Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Trojan horse Dropper.Generic_c.MMI ?


  • This topic is locked This topic is locked
6 replies to this topic

#1 GastlyKazoo

GastlyKazoo

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 16 July 2012 - 06:40 PM

I am running Windows 7 Home Premium SP1 on a Dell XPS L511Z. I keep getting pop-ups from AVG Resident Shield Alert that say
"Threat Detected!
File name: c:\Windows\System32\services.exe
Threat name: Trojan horse Dropper.Generic_c.MMI (More info)
Detected on open."
The only option given is "Ignore the threat," and then occasionally it will go to another screen that says "Multiple threat detection." It will then list multiple Trojan horse infections with the option "Remove all unhealed." However, clicking on this does not remove the problem at all. I have run AVG Free, SUPERAntiSpyware Free, Malwarebytes Anti-Malware, and ESET Online Scanner. Even though they have detected the Trojans (with the exception of SUPERAntiSpyware) and said that they removed them, the pop-ups from AVG still persist. I don't know what other steps to take. Thanks.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 PM

Posted 16 July 2012 - 07:07 PM

Welcome GastlyKazoo

Dropper.Generic_c.MMI has the ability to download many other malwares, backdoor Trojans or worms so you should change all passwords when done.

Lets run a few tools and look at the logs please.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

>>>>


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.


>>>>>

Next run Superantisypware (SAS):

Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.


Finally run ESET and tell me how it is running after......

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 mrronski

mrronski

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 16 July 2012 - 08:19 PM

Try windows defender offline it worked for me.

http://windows.microsoft.com/en-US/windows/what-is-windows-defender-offline/

Edited by mrronski, 16 July 2012 - 08:20 PM.


#4 GastlyKazoo

GastlyKazoo
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 04 August 2012 - 08:24 PM

Thanks for replying to my post. Sorry it's taken so long to respond. I have completed the scans you asked for and am posting the logs below. I am still getting the same error messages from AVG. Thanks for your help.


MiniToolBox by Farbar Version: 15-07-2012
Ran by Barbossa (administrator) on 16-07-2012 at 20:48:59
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Connected)
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Barbossa-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 88-53-2E-83-EE-F7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 88-53-2E-83-EE-F7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 88-53-2E-83-EE-FA
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
Physical Address. . . . . . . . . : 88-53-2E-83-EE-F6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9c8c:aab0:c3a2:4fe5%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, July 15, 2012 4:56:32 PM
Lease Expires . . . . . . . . . . : Tuesday, July 17, 2012 6:43:18 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 243815214
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-84-C6-74-84-8F-69-AB-22-FB
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : wds01.com
Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 84-8F-69-AB-22-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{BEA6C9B2-28EC-4E27-975D-A2033C24EE78}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {38F82897-1ADB-4D8A-B694-DCB48B0A0159}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2A255F0E-A346-4B66-B82D-27A498369389}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6593DF87-AF9D-4A81-93C9-544CA590CC50}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{587D791C-FEF4-4DC5-9FB4-753BE51210B8}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.wds01.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Pinging google.com [74.125.226.206] with 32 bytes of data:
Reply from 74.125.226.206: bytes=32 time=8ms TTL=250
Reply from 74.125.226.206: bytes=32 time=26ms TTL=250

Ping statistics for 74.125.226.206:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 8ms, Maximum = 26ms, Average = 17ms

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=59ms TTL=47
Reply from 98.139.183.24: bytes=32 time=31ms TTL=47

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 31ms, Maximum = 59ms, Average = 45ms

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...88 53 2e 83 ee f7 ......Microsoft Virtual WiFi Miniport Adapter #2
16...88 53 2e 83 ee f7 ......Microsoft Virtual WiFi Miniport Adapter
14...88 53 2e 83 ee fa ......Bluetooth Device (Personal Area Network)
13...88 53 2e 83 ee f6 ......Intel® Centrino® Advanced-N 6230
11...84 8f 69 ab 22 fb ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
1...........................Software Loopback Interface 1
20...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #3
19...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
21...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #4
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
28...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
29...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
26...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.5 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.5 286
192.168.1.5 255.255.255.255 On-link 192.168.1.5 286
192.168.1.255 255.255.255.255 On-link 192.168.1.5 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.5 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.5 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
13 286 fe80::/64 On-link
13 286 fe80::9c8c:aab0:c3a2:4fe5/128
On-link
1 306 ff00::/8 On-link
13 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/16/2012 06:42:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10218

Error: (07/16/2012 06:42:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10218

Error: (07/16/2012 06:42:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2012 06:42:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9204

Error: (07/16/2012 06:42:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9204

Error: (07/16/2012 06:42:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2012 06:42:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8190

Error: (07/16/2012 06:42:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8190

Error: (07/16/2012 06:42:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2012 06:42:35 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7160


System errors:
=============
Error: (07/16/2012 05:02:15 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/16/2012 05:02:15 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/16/2012 04:30:20 PM) (Source: DCOM) (User: )
Description: {3A185DDE-E020-4985-A8F2-E27CDC4A0F3A}

Error: (07/16/2012 04:28:51 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/16/2012 04:28:33 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (07/16/2012 04:28:33 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (07/16/2012 04:28:20 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/15/2012 05:26:51 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (07/15/2012 05:26:51 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (07/15/2012 04:58:53 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.


Microsoft Office Sessions:
=========================
Error: (07/16/2012 06:42:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10218

Error: (07/16/2012 06:42:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10218

Error: (07/16/2012 06:42:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2012 06:42:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9204

Error: (07/16/2012 06:42:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9204

Error: (07/16/2012 06:42:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2012 06:42:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8190

Error: (07/16/2012 06:42:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8190

Error: (07/16/2012 06:42:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2012 06:42:35 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7160


=========================== Installed Programs ============================

AccelerometerP11 (Version: 2.00.11.22)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.265)
Adobe Reader X (10.1.3) MUI (Version: 10.1.3)
Advanced Audio FX Engine (Version: 1.12.05)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.13.1.0)
AVG 2012 (Version: 12.0.1901)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2178)
AVG 2012 (Version: 12.0.2180)
AVG 2012 (Version: 12.0.2193)
AVG 2012 (Version: 12.0.2195)
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
Bing Bar (Version: 6.0.2282.0)
Bing Bar Platform (Version: 6.0.2282.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
Blio (Version: 2.3.7140)
Bonjour (Version: 3.0.0.10)
Consumer In-Home Service Agreement (Version: 2.0.0)
Coupon Printer for Windows (Version: 5.0.0.0)
Cozi (Version: 1.0.6505.38692)
Cypress TrackPad (Version: 2.3.6.21)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software (Version: 9.4.61)
Dell DataSafe Local Backup (Version: 9.4.61)
Dell DataSafe Online (Version: 2.1.19634)
Dell Digital Delivery (Version: 2.2.2000.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell MusicStage (Version: 1.5.201.0)
Dell PhotoStage (Version: 1.5.0.65)
Dell Stage (Version: 1.5.201.0)
Dell Stage Remote (Version: 2.0.0.43)
Dell Support Center (Version: 3.1.5907.39)
Dell VideoStage (Version: 1.2.0.1712)
Dell Webcam Central (Version: 2.00.44)
DirectX 9 Runtime (Version: 1.00.0000)
eBay (Version: 1.4.0)
ESET Online Scanner v3
Google Chrome (Version: 20.0.1132.57)
High-Definition Video Playback (Version: 7.3.10000.0.0)
HP Deskjet 3050 J610 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 3050 J610 series Help (Version: 140.0.63.63)
HP Deskjet 3050 J610 series Product Improvement Study (Version: 22.50.231.0)
HP Photo Creations (Version: 1.0.0.3781)
HP Update (Version: 5.002.006.003)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2455)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.1.0608)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.1000)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® WiDi (Version: 2.1.39.0)
Intel® Wireless Display
iTunes (Version: 10.6.1.7)
Java™ 6 Update 27 (64-bit) (Version: 6.0.270)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
Left 4 Dead
Left 4 Dead 2
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee SecurityCenter (Version: 11.0.654)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Search Enhancement Pack (Version: 3.0.131.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 10 Movie ThemePack Basic (Version: 10.2.10200.0.0)
Nero Control Center 10 (Version: 10.6.12500.0.5)
Nero ControlCenter 10 Help (CHM) (Version: 10.2.10800)
Nero Core Components 10 (Version: 2.0.20000.9.12)
Nero Update (Version: 11.0.11500.28.0)
NVIDIA 3D Vision Driver 268.30 (Version: 268.30)
NVIDIA Control Panel 268.30 (Version: 268.30)
NVIDIA Graphics Driver 268.30 (Version: 268.30)
NVIDIA HD Audio Driver 1.2.22.1 (Version: 1.2.22.1)
NVIDIA Install Application (Version: 2.265.41.0)
NVIDIA Optimus 1.0.21 (Version: 1.0.21)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6830)
NVIDIA Update Components (Version: 1.0.21)
Origin (Version: 8.5.0.4550)
PhotoShowExpress (Version: 2.0.063)
PlayReady PC Runtime x86 (Version: 1.3.0)
Portal
Portal 2
Quickset64 (Version: 11.0.21)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6383)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
SafeConnect
Skype Click to Call (Version: 5.8.8855)
Skype™ 5.5 (Version: 5.5.124)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
SONIC THE HEDGEHOG 4 Episode I
SpeedyPC Pro (Version: 3.0.0.0)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.0.1144)
SyncUP (Version: 1.10.11100.8.106)
SyncUP (Version: 10.2.15400)
The Sims 2
The Sims 2 Nightlife
The Sims™ 2 Apartment Life
The Sims™ 2 Best of Business Collection
The Sims™ 2 Bon Voyage
The Sims™ 2 FreeTime
TrustedID (Version: 5.0)
TrustedID IDMonitor Identity Protection (Version: 1.1.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Veoh Giraffic Video Accelerator (Version: 0.86.246.230)
Veoh Web Player (Version: 1.1.2.0000)
Verizon Mobile Broadband Drivers (Version: 3.02.002.002)
Verizon Wireless MiFi-2200 Firmware Updates (Version: 1.0.5)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VZAccess Manager (Version: 7.3.13.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Zinio Reader 4 (Version: 4.2.4164)
Zoo Tycoon 2 - Extinct Animals (Version: 1.00.0000)
Zoo Tycoon 2 Endangered Species

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 6038.17 MB
Available physical RAM: 3095.76 MB
Total Pagefile: 12074.53 MB
Available Pagefile: 7689.29 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.76 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:446.13 GB) (Free:316.81 GB) NTFS

========================= Users: ========================================

User accounts for \\BARBOSSA-PC

Administrator Barbossa Guest
UpdatusUser


**** End of log ****




21:17:23.0679 9736 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
21:17:24.0120 9736 ============================================================
21:17:24.0120 9736 Current date / time: 2012/07/16 21:17:24.0120
21:17:24.0120 9736 SystemInfo:
21:17:24.0120 9736
21:17:24.0120 9736 OS Version: 6.1.7601 ServicePack: 1.0
21:17:24.0120 9736 Product type: Workstation
21:17:24.0120 9736 ComputerName: BARBOSSA-PC
21:17:24.0120 9736 UserName: Barbossa
21:17:24.0120 9736 Windows directory: C:\Windows
21:17:24.0120 9736 System windows directory: C:\Windows
21:17:24.0120 9736 Running under WOW64
21:17:24.0120 9736 Processor architecture: Intel x64
21:17:24.0120 9736 Number of processors: 4
21:17:24.0120 9736 Page size: 0x1000
21:17:24.0120 9736 Boot type: Normal boot
21:17:24.0120 9736 ============================================================
21:17:26.0000 9736 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:17:26.0005 9736 ============================================================
21:17:26.0005 9736 \Device\Harddisk0\DR0:
21:17:26.0006 9736 MBR partitions:
21:17:26.0006 9736 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x34000, BlocksNum 0x2710000
21:17:26.0006 9736 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2744000, BlocksNum 0x37C41830
21:17:26.0006 9736 ============================================================
21:17:26.0033 9736 C: <-> \Device\Harddisk0\DR0\Partition1
21:17:26.0033 9736 ============================================================
21:17:26.0033 9736 Initialize success
21:17:26.0033 9736 ============================================================
21:18:39.0597 7108 ============================================================
21:18:39.0597 7108 Scan started
21:18:39.0597 7108 Mode: Manual; TDLFS;
21:18:39.0597 7108 ============================================================
21:18:42.0248 7108 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:18:42.0252 7108 !SASCORE - ok
21:18:42.0394 7108 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:18:42.0399 7108 1394ohci - ok
21:18:42.0432 7108 Acceler (e0065cbf1a25c015c218457d2cd522b9) C:\Windows\system32\DRIVERS\Accelern.sys
21:18:42.0441 7108 Acceler - ok
21:18:42.0464 7108 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:18:42.0478 7108 ACPI - ok
21:18:42.0491 7108 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:18:42.0493 7108 AcpiPmi - ok
21:18:42.0574 7108 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:18:42.0575 7108 AdobeARMservice - ok
21:18:42.0680 7108 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:18:42.0692 7108 AdobeFlashPlayerUpdateSvc - ok
21:18:42.0778 7108 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
21:18:42.0793 7108 adp94xx - ok
21:18:42.0856 7108 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
21:18:42.0872 7108 adpahci - ok
21:18:42.0896 7108 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
21:18:42.0900 7108 adpu320 - ok
21:18:42.0927 7108 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:18:42.0930 7108 AeLookupSvc - ok
21:18:42.0992 7108 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
21:18:42.0995 7108 AERTFilters - ok
21:18:43.0059 7108 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:18:43.0074 7108 AFD - ok
21:18:43.0087 7108 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:18:43.0090 7108 agp440 - ok
21:18:43.0102 7108 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:18:43.0105 7108 ALG - ok
21:18:43.0118 7108 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:18:43.0121 7108 aliide - ok
21:18:43.0133 7108 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:18:43.0136 7108 amdide - ok
21:18:43.0149 7108 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
21:18:43.0151 7108 AmdK8 - ok
21:18:43.0169 7108 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
21:18:43.0174 7108 AmdPPM - ok
21:18:43.0188 7108 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:18:43.0192 7108 amdsata - ok
21:18:43.0206 7108 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
21:18:43.0211 7108 amdsbs - ok
21:18:43.0223 7108 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:18:43.0225 7108 amdxata - ok
21:18:43.0267 7108 AMPPAL (3bc90482a834f998c3b7a9c934a20342) C:\Windows\system32\DRIVERS\AMPPAL.sys
21:18:43.0286 7108 AMPPAL - ok
21:18:43.0298 7108 AMPPALP (3bc90482a834f998c3b7a9c934a20342) C:\Windows\system32\DRIVERS\amppal.sys
21:18:43.0300 7108 AMPPALP - ok
21:18:43.0408 7108 AMPPALR3 (a47d7febd9381d34ddb4ff38b15a67fe) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
21:18:43.0445 7108 AMPPALR3 - ok
21:18:43.0624 7108 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:18:43.0627 7108 AppID - ok
21:18:43.0650 7108 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:18:43.0653 7108 AppIDSvc - ok
21:18:43.0677 7108 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:18:43.0679 7108 Appinfo - ok
21:18:43.0751 7108 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:18:43.0752 7108 Apple Mobile Device - ok
21:18:43.0775 7108 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
21:18:43.0778 7108 arc - ok
21:18:43.0788 7108 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
21:18:43.0790 7108 arcsas - ok
21:18:43.0871 7108 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:18:43.0884 7108 aspnet_state - ok
21:18:43.0904 7108 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:18:43.0906 7108 AsyncMac - ok
21:18:43.0939 7108 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:18:43.0942 7108 atapi - ok
21:18:43.0993 7108 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:18:44.0015 7108 AudioEndpointBuilder - ok
21:18:44.0020 7108 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:18:44.0026 7108 AudioSrv - ok
21:18:44.0253 7108 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
21:18:44.0345 7108 AVGIDSAgent - ok
21:18:44.0448 7108 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
21:18:44.0452 7108 AVGIDSDriver - ok
21:18:44.0483 7108 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
21:18:44.0503 7108 AVGIDSFilter - ok
21:18:44.0527 7108 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
21:18:44.0530 7108 AVGIDSHA - ok
21:18:44.0577 7108 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
21:18:44.0588 7108 Avgldx64 - ok
21:18:44.0599 7108 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
21:18:44.0601 7108 Avgmfx64 - ok
21:18:44.0615 7108 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
21:18:44.0618 7108 Avgrkx64 - ok
21:18:44.0692 7108 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
21:18:44.0704 7108 Avgtdia - ok
21:18:44.0796 7108 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
21:18:44.0798 7108 avgwd - ok
21:18:44.0852 7108 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:18:44.0856 7108 AxInstSV - ok
21:18:44.0900 7108 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
21:18:44.0925 7108 b06bdrv - ok
21:18:45.0015 7108 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:18:45.0035 7108 b57nd60a - ok
21:18:45.0067 7108 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:18:45.0072 7108 BDESVC - ok
21:18:45.0082 7108 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:18:45.0085 7108 Beep - ok
21:18:45.0135 7108 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:18:45.0160 7108 BITS - ok
21:18:45.0188 7108 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:18:45.0207 7108 blbdrive - ok
21:18:45.0434 7108 Bluetooth Device Monitor (0f46d2845bd7ddaca52340ecc2b65da3) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
21:18:45.0455 7108 Bluetooth Device Monitor - ok
21:18:45.0525 7108 Bluetooth Media Service (3341de556ec28252d603277609eef8bf) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
21:18:45.0561 7108 Bluetooth Media Service - ok
21:18:45.0698 7108 Bluetooth OBEX Service (5d5c3ec9be1107dedf0feb55b7f3bd77) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
21:18:45.0718 7108 Bluetooth OBEX Service - ok
21:18:45.0821 7108 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:18:45.0827 7108 Bonjour Service - ok
21:18:45.0914 7108 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:18:45.0918 7108 bowser - ok
21:18:45.0949 7108 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
21:18:45.0952 7108 BrFiltLo - ok
21:18:45.0962 7108 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
21:18:45.0964 7108 BrFiltUp - ok
21:18:45.0989 7108 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:18:45.0993 7108 Browser - ok
21:18:46.0041 7108 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:18:46.0053 7108 Brserid - ok
21:18:46.0066 7108 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:18:46.0069 7108 BrSerWdm - ok
21:18:46.0073 7108 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:18:46.0075 7108 BrUsbMdm - ok
21:18:46.0090 7108 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:18:46.0093 7108 BrUsbSer - ok
21:18:46.0116 7108 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
21:18:46.0119 7108 BthEnum - ok
21:18:46.0130 7108 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
21:18:46.0133 7108 BTHMODEM - ok
21:18:46.0162 7108 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
21:18:46.0166 7108 BthPan - ok
21:18:46.0199 7108 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys
21:18:46.0213 7108 BTHPORT - ok
21:18:46.0233 7108 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:18:46.0237 7108 bthserv - ok
21:18:46.0308 7108 BTHSSecurityMgr (9e2af97302b9f4bf97e952a865eb31ae) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
21:18:46.0312 7108 BTHSSecurityMgr - ok
21:18:46.0324 7108 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys
21:18:46.0327 7108 BTHUSB - ok
21:18:46.0358 7108 btmaux (ab0a33001fe7ebb209d9d52ced11be1a) C:\Windows\system32\DRIVERS\btmaux.sys
21:18:46.0363 7108 btmaux - ok
21:18:46.0390 7108 btmhsf (5ba4c6f82a5ca3307c0579d9f7b36e28) C:\Windows\system32\DRIVERS\btmhsf.sys
21:18:46.0401 7108 btmhsf - ok
21:18:46.0430 7108 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:18:46.0433 7108 cdfs - ok
21:18:46.0503 7108 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:18:46.0508 7108 cdrom - ok
21:18:46.0543 7108 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:18:46.0546 7108 CertPropSvc - ok
21:18:46.0631 7108 cfwids (ed0263b2eb24f0f4e3898036fa1d28a1) C:\Windows\system32\drivers\cfwids.sys
21:18:46.0634 7108 cfwids - ok
21:18:46.0652 7108 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
21:18:46.0654 7108 circlass - ok
21:18:46.0685 7108 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:18:46.0701 7108 CLFS - ok
21:18:46.0994 7108 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:18:46.0997 7108 clr_optimization_v2.0.50727_32 - ok
21:18:47.0228 7108 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:18:47.0250 7108 clr_optimization_v2.0.50727_64 - ok
21:18:47.0738 7108 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:18:47.0812 7108 clr_optimization_v4.0.30319_32 - ok
21:18:47.0909 7108 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:18:47.0916 7108 clr_optimization_v4.0.30319_64 - ok
21:18:47.0946 7108 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:18:47.0949 7108 CmBatt - ok
21:18:47.0960 7108 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:18:47.0966 7108 cmdide - ok
21:18:48.0009 7108 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
21:18:48.0024 7108 CNG - ok
21:18:48.0047 7108 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:18:48.0050 7108 Compbatt - ok
21:18:48.0069 7108 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
21:18:48.0072 7108 CompositeBus - ok
21:18:48.0083 7108 COMSysApp - ok
21:18:48.0097 7108 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
21:18:48.0100 7108 crcdisk - ok
21:18:48.0147 7108 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:18:48.0152 7108 CryptSvc - ok
21:18:48.0248 7108 CtClsFlt (bc3d4f90978cd7c8eabd1baf3bf7873a) C:\Windows\system32\DRIVERS\CtClsFlt.sys
21:18:48.0270 7108 CtClsFlt - ok
21:18:48.0305 7108 cyhid (5858111ff43b8e87edd13667e5b29e51) C:\Windows\system32\DRIVERS\cyhid.sys
21:18:48.0309 7108 cyhid - ok
21:18:48.0359 7108 cykbfltrService (903c161e91a7f2678e7e8d775d3512b2) C:\Windows\system32\DRIVERS\cykbfltr.sys
21:18:48.0362 7108 cykbfltrService - ok
21:18:48.0379 7108 cymfltrService (ef5a7a27ac58672cf3b5ce91e99c43dc) C:\Windows\system32\DRIVERS\cymfltr.sys
21:18:48.0383 7108 cymfltrService - ok
21:18:48.0424 7108 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:18:48.0439 7108 DcomLaunch - ok
21:18:48.0464 7108 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:18:48.0475 7108 defragsvc - ok
21:18:48.0560 7108 DellDigitalDelivery (18b5c959cbe24d4d4c2381efb87611de) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
21:18:48.0561 7108 DellDigitalDelivery - ok
21:18:48.0589 7108 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:18:48.0594 7108 DfsC - ok
21:18:48.0669 7108 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:18:48.0681 7108 Dhcp - ok
21:18:48.0747 7108 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:18:48.0750 7108 discache - ok
21:18:48.0883 7108 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
21:18:48.0887 7108 Disk - ok
21:18:48.0917 7108 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:18:49.0005 7108 Dnscache - ok
21:18:49.0058 7108 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:18:49.0069 7108 dot3svc - ok
21:18:49.0089 7108 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:18:49.0093 7108 DPS - ok
21:18:49.0117 7108 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:18:49.0119 7108 drmkaud - ok
21:18:49.0161 7108 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:18:49.0297 7108 DXGKrnl - ok
21:18:49.0343 7108 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:18:49.0347 7108 EapHost - ok
21:18:49.0497 7108 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
21:18:49.0563 7108 ebdrv - ok
21:18:49.0663 7108 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:18:49.0666 7108 EFS - ok
21:18:49.0735 7108 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:18:49.0765 7108 ehRecvr - ok
21:18:49.0822 7108 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:18:49.0826 7108 ehSched - ok
21:18:49.0874 7108 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
21:18:49.0897 7108 elxstor - ok
21:18:49.0912 7108 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:18:49.0914 7108 ErrDev - ok
21:18:49.0946 7108 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:18:49.0966 7108 EventSystem - ok
21:18:50.0135 7108 EvtEng (b20a788579e443f768aab1a24f705d0a) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:18:50.0163 7108 EvtEng - ok
21:18:50.0227 7108 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:18:50.0237 7108 exfat - ok
21:18:50.0254 7108 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:18:50.0258 7108 fastfat - ok
21:18:50.0304 7108 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:18:50.0325 7108 Fax - ok
21:18:50.0370 7108 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
21:18:50.0372 7108 fdc - ok
21:18:50.0391 7108 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:18:50.0394 7108 fdPHost - ok
21:18:50.0399 7108 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:18:50.0401 7108 FDResPub - ok
21:18:50.0411 7108 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:18:50.0414 7108 FileInfo - ok
21:18:50.0427 7108 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:18:50.0429 7108 Filetrace - ok
21:18:50.0447 7108 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
21:18:50.0449 7108 flpydisk - ok
21:18:50.0475 7108 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:18:50.0486 7108 FltMgr - ok
21:18:50.0551 7108 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:18:50.0670 7108 FontCache - ok
21:18:50.0758 7108 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:18:50.0760 7108 FontCache3.0.0.0 - ok
21:18:50.0785 7108 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:18:50.0788 7108 FsDepends - ok
21:18:50.0808 7108 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:18:50.0829 7108 Fs_Rec - ok
21:18:50.0859 7108 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:18:50.0863 7108 fvevol - ok
21:18:50.0874 7108 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
21:18:50.0877 7108 gagp30kx - ok
21:18:50.0905 7108 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:18:50.0920 7108 GEARAspiWDM - ok
21:18:50.0998 7108 Giraffic - ok
21:18:51.0095 7108 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:18:51.0116 7108 gpsvc - ok
21:18:51.0142 7108 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:18:51.0166 7108 hcw85cir - ok
21:18:51.0189 7108 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:18:51.0193 7108 HDAudBus - ok
21:18:51.0211 7108 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
21:18:51.0235 7108 HidBatt - ok
21:18:51.0249 7108 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
21:18:51.0253 7108 HidBth - ok
21:18:51.0264 7108 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
21:18:51.0267 7108 HidIr - ok
21:18:51.0280 7108 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:18:51.0283 7108 hidserv - ok
21:18:51.0303 7108 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:18:51.0305 7108 HidUsb - ok
21:18:51.0322 7108 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:18:51.0325 7108 hkmsvc - ok
21:18:51.0361 7108 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:18:51.0373 7108 HomeGroupListener - ok
21:18:51.0432 7108 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:18:51.0438 7108 HomeGroupProvider - ok
21:18:51.0525 7108 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:18:51.0529 7108 HpSAMD - ok
21:18:51.0572 7108 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:18:51.0590 7108 HTTP - ok
21:18:51.0604 7108 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:18:51.0606 7108 hwpolicy - ok
21:18:51.0665 7108 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:18:51.0668 7108 i8042prt - ok
21:18:51.0707 7108 iaStor (d469b77687e12fe43e344806740b624d) C:\Windows\system32\drivers\iaStor.sys
21:18:51.0709 7108 iaStor - ok
21:18:51.0758 7108 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:18:51.0776 7108 iaStorV - ok
21:18:51.0824 7108 iBtFltCoex (806422f30df9ce8307457485779c77b7) C:\Windows\system32\DRIVERS\iBtFltCoex.sys
21:18:51.0827 7108 iBtFltCoex - ok
21:18:51.0900 7108 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:18:51.0901 7108 IDriverT - ok
21:18:52.0080 7108 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:18:52.0097 7108 idsvc - ok
21:18:52.0652 7108 igfx (0bd58366c86ef9ddc4f61afed0cada99) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:18:52.0851 7108 igfx - ok
21:18:52.0925 7108 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
21:18:52.0934 7108 iirsp - ok
21:18:52.0983 7108 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:18:53.0017 7108 IKEEXT - ok
21:18:53.0042 7108 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\drivers\Impcd.sys
21:18:53.0053 7108 Impcd - ok
21:18:53.0140 7108 intaud_WaveExtensible (caddf0927dac63edae48f5c35a61d87d) C:\Windows\system32\drivers\intelaud.sys
21:18:53.0454 7108 intaud_WaveExtensible - ok
21:18:53.0569 7108 IntcAzAudAddService (a3c9367a02b2a1fc22536add3601b64f) C:\Windows\system32\drivers\RTKVHD64.sys
21:18:53.0758 7108 IntcAzAudAddService - ok
21:18:53.0856 7108 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
21:18:53.0867 7108 IntcDAud - ok
21:18:53.0894 7108 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:18:53.0897 7108 intelide - ok
21:18:53.0969 7108 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:18:53.0977 7108 intelppm - ok
21:18:54.0004 7108 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:18:54.0008 7108 IPBusEnum - ok
21:18:54.0025 7108 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:18:54.0028 7108 IpFilterDriver - ok
21:18:54.0043 7108 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:18:54.0046 7108 IPMIDRV - ok
21:18:54.0060 7108 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:18:54.0064 7108 IPNAT - ok
21:18:54.0136 7108 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
21:18:54.0170 7108 iPod Service - ok
21:18:54.0189 7108 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:18:54.0193 7108 IRENUM - ok
21:18:54.0206 7108 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:18:54.0213 7108 isapnp - ok
21:18:54.0236 7108 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:18:54.0248 7108 iScsiPrt - ok
21:18:54.0272 7108 iwdbus (716f66336f10885d935b08174dc54242) C:\Windows\system32\DRIVERS\iwdbus.sys
21:18:54.0504 7108 iwdbus - ok
21:18:54.0543 7108 JMCR (43f319de026e04b9cf9219a14bf24fe8) C:\Windows\system32\DRIVERS\jmcr.sys
21:18:54.0547 7108 JMCR - ok
21:18:54.0571 7108 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:18:54.0573 7108 kbdclass - ok
21:18:54.0592 7108 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:18:54.0595 7108 kbdhid - ok
21:18:54.0630 7108 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:18:54.0633 7108 KeyIso - ok
21:18:54.0665 7108 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
21:18:54.0668 7108 KSecDD - ok
21:18:54.0682 7108 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
21:18:54.0686 7108 KSecPkg - ok
21:18:54.0699 7108 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:18:54.0702 7108 ksthunk - ok
21:18:54.0737 7108 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:18:54.0752 7108 KtmRm - ok
21:18:54.0791 7108 L1C (0219f13ab1664005adcba884c0eb975e) C:\Windows\system32\DRIVERS\L1C62x64.sys
21:18:54.0802 7108 L1C - ok
21:18:54.0841 7108 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:18:54.0854 7108 LanmanServer - ok
21:18:54.0917 7108 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:18:54.0936 7108 LanmanWorkstation - ok
21:18:54.0965 7108 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:18:54.0968 7108 lltdio - ok
21:18:54.0993 7108 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:18:55.0009 7108 lltdsvc - ok
21:18:55.0026 7108 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:18:55.0029 7108 lmhosts - ok
21:18:55.0121 7108 LMS (7f32d4c47a50e7223491e8fb9359907d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:18:55.0134 7108 LMS - ok
21:18:55.0161 7108 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
21:18:55.0164 7108 LSI_FC - ok
21:18:55.0178 7108 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
21:18:55.0181 7108 LSI_SAS - ok
21:18:55.0191 7108 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
21:18:55.0194 7108 LSI_SAS2 - ok
21:18:55.0206 7108 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
21:18:55.0209 7108 LSI_SCSI - ok
21:18:55.0259 7108 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:18:55.0263 7108 luafv - ok
21:18:55.0300 7108 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
21:18:55.0302 7108 MBAMProtector - ok
21:18:55.0380 7108 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:18:55.0397 7108 MBAMService - ok
21:18:55.0488 7108 McAWFwk (9504f1dda1b67fb8d526fd4f8cc882f3) c:\PROGRA~1\mcafee\msc\mcawfwk.exe
21:18:55.0504 7108 McAWFwk - ok
21:18:55.0540 7108 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:18:55.0545 7108 McMPFSvc - ok
21:18:55.0558 7108 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:18:55.0560 7108 mcmscsvc - ok
21:18:55.0564 7108 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:18:55.0566 7108 McNaiAnn - ok
21:18:55.0571 7108 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:18:55.0573 7108 McNASvc - ok
21:18:55.0745 7108 McODS (c6232488cdbf063ce077fc7f8f8c248c) C:\Program Files\mcafee\VirusScan\mcods.exe
21:18:55.0757 7108 McODS - ok
21:18:55.0760 7108 McOobeSv (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:18:55.0762 7108 McOobeSv - ok
21:18:55.0766 7108 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:18:55.0769 7108 McProxy - ok
21:18:55.0827 7108 McShield (4a463d645b48bb487ca7df12ba5d1602) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
21:18:55.0831 7108 McShield - ok
21:18:55.0911 7108 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:18:55.0915 7108 Mcx2Svc - ok
21:18:55.0940 7108 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
21:18:55.0943 7108 megasas - ok
21:18:55.0967 7108 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
21:18:55.0991 7108 MegaSR - ok
21:18:56.0014 7108 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
21:18:56.0017 7108 MEIx64 - ok
21:18:56.0042 7108 mfeapfk (ef3acfb7e3f82d5f7cde9ef5f0a4e2e2) C:\Windows\system32\drivers\mfeapfk.sys
21:18:56.0047 7108 mfeapfk - ok
21:18:56.0074 7108 mfeavfk (e7a60bdb4365b561d896019b82fb7dd0) C:\Windows\system32\drivers\mfeavfk.sys
21:18:56.0085 7108 mfeavfk - ok
21:18:56.0089 7108 mfeavfk01 - ok
21:18:56.0108 7108 mfefire (c53b7aba204d9f7e9568ec147a1485c5) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:18:56.0112 7108 mfefire - ok
21:18:56.0140 7108 mfefirek (670dffe55e2f9ab99d9169c428bcece9) C:\Windows\system32\drivers\mfefirek.sys
21:18:56.0155 7108 mfefirek - ok
21:18:56.0188 7108 mfehidk (1892616b7f9291fd77c3fa0a5811fe9f) C:\Windows\system32\drivers\mfehidk.sys
21:18:56.0206 7108 mfehidk - ok
21:18:56.0277 7108 mfenlfk (1721261c77f6e7a9e0cb51b7d9f31b60) C:\Windows\system32\DRIVERS\mfenlfk.sys
21:18:56.0279 7108 mfenlfk - ok
21:18:56.0308 7108 mferkdet (65776bd8029e409935b90de30bf99526) C:\Windows\system32\drivers\mferkdet.sys
21:18:56.0311 7108 mferkdet - ok
21:18:56.0329 7108 mfevtp (8f3b3c3625e3aaa11d6d4db8423e1721) C:\Windows\system32\mfevtps.exe
21:18:56.0334 7108 mfevtp - ok
21:18:56.0355 7108 mfewfpk (4f17d8b85b903d96ef7033bb6ef50516) C:\Windows\system32\drivers\mfewfpk.sys
21:18:56.0366 7108 mfewfpk - ok
21:18:56.0390 7108 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:18:56.0394 7108 MMCSS - ok
21:18:56.0412 7108 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:18:56.0415 7108 Modem - ok
21:18:56.0435 7108 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:18:56.0438 7108 monitor - ok
21:18:56.0468 7108 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:18:56.0471 7108 mouclass - ok
21:18:56.0496 7108 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:18:56.0499 7108 mouhid - ok
21:18:56.0508 7108 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:18:56.0511 7108 mountmgr - ok
21:18:56.0531 7108 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:18:56.0535 7108 mpio - ok
21:18:56.0554 7108 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:18:56.0557 7108 mpsdrv - ok
21:18:56.0602 7108 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:18:56.0608 7108 MRxDAV - ok
21:18:56.0641 7108 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:18:56.0646 7108 mrxsmb - ok
21:18:56.0669 7108 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:18:56.0681 7108 mrxsmb10 - ok
21:18:56.0705 7108 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:18:56.0709 7108 mrxsmb20 - ok
21:18:56.0724 7108 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:18:56.0726 7108 msahci - ok
21:18:56.0753 7108 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:18:56.0765 7108 msdsm - ok
21:18:56.0790 7108 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:18:56.0794 7108 MSDTC - ok
21:18:56.0814 7108 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:18:56.0816 7108 Msfs - ok
21:18:56.0830 7108 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:18:56.0833 7108 mshidkmdf - ok
21:18:56.0841 7108 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:18:56.0844 7108 msisadrv - ok
21:18:56.0879 7108 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:18:56.0884 7108 MSiSCSI - ok
21:18:56.0887 7108 msiserver - ok
21:18:56.0943 7108 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:18:56.0944 7108 MSK80Service - ok
21:18:56.0966 7108 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:18:56.0968 7108 MSKSSRV - ok
21:18:56.0983 7108 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:18:56.0985 7108 MSPCLOCK - ok
21:18:56.0992 7108 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:18:56.0994 7108 MSPQM - ok
21:18:57.0020 7108 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:18:57.0036 7108 MsRPC - ok
21:18:57.0046 7108 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
21:18:57.0049 7108 mssmbios - ok
21:18:57.0066 7108 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:18:57.0068 7108 MSTEE - ok
21:18:57.0076 7108 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
21:18:57.0078 7108 MTConfig - ok
21:18:57.0119 7108 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:18:57.0121 7108 Mup - ok
21:18:57.0208 7108 MyWiFiDHCPDNS (f217d7718fd7577af331e89910b2d21e) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:18:57.0223 7108 MyWiFiDHCPDNS - ok
21:18:57.0256 7108 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:18:57.0271 7108 napagent - ok
21:18:57.0306 7108 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:18:57.0316 7108 NativeWifiP - ok
21:18:57.0417 7108 NAUpdate (934bb0d23a25c8c136570800a5a149b6) C:\Program Files (x86)\Nero\Update\NASvc.exe
21:18:57.0449 7108 NAUpdate - ok
21:18:57.0507 7108 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
21:18:57.0532 7108 NDIS - ok
21:18:57.0547 7108 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:18:57.0550 7108 NdisCap - ok
21:18:57.0566 7108 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:18:57.0569 7108 NdisTapi - ok
21:18:57.0580 7108 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:18:57.0584 7108 Ndisuio - ok
21:18:57.0598 7108 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:18:57.0603 7108 NdisWan - ok
21:18:57.0610 7108 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:18:57.0613 7108 NDProxy - ok
21:18:57.0627 7108 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:18:57.0631 7108 NetBIOS - ok
21:18:57.0653 7108 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:18:57.0663 7108 NetBT - ok
21:18:57.0700 7108 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:18:57.0702 7108 Netlogon - ok
21:18:57.0741 7108 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:18:57.0756 7108 Netman - ok
21:18:57.0825 7108 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:18:57.0843 7108 NetMsmqActivator - ok
21:18:57.0846 7108 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:18:57.0848 7108 NetPipeActivator - ok
21:18:57.0876 7108 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:18:57.0892 7108 netprofm - ok
21:18:57.0896 7108 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:18:57.0898 7108 NetTcpActivator - ok
21:18:57.0901 7108 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:18:57.0903 7108 NetTcpPortSharing - ok
21:18:58.0217 7108 NETwNs64 (9fd1be1881446d954ff77244ae58fbcb) C:\Windows\system32\DRIVERS\NETwNs64.sys
21:18:58.0365 7108 NETwNs64 - ok
21:18:58.0439 7108 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
21:18:58.0448 7108 nfrd960 - ok
21:18:58.0491 7108 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:18:58.0572 7108 NlaSvc - ok
21:18:58.0727 7108 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
21:18:58.0789 7108 NOBU - ok
21:18:58.0835 7108 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:18:58.0839 7108 Npfs - ok
21:18:58.0848 7108 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:18:58.0851 7108 nsi - ok
21:18:58.0863 7108 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:18:58.0866 7108 nsiproxy - ok
21:18:58.0966 7108 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:18:59.0009 7108 Ntfs - ok
21:18:59.0054 7108 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:18:59.0056 7108 Null - ok
21:18:59.0086 7108 nusb3hub (a7127e86f9ffe2a53e271b56b2c4cedf) C:\Windows\system32\DRIVERS\nusb3hub.sys
21:18:59.0092 7108 nusb3hub - ok
21:18:59.0106 7108 nusb3xhc (49bbec6f48d5f9284b03abf3a959b19b) C:\Windows\system32\DRIVERS\nusb3xhc.sys
21:18:59.0110 7108 nusb3xhc - ok
21:18:59.0645 7108 nvlddmkm (573b0941a37aebee96085d56a103f57b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:18:59.0841 7108 nvlddmkm - ok
21:18:59.0915 7108 nvpciflt (43af7ebeac2ab623468e32caddcb61a4) C:\Windows\system32\DRIVERS\nvpciflt.sys
21:18:59.0917 7108 nvpciflt - ok
21:18:59.0945 7108 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:18:59.0949 7108 nvraid - ok
21:18:59.0967 7108 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:18:59.0971 7108 nvstor - ok
21:19:00.0042 7108 NVSvc (c500760572c6059918fb0c960967695b) C:\Windows\system32\nvvsvc.exe
21:19:00.0066 7108 NVSvc - ok
21:19:00.0334 7108 nvUpdatusService (f28169a7adf7b41809cf92d369e744f0) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
21:19:00.0391 7108 nvUpdatusService - ok
21:19:00.0476 7108 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:19:00.0479 7108 nv_agp - ok
21:19:00.0522 7108 NWADI (6eeb54e34603dd417ece187c8402320a) C:\Windows\system32\DRIVERS\NWADIenum.sys
21:19:00.0551 7108 NWADI - ok
21:19:00.0598 7108 NWUSBCDFIL64 (d944d4341429093f55cb7f0ec87c86b3) C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
21:19:00.0602 7108 NWUSBCDFIL64 - ok
21:19:00.0632 7108 NWUSBModem_000 (877ce72712d7860fd815884438d824b8) C:\Windows\system32\DRIVERS\nwusbmdm_000.sys
21:19:00.0716 7108 NWUSBModem_000 - ok
21:19:00.0785 7108 NWUSBPort2_000 (877ce72712d7860fd815884438d824b8) C:\Windows\system32\DRIVERS\nwusbser2_000.sys
21:19:00.0796 7108 NWUSBPort2_000 - ok
21:19:00.0838 7108 NWUSBPort_000 (877ce72712d7860fd815884438d824b8) C:\Windows\system32\DRIVERS\nwusbser_000.sys
21:19:00.0843 7108 NWUSBPort_000 - ok
21:19:00.0972 7108 NWVZHelper (6f67805ebe1c879de008ed21bfcf2f02) C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe
21:19:00.0983 7108 NWVZHelper - ok
21:19:01.0004 7108 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:19:01.0007 7108 ohci1394 - ok
21:19:01.0065 7108 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:19:01.0068 7108 ose - ok
21:19:01.0474 7108 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:19:01.0558 7108 osppsvc - ok
21:19:01.0667 7108 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:19:01.0695 7108 p2pimsvc - ok
21:19:01.0725 7108 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:19:01.0756 7108 p2psvc - ok
21:19:01.0786 7108 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
21:19:01.0790 7108 Parport - ok
21:19:01.0823 7108 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:19:01.0826 7108 partmgr - ok
21:19:01.0841 7108 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:19:01.0846 7108 PcaSvc - ok
21:19:01.0888 7108 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:19:01.0892 7108 pci - ok
21:19:01.0904 7108 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:19:01.0906 7108 pciide - ok
21:19:01.0929 7108 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
21:19:01.0934 7108 pcmcia - ok
21:19:01.0942 7108 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:19:01.0944 7108 pcw - ok
21:19:01.0978 7108 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:19:01.0999 7108 PEAUTH - ok
21:19:02.0054 7108 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:19:02.0058 7108 PerfHost - ok
21:19:02.0155 7108 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:19:02.0192 7108 pla - ok
21:19:02.0233 7108 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:19:02.0250 7108 PlugPlay - ok
21:19:02.0256 7108 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:19:02.0259 7108 PNRPAutoReg - ok
21:19:02.0278 7108 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:19:02.0290 7108 PNRPsvc - ok
21:19:02.0326 7108 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:19:02.0342 7108 PolicyAgent - ok
21:19:02.0380 7108 Power (a2cca4fb273e6050f17a0a416cff2fcd) C:\Windows\system32\umpo.dll
21:19:02.0386 7108 Power - ok
21:19:02.0434 7108 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:19:02.0437 7108 PptpMiniport - ok
21:19:02.0454 7108 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
21:19:02.0457 7108 Processor - ok
21:19:02.0494 7108 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:19:02.0506 7108 ProfSvc - ok
21:19:02.0543 7108 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:19:02.0547 7108 ProtectedStorage - ok
21:19:02.0568 7108 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:19:02.0572 7108 Psched - ok
21:19:02.0609 7108 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
21:19:02.0612 7108 PxHlpa64 - ok
21:19:02.0673 7108 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
21:19:02.0713 7108 ql2300 - ok
21:19:02.0902 7108 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
21:19:02.0905 7108 ql40xx - ok
21:19:02.0940 7108 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:19:02.0951 7108 QWAVE - ok
21:19:02.0987 7108 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:19:02.0990 7108 QWAVEdrv - ok
21:19:03.0002 7108 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:19:03.0004 7108 RasAcd - ok
21:19:03.0025 7108 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:19:03.0029 7108 RasAgileVpn - ok
21:19:03.0043 7108 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:19:03.0055 7108 RasAuto - ok
21:19:03.0070 7108 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:19:03.0074 7108 Rasl2tp - ok
21:19:03.0101 7108 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:19:03.0116 7108 RasMan - ok
21:19:03.0129 7108 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:19:03.0132 7108 RasPppoe - ok
21:19:03.0146 7108 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:19:03.0149 7108 RasSstp - ok
21:19:03.0172 7108 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:19:03.0187 7108 rdbss - ok
21:19:03.0197 7108 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
21:19:03.0200 7108 rdpbus - ok
21:19:03.0210 7108 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:19:03.0212 7108 RDPCDD - ok
21:19:03.0234 7108 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:19:03.0237 7108 RDPENCDD - ok
21:19:03.0250 7108 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:19:03.0252 7108 RDPREFMP - ok
21:19:03.0292 7108 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:19:03.0297 7108 RDPWD - ok
21:19:03.0314 7108 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:19:03.0409 7108 rdyboost - ok
21:19:03.0522 7108 RegSrvc (b9a0810d16ea7935b10a5499aba61dc3) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:19:03.0541 7108 RegSrvc - ok
21:19:03.0575 7108 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:19:03.0580 7108 RemoteAccess - ok
21:19:03.0613 7108 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:19:03.0618 7108 RemoteRegistry - ok
21:19:03.0669 7108 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
21:19:03.0673 7108 RFCOMM - ok
21:19:03.0795 7108 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
21:19:03.0831 7108 RoxMediaDB12OEM - ok
21:19:03.0859 7108 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
21:19:03.0861 7108 RoxWatch12 - ok
21:19:03.0929 7108 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:19:03.0932 7108 RpcEptMapper - ok
21:19:03.0952 7108 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:19:03.0955 7108 RpcLocator - ok
21:19:03.0985 7108 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:19:03.0989 7108 RpcSs - ok
21:19:04.0031 7108 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:19:04.0034 7108 rspndr - ok
21:19:04.0069 7108 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:19:04.0071 7108 SamSs - ok
21:19:04.0141 7108 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:19:04.0143 7108 SASDIFSV - ok
21:19:04.0170 7108 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:19:04.0172 7108 SASKUTIL - ok
21:19:04.0186 7108 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:19:04.0190 7108 sbp2port - ok
21:19:04.0212 7108 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:19:04.0217 7108 SCardSvr - ok
21:19:04.0233 7108 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:19:04.0235 7108 scfilter - ok
21:19:04.0285 7108 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:19:04.0326 7108 Schedule - ok
21:19:04.0371 7108 SCManager - ok
21:19:04.0398 7108 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:19:04.0399 7108 SCPolicySvc - ok
21:19:04.0449 7108 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
21:19:04.0452 7108 sdbus - ok
21:19:04.0468 7108 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:19:04.0474 7108 SDRSVC - ok
21:19:04.0513 7108 SeaPort (331e7bde228914574fc9ae6cd520dafa) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
21:19:04.0618 7108 SeaPort - ok
21:19:04.0650 7108 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:19:04.0653 7108 secdrv - ok
21:19:04.0661 7108 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:19:04.0665 7108 seclogon - ok
21:19:04.0680 7108 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:19:04.0691 7108 SENS - ok
21:19:04.0705 7108 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:19:04.0708 7108 SensrSvc - ok
21:19:04.0742 7108 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
21:19:04.0744 7108 Serenum - ok
21:19:04.0754 7108 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
21:19:04.0756 7108 Serial - ok
21:19:04.0762 7108 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
21:19:04.0764 7108 sermouse - ok
21:19:04.0784 7108 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:19:04.0884 7108 SessionEnv - ok
21:19:04.0890 7108 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
21:19:04.0906 7108 sffdisk - ok
21:19:04.0931 7108 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:19:04.0934 7108 sffp_mmc - ok
21:19:04.0948 7108 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\DRIVERS\sffp_sd.sys
21:19:04.0951 7108 sffp_sd - ok
21:19:04.0956 7108 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
21:19:04.0958 7108 sfloppy - ok
21:19:05.0052 7108 SftService (29ddea72c5bdf61d62f4d438dc0e497c) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
21:19:05.0091 7108 SftService - ok
21:19:05.0176 7108 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:19:05.0266 7108 ShellHWDetection - ok
21:19:05.0298 7108 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
21:19:05.0301 7108 SiSRaid2 - ok
21:19:05.0317 7108 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
21:19:05.0320 7108 SiSRaid4 - ok
21:19:05.0338 7108 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:19:05.0341 7108 Smb - ok
21:19:05.0372 7108 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:19:05.0376 7108 SNMPTRAP - ok
21:19:05.0385 7108 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:19:05.0387 7108 spldr - ok
21:19:05.0412 7108 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:19:05.0428 7108 Spooler - ok
21:19:05.0643 7108 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:19:05.0703 7108 sppsvc - ok
21:19:05.0762 7108 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:19:05.0766 7108 sppuinotify - ok
21:19:05.0807 7108 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:19:05.0823 7108 srv - ok
21:19:05.0844 7108 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:19:05.0858 7108 srv2 - ok
21:19:05.0871 7108 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:19:05.0877 7108 srvnet - ok
21:19:05.0923 7108 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:19:05.0934 7108 SSDPSRV - ok
21:19:05.0951 7108 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:19:05.0956 7108 SstpSvc - ok
21:19:05.0979 7108 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\Windows\system32\DRIVERS\stdcfltn.sys
21:19:06.0060 7108 stdcfltn - ok
21:19:06.0116 7108 Steam Client Service - ok
21:19:06.0187 7108 Stereo Service (0683504bbb3ffc0a73d9d217b63dd0e0) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:19:06.0203 7108 Stereo Service - ok
21:19:06.0223 7108 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
21:19:06.0226 7108 stexstor - ok
21:19:06.0274 7108 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:19:06.0293 7108 stisvc - ok
21:19:06.0327 7108 stllssvr (7731f46ec0d687a931cba063e8f90ef0) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
21:19:06.0330 7108 stllssvr - ok
21:19:06.0345 7108 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
21:19:06.0348 7108 swenum - ok
21:19:06.0377 7108 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:19:06.0392 7108 swprv - ok
21:19:06.0456 7108 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:19:06.0487 7108 SysMain - ok
21:19:06.0559 7108 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:19:06.0563 7108 TabletInputService - ok
21:19:06.0588 7108 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:19:06.0604 7108 TapiSrv - ok
21:19:06.0620 7108 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:19:06.0624 7108 TBS - ok
21:19:06.0760 7108 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:19:06.0799 7108 Tcpip - ok
21:19:06.0911 7108 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:19:06.0921 7108 TCPIP6 - ok
21:19:06.0993 7108 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:19:06.0996 7108 tcpipreg - ok
21:19:07.0012 7108 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:19:07.0015 7108 TDPIPE - ok
21:19:07.0030 7108 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:19:07.0033 7108 TDTCP - ok
21:19:07.0045 7108 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:19:07.0048 7108 tdx - ok
21:19:07.0060 7108 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
21:19:07.0063 7108 TermDD - ok
21:19:07.0109 7108 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:19:07.0131 7108 TermService - ok
21:19:07.0178 7108 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:19:07.0181 7108 Themes - ok
21:19:07.0247 7108 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:19:07.0251 7108 THREADORDER - ok
21:19:07.0264 7108 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:19:07.0268 7108 TrkWks - ok
21:19:07.0312 7108 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:19:07.0328 7108 TrustedInstaller - ok
21:19:07.0342 7108 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:19:07.0345 7108 tssecsrv - ok
21:19:07.0362 7108 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:19:07.0365 7108 TsUsbFlt - ok
21:19:07.0379 7108 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
21:19:07.0382 7108 TsUsbGD - ok
21:19:07.0407 7108 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:19:07.0410 7108 tunnel - ok
21:19:07.0478 7108 TurboB (fd24f98d2898be093fe926604be7db99) C:\Windows\system32\DRIVERS\TurboB.sys
21:19:07.0760 7108 TurboB - ok
21:19:07.0837 7108 TurboBoost (600b406a04d90f577fea8a88d7379f08) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:19:07.0841 7108 TurboBoost - ok
21:19:07.0853 7108 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
21:19:07.0860 7108 uagp35 - ok
21:19:07.0893 7108 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:19:07.0908 7108 udfs - ok
21:19:07.0939 7108 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:19:07.0943 7108 UI0Detect - ok
21:19:07.0955 7108 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:19:07.0958 7108 uliagpkx - ok
21:19:07.0989 7108 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
21:19:07.0992 7108 umbus - ok
21:19:08.0005 7108 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
21:19:08.0007 7108 UmPass - ok
21:19:08.0394 7108 UNS (2c16648a12999ae69a9ebf41974b0ba2) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:19:08.0442 7108 UNS - ok
21:19:08.0511 7108 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:19:08.0536 7108 upnphost - ok
21:19:08.0591 7108 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
21:19:08.0756 7108 USBAAPL64 - ok
21:19:08.0802 7108 usbccgp (19ad7990c0b67e48dac5b26f99628223) C:\Windows\system32\DRIVERS\usbccgp.sys
21:19:08.0805 7108 usbccgp - ok
21:19:08.0834 7108 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:19:08.0837 7108 usbcir - ok
21:19:08.0854 7108 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:19:08.0857 7108 usbehci - ok
21:19:08.0903 7108 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:19:08.0918 7108 usbhub - ok
21:19:08.0945 7108 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:19:09.0031 7108 usbohci - ok
21:19:09.0077 7108 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:19:09.0091 7108 usbprint - ok
21:19:09.0175 7108 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:19:09.0177 7108 usbscan - ok
21:19:09.0199 7108 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:19:09.0202 7108 USBSTOR - ok
21:19:09.0224 7108 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:19:09.0228 7108 usbuhci - ok
21:19:09.0257 7108 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
21:19:09.0262 7108 usbvideo - ok
21:19:09.0277 7108 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:19:09.0281 7108 UxSms - ok
21:19:09.0317 7108 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:19:09.0318 7108 VaultSvc - ok
21:19:09.0339 7108 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:19:09.0341 7108 vdrvroot - ok
21:19:09.0370 7108 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:19:09.0514 7108 vds - ok
21:19:09.0552 7108 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:19:09.0554 7108 vga - ok
21:19:09.0574 7108 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:19:09.0577 7108 VgaSave - ok
21:19:09.0809 7108 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:19:09.0833 7108 vhdmp - ok
21:19:09.0858 7108 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:19:09.0860 7108 viaide - ok
21:19:09.0907 7108 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:19:09.0935 7108 volmgr - ok
21:19:10.0387 7108 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:19:10.0409 7108 volmgrx - ok
21:19:10.0615 7108 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:19:10.0645 7108 volsnap - ok
21:19:10.0842 7108 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
21:19:10.0848 7108 vsmraid - ok
21:19:10.0978 7108 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:19:11.0007 7108 VSS - ok
21:19:11.0124 7108 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
21:19:11.0157 7108 vToolbarUpdater11.2.0 - ok
21:19:11.0476 7108 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:19:11.0479 7108 vwifibus - ok
21:19:11.0501 7108 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:19:11.0504 7108 vwififlt - ok
21:19:11.0528 7108 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:19:11.0531 7108 vwifimp - ok
21:19:11.0558 7108 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:19:11.0572 7108 W32Time - ok
21:19:11.0588 7108 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
21:19:11.0591 7108 WacomPen - ok
21:19:11.0697 7108 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:19:11.0700 7108 WANARP - ok
21:19:11.0703 7108 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:19:11.0705 7108 Wanarpv6 - ok
21:19:11.0780 7108 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:19:11.0817 7108 WatAdminSvc - ok
21:19:12.0030 7108 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:19:12.0072 7108 wbengine - ok
21:19:12.0335 7108 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:19:12.0350 7108 WbioSrvc - ok
21:19:12.0376 7108 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:19:12.0394 7108 wcncsvc - ok
21:19:12.0406 7108 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:19:12.0412 7108 WcsPlugInService - ok
21:19:12.0448 7108 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
21:19:12.0451 7108 Wd - ok
21:19:12.0487 7108 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:19:12.0508 7108 Wdf01000 - ok
21:19:12.0520 7108 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:19:12.0535 7108 WdiServiceHost - ok
21:19:12.0539 7108 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:19:12.0552 7108 WdiSystemHost - ok
21:19:12.0576 7108 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:19:12.0588 7108 WebClient - ok
21:19:12.0607 7108 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:19:12.0619 7108 Wecsvc - ok
21:19:12.0633 7108 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:19:12.0637 7108 wercplsupport - ok
21:19:12.0658 7108 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:19:12.0662 7108 WerSvc - ok
21:19:12.0688 7108 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:19:12.0690 7108 WfpLwf - ok
21:19:12.0725 7108 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
21:19:12.0743 7108 WimFltr - ok
21:19:12.0762 7108 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:19:12.0764 7108 WIMMount - ok
21:19:12.0772 7108 WinHttpAutoProxySvc - ok
21:19:12.0826 7108 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:19:12.0846 7108 Winmgmt - ok
21:19:12.0954 7108 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:19:12.0994 7108 WinRM - ok
21:19:13.0092 7108 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:19:13.0126 7108 Wlansvc - ok
21:19:13.0224 7108 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:19:13.0227 7108 wlcrasvc - ok
21:19:13.0541 7108 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:19:13.0582 7108 wlidsvc - ok
21:19:13.0676 7108 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:19:13.0679 7108 WmiAcpi - ok
21:19:13.0732 7108 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:19:13.0737 7108 wmiApSrv - ok
21:19:13.0783 7108 WMPNetworkSvc - ok
21:19:13.0821 7108 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:19:13.0826 7108 WPCSvc - ok
21:19:13.0862 7108 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:19:13.0871 7108 WPDBusEnum - ok
21:19:13.0892 7108 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:19:13.0896 7108 ws2ifsl - ok
21:19:13.0899 7108 WSearch - ok
21:19:14.0015 7108 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:19:14.0072 7108 wuauserv - ok
21:19:14.0157 7108 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:19:14.0161 7108 WudfPf - ok
21:19:14.0191 7108 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:19:14.0196 7108 WUDFRd - ok
21:19:14.0216 7108 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:19:14.0221 7108 wudfsvc - ok
21:19:14.0242 7108 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:19:14.0254 7108 WwanSvc - ok
21:19:14.0299 7108 xusb21 (2ee48cfce7ca8e0db4c44c7476c0943b) C:\Windows\system32\DRIVERS\xusb21.sys
21:19:14.0303 7108 xusb21 - ok
21:19:14.0353 7108 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
21:19:16.0563 7108 \Device\Harddisk0\DR0 - ok
21:19:16.0606 7108 Boot (0x1200) (0698551f205cfabb7eecc07cb1aae3fc) \Device\Harddisk0\DR0\Partition0
21:19:16.0611 7108 \Device\Harddisk0\DR0\Partition0 - ok
21:19:16.0620 7108 Boot (0x1200) (f469f92cd55a49c8ce31b9ca98d1bd53) \Device\Harddisk0\DR0\Partition1
21:19:16.0624 7108 \Device\Harddisk0\DR0\Partition1 - ok
21:19:16.0624 7108 ============================================================
21:19:16.0624 7108 Scan finished
21:19:16.0624 7108 ============================================================
21:19:16.0632 10112 Detected object count: 0
21:19:16.0632 10112 Actual detected object count: 0
21:41:47.0369 9888 Deinitialize success





SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 08/04/2012 at 06:33 PM

Application Version : 5.5.1012

Core Rules Database Version : 9012
Trace Rules Database Version: 6824

Scan type : Complete Scan
Total Scan Time : 01:19:35

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned : 708
Memory threats detected : 0
Registry items scanned : 73033
Registry threats detected : 0
File items scanned : 63476
File threats detected : 14

Adware.Tracking Cookie
C:\USERS\BARBOSSA\AppData\Roaming\Microsoft\Windows\Cookies\Low\0DI3CMTA.txt [ Cookie:barbossa@accounts.google.com/ ]
cdn.tremormedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
cdn2.baronsmedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
core.insightexpressai.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
core.saymedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
media.mtvnservices.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
media.scanscout.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
media4.onsugar.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
mediacast.realgravity.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
objects.tremormedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
secure-us.imrworldwide.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
tag.2bluemedia.hiro.tv [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
tag.blutonicmedia.hiro.tv [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]
vitamine.networldmedia.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KV37J55W ]





C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Users\Barbossa\AppData\Local\Dell\Apple Computer\ezwcvbwi.dll a variant of Win32/Kryptik.AIZQ trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Barbossa\AppData\Local\Google\Chrome\User Data\Default\Default\aadhdhgbdgdhdgdbgfdcgfdcdedadfgc\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Barbossa\AppData\Local\Temp\NODA984.tmp a variant of Win32/Kryptik.AIZQ trojan cleaned by deleting (after the next restart) - quarantined
C:\Windows\Installer\{3d2d246a-1f6e-2931-394e-3e4d1bd387c9}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3d2d246a-1f6e-2931-394e-3e4d1bd387c9}\U\000000cb.@ Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3d2d246a-1f6e-2931-394e-3e4d1bd387c9}\U\80000000.@ Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3d2d246a-1f6e-2931-394e-3e4d1bd387c9}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
Operating memory multiple threats

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 PM

Posted 05 August 2012 - 01:08 PM

Looks like the rootkit is protected.. We need you to start a new topic.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 GastlyKazoo

GastlyKazoo
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 05 August 2012 - 06:17 PM

I have taken the steps you suggested and posted a new topic in that forum. Thanks for all your help!

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:10 PM

Posted 05 August 2012 - 07:12 PM

Thank you!
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 3 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users