Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Problems with microsoft security essentials


  • This topic is locked This topic is locked
21 replies to this topic

#1 911zabuza

911zabuza

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 20 July 2012 - 07:29 PM

hello i have a problem with my pc my microsoft security essentials wont scan my computer anymore.
and at times when i do something on my computer witch needs administrators permision my computer wont open that and i have to restart my computer to use it.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:31 AM

Posted 20 July 2012 - 08:52 PM

Hello 911zabuza
You may be infected so I moved this to the Am I Infected forum.

Let's get some info and some scans.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

>>>>>


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.

>>>
Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 20 July 2012 - 09:04 PM

oh ok i will do this but i forgot to mention one other problem wich is that when i make command prompt :sfc/scannow it reaches till 43% and then stops

#4 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 20 July 2012 - 09:09 PM

o and i already posted on this site for a different problem wich most of it was fixed but i still have some problems

wich are :
that sfc/scannow only reaches 43% and then stops
windows live messenger wont open{have unninstalled since then}
all new downloads like songs and such have a unknown account in security with the name Account Unknown (s-1-5-5-0-191954)
all my old shortcuts in my start/all programs never came back
and a few installed updates i cant find in list so my computer keeps trying to install those updates because it cant find them even though they are already installed

Edited by 911zabuza, 20 July 2012 - 09:34 PM.


#5 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 20 July 2012 - 09:11 PM

MiniToolBox by Farbar Version: 15-07-2012
Ran by Falconi (administrator) on 20-07-2012 at 22:08:15
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82562V-2 10/100 Network Connection = Geerman (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Falconi-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Geerman:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® 82562V-2 10/100 Network Connection
Physical Address. . . . . . . . . : 00-1D-09-9A-AF-1F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.1.10(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, July 20, 2012 9:28:01 PM
Lease Expires . . . . . . . . . . : Saturday, July 21, 2012 9:28:00 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:204d:2b12:361a:b6da(Preferred)
Link-local IPv6 Address . . . . . : fe80::204d:2b12:361a:b6da%8(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{76CF2298-B69F-4B6B-A737-896E9B2E24C7}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: robeki.setarnet.aw
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4008:803::1004
173.194.37.7
173.194.37.8
173.194.37.9
173.194.37.14
173.194.37.0
173.194.37.1
173.194.37.2
173.194.37.3
173.194.37.4
173.194.37.5
173.194.37.6



Pinging google.com [173.194.37.6] with 32 bytes of data:

Reply from 173.194.37.6: bytes=32 time=91ms TTL=55

Reply from 173.194.37.6: bytes=32 time=90ms TTL=55



Ping statistics for 173.194.37.6:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 90ms, Maximum = 91ms, Average = 90ms

Server: robeki.setarnet.aw
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=96ms TTL=50

Reply from 209.191.122.70: bytes=32 time=96ms TTL=50



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 96ms, Maximum = 96ms, Average = 96ms

Server: robeki.setarnet.aw
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
9 ...00 1d 09 9a af 1f ...... Intel® 82562V-2 10/100 Network Connection
1 ........................... Software Loopback Interface 1
8 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
12 ...00 00 00 00 00 00 00 e0 isatap.{76CF2298-B69F-4B6B-A737-896E9B2E24C7}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.10 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.10 276
192.168.1.10 255.255.255.255 On-link 192.168.1.10 276
192.168.1.255 255.255.255.255 On-link 192.168.1.10 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.10 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.10 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
8 18 ::/0 On-link
1 306 ::1/128 On-link
8 18 2001::/32 On-link
8 266 2001:0:4137:9e76:204d:2b12:361a:b6da/128
On-link
8 266 fe80::/64 On-link
8 266 fe80::204d:2b12:361a:b6da/128
On-link
1 306 ff00::/8 On-link
8 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/20/2012 09:43:16 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Reached the end of the file.

Error: (07/20/2012 09:42:10 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {74d8ed8a-1694-462f-9921-9efdcfad0dea}

Error: (07/20/2012 08:53:54 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (07/20/2012 05:31:33 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Reached the end of the file.

Error: (07/20/2012 05:31:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Reached the end of the file.

Error: (07/20/2012 05:17:25 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Reached the end of the file.

Error: (07/20/2012 05:17:25 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {bfe16e04-3815-48c9-b79b-d566a973cd19}

Error: (07/20/2012 05:13:23 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddCoreCsiFiles : GetNextFileMapContent() failed.

System Error:
Reached the end of the file.

Error: (07/20/2012 05:13:03 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {bfe16e04-3815-48c9-b79b-d566a973cd19}

Error: (07/20/2012 04:30:39 AM) (Source: Microsoft Security Client Setup) (User: Falconi-PC)Falconi-PC
Description: HRESULT:0x8004FF80
Description:Cannot complete uninstall wizard. An error has prevented the Security Essentials Uninstall Wizard from continuing. Please restart your computer and try again. Error code:0x8004FF80.


System errors:
=============
Error: (04/04/2009 07:34:45 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 7:30:31 PM on 4/4/2009 was unexpected.

Error: (04/04/2009 06:56:39 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (04/03/2009 10:32:30 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (04/03/2009 10:32:30 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (04/03/2009 10:32:29 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (04/03/2009 10:32:29 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (04/03/2009 10:32:28 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (04/03/2009 10:32:28 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (04/03/2009 10:32:27 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (04/03/2009 10:32:27 AM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.


Microsoft Office Sessions:
=========================
Error: (04/27/2012 03:10:23 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 40645 seconds with 23340 seconds of active time. This session ended with a crash.

Error: (04/15/2012 02:55:34 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 106 seconds with 60 seconds of active time. This session ended with a crash.

Error: (10/16/2011 08:08:51 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash.

Error: (12/06/2010 03:59:39 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.

Error: (12/03/2010 03:06:34 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 11 seconds with 0 seconds of active time. This session ended with a crash.

Error: (09/11/2010 11:25:28 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 42 seconds with 0 seconds of active time. This session ended with a crash.

Error: (07/14/2010 07:41:46 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6535.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 55 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/02/2010 02:50:18 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 36 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/04/2010 10:12:44 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 80 seconds with 60 seconds of active time. This session ended with a crash.

Error: (05/22/2009 09:46:19 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6425.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 59 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 7.1.8)
3DVIA Player 4.1 (Version: 4.1.0.65)
Acrobat.com (Version: 2.0.0)
Acrobat.com (Version: 2.0.0.0)
Adobe AIR (Version: 1.5.3.9130)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.265)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
aMSN 0.98.9
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
ArcSoft PhotoImpression
Ares 2.1.7 (Version: 2.1.7-Build#3041)
BitTorrent (Version: 7.6.1)
Bonjour (Version: 3.0.0.10)
Broken Shortcut Fixer (Version: 1.2)
BufferChm (Version: 82.0.173.000)
calibre (Version: 0.8.24)
CCleaner (Version: 3.20)
Cheat Engine 5.3
Cheat Engine 5.6
CleanMyPC - Registry Cleaner
Combined Community Codec Pack 2008-09-21 16:18 (Version: 2008.09.21.0)
Creative Live! Cam Video IM Pro Driver (1.03.02.00)
CustomerResearchQFolder (Version: 1.00.0000)
D1300 (Version: 82.0.233.000)
D1300_Help (Version: 82.0.233.000)
Dell DataSafe Online (Version: 1.0.21)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 2.1.08060)
Destination Component (Version: 090.000.091.086)
DeviceDiscovery (Version: 110.0.180.000)
DeviceManagementQFolder (Version: 1.00.0000)
DivX Setup (Version: 2.6.1.9)
Dropbox (Version: 1.0.20)
Easy Video Downloader version 1.0 (Version: 1.0)
EDocs
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
Exact Audio Copy PSP Edition 1.0 (Version: 1.0)
ffdshow v1.1.3996 [2011-10-13] (Version: 1.1.3996.0)
getPlus® for Adobe (Version: 1.5.2.29)
Google Chrome (Version: 20.0.1132.57)
Google Update Helper (Version: 1.3.21.115)
GoToAssist 8.0.0.514
Governor of Poker 2 (Version: 1.0)
HP Customer Participation Program 8.0 (Version: 8.0)
HP Deskjet & Photosmart Printer Driver Software 8.0.A (Version: 8.0)
HP Imaging Device Functions 8.0 (Version: 8.0)
HP Photosmart Essential (Version: 1.12.0.46)
HP Product Assistant (Version: 100.000.001.000)
HP Solution Center 8.0 (Version: 8.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPProductAssistant (Version: 82.0.173.000)
HPSSupply (Version: 2.1.3.0000)
Intel® Graphics Media Accelerator Driver
Intel® PRO Network Connections 12.1.11.0 (Version: )
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
Logitech Vid HD (Version: 7.2 (7240))
Logitech Webcam Software (Version: 12.10.1113)
MarketResearch (Version: 82.0.174.000)
Media Go (Version: 2.1.392)
Media Go Video Playback Engine 1.88.110.12050 (Version: 1.88.110.12050)
Messenger Plus! 5 (Version: 5.11.0.760)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2008
Microsoft SQL Server 2008 Browser (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Native Client (Version: 10.3.5500.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.3.5500.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server VSS Writer (Version: 10.3.5500.0)
Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.31119)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.31124)
mowemcowboy Screen Saver
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music, Photos & Videos Launcher (Version: 1.00.0000)
Nero 7 Ultra Edition (Version: 7.02.9755)
neroxml (Version: 1.0.0)
OpenOffice.org Installer 1.0 (Version: 1.0.9221)
Outlook Express SMTP Changer 1.0
Paint.NET v3.36 (Version: 3.36.0)
Palm Desktop by ACCESS (Version: 6.4.0.0)
PC Connectivity Solution (Version: 10.21.0.0)
Philips Songbird (Version: 5.6.2119 (2119))
PlayStation®Network Downloader (Version: 2.07.00849)
PlayStation®Store (Version: 4.7.14.14146)
Product Documentation Launcher (Version: 1.00.0000)
Project64 1.6 (Version: 1.6)
PS3 Media Server (Version: 1.52.1)
PSP Video 9 6 (Version: 6)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver
Recuva (remove only)
Registry Reviver (Version: 1.2.39)
Revo Uninstaller Pro 2.5.3 (Version: 2.5.3)
Rhapsody Player Engine (Version: 1.0.690)
Rockstar Custom Tracks 1.0 (Version: 1.0)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator DE (Version: 10.1)
Roxio Creator DE (Version: 3.7.0)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio Update Manager (Version: 6.0.0)
Samsung New PC Studio (Version: 1.00.0000)
Samsung PC Studio 3 USB Driver Installer (Version: 3.2.0.70701)
sdscreen Screen Saver
Service Pack 3 for SQL Server 2008 (KB2546951) (Version: 10.3.5500.0)
SF_CDA_ProductContext (Version: 82.0.233.000)
SF_CDA_Software (Version: 82.0.233.000)
SolutionCenter (Version: 82.0.188.000)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0)
Stardock MyColors
Stardock MyColors (Version: 2.0)
Status (Version: 110.0.180.000)
SUPERAntiSpyware (Version: 5.5.1012)
Switch Sound File Converter
swMSM (Version: 12.0.0.1)
Talking Toucan Sam (Version: 1.00.0000)
teed off Screen Saver
Toolbox (Version: 82.0.173.000)
TrayApp (Version: 110.0.180.000)
Trellix Web Express Site Building
Unity (Version: )
Unity Web Player (Version: )
Unity Web Player (Version: 2.5.0f5_21627)
UnloadSupport (Version: 1.00.0000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
USB PC Camera VC305
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Veoh Video Compass (Version: 1.5.2)
Video mp3 Extractor Pro
Vimicro Cam 2nd Edition (Version: 1.00.0000)
Vimicro USB PC Camera(VC0305) (Version: 2007.04.19)
WebReg (Version: 82.0.173.000)
Weet wat je eet
WinPatrol (Version: 24.6.2012)
WinRAR archiver
Xvid Video Codec (Version: 1.3.2)
YTD Video Downloader 3.9

========================= Memory info: ===================================

Percentage of memory in use: 85%
Total physical RAM: 2036.45 MB
Available physical RAM: 299.9 MB
Total Pagefile: 4320.17 MB
Available Pagefile: 2278.83 MB
Total Virtual: 2047.88 MB
Available Virtual: 1964.63 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:288.04 GB) (Free:104.66 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:3.94 GB) NTFS

========================= Users: ========================================

User accounts for \\FALCONI-PC

Administrator Falconi Guest


**** End of log ****

#6 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 20 July 2012 - 09:19 PM

tdsskiller:


22:12:32.0121 4256 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
22:12:32.0908 4256 ============================================================
22:12:32.0908 4256 Current date / time: 2012/07/20 22:12:32.0908
22:12:32.0908 4256 SystemInfo:
22:12:32.0908 4256
22:12:32.0908 4256 OS Version: 6.0.6002 ServicePack: 2.0
22:12:32.0908 4256 Product type: Workstation
22:12:32.0908 4256 ComputerName: FALCONI-PC
22:12:32.0909 4256 UserName: Falconi
22:12:32.0909 4256 Windows directory: C:\Windows
22:12:32.0909 4256 System windows directory: C:\Windows
22:12:32.0909 4256 Processor architecture: Intel x86
22:12:32.0909 4256 Number of processors: 2
22:12:32.0909 4256 Page size: 0x1000
22:12:32.0909 4256 Boot type: Normal boot
22:12:32.0909 4256 ============================================================
22:12:45.0398 4256 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:12:45.0422 4256 ============================================================
22:12:45.0422 4256 \Device\Harddisk0\DR0:
22:12:45.0431 4256 MBR partitions:
22:12:45.0431 4256 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x18000, BlocksNum 0x1400000
22:12:45.0431 4256 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1418000, BlocksNum 0x24016000
22:12:45.0431 4256 ============================================================
22:12:45.0534 4256 C: <-> \Device\Harddisk0\DR0\Partition1
22:12:45.0581 4256 D: <-> \Device\Harddisk0\DR0\Partition0
22:12:45.0582 4256 ============================================================
22:12:45.0582 4256 Initialize success
22:12:45.0582 4256 ============================================================
22:13:12.0990 5992 ============================================================
22:13:12.0990 5992 Scan started
22:13:12.0990 5992 Mode: Manual; TDLFS;
22:13:12.0990 5992 ============================================================
22:13:14.0045 5992 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
22:13:14.0550 5992 !SASCORE - ok
22:13:14.0922 5992 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:13:15.0352 5992 ACPI - ok
22:13:15.0572 5992 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:13:15.0574 5992 AdobeARMservice - ok
22:13:15.0879 5992 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:13:16.0507 5992 AdobeFlashPlayerUpdateSvc - ok
22:13:16.0832 5992 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
22:13:17.0510 5992 adp94xx - ok
22:13:17.0696 5992 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
22:13:18.0052 5992 adpahci - ok
22:13:18.0154 5992 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
22:13:18.0157 5992 adpu160m - ok
22:13:18.0217 5992 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
22:13:18.0221 5992 adpu320 - ok
22:13:18.0260 5992 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
22:13:18.0261 5992 AeLookupSvc - ok
22:13:18.0294 5992 AERTFilters (330a1e4df07c2e29949ed8631cd8828e) C:\Windows\system32\AERTSrv.exe
22:13:18.0296 5992 AERTFilters - ok
22:13:18.0466 5992 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:13:18.0472 5992 AFD - ok
22:13:18.0577 5992 agp440 (8b10ce1c1f9f1d47e4deb1a547a00cd4) C:\Windows\system32\drivers\agp440.sys
22:13:18.0579 5992 agp440 - ok
22:13:18.0598 5992 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:13:18.0600 5992 aic78xx - ok
22:13:18.0635 5992 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
22:13:19.0004 5992 ALG - ok
22:13:19.0109 5992 aliide (e32a92e1574a467f7c762922f6162d76) C:\Windows\system32\drivers\aliide.sys
22:13:19.0119 5992 aliide - ok
22:13:19.0189 5992 amdagp (848f27e5b27c1c253f6cefdc1a5d8f21) C:\Windows\system32\drivers\amdagp.sys
22:13:19.0191 5992 amdagp - ok
22:13:19.0213 5992 amdide (b52b576cb0099a62f87214f371031561) C:\Windows\system32\drivers\amdide.sys
22:13:19.0215 5992 amdide - ok
22:13:19.0237 5992 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
22:13:19.0238 5992 AmdK7 - ok
22:13:19.0270 5992 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
22:13:19.0272 5992 AmdK8 - ok
22:13:19.0335 5992 AppHostSvc (dfae18c675d71fd06d57dc69d2913975) C:\Windows\system32\inetsrv\apphostsvc.dll
22:13:19.0336 5992 AppHostSvc - ok
22:13:19.0380 5992 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
22:13:19.0381 5992 Appinfo - ok
22:13:19.0606 5992 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:13:20.0141 5992 Apple Mobile Device - ok
22:13:20.0483 5992 Application Updater (b4a30f0a7494cdbec73f6bd30fb619d9) C:\Program Files\Application Updater\ApplicationUpdater.exe
22:13:21.0089 5992 Application Updater - ok
22:13:21.0135 5992 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
22:13:21.0138 5992 arc - ok
22:13:21.0181 5992 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
22:13:21.0616 5992 arcsas - ok
22:13:21.0845 5992 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:13:22.0806 5992 aspnet_state - ok
22:13:22.0962 5992 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:13:22.0964 5992 AsyncMac - ok
22:13:23.0057 5992 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
22:13:23.0468 5992 atapi - ok
22:13:23.0870 5992 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
22:13:24.0140 5992 AudioEndpointBuilder - ok
22:13:24.0148 5992 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
22:13:24.0158 5992 Audiosrv - ok
22:13:24.0251 5992 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:13:24.0256 5992 Beep - ok
22:13:24.0410 5992 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
22:13:24.0919 5992 BFE - ok
22:13:25.0299 5992 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
22:13:25.0935 5992 BITS - ok
22:13:25.0940 5992 blbdrive - ok
22:13:26.0239 5992 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
22:13:26.0246 5992 Bonjour Service - ok
22:13:26.0401 5992 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:13:26.0846 5992 bowser - ok
22:13:27.0046 5992 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:13:27.0056 5992 BrFiltLo - ok
22:13:27.0127 5992 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:13:27.0128 5992 BrFiltUp - ok
22:13:27.0389 5992 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
22:13:28.0015 5992 Browser - ok
22:13:28.0315 5992 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:13:28.0317 5992 Brserid - ok
22:13:28.0362 5992 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:13:28.0721 5992 BrSerWdm - ok
22:13:28.0812 5992 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:13:28.0844 5992 BrUsbMdm - ok
22:13:28.0889 5992 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:13:28.0914 5992 BrUsbSer - ok
22:13:28.0974 5992 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:13:29.0446 5992 BTHMODEM - ok
22:13:29.0849 5992 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:13:29.0852 5992 cdfs - ok
22:13:29.0910 5992 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:13:29.0913 5992 cdrom - ok
22:13:29.0932 5992 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
22:13:29.0933 5992 CertPropSvc - ok
22:13:29.0955 5992 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
22:13:30.0582 5992 circlass - ok
22:13:30.0658 5992 CISVC (745d20b75b3bdda545022625ed5dbb1b) C:\Windows\system32\CISVC.EXE
22:13:30.0712 5992 CISVC - ok
22:13:30.0941 5992 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:13:31.0635 5992 CLFS - ok
22:13:31.0791 5992 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:13:31.0794 5992 clr_optimization_v2.0.50727_32 - ok
22:13:32.0062 5992 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:13:33.0759 5992 clr_optimization_v4.0.30319_32 - ok
22:13:33.0991 5992 cmdide (c177dd90b5dc1dcaa96ccece752e6f0f) C:\Windows\system32\drivers\cmdide.sys
22:13:34.0013 5992 cmdide - ok
22:13:34.0041 5992 Compbatt (722936afb75a7f509662b69b5632f48a) C:\Windows\system32\drivers\compbatt.sys
22:13:34.0042 5992 Compbatt - ok
22:13:34.0050 5992 COMSysApp - ok
22:13:34.0090 5992 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
22:13:34.0092 5992 crcdisk - ok
22:13:34.0235 5992 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
22:13:34.0584 5992 Crusoe - ok
22:13:35.0098 5992 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
22:13:35.0377 5992 CryptSvc - ok
22:13:36.0310 5992 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
22:13:37.0079 5992 DcomLaunch - ok
22:13:37.0603 5992 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:13:38.0111 5992 DfsC - ok
22:13:38.0842 5992 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
22:13:39.0721 5992 DFSR - ok
22:13:39.0965 5992 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
22:13:40.0256 5992 Dhcp - ok
22:13:40.0405 5992 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:13:40.0739 5992 disk - ok
22:13:40.0849 5992 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
22:13:40.0853 5992 Dnscache - ok
22:13:40.0966 5992 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
22:13:40.0971 5992 dot3svc - ok
22:13:41.0032 5992 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
22:13:41.0036 5992 DPS - ok
22:13:41.0116 5992 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:13:41.0117 5992 drmkaud - ok
22:13:41.0550 5992 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:13:41.0563 5992 DXGKrnl - ok
22:13:41.0731 5992 e1express (04944f4fc4f0477185f5d26ae0ddb90e) C:\Windows\system32\DRIVERS\e1e6032.sys
22:13:42.0170 5992 e1express - ok
22:13:42.0245 5992 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:13:42.0248 5992 E1G60 - ok
22:13:42.0324 5992 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
22:13:42.0327 5992 EapHost - ok
22:13:42.0361 5992 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:13:42.0621 5992 Ecache - ok
22:13:42.0781 5992 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
22:13:42.0787 5992 ehRecvr - ok
22:13:42.0822 5992 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
22:13:42.0824 5992 ehSched - ok
22:13:42.0855 5992 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
22:13:42.0856 5992 ehstart - ok
22:13:42.0925 5992 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
22:13:42.0931 5992 elxstor - ok
22:13:43.0000 5992 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
22:13:43.0336 5992 EMDMgmt - ok
22:13:43.0531 5992 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
22:13:43.0570 5992 EventSystem - ok
22:13:43.0693 5992 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:13:44.0012 5992 exfat - ok
22:13:44.0096 5992 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:13:44.0130 5992 fastfat - ok
22:13:44.0169 5992 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:13:44.0171 5992 fdc - ok
22:13:44.0269 5992 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
22:13:44.0282 5992 fdPHost - ok
22:13:44.0347 5992 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
22:13:44.0350 5992 FDResPub - ok
22:13:44.0421 5992 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:13:44.0423 5992 FileInfo - ok
22:13:44.0465 5992 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:13:44.0827 5992 Filetrace - ok
22:13:44.0934 5992 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
22:13:44.0958 5992 flpydisk - ok
22:13:45.0032 5992 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:13:45.0685 5992 FltMgr - ok
22:13:45.0896 5992 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
22:13:46.0249 5992 FontCache - ok
22:13:46.0505 5992 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:13:46.0801 5992 FontCache3.0.0.0 - ok
22:13:46.0950 5992 FsUsbExDisk (cbe5f69a5e5b918225f420ba748f3742) C:\Windows\system32\FsUsbExDisk.SYS
22:13:47.0522 5992 FsUsbExDisk - ok
22:13:47.0808 5992 FsUsbExService (96633419f4a1e37acb89b45ebccfe001) C:\Windows\system32\FsUsbExService.Exe
22:13:47.0814 5992 FsUsbExService - ok
22:13:47.0900 5992 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
22:13:47.0901 5992 Fs_Rec - ok
22:13:48.0052 5992 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
22:13:49.0063 5992 gagp30kx - ok
22:13:49.0292 5992 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\Windows\system32\Drivers\GEARAspiWDM.sys
22:13:49.0294 5992 GEARAspiWDM - ok
22:13:49.0558 5992 getPlusHelper (0879dc7444a201df84e69c5dd5083d61) C:\Program Files\NOS\bin\getPlus_Helper.dll
22:13:50.0086 5992 getPlusHelper - ok
22:13:50.0366 5992 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
22:13:50.0386 5992 GoToAssist - ok
22:13:50.0601 5992 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
22:13:51.0227 5992 gpsvc - ok
22:13:51.0461 5992 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
22:13:51.0946 5992 gupdate - ok
22:13:51.0953 5992 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
22:13:51.0954 5992 gupdatem - ok
22:13:52.0353 5992 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:13:52.0364 5992 HDAudBus - ok
22:13:52.0412 5992 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:13:52.0414 5992 HidBth - ok
22:13:52.0440 5992 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:13:52.0442 5992 HidIr - ok
22:13:52.0608 5992 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
22:13:53.0016 5992 hidserv - ok
22:13:53.0253 5992 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:13:53.0255 5992 HidUsb - ok
22:13:53.0436 5992 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
22:13:54.0438 5992 hkmsvc - ok
22:13:54.0537 5992 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
22:13:54.0538 5992 HpCISSs - ok
22:13:54.0856 5992 hpqcxs08 (ed377b3c83fdea8d906109a085d219ba) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
22:13:54.0860 5992 hpqcxs08 - ok
22:13:54.0943 5992 hpqddsvc (ee4c7a4cf2316701ffde90f404520265) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
22:13:55.0431 5992 hpqddsvc - ok
22:13:55.0758 5992 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
22:13:55.0767 5992 HTTP - ok
22:13:55.0859 5992 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
22:13:55.0861 5992 i2omp - ok
22:13:55.0948 5992 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:13:55.0950 5992 i8042prt - ok
22:13:56.0043 5992 iaStor (997e8f5939f2d12cd9f2e6b395724c16) C:\Windows\system32\drivers\iastor.sys
22:13:56.0049 5992 iaStor - ok
22:13:56.0118 5992 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
22:13:56.0124 5992 iaStorV - ok
22:13:56.0277 5992 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:13:56.0531 5992 IDriverT - ok
22:13:56.0991 5992 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:13:57.0562 5992 idsvc - ok
22:13:57.0734 5992 igfx (9378d57e2b96c0a185d844770ad49948) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:13:58.0330 5992 igfx - ok
22:13:58.0443 5992 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:13:58.0693 5992 iirsp - ok
22:13:58.0947 5992 IISADMIN (dae181c2fdb0d02159c56185a469e10b) C:\Windows\system32\inetsrv\inetinfo.exe
22:13:58.0957 5992 IISADMIN - ok
22:13:59.0023 5992 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
22:13:59.0316 5992 IKEEXT - ok
22:13:59.0719 5992 IntcAzAudAddService (f8f53c5449f15b23d4c61d51d2701da8) C:\Windows\system32\drivers\RTKVHDA.sys
22:14:00.0946 5992 IntcAzAudAddService - ok
22:14:01.0439 5992 intelide (59b00efb24ead979becf413703bb1fac) C:\Windows\system32\DRIVERS\intelide.sys
22:14:01.0441 5992 intelide - ok
22:14:01.0502 5992 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:14:01.0504 5992 intelppm - ok
22:14:01.0588 5992 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
22:14:01.0621 5992 IPBusEnum - ok
22:14:01.0687 5992 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:14:02.0032 5992 IpFilterDriver - ok
22:14:02.0256 5992 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
22:14:02.0275 5992 iphlpsvc - ok
22:14:02.0283 5992 IpInIp - ok
22:14:02.0361 5992 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
22:14:02.0363 5992 IPMIDRV - ok
22:14:02.0497 5992 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:14:03.0060 5992 IPNAT - ok
22:14:03.0449 5992 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
22:14:03.0999 5992 iPod Service - ok
22:14:04.0062 5992 iprip (03d54e7bcf9b77ceaf34dc0057420352) C:\Windows\System32\iprip.dll
22:14:04.0065 5992 iprip - ok
22:14:04.0070 5992 ipvwabzv - ok
22:14:04.0168 5992 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:14:04.0176 5992 IRENUM - ok
22:14:04.0271 5992 isapnp (2f8ece2699e7e2070545e9b0960a8ed2) C:\Windows\system32\drivers\isapnp.sys
22:14:04.0589 5992 isapnp - ok
22:14:04.0822 5992 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:14:04.0827 5992 iScsiPrt - ok
22:14:04.0868 5992 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:14:04.0870 5992 iteatapi - ok
22:14:04.0902 5992 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:14:04.0903 5992 iteraid - ok
22:14:04.0954 5992 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:14:04.0956 5992 kbdclass - ok
22:14:05.0038 5992 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:14:05.0040 5992 kbdhid - ok
22:14:05.0118 5992 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:14:05.0801 5992 KeyIso - ok
22:14:06.0039 5992 KMWDFILTER (566c5fd480fdbce3ba5cf9fbcffaea9a) C:\Windows\system32\DRIVERS\KMWDFILTER.sys
22:14:06.0058 5992 KMWDFILTER - ok
22:14:06.0298 5992 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
22:14:06.0949 5992 KSecDD - ok
22:14:07.0182 5992 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
22:14:07.0191 5992 KtmRm - ok
22:14:07.0261 5992 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
22:14:07.0585 5992 LanmanServer - ok
22:14:07.0950 5992 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
22:14:07.0958 5992 LanmanWorkstation - ok
22:14:08.0109 5992 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:14:08.0474 5992 lltdio - ok
22:14:08.0958 5992 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
22:14:08.0963 5992 lltdsvc - ok
22:14:09.0000 5992 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
22:14:09.0003 5992 lmhosts - ok
22:14:09.0074 5992 LPDSVC (fee78621beca00b537cd70a6afaae112) C:\Windows\system32\lpdsvc.dll
22:14:09.0383 5992 LPDSVC - ok
22:14:09.0682 5992 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
22:14:09.0692 5992 LSI_FC - ok
22:14:09.0761 5992 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
22:14:09.0763 5992 LSI_SAS - ok
22:14:09.0800 5992 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
22:14:09.0802 5992 LSI_SCSI - ok
22:14:09.0851 5992 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:14:10.0319 5992 luafv - ok
22:14:10.0532 5992 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
22:14:10.0558 5992 LVPr2Mon - ok
22:14:10.0864 5992 LVPrcSrv (0ddfdcaa92c7f553328db06ba599bea9) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
22:14:11.0192 5992 LVPrcSrv - ok
22:14:11.0260 5992 MBAMProtector - ok
22:14:11.0470 5992 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
22:14:12.0367 5992 MBAMService - ok
22:14:12.0445 5992 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
22:14:13.0204 5992 Mcx2Svc - ok
22:14:13.0645 5992 MDM (7cf1b716372b89568ae4c0fe769f5869) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
22:14:14.0362 5992 MDM - ok
22:14:14.0613 5992 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
22:14:15.0106 5992 megasas - ok
22:14:15.0416 5992 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
22:14:15.0420 5992 MMCSS - ok
22:14:15.0474 5992 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:14:15.0851 5992 Modem - ok
22:14:16.0234 5992 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:14:16.0266 5992 monitor - ok
22:14:16.0385 5992 motmodem (fe80c18ba448ddd76b7bead9eb203d37) C:\Windows\system32\DRIVERS\motmodem.sys
22:14:16.0806 5992 motmodem - ok
22:14:17.0253 5992 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:14:17.0255 5992 mouclass - ok
22:14:17.0485 5992 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:14:17.0835 5992 mouhid - ok
22:14:18.0116 5992 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:14:18.0118 5992 MountMgr - ok
22:14:18.0522 5992 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:14:18.0822 5992 MozillaMaintenance - ok
22:14:19.0060 5992 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
22:14:19.0064 5992 MpFilter - ok
22:14:19.0150 5992 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
22:14:19.0367 5992 mpio - ok
22:14:19.0774 5992 MpKsl74cd6503 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{377BBF47-3A6B-4F9F-AF4B-2FEBC6300B38}\MpKsl74cd6503.sys
22:14:20.0241 5992 MpKsl74cd6503 - ok
22:14:20.0515 5992 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:14:20.0519 5992 mpsdrv - ok
22:14:20.0716 5992 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
22:14:20.0998 5992 MpsSvc - ok
22:14:21.0138 5992 MQAC (4116cde6c8c97e2f4492f2755810019f) C:\Windows\system32\drivers\mqac.sys
22:14:21.0490 5992 MQAC - ok
22:14:21.0656 5992 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:14:21.0658 5992 Mraid35x - ok
22:14:21.0853 5992 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:14:22.0336 5992 MRxDAV - ok
22:14:22.0493 5992 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:14:22.0496 5992 mrxsmb - ok
22:14:22.0616 5992 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:14:23.0017 5992 mrxsmb10 - ok
22:14:23.0160 5992 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:14:23.0163 5992 mrxsmb20 - ok
22:14:23.0262 5992 msahci (2681302b63b318cbea6c82902ac5428c) C:\Windows\system32\drivers\msahci.sys
22:14:23.0614 5992 msahci - ok
22:14:23.0923 5992 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
22:14:24.0342 5992 msdsm - ok
22:14:24.0471 5992 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
22:14:24.0476 5992 MSDTC - ok
22:14:24.0583 5992 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:14:24.0584 5992 Msfs - ok
22:14:24.0689 5992 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:14:25.0355 5992 msisadrv - ok
22:14:25.0573 5992 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
22:14:25.0578 5992 MSiSCSI - ok
22:14:25.0583 5992 msiserver - ok
22:14:25.0623 5992 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:14:26.0205 5992 MSKSSRV - ok
22:14:26.0532 5992 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:14:26.0533 5992 MsMpSvc - ok
22:14:26.0583 5992 MSMQ (aabd2bc9dada61ad5eb4223baac4486d) C:\Windows\system32\mqsvc.exe
22:14:27.0125 5992 MSMQ - ok
22:14:27.0416 5992 MSMQTriggers (fa3849c021b463e383bf188a9f0c8ed5) C:\Windows\system32\mqtgsvc.exe
22:14:27.0422 5992 MSMQTriggers - ok
22:14:27.0490 5992 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:14:27.0858 5992 MSPCLOCK - ok
22:14:27.0927 5992 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:14:27.0929 5992 MSPQM - ok
22:14:28.0023 5992 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:14:28.0513 5992 MsRPC - ok
22:14:28.0721 5992 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:14:28.0723 5992 mssmbios - ok
22:14:28.0815 5992 MSSQL$SQLEXPRESS - ok
22:14:28.0931 5992 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
22:14:29.0409 5992 MSSQLServerADHelper100 - ok
22:14:29.0534 5992 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:14:29.0570 5992 MSTEE - ok
22:14:29.0758 5992 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:14:29.0760 5992 Mup - ok
22:14:29.0828 5992 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
22:14:30.0123 5992 napagent - ok
22:14:30.0314 5992 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:14:35.0951 5992 NativeWifiP - ok
22:14:36.0982 5992 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:14:38.0012 5992 NDIS - ok
22:14:38.0219 5992 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:14:38.0985 5992 NdisTapi - ok
22:14:39.0713 5992 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:14:39.0743 5992 Ndisuio - ok
22:14:39.0856 5992 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:14:39.0859 5992 NdisWan - ok
22:14:39.0927 5992 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:14:39.0929 5992 NDProxy - ok
22:14:40.0347 5992 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\Windows\system32\HPZinw12.dll
22:14:40.0349 5992 Net Driver HPZ12 - ok
22:14:40.0450 5992 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:14:40.0452 5992 NetBIOS - ok
22:14:40.0501 5992 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:14:40.0505 5992 netbt - ok
22:14:40.0597 5992 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:14:40.0600 5992 Netlogon - ok
22:14:40.0694 5992 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
22:14:41.0699 5992 Netman - ok
22:14:42.0067 5992 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:14:42.0902 5992 NetMsmqActivator - ok
22:14:42.0908 5992 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:14:42.0911 5992 NetPipeActivator - ok
22:14:43.0024 5992 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
22:14:43.0031 5992 netprofm - ok
22:14:43.0045 5992 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:14:43.0458 5992 NetTcpActivator - ok
22:14:43.0471 5992 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:14:43.0473 5992 NetTcpPortSharing - ok
22:14:43.0533 5992 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:14:43.0551 5992 nfrd960 - ok
22:14:43.0649 5992 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:14:43.0973 5992 NisDrv - ok
22:14:44.0210 5992 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
22:14:44.0591 5992 NisSrv - ok
22:14:44.0848 5992 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
22:14:45.0242 5992 NlaSvc - ok
22:14:46.0171 5992 NMIndexingService (a328a46d87bb92ce4d8a4528e9d84787) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
22:14:47.0574 5992 NMIndexingService - ok
22:14:47.0580 5992 nmwcd - ok
22:14:47.0588 5992 nmwcdc - ok
22:14:47.0599 5992 nmwcdnsu - ok
22:14:47.0612 5992 nmwcdnsuc - ok
22:14:47.0820 5992 nosGetPlusHelper (1acf98d80e95add298832c7a8996b48c) C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
22:14:48.0218 5992 nosGetPlusHelper - ok
22:14:48.0806 5992 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:14:48.0808 5992 Npfs - ok
22:14:48.0914 5992 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
22:14:48.0918 5992 nsi - ok
22:14:49.0025 5992 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:14:49.0879 5992 nsiproxy - ok
22:14:50.0460 5992 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:14:51.0373 5992 Ntfs - ok
22:14:51.0418 5992 NtmsSvc (a7dff9642d510be1eec6664cd0369953) C:\Windows\system32\ntmssvc.dll
22:14:52.0039 5992 NtmsSvc - ok
22:14:52.0825 5992 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:14:54.0075 5992 ntrigdigi - ok
22:14:54.0339 5992 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:14:54.0402 5992 Null - ok
22:14:54.0784 5992 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
22:14:56.0259 5992 nvraid - ok
22:14:56.0562 5992 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
22:14:56.0593 5992 nvstor - ok
22:14:56.0701 5992 nv_agp (055081fd5076401c1ee1bcab08d81911) C:\Windows\system32\drivers\nv_agp.sys
22:14:57.0630 5992 nv_agp - ok
22:14:57.0643 5992 NwlnkFlt - ok
22:14:57.0660 5992 NwlnkFwd - ok
22:14:58.0027 5992 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:14:59.0450 5992 odserv - ok
22:14:59.0605 5992 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:15:00.0545 5992 ohci1394 - ok
22:15:01.0519 5992 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:15:02.0456 5992 ose - ok
22:15:03.0715 5992 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:15:04.0829 5992 p2pimsvc - ok
22:15:04.0841 5992 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:15:04.0851 5992 p2psvc - ok
22:15:04.0944 5992 PalmUSBD (dc450992eba6f914080c1f7fbeeed72c) C:\Windows\system32\drivers\PalmUSBD.sys
22:15:05.0403 5992 PalmUSBD - ok
22:15:06.0035 5992 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:15:06.0822 5992 Parport - ok
22:15:07.0226 5992 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
22:15:07.0251 5992 partmgr - ok
22:15:07.0292 5992 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:15:07.0843 5992 Parvdm - ok
22:15:08.0227 5992 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
22:15:08.0232 5992 PcaSvc - ok
22:15:08.0414 5992 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:15:08.0863 5992 pci - ok
22:15:09.0005 5992 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
22:15:09.0033 5992 pciide - ok
22:15:09.0190 5992 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:15:09.0554 5992 pcmcia - ok
22:15:09.0955 5992 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:15:10.0712 5992 PEAUTH - ok
22:15:11.0008 5992 PID_PEPI (dd184d9adfe2a8a21741dbdfe9e22f5c) C:\Windows\system32\DRIVERS\LV302V32.SYS
22:15:11.0800 5992 PID_PEPI - ok
22:15:12.0062 5992 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
22:15:12.0513 5992 pla - ok
22:15:12.0670 5992 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
22:15:13.0016 5992 PlugPlay - ok
22:15:13.0122 5992 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\Windows\system32\HPZipm12.dll
22:15:13.0452 5992 Pml Driver HPZ12 - ok
22:15:13.0630 5992 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:15:13.0640 5992 PNRPAutoReg - ok
22:15:13.0663 5992 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:15:13.0673 5992 PNRPsvc - ok
22:15:13.0726 5992 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
22:15:13.0746 5992 PolicyAgent - ok
22:15:13.0935 5992 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:15:13.0944 5992 PptpMiniport - ok
22:15:13.0998 5992 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
22:15:14.0000 5992 Processor - ok
22:15:14.0108 5992 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
22:15:14.0116 5992 ProfSvc - ok
22:15:14.0224 5992 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:15:14.0228 5992 ProtectedStorage - ok
22:15:14.0340 5992 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:15:14.0343 5992 PSched - ok
22:15:14.0450 5992 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
22:15:15.0128 5992 ql2300 - ok
22:15:15.0225 5992 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:15:15.0596 5992 ql40xx - ok
22:15:15.0908 5992 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
22:15:16.0218 5992 QWAVE - ok
22:15:16.0455 5992 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:15:16.0457 5992 QWAVEdrv - ok
22:15:16.0914 5992 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:15:17.0907 5992 R300 - ok
22:15:18.0110 5992 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:15:18.0336 5992 RasAcd - ok
22:15:18.0594 5992 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
22:15:18.0919 5992 RasAuto - ok
22:15:19.0037 5992 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:15:19.0040 5992 Rasl2tp - ok
22:15:19.0267 5992 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
22:15:19.0762 5992 RasMan - ok
22:15:19.0915 5992 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:15:19.0917 5992 RasPppoe - ok
22:15:19.0999 5992 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:15:20.0003 5992 RasSstp - ok
22:15:20.0176 5992 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:15:20.0583 5992 rdbss - ok
22:15:20.0750 5992 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:15:20.0784 5992 RDPCDD - ok
22:15:21.0182 5992 rdpdr (0245418224cfa77bf4b41c2fe0622258) C:\Windows\system32\drivers\rdpdr.sys
22:15:21.0603 5992 rdpdr - ok
22:15:21.0629 5992 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:15:21.0636 5992 RDPENCDD - ok
22:15:21.0715 5992 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
22:15:21.0720 5992 RDPWD - ok
22:15:21.0801 5992 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
22:15:21.0806 5992 RemoteAccess - ok
22:15:21.0931 5992 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
22:15:22.0220 5992 RemoteRegistry - ok
22:15:22.0326 5992 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
22:15:22.0355 5992 Revoflt - ok
22:15:22.0523 5992 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
22:15:22.0836 5992 RimUsb - ok
22:15:23.0038 5992 RMCAST (eec7ee5675294b03e88aa868540007c1) C:\Windows\system32\DRIVERS\RMCAST.sys
22:15:23.0041 5992 RMCAST - ok
22:15:23.0060 5992 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
22:15:23.0063 5992 RpcLocator - ok
22:15:23.0166 5992 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
22:15:23.0176 5992 RpcSs - ok
22:15:23.0290 5992 RsFx0105 (6a7360e36cbd636972aeef0dd292a946) C:\Windows\system32\DRIVERS\RsFx0105.sys
22:15:23.0842 5992 RsFx0105 - ok
22:15:24.0064 5992 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:15:24.0066 5992 rspndr - ok
22:15:24.0189 5992 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:15:24.0192 5992 SamSs - ok
22:15:24.0337 5992 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
22:15:24.0723 5992 SASDIFSV - ok
22:15:24.0798 5992 SASENUM (7f1085895e499907f68df7731924122b) C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
22:15:24.0843 5992 SASENUM - ok
22:15:25.0035 5992 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
22:15:25.0037 5992 SASKUTIL - ok
22:15:25.0083 5992 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:15:25.0345 5992 sbp2port - ok
22:15:25.0438 5992 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
22:15:25.0444 5992 SCardSvr - ok
22:15:25.0523 5992 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
22:15:25.0538 5992 Schedule - ok
22:15:25.0583 5992 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
22:15:25.0584 5992 SCPolicySvc - ok
22:15:25.0639 5992 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
22:15:25.0901 5992 SDRSVC - ok
22:15:26.0153 5992 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:15:26.0157 5992 secdrv - ok
22:15:26.0224 5992 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
22:15:26.0229 5992 seclogon - ok
22:15:26.0249 5992 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
22:15:26.0254 5992 SENS - ok
22:15:26.0276 5992 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
22:15:26.0277 5992 Serenum - ok
22:15:26.0327 5992 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:15:26.0329 5992 Serial - ok
22:15:26.0362 5992 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:15:26.0364 5992 sermouse - ok
22:15:26.0437 5992 ServiceLayer (5c1858eeadd097912443ae8efd44da6b) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
22:15:26.0984 5992 ServiceLayer - ok
22:15:27.0080 5992 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
22:15:27.0086 5992 SessionEnv - ok
22:15:27.0168 5992 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
22:15:27.0208 5992 sffdisk - ok
22:15:27.0238 5992 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
22:15:27.0581 5992 sffp_mmc - ok
22:15:27.0673 5992 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
22:15:27.0723 5992 sffp_sd - ok
22:15:27.0795 5992 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:15:28.0139 5992 sfloppy - ok
22:15:28.0560 5992 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
22:15:28.0952 5992 SharedAccess - ok
22:15:29.0227 5992 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
22:15:29.0721 5992 ShellHWDetection - ok
22:15:29.0810 5992 simptcp (a275fbb7c99458c12e088dff3e58eb4d) C:\Windows\System32\tcpsvcs.exe
22:15:29.0825 5992 simptcp - ok
22:15:29.0907 5992 sisagp (08072b2fb92477fc813271a84b3a8698) C:\Windows\system32\drivers\sisagp.sys
22:15:29.0909 5992 sisagp - ok
22:15:29.0938 5992 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
22:15:29.0941 5992 SiSRaid2 - ok
22:15:29.0988 5992 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
22:15:29.0991 5992 SiSRaid4 - ok
22:15:30.0350 5992 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
22:15:31.0614 5992 slsvc - ok
22:15:31.0808 5992 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
22:15:32.0298 5992 SLUINotify - ok
22:15:32.0580 5992 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:15:32.0609 5992 Smb - ok
22:15:32.0719 5992 SNMP (26ba81ba48c3d9fb292b4b60fde849f2) C:\Windows\System32\snmp.exe
22:15:33.0211 5992 SNMP - ok
22:15:33.0380 5992 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
22:15:33.0778 5992 SNMPTRAP - ok
22:15:33.0920 5992 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:15:34.0284 5992 spldr - ok
22:15:34.0360 5992 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
22:15:34.0366 5992 Spooler - ok
22:15:34.0569 5992 SQLAgent$SQLEXPRESS (a892134c28777978ecde8283dc57ac0f) c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
22:15:34.0831 5992 SQLAgent$SQLEXPRESS - ok
22:15:34.0979 5992 SQLBrowser (10d936dced9eacd1a1b3fcdda6d7a4eb) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
22:15:35.0460 5992 SQLBrowser - ok
22:15:35.0556 5992 SQLWriter (135cdccc167ef0c250125bbd3abe18d5) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
22:15:35.0558 5992 SQLWriter - ok
22:15:35.0634 5992 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:15:36.0050 5992 srv - ok
22:15:36.0190 5992 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:15:36.0194 5992 srv2 - ok
22:15:36.0269 5992 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:15:36.0541 5992 srvnet - ok
22:15:36.0758 5992 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
22:15:37.0084 5992 SSDPSRV - ok
22:15:37.0174 5992 ssm_bus (14622ae81c72b08691eedaabc1d4a129) C:\Windows\system32\DRIVERS\ssm_bus.sys
22:15:37.0177 5992 ssm_bus - ok
22:15:37.0240 5992 ssm_mdfl (43ee5e9fda61a5e0eac4c1de699e6e4d) C:\Windows\system32\DRIVERS\ssm_mdfl.sys
22:15:37.0242 5992 ssm_mdfl - ok
22:15:37.0275 5992 ssm_mdm (918cfd32c7feb174f356a0a6fad11f4b) C:\Windows\system32\DRIVERS\ssm_mdm.sys
22:15:37.0361 5992 ssm_mdm - ok
22:15:37.0458 5992 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
22:15:37.0814 5992 SstpSvc - ok
22:15:37.0969 5992 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
22:15:38.0012 5992 stisvc - ok
22:15:38.0118 5992 stllssvr (7489520e98a119b5a9a00857f4f87d16) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
22:15:38.0433 5992 stllssvr - ok
22:15:38.0553 5992 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:15:38.0622 5992 swenum - ok
22:15:38.0788 5992 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
22:15:38.0798 5992 swprv - ok
22:15:38.0846 5992 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:15:38.0848 5992 Symc8xx - ok
22:15:38.0871 5992 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:15:38.0873 5992 Sym_hi - ok
22:15:38.0902 5992 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:15:38.0910 5992 Sym_u3 - ok
22:15:39.0077 5992 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
22:15:39.0695 5992 SysMain - ok
22:15:39.0763 5992 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
22:15:39.0770 5992 TabletInputService - ok
22:15:39.0829 5992 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\Windows\system32\DRIVERS\taphss.sys
22:15:40.0213 5992 taphss - ok
22:15:40.0658 5992 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
22:15:41.0079 5992 TapiSrv - ok
22:15:41.0215 5992 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
22:15:41.0221 5992 TBS - ok
22:15:41.0346 5992 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
22:15:41.0628 5992 Tcpip - ok
22:15:41.0650 5992 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
22:15:41.0662 5992 Tcpip6 - ok
22:15:41.0756 5992 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
22:15:42.0095 5992 tcpipreg - ok
22:15:42.0169 5992 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:15:42.0171 5992 TDPIPE - ok
22:15:42.0347 5992 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:15:42.0833 5992 TDTCP - ok
22:15:43.0021 5992 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:15:43.0023 5992 tdx - ok
22:15:43.0097 5992 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:15:43.0480 5992 TermDD - ok
22:15:44.0187 5992 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
22:15:45.0073 5992 TermService - ok
22:15:45.0297 5992 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
22:15:45.0884 5992 Themes - ok
22:15:46.0175 5992 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
22:15:46.0361 5992 THREADORDER - ok
22:15:46.0651 5992 TlntSvr (5e1bc006cb4a26507d4512795cf08373) C:\Windows\System32\tlntsvr.exe
22:15:46.0657 5992 TlntSvr - ok
22:15:46.0755 5992 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
22:15:47.0100 5992 TrkWks - ok
22:15:47.0442 5992 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
22:15:47.0848 5992 TrustedInstaller - ok
22:15:48.0069 5992 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:15:48.0147 5992 tssecsrv - ok
22:15:48.0220 5992 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:15:48.0222 5992 tunmp - ok
22:15:48.0286 5992 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:15:48.0602 5992 tunnel - ok
22:15:48.0859 5992 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
22:15:48.0874 5992 uagp35 - ok
22:15:48.0973 5992 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:15:48.0978 5992 udfs - ok
22:15:49.0162 5992 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
22:15:49.0198 5992 UI0Detect - ok
22:15:49.0297 5992 uliagpkx (6d72ef05921abdf59fc45c7ebfe7e8dd) C:\Windows\system32\drivers\uliagpkx.sys
22:15:49.0998 5992 uliagpkx - ok
22:15:50.0227 5992 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
22:15:50.0233 5992 uliahci - ok
22:15:50.0279 5992 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:15:50.0634 5992 UlSata - ok
22:15:50.0716 5992 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:15:50.0720 5992 ulsata2 - ok
22:15:50.0836 5992 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:15:51.0193 5992 umbus - ok
22:15:51.0323 5992 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
22:15:51.0332 5992 upnphost - ok
22:15:51.0338 5992 upperdev - ok
22:15:51.0420 5992 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys
22:15:51.0760 5992 USBAAPL - ok
22:15:51.0959 5992 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
22:15:52.0364 5992 usbaudio - ok
22:15:52.0987 5992 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:15:53.0695 5992 usbccgp - ok
22:15:54.0032 5992 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:15:54.0054 5992 usbcir - ok
22:15:54.0148 5992 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:15:54.0150 5992 usbehci - ok
22:15:54.0220 5992 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:15:54.0224 5992 usbhub - ok
22:15:54.0275 5992 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:15:54.0577 5992 usbohci - ok
22:15:54.0807 5992 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:15:54.0821 5992 usbprint - ok
22:15:54.0902 5992 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:15:54.0905 5992 usbscan - ok
22:15:54.0924 5992 UsbserFilt - ok
22:15:55.0034 5992 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:15:55.0266 5992 USBSTOR - ok
22:15:55.0661 5992 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:15:55.0685 5992 usbuhci - ok
22:15:55.0882 5992 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
22:15:56.0832 5992 UxSms - ok
22:15:57.0085 5992 V0230Vfx (a0c643d5f8c60f12faa6e3454dfe9c32) C:\Windows\system32\DRIVERS\V0230Vfx.sys
22:15:57.0121 5992 V0230Vfx - ok
22:15:57.0669 5992 V0230VID (ab3a762b624ec835c1c7bb665b04ed41) C:\Windows\system32\DRIVERS\V0230VID.sys
22:15:58.0426 5992 V0230VID - ok
22:15:59.0304 5992 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
22:15:59.0981 5992 vds - ok
22:16:00.0283 5992 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
22:16:00.0334 5992 vga - ok
22:16:00.0545 5992 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:16:00.0598 5992 VgaSave - ok
22:16:00.0709 5992 viaagp (d5929a28bdff4367a12caf06af901971) C:\Windows\system32\drivers\viaagp.sys
22:16:00.0723 5992 viaagp - ok
22:16:00.0886 5992 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
22:16:00.0898 5992 ViaC7 - ok
22:16:00.0948 5992 viaide (689547ce911998d1e0da7a5992e025fc) C:\Windows\system32\drivers\viaide.sys
22:16:00.0959 5992 viaide - ok
22:16:01.0365 5992 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:16:01.0367 5992 volmgr - ok
22:16:01.0486 5992 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:16:02.0073 5992 volmgrx - ok
22:16:02.0352 5992 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:16:02.0860 5992 volsnap - ok
22:16:02.0987 5992 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
22:16:02.0991 5992 vsmraid - ok
22:16:03.0179 5992 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
22:16:04.0308 5992 VSS - ok
22:16:04.0640 5992 vvftav (090da253a1ad35c9c333a1d3bb6aaf7e) C:\Windows\system32\drivers\vvftav.sys
22:16:05.0151 5992 vvftav - ok
22:16:05.0484 5992 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
22:16:05.0853 5992 W32Time - ok
22:16:06.0069 5992 W3SVC (9ca92191c8f18e8b491a5b28e63c07b7) C:\Windows\system32\inetsrv\iisw3adm.dll
22:16:06.0076 5992 W3SVC - ok
22:16:06.0128 5992 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:16:06.0327 5992 WacomPen - ok
22:16:06.0746 5992 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:16:07.0206 5992 Wanarp - ok
22:16:07.0213 5992 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:16:07.0215 5992 Wanarpv6 - ok
22:16:07.0230 5992 WAS (9ca92191c8f18e8b491a5b28e63c07b7) C:\Windows\system32\inetsrv\iisw3adm.dll
22:16:07.0234 5992 WAS - ok
22:16:07.0637 5992 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
22:16:08.0289 5992 wcncsvc - ok
22:16:08.0458 5992 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
22:16:08.0955 5992 WcsPlugInService - ok
22:16:09.0199 5992 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
22:16:09.0240 5992 Wd - ok
22:16:09.0583 5992 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
22:16:10.0297 5992 Wdf01000 - ok
22:16:10.0611 5992 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:16:11.0249 5992 WdiServiceHost - ok
22:16:11.0261 5992 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:16:11.0266 5992 WdiSystemHost - ok
22:16:11.0879 5992 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
22:16:12.0594 5992 WebClient - ok
22:16:13.0065 5992 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
22:16:13.0445 5992 Wecsvc - ok
22:16:13.0941 5992 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
22:16:13.0948 5992 wercplsupport - ok
22:16:14.0154 5992 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
22:16:14.0749 5992 WerSvc - ok
22:16:15.0435 5992 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
22:16:16.0263 5992 WinDefend - ok
22:16:16.0564 5992 WindowBlinds (59728aed28364a597040e0b7ba07ae33) C:\Program Files\Stardock\MyColors\VistaSrv.exe
22:16:17.0181 5992 WindowBlinds - ok
22:16:17.0209 5992 WinHttpAutoProxySvc - ok
22:16:17.0415 5992 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
22:16:17.0419 5992 Winmgmt - ok
22:16:17.0533 5992 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
22:16:18.0032 5992 WinRM - ok
22:16:18.0165 5992 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
22:16:18.0179 5992 Wlansvc - ok
22:16:18.0380 5992 WmiAcpi (17eac0d023a65fa9b02114cc2baacad5) C:\Windows\system32\drivers\wmiacpi.sys
22:16:18.0715 5992 WmiAcpi - ok
22:16:18.0955 5992 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
22:16:19.0191 5992 wmiApSrv - ok
22:16:19.0543 5992 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
22:16:21.0160 5992 WMPNetworkSvc - ok
22:16:21.0313 5992 WMSvc (8f09bcef47c3ed52b2ddf3fa66379327) C:\Windows\system32\inetsrv\wmsvc.exe
22:16:21.0951 5992 WMSvc - ok
22:16:22.0269 5992 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
22:16:22.0377 5992 WPCSvc - ok
22:16:22.0470 5992 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
22:16:22.0857 5992 WPDBusEnum - ok
22:16:23.0335 5992 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:16:23.0346 5992 WpdUsb - ok
22:16:23.0668 5992 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:16:24.0318 5992 WPFFontCache_v0400 - ok
22:16:24.0528 5992 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:16:24.0566 5992 ws2ifsl - ok
22:16:24.0842 5992 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
22:16:25.0189 5992 wscsvc - ok
22:16:25.0201 5992 WSearch - ok
22:16:25.0555 5992 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
22:16:26.0598 5992 wuauserv - ok
22:16:26.0792 5992 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:16:26.0796 5992 WUDFRd - ok
22:16:26.0872 5992 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
22:16:26.0878 5992 wudfsvc - ok
22:16:27.0056 5992 ZSMC0305 (400193c446f539134273ab9b88e837dc) C:\Windows\system32\Drivers\usbVM305.sys
22:16:27.0770 5992 ZSMC0305 - ok
22:16:27.0802 5992 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:16:29.0662 5992 \Device\Harddisk0\DR0 - ok
22:16:29.0702 5992 Boot (0x1200) (6bb2eb1dc6373f1f98ffeaf0205bb8a7) \Device\Harddisk0\DR0\Partition0
22:16:29.0703 5992 \Device\Harddisk0\DR0\Partition0 - ok
22:16:29.0759 5992 Boot (0x1200) (f9e93443233193d42c019dae9f2a11c9) \Device\Harddisk0\DR0\Partition1
22:16:29.0762 5992 \Device\Harddisk0\DR0\Partition1 - ok
22:16:29.0793 5992 ============================================================
22:16:29.0793 5992 Scan finished
22:16:29.0793 5992 ============================================================
22:16:29.0822 2056 Detected object count: 0
22:16:29.0822 2056 Actual detected object count: 0

#7 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 21 July 2012 - 02:10 AM

Malwarebytes Anti-Malware (PRO) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.21.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Falconi :: FALCONI-PC [administrator]

Protection: Disabled

7/21/2012 2:47:30 AM
mbam-log-2012-07-21 (02-47-30).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 222630
Time elapsed: 15 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 1
C:\Program Files\BrowserCompanion (PUP.Blabbers) -> Quarantined and deleted successfully.

Files Detected: 4
C:\Program Files\BrowserCompanion\blabbers-ch.crx (PUP.Blabbers) -> Quarantined and deleted successfully.
C:\Program Files\BrowserCompanion\BCHelper.exe (PUP.Blabbers) -> Quarantined and deleted successfully.
C:\Program Files\BrowserCompanion\logo.ico (PUP.Blabbers) -> Quarantined and deleted successfully.
C:\Program Files\BrowserCompanion\sqlite3.dll (PUP.Blabbers) -> Quarantined and deleted successfully.

(end)

#8 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 21 July 2012 - 05:30 PM

ok so i ran microsoft security essentials full scan and it froze at C:\Windows\System32\CodeIntegrity\driver.stl

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:31 AM

Posted 21 July 2012 - 09:52 PM

Hello, I believe you may have an issue with perhaps a Backup program.
Also running those registry cleaners are doing more harm then good.

The Blabbers web site tool is a PUP.. PUP just means Potentially Unwanted Program. It does not clearly mean it is malware. It mat cntain unwanted adware and is flagged.


Please see this on

froze at C:\Windows\System32\CodeIntegrity\driver.stl



http://answers.microsoft.com/en-us/protect/forum/mse-protect_scanning/mse-scan-freeze-on/96fd9766-22d3-49a7-a06f-ce3597010035
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 22 July 2012 - 01:53 AM

Ok so i have to wait and see if those methods worked but how about these probs


o and i already posted on this site for a different problem wich most of it was fixed but i still have some problems

wich are :
that sfc/scannow only reaches 43% and then stops
windows live messenger wont open{have unninstalled since then}
all new downloads like songs and such have a unknown account in security with the name Account Unknown (s-1-5-5-0-191954)
all my old shortcuts in my start/all programs never came back
and a few installed updates i cant find in list so my computer keeps trying to install those updates because it cant find them even though they are already installed

and at times when i do something on my computer witch needs administrators permision my computer wont open that and i have to restart my computer to use it.

Edited by 911zabuza, 22 July 2012 - 02:03 AM.


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:31 AM

Posted 23 July 2012 - 01:23 PM

OK, as I see no malware causing these you should ask in Vista as there must be some conflicts in software.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 24 July 2012 - 12:38 AM

what do you mean by in vista.
the forum : BleepingComputer.com> Operating Systems> Windows Vista??

Edited by 911zabuza, 24 July 2012 - 03:26 AM.


#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:31 AM

Posted 24 July 2012 - 01:28 PM

Sorry,yes in the Vista Operating System forum u top,.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 911zabuza

911zabuza
  • Topic Starter

  • Members
  • 80 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:31 AM

Posted 25 July 2012 - 05:11 AM

ok so i tested all the methods shown in http://answers.microsoft.com/en-us/protect/forum/mse-protect_scanning/mse-scan-freeze-on/96fd9766-22d3-49a7-a06f-ce3597010035 but none of them helped

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:31 AM

Posted 25 July 2012 - 04:26 PM

Lets see if they come back after this... please download the following program to your desktop:

Unhide.exe

Once the program has been downloaded, double-click on the Unhide.exe icon on your desktop and allow the program to run.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users