMdm - ok
16:10:01.0271 6984 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
16:10:01.0293 6984 BrUsbSer - ok
16:10:01.0324 6984 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
16:10:01.0392 6984 BTHMODEM - ok
16:10:01.0481 6984 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
16:10:01.0536 6984 bthserv - ok
16:10:01.0588 6984 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
16:10:01.0633 6984 cdfs - ok
16:10:01.0659 6984 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
16:10:01.0679 6984 cdrom - ok
16:10:01.0972 6984 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
16:10:02.0021 6984 CertPropSvc - ok
16:10:02.0213 6984 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
16:10:02.0271 6984 circlass - ok
16:10:02.0321 6984 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
16:10:02.0348 6984 CLFS - ok
16:10:02.0848 6984 CLKMSVC10_38F51D56 (fe1c81a049e5c5d67c4ab7c31c899f6f) C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
16:10:02.0870 6984 CLKMSVC10_38F51D56 - ok
16:10:03.0089 6984 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:10:03.0112 6984 clr_optimization_v2.0.50727_32 - ok
16:10:03.0335 6984 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:10:03.0351 6984 clr_optimization_v2.0.50727_64 - ok
16:10:04.0871 6984 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:10:04.0905 6984 clr_optimization_v4.0.30319_32 - ok
16:10:06.0166 6984 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:10:06.0200 6984 clr_optimization_v4.0.30319_64 - ok
16:10:07.0352 6984 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\windows\system32\DRIVERS\clwvd.sys
16:10:07.0369 6984 clwvd - ok
16:10:07.0455 6984 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
16:10:07.0476 6984 CmBatt - ok
16:10:07.0652 6984 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
16:10:07.0687 6984 cmdide - ok
16:10:08.0002 6984 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
16:10:08.0046 6984 CNG - ok
16:10:08.0082 6984 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
16:10:08.0097 6984 Compbatt - ok
16:10:08.0299 6984 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
16:10:08.0324 6984 CompositeBus - ok
16:10:08.0328 6984 COMSysApp - ok
16:10:08.0439 6984 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
16:10:08.0451 6984 crcdisk - ok
16:10:09.0003 6984 CryptSvc (4f5414602e2544a4554d95517948b705) C:\windows\system32\cryptsvc.dll
16:10:09.0104 6984 CryptSvc - ok
16:10:09.0673 6984 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:10:09.0724 6984 cvhsvc - ok
16:10:09.0893 6984 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
16:10:09.0963 6984 DcomLaunch - ok
16:10:10.0241 6984 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
16:10:10.0301 6984 defragsvc - ok
16:10:10.0716 6984 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
16:10:10.0760 6984 DfsC - ok
16:10:11.0394 6984 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
16:10:11.0448 6984 Dhcp - ok
16:10:11.0754 6984 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
16:10:11.0816 6984 discache - ok
16:10:12.0188 6984 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
16:10:12.0207 6984 Disk - ok
16:10:12.0753 6984 DMAgent (948e8b99bd47a53dcffbf07ec8a2cf58) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
16:10:12.0768 6984 DMAgent ( UnsignedFile.Multi.Generic ) - warning
16:10:12.0768 6984 DMAgent - detected UnsignedFile.Multi.Generic (1)
16:10:13.0022 6984 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
16:10:13.0077 6984 Dnscache - ok
16:10:13.0317 6984 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
16:10:13.0407 6984 dot3svc - ok
16:10:13.0957 6984 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
16:10:14.0086 6984 DPS - ok
16:10:14.0135 6984 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
16:10:14.0154 6984 drmkaud - ok
16:10:15.0180 6984 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
16:10:15.0259 6984 DXGKrnl - ok
16:10:15.0392 6984 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
16:10:15.0441 6984 EapHost - ok
16:10:16.0956 6984 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
16:10:17.0014 6984 ebdrv - ok
16:10:17.0448 6984 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
16:10:17.0465 6984 EFS - ok
16:10:17.0678 6984 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
16:10:17.0713 6984 ehRecvr - ok
16:10:18.0794 6984 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
16:10:18.0856 6984 ehSched - ok
16:10:19.0232 6984 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
16:10:19.0306 6984 elxstor - ok
16:10:19.0342 6984 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
16:10:19.0370 6984 ErrDev - ok
16:10:20.0366 6984 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
16:10:20.0471 6984 EventSystem - ok
16:10:21.0599 6984 EvtEng (7ee9f35bc1dd0ce1a4976032f9ac5162) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:10:21.0702 6984 EvtEng - ok
16:10:25.0116 6984 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
16:10:25.0201 6984 exfat - ok
16:10:25.0294 6984 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
16:10:25.0352 6984 fastfat - ok
16:10:26.0273 6984 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
16:10:26.0368 6984 Fax - ok
16:10:26.0582 6984 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
16:10:26.0613 6984 fdc - ok
16:10:26.0640 6984 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
16:10:26.0681 6984 fdPHost - ok
16:10:26.0843 6984 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
16:10:26.0909 6984 FDResPub - ok
16:10:27.0364 6984 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
16:10:27.0394 6984 FileInfo - ok
16:10:27.0605 6984 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
16:10:27.0721 6984 Filetrace - ok
16:10:28.0459 6984 FlipShare Service (1c8401072e39784cda54e1ba8d8ee845) C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
16:10:28.0488 6984 FlipShare Service - ok
16:10:28.0626 6984 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
16:10:28.0661 6984 flpydisk - ok
16:10:29.0278 6984 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
16:10:29.0330 6984 FltMgr - ok
16:10:30.0232 6984 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
16:10:30.0317 6984 FontCache - ok
16:10:30.0590 6984 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:10:30.0606 6984 FontCache3.0.0.0 - ok
16:10:30.0668 6984 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
16:10:30.0684 6984 FsDepends - ok
16:10:30.0721 6984 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
16:10:30.0735 6984 Fs_Rec - ok
16:10:30.0896 6984 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
16:10:30.0963 6984 fvevol - ok
16:10:30.0997 6984 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
16:10:31.0011 6984 gagp30kx - ok
16:10:31.0731 6984 GameConsoleService (521a469caf61f00e1de081cc2099c1d6) C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
16:10:31.0778 6984 GameConsoleService - ok
16:10:31.0811 6984 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
16:10:31.0827 6984 GEARAspiWDM - ok
16:10:32.0136 6984 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
16:10:32.0211 6984 gpsvc - ok
16:10:32.0288 6984 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
16:10:32.0311 6984 hcw85cir - ok
16:10:32.0675 6984 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
16:10:32.0740 6984 HdAudAddService - ok
16:10:32.0772 6984 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
16:10:32.0798 6984 HDAudBus - ok
16:10:32.0896 6984 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
16:10:32.0919 6984 HidBatt - ok
16:10:33.0000 6984 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
16:10:33.0020 6984 HidBth - ok
16:10:33.0082 6984 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
16:10:33.0101 6984 HidIr - ok
16:10:33.0222 6984 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
16:10:33.0270 6984 hidserv - ok
16:10:33.0363 6984 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
16:10:33.0389 6984 HidUsb - ok
16:10:33.0677 6984 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
16:10:33.0720 6984 hkmsvc - ok
16:10:34.0732 6984 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
16:10:34.0772 6984 HomeGroupListener - ok
16:10:34.0843 6984 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
16:10:34.0891 6984 HomeGroupProvider - ok
16:10:35.0137 6984 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
16:10:35.0158 6984 HpSAMD - ok
16:10:35.0301 6984 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
16:10:35.0364 6984 HTTP - ok
16:10:35.0493 6984 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
16:10:35.0530 6984 hwpolicy - ok
16:10:36.0032 6984 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
16:10:36.0067 6984 i8042prt - ok
16:10:36.0990 6984 iaStor (53cc5bf8b5a219119953c7abb19a7705) C:\windows\system32\DRIVERS\iaStor.sys
16:10:37.0029 6984 iaStor - ok
16:10:37.0500 6984 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
16:10:37.0524 6984 iaStorV - ok
16:10:40.0837 6984 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:10:40.0912 6984 idsvc - ok
16:10:56.0724 6984 igfx (8cb8667f5a3b5515f2585f3254f3aaf7) C:\windows\system32\DRIVERS\igdkmd64.sys
16:10:56.0946 6984 igfx - ok
16:11:01.0667 6984 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
16:11:01.0696 6984 iirsp - ok
16:11:02.0440 6984 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
16:11:02.0559 6984 IKEEXT - ok
16:11:04.0776 6984 IntcAzAudAddService (a0c2c3d4c03c4fb896cfc53873784178) C:\windows\system32\drivers\RTKVHD64.sys
16:11:04.0883 6984 IntcAzAudAddService - ok
16:11:05.0728 6984 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
16:11:05.0884 6984 IntcDAud - ok
16:11:05.0935 6984 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
16:11:05.0947 6984 intelide - ok
16:11:06.0126 6984 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
16:11:06.0155 6984 intelppm - ok
16:11:06.0712 6984 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
16:11:06.0774 6984 IPBusEnum - ok
16:11:07.0225 6984 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
16:11:07.0296 6984 IpFilterDriver - ok
16:11:07.0748 6984 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
16:11:07.0775 6984 IPMIDRV - ok
16:11:08.0105 6984 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
16:11:08.0241 6984 IPNAT - ok
16:11:08.0979 6984 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
16:11:09.0069 6984 iPod Service - ok
16:11:09.0171 6984 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
16:11:09.0221 6984 IRENUM - ok
16:11:09.0296 6984 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
16:11:09.0328 6984 isapnp - ok
16:11:09.0609 6984 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
16:11:09.0634 6984 iScsiPrt - ok
16:11:09.0937 6984 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
16:11:10.0513 6984 kbdclass - ok
16:11:10.0801 6984 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
16:11:10.0821 6984 kbdhid - ok
16:11:11.0012 6984 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:11:11.0030 6984 KeyIso - ok
16:11:11.0726 6984 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
16:11:11.0830 6984 KSecDD - ok
16:11:13.0327 6984 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
16:11:13.0365 6984 KSecPkg - ok
16:11:13.0621 6984 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
16:11:13.0683 6984 ksthunk - ok
16:11:16.0542 6984 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
16:11:16.0586 6984 KtmRm - ok
16:11:16.0750 6984 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
16:11:16.0815 6984 LanmanServer - ok
16:11:17.0963 6984 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
16:11:18.0067 6984 LanmanWorkstation - ok
16:11:18.0206 6984 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
16:11:18.0261 6984 lltdio - ok
16:11:18.0838 6984 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
16:11:18.0885 6984 lltdsvc - ok
16:11:19.0012 6984 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
16:11:19.0063 6984 lmhosts - ok
16:11:20.0238 6984 LMS (926eba26a8b49d1597751ced06b50862) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:11:20.0399 6984 LMS - ok
16:11:21.0447 6984 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
16:11:21.0465 6984 LSI_FC - ok
16:11:22.0677 6984 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
16:11:22.0726 6984 LSI_SAS - ok
16:11:23.0185 6984 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
16:11:23.0337 6984 LSI_SAS2 - ok
16:11:24.0109 6984 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
16:11:24.0150 6984 LSI_SCSI - ok
16:11:24.0829 6984 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
16:11:24.0905 6984 luafv - ok
16:11:25.0433 6984 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
16:11:25.0457 6984 Mcx2Svc - ok
16:11:25.0791 6984 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
16:11:25.0972 6984 megasas - ok
16:11:27.0412 6984 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
16:11:27.0444 6984 MegaSR - ok
16:11:27.0559 6984 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\windows\system32\DRIVERS\HECIx64.sys
16:11:27.0570 6984 MEIx64 - ok
16:11:27.0896 6984 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
16:11:27.0943 6984 MMCSS - ok
16:11:28.0069 6984 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
16:11:28.0137 6984 Modem - ok
16:11:28.0174 6984 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
16:11:28.0192 6984 monitor - ok
16:11:28.0318 6984 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
16:11:28.0334 6984 mouclass - ok
16:11:28.0503 6984 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
16:11:28.0534 6984 mouhid - ok
16:11:28.0914 6984 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
16:11:28.0943 6984 mountmgr - ok
16:11:29.0174 6984 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:11:29.0191 6984 MozillaMaintenance - ok
16:11:29.0251 6984 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
16:11:29.0275 6984 mpio - ok
16:11:29.0531 6984 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
16:11:29.0587 6984 mpsdrv - ok
16:11:29.0652 6984 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
16:11:29.0683 6984 MRxDAV - ok
16:11:30.0118 6984 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
16:11:30.0148 6984 mrxsmb - ok
16:11:30.0237 6984 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
16:11:30.0270 6984 mrxsmb10 - ok
16:11:30.0795 6984 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
16:11:30.0879 6984 mrxsmb20 - ok
16:11:30.0906 6984 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
16:11:30.0918 6984 msahci - ok
16:11:31.0043 6984 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
16:11:31.0075 6984 msdsm - ok
16:11:31.0419 6984 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
16:11:31.0436 6984 MSDTC - ok
16:11:31.0675 6984 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
16:11:31.0754 6984 Msfs - ok
16:11:31.0847 6984 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
16:11:31.0933 6984 mshidkmdf - ok
16:11:32.0153 6984 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
16:11:32.0183 6984 msisadrv - ok
16:11:32.0291 6984 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
16:11:32.0347 6984 MSiSCSI - ok
16:11:32.0354 6984 msiserver - ok
16:11:32.0433 6984 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
16:11:32.0527 6984 MSKSSRV - ok
16:11:32.0579 6984 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
16:11:32.0641 6984 MSPCLOCK - ok
16:11:32.0746 6984 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
16:11:32.0807 6984 MSPQM - ok
16:11:33.0198 6984 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
16:11:33.0266 6984 MsRPC - ok
16:11:33.0380 6984 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
16:11:33.0410 6984 mssmbios - ok
16:11:33.0489 6984 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
16:11:33.0551 6984 MSTEE - ok
16:11:33.0642 6984 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
16:11:33.0664 6984 MTConfig - ok
16:11:33.0833 6984 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
16:11:33.0915 6984 Mup - ok
16:11:34.0310 6984 MyWiFiDHCPDNS (0cf5580f27918ffd2e165ecafa734103) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:11:34.0356 6984 MyWiFiDHCPDNS - ok
16:11:34.0536 6984 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
16:11:34.0614 6984 napagent - ok
16:11:35.0461 6984 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
16:11:35.0546 6984 NativeWifiP - ok
16:11:36.0301 6984 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\windows\system32\drivers\ndis.sys
16:11:36.0383 6984 NDIS - ok
16:11:36.0416 6984 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
16:11:36.0491 6984 NdisCap - ok
16:11:36.0723 6984 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
16:11:36.0788 6984 NdisTapi - ok
16:11:37.0018 6984 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
16:11:37.0158 6984 Ndisuio - ok
16:11:37.0383 6984 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
16:11:37.0456 6984 NdisWan - ok
16:11:37.0661 6984 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
16:11:37.0718 6984 NDProxy - ok
16:11:37.0871 6984 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
16:11:37.0922 6984 NetBIOS - ok
16:11:38.0196 6984 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
16:11:38.0271 6984 NetBT - ok
16:11:38.0371 6984 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:11:38.0390 6984 Netlogon - ok
16:11:38.0530 6984 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
16:11:38.0605 6984 Netman - ok
16:11:40.0388 6984 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
16:11:40.0450 6984 netprofm - ok
16:11:40.0903 6984 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:11:40.0936 6984 NetTcpPortSharing - ok
16:11:51.0552 6984 NETwNs64 (b9c587bdaa61a689883439d5ae6fe7f3) C:\windows\system32\DRIVERS\NETwNs64.sys
16:11:51.0722 6984 NETwNs64 - ok
16:11:52.0657 6984 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
16:11:52.0671 6984 nfrd960 - ok
16:11:53.0051 6984 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
16:11:53.0146 6984 NlaSvc - ok
16:11:53.0636 6984 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
16:11:53.0698 6984 Npfs - ok
16:11:54.0010 6984 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
16:11:54.0072 6984 nsi - ok
16:11:54.0277 6984 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
16:11:54.0331 6984 nsiproxy - ok
16:11:55.0163 6984 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
16:11:55.0236 6984 Ntfs - ok
16:11:59.0462 6984 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
16:11:59.0518 6984 Null - ok
16:12:00.0411 6984 nusb3hub (a7127e86f9ffe2a53e271b56b2c4cedf) C:\windows\system32\DRIVERS\nusb3hub.sys
16:12:00.0461 6984 nusb3hub - ok
16:12:01.0313 6984 nusb3xhc (49bbec6f48d5f9284b03abf3a959b19b) C:\windows\system32\DRIVERS\nusb3xhc.sys
16:12:01.0396 6984 nusb3xhc - ok
16:12:06.0024 6984 nvlddmkm (fbe6ac1c3591cb67543fad15abd26bcb) C:\windows\system32\DRIVERS\nvlddmkm.sys
16:12:06.0269 6984 nvlddmkm - ok
16:12:06.0472 6984 nvpciflt (680c5baf7d0190b1485068fc4ba75f1c) C:\windows\system32\DRIVERS\nvpciflt.sys
16:12:06.0483 6984 nvpciflt - ok
16:12:06.0631 6984 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
16:12:06.0651 6984 nvraid - ok
16:12:06.0690 6984 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
16:12:06.0705 6984 nvstor - ok
16:12:06.0794 6984 NVSvc (147b0d17255fd796f990cc6f745605c5) C:\windows\system32\nvvsvc.exe
16:12:06.0845 6984 NVSvc - ok
16:12:07.0646 6984 nvUpdatusService (812bf9531c827e1d8029843cddb2b5d6) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
16:12:07.0728 6984 nvUpdatusService - ok
16:12:08.0216 6984 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
16:12:08.0248 6984 nv_agp - ok
16:12:08.0611 6984 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
16:12:08.0634 6984 ohci1394 - ok
16:12:09.0084 6984 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:12:09.0101 6984 ose - ok
16:12:09.0614 6984 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:12:09.0853 6984 osppsvc - ok
16:12:11.0159 6984 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
16:12:11.0226 6984 p2pimsvc - ok
16:12:11.0536 6984 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
16:12:11.0573 6984 p2psvc - ok
16:12:11.0878 6984 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
16:12:11.0904 6984 Parport - ok
16:12:12.0150 6984 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
16:12:12.0176 6984 partmgr - ok
16:12:12.0255 6984 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
16:12:12.0281 6984 PcaSvc - ok
16:12:12.0441 6984 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
16:12:12.0458 6984 pci - ok
16:12:12.0557 6984 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
16:12:12.0576 6984 pciide - ok
16:12:12.0680 6984 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
16:12:12.0717 6984 pcmcia - ok
16:12:12.0777 6984 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
16:12:12.0794 6984 pcw - ok
16:12:13.0654 6984 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
16:12:13.0726 6984 PEAUTH - ok
16:12:14.0259 6984 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
16:12:14.0281 6984 PerfHost - ok
16:12:14.0524 6984 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
16:12:14.0604 6984 pla - ok
16:12:15.0918 6984 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
16:12:15.0974 6984 PlugPlay - ok
16:12:16.0160 6984 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
16:12:16.0213 6984 PNRPAutoReg - ok
16:12:17.0321 6984 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
16:12:17.0356 6984 PNRPsvc - ok
16:12:18.0007 6984 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
16:12:18.0067 6984 PolicyAgent - ok
16:12:18.0135 6984 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
16:12:18.0207 6984 Power - ok
16:12:18.0421 6984 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
16:12:18.0468 6984 PptpMiniport - ok
16:12:18.0509 6984 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
16:12:18.0526 6984 Processor - ok
16:12:18.0574 6984 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\windows\system32\profsvc.dll
16:12:18.0604 6984 ProfSvc - ok
16:12:18.0633 6984 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:12:18.0653 6984 ProtectedStorage - ok
16:12:18.0682 6984 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
16:12:18.0741 6984 Psched - ok
16:12:19.0241 6984 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
16:12:19.0328 6984 ql2300 - ok
16:12:21.0725 6984 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
16:12:21.0764 6984 ql40xx - ok
16:12:21.0823 6984 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
16:12:21.0855 6984 QWAVE - ok
16:12:21.0895 6984 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
16:12:21.0920 6984 QWAVEdrv - ok
16:12:21.0925 6984 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
16:12:21.0980 6984 RasAcd - ok
16:12:22.0181 6984 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
16:12:22.0231 6984 RasAgileVpn - ok
16:12:22.0418 6984 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
16:12:22.0471 6984 RasAuto - ok
16:12:22.0769 6984 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
16:12:22.0830 6984 Rasl2tp - ok
16:12:23.0294 6984 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
16:12:23.0369 6984 RasMan - ok
16:12:23.0468 6984 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
16:12:23.0516 6984 RasPppoe - ok
16:12:23.0769 6984 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
16:12:23.0839 6984 RasSstp - ok
16:12:23.0952 6984 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
16:12:24.0000 6984 rdbss - ok
16:12:24.0017 6984 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
16:12:24.0039 6984 rdpbus - ok
16:12:24.0051 6984 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
16:12:24.0090 6984 RDPCDD - ok
16:12:24.0111 6984 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
16:12:24.0166 6984 RDPENCDD - ok
16:12:24.0219 6984 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
16:12:24.0270 6984 RDPREFMP - ok
16:12:24.0321 6984 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\windows\system32\drivers\RDPWD.sys
16:12:24.0363 6984 RDPWD - ok
16:12:24.0874 6984 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
16:12:24.0899 6984 rdyboost - ok
16:12:26.0576 6984 RegSrvc (aa9fd849c028ccb441a78061b57db734) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:12:26.0645 6984 RegSrvc - ok
16:12:26.0864 6984 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
16:12:26.0909 6984 RemoteAccess - ok
16:12:26.0993 6984 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
16:12:27.0042 6984 RemoteRegistry - ok
16:12:27.0386 6984 RichVideo (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
16:12:27.0401 6984 RichVideo ( UnsignedFile.Multi.Generic ) - warning
16:12:27.0401 6984 RichVideo - detected UnsignedFile.Multi.Generic (1)
16:12:27.0447 6984 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
16:12:27.0491 6984 RpcEptMapper - ok
16:12:27.0547 6984 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
16:12:27.0583 6984 RpcLocator - ok
16:12:27.0649 6984 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
16:12:27.0696 6984 RpcSs - ok
16:12:27.0881 6984 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
16:12:27.0936 6984 rspndr - ok
16:12:28.0114 6984 RTL8167 (ea5532868ba76923d75bcb2a1448d810) C:\windows\system32\DRIVERS\Rt64win7.sys
16:12:28.0176 6984 RTL8167 - ok
16:12:29.0081 6984 rtport (4ca0dba9e224473d664c25e411f5a3bd) C:\windows\SysWOW64\drivers\rtport.sys
16:12:29.0094 6984 rtport - ok
16:12:29.0194 6984 SABI (62db6cc4b0818f1b5f3441241b098f12) C:\windows\system32\Drivers\SABI.sys
16:12:29.0272 6984 SABI - ok
16:12:29.0381 6984 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:12:29.0403 6984 SamSs - ok
16:12:29.0545 6984 Samsung UPD Service (d641337b75b9a9d5ae10687aa1097755) C:\windows\System32\SUPDSvc.exe
16:12:29.0569 6984 Samsung UPD Service - ok
16:12:29.0664 6984 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
16:12:29.0680 6984 sbp2port - ok
16:12:29.0874 6984 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
16:12:29.0927 6984 SCardSvr - ok
16:12:30.0033 6984 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
16:12:30.0085 6984 scfilter - ok
16:12:30.0167 6984 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
16:12:30.0274 6984 Schedule - ok
16:12:30.0306 6984 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
16:12:30.0357 6984 SCPolicySvc - ok
16:12:30.0390 6984 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
16:12:30.0423 6984 SDRSVC - ok
16:12:31.0333 6984 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
16:12:31.0359 6984 SeaPort - ok
16:12:32.0029 6984 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
16:12:32.0094 6984 secdrv - ok
16:12:32.0386 6984 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
16:12:32.0434 6984 seclogon - ok
16:12:32.0906 6984 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
16:12:32.0975 6984 SENS - ok
16:12:33.0017 6984 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
16:12:33.0158 6984 SensrSvc - ok
16:12:33.0236 6984 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
16:12:33.0251 6984 Serenum - ok
16:12:33.0950 6984 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
16:12:33.0989 6984 Serial - ok
16:12:34.0196 6984 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
16:12:34.0225 6984 sermouse - ok
16:12:35.0225 6984 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
16:12:35.0392 6984 SessionEnv - ok
16:12:35.0500 6984 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
16:12:35.0552 6984 sffdisk - ok
16:12:35.0779 6984 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
16:12:35.0855 6984 sffp_mmc - ok
16:12:35.0919 6984 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
16:12:35.0970 6984 sffp_sd - ok
16:12:36.0295 6984 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
16:12:36.0345 6984 sfloppy - ok
16:12:41.0190 6984 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\windows\system32\DRIVERS\Sftfslh.sys
16:12:41.0394 6984 Sftfs - ok
16:12:46.0504 6984 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:12:46.0563 6984 sftlist - ok
16:12:48.0863 6984 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\windows\system32\DRIVERS\Sftplaylh.sys
16:12:48.0923 6984 Sftplay - ok
16:12:49.0113 6984 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\windows\system32\DRIVERS\Sftredirlh.sys
16:12:49.0151 6984 Sftredir - ok
16:12:49.0297 6984 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\windows\system32\DRIVERS\Sftvollh.sys
16:12:49.0326 6984 Sftvol - ok
16:12:49.0692 6984 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:12:49.0711 6984 sftvsa - ok
16:12:50.0824 6984 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
16:12:50.0933 6984 ShellHWDetection - ok
16:12:51.0082 6984 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
16:12:51.0125 6984 SiSRaid2 - ok
16:12:51.0569 6984 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
16:12:51.0589 6984 SiSRaid4 - ok
16:12:52.0805 6984 Skype C2C Service (2a99850c2a6edd6c6602e822c716edaf) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:12:52.0932 6984 Skype C2C Service - ok
16:12:53.0457 6984 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
16:12:53.0474 6984 SkypeUpdate - ok
16:12:54.0893 6984 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
16:12:54.0944 6984 Smb - ok
16:12:55.0045 6984 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
16:12:55.0101 6984 SNMPTRAP - ok
16:12:55.0255 6984 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
16:12:55.0284 6984 spldr - ok
16:12:56.0442 6984 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
16:12:56.0521 6984 Spooler - ok
16:12:58.0719 6984 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
16:12:58.0910 6984 sppsvc - ok
16:13:00.0008 6984 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
16:13:00.0071 6984 sppuinotify - ok
16:13:00.0300 6984 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
16:13:00.0364 6984 srv - ok
16:13:00.0423 6984 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
16:13:00.0447 6984 srv2 - ok
16:13:00.0560 6984 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
16:13:00.0584 6984 srvnet - ok
16:13:00.0759 6984 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
16:13:00.0836 6984 SSDPSRV - ok
16:13:00.0877 6984 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
16:13:00.0937 6984 SstpSvc - ok
16:13:00.0987 6984 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
16:13:01.0003 6984 stexstor - ok
16:13:01.0068 6984 StillCam (decacb6921ded1a38642642685d77dac) C:\windows\system32\DRIVERS\serscan.sys
16:13:01.0100 6984 StillCam - ok
16:13:01.0287 6984 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
16:13:01.0327 6984 stisvc - ok
16:13:01.0366 6984 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
16:13:01.0381 6984 swenum - ok
16:13:01.0583 6984 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
16:13:01.0702 6984 swprv - ok
16:13:01.0997 6984 SynTP (a066a93804f464ae1f49658899998470) C:\windows\system32\DRIVERS\SynTP.sys
16:13:02.0082 6984 SynTP - ok
16:13:02.0401 6984 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
16:13:02.0488 6984 SysMain - ok
16:13:02.0679 6984 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
16:13:02.0722 6984 TabletInputService - ok
16:13:02.0905 6984 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
16:13:02.0979 6984 TapiSrv - ok
16:13:03.0022 6984 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
16:13:03.0073 6984 TBS - ok
16:13:03.0311 6984 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
16:13:03.0369 6984 Tcpip - ok
16:13:03.0626 6984 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
16:13:03.0727 6984 TCPIP6 - ok
16:13:04.0386 6984 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
16:13:04.0444 6984 tcpipreg - ok
16:13:04.0473 6984 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
16:13:04.0496 6984 TDPIPE - ok
16:13:04.0645 6984 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
16:13:04.0678 6984 TDTCP - ok
16:13:04.0966 6984 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
16:13:05.0029 6984 tdx - ok
16:13:05.0065 6984 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
16:13:05.0082 6984 TermDD - ok
16:13:06.0146 6984 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
16:13:06.0250 6984 TermService - ok
16:13:06.0406 6984 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
16:13:06.0447 6984 Themes - ok
16:13:06.0485 6984 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
16:13:06.0539 6984 THREADORDER - ok
16:13:06.0692 6984 tmactmon (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\windows\system32\DRIVERS\tmactmon.sys
16:13:06.0707 6984 tmactmon - ok
16:13:06.0760 6984 tmcomm (ab011c569487fd65c8944ddf8cbb2572) C:\windows\system32\DRIVERS\tmcomm.sys
16:13:06.0781 6984 tmcomm - ok
16:13:06.0843 6984 tmeevw (1161f882b3cfa8076870a09924e0adc2) C:\windows\system32\DRIVERS\tmeevw.sys
16:13:06.0860 6984 tmeevw - ok
16:13:06.0924 6984 tmevtmgr (8870a3d7305455b47adccd226f8e51bc) C:\windows\system32\DRIVERS\tmevtmgr.sys
16:13:06.0949 6984 tmevtmgr - ok
16:13:06.0981 6984 tmnciesc (f0ae672ee91e7f1ef24644621b57ca7f) C:\windows\system32\DRIVERS\tmnciesc.sys
16:13:07.0000 6984 tmnciesc - ok
16:13:07.0032 6984 tmtdi (065cb7d9278d778fb9ef62cead01433f) C:\windows\system32\DRIVERS\tmtdi.sys
16:13:07.0046 6984 tmtdi - ok
16:13:07.0082 6984 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
16:13:07.0137 6984 TrkWks - ok
16:13:07.0362 6984 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
16:13:07.0413 6984 TrustedInstaller - ok
16:13:07.0528 6984 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
16:13:07.0579 6984 tssecsrv - ok
16:13:07.0606 6984 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
16:13:07.0640 6984 TsUsbFlt - ok
16:13:07.0745 6984 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
16:13:07.0775 6984 TsUsbGD - ok
16:13:07.0933 6984 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
16:13:08.0002 6984 tunnel - ok
16:13:08.0276 6984 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
16:13:08.0320 6984 uagp35 - ok
16:13:08.0335 6984 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
16:13:08.0403 6984 udfs - ok
16:13:08.0487 6984 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
16:13:08.0521 6984 UI0Detect - ok
16:13:08.0562 6984 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
16:13:08.0584 6984 uliagpkx - ok
16:13:08.0641 6984 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
16:13:08.0666 6984 umbus - ok
16:13:08.0739 6984 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
16:13:08.0761 6984 UmPass - ok
16:13:09.0107 6984 UNS (fdf92ec84fecee834fb10a2a0a19bcda) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:13:09.0269 6984 UNS - ok
16:13:10.0009 6984 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
16:13:10.0093 6984 upnphost - ok
16:13:10.0669 6984 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\windows\system32\Drivers\usbaapl64.sys
16:13:10.0714 6984 USBAAPL64 - ok
16:13:10.0897 6984 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
16:13:10.0926 6984 usbccgp - ok
16:13:11.0033 6984 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
16:13:11.0069 6984 usbcir - ok
16:13:11.0149 6984 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
16:13:11.0181 6984 usbehci - ok
16:13:11.0207 6984 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
16:13:11.0232 6984 usbhub - ok
16:13:11.0349 6984 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
16:13:11.0371 6984 usbohci - ok
16:13:11.0467 6984 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\drivers\usbprint.sys
16:13:11.0495 6984 usbprint - ok
16:13:11.0548 6984 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
16:13:11.0604 6984 USBSTOR - ok
16:13:11.0651 6984 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
16:13:11.0675 6984 usbuhci - ok
16:13:11.0794 6984 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
16:13:11.0844 6984 usbvideo - ok
16:13:11.0906 6984 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
16:13:11.0963 6984 UxSms - ok
16:13:12.0048 6984 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:13:12.0116 6984 VaultSvc - ok
16:13:12.0363 6984 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
16:13:12.0410 6984 vdrvroot - ok
16:13:13.0253 6984 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
16:13:13.0342 6984 vds - ok
16:13:13.0507 6984 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
16:13:13.0564 6984 vga - ok
16:13:13.0604 6984 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
16:13:13.0712 6984 VgaSave - ok
16:13:13.0769 6984 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
16:13:13.0794 6984 vhdmp - ok
16:13:13.0826 6984 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
16:13:13.0864 6984 viaide - ok
16:13:13.0940 6984 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
16:13:13.0965 6984 volmgr - ok
16:13:14.0003 6984 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
16:13:14.0030 6984 volmgrx - ok
16:13:14.0084 6984 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
16:13:14.0118 6984 volsnap - ok
16:13:14.0248 6984 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
16:13:14.0275 6984 vsmraid - ok
16:13:15.0543 6984 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
16:13:15.0640 6984 VSS - ok
16:13:15.0950 6984 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
16:13:15.0991 6984 vwifibus - ok
16:13:16.0077 6984 VWiFiFlt (13a0decd1794de60a8427862c8669d27) C:\windows\system32\DRIVERS\vwififlt.sys
16:13:16.0121 6984 VWiFiFlt - ok
16:13:16.0195 6984 vwifimp (49003b357d101cdc474937437ecf5abc) C:\windows\system32\DRIVERS\vwifimp.sys
16:13:16.0214 6984 vwifimp - ok
16:13:16.0397 6984 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
16:13:16.0465 6984 W32Time - ok
16:13:16.0540 6984 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
16:13:16.0563 6984 WacomPen - ok
16:13:16.0636 6984 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
16:13:16.0696 6984 WANARP - ok
16:13:16.0700 6984 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
16:13:16.0793 6984 Wanarpv6 - ok
16:13:16.0981 6984 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
16:13:17.0035 6984 WatAdminSvc - ok
16:13:17.0424 6984 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
16:13:17.0508 6984 wbengine - ok
16:13:18.0082 6984 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
16:13:18.0110 6984 WbioSrvc - ok
16:13:18.0260 6984 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
16:13:18.0295 6984 wcncsvc - ok
16:13:18.0311 6984 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
16:13:18.0332 6984 WcsPlugInService - ok
16:13:18.0753 6984 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
16:13:18.0772 6984 Wd - ok
16:13:18.0867 6984 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
16:13:18.0917 6984 Wdf01000 - ok
16:13:18.0963 6984 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
16:13:19.0017 6984 WdiServiceHost - ok
16:13:19.0021 6984 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
16:13:19.0058 6984 WdiSystemHost - ok
16:13:19.0273 6984 wdkmd (94dc2bf6cbaaa95e369c3756d3115a76) C:\windows\system32\DRIVERS\WDKMD.sys
16:13:19.0307 6984 wdkmd - ok
16:13:19.0399 6984 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
16:13:19.0438 6984 WebClient - ok
16:13:19.0759 6984 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
16:13:19.0837 6984 Wecsvc - ok
16:13:20.0001 6984 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
16:13:20.0076 6984 wercplsupport - ok
16:13:20.0122 6984 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
16:13:20.0183 6984 WerSvc - ok
16:13:20.0350 6984 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
16:13:20.0416 6984 WfpLwf - ok
16:13:20.0813 6984 WiMAXAppSrv (81730f74eb47552f1ece857b2f491a31) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
16:13:20.0839 6984 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - warning
16:13:20.0839 6984 WiMAXAppSrv - detected UnsignedFile.Multi.Generic (1)
16:13:21.0024 6984 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
16:13:21.0065 6984 WIMMount - ok
16:13:21.0081 6984 WinHttpAutoProxySvc - ok
16:13:21.0409 6984 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
16:13:21.0509 6984 Winmgmt - ok
16:13:22.0253 6984 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
16:13:22.0392 6984 WinRM - ok
16:13:22.0857 6984 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
16:13:22.0937 6984 Wlansvc - ok
16:13:23.0186 6984 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:13:23.0248 6984 wlcrasvc - ok
16:13:23.0536 6984 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:13:23.0603 6984 wlidsvc - ok
16:13:24.0203 6984 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\DRIVERS\wmiacpi.sys
16:13:24.0242 6984 WmiAcpi - ok
16:13:24.0445 6984 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
16:13:24.0469 6984 wmiApSrv - ok
16:13:24.0713 6984 WMPNetworkSvc - ok
16:13:24.0866 6984 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
16:13:24.0928 6984 WPCSvc - ok
16:13:24.0993 6984 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
16:13:25.0031 6984 WPDBusEnum - ok
16:13:25.0132 6984 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
16:13:25.0206 6984 ws2ifsl - ok
16:13:25.0340 6984 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\system32\wscsvc.dll
16:13:25.0374 6984 wscsvc - ok
16:13:25.0382 6984 WSearch - ok
16:13:26.0571 6984 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\windows\system32\wuaueng.dll
16:13:26.0672 6984 wuauserv - ok
16:13:27.0221 6984 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
16:13:27.0270 6984 WudfPf - ok
16:13:27.0341 6984 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
16:13:27.0391 6984 WUDFRd - ok
16:13:27.0481 6984 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
16:13:27.0552 6984 wudfsvc - ok
16:13:27.0936 6984 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
16:13:28.0039 6984 WwanSvc - ok
16:13:28.0121 6984 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0
16:13:31.0073 6984 \Device\Harddisk0\DR0 - ok
16:13:31.0144 6984 Boot (0x1200) (3f290f70e06328cff83e5084e2c4ff03) \Device\Harddisk0\DR0\Partition0
16:13:31.0161 6984 \Device\Harddisk0\DR0\Partition0 - ok
16:13:31.0197 6984 Boot (0x1200) (bc0390f8ca437f7777720829aa7cf4d7) \Device\Harddisk0\DR0\Partition1
16:13:31.0216 6984 \Device\Harddisk0\DR0\Partition1 - ok
16:13:31.0257 6984 Boot (0x1200) (e97005ef8eacc8249868f66df0774371) \Device\Harddisk0\DR0\Partition2
16:13:31.0310 6984 \Device\Harddisk0\DR0\Partition2 - ok
16:13:31.0312 6984 ============================================================
16:13:31.0312 6984 Scan finished
16:13:31.0312 6984 ============================================================
16:13:31.0326 4300 Detected object count: 3
16:13:31.0326 4300 Actual detected object count: 3
16:13:44.0476 4300 DMAgent ( UnsignedFile.Multi.Generic ) - skipped by user
16:13:44.0477 4300 DMAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:13:44.0483 4300 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
16:13:44.0483 4300 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:13:44.0484 4300 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - skipped by user
16:13:44.0484 4300 WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:44:11.0070 2356 Deinitialize success

#3 Nevermind3

Nevermind3
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:45 PM

Posted 08 July 2012 - 04:15 PM

Ok, just finished with Malwarebytes, no objects were detected:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.07.08.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Jordan :: JORDAN-PC [administrator]

7/8/2012 3:38:59 PM
mbam-log-2012-07-08 (15-38-59).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 416810
Time elapsed: 1 hour(s), 35 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#4 Nevermind3

Nevermind3
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:45 PM

Posted 08 July 2012 - 04:56 PM

GMER log (didn't find anything suspicious here):

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-07-08 17:55:40
Windows 6.1.7601 Service Pack 1
Running: spmx0s2v.exe


---- Files - GMER 1.0.15 ----

File C:\Users\Jordan\AppData\Roaming\Microsoft\Windows\Cookies\4HQS41HD.txt 80 bytes
File Q:\$RECYCLE.BIN 0 bytes
File Q:\$RECYCLE.BIN\S-1-5-18 0 bytes
File Q:\$RECYCLE.BIN\S-1-5-18\desktop.ini 129 bytes
File Q:\$RECYCLE.BIN\S-1-5-21-4198987758-2248499998-3482887356-1001 0 bytes
File Q:\$RECYCLE.BIN\S-1-5-21-4198987758-2248499998-3482887356-1001\desktop.ini 129 bytes
File Q:\$RECYCLE.BIN\S-1-5-21-4198987758-2248499998-3482887356-1002 0 bytes
File Q:\$RECYCLE.BIN\S-1-5-21-4198987758-2248499998-3482887356-1002\desktop.ini 129 bytes
File Q:\System Volume Information 0 bytes
File Q:\System Volume Information\tracking.log 20480 bytes

---- EOF - GMER 1.0.15 ----

#5 Nevermind3

Nevermind3
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:45 PM

Posted 08 July 2012 - 10:28 PM

Panda Security log:

2012-07-08 21:37:54: ****************************************************
2012-07-08 21:37:54: Starting UP ... v 0.0.0.220
2012-07-08 21:37:54: ****************************************************
2012-07-08 21:37:55: Stop TPSRV returns: 2
2012-07-08 21:38:10: Listing processes...
2012-07-08 21:38:10: :[System Process]:0
2012-07-08 21:38:10: :System:4
2012-07-08 21:38:10: :smss.exe:412
2012-07-08 21:38:10: :csrss.exe:552
2012-07-08 21:38:10: :wininit.exe:592
2012-07-08 21:38:10: :csrss.exe:616
2012-07-08 21:38:10: :services.exe:664
2012-07-08 21:38:10: :lsass.exe:704
2012-07-08 21:38:10: :lsm.exe:712
2012-07-08 21:38:10: :svchost.exe:812
2012-07-08 21:38:10: :nvvsvc.exe:872
2012-07-08 21:38:10: :winlogon.exe:912
2012-07-08 21:38:10: :svchost.exe:944
2012-07-08 21:38:10: :svchost.exe:444
2012-07-08 21:38:10: :svchost.exe:532
2012-07-08 21:38:10: :svchost.exe:484
2012-07-08 21:38:10: :audiodg.exe:1036
2012-07-08 21:38:10: :svchost.exe:1080
2012-07-08 21:38:10: :svchost.exe:1168
2012-07-08 21:38:10: :wlanext.exe:1396
2012-07-08 21:38:10: :conhost.exe:1404
2012-07-08 21:38:10: :NvXDSync.exe:1428
2012-07-08 21:38:10: :spoolsv.exe:1560
2012-07-08 21:38:10: :svchost.exe:1608
2012-07-08 21:38:10: :coreServiceShell.exe:1696
2012-07-08 21:38:10: :AppleMobileDeviceService.exe:1852
2012-07-08 21:38:10: :uiWatchDog.exe:1860
2012-07-08 21:38:10: :taskhost.exe:1976
2012-07-08 21:38:10: :dwm.exe:2040
2012-07-08 21:38:10: :explorer.exe:1192
2012-07-08 21:38:10: :conhost.exe:1628
2012-07-08 21:38:10: :coreFrameworkHost.exe:548
2012-07-08 21:38:10: :conhost.exe:1704
2012-07-08 21:38:10: :mDNSResponder.exe:2244
2012-07-08 21:38:10: :EvtEng.exe:2328
2012-07-08 21:38:10: :FlipShareService.exe:2400
2012-07-08 21:38:10: :RegSrvc.exe:2516
2012-07-08 21:38:10: :RichVideo.exe:2560
2012-07-08 21:38:10: :SeaPort.EXE:2592
2012-07-08 21:38:10: :taskeng.exe:2724
2012-07-08 21:38:10: :taskeng.exe:2936
2012-07-08 21:38:10: :SRSPremiumPanel_64.exe:2952
2012-07-08 21:38:10: :dmhkcore.exe:2984
2012-07-08 21:38:10: :YCMMirage.exe:3004
2012-07-08 21:38:10: :WifiManager.exe:3012
2012-07-08 21:38:10: :sftvsa.exe:2172
2012-07-08 21:38:10: :brs.exe:2196
2012-07-08 21:38:10: :CLMLSvc.exe:2308
2012-07-08 21:38:10: :PDVD10Serv.exe:2288
2012-07-08 21:38:10: :hkcmd.exe:1364
2012-07-08 21:38:10: :igfxtray.exe:2188
2012-07-08 21:38:10: :iFrmewrk.exe:3116
2012-07-08 21:38:10: :WiMAXCU.exe:3140
2012-07-08 21:38:10: :igfxpers.exe:3156
2012-07-08 21:38:10: :c2c_service.exe:3336
2012-07-08 21:38:10: :EasySpeedUpManager.exe:3440
2012-07-08 21:38:10: :AppSrv.exe:3632
2012-07-08 21:38:10: :WLIDSVC.EXE:3748
2012-07-08 21:38:10: :DMAgent.exe:3844
2012-07-08 21:38:10: :igfxext.exe:3880
2012-07-08 21:38:10: :unsecapp.exe:3888
2012-07-08 21:38:10: :unsecapp.exe:3916
2012-07-08 21:38:10: :igfxsrvc.exe:4020
2012-07-08 21:38:10: :WmiPrvSE.exe:4040
2012-07-08 21:38:10: :WmiPrvSE.exe:3108
2012-07-08 21:38:10: :WLIDSVCM.EXE:1536
2012-07-08 21:38:10: :sftlist.exe:2856
2012-07-08 21:38:10: :CVHSVC.EXE:2428
2012-07-08 21:38:10: :svchost.exe:4172
2012-07-08 21:38:10: :svchost.exe:4528
2012-07-08 21:38:10: :RAVCpl64.exe:4692
2012-07-08 21:38:10: :SynTPEnh.exe:4704
2012-07-08 21:38:10: :aim.exe:4864
2012-07-08 21:38:10: :msnmsgr.exe:4876
2012-07-08 21:38:10: :Skype.exe:4884
2012-07-08 21:38:10: :jusched.exe:4992
2012-07-08 21:38:10: :Updater.exe:5000
2012-07-08 21:38:10: :iTunesHelper.exe:5020
2012-07-08 21:38:10: :AdobeARM.exe:5048
2012-07-08 21:38:10: :uiSeAgnt.exe:840
2012-07-08 21:38:10: :iPodService.exe:3216
2012-07-08 21:38:10: :SynTPHelper.exe:4924
2012-07-08 21:38:10: :SearchIndexer.exe:2568
2012-07-08 21:38:10: :WCScheduler.exe:5532
2012-07-08 21:38:11: :SmartRestarter.exe:5852
2012-07-08 21:38:11: :MovieColorEnhancer.exe:3572
2012-07-08 21:38:11: :SSCKbdHk.exe:1068
2012-07-08 21:38:11: :LMS.exe:4576
2012-07-08 21:38:11: :daemonu.exe:4280
2012-07-08 21:38:11: :SUPBackground.exe:4524
2012-07-08 21:38:11: :svchost.exe:3196
2012-07-08 21:38:11: :svchost.exe:5608
2012-07-08 21:38:11: :firefox.exe:3548
2012-07-08 21:38:11: :UNS.exe:2540
2012-07-08 21:38:11: :plugin-container.exe:5908
2012-07-08 21:38:11: :FlashPlayerPlugin_11_3_300_262.exe:6808
2012-07-08 21:38:11: :FlashPlayerPlugin_11_3_300_262.exe:3824
2012-07-08 21:38:11: :yorkyt.exe:7328
2012-07-08 21:38:11: :SearchProtocolHost.exe:1996
2012-07-08 21:38:11: :SearchFilterHost.exe:6584
2012-07-08 21:38:11:
2012-07-08 21:38:11: Setting restore point
2012-07-08 21:38:27: RUN mode
2012-07-08 21:38:27: Determining autonomous or dropped mode...
2012-07-08 21:38:27: Autonomus mode
2012-07-08 21:38:27: ---------------------------------------------------------------------
2012-07-08 21:38:27: Found Service: AeLookupSvc
2012-07-08 21:38:27: Real Path: C:\windows\System32\aelupsvc.dll
2012-07-08 21:38:27: Display Name: @%SystemRoot%\system32\aelupsvc.dll,-1
2012-07-08 21:38:27: Description: @%SystemRoot%\system32\aelupsvc.dll,-2
2012-07-08 21:38:27: ServiceDLL: System32\aelupsvc.dll
2012-07-08 21:38:27: File size: 0
2012-07-08 21:38:27: DLL File name: aelupsvc.dll
2012-07-08 21:38:27: Original File Name: aelupsvc.dll.mui
2012-07-08 21:38:27: Company:
2012-07-08 21:38:27: Mod/Cre/Acc time:
2012-07-08 21:38:27: ---------------------------------------------------------------------
2012-07-08 21:38:27: Found Service: AppIDSvc
2012-07-08 21:38:27: Real Path: C:\windows\System32\appidsvc.dll
2012-07-08 21:38:27: Display Name: @%systemroot%\system32\appidsvc.dll,-100
2012-07-08 21:38:27: Description: @%systemroot%\system32\appidsvc.dll,-101
2012-07-08 21:38:27: ServiceDLL: System32\appidsvc.dll
2012-07-08 21:38:27: File size: 0
2012-07-08 21:38:27: DLL File name: appidsvc.dll
2012-07-08 21:38:27: Original File Name: appidsvc.dll.mui
2012-07-08 21:38:27: Company:
2012-07-08 21:38:27: Mod/Cre/Acc time:
2012-07-08 21:38:27: ---------------------------------------------------------------------
2012-07-08 21:38:27: Found Service: Appinfo
2012-07-08 21:38:27: Real Path: C:\windows\System32\appinfo.dll
2012-07-08 21:38:27: Display Name: @%systemroot%\system32\appinfo.dll,-100
2012-07-08 21:38:27: Description: @%systemroot%\system32\appinfo.dll,-101
2012-07-08 21:38:27: ServiceDLL: System32\appinfo.dll
2012-07-08 21:38:27: File size: 0
2012-07-08 21:38:27: DLL File name: appinfo.dll
2012-07-08 21:38:27: Original File Name: appinfo.dll.mui
2012-07-08 21:38:27: Company:
2012-07-08 21:38:27: Mod/Cre/Acc time:
2012-07-08 21:38:28: ---------------------------------------------------------------------
2012-07-08 21:38:28: Found Service: AudioEndpointBuilder
2012-07-08 21:38:28: Real Path: C:\windows\System32\Audiosrv.dll
2012-07-08 21:38:28: Display Name: @%SystemRoot%\system32\audiosrv.dll,-204
2012-07-08 21:38:28: Description: @%SystemRoot%\System32\audiosrv.dll,-205
2012-07-08 21:38:28: ServiceDLL: System32\Audiosrv.dll
2012-07-08 21:38:28: File size: 0
2012-07-08 21:38:28: DLL File name: Audiosrv.dll
2012-07-08 21:38:28: Original File Name: audiosrv.dll.mui
2012-07-08 21:38:28: Company:
2012-07-08 21:38:28: Mod/Cre/Acc time:
2012-07-08 21:38:28: ---------------------------------------------------------------------
2012-07-08 21:38:28: Found Service: AudioSrv
2012-07-08 21:38:28: Real Path: C:\windows\System32\Audiosrv.dll
2012-07-08 21:38:28: Display Name: @%SystemRoot%\system32\audiosrv.dll,-200
2012-07-08 21:38:28: Description: @%SystemRoot%\System32\audiosrv.dll,-201
2012-07-08 21:38:28: ServiceDLL: System32\Audiosrv.dll
2012-07-08 21:38:28: File size: 0
2012-07-08 21:38:28: DLL File name: Audiosrv.dll
2012-07-08 21:38:28: Original File Name: audiosrv.dll.mui
2012-07-08 21:38:28: Company:
2012-07-08 21:38:28: Mod/Cre/Acc time:
2012-07-08 21:38:28: ---------------------------------------------------------------------
2012-07-08 21:38:28: Found Service: AxInstSV
2012-07-08 21:38:28: Real Path: C:\windows\System32\AxInstSV.dll
2012-07-08 21:38:28: Display Name: @%SystemRoot%\system32\AxInstSV.dll,-103
2012-07-08 21:38:28: Description: @%SystemRoot%\system32\AxInstSV.dll,-104
2012-07-08 21:38:28: ServiceDLL: System32\AxInstSV.dll
2012-07-08 21:38:28: File size: 0
2012-07-08 21:38:28: DLL File name: AxInstSV.dll
2012-07-08 21:38:28: Original File Name: AxInstSv.dll.mui
2012-07-08 21:38:28: Company:
2012-07-08 21:38:28: Mod/Cre/Acc time:
2012-07-08 21:38:28: ---------------------------------------------------------------------
2012-07-08 21:38:28: Found Service: BDESVC
2012-07-08 21:38:28: Real Path: C:\windows\System32\bdesvc.dll
2012-07-08 21:38:28: Display Name: @%SystemRoot%\system32\bdesvc.dll,-100
2012-07-08 21:38:28: Description: @%SystemRoot%\system32\bdesvc.dll,-101
2012-07-08 21:38:28: ServiceDLL: System32\bdesvc.dll
2012-07-08 21:38:28: File size: 0
2012-07-08 21:38:28: DLL File name: bdesvc.dll
2012-07-08 21:38:28: Original File Name: BDESVC.DLL.MUI
2012-07-08 21:38:28: Company:
2012-07-08 21:38:28: Mod/Cre/Acc time:
2012-07-08 21:38:28: ---------------------------------------------------------------------
2012-07-08 21:38:28: Found Service: BFE
2012-07-08 21:38:28: Real Path: C:\windows\System32\bfe.dll
2012-07-08 21:38:28: Display Name: @%SystemRoot%\system32\bfe.dll,-1001
2012-07-08 21:38:28: Description: @%SystemRoot%\system32\bfe.dll,-1002
2012-07-08 21:38:28: ServiceDLL: System32\bfe.dll
2012-07-08 21:38:28: File size: 0
2012-07-08 21:38:28: DLL File name: bfe.dll
2012-07-08 21:38:28: Original File Name: BFE.DLL.MUI
2012-07-08 21:38:28: Company:
2012-07-08 21:38:28: Mod/Cre/Acc time:
2012-07-08 21:38:28: ---------------------------------------------------------------------
2012-07-08 21:38:28: Found Service: BITS
2012-07-08 21:38:28: Real Path: C:\windows\System32\qmgr.dll
2012-07-08 21:38:28: Display Name: @%SystemRoot%\system32\qmgr.dll,-1000
2012-07-08 21:38:28: Description: @%SystemRoot%\system32\qmgr.dll,-1001
2012-07-08 21:38:28: ServiceDLL: System32\qmgr.dll
2012-07-08 21:38:28: File size: 0
2012-07-08 21:38:28: DLL File name: qmgr.dll
2012-07-08 21:38:28: Original File Name: qmgr.dll.mui
2012-07-08 21:38:28: Company:
2012-07-08 21:38:28: Mod/Cre/Acc time:
2012-07-08 21:38:28: ---------------------------------------------------------------------
2012-07-08 21:38:29: Found Service: Browser
2012-07-08 21:38:29: Real Path: C:\windows\System32\browser.dll
2012-07-08 21:38:29: Display Name: @%systemroot%\system32\browser.dll,-100
2012-07-08 21:38:29: Description: @%systemroot%\system32\browser.dll,-101
2012-07-08 21:38:29: ServiceDLL: System32\browser.dll
2012-07-08 21:38:29: File size: 0
2012-07-08 21:38:29: DLL File name: browser.dll
2012-07-08 21:38:29: Original File Name: browser.dll.mui
2012-07-08 21:38:29: Company:
2012-07-08 21:38:29: Mod/Cre/Acc time:
2012-07-08 21:38:29: ---------------------------------------------------------------------
2012-07-08 21:38:29: Found Service: bthserv
2012-07-08 21:38:29: Real Path: C:\windows\system32\bthserv.dll
2012-07-08 21:38:29: Display Name: @%SystemRoot%\System32\bthserv.dll,-101
2012-07-08 21:38:29: Description: @%SystemRoot%\System32\bthserv.dll,-102
2012-07-08 21:38:29: ServiceDLL: system32\bthserv.dll
2012-07-08 21:38:29: File size: 0
2012-07-08 21:38:29: DLL File name: bthserv.dll
2012-07-08 21:38:29: Original File Name: BTHSERV.DLL.MUI
2012-07-08 21:38:29: Company:
2012-07-08 21:38:29: Mod/Cre/Acc time:
2012-07-08 21:38:29: ---------------------------------------------------------------------
2012-07-08 21:38:29: Found Service: CertPropSvc
2012-07-08 21:38:29: Real Path: C:\windows\System32\certprop.dll
2012-07-08 21:38:29: Display Name: @%SystemRoot%\System32\certprop.dll,-11
2012-07-08 21:38:29: Description: @%SystemRoot%\System32\certprop.dll,-12
2012-07-08 21:38:29: ServiceDLL: System32\certprop.dll
2012-07-08 21:38:29: File size: 0
2012-07-08 21:38:29: DLL File name: certprop.dll
2012-07-08 21:38:29: Original File Name: certprop.dll.mui
2012-07-08 21:38:29: Company:
2012-07-08 21:38:29: Mod/Cre/Acc time:
2012-07-08 21:38:29: ---------------------------------------------------------------------
2012-07-08 21:38:29: Found Service: CryptSvc
2012-07-08 21:38:29: Real Path: C:\windows\system32\cryptsvc.dll
2012-07-08 21:38:29: Display Name: @%SystemRoot%\system32\cryptsvc.dll,-1001
2012-07-08 21:38:29: Description: @%SystemRoot%\system32\cryptsvc.dll,-1002
2012-07-08 21:38:29: ServiceDLL: system32\cryptsvc.dll
2012-07-08 21:38:29: File size: 140288
2012-07-08 21:38:29: DLL File name: cryptsvc.dll
2012-07-08 21:38:29: Original File Name: cryptsvc.dll.mui
2012-07-08 21:38:29: Company:
2012-07-08 21:38:29: Mod/Cre/Acc time: 20120424003642 20120613193227 20120613193227
2012-07-08 21:38:29: ---------------------------------------------------------------------
2012-07-08 21:38:29: Found Service: DcomLaunch
2012-07-08 21:38:29: Real Path: C:\windows\system32\rpcss.dll
2012-07-08 21:38:29: Display Name: @oleres.dll,-5012
2012-07-08 21:38:29: Description: @oleres.dll,-5013
2012-07-08 21:38:29: ServiceDLL: system32\rpcss.dll
2012-07-08 21:38:29: File size: 0
2012-07-08 21:38:29: DLL File name: rpcss.dll
2012-07-08 21:38:29: Original File Name: rpcss.dll
2012-07-08 21:38:29: Company:
2012-07-08 21:38:29: Mod/Cre/Acc time:
2012-07-08 21:38:30: ---------------------------------------------------------------------
2012-07-08 21:38:30: Found Service: defragsvc
2012-07-08 21:38:30: Real Path: C:\windows\System32\defragsvc.dll
2012-07-08 21:38:30: Display Name: @%SystemRoot%\system32\defragsvc.dll,-101
2012-07-08 21:38:30: Description: @%SystemRoot%\system32\defragsvc.dll,-102
2012-07-08 21:38:30: ServiceDLL: System32\defragsvc.dll
2012-07-08 21:38:30: File size: 0
2012-07-08 21:38:30: DLL File name: defragsvc.dll
2012-07-08 21:38:30: Original File Name: defragsvc.dll.mui
2012-07-08 21:38:30: Company:
2012-07-08 21:38:30: Mod/Cre/Acc time:
2012-07-08 21:38:30: ---------------------------------------------------------------------
2012-07-08 21:38:30: Found Service: Dhcp
2012-07-08 21:38:30: Real Path: C:\windows\system32\dhcpcore.dll
2012-07-08 21:38:30: Display Name: @%SystemRoot%\system32\dhcpcore.dll,-100
2012-07-08 21:38:30: Description: @%SystemRoot%\system32\dhcpcore.dll,-101
2012-07-08 21:38:30: ServiceDLL: system32\dhcpcore.dll
2012-07-08 21:38:30: File size: 254464
2012-07-08 21:38:30: DLL File name: dhcpcore.dll
2012-07-08 21:38:30: Original File Name: dhcpcore.dll.mui
2012-07-08 21:38:30: Company:
2012-07-08 21:38:30: Mod/Cre/Acc time: 20101120232409 20101120232409 20101120232409
2012-07-08 21:38:30: ---------------------------------------------------------------------
2012-07-08 21:38:30: Found Service: Dnscache
2012-07-08 21:38:30: Real Path: C:\windows\System32\dnsrslvr.dll
2012-07-08 21:38:30: Display Name: @%SystemRoot%\System32\dnsapi.dll,-101
2012-07-08 21:38:30: Description: @%SystemRoot%\System32\dnsapi.dll,-102
2012-07-08 21:38:30: ServiceDLL: System32\dnsrslvr.dll
2012-07-08 21:38:30: File size: 0
2012-07-08 21:38:30: DLL File name: dnsrslvr.dll
2012-07-08 21:38:30: Original File Name: dnsrslvr.dll.mui
2012-07-08 21:38:30: Company:
2012-07-08 21:38:31: Mod/Cre/Acc time:
2012-07-08 21:38:31: ---------------------------------------------------------------------
2012-07-08 21:38:31: Found Service: dot3svc
2012-07-08 21:38:31: Real Path: C:\windows\System32\dot3svc.dll
2012-07-08 21:38:31: Display Name: @%systemroot%\system32\dot3svc.dll,-1102
2012-07-08 21:38:31: Description: @%systemroot%\system32\dot3svc.dll,-1103
2012-07-08 21:38:31: ServiceDLL: System32\dot3svc.dll
2012-07-08 21:38:31: File size: 0
2012-07-08 21:38:31: DLL File name: dot3svc.dll
2012-07-08 21:38:31: Original File Name: dot3svc.dll.mui
2012-07-08 21:38:31: Company:
2012-07-08 21:38:31: Mod/Cre/Acc time:
2012-07-08 21:38:31: ---------------------------------------------------------------------
2012-07-08 21:38:31: Found Service: DPS
2012-07-08 21:38:31: Real Path: C:\windows\system32\dps.dll
2012-07-08 21:38:31: Display Name: @%systemroot%\system32\dps.dll,-500
2012-07-08 21:38:31: Description: @%systemroot%\system32\dps.dll,-501
2012-07-08 21:38:31: ServiceDLL: system32\dps.dll
2012-07-08 21:38:31: File size: 0
2012-07-08 21:38:31: DLL File name: dps.dll
2012-07-08 21:38:31: Original File Name: dps.dll.mui
2012-07-08 21:38:31: Company:
2012-07-08 21:38:31: Mod/Cre/Acc time:
2012-07-08 21:38:32: ---------------------------------------------------------------------
2012-07-08 21:38:32: Found Service: EapHost
2012-07-08 21:38:32: Real Path: C:\windows\System32\eapsvc.dll
2012-07-08 21:38:32: Display Name: @%systemroot%\system32\eapsvc.dll,-1
2012-07-08 21:38:33: Description: @%systemroot%\system32\eapsvc.dll,-2
2012-07-08 21:38:33: ServiceDLL: System32\eapsvc.dll
2012-07-08 21:38:33: File size: 0
2012-07-08 21:38:33: DLL File name: eapsvc.dll
2012-07-08 21:38:33: Original File Name: eapsvc.dll.mui
2012-07-08 21:38:33: Company:
2012-07-08 21:38:33: Mod/Cre/Acc time:
2012-07-08 21:38:33: ---------------------------------------------------------------------
2012-07-08 21:38:33: Found Service: EventSystem
2012-07-08 21:38:33: Real Path: C:\windows\system32\es.dll
2012-07-08 21:38:33: Display Name: @comres.dll,-2450
2012-07-08 21:38:33: Description: @comres.dll,-2451
2012-07-08 21:38:33: ServiceDLL: system32\es.dll
2012-07-08 21:38:33: File size: 271360
2012-07-08 21:38:33: DLL File name: es.dll
2012-07-08 21:38:33: Original File Name: ES.DLL
2012-07-08 21:38:33: Company:
2012-07-08 21:38:33: Mod/Cre/Acc time: 20090713211519 20090713194438 20090713194438
2012-07-08 21:38:33: ---------------------------------------------------------------------
2012-07-08 21:38:33: Found Service: fdPHost
2012-07-08 21:38:33: Real Path: C:\windows\system32\fdPHost.dll
2012-07-08 21:38:33: Display Name: @%systemroot%\system32\fdPHost.dll,-100
2012-07-08 21:38:33: Description: @%systemroot%\system32\fdPHost.dll,-101
2012-07-08 21:38:33: ServiceDLL: system32\fdPHost.dll
2012-07-08 21:38:33: File size: 0
2012-07-08 21:38:33: DLL File name: fdPHost.dll
2012-07-08 21:38:33: Original File Name: fdPHost.dll.mui
2012-07-08 21:38:33: Company:
2012-07-08 21:38:33: Mod/Cre/Acc time:
2012-07-08 21:38:33: ---------------------------------------------------------------------
2012-07-08 21:38:33: Found Service: FDResPub
2012-07-08 21:38:33: Real Path: C:\windows\system32\fdrespub.dll
2012-07-08 21:38:33: Display Name: @%systemroot%\system32\fdrespub.dll,-100
2012-07-08 21:38:33: Description: @%systemroot%\system32\fdrespub.dll,-101
2012-07-08 21:38:33: ServiceDLL: system32\fdrespub.dll
2012-07-08 21:38:33: File size: 0
2012-07-08 21:38:33: DLL File name: fdrespub.dll
2012-07-08 21:38:33: Original File Name: FDResPub.dll.mui
2012-07-08 21:38:33: Company:
2012-07-08 21:38:33: Mod/Cre/Acc time:
2012-07-08 21:38:33: !!!!!!!
2012-07-08 21:38:33: Found Service: FontCache
2012-07-08 21:38:33: Real Path: C:\windows\system32\FntCache.dll
2012-07-08 21:38:33: Display Name: @%systemroot%\system32\FntCache.dll,-100
2012-07-08 21:38:33: Description: @%systemroot%\system32\FntCache.dll,-101
2012-07-08 21:38:33: ServiceDLL: system32\FntCache.dll
2012-07-08 21:38:33: File size: 0
2012-07-08 21:38:33: DLL File name: FntCache.dll
2012-07-08 21:38:33: Original File Name: FontCacheService
2012-07-08 21:38:33: Company:
2012-07-08 21:38:33: Mod/Cre/Acc time:
2012-07-08 21:38:33: !!!!!!!!!
2012-07-08 21:38:34: ---------------------------------------------------------------------
2012-07-08 21:38:34: Found Service: gpsvc
2012-07-08 21:38:34: Real Path: C:\windows\System32\gpsvc.dll
2012-07-08 21:38:34: Display Name: @gpapi.dll,-112
2012-07-08 21:38:34: Description: @gpapi.dll,-113
2012-07-08 21:38:34: ServiceDLL: System32\gpsvc.dll
2012-07-08 21:38:34: File size: 0
2012-07-08 21:38:34: DLL File name: gpsvc.dll
2012-07-08 21:38:34: Original File Name: gpsvc.dll.mui
2012-07-08 21:38:34: Company:
2012-07-08 21:38:34: Mod/Cre/Acc time:
2012-07-08 21:38:34: ---------------------------------------------------------------------
2012-07-08 21:38:34: Found Service: hidserv
2012-07-08 21:38:34: Real Path: C:\windows\system32\hidserv.dll
2012-07-08 21:38:34: Display Name: @%SystemRoot%\System32\hidserv.dll,-101
2012-07-08 21:38:34: Description: @%SystemRoot%\System32\hidserv.dll,-102
2012-07-08 21:38:34: ServiceDLL: system32\hidserv.dll
2012-07-08 21:38:34: File size: 49152
2012-07-08 21:38:34: DLL File name: hidserv.dll
2012-07-08 21:38:34: Original File Name: HIDSERV.DLL.MUI
2012-07-08 21:38:34: Company:
2012-07-08 21:38:34: Mod/Cre/Acc time: 20090713211524 20090713195109 20090713195109
2012-07-08 21:38:34: ---------------------------------------------------------------------
2012-07-08 21:38:34: Found Service: hkmsvc
2012-07-08 21:38:34: Real Path: C:\windows\system32\kmsvc.dll
2012-07-08 21:38:34: Display Name: @%SystemRoot%\system32\kmsvc.dll,-6
2012-07-08 21:38:34: Description: @%SystemRoot%\system32\kmsvc.dll,-7
2012-07-08 21:38:34: ServiceDLL: system32\kmsvc.dll
2012-07-08 21:38:34: File size: 0
2012-07-08 21:38:34: DLL File name: kmsvc.dll
2012-07-08 21:38:34: Original File Name: KmSvc.DLL.MUI
2012-07-08 21:38:34: Company:
2012-07-08 21:38:34: Mod/Cre/Acc time:
2012-07-08 21:38:34: ---------------------------------------------------------------------
2012-07-08 21:38:34: Found Service: HomeGroupListener
2012-07-08 21:38:34: Real Path: C:\windows\system32\ListSvc.dll
2012-07-08 21:38:34: Display Name: @%SystemRoot%\System32\ListSvc.dll,-100
2012-07-08 21:38:34: Description: @%SystemRoot%\System32\ListSvc.dll,-101
2012-07-08 21:38:34: ServiceDLL: system32\ListSvc.dll
2012-07-08 21:38:34: File size: 0
2012-07-08 21:38:34: DLL File name: ListSvc.dll
2012-07-08 21:38:34: Original File Name: ListSvc.dll.mui
2012-07-08 21:38:34: Company:
2012-07-08 21:38:34: Mod/Cre/Acc time:
2012-07-08 21:38:34: ---------------------------------------------------------------------
2012-07-08 21:38:34: Found Service: HomeGroupProvider
2012-07-08 21:38:34: Real Path: C:\windows\system32\provsvc.dll
2012-07-08 21:38:34: Display Name: @%SystemRoot%\System32\provsvc.dll,-100
2012-07-08 21:38:34: Description: @%SystemRoot%\System32\provsvc.dll,-101
2012-07-08 21:38:34: ServiceDLL: system32\provsvc.dll
2012-07-08 21:38:34: File size: 165376
2012-07-08 21:38:34: DLL File name: provsvc.dll
2012-07-08 21:38:34: Original File Name: provsvc.dll.mui
2012-07-08 21:38:34: Company:
2012-07-08 21:38:34: Mod/Cre/Acc time: 20101120232510 20101120232510 20101120232510
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: IKEEXT
2012-07-08 21:38:35: Real Path: C:\windows\System32\ikeext.dll
2012-07-08 21:38:35: Display Name: @%SystemRoot%\system32\ikeext.dll,-501
2012-07-08 21:38:35: Description: @%SystemRoot%\system32\ikeext.dll,-502
2012-07-08 21:38:35: ServiceDLL: System32\ikeext.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: ikeext.dll
2012-07-08 21:38:35: Original File Name: IKEEXT.DLL.MUI
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: IPBusEnum
2012-07-08 21:38:35: Real Path: C:\windows\system32\ipbusenum.dll
2012-07-08 21:38:35: Display Name: @%systemroot%\system32\IPBusEnum.dll,-102
2012-07-08 21:38:35: Description: @%systemroot%\system32\IPBusEnum.dll,-103
2012-07-08 21:38:35: ServiceDLL: system32\ipbusenum.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: ipbusenum.dll
2012-07-08 21:38:35: Original File Name: IPBusEnum.dll.mui
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: iphlpsvc
2012-07-08 21:38:35: Real Path: C:\windows\System32\iphlpsvc.dll
2012-07-08 21:38:35: Display Name: @%SystemRoot%\system32\iphlpsvc.dll,-500
2012-07-08 21:38:35: Description: @%SystemRoot%\system32\iphlpsvc.dll,-501
2012-07-08 21:38:35: ServiceDLL: System32\iphlpsvc.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: iphlpsvc.dll
2012-07-08 21:38:35: Original File Name: iphlpsvc.dll.mui
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: KtmRm
2012-07-08 21:38:35: Real Path: C:\windows\system32\msdtckrm.dll
2012-07-08 21:38:35: Display Name: @comres.dll,-2946
2012-07-08 21:38:35: Description: @comres.dll,-2947
2012-07-08 21:38:35: ServiceDLL: system32\msdtckrm.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: msdtckrm.dll
2012-07-08 21:38:35: Original File Name: MSDTCKRM.DLL
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: LanmanServer
2012-07-08 21:38:35: Real Path: C:\windows\system32\srvsvc.dll
2012-07-08 21:38:35: Display Name: @%systemroot%\system32\srvsvc.dll,-100
2012-07-08 21:38:35: Description: @%systemroot%\system32\srvsvc.dll,-101
2012-07-08 21:38:35: ServiceDLL: system32\srvsvc.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: srvsvc.dll
2012-07-08 21:38:35: Original File Name: SRVSVC.DLL.MUI
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: LanmanWorkstation
2012-07-08 21:38:35: Real Path: C:\windows\System32\wkssvc.dll
2012-07-08 21:38:35: Display Name: @%systemroot%\system32\wkssvc.dll,-100
2012-07-08 21:38:35: Description: @%systemroot%\system32\wkssvc.dll,-101
2012-07-08 21:38:35: ServiceDLL: System32\wkssvc.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: wkssvc.dll
2012-07-08 21:38:35: Original File Name: WKSSVC.DLL.MUI
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: lltdsvc
2012-07-08 21:38:35: Real Path: C:\windows\System32\lltdsvc.dll
2012-07-08 21:38:35: Display Name: @%SystemRoot%\system32\lltdres.dll,-1
2012-07-08 21:38:35: Description: @%SystemRoot%\system32\lltdres.dll,-2
2012-07-08 21:38:35: ServiceDLL: System32\lltdsvc.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: lltdsvc.dll
2012-07-08 21:38:35: Original File Name: LLTDSVC.DLL
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: lmhosts
2012-07-08 21:38:35: Real Path: C:\windows\System32\lmhsvc.dll
2012-07-08 21:38:35: Display Name: @%SystemRoot%\system32\lmhsvc.dll,-101
2012-07-08 21:38:35: Description: @%SystemRoot%\system32\lmhsvc.dll,-102
2012-07-08 21:38:35: ServiceDLL: System32\lmhsvc.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: lmhsvc.dll
2012-07-08 21:38:35: Original File Name: lmhsvc.dll.mui
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: Mcx2Svc
2012-07-08 21:38:35: Real Path: C:\windows\system32\Mcx2Svc.dll
2012-07-08 21:38:35: Display Name: @%SystemRoot%\ehome\ehres.dll,-15501
2012-07-08 21:38:35: Description: @%SystemRoot%\ehome\ehres.dll,-15502
2012-07-08 21:38:35: ServiceDLL: system32\Mcx2Svc.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: Mcx2Svc.dll
2012-07-08 21:38:35: Original File Name: Mcx2Svc.dll
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:35: ---------------------------------------------------------------------
2012-07-08 21:38:35: Found Service: MMCSS
2012-07-08 21:38:35: Real Path: C:\windows\system32\mmcss.dll
2012-07-08 21:38:35: Display Name: @%systemroot%\system32\mmcss.dll,-100
2012-07-08 21:38:35: Description: @%systemroot%\system32\mmcss.dll,-101
2012-07-08 21:38:35: ServiceDLL: system32\mmcss.dll
2012-07-08 21:38:35: File size: 0
2012-07-08 21:38:35: DLL File name: mmcss.dll
2012-07-08 21:38:35: Original File Name: mmcss.dll.mui
2012-07-08 21:38:35: Company:
2012-07-08 21:38:35: Mod/Cre/Acc time:
2012-07-08 21:38:36: ---------------------------------------------------------------------
2012-07-08 21:38:36: Found Service: MpsSvc
2012-07-08 21:38:36: Real Path: C:\windows\system32\mpssvc.dll
2012-07-08 21:38:36: Display Name: @%SystemRoot%\system32\FirewallAPI.dll,-23090
2012-07-08 21:38:36: Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091
2012-07-08 21:38:36: ServiceDLL: system32\mpssvc.dll
2012-07-08 21:38:36: File size: 0
2012-07-08 21:38:36: DLL File name: mpssvc.dll
2012-07-08 21:38:36: Original File Name: mpssvc.dll.mui
2012-07-08 21:38:36: Company:
2012-07-08 21:38:36: Mod/Cre/Acc time:
2012-07-08 21:38:36: ---------------------------------------------------------------------
2012-07-08 21:38:36: Found Service: MSiSCSI
2012-07-08 21:38:36: Real Path: C:\windows\system32\iscsiexe.dll
2012-07-08 21:38:36: Display Name: @%SystemRoot%\system32\iscsidsc.dll,-5000
2012-07-08 21:38:36: Description: @%SystemRoot%\system32\iscsidsc.dll,-5001
2012-07-08 21:38:36: ServiceDLL: system32\iscsiexe.dll
2012-07-08 21:38:36: File size: 0
2012-07-08 21:38:36: DLL File name: iscsiexe.dll
2012-07-08 21:38:36: Original File Name: iscsiexe.exe.mui
2012-07-08 21:38:36: Company:
2012-07-08 21:38:36: Mod/Cre/Acc time:
2012-07-08 21:38:36: ---------------------------------------------------------------------
2012-07-08 21:38:36: Found Service: napagent
2012-07-08 21:38:36: Real Path: C:\windows\system32\qagentRT.dll
2012-07-08 21:38:36: Display Name: @%SystemRoot%\system32\qagentrt.dll,-6
2012-07-08 21:38:36: Description: @%SystemRoot%\system32\qagentrt.dll,-7
2012-07-08 21:38:36: ServiceDLL: system32\qagentRT.dll
2012-07-08 21:38:36: File size: 0
2012-07-08 21:38:36: DLL File name: qagentRT.dll
2012-07-08 21:38:36: Original File Name: QAgentRT.DLL.MUI
2012-07-08 21:38:36: Company:
2012-07-08 21:38:36: Mod/Cre/Acc time:
2012-07-08 21:38:36: ---------------------------------------------------------------------
2012-07-08 21:38:36: Found Service: Netman
2012-07-08 21:38:36: Real Path: C:\windows\System32\netman.dll
2012-07-08 21:38:36: Display Name: @%SystemRoot%\system32\netman.dll,-109
2012-07-08 21:38:36: Description: @%SystemRoot%\system32\netman.dll,-110
2012-07-08 21:38:36: ServiceDLL: System32\netman.dll
2012-07-08 21:38:36: File size: 0
2012-07-08 21:38:37: DLL File name: netman.dll
2012-07-08 21:38:37: Original File Name: netman.dll.mui
2012-07-08 21:38:37: Company:
2012-07-08 21:38:37: Mod/Cre/Acc time:
2012-07-08 21:38:37: ---------------------------------------------------------------------
2012-07-08 21:38:37: Found Service: netprofm
2012-07-08 21:38:37: Real Path: C:\windows\System32\netprofm.dll
2012-07-08 21:38:37: Display Name: @%SystemRoot%\system32\netprofm.dll,-202
2012-07-08 21:38:37: Description: @%SystemRoot%\system32\netprofm.dll,-203
2012-07-08 21:38:37: ServiceDLL: System32\netprofm.dll
2012-07-08 21:38:37: File size: 360448
2012-07-08 21:38:37: DLL File name: netprofm.dll
2012-07-08 21:38:37: Original File Name: netprofm.dll.mui
2012-07-08 21:38:37: Company:
2012-07-08 21:38:37: Mod/Cre/Acc time: 20090713211603 20090713195658 20090713195658
2012-07-08 21:38:37: ---------------------------------------------------------------------
2012-07-08 21:38:37: Found Service: NlaSvc
2012-07-08 21:38:37: Real Path: C:\windows\System32\nlasvc.dll
2012-07-08 21:38:37: Display Name: @%SystemRoot%\System32\nlasvc.dll,-1
2012-07-08 21:38:37: Description: @%SystemRoot%\System32\nlasvc.dll,-2
2012-07-08 21:38:37: ServiceDLL: System32\nlasvc.dll
2012-07-08 21:38:37: File size: 0
2012-07-08 21:38:37: DLL File name: nlasvc.dll
2012-07-08 21:38:37: Original File Name: nlasvc.dll.mui
2012-07-08 21:38:37: Company:
2012-07-08 21:38:37: Mod/Cre/Acc time:
2012-07-08 21:38:37: ---------------------------------------------------------------------
2012-07-08 21:38:38: Found Service: nsi
2012-07-08 21:38:38: Real Path: C:\windows\system32\nsisvc.dll
2012-07-08 21:38:38: Display Name: @%SystemRoot%\system32\nsisvc.dll,-200
2012-07-08 21:38:38: Description: @%SystemRoot%\system32\nsisvc.dll,-201
2012-07-08 21:38:38: ServiceDLL: system32\nsisvc.dll
2012-07-08 21:38:38: File size: 0
2012-07-08 21:38:38: DLL File name: nsisvc.dll
2012-07-08 21:38:38: Original File Name: nsisvc.dll.mui
2012-07-08 21:38:38: Company:
2012-07-08 21:38:38: Mod/Cre/Acc time:
2012-07-08 21:38:38: ---------------------------------------------------------------------
2012-07-08 21:38:38: Found Service: p2pimsvc
2012-07-08 21:38:38: Real Path: C:\windows\system32\pnrpsvc.dll
2012-07-08 21:38:38: Display Name: @%SystemRoot%\system32\pnrpsvc.dll,-8004
2012-07-08 21:38:38: Description: @%SystemRoot%\system32\pnrpsvc.dll,-8005
2012-07-08 21:38:38: ServiceDLL: system32\pnrpsvc.dll
2012-07-08 21:38:38: File size: 0
2012-07-08 21:38:38: DLL File name: pnrpsvc.dll
2012-07-08 21:38:38: Original File Name: pnrpsvc.dll.mui
2012-07-08 21:38:38: Company:
2012-07-08 21:38:38: Mod/Cre/Acc time:
2012-07-08 21:38:38: ---------------------------------------------------------------------
2012-07-08 21:38:38: Found Service: p2psvc
2012-07-08 21:38:38: Real Path: C:\windows\system32\p2psvc.dll
2012-07-08 21:38:38: Display Name: @%SystemRoot%\system32\p2psvc.dll,-8006
2012-07-08 21:38:38: Description: @%SystemRoot%\system32\p2psvc.dll,-8007
2012-07-08 21:38:38: ServiceDLL: system32\p2psvc.dll
2012-07-08 21:38:38: File size: 0
2012-07-08 21:38:38: DLL File name: p2psvc.dll
2012-07-08 21:38:38: Original File Name: p2psvc.dll.mui
2012-07-08 21:38:38: Company:
2012-07-08 21:38:38: Mod/Cre/Acc time:
2012-07-08 21:38:38: !!!!!!!
2012-07-08 21:38:38: Found Service: PcaSvc
2012-07-08 21:38:38: Real Path: C:\windows\System32\pcasvc.dll
2012-07-08 21:38:38: Display Name: @%SystemRoot%\system32\pcasvc.dll,-1
2012-07-08 21:38:38: Description: @%SystemRoot%\system32\pcasvc.dll,-2
2012-07-08 21:38:38: ServiceDLL: System32\pcasvc.dll
2012-07-08 21:38:38: File size: 0
2012-07-08 21:38:38: DLL File name: pcasvc.dll
2012-07-08 21:38:38: Original File Name:
2012-07-08 21:38:38: Company:
2012-07-08 21:38:38: Mod/Cre/Acc time:
2012-07-08 21:38:38: !!!!!!!!!
2012-07-08 21:38:39: ---------------------------------------------------------------------
2012-07-08 21:38:39: Found Service: pla
2012-07-08 21:38:39: Real Path: C:\windows\system32\pla.dll
2012-07-08 21:38:39: Display Name: @%systemroot%\system32\pla.dll,-500
2012-07-08 21:38:39: Description: @%systemroot%\system32\pla.dll,-501
2012-07-08 21:38:39: ServiceDLL: system32\pla.dll
2012-07-08 21:38:39: File size: 1508864
2012-07-08 21:38:39: DLL File name: pla.dll
2012-07-08 21:38:39: Original File Name: PLA.DLL.MUI
2012-07-08 21:38:39: Company:
2012-07-08 21:38:39: Mod/Cre/Acc time: 20101120232408 20101120232408 20101120232408
2012-07-08 21:38:39: ---------------------------------------------------------------------
2012-07-08 21:38:39: Found Service: PlugPlay
2012-07-08 21:38:39: Real Path: C:\windows\system32\umpnpmgr.dll
2012-07-08 21:38:39: Display Name: @%SystemRoot%\system32\umpnpmgr.dll,-100
2012-07-08 21:38:39: Description: @%SystemRoot%\system32\umpnpmgr.dll,-101
2012-07-08 21:38:39: ServiceDLL: system32\umpnpmgr.dll
2012-07-08 21:38:39: File size: 0
2012-07-08 21:38:39: DLL File name: umpnpmgr.dll
2012-07-08 21:38:39: Original File Name: Umpnpmgr.DLL.MUI
2012-07-08 21:38:39: Company:
2012-07-08 21:38:39: Mod/Cre/Acc time:
2012-07-08 21:38:39: ---------------------------------------------------------------------
2012-07-08 21:38:39: Found Service: PNRPAutoReg
2012-07-08 21:38:39: Real Path: C:\windows\system32\pnrpauto.dll
2012-07-08 21:38:39: Display Name: @%SystemRoot%\system32\pnrpauto.dll,-8002
2012-07-08 21:38:39: Description: @%SystemRoot%\system32\pnrpauto.dll,-8003
2012-07-08 21:38:39: ServiceDLL: system32\pnrpauto.dll
2012-07-08 21:38:39: File size: 0
2012-07-08 21:38:39: DLL File name: pnrpauto.dll
2012-07-08 21:38:39: Original File Name: pnrpauto.dll.mui
2012-07-08 21:38:39: Company:
2012-07-08 21:38:39: Mod/Cre/Acc time:
2012-07-08 21:38:39: ---------------------------------------------------------------------
2012-07-08 21:38:39: Found Service: PNRPsvc
2012-07-08 21:38:39: Real Path: C:\windows\system32\pnrpsvc.dll
2012-07-08 21:38:39: Display Name: @%SystemRoot%\system32\pnrpsvc.dll,-8000
2012-07-08 21:38:39: Description: @%SystemRoot%\system32\pnrpsvc.dll,-8001
2012-07-08 21:38:39: ServiceDLL: system32\pnrpsvc.dll
2012-07-08 21:38:39: File size: 0
2012-07-08 21:38:39: DLL File name: pnrpsvc.dll
2012-07-08 21:38:39: Original File Name: pnrpsvc.dll.mui
2012-07-08 21:38:39: Company:
2012-07-08 21:38:39: Mod/Cre/Acc time:
2012-07-08 21:38:39: ---------------------------------------------------------------------
2012-07-08 21:38:39: Found Service: PolicyAgent
2012-07-08 21:38:39: Real Path: C:\windows\System32\ipsecsvc.dll
2012-07-08 21:38:39: Display Name: @%SystemRoot%\System32\polstore.dll,-5010
2012-07-08 21:38:39: Description: @%SystemRoot%\system32\polstore.dll,-5011
2012-07-08 21:38:39: ServiceDLL: System32\ipsecsvc.dll
2012-07-08 21:38:39: File size: 0
2012-07-08 21:38:39: DLL File name: ipsecsvc.dll
2012-07-08 21:38:39: Original File Name: ipsecsvc.dll.mui
2012-07-08 21:38:39: Company:
2012-07-08 21:38:39: Mod/Cre/Acc time:
2012-07-08 21:38:39: ---------------------------------------------------------------------
2012-07-08 21:38:39: Found Service: Power
2012-07-08 21:38:39: Real Path: C:\windows\system32\umpo.dll
2012-07-08 21:38:39: Display Name: @%SystemRoot%\system32\umpo.dll,-100
2012-07-08 21:38:39: Description: @%SystemRoot%\system32\umpo.dll,-101
2012-07-08 21:38:39: ServiceDLL: system32\umpo.dll
2012-07-08 21:38:39: File size: 0
2012-07-08 21:38:39: DLL File name: umpo.dll
2012-07-08 21:38:39: Original File Name: Umpo.DLL.MUI
2012-07-08 21:38:39: Company:
2012-07-08 21:38:39: Mod/Cre/Acc time:
2012-07-08 21:38:39: ---------------------------------------------------------------------
2012-07-08 21:38:39: Found Service: ProfSvc
2012-07-08 21:38:39: Real Path: C:\windows\system32\profsvc.dll
2012-07-08 21:38:39: Display Name: @%systemroot%\system32\profsvc.dll,-300
2012-07-08 21:38:39: Description: @%systemroot%\system32\profsvc.dll,-301
2012-07-08 21:38:39: ServiceDLL: system32\profsvc.dll
2012-07-08 21:38:39: File size: 0
2012-07-08 21:38:39: DLL File name: profsvc.dll
2012-07-08 21:38:39: Original File Name: ProfSvc.dll.mui
2012-07-08 21:38:39: Company:
2012-07-08 21:38:39: Mod/Cre/Acc time:
2012-07-08 21:38:40: ---------------------------------------------------------------------
2012-07-08 21:38:41: Found Service: QWAVE
2012-07-08 21:38:41: Real Path: C:\windows\system32\qwave.dll
2012-07-08 21:38:41: Display Name: @%SystemRoot%\system32\qwave.dll,-1
2012-07-08 21:38:41: Description: @%SystemRoot%\system32\qwave.dll,-2
2012-07-08 21:38:41: ServiceDLL: system32\qwave.dll
2012-07-08 21:38:41: File size: 210944
2012-07-08 21:38:41: DLL File name: qwave.dll
2012-07-08 21:38:41: Original File Name: qwave.dll.mui
2012-07-08 21:38:41: Company:
2012-07-08 21:38:41: Mod/Cre/Acc time: 20090713211612 20090713195415 20090713195415
2012-07-08 21:38:41: ---------------------------------------------------------------------
2012-07-08 21:38:41: Found Service: RasAuto
2012-07-08 21:38:41: Real Path: C:\windows\System32\rasauto.dll
2012-07-08 21:38:41: Display Name: @%Systemroot%\system32\rasauto.dll,-200
2012-07-08 21:38:41: Description: @%Systemroot%\system32\rasauto.dll,-201
2012-07-08 21:38:41: ServiceDLL: System32\rasauto.dll
2012-07-08 21:38:41: File size: 0
2012-07-08 21:38:41: DLL File name: rasauto.dll
2012-07-08 21:38:41: Original File Name: rasauto.dll.mui
2012-07-08 21:38:41: Company:
2012-07-08 21:38:41: Mod/Cre/Acc time:
2012-07-08 21:38:42: ---------------------------------------------------------------------
2012-07-08 21:38:42: Found Service: RasMan
2012-07-08 21:38:42: Real Path: C:\windows\System32\rasmans.dll
2012-07-08 21:38:42: Display Name: @%Systemroot%\system32\rasmans.dll,-200
2012-07-08 21:38:42: Description: @%Systemroot%\system32\rasmans.dll,-201
2012-07-08 21:38:42: ServiceDLL: System32\rasmans.dll
2012-07-08 21:38:42: File size: 0
2012-07-08 21:38:42: DLL File name: rasmans.dll
2012-07-08 21:38:42: Original File Name: Rasmans.dll.mui
2012-07-08 21:38:42: Company:
2012-07-08 21:38:42: Mod/Cre/Acc time:
2012-07-08 21:38:42: ---------------------------------------------------------------------
2012-07-08 21:38:42: Found Service: RemoteAccess
2012-07-08 21:38:42: Real Path: C:\windows\System32\mprdim.dll
2012-07-08 21:38:42: Display Name: @%Systemroot%\system32\mprdim.dll,-200
2012-07-08 21:38:42: Description: @%Systemroot%\system32\mprdim.dll,-201
2012-07-08 21:38:42: ServiceDLL: System32\mprdim.dll
2012-07-08 21:38:42: File size: 75264
2012-07-08 21:38:42: DLL File name: mprdim.dll
2012-07-08 21:38:42: Original File Name: MPRDIM.DLL.MUI
2012-07-08 21:38:42: Company:
2012-07-08 21:38:42: Mod/Cre/Acc time: 20090713211541 20090713195426 20090713195426
2012-07-08 21:38:42: ---------------------------------------------------------------------
2012-07-08 21:38:42: Found Service: RemoteRegistry
2012-07-08 21:38:42: Real Path: C:\windows\system32\regsvc.dll
2012-07-08 21:38:42: Display Name: @regsvc.dll,-1
2012-07-08 21:38:42: Description: @regsvc.dll,-2
2012-07-08 21:38:42: ServiceDLL: system32\regsvc.dll
2012-07-08 21:38:42: File size: 0
2012-07-08 21:38:42: DLL File name: regsvc.dll
2012-07-08 21:38:42: Original File Name: REGSVC.DLL.MUI
2012-07-08 21:38:42: Company:
2012-07-08 21:38:42: Mod/Cre/Acc time:
2012-07-08 21:38:42: ---------------------------------------------------------------------
2012-07-08 21:38:42: Found Service: RpcEptMapper
2012-07-08 21:38:42: Real Path: C:\windows\System32\RpcEpMap.dll
2012-07-08 21:38:42: Display Name: @%windir%\system32\RpcEpMap.dll,-1001
2012-07-08 21:38:42: Description: @%windir%\system32\RpcEpMap.dll,-1002
2012-07-08 21:38:42: ServiceDLL: System32\RpcEpMap.dll
2012-07-08 21:38:42: File size: 0
2012-07-08 21:38:42: DLL File name: RpcEpMap.dll
2012-07-08 21:38:42: Original File Name: RpcEpMap.dll.mui
2012-07-08 21:38:42: Company:
2012-07-08 21:38:42: Mod/Cre/Acc time:
2012-07-08 21:38:42: ---------------------------------------------------------------------
2012-07-08 21:38:42: Found Service: RpcSs
2012-07-08 21:38:42: Real Path: C:\windows\system32\rpcss.dll
2012-07-08 21:38:42: Display Name: @oleres.dll,-5010
2012-07-08 21:38:42: Description: @oleres.dll,-5011
2012-07-08 21:38:42: ServiceDLL: system32\rpcss.dll
2012-07-08 21:38:42: File size: 0
2012-07-08 21:38:42: DLL File name: rpcss.dll
2012-07-08 21:38:42: Original File Name: rpcss.dll
2012-07-08 21:38:42: Company:
2012-07-08 21:38:42: Mod/Cre/Acc time:
2012-07-08 21:38:43: ---------------------------------------------------------------------
2012-07-08 21:38:43: Found Service: SCardSvr
2012-07-08 21:38:43: Real Path: C:\windows\System32\SCardSvr.dll
2012-07-08 21:38:43: Display Name: @%SystemRoot%\System32\SCardSvr.dll,-1
2012-07-08 21:38:43: Description: @%SystemRoot%\System32\SCardSvr.dll,-5
2012-07-08 21:38:43: ServiceDLL: System32\SCardSvr.dll
2012-07-08 21:38:43: File size: 0
2012-07-08 21:38:43: DLL File name: SCardSvr.dll
2012-07-08 21:38:43: Original File Name: SCardSvr.exe.mui
2012-07-08 21:38:43: Company:
2012-07-08 21:38:43: Mod/Cre/Acc time:
2012-07-08 21:38:43: ---------------------------------------------------------------------
2012-07-08 21:38:43: Found Service: Schedule
2012-07-08 21:38:43: Real Path: C:\windows\system32\schedsvc.dll
2012-07-08 21:38:43: Display Name: @%SystemRoot%\system32\schedsvc.dll,-100
2012-07-08 21:38:43: Description: @%SystemRoot%\system32\schedsvc.dll,-101
2012-07-08 21:38:43: ServiceDLL: system32\schedsvc.dll
2012-07-08 21:38:43: File size: 0
2012-07-08 21:38:43: DLL File name: schedsvc.dll
2012-07-08 21:38:43: Original File Name: schedsvc.dll.mui
2012-07-08 21:38:43: Company:
2012-07-08 21:38:43: Mod/Cre/Acc time:
2012-07-08 21:38:43: ---------------------------------------------------------------------
2012-07-08 21:38:43: Found Service: SCPolicySvc
2012-07-08 21:38:43: Real Path: C:\windows\System32\certprop.dll
2012-07-08 21:38:43: Display Name: @%SystemRoot%\System32\certprop.dll,-13
2012-07-08 21:38:43: Description: @%SystemRoot%\System32\certprop.dll,-14
2012-07-08 21:38:43: ServiceDLL: System32\certprop.dll
2012-07-08 21:38:43: File size: 0
2012-07-08 21:38:43: DLL File name: certprop.dll
2012-07-08 21:38:43: Original File Name: certprop.dll.mui
2012-07-08 21:38:43: Company:
2012-07-08 21:38:43: Mod/Cre/Acc time:
2012-07-08 21:38:43: ---------------------------------------------------------------------
2012-07-08 21:38:43: Found Service: SDRSVC
2012-07-08 21:38:43: Real Path: C:\windows\System32\SDRSVC.dll
2012-07-08 21:38:43: Display Name: @%SystemRoot%\system32\sdrsvc.dll,-107
2012-07-08 21:38:43: Description: @%SystemRoot%\system32\sdrsvc.dll,-102
2012-07-08 21:38:43: ServiceDLL: System32\SDRSVC.dll
2012-07-08 21:38:43: File size: 0
2012-07-08 21:38:43: DLL File name: SDRSVC.dll
2012-07-08 21:38:43: Original File Name: SDRSVC.DLL.MUI
2012-07-08 21:38:43: Company:
2012-07-08 21:38:43: Mod/Cre/Acc time:
2012-07-08 21:38:43: ---------------------------------------------------------------------
2012-07-08 21:38:43: Found Service: seclogon
2012-07-08 21:38:43: Real Path: C:\windows\system32\seclogon.dll
2012-07-08 21:38:43: Display Name: @%SystemRoot%\system32\seclogon.dll,-7001
2012-07-08 21:38:43: Description: @%SystemRoot%\system32\seclogon.dll,-7000
2012-07-08 21:38:43: ServiceDLL: system32\seclogon.dll
2012-07-08 21:38:43: File size: 0
2012-07-08 21:38:43: DLL File name: seclogon.dll
2012-07-08 21:38:43: Original File Name: SECLOGON.EXE.MUI
2012-07-08 21:38:43: Company:
2012-07-08 21:38:43: Mod/Cre/Acc time:
2012-07-08 21:38:43: ---------------------------------------------------------------------
2012-07-08 21:38:43: Found Service: SENS
2012-07-08 21:38:43: Real Path: C:\windows\System32\sens.dll
2012-07-08 21:38:43: Display Name: @%SystemRoot%\system32\Sens.dll,-200
2012-07-08 21:38:43: Description: @%SystemRoot%\system32\Sens.dll,-201
2012-07-08 21:38:43: ServiceDLL: System32\sens.dll
2012-07-08 21:38:43: File size: 49664
2012-07-08 21:38:43: DLL File name: sens.dll
2012-07-08 21:38:43: Original File Name: sens.dll.mui
2012-07-08 21:38:43: Company:
2012-07-08 21:38:43: Mod/Cre/Acc time: 20090713211613 20090713192158 20090713192158
2012-07-08 21:38:44: ---------------------------------------------------------------------
2012-07-08 21:38:44: Found Service: SensrSvc
2012-07-08 21:38:44: Real Path: C:\windows\system32\sensrsvc.dll
2012-07-08 21:38:44: Display Name: @%SystemRoot%\System32\sensrsvc.dll,-1000
2012-07-08 21:38:44: Description: @%SystemRoot%\System32\sensrsvc.dll,-1001
2012-07-08 21:38:44: ServiceDLL: system32\sensrsvc.dll
2012-07-08 21:38:44: File size: 0
2012-07-08 21:38:44: DLL File name: sensrsvc.dll
2012-07-08 21:38:44: Original File Name: sensrsvc.dll.mui
2012-07-08 21:38:44: Company:
2012-07-08 21:38:44: Mod/Cre/Acc time:
2012-07-08 21:38:44: ---------------------------------------------------------------------
2012-07-08 21:38:44: Found Service: SessionEnv
2012-07-08 21:38:44: Real Path: C:\windows\system32\sessenv.dll
2012-07-08 21:38:44: Display Name: @%SystemRoot%\System32\SessEnv.dll,-1026
2012-07-08 21:38:44: Description: @%SystemRoot%\System32\SessEnv.dll,-1027
2012-07-08 21:38:44: ServiceDLL: system32\sessenv.dll
2012-07-08 21:38:44: File size: 113664
2012-07-08 21:38:44: DLL File name: sessenv.dll
2012-07-08 21:38:44: Original File Name: SessEnv.DLL.MUI
2012-07-08 21:38:44: Company:
2012-07-08 21:38:44: Mod/Cre/Acc time: 20101120232355 20101120232355 20101120232355
2012-07-08 21:38:44: ---------------------------------------------------------------------
2012-07-08 21:38:44: Found Service: SharedAccess
2012-07-08 21:38:44: Real Path: C:\windows\System32\ipnathlp.dll
2012-07-08 21:38:44: Display Name: @%SystemRoot%\system32\ipnathlp.dll,-106
2012-07-08 21:38:44: Description: @%SystemRoot%\system32\ipnathlp.dll,-107
2012-07-08 21:38:44: ServiceDLL: System32\ipnathlp.dll
2012-07-08 21:38:44: File size: 0
2012-07-08 21:38:44: DLL File name: ipnathlp.dll
2012-07-08 21:38:44: Original File Name: IPNATHLP.DLL.MUI
2012-07-08 21:38:44: Company:
2012-07-08 21:38:44: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: ShellHWDetection
2012-07-08 21:38:45: Real Path: C:\windows\System32\shsvcs.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\System32\shsvcs.dll,-12288
2012-07-08 21:38:45: Description: @%SystemRoot%\System32\shsvcs.dll,-12289
2012-07-08 21:38:45: ServiceDLL: System32\shsvcs.dll
2012-07-08 21:38:45: File size: 328192
2012-07-08 21:38:45: DLL File name: shsvcs.dll
2012-07-08 21:38:45: Original File Name: SHSVCS.DLL.MUI
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time: 20101120232403 20101120232403 20101120232403
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: sppuinotify
2012-07-08 21:38:45: Real Path: C:\windows\system32\sppuinotify.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\sppuinotify.dll,-103
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\sppuinotify.dll,-102
2012-07-08 21:38:45: ServiceDLL: system32\sppuinotify.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: sppuinotify.dll
2012-07-08 21:38:45: Original File Name: sppuinotify.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: SSDPSRV
2012-07-08 21:38:45: Real Path: C:\windows\System32\ssdpsrv.dll
2012-07-08 21:38:45: Display Name: @%systemroot%\system32\ssdpsrv.dll,-100
2012-07-08 21:38:45: Description: @%systemroot%\system32\ssdpsrv.dll,-101
2012-07-08 21:38:45: ServiceDLL: System32\ssdpsrv.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: ssdpsrv.dll
2012-07-08 21:38:45: Original File Name: ssdpsrv.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: SstpSvc
2012-07-08 21:38:45: Real Path: C:\windows\system32\sstpsvc.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\sstpsvc.dll,-200
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\sstpsvc.dll,-201
2012-07-08 21:38:45: ServiceDLL: system32\sstpsvc.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: sstpsvc.dll
2012-07-08 21:38:45: Original File Name: sstpsvc.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: stisvc
2012-07-08 21:38:45: Real Path: C:\windows\System32\wiaservc.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\wiaservc.dll,-9
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\wiaservc.dll,-10
2012-07-08 21:38:45: ServiceDLL: System32\wiaservc.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: wiaservc.dll
2012-07-08 21:38:45: Original File Name: WIASERVC.DLL.MUI
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: swprv
2012-07-08 21:38:45: Real Path: C:\windows\System32\swprv.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\System32\swprv.dll,-103
2012-07-08 21:38:45: Description: @%SystemRoot%\System32\swprv.dll,-102
2012-07-08 21:38:45: ServiceDLL: System32\swprv.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: swprv.dll
2012-07-08 21:38:45: Original File Name: SWPRV.DLL.MUI
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: SysMain
2012-07-08 21:38:45: Real Path: C:\windows\system32\sysmain.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\sysmain.dll,-1000
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\sysmain.dll,-1001
2012-07-08 21:38:45: ServiceDLL: system32\sysmain.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: sysmain.dll
2012-07-08 21:38:45: Original File Name: sysmain.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: TabletInputService
2012-07-08 21:38:45: Real Path: C:\windows\System32\TabSvc.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\TabSvc.dll,-100
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\TabSvc.dll,-101
2012-07-08 21:38:45: ServiceDLL: System32\TabSvc.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: TabSvc.dll
2012-07-08 21:38:45: Original File Name: TabSvc.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: TapiSrv
2012-07-08 21:38:45: Real Path: C:\windows\System32\tapisrv.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\tapisrv.dll,-10100
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\tapisrv.dll,-10101
2012-07-08 21:38:45: ServiceDLL: System32\tapisrv.dll
2012-07-08 21:38:45: File size: 242176
2012-07-08 21:38:45: DLL File name: tapisrv.dll
2012-07-08 21:38:45: Original File Name: TAPISRV.EXE.MUI
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time: 20101120232400 20101120232400 20101120232400
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: TBS
2012-07-08 21:38:45: Real Path: C:\windows\System32\tbssvc.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\tbssvc.dll,-100
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\tbssvc.dll,-101
2012-07-08 21:38:45: ServiceDLL: System32\tbssvc.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: tbssvc.dll
2012-07-08 21:38:45: Original File Name: TBSSVC.DLL.MUI
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: TermService
2012-07-08 21:38:45: Real Path: C:\windows\System32\termsrv.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\System32\termsrv.dll,-268
2012-07-08 21:38:45: Description: @%SystemRoot%\System32\termsrv.dll,-267
2012-07-08 21:38:45: ServiceDLL: System32\termsrv.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: termsrv.dll
2012-07-08 21:38:45: Original File Name: termsrv.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: Themes
2012-07-08 21:38:45: Real Path: C:\windows\system32\themeservice.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\System32\themeservice.dll,-8192
2012-07-08 21:38:45: Description: @%SystemRoot%\System32\themeservice.dll,-8193
2012-07-08 21:38:45: ServiceDLL: system32\themeservice.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: themeservice.dll
2012-07-08 21:38:45: Original File Name: THEMESERVICE.DLL.MUI
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: THREADORDER
2012-07-08 21:38:45: Real Path: C:\windows\system32\mmcss.dll
2012-07-08 21:38:45: Display Name: @%systemroot%\system32\mmcss.dll,-102
2012-07-08 21:38:45: Description: @%systemroot%\system32\mmcss.dll,-103
2012-07-08 21:38:45: ServiceDLL: system32\mmcss.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: mmcss.dll
2012-07-08 21:38:45: Original File Name: mmcss.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: TrkWks
2012-07-08 21:38:45: Real Path: C:\windows\System32\trkwks.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\trkwks.dll,-1
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\trkwks.dll,-2
2012-07-08 21:38:45: ServiceDLL: System32\trkwks.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: trkwks.dll
2012-07-08 21:38:45: Original File Name: trkwks.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: !!!!!!!
2012-07-08 21:38:45: Found Service: upnphost
2012-07-08 21:38:45: Real Path: C:\windows\System32\upnphost.dll
2012-07-08 21:38:45: Display Name: @%systemroot%\system32\upnphost.dll,-213
2012-07-08 21:38:45: Description: @%systemroot%\system32\upnphost.dll,-214
2012-07-08 21:38:45: ServiceDLL: System32\upnphost.dll
2012-07-08 21:38:45: File size: 266752
2012-07-08 21:38:45: DLL File name: upnphost.dll
2012-07-08 21:38:45: Original File Name: unpnhost.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time: 20090713211617 20090713195541 20090713195541
2012-07-08 21:38:45: !!!!!!!!!
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: UxSms
2012-07-08 21:38:45: Real Path: C:\windows\System32\uxsms.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\dwm.exe,-2000
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\dwm.exe,-2001
2012-07-08 21:38:45: ServiceDLL: System32\uxsms.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: uxsms.dll
2012-07-08 21:38:45: Original File Name: UxSms.dll
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: W32Time
2012-07-08 21:38:45: Real Path: C:\windows\system32\w32time.dll
2012-07-08 21:38:45: Display Name: Windows Time
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\w32time.dll,-201
2012-07-08 21:38:45: ServiceDLL: system32\w32time.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: w32time.dll
2012-07-08 21:38:45: Original File Name: w32time.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: WbioSrvc
2012-07-08 21:38:45: Real Path: C:\windows\System32\wbiosrvc.dll
2012-07-08 21:38:45: Display Name: @%systemroot%\system32\wbiosrvc.dll,-100
2012-07-08 21:38:45: Description: @%systemroot%\system32\wbiosrvc.dll,-101
2012-07-08 21:38:45: ServiceDLL: System32\wbiosrvc.dll
2012-07-08 21:38:45: File size: 0
2012-07-08 21:38:45: DLL File name: wbiosrvc.dll
2012-07-08 21:38:45: Original File Name: wbiosrvc.dll.mui
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time:
2012-07-08 21:38:45: ---------------------------------------------------------------------
2012-07-08 21:38:45: Found Service: wcncsvc
2012-07-08 21:38:45: Real Path: C:\windows\System32\wcncsvc.dll
2012-07-08 21:38:45: Display Name: @%SystemRoot%\system32\wcncsvc.dll,-3
2012-07-08 21:38:45: Description: @%SystemRoot%\system32\wcncsvc.dll,-4
2012-07-08 21:38:45: ServiceDLL: System32\wcncsvc.dll
2012-07-08 21:38:45: File size: 276992
2012-07-08 21:38:45: DLL File name: wcncsvc.dll
2012-07-08 21:38:45: Original File Name: WCNCSVC.DLL.MUI
2012-07-08 21:38:45: Company:
2012-07-08 21:38:45: Mod/Cre/Acc time: 20101120232449 20101120232449 20101120232449
2012-07-08 21:38:46: ---------------------------------------------------------------------
2012-07-08 21:38:46: Found Service: WcsPlugInService
2012-07-08 21:38:46: Real Path: C:\windows\System32\WcsPlugInService.dll
2012-07-08 21:38:46: Display Name: @%SystemRoot%\system32\WcsPlugInService.dll,-200
2012-07-08 21:38:46: Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201
2012-07-08 21:38:46: ServiceDLL: System32\WcsPlugInService.dll
2012-07-08 21:38:46: File size: 32768
2012-07-08 21:38:46: DLL File name: WcsPlugInService.dll
2012-07-08 21:38:46: Original File Name: WcsPlugInService.DLL.MUI
2012-07-08 21:38:46: Company:
2012-07-08 21:38:46: Mod/Cre/Acc time: 20090713211618 20090713192513 20090713192513
2012-07-08 21:38:46: ---------------------------------------------------------------------
2012-07-08 21:38:46: Found Service: WdiServiceHost
2012-07-08 21:38:46: Real Path: C:\windows\system32\wdi.dll
2012-07-08 21:38:46: Display Name: @%systemroot%\system32\wdi.dll,-502
2012-07-08 21:38:46: Description: @%systemroot%\system32\wdi.dll,-503
2012-07-08 21:38:46: ServiceDLL: system32\wdi.dll
2012-07-08 21:38:46: File size: 76288
2012-07-08 21:38:46: DLL File name: wdi.dll
2012-07-08 21:38:46: Original File Name: wdi.dll.mui
2012-07-08 21:38:46: Company:
2012-07-08 21:38:46: Mod/Cre/Acc time: 20090713211618 20090713191947 20090713191947
2012-07-08 21:38:46: ---------------------------------------------------------------------
2012-07-08 21:38:46: Found Service: WdiSystemHost
2012-07-08 21:38:46: Real Path: C:\windows\system32\wdi.dll
2012-07-08 21:38:46: Display Name: @%systemroot%\system32\wdi.dll,-500
2012-07-08 21:38:46: Description: @%systemroot%\system32\wdi.dll,-501
2012-07-08 21:38:46: ServiceDLL: system32\wdi.dll
2012-07-08 21:38:46: File size: 76288
2012-07-08 21:38:46: DLL File name: wdi.dll
2012-07-08 21:38:46: Original File Name: wdi.dll.mui
2012-07-08 21:38:46: Company:
2012-07-08 21:38:46: Mod/Cre/Acc time: 20090713211618 20090713191947 20090713191947
2012-07-08 21:38:46: !!!!!!!
2012-07-08 21:38:46: Found Service: WebClient
2012-07-08 21:38:46: Real Path: C:\windows\System32\webclnt.dll
2012-07-08 21:38:46: Display Name: @%systemroot%\system32\webclnt.dll,-100
2012-07-08 21:38:46: Description: @%systemroot%\system32\webclnt.dll,-101
2012-07-08 21:38:46: ServiceDLL: System32\webclnt.dll
2012-07-08 21:38:46: File size: 204800
2012-07-08 21:38:46: DLL File name: webclnt.dll
2012-07-08 21:38:46: Original File Name: davsvc.dll.mui
2012-07-08 21:38:46: Company:
2012-07-08 21:38:46: Mod/Cre/Acc time: 20101120232449 20101120232449 20101120232449
2012-07-08 21:38:46: !!!!!!!!!
2012-07-08 21:38:46: ---------------------------------------------------------------------
2012-07-08 21:38:46: Found Service: Wecsvc
2012-07-08 21:38:46: Real Path: C:\windows\system32\wecsvc.dll
2012-07-08 21:38:46: Display Name: @%SystemRoot%\system32\wecsvc.dll,-200
2012-07-08 21:38:46: Description: @%SystemRoot%\system32\wecsvc.dll,-201
2012-07-08 21:38:46: ServiceDLL: system32\wecsvc.dll
2012-07-08 21:38:46: File size: 0
2012-07-08 21:38:46: DLL File name: wecsvc.dll
2012-07-08 21:38:46: Original File Name: wecsvc.dll.mui
2012-07-08 21:38:46: Company:
2012-07-08 21:38:46: Mod/Cre/Acc time:
2012-07-08 21:38:46: !!!!!!!
2012-07-08 21:38:46: Found Service: wercplsupport
2012-07-08 21:38:46: Real Path: C:\windows\System32\wercplsupport.dll
2012-07-08 21:38:46: Display Name: @%SystemRoot%\System32\wercplsupport.dll,-101
2012-07-08 21:38:46: Description: @%SystemRoot%\System32\wercplsupport.dll,-100
2012-07-08 21:38:46: ServiceDLL: System32\wercplsupport.dll
2012-07-08 21:38:46: File size: 0
2012-07-08 21:38:46: DLL File name: wercplsupport.dll
2012-07-08 21:38:46: Original File Name: ERC
2012-07-08 21:38:46: Company:
2012-07-08 21:38:46: Mod/Cre/Acc time:
2012-07-08 21:38:46: !!!!!!!!!
2012-07-08 21:38:46: !!!!!!!
2012-07-08 21:38:46: Found Service: WerSvc
2012-07-08 21:38:46: Real Path: C:\windows\System32\WerSvc.dll
2012-07-08 21:38:46: Display Name: @%SystemRoot%\System32\wersvc.dll,-100
2012-07-08 21:38:46: Description: @%SystemRoot%\System32\wersvc.dll,-101
2012-07-08 21:38:46: ServiceDLL: System32\WerSvc.dll
2012-07-08 21:38:46: File size: 0
2012-07-08 21:38:46: DLL File name: WerSvc.dll
2012-07-08 21:38:46: Original File Name: wersvc
2012-07-08 21:38:46: Company:
2012-07-08 21:38:46: Mod/Cre/Acc time:
2012-07-08 21:38:46: !!!!!!!!!
2012-07-08 21:38:47: ---------------------------------------------------------------------
2012-07-08 21:38:47: Found Service: Winmgmt
2012-07-08 21:38:47: Real Path: C:\windows\system32\wbem\WMIsvc.dll
2012-07-08 21:38:47: Display Name: @%Systemroot%\system32\wbem\wmisvc.dll,-205
2012-07-08 21:38:47: Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204
2012-07-08 21:38:47: ServiceDLL: system32\wbem\WMIsvc.dll
2012-07-08 21:38:47: File size: 0
2012-07-08 21:38:47: DLL File name: WMIsvc.dll
2012-07-08 21:38:47: Original File Name: wmisvc.dll.mui
2012-07-08 21:38:47: Company:
2012-07-08 21:38:47: Mod/Cre/Acc time:
2012-07-08 21:38:48: ---------------------------------------------------------------------
2012-07-08 21:38:48: Found Service: WinRM
2012-07-08 21:38:48: Real Path: C:\windows\system32\WsmSvc.dll
2012-07-08 21:38:48: Display Name: @%Systemroot%\system32\wsmsvc.dll,-101
2012-07-08 21:38:48: Description: @%Systemroot%\system32\wsmsvc.dll,-102
2012-07-08 21:38:48: ServiceDLL: system32\WsmSvc.dll
2012-07-08 21:38:48: File size: 1175040
2012-07-08 21:38:48: DLL File name: WsmSvc.dll
2012-07-08 21:38:48: Original File Name: WsmSvc.dll.mui
2012-07-08 21:38:48: Company:
2012-07-08 21:38:48: Mod/Cre/Acc time: 20101120232432 20101120232432 20101120232432
2012-07-08 21:38:48: ---------------------------------------------------------------------
2012-07-08 21:38:48: Found Service: Wlansvc
2012-07-08 21:38:48: Real Path: C:\windows\System32\wlansvc.dll
2012-07-08 21:38:48: Display Name: @%SystemRoot%\System32\wlansvc.dll,-257
2012-07-08 21:38:48: Description: @%SystemRoot%\System32\wlansvc.dll,-258
2012-07-08 21:38:48: ServiceDLL: System32\wlansvc.dll
2012-07-08 21:38:48: File size: 0
2012-07-08 21:38:48: DLL File name: wlansvc.dll
2012-07-08 21:38:48: Original File Name: wlansvc.dll.mui
2012-07-08 21:38:49: Company:
2012-07-08 21:38:49: Mod/Cre/Acc time:
2012-07-08 21:38:49: ---------------------------------------------------------------------
2012-07-08 21:38:49: Found Service: WPCSvc
2012-07-08 21:38:49: Real Path: C:\windows\System32\wpcsvc.dll
2012-07-08 21:38:49: Display Name: @%SystemRoot%\system32\wpcsvc.dll,-100
2012-07-08 21:38:49: Description: @%SystemRoot%\system32\wpcsvc.dll,-101
2012-07-08 21:38:49: ServiceDLL: System32\wpcsvc.dll
2012-07-08 21:38:49: File size: 10752
2012-07-08 21:38:49: DLL File name: wpcsvc.dll
2012-07-08 21:38:49: Original File Name: wpcsvc.exe.mui
2012-07-08 21:38:49: Company:
2012-07-08 21:38:49: Mod/Cre/Acc time: 20090713211620 20090713194010 20090713194010
2012-07-08 21:38:49: ---------------------------------------------------------------------
2012-07-08 21:38:49: Found Service: WPDBusEnum
2012-07-08 21:38:49: Real Path: C:\windows\system32\wpdbusenum.dll
2012-07-08 21:38:49: Display Name: @%SystemRoot%\system32\wpdbusenum.dll,-100
2012-07-08 21:38:49: Description: @%SystemRoot%\system32\wpdbusenum.dll,-101
2012-07-08 21:38:49: ServiceDLL: system32\wpdbusenum.dll
2012-07-08 21:38:49: File size: 0
2012-07-08 21:38:49: DLL File name: wpdbusenum.dll
2012-07-08 21:38:49: Original File Name: WpdBusEnum.DLL.MUI
2012-07-08 21:38:49: Company:
2012-07-08 21:38:49: Mod/Cre/Acc time:
2012-07-08 21:38:49: ---------------------------------------------------------------------
2012-07-08 21:38:49: Found Service: wscsvc
2012-07-08 21:38:49: Real Path: C:\windows\System32\wscsvc.dll
2012-07-08 21:38:49: Display Name: @%SystemRoot%\System32\wscsvc.dll,-200
2012-07-08 21:38:49: Description: @%SystemRoot%\System32\wscsvc.dll,-201
2012-07-08 21:38:49: ServiceDLL: System32\wscsvc.dll
2012-07-08 21:38:49: File size: 0
2012-07-08 21:38:49: DLL File name: wscsvc.dll
2012-07-08 21:38:49: Original File Name: wscsvc.dll.mui
2012-07-08 21:38:49: Company:
2012-07-08 21:38:49: Mod/Cre/Acc time:
2012-07-08 21:38:49: ---------------------------------------------------------------------
2012-07-08 21:38:49: Found Service: wuauserv
2012-07-08 21:38:49: Real Path: C:\windows\system32\wuaueng.dll
2012-07-08 21:38:49: Display Name: @%systemroot%\system32\wuaueng.dll,-105
2012-07-08 21:38:49: Description: @%systemroot%\system32\wuaueng.dll,-106
2012-07-08 21:38:49: ServiceDLL: system32\wuaueng.dll
2012-07-08 21:38:49: File size: 0
2012-07-08 21:38:49: DLL File name: wuaueng.dll
2012-07-08 21:38:50: Original File Name: wuaueng.dll.mui
2012-07-08 21:38:50: Company:
2012-07-08 21:38:50: Mod/Cre/Acc time:
2012-07-08 21:38:50: ---------------------------------------------------------------------
2012-07-08 21:38:50: Found Service: wudfsvc
2012-07-08 21:38:50: Real Path: C:\windows\System32\WUDFSvc.dll
2012-07-08 21:38:50: Display Name: @%SystemRoot%\system32\wudfsvc.dll,-1000
2012-07-08 21:38:50: Description: @%SystemRoot%\system32\wudfsvc.dll,-1001
2012-07-08 21:38:50: ServiceDLL: System32\WUDFSvc.dll
2012-07-08 21:38:50: File size: 0
2012-07-08 21:38:50: DLL File name: WUDFSvc.dll
2012-07-08 21:38:50: Original File Name: WUDFSvc.dll.mui
2012-07-08 21:38:50: Company:
2012-07-08 21:38:50: Mod/Cre/Acc time:
2012-07-08 21:38:50: ---------------------------------------------------------------------
2012-07-08 21:38:50: Found Service: WwanSvc
2012-07-08 21:38:50: Real Path: C:\windows\System32\wwansvc.dll
2012-07-08 21:38:50: Display Name: @%SystemRoot%\System32\wwansvc.dll,-257
2012-07-08 21:38:50: Description: @%SystemRoot%\System32\wwansvc.dll,-258
2012-07-08 21:38:50: ServiceDLL: System32\wwansvc.dll
2012-07-08 21:38:50: File size: 0
2012-07-08 21:38:50: DLL File name: wwansvc.dll
2012-07-08 21:38:50: Original File Name: WwanSvc.dll.mui
2012-07-08 21:38:50: Company:
2012-07-08 21:38:50: Mod/Cre/Acc time:
2012-07-08 21:38:50:
2012-07-08 21:38:50: Looking for SHELL key
2012-07-08 21:38:50: Now looking for bad DLL files in system32
2012-07-08 21:39:42: Folder: GAC
2012-07-08 21:39:42: Folder: GAC_32
2012-07-08 21:39:42: Folder: GAC_64
2012-07-08 21:39:42: Folder: GAC_MSIL
2012-07-08 21:39:42: Folder: NativeImages_v2.0.50727_32
2012-07-08 21:39:42: Folder: NativeImages_v2.0.50727_64
2012-07-08 21:39:42: Folder: NativeImages_v4.0.30319_32
2012-07-08 21:39:42: Folder: NativeImages_v4.0.30319_64
2012-07-08 21:39:42: Folder: temp
2012-07-08 21:39:42: Folder: tmp
2012-07-08 21:39:42: Checking for bad folder
2012-07-08 21:39:42: Found 1 folders.
2012-07-08 21:39:42: Checking C:\windows\assembly\tmp
2012-07-08 21:39:42: ... Folder test returns: 1
2012-07-08 21:39:42: Done with folder list in C:\windows\assembly\ tmp
2012-07-08 21:39:42: Autonomous mode, clearing out yt folder
2012-07-08 21:39:43: cmd.exe /c start "C:\Users\Jordan\Documents\Anti Malware\yorkyt.exe"
2012-07-08 21:54:49: Restarting...
2012-07-08 21:57:28: ****************************************************
2012-07-08 21:57:29: Starting UP ... v 0.0.0.220
2012-07-08 21:57:29: ****************************************************
2012-07-08 21:57:33: Stop TPSRV returns: 2
2012-07-08 21:57:48: Listing processes...
2012-07-08 21:57:48: :[System Process]:0
2012-07-08 21:57:48: :System:4
2012-07-08 21:57:48: :smss.exe:412
2012-07-08 21:57:48: :csrss.exe:556
2012-07-08 21:57:48: :wininit.exe:616
2012-07-08 21:57:48: :csrss.exe:636
2012-07-08 21:57:48: :services.exe:684
2012-07-08 21:57:48: :lsass.exe:692
2012-07-08 21:57:48: :lsm.exe:700
2012-07-08 21:57:48: :svchost.exe:804
2012-07-08 21:57:48: :nvvsvc.exe:868
2012-07-08 21:57:48: :svchost.exe:908
2012-07-08 21:57:48: :winlogon.exe:984
2012-07-08 21:57:48: :svchost.exe:1008
2012-07-08 21:57:48: :svchost.exe:440
2012-07-08 21:57:48: :svchost.exe:588
2012-07-08 21:57:48: :audiodg.exe:468
2012-07-08 21:57:48: :svchost.exe:1060
2012-07-08 21:57:48: :svchost.exe:1164
2012-07-08 21:57:48: :NvXDSync.exe:1360
2012-07-08 21:57:48: :wlanext.exe:1396
2012-07-08 21:57:48: :conhost.exe:1412
2012-07-08 21:57:48: :spoolsv.exe:1544
2012-07-08 21:57:48: :svchost.exe:1596
2012-07-08 21:57:48: :coreServiceShell.exe:1688
2012-07-08 21:57:48: :AppleMobileDeviceService.exe:1744
2012-07-08 21:57:48: :uiWatchDog.exe:1752
2012-07-08 21:57:48: :conhost.exe:1760
2012-07-08 21:57:48: :coreFrameworkHost.exe:1780
2012-07-08 21:57:48: :conhost.exe:1788
2012-07-08 21:57:48: :taskhost.exe:1952
2012-07-08 21:57:48: :dwm.exe:2036
2012-07-08 21:57:48: :explorer.exe:2044
2012-07-08 21:57:48: :mDNSResponder.exe:1256
2012-07-08 21:57:48: :EvtEng.exe:1836
2012-07-08 21:57:48: :FlipShareService.exe:1724
2012-07-08 21:57:48: :RegSrvc.exe:2096
2012-07-08 21:57:48: :RichVideo.exe:2116
2012-07-08 21:57:48: :SeaPort.EXE:2240
2012-07-08 21:57:48: :sftvsa.exe:2548
2012-07-08 21:57:48: :c2c_service.exe:2668
2012-07-08 21:57:48: :Updater.exe:2704
2012-07-08 21:57:48: :AppSrv.exe:2804
2012-07-08 21:57:48: :WLIDSVC.EXE:2892
2012-07-08 21:57:48: :DMAgent.exe:2156
2012-07-08 21:57:48: :sftlist.exe:2580
2012-07-08 21:57:48: :WLIDSVCM.EXE:2904
2012-07-08 21:57:48: :unsecapp.exe:3136
2012-07-08 21:57:48: :taskeng.exe:3200
2012-07-08 21:57:48: :taskeng.exe:3232
2012-07-08 21:57:48: :SRSPremiumPanel_64.exe:3248
2012-07-08 21:57:48: :dmhkcore.exe:3284
2012-07-08 21:57:48: :YCMMirage.exe:3308
2012-07-08 21:57:48: :WifiManager.exe:3316
2012-07-08 21:57:48: :WmiPrvSE.exe:3516
2012-07-08 21:57:48: :WmiPrvSE.exe:3572
2012-07-08 21:57:48: :igfxext.exe:3684
2012-07-08 21:57:48: :igfxsrvc.exe:3712
2012-07-08 21:57:48: :brs.exe:3764
2012-07-08 21:57:48: :CLMLSvc.exe:3772
2012-07-08 21:57:48: :PDVD10Serv.exe:3808
2012-07-08 21:57:48: :hkcmd.exe:3824
2012-07-08 21:57:48: :igfxtray.exe:3848
2012-07-08 21:57:48: :iFrmewrk.exe:3900
2012-07-08 21:57:48: :WiMAXCU.exe:3912
2012-07-08 21:57:48: :igfxpers.exe:3968
2012-07-08 21:57:49: :unsecapp.exe:1556
2012-07-08 21:57:49: :EasySpeedUpManager.exe:3504
2012-07-08 21:57:49: :CVHSVC.EXE:4048
2012-07-08 21:57:49: :svchost.exe:3296
2012-07-08 21:57:49: :svchost.exe:4144
2012-07-08 21:57:49: :EasyBatteryMgr4.exe:4276
2012-07-08 21:57:49: :yorkyt.exe:4364
2012-07-08 21:57:49: :rundll32.exe:4408
2012-07-08 21:57:49: :RAVCpl64.exe:4560
2012-07-08 21:57:49: :SynTPEnh.exe:4572
2012-07-08 21:57:49: :aim.exe:4920
2012-07-08 21:57:49: :uiSeAgnt.exe:4928
2012-07-08 21:57:49: :msnmsgr.exe:4964
2012-07-08 21:57:49: :SearchIndexer.exe:5004
2012-07-08 21:57:49: :SynTPHelper.exe:5080
2012-07-08 21:57:49: :Skype.exe:5096
2012-07-08 21:57:49: :GoogleUpdate.exe:5116
2012-07-08 21:57:49: :runonce.exe:4260
2012-07-08 21:57:49: :jusched.exe:4296
2012-07-08 21:57:49: :Updater.exe:4228
2012-07-08 21:57:49: :APSDaemon.exe:4304
2012-07-08 21:57:49:
2012-07-08 21:57:49: Starting cleanup mode...
2012-07-08 22:00:17: ... Done with files, now folders
2012-07-08 22:00:24: All DONE
2012-07-08 22:11:03: ****************************************************
2012-07-08 22:11:03: Starting UP ... v 0.0.0.220
2012-07-08 22:11:03: ****************************************************
2012-07-08 22:11:04: Stop TPSRV returns: 2
2012-07-08 22:11:19: Listing processes...
2012-07-08 22:11:20: :[System Process]:0
2012-07-08 22:11:20: :System:4
2012-07-08 22:11:20: :smss.exe:412
2012-07-08 22:11:20: :csrss.exe:556
2012-07-08 22:11:20: :wininit.exe:616
2012-07-08 22:11:20: :csrss.exe:636
2012-07-08 22:11:20: :services.exe:684
2012-07-08 22:11:20: :lsass.exe:692
2012-07-08 22:11:20: :lsm.exe:700
2012-07-08 22:11:20: :svchost.exe:804
2012-07-08 22:11:20: :nvvsvc.exe:868
2012-07-08 22:11:20: :svchost.exe:908
2012-07-08 22:11:20: :winlogon.exe:984
2012-07-08 22:11:20: :svchost.exe:1008
2012-07-08 22:11:20: :svchost.exe:440
2012-07-08 22:11:20: :svchost.exe:588
2012-07-08 22:11:20: :svchost.exe:1060
2012-07-08 22:11:20: :svchost.exe:1164
2012-07-08 22:11:20: :NvXDSync.exe:1360
2012-07-08 22:11:20: :wlanext.exe:1396
2012-07-08 22:11:20: :conhost.exe:1412
2012-07-08 22:11:20: :spoolsv.exe:1544
2012-07-08 22:11:20: :svchost.exe:1596
2012-07-08 22:11:20: :coreServiceShell.exe:1688
2012-07-08 22:11:20: :AppleMobileDeviceService.exe:1744
2012-07-08 22:11:20: :uiWatchDog.exe:1752
2012-07-08 22:11:20: :conhost.exe:1760
2012-07-08 22:11:20: :coreFrameworkHost.exe:1780
2012-07-08 22:11:20: :conhost.exe:1788
2012-07-08 22:11:20: :taskhost.exe:1952
2012-07-08 22:11:20: :dwm.exe:2036
2012-07-08 22:11:20: :explorer.exe:2044
2012-07-08 22:11:20: :mDNSResponder.exe:1256
2012-07-08 22:11:20: :EvtEng.exe:1836
2012-07-08 22:11:20: :FlipShareService.exe:1724
2012-07-08 22:11:20: :RegSrvc.exe:2096
2012-07-08 22:11:20: :RichVideo.exe:2116
2012-07-08 22:11:20: :SeaPort.EXE:2240
2012-07-08 22:11:20: :sftvsa.exe:2548
2012-07-08 22:11:20: :c2c_service.exe:2668
2012-07-08 22:11:20: :AppSrv.exe:2804
2012-07-08 22:11:20: :WLIDSVC.EXE:2892
2012-07-08 22:11:20: :DMAgent.exe:2156
2012-07-08 22:11:20: :sftlist.exe:2580
2012-07-08 22:11:20: :WLIDSVCM.EXE:2904
2012-07-08 22:11:20: :unsecapp.exe:3136
2012-07-08 22:11:20: :taskeng.exe:3200
2012-07-08 22:11:20: :taskeng.exe:3232
2012-07-08 22:11:20: :SRSPremiumPanel_64.exe:3248
2012-07-08 22:11:20: :dmhkcore.exe:3284
2012-07-08 22:11:20: :YCMMirage.exe:3308
2012-07-08 22:11:20: :WifiManager.exe:3316
2012-07-08 22:11:20: :WmiPrvSE.exe:3516
2012-07-08 22:11:20: :WmiPrvSE.exe:3572
2012-07-08 22:11:20: :igfxext.exe:3684
2012-07-08 22:11:20: :igfxsrvc.exe:3712
2012-07-08 22:11:20: :brs.exe:3764
2012-07-08 22:11:20: :CLMLSvc.exe:3772
2012-07-08 22:11:20: :PDVD10Serv.exe:3808
2012-07-08 22:11:20: :hkcmd.exe:3824
2012-07-08 22:11:20: :igfxtray.exe:3848
2012-07-08 22:11:20: :iFrmewrk.exe:3900
2012-07-08 22:11:20: :WiMAXCU.exe:3912
2012-07-08 22:11:20: :igfxpers.exe:3968
2012-07-08 22:11:20: :unsecapp.exe:1556
2012-07-08 22:11:20: :EasySpeedUpManager.exe:3504
2012-07-08 22:11:20: :CVHSVC.EXE:4048
2012-07-08 22:11:20: :svchost.exe:3296
2012-07-08 22:11:20: :svchost.exe:4144
2012-07-08 22:11:20: :rundll32.exe:4408
2012-07-08 22:11:20: :RAVCpl64.exe:4560
2012-07-08 22:11:20: :SynTPEnh.exe:4572
2012-07-08 22:11:20: :aim.exe:4920
2012-07-08 22:11:20: :uiSeAgnt.exe:4928
2012-07-08 22:11:20: :msnmsgr.exe:4964
2012-07-08 22:11:20: :SearchIndexer.exe:5004
2012-07-08 22:11:20: :SynTPHelper.exe:5080
2012-07-08 22:11:20: :jusched.exe:4296
2012-07-08 22:11:20: :Updater.exe:4228
2012-07-08 22:11:20: :iTunesHelper.exe:2692
2012-07-08 22:11:20: :AdobeARM.exe:4536
2012-07-08 22:11:20: :WCScheduler.exe:4604
2012-07-08 22:11:20: :iPodService.exe:4480
2012-07-08 22:11:20: :SmartRestarter.exe:1296
2012-07-08 22:11:20: :MovieColorEnhancer.exe:5564
2012-07-08 22:11:20: :SSCKbdHk.exe:5980
2012-07-08 22:11:20: :LMS.exe:4428
2012-07-08 22:11:20: :daemonu.exe:5964
2012-07-08 22:11:20: :TrustedInstaller.exe:3224
2012-07-08 22:11:20: :SUPBackground.exe:4328
2012-07-08 22:11:20: :svchost.exe:5664
2012-07-08 22:11:20: :svchost.exe:4200
2012-07-08 22:11:20: :UNS.exe:1488
2012-07-08 22:11:20: :firefox.exe:2504
2012-07-08 22:11:20: :plugin-container.exe:4248
2012-07-08 22:11:20: :FlashPlayerPlugin_11_3_300_262.exe:3924
2012-07-08 22:11:20: :FlashPlayerPlugin_11_3_300_262.exe:4580
2012-07-08 22:11:20: :audiodg.exe:3608
2012-07-08 22:11:20: :svchost.exe:4620
2012-07-08 22:11:20: :yorkyt.exe:1824
2012-07-08 22:11:20: :SearchProtocolHost.exe:5464
2012-07-08 22:11:20: :SearchFilterHost.exe:5492
2012-07-08 22:11:20:
2012-07-08 22:11:20: Setting restore point
2012-07-08 22:11:57: RUN mode
2012-07-08 22:11:57: Determining autonomous or dropped mode...
2012-07-08 22:11:57: Autonomus mode
2012-07-08 22:11:57: ---------------------------------------------------------------------
2012-07-08 22:11:57: Found Service: AeLookupSvc
2012-07-08 22:11:57: Real Path: C:\windows\System32\aelupsvc.dll
2012-07-08 22:11:57: Display Name: @%SystemRoot%\system32\aelupsvc.dll,-1
2012-07-08 22:11:57: Description: @%SystemRoot%\system32\aelupsvc.dll,-2
2012-07-08 22:11:57: ServiceDLL: System32\aelupsvc.dll
2012-07-08 22:11:57: File size: 0
2012-07-08 22:11:57: DLL File name: aelupsvc.dll
2012-07-08 22:11:57: Original File Name: aelupsvc.dll.mui
2012-07-08 22:11:57: Company:
2012-07-08 22:11:57: Mod/Cre/Acc time:
2012-07-08 22:11:57: ---------------------------------------------------------------------
2012-07-08 22:11:58: Found Service: AppIDSvc
2012-07-08 22:11:58: Real Path: C:\windows\System32\appidsvc.dll
2012-07-08 22:11:58: Display Name: @%systemroot%\system32\appidsvc.dll,-100
2012-07-08 22:11:58: Description: @%systemroot%\system32\appidsvc.dll,-101
2012-07-08 22:11:58: ServiceDLL: System32\appidsvc.dll
2012-07-08 22:11:58: File size: 0
2012-07-08 22:11:58: DLL File name: appidsvc.dll
2012-07-08 22:11:58: Original File Name: appidsvc.dll.mui
2012-07-08 22:11:58: Company:
2012-07-08 22:11:58: Mod/Cre/Acc time:
2012-07-08 22:11:58: ---------------------------------------------------------------------
2012-07-08 22:11:58: Found Service: Appinfo
2012-07-08 22:11:58: Real Path: C:\windows\System32\appinfo.dll
2012-07-08 22:11:58: Display Name: @%systemroot%\system32\appinfo.dll,-100
2012-07-08 22:11:58: Description: @%systemroot%\system32\appinfo.dll,-101
2012-07-08 22:11:58: ServiceDLL: System32\appinfo.dll
2012-07-08 22:11:58: File size: 0
2012-07-08 22:11:58: DLL File name: appinfo.dll
2012-07-08 22:11:58: Original File Name: appinfo.dll.mui
2012-07-08 22:11:58: Company:
2012-07-08 22:11:58: Mod/Cre/Acc time:
2012-07-08 22:11:58: ---------------------------------------------------------------------
2012-07-08 22:11:58: Found Service: AudioEndpointBuilder
2012-07-08 22:11:58: Real Path: C:\windows\System32\Audiosrv.dll
2012-07-08 22:11:58: Display Name: @%SystemRoot%\system32\audiosrv.dll,-204
2012-07-08 22:11:58: Description: @%SystemRoot%\System32\audiosrv.dll,-205
2012-07-08 22:11:58: ServiceDLL: System32\Audiosrv.dll
2012-07-08 22:11:58: File size: 0
2012-07-08 22:11:58: DLL File name: Audiosrv.dll
2012-07-08 22:11:58: Original File Name: audiosrv.dll.mui
2012-07-08 22:11:58: Company:
2012-07-08 22:11:58: Mod/Cre/Acc time:
2012-07-08 22:11:58: ---------------------------------------------------------------------
2012-07-08 22:11:58: Found Service: AudioSrv
2012-07-08 22:11:58: Real Path: C:\windows\System32\Audiosrv.dll
2012-07-08 22:11:58: Display Name: @%SystemRoot%\system32\audiosrv.dll,-200
2012-07-08 22:11:58: Description: @%SystemRoot%\System32\audiosrv.dll,-201
2012-07-08 22:11:58: ServiceDLL: System32\Audiosrv.dll
2012-07-08 22:11:58: File size: 0
2012-07-08 22:11:58: DLL File name: Audiosrv.dll
2012-07-08 22:11:58: Original File Name: audiosrv.dll.mui
2012-07-08 22:11:58: Company:
2012-07-08 22:11:58: Mod/Cre/Acc time:
2012-07-08 22:11:59: ---------------------------------------------------------------------
2012-07-08 22:11:59: Found Service: AxInstSV
2012-07-08 22:11:59: Real Path: C:\windows\System32\AxInstSV.dll
2012-07-08 22:11:59: Display Name: @%SystemRoot%\system32\AxInstSV.dll,-103
2012-07-08 22:11:59: Description: @%SystemRoot%\system32\AxInstSV.dll,-104
2012-07-08 22:11:59: ServiceDLL: System32\AxInstSV.dll
2012-07-08 22:11:59: File size: 0
2012-07-08 22:11:59: DLL File name: AxInstSV.dll
2012-07-08 22:11:59: Original File Name: AxInstSv.dll.mui
2012-07-08 22:11:59: Company:
2012-07-08 22:11:59: Mod/Cre/Acc time:
2012-07-08 22:11:59: ---------------------------------------------------------------------
2012-07-08 22:11:59: Found Service: BDESVC
2012-07-08 22:11:59: Real Path: C:\windows\System32\bdesvc.dll
2012-07-08 22:11:59: Display Name: @%SystemRoot%\system32\bdesvc.dll,-100
2012-07-08 22:11:59: Description: @%SystemRoot%\system32\bdesvc.dll,-101
2012-07-08 22:11:59: ServiceDLL: System32\bdesvc.dll
2012-07-08 22:11:59: File size: 0
2012-07-08 22:11:59: DLL File name: bdesvc.dll
2012-07-08 22:11:59: Original File Name: BDESVC.DLL.MUI
2012-07-08 22:11:59: Company:
2012-07-08 22:11:59: Mod/Cre/Acc time:
2012-07-08 22:11:59: ---------------------------------------------------------------------
2012-07-08 22:11:59: Found Service: BFE
2012-07-08 22:11:59: Real Path: C:\windows\System32\bfe.dll
2012-07-08 22:11:59: Display Name: @%SystemRoot%\system32\bfe.dll,-1001
2012-07-08 22:11:59: Description: @%SystemRoot%\system32\bfe.dll,-1002
2012-07-08 22:11:59: ServiceDLL: System32\bfe.dll
2012-07-08 22:11:59: File size: 0
2012-07-08 22:11:59: DLL File name: bfe.dll
2012-07-08 22:11:59: Original File Name: BFE.DLL.MUI
2012-07-08 22:11:59: Company:
2012-07-08 22:11:59: Mod/Cre/Acc time:
2012-07-08 22:11:59: ---------------------------------------------------------------------
2012-07-08 22:11:59: Found Service: BITS
2012-07-08 22:11:59: Real Path: C:\windows\System32\qmgr.dll
2012-07-08 22:11:59: Display Name: @%SystemRoot%\system32\qmgr.dll,-1000
2012-07-08 22:11:59: Description: @%SystemRoot%\system32\qmgr.dll,-1001
2012-07-08 22:11:59: ServiceDLL: System32\qmgr.dll
2012-07-08 22:11:59: File size: 0
2012-07-08 22:11:59: DLL File name: qmgr.dll
2012-07-08 22:11:59: Original File Name: qmgr.dll.mui
2012-07-08 22:11:59: Company:
2012-07-08 22:11:59: Mod/Cre/Acc time:
2012-07-08 22:11:59: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: Browser
2012-07-08 22:12:00: Real Path: C:\windows\System32\browser.dll
2012-07-08 22:12:00: Display Name: @%systemroot%\system32\browser.dll,-100
2012-07-08 22:12:00: Description: @%systemroot%\system32\browser.dll,-101
2012-07-08 22:12:00: ServiceDLL: System32\browser.dll
2012-07-08 22:12:00: File size: 0
2012-07-08 22:12:00: DLL File name: browser.dll
2012-07-08 22:12:00: Original File Name: browser.dll.mui
2012-07-08 22:12:00: Company:
2012-07-08 22:12:00: Mod/Cre/Acc time:
2012-07-08 22:12:00: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: bthserv
2012-07-08 22:12:00: Real Path: C:\windows\system32\bthserv.dll
2012-07-08 22:12:00: Display Name: @%SystemRoot%\System32\bthserv.dll,-101
2012-07-08 22:12:00: Description: @%SystemRoot%\System32\bthserv.dll,-102
2012-07-08 22:12:00: ServiceDLL: system32\bthserv.dll
2012-07-08 22:12:00: File size: 0
2012-07-08 22:12:00: DLL File name: bthserv.dll
2012-07-08 22:12:00: Original File Name: BTHSERV.DLL.MUI
2012-07-08 22:12:00: Company:
2012-07-08 22:12:00: Mod/Cre/Acc time:
2012-07-08 22:12:00: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: CertPropSvc
2012-07-08 22:12:00: Real Path: C:\windows\System32\certprop.dll
2012-07-08 22:12:00: Display Name: @%SystemRoot%\System32\certprop.dll,-11
2012-07-08 22:12:00: Description: @%SystemRoot%\System32\certprop.dll,-12
2012-07-08 22:12:00: ServiceDLL: System32\certprop.dll
2012-07-08 22:12:00: File size: 0
2012-07-08 22:12:00: DLL File name: certprop.dll
2012-07-08 22:12:00: Original File Name: certprop.dll.mui
2012-07-08 22:12:00: Company:
2012-07-08 22:12:00: Mod/Cre/Acc time:
2012-07-08 22:12:00: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: CryptSvc
2012-07-08 22:12:00: Real Path: C:\windows\system32\cryptsvc.dll
2012-07-08 22:12:00: Display Name: @%SystemRoot%\system32\cryptsvc.dll,-1001
2012-07-08 22:12:00: Description: @%SystemRoot%\system32\cryptsvc.dll,-1002
2012-07-08 22:12:00: ServiceDLL: system32\cryptsvc.dll
2012-07-08 22:12:00: File size: 140288
2012-07-08 22:12:00: DLL File name: cryptsvc.dll
2012-07-08 22:12:00: Original File Name: cryptsvc.dll.mui
2012-07-08 22:12:00: Company:
2012-07-08 22:12:00: Mod/Cre/Acc time: 20120424003642 20120613193227 20120613193227
2012-07-08 22:12:00: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: DcomLaunch
2012-07-08 22:12:00: Real Path: C:\windows\system32\rpcss.dll
2012-07-08 22:12:00: Display Name: @oleres.dll,-5012
2012-07-08 22:12:00: Description: @oleres.dll,-5013
2012-07-08 22:12:00: ServiceDLL: system32\rpcss.dll
2012-07-08 22:12:00: File size: 0
2012-07-08 22:12:00: DLL File name: rpcss.dll
2012-07-08 22:12:00: Original File Name: rpcss.dll
2012-07-08 22:12:00: Company:
2012-07-08 22:12:00: Mod/Cre/Acc time:
2012-07-08 22:12:00: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: defragsvc
2012-07-08 22:12:00: Real Path: C:\windows\System32\defragsvc.dll
2012-07-08 22:12:00: Display Name: @%SystemRoot%\system32\defragsvc.dll,-101
2012-07-08 22:12:00: Description: @%SystemRoot%\system32\defragsvc.dll,-102
2012-07-08 22:12:00: ServiceDLL: System32\defragsvc.dll
2012-07-08 22:12:00: File size: 0
2012-07-08 22:12:00: DLL File name: defragsvc.dll
2012-07-08 22:12:00: Original File Name: defragsvc.dll.mui
2012-07-08 22:12:00: Company:
2012-07-08 22:12:00: Mod/Cre/Acc time:
2012-07-08 22:12:00: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: Dhcp
2012-07-08 22:12:00: Real Path: C:\windows\system32\dhcpcore.dll
2012-07-08 22:12:00: Display Name: @%SystemRoot%\system32\dhcpcore.dll,-100
2012-07-08 22:12:00: Description: @%SystemRoot%\system32\dhcpcore.dll,-101
2012-07-08 22:12:00: ServiceDLL: system32\dhcpcore.dll
2012-07-08 22:12:00: File size: 254464
2012-07-08 22:12:00: DLL File name: dhcpcore.dll
2012-07-08 22:12:00: Original File Name: dhcpcore.dll.mui
2012-07-08 22:12:00: Company:
2012-07-08 22:12:00: Mod/Cre/Acc time: 20101120232409 20101120232409 20101120232409
2012-07-08 22:12:00: ---------------------------------------------------------------------
2012-07-08 22:12:00: Found Service: Dnscache
2012-07-08 22:12:00: Real Path: C:\windows\System32\dnsrslvr.dll
2012-07-08 22:12:00: Display Name: @%SystemRoot%\System32\dnsapi.dll,-101
2012-07-08 22:12:00: Description: @%SystemRoot%\System32\dnsapi.dll,-102
2012-07-08 22:12:01: ServiceDLL: System32\dnsrslvr.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: dnsrslvr.dll
2012-07-08 22:12:01: Original File Name: dnsrslvr.dll.mui
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: dot3svc
2012-07-08 22:12:01: Real Path: C:\windows\System32\dot3svc.dll
2012-07-08 22:12:01: Display Name: @%systemroot%\system32\dot3svc.dll,-1102
2012-07-08 22:12:01: Description: @%systemroot%\system32\dot3svc.dll,-1103
2012-07-08 22:12:01: ServiceDLL: System32\dot3svc.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: dot3svc.dll
2012-07-08 22:12:01: Original File Name: dot3svc.dll.mui
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: DPS
2012-07-08 22:12:01: Real Path: C:\windows\system32\dps.dll
2012-07-08 22:12:01: Display Name: @%systemroot%\system32\dps.dll,-500
2012-07-08 22:12:01: Description: @%systemroot%\system32\dps.dll,-501
2012-07-08 22:12:01: ServiceDLL: system32\dps.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: dps.dll
2012-07-08 22:12:01: Original File Name: dps.dll.mui
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: EapHost
2012-07-08 22:12:01: Real Path: C:\windows\System32\eapsvc.dll
2012-07-08 22:12:01: Display Name: @%systemroot%\system32\eapsvc.dll,-1
2012-07-08 22:12:01: Description: @%systemroot%\system32\eapsvc.dll,-2
2012-07-08 22:12:01: ServiceDLL: System32\eapsvc.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: eapsvc.dll
2012-07-08 22:12:01: Original File Name: eapsvc.dll.mui
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: EventSystem
2012-07-08 22:12:01: Real Path: C:\windows\system32\es.dll
2012-07-08 22:12:01: Display Name: @comres.dll,-2450
2012-07-08 22:12:01: Description: @comres.dll,-2451
2012-07-08 22:12:01: ServiceDLL: system32\es.dll
2012-07-08 22:12:01: File size: 271360
2012-07-08 22:12:01: DLL File name: es.dll
2012-07-08 22:12:01: Original File Name: ES.DLL
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time: 20090713211519 20090713194438 20090713194438
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: fdPHost
2012-07-08 22:12:01: Real Path: C:\windows\system32\fdPHost.dll
2012-07-08 22:12:01: Display Name: @%systemroot%\system32\fdPHost.dll,-100
2012-07-08 22:12:01: Description: @%systemroot%\system32\fdPHost.dll,-101
2012-07-08 22:12:01: ServiceDLL: system32\fdPHost.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: fdPHost.dll
2012-07-08 22:12:01: Original File Name: fdPHost.dll.mui
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: FDResPub
2012-07-08 22:12:01: Real Path: C:\windows\system32\fdrespub.dll
2012-07-08 22:12:01: Display Name: @%systemroot%\system32\fdrespub.dll,-100
2012-07-08 22:12:01: Description: @%systemroot%\system32\fdrespub.dll,-101
2012-07-08 22:12:01: ServiceDLL: system32\fdrespub.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: fdrespub.dll
2012-07-08 22:12:01: Original File Name: FDResPub.dll.mui
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: !!!!!!!
2012-07-08 22:12:01: Found Service: FontCache
2012-07-08 22:12:01: Real Path: C:\windows\system32\FntCache.dll
2012-07-08 22:12:01: Display Name: @%systemroot%\system32\FntCache.dll,-100
2012-07-08 22:12:01: Description: @%systemroot%\system32\FntCache.dll,-101
2012-07-08 22:12:01: ServiceDLL: system32\FntCache.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: FntCache.dll
2012-07-08 22:12:01: Original File Name: FontCacheService
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: !!!!!!!!!
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: gpsvc
2012-07-08 22:12:01: Real Path: C:\windows\System32\gpsvc.dll
2012-07-08 22:12:01: Display Name: @gpapi.dll,-112
2012-07-08 22:12:01: Description: @gpapi.dll,-113
2012-07-08 22:12:01: ServiceDLL: System32\gpsvc.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: gpsvc.dll
2012-07-08 22:12:01: Original File Name: gpsvc.dll.mui
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: hidserv
2012-07-08 22:12:01: Real Path: C:\windows\system32\hidserv.dll
2012-07-08 22:12:01: Display Name: @%SystemRoot%\System32\hidserv.dll,-101
2012-07-08 22:12:01: Description: @%SystemRoot%\System32\hidserv.dll,-102
2012-07-08 22:12:01: ServiceDLL: system32\hidserv.dll
2012-07-08 22:12:01: File size: 49152
2012-07-08 22:12:01: DLL File name: hidserv.dll
2012-07-08 22:12:01: Original File Name: HIDSERV.DLL.MUI
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time: 20090713211524 20090713195109 20090713195109
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: hkmsvc
2012-07-08 22:12:01: Real Path: C:\windows\system32\kmsvc.dll
2012-07-08 22:12:01: Display Name: @%SystemRoot%\system32\kmsvc.dll,-6
2012-07-08 22:12:01: Description: @%SystemRoot%\system32\kmsvc.dll,-7
2012-07-08 22:12:01: ServiceDLL: system32\kmsvc.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:01: DLL File name: kmsvc.dll
2012-07-08 22:12:01: Original File Name: KmSvc.DLL.MUI
2012-07-08 22:12:01: Company:
2012-07-08 22:12:01: Mod/Cre/Acc time:
2012-07-08 22:12:01: ---------------------------------------------------------------------
2012-07-08 22:12:01: Found Service: HomeGroupListener
2012-07-08 22:12:01: Real Path: C:\windows\system32\ListSvc.dll
2012-07-08 22:12:01: Display Name: @%SystemRoot%\System32\ListSvc.dll,-100
2012-07-08 22:12:01: Description: @%SystemRoot%\System32\ListSvc.dll,-101
2012-07-08 22:12:01: ServiceDLL: system32\ListSvc.dll
2012-07-08 22:12:01: File size: 0
2012-07-08 22:12:02: DLL File name: ListSvc.dll
2012-07-08 22:12:02: Original File Name: ListSvc.dll.mui
2012-07-08 22:12:02: Company:
2012-07-08 22:12:02: Mod/Cre/Acc time:
2012-07-08 22:12:02: ---------------------------------------------------------------------
2012-07-08 22:12:02: Found Service: HomeGroupProvider
2012-07-08 22:12:02: Real Path: C:\windows\system32\provsvc.dll
2012-07-08 22:12:02: Display Name: @%SystemRoot%\System32\provsvc.dll,-100
2012-07-08 22:12:02: Description: @%SystemRoot%\System32\provsvc.dll,-101
2012-07-08 22:12:02: ServiceDLL: system32\provsvc.dll
2012-07-08 22:12:02: File size: 165376
2012-07-08 22:12:02: DLL File name: provsvc.dll
2012-07-08 22:12:02: Original File Name: provsvc.dll.mui
2012-07-08 22:12:02: Company:
2012-07-08 22:12:02: Mod/Cre/Acc time: 20101120232510 20101120232510 20101120232510
2012-07-08 22:12:02: ---------------------------------------------------------------------
2012-07-08 22:12:02: Found Service: IKEEXT
2012-07-08 22:12:02: Real Path: C:\windows\System32\ikeext.dll
2012-07-08 22:12:02: Display Name: @%SystemRoot%\system32\ikeext.dll,-501
2012-07-08 22:12:02: Description: @%SystemRoot%\system32\ikeext.dll,-502
2012-07-08 22:12:02: ServiceDLL: System32\ikeext.dll
2012-07-08 22:12:02: File size: 0
2012-07-08 22:12:02: DLL File name: ikeext.dll
2012-07-08 22:12:02: Original File Name: IKEEXT.DLL.MUI
2012-07-08 22:12:02: Company:
2012-07-08 22:12:02: Mod/Cre/Acc time:
2012-07-08 22:12:02: ---------------------------------------------------------------------
2012-07-08 22:12:03: Found Service: IPBusEnum
2012-07-08 22:12:03: Real Path: C:\windows\system32\ipbusenum.dll
2012-07-08 22:12:03: Display Name: @%systemroot%\system32\IPBusEnum.dll,-102
2012-07-08 22:12:03: Description: @%systemroot%\system32\IPBusEnum.dll,-103
2012-07-08 22:12:03: ServiceDLL: system32\ipbusenum.dll
2012-07-08 22:12:03: File size: 0
2012-07-08 22:12:03: DLL File name: ipbusenum.dll
2012-07-08 22:12:03: Original File Name: IPBusEnum.dll.mui
2012-07-08 22:12:03: Company:
2012-07-08 22:12:03: Mod/Cre/Acc time:
2012-07-08 22:12:03: ---------------------------------------------------------------------
2012-07-08 22:12:03: Found Service: iphlpsvc
2012-07-08 22:12:03: Real Path: C:\windows\System32\iphlpsvc.dll
2012-07-08 22:12:03: Display Name: @%SystemRoot%\system32\iphlpsvc.dll,-500
2012-07-08 22:12:03: Description: @%SystemRoot%\system32\iphlpsvc.dll,-501
2012-07-08 22:12:05: ServiceDLL: System32\iphlpsvc.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: iphlpsvc.dll
2012-07-08 22:12:05: Original File Name: iphlpsvc.dll.mui
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: KtmRm
2012-07-08 22:12:05: Real Path: C:\windows\system32\msdtckrm.dll
2012-07-08 22:12:05: Display Name: @comres.dll,-2946
2012-07-08 22:12:05: Description: @comres.dll,-2947
2012-07-08 22:12:05: ServiceDLL: system32\msdtckrm.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: msdtckrm.dll
2012-07-08 22:12:05: Original File Name: MSDTCKRM.DLL
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: LanmanServer
2012-07-08 22:12:05: Real Path: C:\windows\system32\srvsvc.dll
2012-07-08 22:12:05: Display Name: @%systemroot%\system32\srvsvc.dll,-100
2012-07-08 22:12:05: Description: @%systemroot%\system32\srvsvc.dll,-101
2012-07-08 22:12:05: ServiceDLL: system32\srvsvc.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: srvsvc.dll
2012-07-08 22:12:05: Original File Name: SRVSVC.DLL.MUI
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: LanmanWorkstation
2012-07-08 22:12:05: Real Path: C:\windows\System32\wkssvc.dll
2012-07-08 22:12:05: Display Name: @%systemroot%\system32\wkssvc.dll,-100
2012-07-08 22:12:05: Description: @%systemroot%\system32\wkssvc.dll,-101
2012-07-08 22:12:05: ServiceDLL: System32\wkssvc.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: wkssvc.dll
2012-07-08 22:12:05: Original File Name: WKSSVC.DLL.MUI
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: lltdsvc
2012-07-08 22:12:05: Real Path: C:\windows\System32\lltdsvc.dll
2012-07-08 22:12:05: Display Name: @%SystemRoot%\system32\lltdres.dll,-1
2012-07-08 22:12:05: Description: @%SystemRoot%\system32\lltdres.dll,-2
2012-07-08 22:12:05: ServiceDLL: System32\lltdsvc.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: lltdsvc.dll
2012-07-08 22:12:05: Original File Name: LLTDSVC.DLL
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: lmhosts
2012-07-08 22:12:05: Real Path: C:\windows\System32\lmhsvc.dll
2012-07-08 22:12:05: Display Name: @%SystemRoot%\system32\lmhsvc.dll,-101
2012-07-08 22:12:05: Description: @%SystemRoot%\system32\lmhsvc.dll,-102
2012-07-08 22:12:05: ServiceDLL: System32\lmhsvc.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: lmhsvc.dll
2012-07-08 22:12:05: Original File Name: lmhsvc.dll.mui
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: Mcx2Svc
2012-07-08 22:12:05: Real Path: C:\windows\system32\Mcx2Svc.dll
2012-07-08 22:12:05: Display Name: @%SystemRoot%\ehome\ehres.dll,-15501
2012-07-08 22:12:05: Description: @%SystemRoot%\ehome\ehres.dll,-15502
2012-07-08 22:12:05: ServiceDLL: system32\Mcx2Svc.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: Mcx2Svc.dll
2012-07-08 22:12:05: Original File Name: Mcx2Svc.dll
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: MMCSS
2012-07-08 22:12:05: Real Path: C:\windows\system32\mmcss.dll
2012-07-08 22:12:05: Display Name: @%systemroot%\system32\mmcss.dll,-100
2012-07-08 22:12:05: Description: @%systemroot%\system32\mmcss.dll,-101
2012-07-08 22:12:05: ServiceDLL: system32\mmcss.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: mmcss.dll
2012-07-08 22:12:05: Original File Name: mmcss.dll.mui
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: MpsSvc
2012-07-08 22:12:05: Real Path: C:\windows\system32\mpssvc.dll
2012-07-08 22:12:05: Display Name: @%SystemRoot%\system32\FirewallAPI.dll,-23090
2012-07-08 22:12:05: Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091
2012-07-08 22:12:05: ServiceDLL: system32\mpssvc.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: mpssvc.dll
2012-07-08 22:12:05: Original File Name: mpssvc.dll.mui
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: MSiSCSI
2012-07-08 22:12:05: Real Path: C:\windows\system32\iscsiexe.dll
2012-07-08 22:12:05: Display Name: @%SystemRoot%\system32\iscsidsc.dll,-5000
2012-07-08 22:12:05: Description: @%SystemRoot%\system32\iscsidsc.dll,-5001
2012-07-08 22:12:05: ServiceDLL: system32\iscsiexe.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: iscsiexe.dll
2012-07-08 22:12:05: Original File Name: iscsiexe.exe.mui
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: napagent
2012-07-08 22:12:05: Real Path: C:\windows\system32\qagentRT.dll
2012-07-08 22:12:05: Display Name: @%SystemRoot%\system32\qagentrt.dll,-6
2012-07-08 22:12:05: Description: @%SystemRoot%\system32\qagentrt.dll,-7
2012-07-08 22:12:05: ServiceDLL: system32\qagentRT.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: qagentRT.dll
2012-07-08 22:12:05: Original File Name: QAgentRT.DLL.MUI
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:05: ---------------------------------------------------------------------
2012-07-08 22:12:05: Found Service: Netman
2012-07-08 22:12:05: Real Path: C:\windows\System32\netman.dll
2012-07-08 22:12:05: Display Name: @%SystemRoot%\system32\netman.dll,-109
2012-07-08 22:12:05: Description: @%SystemRoot%\system32\netman.dll,-110
2012-07-08 22:12:05: ServiceDLL: System32\netman.dll
2012-07-08 22:12:05: File size: 0
2012-07-08 22:12:05: DLL File name: netman.dll
2012-07-08 22:12:05: Original File Name: netman.dll.mui
2012-07-08 22:12:05: Company:
2012-07-08 22:12:05: Mod/Cre/Acc time:
2012-07-08 22:12:06: ---------------------------------------------------------------------
2012-07-08 22:12:06: Found Service: netprofm
2012-07-08 22:12:06: Real Path: C:\windows\System32\netprofm.dll
2012-07-08 22:12:06: Display Name: @%SystemRoot%\system32\netprofm.dll,-202
2012-07-08 22:12:06: Description: @%SystemRoot%\system32\netprofm.dll,-203
2012-07-08 22:12:06: ServiceDLL: System32\netprofm.dll
2012-07-08 22:12:06: File size: 360448
2012-07-08 22:12:06: DLL File name: netprofm.dll
2012-07-08 22:12:06: Original File Name: netprofm.dll.mui
2012-07-08 22:12:06: Company:
2012-07-08 22:12:06: Mod/Cre/Acc time: 20090713211603 20090713195658 20090713195658
2012-07-08 22:12:06: ---------------------------------------------------------------------
2012-07-08 22:12:06: Found Service: NlaSvc
2012-07-08 22:12:06: Real Path: C:\windows\System32\nlasvc.dll
2012-07-08 22:12:06: Display Name: @%SystemRoot%\System32\nlasvc.dll,-1
2012-07-08 22:12:06: Description: @%SystemRoot%\System32\nlasvc.dll,-2
2012-07-08 22:12:06: ServiceDLL: System32\nlasvc.dll
2012-07-08 22:12:06: File size: 0
2012-07-08 22:12:06: DLL File name: nlasvc.dll
2012-07-08 22:12:06: Original File Name: nlasvc.dll.mui
2012-07-08 22:12:06: Company:
2012-07-08 22:12:06: Mod/Cre/Acc time:
2012-07-08 22:12:06: ---------------------------------------------------------------------
2012-07-08 22:12:06: Found Service: nsi
2012-07-08 22:12:06: Real Path: C:\windows\system32\nsisvc.dll
2012-07-08 22:12:06: Display Name: @%SystemRoot%\system32\nsisvc.dll,-200
2012-07-08 22:12:06: Description: @%SystemRoot%\system32\nsisvc.dll,-201
2012-07-08 22:12:06: ServiceDLL: system32\nsisvc.dll
2012-07-08 22:12:06: File size: 0
2012-07-08 22:12:06: DLL File name: nsisvc.dll
2012-07-08 22:12:06: Original File Name: nsisvc.dll.mui
2012-07-08 22:12:06: Company:
2012-07-08 22:12:06: Mod/Cre/Acc time:
2012-07-08 22:12:06: ---------------------------------------------------------------------
2012-07-08 22:12:06: Found Service: p2pimsvc
2012-07-08 22:12:06: Real Path: C:\windows\system32\pnrpsvc.dll
2012-07-08 22:12:06: Display Name: @%SystemRoot%\system32\pnrpsvc.dll,-8004
2012-07-08 22:12:06: Description: @%SystemRoot%\system32\pnrpsvc.dll,-8005
2012-07-08 22:12:06: ServiceDLL: system32\pnrpsvc.dll
2012-07-08 22:12:06: File size: 0
2012-07-08 22:12:06: DLL File name: pnrpsvc.dll
2012-07-08 22:12:06: Original File Name: pnrpsvc.dll.mui
2012-07-08 22:12:06: Company:
2012-07-08 22:12:06: Mod/Cre/Acc time:
2012-07-08 22:12:06: ---------------------------------------------------------------------
2012-07-08 22:12:06: Found Service: p2psvc
2012-07-08 22:12:06: Real Path: C:\windows\system32\p2psvc.dll
2012-07-08 22:12:06: Display Name: @%SystemRoot%\system32\p2psvc.dll,-8006
2012-07-08 22:12:06: Description: @%SystemRoot%\system32\p2psvc.dll,-8007
2012-07-08 22:12:06: ServiceDLL: system32\p2psvc.dll
2012-07-08 22:12:06: File size: 0
2012-07-08 22:12:06: DLL File name: p2psvc.dll
2012-07-08 22:12:06: Original File Name: p2psvc.dll.mui
2012-07-08 22:12:06: Company:
2012-07-08 22:12:06: Mod/Cre/Acc time:
2012-07-08 22:12:06: !!!!!!!
2012-07-08 22:12:06: Found Service: PcaSvc
2012-07-08 22:12:06: Real Path: C:\windows\System32\pcasvc.dll
2012-07-08 22:12:06: Display Name: @%SystemRoot%\system32\pcasvc.dll,-1
2012-07-08 22:12:06: Description: @%SystemRoot%\system32\pcasvc.dll,-2
2012-07-08 22:12:06: ServiceDLL: System32\pcasvc.dll
2012-07-08 22:12:06: File size: 0
2012-07-08 22:12:06: DLL File name: pcasvc.dll
2012-07-08 22:12:06: Original File Name:
2012-07-08 22:12:06: Company:
2012-07-08 22:12:06: Mod/Cre/Acc time:
2012-07-08 22:12:06: !!!!!!!!!
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: pla
2012-07-08 22:12:07: Real Path: C:\windows\system32\pla.dll
2012-07-08 22:12:07: Display Name: @%systemroot%\system32\pla.dll,-500
2012-07-08 22:12:07: Description: @%systemroot%\system32\pla.dll,-501
2012-07-08 22:12:07: ServiceDLL: system32\pla.dll
2012-07-08 22:12:07: File size: 1508864
2012-07-08 22:12:07: DLL File name: pla.dll
2012-07-08 22:12:07: Original File Name: PLA.DLL.MUI
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time: 20101120232408 20101120232408 20101120232408
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: PlugPlay
2012-07-08 22:12:07: Real Path: C:\windows\system32\umpnpmgr.dll
2012-07-08 22:12:07: Display Name: @%SystemRoot%\system32\umpnpmgr.dll,-100
2012-07-08 22:12:07: Description: @%SystemRoot%\system32\umpnpmgr.dll,-101
2012-07-08 22:12:07: ServiceDLL: system32\umpnpmgr.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: umpnpmgr.dll
2012-07-08 22:12:07: Original File Name: Umpnpmgr.DLL.MUI
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: PNRPAutoReg
2012-07-08 22:12:07: Real Path: C:\windows\system32\pnrpauto.dll
2012-07-08 22:12:07: Display Name: @%SystemRoot%\system32\pnrpauto.dll,-8002
2012-07-08 22:12:07: Description: @%SystemRoot%\system32\pnrpauto.dll,-8003
2012-07-08 22:12:07: ServiceDLL: system32\pnrpauto.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: pnrpauto.dll
2012-07-08 22:12:07: Original File Name: pnrpauto.dll.mui
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: PNRPsvc
2012-07-08 22:12:07: Real Path: C:\windows\system32\pnrpsvc.dll
2012-07-08 22:12:07: Display Name: @%SystemRoot%\system32\pnrpsvc.dll,-8000
2012-07-08 22:12:07: Description: @%SystemRoot%\system32\pnrpsvc.dll,-8001
2012-07-08 22:12:07: ServiceDLL: system32\pnrpsvc.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: pnrpsvc.dll
2012-07-08 22:12:07: Original File Name: pnrpsvc.dll.mui
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: PolicyAgent
2012-07-08 22:12:07: Real Path: C:\windows\System32\ipsecsvc.dll
2012-07-08 22:12:07: Display Name: @%SystemRoot%\System32\polstore.dll,-5010
2012-07-08 22:12:07: Description: @%SystemRoot%\system32\polstore.dll,-5011
2012-07-08 22:12:07: ServiceDLL: System32\ipsecsvc.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: ipsecsvc.dll
2012-07-08 22:12:07: Original File Name: ipsecsvc.dll.mui
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: Power
2012-07-08 22:12:07: Real Path: C:\windows\system32\umpo.dll
2012-07-08 22:12:07: Display Name: @%SystemRoot%\system32\umpo.dll,-100
2012-07-08 22:12:07: Description: @%SystemRoot%\system32\umpo.dll,-101
2012-07-08 22:12:07: ServiceDLL: system32\umpo.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: umpo.dll
2012-07-08 22:12:07: Original File Name: Umpo.DLL.MUI
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: ProfSvc
2012-07-08 22:12:07: Real Path: C:\windows\system32\profsvc.dll
2012-07-08 22:12:07: Display Name: @%systemroot%\system32\profsvc.dll,-300
2012-07-08 22:12:07: Description: @%systemroot%\system32\profsvc.dll,-301
2012-07-08 22:12:07: ServiceDLL: system32\profsvc.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: profsvc.dll
2012-07-08 22:12:07: Original File Name: ProfSvc.dll.mui
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: QWAVE
2012-07-08 22:12:07: Real Path: C:\windows\system32\qwave.dll
2012-07-08 22:12:07: Display Name: @%SystemRoot%\system32\qwave.dll,-1
2012-07-08 22:12:07: Description: @%SystemRoot%\system32\qwave.dll,-2
2012-07-08 22:12:07: ServiceDLL: system32\qwave.dll
2012-07-08 22:12:07: File size: 210944
2012-07-08 22:12:07: DLL File name: qwave.dll
2012-07-08 22:12:07: Original File Name: qwave.dll.mui
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time: 20090713211612 20090713195415 20090713195415
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: RasAuto
2012-07-08 22:12:07: Real Path: C:\windows\System32\rasauto.dll
2012-07-08 22:12:07: Display Name: @%Systemroot%\system32\rasauto.dll,-200
2012-07-08 22:12:07: Description: @%Systemroot%\system32\rasauto.dll,-201
2012-07-08 22:12:07: ServiceDLL: System32\rasauto.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: rasauto.dll
2012-07-08 22:12:07: Original File Name: rasauto.dll.mui
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: RasMan
2012-07-08 22:12:07: Real Path: C:\windows\System32\rasmans.dll
2012-07-08 22:12:07: Display Name: @%Systemroot%\system32\rasmans.dll,-200
2012-07-08 22:12:07: Description: @%Systemroot%\system32\rasmans.dll,-201
2012-07-08 22:12:07: ServiceDLL: System32\rasmans.dll
2012-07-08 22:12:07: File size: 0
2012-07-08 22:12:07: DLL File name: rasmans.dll
2012-07-08 22:12:07: Original File Name: Rasmans.dll.mui
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time:
2012-07-08 22:12:07: ---------------------------------------------------------------------
2012-07-08 22:12:07: Found Service: RemoteAccess
2012-07-08 22:12:07: Real Path: C:\windows\System32\mprdim.dll
2012-07-08 22:12:07: Display Name: @%Systemroot%\system32\mprdim.dll,-200
2012-07-08 22:12:07: Description: @%Systemroot%\system32\mprdim.dll,-201
2012-07-08 22:12:07: ServiceDLL: System32\mprdim.dll
2012-07-08 22:12:07: File size: 75264
2012-07-08 22:12:07: DLL File name: mprdim.dll
2012-07-08 22:12:07: Original File Name: MPRDIM.DLL.MUI
2012-07-08 22:12:07: Company:
2012-07-08 22:12:07: Mod/Cre/Acc time: 20090713211541 20090713195426 20090713195426
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: RemoteRegistry
2012-07-08 22:12:08: Real Path: C:\windows\system32\regsvc.dll
2012-07-08 22:12:08: Display Name: @regsvc.dll,-1
2012-07-08 22:12:08: Description: @regsvc.dll,-2
2012-07-08 22:12:08: ServiceDLL: system32\regsvc.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: regsvc.dll
2012-07-08 22:12:08: Original File Name: REGSVC.DLL.MUI
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: RpcEptMapper
2012-07-08 22:12:08: Real Path: C:\windows\System32\RpcEpMap.dll
2012-07-08 22:12:08: Display Name: @%windir%\system32\RpcEpMap.dll,-1001
2012-07-08 22:12:08: Description: @%windir%\system32\RpcEpMap.dll,-1002
2012-07-08 22:12:08: ServiceDLL: System32\RpcEpMap.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: RpcEpMap.dll
2012-07-08 22:12:08: Original File Name: RpcEpMap.dll.mui
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: RpcSs
2012-07-08 22:12:08: Real Path: C:\windows\system32\rpcss.dll
2012-07-08 22:12:08: Display Name: @oleres.dll,-5010
2012-07-08 22:12:08: Description: @oleres.dll,-5011
2012-07-08 22:12:08: ServiceDLL: system32\rpcss.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: rpcss.dll
2012-07-08 22:12:08: Original File Name: rpcss.dll
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: SCardSvr
2012-07-08 22:12:08: Real Path: C:\windows\System32\SCardSvr.dll
2012-07-08 22:12:08: Display Name: @%SystemRoot%\System32\SCardSvr.dll,-1
2012-07-08 22:12:08: Description: @%SystemRoot%\System32\SCardSvr.dll,-5
2012-07-08 22:12:08: ServiceDLL: System32\SCardSvr.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: SCardSvr.dll
2012-07-08 22:12:08: Original File Name: SCardSvr.exe.mui
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: Schedule
2012-07-08 22:12:08: Real Path: C:\windows\system32\schedsvc.dll
2012-07-08 22:12:08: Display Name: @%SystemRoot%\system32\schedsvc.dll,-100
2012-07-08 22:12:08: Description: @%SystemRoot%\system32\schedsvc.dll,-101
2012-07-08 22:12:08: ServiceDLL: system32\schedsvc.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: schedsvc.dll
2012-07-08 22:12:08: Original File Name: schedsvc.dll.mui
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: SCPolicySvc
2012-07-08 22:12:08: Real Path: C:\windows\System32\certprop.dll
2012-07-08 22:12:08: Display Name: @%SystemRoot%\System32\certprop.dll,-13
2012-07-08 22:12:08: Description: @%SystemRoot%\System32\certprop.dll,-14
2012-07-08 22:12:08: ServiceDLL: System32\certprop.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: certprop.dll
2012-07-08 22:12:08: Original File Name: certprop.dll.mui
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: SDRSVC
2012-07-08 22:12:08: Real Path: C:\windows\System32\SDRSVC.dll
2012-07-08 22:12:08: Display Name: @%SystemRoot%\system32\sdrsvc.dll,-107
2012-07-08 22:12:08: Description: @%SystemRoot%\system32\sdrsvc.dll,-102
2012-07-08 22:12:08: ServiceDLL: System32\SDRSVC.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: SDRSVC.dll
2012-07-08 22:12:08: Original File Name: SDRSVC.DLL.MUI
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: seclogon
2012-07-08 22:12:08: Real Path: C:\windows\system32\seclogon.dll
2012-07-08 22:12:08: Display Name: @%SystemRoot%\system32\seclogon.dll,-7001
2012-07-08 22:12:08: Description: @%SystemRoot%\system32\seclogon.dll,-7000
2012-07-08 22:12:08: ServiceDLL: system32\seclogon.dll
2012-07-08 22:12:08: File size: 0
2012-07-08 22:12:08: DLL File name: seclogon.dll
2012-07-08 22:12:08: Original File Name: SECLOGON.EXE.MUI
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time:
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: SENS
2012-07-08 22:12:08: Real Path: C:\windows\System32\sens.dll
2012-07-08 22:12:08: Display Name: @%SystemRoot%\system32\Sens.dll,-200
2012-07-08 22:12:08: Description: @%SystemRoot%\system32\Sens.dll,-201
2012-07-08 22:12:08: ServiceDLL: System32\sens.dll
2012-07-08 22:12:08: File size: 49664
2012-07-08 22:12:08: DLL File name: sens.dll
2012-07-08 22:12:08: Original File Name: sens.dll.mui
2012-07-08 22:12:08: Company:
2012-07-08 22:12:08: Mod/Cre/Acc time: 20090713211613 20090713192158 20090713192158
2012-07-08 22:12:08: ---------------------------------------------------------------------
2012-07-08 22:12:08: Found Service: SensrSvc
2012-07-08 22:12:08: Real Path: C:\windows\system32\sensrsvc.dll
2012-07-08 22:12:08: Display Name: @%SystemRoot%\System32\sensrsvc.dll,-1000
2012-07-08 22:12:08: Description: @%SystemRoot%\System32\sensrsvc.dll,-1001
2012-07-08 22:12:09: ServiceDLL: system32\sensrsvc.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: sensrsvc.dll
2012-07-08 22:12:09: Original File Name: sensrsvc.dll.mui
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: SessionEnv
2012-07-08 22:12:09: Real Path: C:\windows\system32\sessenv.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\System32\SessEnv.dll,-1026
2012-07-08 22:12:09: Description: @%SystemRoot%\System32\SessEnv.dll,-1027
2012-07-08 22:12:09: ServiceDLL: system32\sessenv.dll
2012-07-08 22:12:09: File size: 113664
2012-07-08 22:12:09: DLL File name: sessenv.dll
2012-07-08 22:12:09: Original File Name: SessEnv.DLL.MUI
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time: 20101120232355 20101120232355 20101120232355
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: SharedAccess
2012-07-08 22:12:09: Real Path: C:\windows\System32\ipnathlp.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\ipnathlp.dll,-106
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\ipnathlp.dll,-107
2012-07-08 22:12:09: ServiceDLL: System32\ipnathlp.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: ipnathlp.dll
2012-07-08 22:12:09: Original File Name: IPNATHLP.DLL.MUI
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: ShellHWDetection
2012-07-08 22:12:09: Real Path: C:\windows\System32\shsvcs.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\System32\shsvcs.dll,-12288
2012-07-08 22:12:09: Description: @%SystemRoot%\System32\shsvcs.dll,-12289
2012-07-08 22:12:09: ServiceDLL: System32\shsvcs.dll
2012-07-08 22:12:09: File size: 328192
2012-07-08 22:12:09: DLL File name: shsvcs.dll
2012-07-08 22:12:09: Original File Name: SHSVCS.DLL.MUI
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time: 20101120232403 20101120232403 20101120232403
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: sppuinotify
2012-07-08 22:12:09: Real Path: C:\windows\system32\sppuinotify.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\sppuinotify.dll,-103
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\sppuinotify.dll,-102
2012-07-08 22:12:09: ServiceDLL: system32\sppuinotify.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: sppuinotify.dll
2012-07-08 22:12:09: Original File Name: sppuinotify.dll.mui
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: SSDPSRV
2012-07-08 22:12:09: Real Path: C:\windows\System32\ssdpsrv.dll
2012-07-08 22:12:09: Display Name: @%systemroot%\system32\ssdpsrv.dll,-100
2012-07-08 22:12:09: Description: @%systemroot%\system32\ssdpsrv.dll,-101
2012-07-08 22:12:09: ServiceDLL: System32\ssdpsrv.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: ssdpsrv.dll
2012-07-08 22:12:09: Original File Name: ssdpsrv.dll.mui
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: SstpSvc
2012-07-08 22:12:09: Real Path: C:\windows\system32\sstpsvc.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\sstpsvc.dll,-200
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\sstpsvc.dll,-201
2012-07-08 22:12:09: ServiceDLL: system32\sstpsvc.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: sstpsvc.dll
2012-07-08 22:12:09: Original File Name: sstpsvc.dll.mui
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: stisvc
2012-07-08 22:12:09: Real Path: C:\windows\System32\wiaservc.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\wiaservc.dll,-9
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\wiaservc.dll,-10
2012-07-08 22:12:09: ServiceDLL: System32\wiaservc.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: wiaservc.dll
2012-07-08 22:12:09: Original File Name: WIASERVC.DLL.MUI
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: swprv
2012-07-08 22:12:09: Real Path: C:\windows\System32\swprv.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\System32\swprv.dll,-103
2012-07-08 22:12:09: Description: @%SystemRoot%\System32\swprv.dll,-102
2012-07-08 22:12:09: ServiceDLL: System32\swprv.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: swprv.dll
2012-07-08 22:12:09: Original File Name: SWPRV.DLL.MUI
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: SysMain
2012-07-08 22:12:09: Real Path: C:\windows\system32\sysmain.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\sysmain.dll,-1000
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\sysmain.dll,-1001
2012-07-08 22:12:09: ServiceDLL: system32\sysmain.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: sysmain.dll
2012-07-08 22:12:09: Original File Name: sysmain.dll.mui
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: TabletInputService
2012-07-08 22:12:09: Real Path: C:\windows\System32\TabSvc.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\TabSvc.dll,-100
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\TabSvc.dll,-101
2012-07-08 22:12:09: ServiceDLL: System32\TabSvc.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: TabSvc.dll
2012-07-08 22:12:09: Original File Name: TabSvc.dll.mui
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: TapiSrv
2012-07-08 22:12:09: Real Path: C:\windows\System32\tapisrv.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\tapisrv.dll,-10100
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\tapisrv.dll,-10101
2012-07-08 22:12:09: ServiceDLL: System32\tapisrv.dll
2012-07-08 22:12:09: File size: 242176
2012-07-08 22:12:09: DLL File name: tapisrv.dll
2012-07-08 22:12:09: Original File Name: TAPISRV.EXE.MUI
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time: 20101120232400 20101120232400 20101120232400
2012-07-08 22:12:09: ---------------------------------------------------------------------
2012-07-08 22:12:09: Found Service: TBS
2012-07-08 22:12:09: Real Path: C:\windows\System32\tbssvc.dll
2012-07-08 22:12:09: Display Name: @%SystemRoot%\system32\tbssvc.dll,-100
2012-07-08 22:12:09: Description: @%SystemRoot%\system32\tbssvc.dll,-101
2012-07-08 22:12:09: ServiceDLL: System32\tbssvc.dll
2012-07-08 22:12:09: File size: 0
2012-07-08 22:12:09: DLL File name: tbssvc.dll
2012-07-08 22:12:09: Original File Name: TBSSVC.DLL.MUI
2012-07-08 22:12:09: Company:
2012-07-08 22:12:09: Mod/Cre/Acc time:
2012-07-08 22:12:10: ---------------------------------------------------------------------
2012-07-08 22:12:10: Found Service: TermService
2012-07-08 22:12:10: Real Path: C:\windows\System32\termsrv.dll
2012-07-08 22:12:10: Display Name: @%SystemRoot%\System32\termsrv.dll,-268
2012-07-08 22:12:10: Description: @%SystemRoot%\System32\termsrv.dll,-267
2012-07-08 22:12:10: ServiceDLL: System32\termsrv.dll
2012-07-08 22:12:10: File size: 0
2012-07-08 22:12:10: DLL File name: termsrv.dll
2012-07-08 22:12:10: Original File Name: termsrv.dll.mui
2012-07-08 22:12:10: Company:
2012-07-08 22:12:10: Mod/Cre/Acc time:
2012-07-08 22:12:10: ---------------------------------------------------------------------
2012-07-08 22:12:10: Found Service: Themes
2012-07-08 22:12:10: Real Path: C:\windows\system32\themeservice.dll
2012-07-08 22:12:10: Display Name: @%SystemRoot%\System32\themeservice.dll,-8192
2012-07-08 22:12:10: Description: @%SystemRoot%\System32\themeservice.dll,-8193
2012-07-08 22:12:10: ServiceDLL: system32\themeservice.dll
2012-07-08 22:12:10: File size: 0
2012-07-08 22:12:10: DLL File name: themeservice.dll
2012-07-08 22:12:10: Original File Name: THEMESERVICE.DLL.MUI
2012-07-08 22:12:10: Company:
2012-07-08 22:12:10: Mod/Cre/Acc time:
2012-07-08 22:12:10: ---------------------------------------------------------------------
2012-07-08 22:12:10: Found Service: THREADORDER
2012-07-08 22:12:10: Real Path: C:\windows\system32\mmcss.dll
2012-07-08 22:12:10: Display Name: @%systemroot%\system32\mmcss.dll,-102
2012-07-08 22:12:10: Description: @%systemroot%\system32\mmcss.dll,-103
2012-07-08 22:12:10: ServiceDLL: system32\mmcss.dll
2012-07-08 22:12:10: File size: 0
2012-07-08 22:12:10: DLL File name: mmcss.dll
2012-07-08 22:12:10: Original File Name: mmcss.dll.mui
2012-07-08 22:12:10: Company:
2012-07-08 22:12:10: Mod/Cre/Acc time:
2012-07-08 22:12:11: ---------------------------------------------------------------------
2012-07-08 22:12:11: Found Service: TrkWks
2012-07-08 22:12:11: Real Path: C:\windows\System32\trkwks.dll
2012-07-08 22:12:11: Display Name: @%SystemRoot%\system32\trkwks.dll,-1
2012-07-08 22:12:11: Description: @%SystemRoot%\system32\trkwks.dll,-2
2012-07-08 22:12:11: ServiceDLL: System32\trkwks.dll
2012-07-08 22:12:11: File size: 0
2012-07-08 22:12:11: DLL File name: trkwks.dll
2012-07-08 22:12:11: Original File Name: trkwks.dll.mui
2012-07-08 22:12:11: Company:
2012-07-08 22:12:11: Mod/Cre/Acc time:
2012-07-08 22:12:11: !!!!!!!
2012-07-08 22:12:11: Found Service: upnphost
2012-07-08 22:12:11: Real Path: C:\windows\System32\upnphost.dll
2012-07-08 22:12:11: Display Name: @%systemroot%\system32\upnphost.dll,-213
2012-07-08 22:12:11: Description: @%systemroot%\system32\upnphost.dll,-214
2012-07-08 22:12:11: ServiceDLL: System32\upnphost.dll
2012-07-08 22:12:11: File size: 266752
2012-07-08 22:12:11: DLL File name: upnphost.dll
2012-07-08 22:12:11: Original File Name: unpnhost.dll.mui
2012-07-08 22:12:11: Company:
2012-07-08 22:12:11: Mod/Cre/Acc time: 20090713211617 20090713195541 20090713195541
2012-07-08 22:12:11: !!!!!!!!!
2012-07-08 22:12:11: ---------------------------------------------------------------------
2012-07-08 22:12:11: Found Service: UxSms
2012-07-08 22:12:11: Real Path: C:\windows\System32\uxsms.dll
2012-07-08 22:12:11: Display Name: @%SystemRoot%\system32\dwm.exe,-2000
2012-07-08 22:12:11: Description: @%SystemRoot%\system32\dwm.exe,-2001
2012-07-08 22:12:11: ServiceDLL: System32\uxsms.dll
2012-07-08 22:12:11: File size: 0
2012-07-08 22:12:11: DLL File name: uxsms.dll
2012-07-08 22:12:11: Original File Name: UxSms.dll
2012-07-08 22:12:11: Company:
2012-07-08 22:12:11: Mod/Cre/Acc time:
2012-07-08 22:12:11: ---------------------------------------------------------------------
2012-07-08 22:12:11: Found Service: W32Time
2012-07-08 22:12:11: Real Path: C:\windows\system32\w32time.dll
2012-07-08 22:12:11: Display Name: Windows Time
2012-07-08 22:12:11: Description: @%SystemRoot%\system32\w32time.dll,-201
2012-07-08 22:12:11: ServiceDLL: system32\w32time.dll
2012-07-08 22:12:11: File size: 0
2012-07-08 22:12:11: DLL File name: w32time.dll
2012-07-08 22:12:11: Original File Name: w32time.dll.mui
2012-07-08 22:12:11: Company:
2012-07-08 22:12:11: Mod/Cre/Acc time:
2012-07-08 22:12:11: ---------------------------------------------------------------------
2012-07-08 22:12:11: Found Service: WbioSrvc
2012-07-08 22:12:11: Real Path: C:\windows\System32\wbiosrvc.dll
2012-07-08 22:12:11: Display Name: @%systemroot%\system32\wbiosrvc.dll,-100
2012-07-08 22:12:11: Description: @%systemroot%\system32\wbiosrvc.dll,-101
2012-07-08 22:12:11: ServiceDLL: System32\wbiosrvc.dll
2012-07-08 22:12:11: File size: 0
2012-07-08 22:12:11: DLL File name: wbiosrvc.dll
2012-07-08 22:12:11: Original File Name: wbiosrvc.dll.mui
2012-07-08 22:12:11: Company:
2012-07-08 22:12:11: Mod/Cre/Acc time:
2012-07-08 22:12:11: ---------------------------------------------------------------------
2012-07-08 22:12:11: Found Service: wcncsvc
2012-07-08 22:12:11: Real Path: C:\windows\System32\wcncsvc.dll
2012-07-08 22:12:11: Display Name: @%SystemRoot%\system32\wcncsvc.dll,-3
2012-07-08 22:12:11: Description: @%SystemRoot%\system32\wcncsvc.dll,-4
2012-07-08 22:12:11: ServiceDLL: System32\wcncsvc.dll
2012-07-08 22:12:11: File size: 276992
2012-07-08 22:12:11: DLL File name: wcncsvc.dll
2012-07-08 22:12:11: Original File Name: WCNCSVC.DLL.MUI
2012-07-08 22:12:11: Company:
2012-07-08 22:12:11: Mod/Cre/Acc time: 20101120232449 20101120232449 20101120232449
2012-07-08 22:12:11: ---------------------------------------------------------------------
2012-07-08 22:12:11: Found Service: WcsPlugInService
2012-07-08 22:12:11: Real Path: C:\windows\System32\WcsPlugInService.dll
2012-07-08 22:12:11: Display Name: @%SystemRoot%\system32\WcsPlugInService.dll,-200
2012-07-08 22:12:11: Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201
2012-07-08 22:12:11: ServiceDLL: System32\WcsPlugInService.dll
2012-07-08 22:12:11: File size: 32768
2012-07-08 22:12:11: DLL File name: WcsPlugInService.dll
2012-07-08 22:12:11: Original File Name: WcsPlugInService.DLL.MUI
2012-07-08 22:12:11: Company:
2012-07-08 22:12:11: Mod/Cre/Acc time: 20090713211618 20090713192513 20090713192513
2012-07-08 22:12:12: ---------------------------------------------------------------------
2012-07-08 22:12:12: Found Service: WdiServiceHost
2012-07-08 22:12:12: Real Path: C:\windows\system32\wdi.dll
2012-07-08 22:12:12: Display Name: @%systemroot%\system32\wdi.dll,-502
2012-07-08 22:12:12: Description: @%systemroot%\system32\wdi.dll,-503
2012-07-08 22:12:12: ServiceDLL: system32\wdi.dll
2012-07-08 22:12:12: File size: 76288
2012-07-08 22:12:12: DLL File name: wdi.dll
2012-07-08 22:12:12: Original File Name: wdi.dll.mui
2012-07-08 22:12:12: Company:
2012-07-08 22:12:12: Mod/Cre/Acc time: 20090713211618 20090713191947 20090713191947
2012-07-08 22:12:12: ---------------------------------------------------------------------
2012-07-08 22:12:12: Found Service: WdiSystemHost
2012-07-08 22:12:12: Real Path: C:\windows\system32\wdi.dll
2012-07-08 22:12:12: Display Name: @%systemroot%\system32\wdi.dll,-500
2012-07-08 22:12:12: Description: @%systemroot%\system32\wdi.dll,-501
2012-07-08 22:12:12: ServiceDLL: system32\wdi.dll
2012-07-08 22:12:12: File size: 76288
2012-07-08 22:12:12: DLL File name: wdi.dll
2012-07-08 22:12:12: Original File Name: wdi.dll.mui
2012-07-08 22:12:12: Company:
2012-07-08 22:12:12: Mod/Cre/Acc time: 20090713211618 20090713191947 20090713191947
2012-07-08 22:12:12: !!!!!!!
2012-07-08 22:12:12: Found Service: WebClient
2012-07-08 22:12:12: Real Path: C:\windows\System32\webclnt.dll
2012-07-08 22:12:12: Display Name: @%systemroot%\system32\webclnt.dll,-100
2012-07-08 22:12:12: Description: @%systemroot%\system32\webclnt.dll,-101
2012-07-08 22:12:12: ServiceDLL: System32\webclnt.dll
2012-07-08 22:12:12: File size: 204800
2012-07-08 22:12:12: DLL File name: webclnt.dll
2012-07-08 22:12:12: Original File Name: davsvc.dll.mui
2012-07-08 22:12:12: Company:
2012-07-08 22:12:12: Mod/Cre/Acc time: 20101120232449 20101120232449 20101120232449
2012-07-08 22:12:12: !!!!!!!!!
2012-07-08 22:12:12: ---------------------------------------------------------------------
2012-07-08 22:12:12: Found Service: Wecsvc
2012-07-08 22:12:12: Real Path: C:\windows\system32\wecsvc.dll
2012-07-08 22:12:12: Display Name: @%SystemRoot%\system32\wecsvc.dll,-200
2012-07-08 22:12:12: Description: @%SystemRoot%\system32\wecsvc.dll,-201
2012-07-08 22:12:12: ServiceDLL: system32\wecsvc.dll
2012-07-08 22:12:12: File size: 0
2012-07-08 22:12:12: DLL File name: wecsvc.dll
2012-07-08 22:12:12: Original File Name: wecsvc.dll.mui
2012-07-08 22:12:12: Company:
2012-07-08 22:12:12: Mod/Cre/Acc time:
2012-07-08 22:12:13: !!!!!!!
2012-07-08 22:12:13: Found Service: wercplsupport
2012-07-08 22:12:13: Real Path: C:\windows\System32\wercplsupport.dll
2012-07-08 22:12:13: Display Name: @%SystemRoot%\System32\wercplsupport.dll,-101
2012-07-08 22:12:13: Description: @%SystemRoot%\System32\wercplsupport.dll,-100
2012-07-08 22:12:13: ServiceDLL: System32\wercplsupport.dll
2012-07-08 22:12:13: File size: 0
2012-07-08 22:12:13: DLL File name: wercplsupport.dll
2012-07-08 22:12:13: Original File Name: ERC
2012-07-08 22:12:13: Company:
2012-07-08 22:12:13: Mod/Cre/Acc time:
2012-07-08 22:12:13: !!!!!!!!!
2012-07-08 22:12:13: !!!!!!!
2012-07-08 22:12:13: Found Service: WerSvc
2012-07-08 22:12:13: Real Path: C:\windows\System32\WerSvc.dll
2012-07-08 22:12:13: Display Name: @%SystemRoot%\System32\wersvc.dll,-100
2012-07-08 22:12:13: Description: @%SystemRoot%\System32\wersvc.dll,-101
2012-07-08 22:12:13: ServiceDLL: System32\WerSvc.dll
2012-07-08 22:12:13: File size: 0
2012-07-08 22:12:13: DLL File name: WerSvc.dll
2012-07-08 22:12:13: Original File Name: wersvc
2012-07-08 22:12:13: Company:
2012-07-08 22:12:13: Mod/Cre/Acc time:
2012-07-08 22:12:13: !!!!!!!!!
2012-07-08 22:12:13: ---------------------------------------------------------------------
2012-07-08 22:12:13: Found Service: Winmgmt
2012-07-08 22:12:13: Real Path: C:\windows\system32\wbem\WMIsvc.dll
2012-07-08 22:12:13: Display Name: @%Systemroot%\system32\wbem\wmisvc.dll,-205
2012-07-08 22:12:13: Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204
2012-07-08 22:12:13: ServiceDLL: system32\wbem\WMIsvc.dll
2012-07-08 22:12:13: File size: 0
2012-07-08 22:12:13: DLL File name: WMIsvc.dll
2012-07-08 22:12:13: Original File Name: wmisvc.dll.mui
2012-07-08 22:12:13: Company:
2012-07-08 22:12:13: Mod/Cre/Acc time:
2012-07-08 22:12:14: ---------------------------------------------------------------------
2012-07-08 22:12:14: Found Service: WinRM
2012-07-08 22:12:14: Real Path: C:\windows\system32\WsmSvc.dll
2012-07-08 22:12:14: Display Name: @%Systemroot%\system32\wsmsvc.dll,-101
2012-07-08 22:12:14: Description: @%Systemroot%\system32\wsmsvc.dll,-102
2012-07-08 22:12:14: ServiceDLL: system32\WsmSvc.dll
2012-07-08 22:12:14: File size: 1175040
2012-07-08 22:12:14: DLL File name: WsmSvc.dll
2012-07-08 22:12:14: Original File Name: WsmSvc.dll.mui
2012-07-08 22:12:14: Company:
2012-07-08 22:12:14: Mod/Cre/Acc time: 20101120232432 20101120232432 20101120232432
2012-07-08 22:12:14: ---------------------------------------------------------------------
2012-07-08 22:12:14: Found Service: Wlansvc
2012-07-08 22:12:14: Real Path: C:\windows\System32\wlansvc.dll
2012-07-08 22:12:14: Display Name: @%SystemRoot%\System32\wlansvc.dll,-257
2012-07-08 22:12:14: Description: @%SystemRoot%\System32\wlansvc.dll,-258
2012-07-08 22:12:14: ServiceDLL: System32\wlansvc.dll
2012-07-08 22:12:14: File size: 0
2012-07-08 22:12:14: DLL File name: wlansvc.dll
2012-07-08 22:12:14: Original File Name: wlansvc.dll.mui
2012-07-08 22:12:14: Company:
2012-07-08 22:12:14: Mod/Cre/Acc time:
2012-07-08 22:12:14: ---------------------------------------------------------------------
2012-07-08 22:12:14: Found Service: WPCSvc
2012-07-08 22:12:14: Real Path: C:\windows\System32\wpcsvc.dll
2012-07-08 22:12:14: Display Name: @%SystemRoot%\system32\wpcsvc.dll,-100
2012-07-08 22:12:14: Description: @%SystemRoot%\system32\wpcsvc.dll,-101
2012-07-08 22:12:14: ServiceDLL: System32\wpcsvc.dll
2012-07-08 22:12:14: File size: 10752
2012-07-08 22:12:14: DLL File name: wpcsvc.dll
2012-07-08 22:12:14: Original File Name: wpcsvc.exe.mui
2012-07-08 22:12:14: Company:
2012-07-08 22:12:14: Mod/Cre/Acc time: 20090713211620 20090713194010 20090713194010
2012-07-08 22:12:14: ---------------------------------------------------------------------
2012-07-08 22:12:14: Found Service: WPDBusEnum
2012-07-08 22:12:14: Real Path: C:\windows\system32\wpdbusenum.dll
2012-07-08 22:12:14: Display Name: @%SystemRoot%\system32\wpdbusenum.dll,-100
2012-07-08 22:12:14: Description: @%SystemRoot%\system32\wpdbusenum.dll,-101
2012-07-08 22:12:14: ServiceDLL: system32\wpdbusenum.dll
2012-07-08 22:12:14: File size: 0
2012-07-08 22:12:14: DLL File name: wpdbusenum.dll
2012-07-08 22:12:14: Original File Name: WpdBusEnum.DLL.MUI
2012-07-08 22:12:14: Company:
2012-07-08 22:12:14: Mod/Cre/Acc time:
2012-07-08 22:12:14: ---------------------------------------------------------------------
2012-07-08 22:12:14: Found Service: wscsvc
2012-07-08 22:12:14: Real Path: C:\windows\System32\wscsvc.dll
2012-07-08 22:12:14: Display Name: @%SystemRoot%\System32\wscsvc.dll,-200
2012-07-08 22:12:14: Description: @%SystemRoot%\System32\wscsvc.dll,-201
2012-07-08 22:12:14: ServiceDLL: System32\wscsvc.dll
2012-07-08 22:12:14: File size: 0
2012-07-08 22:12:14: DLL File name: wscsvc.dll
2012-07-08 22:12:14: Original File Name: wscsvc.dll.mui
2012-07-08 22:12:14: Company:
2012-07-08 22:12:14: Mod/Cre/Acc time:
2012-07-08 22:12:14: ---------------------------------------------------------------------
2012-07-08 22:12:14: Found Service: wuauserv
2012-07-08 22:12:14: Real Path: C:\windows\system32\wuaueng.dll
2012-07-08 22:12:14: Display Name: @%systemroot%\system32\wuaueng.dll,-105
2012-07-08 22:12:14: Description: @%systemroot%\system32\wuaueng.dll,-106
2012-07-08 22:12:14: ServiceDLL: system32\wuaueng.dll
2012-07-08 22:12:14: File size: 0
2012-07-08 22:12:14: DLL File name: wuaueng.dll
2012-07-08 22:12:14: Original File Name: wuaueng.dll.mui
2012-07-08 22:12:14: Company:
2012-07-08 22:12:14: Mod/Cre/Acc time:
2012-07-08 22:12:15: ---------------------------------------------------------------------
2012-07-08 22:12:15: Found Service: wudfsvc
2012-07-08 22:12:15: Real Path: C:\windows\System32\WUDFSvc.dll
2012-07-08 22:12:15: Display Name: @%SystemRoot%\system32\wudfsvc.dll,-1000
2012-07-08 22:12:15: Description: @%SystemRoot%\system32\wudfsvc.dll,-1001
2012-07-08 22:12:15: ServiceDLL: System32\WUDFSvc.dll
2012-07-08 22:12:15: File size: 0
2012-07-08 22:12:15: DLL File name: WUDFSvc.dll
2012-07-08 22:12:15: Original File Name: WUDFSvc.dll.mui
2012-07-08 22:12:15: Company:
2012-07-08 22:12:15: Mod/Cre/Acc time:
2012-07-08 22:12:15: ---------------------------------------------------------------------
2012-07-08 22:12:15: Found Service: WwanSvc
2012-07-08 22:12:15: Real Path: C:\windows\System32\wwansvc.dll
2012-07-08 22:12:15: Display Name: @%SystemRoot%\System32\wwansvc.dll,-257
2012-07-08 22:12:15: Description: @%SystemRoot%\System32\wwansvc.dll,-258
2012-07-08 22:12:15: ServiceDLL: System32\wwansvc.dll
2012-07-08 22:12:15: File size: 0
2012-07-08 22:12:15: DLL File name: wwansvc.dll
2012-07-08 22:12:15: Original File Name: WwanSvc.dll.mui
2012-07-08 22:12:15: Company:
2012-07-08 22:12:15: Mod/Cre/Acc time:
2012-07-08 22:12:15:
2012-07-08 22:12:15: Looking for SHELL key
2012-07-08 22:12:15: Now looking for bad DLL files in system32
2012-07-08 22:17:37: Folder: GAC
2012-07-08 22:17:37: Folder: GAC_32
2012-07-08 22:17:37: Folder: GAC_64
2012-07-08 22:17:37: Folder: GAC_MSIL
2012-07-08 22:17:37: Folder: NativeImages_v2.0.50727_32
2012-07-08 22:17:37: Folder: NativeImages_v2.0.50727_64
2012-07-08 22:17:37: Folder: NativeImages_v4.0.30319_32
2012-07-08 22:17:37: Folder: NativeImages_v4.0.30319_64
2012-07-08 22:17:38: Folder: temp
2012-07-08 22:17:38: Folder: tmp
2012-07-08 22:17:38: Checking for bad folder
2012-07-08 22:17:38: Found 1 folders.
2012-07-08 22:17:38: Checking C:\windows\assembly\tmp
2012-07-08 22:17:38: ... Folder test returns: 1
2012-07-08 22:17:38: Done with folder list in C:\windows\assembly\ tmp
2012-07-08 22:17:38: Autonomous mode, clearing out yt folder
2012-07-08 22:17:39: cmd.exe /c start "C:\Users\Jordan\Documents\Anti Malware\yorkyt.exe"
2012-07-08 22:17:41: Please restart manually
2012-07-08 22:53:49: ****************************************************
2012-07-08 22:53:49: Starting UP ... v 0.0.0.220
2012-07-08 22:53:49: ****************************************************
2012-07-08 22:53:51: Stop TPSRV returns: 2
2012-07-08 22:54:06: Listing processes...
2012-07-08 22:54:06: :[System Process]:0
2012-07-08 22:54:06: :System:4
2012-07-08 22:54:06: :smss.exe:412
2012-07-08 22:54:06: :csrss.exe:552
2012-07-08 22:54:06: :wininit.exe:612
2012-07-08 22:54:06: :csrss.exe:632
2012-07-08 22:54:06: :services.exe:668
2012-07-08 22:54:06: :lsass.exe:696
2012-07-08 22:54:06: :lsm.exe:704
2012-07-08 22:54:06: :svchost.exe:800
2012-07-08 22:54:06: :nvvsvc.exe:860
2012-07-08 22:54:06: :svchost.exe:900
2012-07-08 22:54:06: :svchost.exe:960
2012-07-08 22:54:06: :svchost.exe:992
2012-07-08 22:54:06: :svchost.exe:120
2012-07-08 22:54:06: :audiodg.exe:576
2012-07-08 22:54:06: :svchost.exe:464
2012-07-08 22:54:06: :winlogon.exe:1044
2012-07-08 22:54:06: :svchost.exe:1172
2012-07-08 22:54:06: :NvXDSync.exe:1364
2012-07-08 22:54:06: :wlanext.exe:1424
2012-07-08 22:54:06: :conhost.exe:1432
2012-07-08 22:54:06: :spoolsv.exe:1568
2012-07-08 22:54:06: :svchost.exe:1600
2012-07-08 22:54:06: :coreServiceShell.exe:1692
2012-07-08 22:54:06: :AppleMobileDeviceService.exe:1740
2012-07-08 22:54:06: :uiWatchDog.exe:1748
2012-07-08 22:54:06: :conhost.exe:1756
2012-07-08 22:54:06: :coreFrameworkHost.exe:1784
2012-07-08 22:54:06: :conhost.exe:1792
2012-07-08 22:54:06: :taskhost.exe:1876
2012-07-08 22:54:06: :dwm.exe:620
2012-07-08 22:54:06: :explorer.exe:1164
2012-07-08 22:54:06: :uiSeAgnt.exe:1020
2012-07-08 22:54:06: :mDNSResponder.exe:2000
2012-07-08 22:54:06: :EvtEng.exe:2028
2012-07-08 22:54:06: :FlipShareService.exe:1828
2012-07-08 22:54:06: :RegSrvc.exe:2132
2012-07-08 22:54:06: :RichVideo.exe:2176
2012-07-08 22:54:06: :SeaPort.EXE:2228
2012-07-08 22:54:06: :sftvsa.exe:2616
2012-07-08 22:54:06: :c2c_service.exe:2700
2012-07-08 22:54:06: :Updater.exe:2732
2012-07-08 22:54:06: :AppSrv.exe:2832
2012-07-08 22:54:06: :WLIDSVC.EXE:2916
2012-07-08 22:54:06: :unsecapp.exe:2980
2012-07-08 22:54:06: :WmiPrvSE.exe:2144
2012-07-08 22:54:06: :WmiPrvSE.exe:2780
2012-07-08 22:54:06: :DMAgent.exe:3092
2012-07-08 22:54:06: :sftlist.exe:3164
2012-07-08 22:54:06: :WLIDSVCM.EXE:3192
2012-07-08 22:54:06: :taskeng.exe:3440
2012-07-08 22:54:06: :taskeng.exe:3476
2012-07-08 22:54:06: :SRSPremiumPanel_64.exe:3492
2012-07-08 22:54:06: :YCMMirage.exe:3536
2012-07-08 22:54:06: :dmhkcore.exe:3544
2012-07-08 22:54:06: :WifiManager.exe:3556
2012-07-08 22:54:06: :igfxext.exe:3676
2012-07-08 22:54:06: :igfxsrvc.exe:3708
2012-07-08 22:54:06: :brs.exe:3876
2012-07-08 22:54:06: :CLMLSvc.exe:3892
2012-07-08 22:54:06: :PDVD10Serv.exe:3920
2012-07-08 22:54:06: :SSCSettings.exe:3948
2012-07-08 22:54:06: :hkcmd.exe:3964
2012-07-08 22:54:06: :CVHSVC.EXE:3972
2012-07-08 22:54:06: :igfxtray.exe:4000
2012-07-08 22:54:06: :iFrmewrk.exe:4088
2012-07-08 22:54:06: :WiMAXCU.exe:3568
2012-07-08 22:54:06: :igfxpers.exe:3360
2012-07-08 22:54:06: :svchost.exe:1960
2012-07-08 22:54:06: :svchost.exe:4204
2012-07-08 22:54:06: :yorkyt.exe:4320
2012-07-08 22:54:06: :RAVCpl64.exe:4388
2012-07-08 22:54:06: :SynTPEnh.exe:4404
2012-07-08 22:54:06: :aim.exe:4516
2012-07-08 22:54:06: :msnmsgr.exe:4556
2012-07-08 22:54:06: :Skype.exe:4688
2012-07-08 22:54:06: :jusched.exe:4788
2012-07-08 22:54:06: :Updater.exe:4796
2012-07-08 22:54:06: :iTunesHelper.exe:4824
2012-07-08 22:54:06: :reader_sl.exe:4840
2012-07-08 22:54:06: :AdobeARM.exe:4868
2012-07-08 22:54:06: :SynTPHelper.exe:5008
2012-07-08 22:54:06: :iPodService.exe:4596
2012-07-08 22:54:06: :SearchIndexer.exe:4348
2012-07-08 22:54:06: :EasySpeedUpManager.exe:1096
2012-07-08 22:54:06: :raserver.exe:4924
2012-07-08 22:54:06: :BatteryLifeExtender.exe:4820
2012-07-08 22:54:06:
2012-07-08 22:54:06: Starting cleanup mode...
2012-07-08 22:56:22: ... Done with files, now folders
2012-07-08 22:56:25: All DONE

#6 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:45 PM

Posted 13 July 2012 - 03:40 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

Posted Image In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/459800 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

Posted Image If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS and GMER log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


We also need a new log from the GMER anti-rootkit Scanner.

Please note that if you are running a 64-bit version of Windows, you should not bother creating a GMER log.

Please first disable any CD emulation programs using the steps found in this topic:

Why we request you disable CD Emulation when receiving Malware Removal Advice


Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:

How to create a GMER log


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#7 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,697 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:45 PM

Posted 18 July 2012 - 03:45 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users