Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need Assistance - Redirect Rootkit


  • Please log in to reply
12 replies to this topic

#1 igbyslocumb

igbyslocumb

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 26 July 2012 - 10:58 AM

Hi,

Running Firefox 13.0.1 on Win7 SP1, I'm experiencing the "google redirect" issue. TDSS killer didn't help. I have MS Security Essentials installed.

One in three google searches punts me to somewhere I shouldnt be.

Searches of the registry and HDDs for "TDSS" come back empty.

thanks,
jcg

Edited by igbyslocumb, 26 July 2012 - 11:00 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:02 PM

Posted 26 July 2012 - 10:59 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 igbyslocumb

igbyslocumb
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 26 July 2012 - 12:31 PM

TDSSKiller
10:51:09.0538 6480 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
10:51:09.0806 6480 ============================================================
10:51:09.0806 6480 Current date / time: 2012/07/26 10:51:09.0806
10:51:09.0806 6480 SystemInfo:
10:51:09.0806 6480
10:51:09.0806 6480 OS Version: 6.1.7601 ServicePack: 1.0
10:51:09.0806 6480 Product type: Workstation
10:51:09.0806 6480 ComputerName: SEKIWAKE
10:51:09.0807 6480 UserName: jc
10:51:09.0807 6480 Windows directory: C:\Windows
10:51:09.0807 6480 System windows directory: C:\Windows
10:51:09.0807 6480 Running under WOW64
10:51:09.0807 6480 Processor architecture: Intel x64
10:51:09.0807 6480 Number of processors: 4
10:51:09.0807 6480 Page size: 0x1000
10:51:09.0807 6480 Boot type: Normal boot
10:51:09.0807 6480 ============================================================
10:51:11.0097 6480 Drive \Device\Harddisk3\DR3 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:51:11.0777 6480 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:51:12.0234 6480 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:51:12.0259 6480 Drive \Device\Harddisk0\DR0 - Size: 0x114FE27E00 (69.25 Gb), SectorSize: 0x200, Cylinders: 0x234F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:51:12.0287 6480 ============================================================
10:51:12.0287 6480 \Device\Harddisk3\DR3:
10:51:12.0289 6480 MBR partitions:
10:51:12.0289 6480 \Device\Harddisk3\DR3\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
10:51:12.0289 6480 \Device\Harddisk2\DR2:
10:51:12.0289 6480 MBR partitions:
10:51:12.0289 6480 \Device\Harddisk1\DR1:
10:51:12.0289 6480 MBR partitions:
10:51:12.0289 6480 \Device\Harddisk0\DR0:
10:51:12.0289 6480 MBR partitions:
10:51:12.0289 6480 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:51:12.0289 6480 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x8A4C000
10:51:12.0289 6480 ============================================================
10:51:12.0356 6480 C: <-> \Device\Harddisk0\DR0\Partition1
10:51:12.0386 6480 F: <-> \Device\Harddisk3\DR3\Partition0
10:51:12.0386 6480 ============================================================
10:51:12.0386 6480 Initialize success
10:51:12.0386 6480 ============================================================
10:51:17.0504 6856 ============================================================
10:51:17.0504 6856 Scan started
10:51:17.0504 6856 Mode: Manual; SigCheck; TDLFS;
10:51:17.0504 6856 ============================================================
10:51:19.0373 6856 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
10:51:19.0554 6856 1394ohci - ok
10:51:20.0144 6856 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:51:20.0155 6856 ACPI - ok
10:51:20.0224 6856 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:51:20.0624 6856 AcpiPmi - ok
10:51:20.0771 6856 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:51:20.0778 6856 AdobeARMservice - ok
10:51:20.0902 6856 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
10:51:20.0926 6856 adp94xx - ok
10:51:20.0980 6856 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
10:51:20.0992 6856 adpahci - ok
10:51:21.0073 6856 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
10:51:21.0083 6856 adpu320 - ok
10:51:21.0140 6856 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
10:51:21.0166 6856 AeLookupSvc - ok
10:51:21.0258 6856 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
10:51:21.0295 6856 AFD - ok
10:51:21.0486 6856 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:51:21.0528 6856 agp440 - ok
10:51:21.0566 6856 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
10:51:21.0609 6856 ALG - ok
10:51:21.0696 6856 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:51:21.0713 6856 aliide - ok
10:51:21.0764 6856 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:51:21.0771 6856 amdide - ok
10:51:21.0784 6856 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
10:51:21.0800 6856 AmdK8 - ok
10:51:21.0804 6856 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
10:51:21.0812 6856 AmdPPM - ok
10:51:21.0851 6856 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:51:21.0859 6856 amdsata - ok
10:51:22.0068 6856 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
10:51:22.0080 6856 amdsbs - ok
10:51:22.0105 6856 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:51:22.0112 6856 amdxata - ok
10:51:22.0296 6856 APC Data Service (107ab19cc1d40b9d04537f6eeaac34c9) C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
10:51:22.0355 6856 APC Data Service - ok
10:51:22.0462 6856 APC UPS Service (c7f8c8080b055b3de9a8141dfd8e308a) C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
10:51:22.0592 6856 APC UPS Service - ok
10:51:22.0820 6856 APCPBEAgent (2b3f956ac2e0ba937fff1bc407acd6c9) C:\PROGRA~2\APC\POWERC~1\agent\pbeagent.exe
10:51:22.0837 6856 APCPBEAgent - ok
10:51:23.0101 6856 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:51:23.0414 6856 AppID - ok
10:51:23.0489 6856 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
10:51:23.0533 6856 AppIDSvc - ok
10:51:23.0737 6856 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
10:51:23.0761 6856 Appinfo - ok
10:51:23.0827 6856 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:51:23.0833 6856 Apple Mobile Device - ok
10:51:23.0943 6856 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
10:51:23.0973 6856 AppMgmt - ok
10:51:24.0273 6856 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
10:51:24.0280 6856 arc - ok
10:51:24.0324 6856 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
10:51:24.0331 6856 arcsas - ok
10:51:24.0678 6856 asmthub3 (e1e75921e9eb025009696d4837f531fb) C:\Windows\system32\DRIVERS\asmthub3.sys
10:51:24.0752 6856 asmthub3 - ok
10:51:25.0786 6856 asmtxhci (b0cf9ab16006b61634d4f955345ca5d2) C:\Windows\system32\DRIVERS\asmtxhci.sys
10:51:25.0806 6856 asmtxhci - ok
10:51:25.0912 6856 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:51:25.0934 6856 AsyncMac - ok
10:51:25.0978 6856 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:51:25.0984 6856 atapi - ok
10:51:27.0106 6856 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:51:27.0183 6856 AudioEndpointBuilder - ok
10:51:27.0187 6856 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
10:51:27.0212 6856 AudioSrv - ok
10:51:27.0575 6856 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
10:51:28.0108 6856 AxInstSV - ok
10:51:28.0326 6856 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
10:51:28.0389 6856 b06bdrv - ok
10:51:28.0753 6856 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:51:28.0788 6856 b57nd60a - ok
10:51:29.0112 6856 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
10:51:29.0190 6856 BDESVC - ok
10:51:29.0225 6856 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:51:29.0285 6856 Beep - ok
10:51:30.0599 6856 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
10:51:30.0708 6856 BFE - ok
10:51:32.0483 6856 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
10:51:32.0510 6856 BITS - ok
10:51:32.0763 6856 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:51:32.0771 6856 blbdrive - ok
10:51:34.0029 6856 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
10:51:34.0070 6856 Bonjour Service - ok
10:51:34.0359 6856 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:51:34.0395 6856 bowser - ok
10:51:34.0431 6856 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:51:34.0584 6856 BrFiltLo - ok
10:51:34.0608 6856 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:51:34.0616 6856 BrFiltUp - ok
10:51:34.0696 6856 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
10:51:34.0728 6856 BridgeMP - ok
10:51:35.0102 6856 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
10:51:35.0146 6856 Browser - ok
10:51:35.0239 6856 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:51:35.0326 6856 Brserid - ok
10:51:35.0352 6856 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:51:35.0376 6856 BrSerWdm - ok
10:51:35.0411 6856 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:51:35.0428 6856 BrUsbMdm - ok
10:51:35.0447 6856 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:51:35.0455 6856 BrUsbSer - ok
10:51:35.0517 6856 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
10:51:35.0557 6856 BTHMODEM - ok
10:51:35.0700 6856 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
10:51:35.0758 6856 bthserv - ok
10:51:35.0974 6856 busenum (fc278504bfa3ac7e9ed92359d0ee7282) C:\Windows\system32\DRIVERS\busenum.sys
10:51:35.0992 6856 busenum - ok
10:51:36.0094 6856 catchme - ok
10:51:36.0181 6856 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:51:36.0262 6856 cdfs - ok
10:51:36.0998 6856 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
10:51:37.0070 6856 cdrom - ok
10:51:37.0299 6856 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:51:37.0339 6856 CertPropSvc - ok
10:51:37.0524 6856 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
10:51:37.0595 6856 circlass - ok
10:51:37.0978 6856 CLDTVHNService (6c99de57c87d6f3ee85998a7e49f7bf9) C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
10:51:37.0989 6856 CLDTVHNService - ok
10:51:39.0119 6856 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:51:39.0132 6856 CLFS - ok
10:51:39.0586 6856 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:51:39.0599 6856 clr_optimization_v2.0.50727_32 - ok
10:51:39.0816 6856 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:51:39.0822 6856 clr_optimization_v2.0.50727_64 - ok
10:51:40.0506 6856 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:51:40.0514 6856 clr_optimization_v4.0.30319_32 - ok
10:51:40.0969 6856 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:51:40.0982 6856 clr_optimization_v4.0.30319_64 - ok
10:51:41.0047 6856 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
10:51:41.0058 6856 CmBatt - ok
10:51:41.0136 6856 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:51:41.0149 6856 cmdide - ok
10:51:42.0500 6856 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
10:51:42.0567 6856 CNG - ok
10:51:42.0659 6856 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
10:51:42.0665 6856 Compbatt - ok
10:51:42.0825 6856 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
10:51:42.0859 6856 CompositeBus - ok
10:51:42.0885 6856 COMSysApp - ok
10:51:42.0980 6856 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
10:51:42.0987 6856 crcdisk - ok
10:51:43.0139 6856 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
10:51:43.0147 6856 CryptSvc - ok
10:51:44.0509 6856 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
10:51:44.0571 6856 CSC - ok
10:51:45.0678 6856 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
10:51:45.0740 6856 CscService - ok
10:51:45.0920 6856 dc3d (1ca90212a99db6975c344826d11055c9) C:\Windows\system32\DRIVERS\dc3d.sys
10:51:45.0930 6856 dc3d - ok
10:51:46.0174 6856 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:51:46.0206 6856 DcomLaunch - ok
10:51:46.0737 6856 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
10:51:46.0767 6856 defragsvc - ok
10:51:47.0050 6856 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:51:47.0097 6856 DfsC - ok
10:51:47.0566 6856 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
10:51:47.0628 6856 Dhcp - ok
10:51:47.0757 6856 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:51:47.0831 6856 discache - ok
10:51:47.0846 6856 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
10:51:47.0853 6856 Disk - ok
10:51:48.0202 6856 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
10:51:48.0261 6856 Dnscache - ok
10:51:49.0063 6856 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
10:51:49.0210 6856 dot3svc - ok
10:51:49.0645 6856 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
10:51:49.0688 6856 DPS - ok
10:51:49.0781 6856 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:51:49.0811 6856 drmkaud - ok
10:51:50.0556 6856 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:51:50.0572 6856 DXGKrnl - ok
10:51:50.0741 6856 e1cexpress (6bafd9819d9fec2edbaebc8493c711a4) C:\Windows\system32\DRIVERS\e1c62x64.sys
10:51:50.0753 6856 e1cexpress - ok
10:51:50.0793 6856 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
10:51:50.0834 6856 EapHost - ok
10:51:52.0162 6856 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
10:51:52.0252 6856 ebdrv - ok
10:51:54.0020 6856 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
10:51:54.0027 6856 EFS - ok
10:51:54.0388 6856 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
10:51:54.0496 6856 ehRecvr - ok
10:51:54.0568 6856 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
10:51:54.0685 6856 ehSched - ok
10:51:54.0966 6856 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
10:51:54.0982 6856 elxstor - ok
10:51:55.0034 6856 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:51:55.0064 6856 ErrDev - ok
10:51:55.0956 6856 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
10:51:55.0980 6856 EventSystem - ok
10:51:56.0234 6856 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:51:56.0262 6856 exfat - ok
10:51:56.0891 6856 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:51:56.0925 6856 fastfat - ok
10:51:57.0098 6856 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
10:51:57.0157 6856 Fax - ok
10:51:57.0180 6856 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
10:51:57.0205 6856 fdc - ok
10:51:57.0240 6856 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
10:51:57.0272 6856 fdPHost - ok
10:51:57.0301 6856 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
10:51:57.0335 6856 FDResPub - ok
10:51:57.0361 6856 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:51:57.0368 6856 FileInfo - ok
10:51:57.0386 6856 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:51:57.0411 6856 Filetrace - ok
10:51:57.0413 6856 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
10:51:57.0421 6856 flpydisk - ok
10:51:57.0463 6856 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:51:57.0474 6856 FltMgr - ok
10:51:58.0103 6856 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
10:51:58.0233 6856 FontCache - ok
10:51:58.0531 6856 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:51:58.0542 6856 FontCache3.0.0.0 - ok
10:51:58.0726 6856 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:51:58.0736 6856 FsDepends - ok
10:51:58.0856 6856 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
10:51:58.0869 6856 Fs_Rec - ok
10:51:59.0445 6856 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:51:59.0467 6856 fvevol - ok
10:51:59.0505 6856 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:51:59.0512 6856 gagp30kx - ok
10:51:59.0528 6856 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:51:59.0533 6856 GEARAspiWDM - ok
10:51:59.0578 6856 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
10:51:59.0618 6856 gpsvc - ok
10:51:59.0655 6856 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:51:59.0714 6856 hcw85cir - ok
10:51:59.0839 6856 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:51:59.0864 6856 HdAudAddService - ok
10:52:00.0016 6856 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
10:52:00.0049 6856 HDAudBus - ok
10:52:00.0102 6856 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
10:52:00.0115 6856 HidBatt - ok
10:52:00.0120 6856 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
10:52:00.0145 6856 HidBth - ok
10:52:00.0257 6856 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
10:52:00.0283 6856 HidIr - ok
10:52:00.0351 6856 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
10:52:00.0386 6856 hidserv - ok
10:52:00.0526 6856 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
10:52:00.0534 6856 HidUsb - ok
10:52:00.0834 6856 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
10:52:00.0914 6856 hkmsvc - ok
10:52:01.0389 6856 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
10:52:01.0457 6856 HomeGroupListener - ok
10:52:02.0013 6856 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
10:52:02.0054 6856 HomeGroupProvider - ok
10:52:02.0264 6856 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:52:02.0278 6856 HpSAMD - ok
10:52:03.0517 6856 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:52:03.0618 6856 HTTP - ok
10:52:03.0719 6856 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:52:03.0732 6856 hwpolicy - ok
10:52:03.0902 6856 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
10:52:03.0934 6856 i8042prt - ok
10:52:04.0462 6856 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:52:04.0485 6856 iaStorV - ok
10:52:06.0293 6856 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:52:06.0358 6856 idsvc - ok
10:52:06.0459 6856 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
10:52:06.0507 6856 iirsp - ok
10:52:07.0215 6856 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
10:52:07.0311 6856 IKEEXT - ok
10:52:10.0635 6856 IntcAzAudAddService (dab7318ccfa8081200d5b7b486793f74) C:\Windows\system32\drivers\RTKVHD64.sys
10:52:10.0679 6856 IntcAzAudAddService - ok
10:52:11.0251 6856 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:52:11.0264 6856 intelide - ok
10:52:11.0362 6856 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:52:11.0392 6856 intelppm - ok
10:52:11.0558 6856 Intel® PROSet Monitoring Service (068ec06f3b6dd7b81b365d8fd2ce27e6) C:\Windows\system32\IProsetMonitor.exe
10:52:11.0594 6856 Intel® PROSet Monitoring Service - ok
10:52:11.0736 6856 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
10:52:11.0775 6856 IPBusEnum - ok
10:52:11.0922 6856 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:52:11.0961 6856 IpFilterDriver - ok
10:52:12.0311 6856 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
10:52:12.0407 6856 iphlpsvc - ok
10:52:12.0439 6856 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:52:12.0448 6856 IPMIDRV - ok
10:52:12.0476 6856 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:52:12.0507 6856 IPNAT - ok
10:52:12.0686 6856 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
10:52:12.0729 6856 iPod Service - ok
10:52:12.0745 6856 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:52:13.0160 6856 IRENUM - ok
10:52:13.0264 6856 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:52:13.0270 6856 isapnp - ok
10:52:14.0095 6856 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:52:14.0114 6856 iScsiPrt - ok
10:52:14.0205 6856 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
10:52:14.0218 6856 kbdclass - ok
10:52:14.0347 6856 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
10:52:14.0361 6856 kbdhid - ok
10:52:14.0495 6856 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:52:14.0506 6856 KeyIso - ok
10:52:14.0713 6856 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
10:52:14.0727 6856 KSecDD - ok
10:52:15.0279 6856 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
10:52:15.0313 6856 KSecPkg - ok
10:52:15.0371 6856 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:52:15.0414 6856 ksthunk - ok
10:52:15.0850 6856 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
10:52:15.0892 6856 KtmRm - ok
10:52:16.0225 6856 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
10:52:16.0276 6856 LanmanServer - ok
10:52:16.0687 6856 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
10:52:16.0737 6856 LanmanWorkstation - ok
10:52:16.0809 6856 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:52:16.0858 6856 lltdio - ok
10:52:17.0096 6856 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
10:52:17.0150 6856 lltdsvc - ok
10:52:17.0214 6856 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
10:52:17.0235 6856 lmhosts - ok
10:52:17.0365 6856 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:52:17.0389 6856 LSI_FC - ok
10:52:17.0416 6856 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:52:17.0423 6856 LSI_SAS - ok
10:52:17.0427 6856 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:52:17.0434 6856 LSI_SAS2 - ok
10:52:17.0810 6856 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:52:17.0831 6856 LSI_SCSI - ok
10:52:18.0032 6856 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:52:18.0073 6856 luafv - ok
10:52:18.0099 6856 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
10:52:18.0115 6856 Mcx2Svc - ok
10:52:18.0123 6856 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
10:52:18.0130 6856 megasas - ok
10:52:18.0153 6856 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
10:52:18.0163 6856 MegaSR - ok
10:52:18.0227 6856 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
10:52:18.0232 6856 MEIx64 - ok
10:52:18.0250 6856 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:52:18.0272 6856 MMCSS - ok
10:52:18.0274 6856 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:52:18.0308 6856 Modem - ok
10:52:18.0409 6856 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:52:18.0424 6856 monitor - ok
10:52:18.0662 6856 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
10:52:18.0674 6856 mouclass - ok
10:52:18.0771 6856 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:52:18.0812 6856 mouhid - ok
10:52:19.0387 6856 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:52:19.0399 6856 mountmgr - ok
10:52:19.0853 6856 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:52:19.0861 6856 MozillaMaintenance - ok
10:52:20.0467 6856 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
10:52:20.0480 6856 MpFilter - ok
10:52:20.0902 6856 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:52:20.0918 6856 mpio - ok
10:52:21.0118 6856 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:52:21.0141 6856 mpsdrv - ok
10:52:22.0563 6856 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
10:52:22.0712 6856 MpsSvc - ok
10:52:23.0146 6856 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:52:23.0195 6856 MRxDAV - ok
10:52:23.0676 6856 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:52:23.0722 6856 mrxsmb - ok
10:52:24.0477 6856 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:52:24.0488 6856 mrxsmb10 - ok
10:52:24.0752 6856 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:52:24.0761 6856 mrxsmb20 - ok
10:52:24.0802 6856 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:52:24.0809 6856 msahci - ok
10:52:25.0243 6856 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:52:25.0259 6856 msdsm - ok
10:52:25.0341 6856 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
10:52:25.0390 6856 MSDTC - ok
10:52:25.0518 6856 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:52:25.0556 6856 Msfs - ok
10:52:25.0571 6856 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:52:25.0607 6856 mshidkmdf - ok
10:52:25.0649 6856 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:52:25.0655 6856 msisadrv - ok
10:52:25.0742 6856 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
10:52:25.0792 6856 MSiSCSI - ok
10:52:25.0793 6856 msiserver - ok
10:52:25.0852 6856 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:52:25.0874 6856 MSKSSRV - ok
10:52:26.0055 6856 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:52:26.0061 6856 MsMpSvc - ok
10:52:26.0104 6856 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:52:26.0137 6856 MSPCLOCK - ok
10:52:26.0154 6856 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:52:26.0188 6856 MSPQM - ok
10:52:26.0538 6856 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:52:26.0559 6856 MsRPC - ok
10:52:26.0658 6856 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
10:52:26.0664 6856 mssmbios - ok
10:52:26.0695 6856 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:52:26.0730 6856 MSTEE - ok
10:52:26.0732 6856 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
10:52:26.0750 6856 MTConfig - ok
10:52:26.0932 6856 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:52:26.0939 6856 Mup - ok
10:52:27.0137 6856 mv91xx (38b4c95e821528fb91df16a78e04450f) C:\Windows\system32\DRIVERS\mv91xx.sys
10:52:27.0147 6856 mv91xx - ok
10:52:27.0543 6856 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
10:52:27.0584 6856 napagent - ok
10:52:27.0625 6856 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:52:27.0655 6856 NativeWifiP - ok
10:52:28.0185 6856 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
10:52:28.0200 6856 NDIS - ok
10:52:28.0218 6856 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:52:28.0240 6856 NdisCap - ok
10:52:28.0247 6856 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:52:28.0284 6856 NdisTapi - ok
10:52:28.0454 6856 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:52:28.0517 6856 Ndisuio - ok
10:52:28.0646 6856 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:52:28.0689 6856 NdisWan - ok
10:52:28.0714 6856 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:52:28.0741 6856 NDProxy - ok
10:52:28.0769 6856 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:52:28.0802 6856 NetBIOS - ok
10:52:28.0838 6856 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:52:28.0875 6856 NetBT - ok
10:52:28.0931 6856 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:52:28.0938 6856 Netlogon - ok
10:52:29.0239 6856 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
10:52:29.0262 6856 Netman - ok
10:52:29.0328 6856 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
10:52:29.0386 6856 netprofm - ok
10:52:29.0475 6856 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:52:29.0482 6856 NetTcpPortSharing - ok
10:52:29.0513 6856 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
10:52:29.0520 6856 nfrd960 - ok
10:52:29.0682 6856 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:52:29.0711 6856 NisDrv - ok
10:52:29.0912 6856 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
10:52:29.0940 6856 NisSrv - ok
10:52:30.0246 6856 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
10:52:30.0346 6856 NlaSvc - ok
10:52:30.0488 6856 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:52:30.0528 6856 Npfs - ok
10:52:30.0570 6856 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
10:52:30.0607 6856 nsi - ok
10:52:30.0617 6856 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:52:30.0654 6856 nsiproxy - ok
10:52:30.0843 6856 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:52:30.0864 6856 Ntfs - ok
10:52:30.0917 6856 ntk_dtv (10694a19236a6355741914c3737cf3a5) C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\ntk_dtv_64.sys
10:52:30.0923 6856 ntk_dtv - ok
10:52:31.0015 6856 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:52:31.0036 6856 Null - ok
10:52:32.0623 6856 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:52:32.0753 6856 nvlddmkm - ok
10:52:32.0894 6856 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:52:32.0903 6856 nvraid - ok
10:52:32.0922 6856 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:52:32.0930 6856 nvstor - ok
10:52:33.0718 6856 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
10:52:33.0778 6856 nvsvc - ok
10:52:34.0474 6856 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
10:52:34.0528 6856 nvUpdatusService - ok
10:52:34.0968 6856 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:52:34.0977 6856 nv_agp - ok
10:52:35.0041 6856 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:52:35.0057 6856 ohci1394 - ok
10:52:35.0255 6856 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:52:35.0266 6856 ose - ok
10:52:40.0305 6856 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:52:40.0512 6856 osppsvc - ok
10:52:41.0339 6856 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:52:41.0441 6856 p2pimsvc - ok
10:52:41.0523 6856 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
10:52:41.0580 6856 p2psvc - ok
10:52:41.0749 6856 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
10:52:41.0765 6856 Parport - ok
10:52:41.0869 6856 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
10:52:41.0876 6856 partmgr - ok
10:52:41.0960 6856 PcaSp50 (54c6bd3c6c102396eb01a4877df7b6e3) C:\Windows\system32\Drivers\PcaSp50.sys
10:52:41.0984 6856 PcaSp50 - ok
10:52:42.0201 6856 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
10:52:42.0247 6856 PcaSvc - ok
10:52:42.0437 6856 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:52:42.0454 6856 pci - ok
10:52:42.0495 6856 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:52:42.0504 6856 pciide - ok
10:52:43.0367 6856 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
10:52:43.0398 6856 pcmcia - ok
10:52:43.0630 6856 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:52:43.0643 6856 pcw - ok
10:52:44.0072 6856 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:52:44.0210 6856 PEAUTH - ok
10:52:49.0807 6856 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
10:52:49.0945 6856 PeerDistSvc - ok
10:52:51.0037 6856 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
10:52:51.0062 6856 PerfHost - ok
10:52:52.0198 6856 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
10:52:52.0296 6856 pla - ok
10:52:53.0934 6856 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
10:52:54.0044 6856 PlugPlay - ok
10:52:54.0150 6856 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
10:52:54.0182 6856 PNRPAutoReg - ok
10:52:55.0309 6856 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:52:55.0321 6856 PNRPsvc - ok
10:52:55.0892 6856 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
10:52:55.0902 6856 Point64 - ok
10:52:57.0979 6856 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
10:52:58.0056 6856 PolicyAgent - ok
10:52:58.0354 6856 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
10:52:58.0385 6856 Power - ok
10:52:58.0493 6856 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:52:58.0516 6856 PptpMiniport - ok
10:52:58.0724 6856 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
10:52:58.0758 6856 Processor - ok
10:52:59.0621 6856 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
10:52:59.0682 6856 ProfSvc - ok
10:52:59.0812 6856 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:52:59.0821 6856 ProtectedStorage - ok
10:53:00.0360 6856 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:53:00.0393 6856 Psched - ok
10:53:00.0552 6856 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
10:53:00.0602 6856 ql2300 - ok
10:53:03.0466 6856 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
10:53:03.0475 6856 ql40xx - ok
10:53:04.0508 6856 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
10:53:04.0551 6856 QWAVE - ok
10:53:04.0604 6856 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:53:04.0624 6856 QWAVEdrv - ok
10:53:04.0725 6856 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:53:04.0773 6856 RasAcd - ok
10:53:04.0954 6856 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:53:04.0980 6856 RasAgileVpn - ok
10:53:05.0437 6856 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
10:53:05.0483 6856 RasAuto - ok
10:53:05.0520 6856 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:53:05.0550 6856 Rasl2tp - ok
10:53:05.0586 6856 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
10:53:05.0612 6856 RasMan - ok
10:53:05.0792 6856 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:53:05.0817 6856 RasPppoe - ok
10:53:05.0829 6856 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:53:05.0851 6856 RasSstp - ok
10:53:05.0892 6856 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:53:05.0917 6856 rdbss - ok
10:53:06.0018 6856 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:53:06.0041 6856 rdpbus - ok
10:53:06.0084 6856 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:53:06.0132 6856 RDPCDD - ok
10:53:06.0510 6856 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
10:53:06.0546 6856 RDPDR - ok
10:53:06.0594 6856 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:53:06.0672 6856 RDPENCDD - ok
10:53:06.0690 6856 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:53:06.0711 6856 RDPREFMP - ok
10:53:06.0812 6856 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
10:53:06.0834 6856 RdpVideoMiniport - ok
10:53:07.0204 6856 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
10:53:07.0255 6856 RDPWD - ok
10:53:08.0207 6856 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:53:08.0217 6856 rdyboost - ok
10:53:08.0378 6856 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
10:53:08.0422 6856 RemoteAccess - ok
10:53:09.0053 6856 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
10:53:09.0076 6856 RemoteRegistry - ok
10:53:09.0110 6856 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
10:53:09.0132 6856 RpcEptMapper - ok
10:53:09.0162 6856 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
10:53:09.0170 6856 RpcLocator - ok
10:53:10.0746 6856 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
10:53:10.0771 6856 RpcSs - ok
10:53:10.0834 6856 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:53:10.0869 6856 rspndr - ok
10:53:10.0896 6856 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
10:53:10.0934 6856 s3cap - ok
10:53:11.0009 6856 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:53:11.0016 6856 SamSs - ok
10:53:11.0047 6856 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:53:11.0055 6856 sbp2port - ok
10:53:11.0472 6856 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
10:53:11.0537 6856 SCardSvr - ok
10:53:11.0639 6856 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:53:11.0672 6856 scfilter - ok
10:53:11.0930 6856 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
10:53:11.0958 6856 Schedule - ok
10:53:12.0019 6856 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
10:53:12.0040 6856 SCPolicySvc - ok
10:53:12.0070 6856 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
10:53:12.0104 6856 SDRSVC - ok
10:53:12.0147 6856 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:53:12.0169 6856 secdrv - ok
10:53:12.0197 6856 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
10:53:12.0218 6856 seclogon - ok
10:53:12.0297 6856 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
10:53:12.0319 6856 SENS - ok
10:53:12.0332 6856 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
10:53:12.0364 6856 SensrSvc - ok
10:53:12.0447 6856 Ser2pl (ef7b5ec21e7c0f6e4237424a41fa720e) C:\Windows\system32\DRIVERS\ser2pl64.sys
10:53:12.0474 6856 Ser2pl - ok
10:53:12.0484 6856 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:53:12.0495 6856 Serenum - ok
10:53:12.0522 6856 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:53:12.0530 6856 Serial - ok
10:53:12.0635 6856 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
10:53:12.0667 6856 sermouse - ok
10:53:12.0978 6856 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
10:53:13.0011 6856 SessionEnv - ok
10:53:13.0065 6856 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:53:13.0133 6856 sffdisk - ok
10:53:13.0163 6856 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:53:13.0170 6856 sffp_mmc - ok
10:53:13.0183 6856 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:53:13.0198 6856 sffp_sd - ok
10:53:13.0201 6856 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
10:53:13.0208 6856 sfloppy - ok
10:53:13.0388 6856 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
10:53:13.0434 6856 SharedAccess - ok
10:53:13.0594 6856 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
10:53:13.0618 6856 ShellHWDetection - ok
10:53:13.0646 6856 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:53:13.0653 6856 SiSRaid2 - ok
10:53:13.0776 6856 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
10:53:13.0788 6856 SiSRaid4 - ok
10:53:14.0065 6856 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
10:53:14.0086 6856 SkypeUpdate - ok
10:53:14.0413 6856 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:53:14.0451 6856 Smb - ok
10:53:14.0611 6856 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
10:53:14.0646 6856 SNMPTRAP - ok
10:53:14.0672 6856 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:53:14.0684 6856 spldr - ok
10:53:16.0925 6856 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
10:53:16.0969 6856 Spooler - ok
10:53:24.0283 6856 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
10:53:24.0420 6856 sppsvc - ok
10:53:27.0137 6856 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
10:53:27.0197 6856 sppuinotify - ok
10:53:29.0070 6856 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:53:29.0137 6856 srv - ok
10:53:29.0559 6856 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:53:29.0579 6856 srv2 - ok
10:53:29.0715 6856 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:53:29.0754 6856 srvnet - ok
10:53:30.0603 6856 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
10:53:30.0627 6856 SSDPSRV - ok
10:53:30.0920 6856 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
10:53:30.0955 6856 SstpSvc - ok
10:53:31.0089 6856 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
10:53:31.0158 6856 stexstor - ok
10:53:31.0897 6856 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
10:53:31.0927 6856 stisvc - ok
10:53:32.0066 6856 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
10:53:32.0073 6856 storflt - ok
10:53:32.0163 6856 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
10:53:32.0171 6856 storvsc - ok
10:53:32.0198 6856 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
10:53:32.0204 6856 swenum - ok
10:53:33.0406 6856 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
10:53:33.0499 6856 swprv - ok
10:53:33.0500 6856 Synth3dVsc - ok
10:53:34.0571 6856 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
10:53:34.0677 6856 SysMain - ok
10:53:34.0815 6856 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
10:53:34.0839 6856 TabletInputService - ok
10:53:34.0890 6856 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
10:53:34.0936 6856 TapiSrv - ok
10:53:34.0963 6856 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
10:53:35.0001 6856 TBS - ok
10:53:36.0204 6856 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
10:53:36.0230 6856 Tcpip - ok
10:53:36.0629 6856 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
10:53:36.0660 6856 TCPIP6 - ok
10:53:36.0751 6856 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:53:36.0794 6856 tcpipreg - ok
10:53:36.0842 6856 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:53:36.0897 6856 TDPIPE - ok
10:53:36.0933 6856 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
10:53:36.0954 6856 TDTCP - ok
10:53:37.0417 6856 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:53:37.0457 6856 tdx - ok
10:53:37.0501 6856 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
10:53:37.0514 6856 TermDD - ok
10:53:39.0407 6856 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
10:53:39.0446 6856 TermService - ok
10:53:39.0743 6856 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
10:53:39.0807 6856 Themes - ok
10:53:39.0847 6856 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:53:39.0887 6856 THREADORDER - ok
10:53:40.0338 6856 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
10:53:40.0361 6856 TrkWks - ok
10:53:42.0018 6856 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
10:53:42.0113 6856 TrustedInstaller - ok
10:53:42.0268 6856 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:53:42.0316 6856 tssecsrv - ok
10:53:42.0476 6856 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:53:42.0496 6856 TsUsbFlt - ok
10:53:42.0498 6856 tsusbhub - ok
10:53:42.0713 6856 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:53:42.0751 6856 tunnel - ok
10:53:43.0106 6856 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
10:53:43.0136 6856 uagp35 - ok
10:53:44.0286 6856 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:53:44.0342 6856 udfs - ok
10:53:44.0381 6856 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
10:53:44.0414 6856 UI0Detect - ok
10:53:44.0710 6856 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:53:44.0724 6856 uliagpkx - ok
10:53:44.0960 6856 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
10:53:44.0968 6856 umbus - ok
10:53:45.0017 6856 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
10:53:45.0041 6856 UmPass - ok
10:53:45.0868 6856 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
10:53:45.0924 6856 UmRdpService - ok
10:53:47.0816 6856 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
10:53:47.0897 6856 upnphost - ok
10:53:48.0152 6856 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
10:53:48.0218 6856 USBAAPL64 - ok
10:53:48.0721 6856 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
10:53:48.0757 6856 usbaudio - ok
10:53:49.0145 6856 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
10:53:49.0174 6856 usbccgp - ok
10:53:49.0581 6856 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:53:49.0591 6856 usbcir - ok
10:53:50.0923 6856 UsbClientService (6af12011c88c80920d0543616e107cff) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
10:53:51.0006 6856 UsbClientService ( UnsignedFile.Multi.Generic ) - warning
10:53:51.0006 6856 UsbClientService - detected UnsignedFile.Multi.Generic (1)
10:53:51.0192 6856 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
10:53:51.0253 6856 usbehci - ok
10:53:51.0986 6856 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:53:51.0997 6856 usbhub - ok
10:53:52.0179 6856 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
10:53:52.0208 6856 usbohci - ok
10:53:52.0407 6856 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
10:53:52.0446 6856 usbprint - ok
10:53:52.0679 6856 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
10:53:52.0728 6856 usbscan - ok
10:53:53.0075 6856 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:53:53.0145 6856 USBSTOR - ok
10:53:53.0265 6856 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
10:53:53.0303 6856 usbuhci - ok
10:53:53.0689 6856 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
10:53:53.0700 6856 usbvideo - ok
10:53:53.0861 6856 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
10:53:53.0964 6856 UxSms - ok
10:53:54.0168 6856 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
10:53:54.0182 6856 VaultSvc - ok
10:53:54.0401 6856 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:53:54.0414 6856 vdrvroot - ok
10:53:54.0997 6856 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
10:53:55.0042 6856 vds - ok
10:53:55.0307 6856 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:53:55.0316 6856 vga - ok
10:53:55.0450 6856 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:53:55.0495 6856 VgaSave - ok
10:53:55.0497 6856 VGPU - ok
10:53:55.0985 6856 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:53:55.0997 6856 vhdmp - ok
10:53:56.0101 6856 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:53:56.0108 6856 viaide - ok
10:53:57.0663 6856 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
10:53:57.0712 6856 vmbus - ok
10:53:57.0799 6856 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
10:53:57.0846 6856 VMBusHID - ok
10:53:58.0318 6856 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:53:58.0326 6856 volmgr - ok
10:53:59.0995 6856 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:54:00.0135 6856 volmgrx - ok
10:54:01.0736 6856 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:54:01.0785 6856 volsnap - ok
10:54:02.0091 6856 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
10:54:02.0099 6856 vsmraid - ok
10:54:04.0998 6856 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
10:54:05.0111 6856 VSS - ok
10:54:05.0760 6856 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
10:54:05.0778 6856 vwifibus - ok
10:54:06.0114 6856 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
10:54:06.0142 6856 W32Time - ok
10:54:06.0284 6856 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
10:54:06.0298 6856 WacomPen - ok
10:54:06.0458 6856 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:54:06.0528 6856 WANARP - ok
10:54:06.0553 6856 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:54:06.0574 6856 Wanarpv6 - ok
10:54:08.0558 6856 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
10:54:08.0663 6856 WatAdminSvc - ok
10:54:09.0542 6856 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
10:54:09.0608 6856 wbengine - ok
10:54:10.0379 6856 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
10:54:10.0402 6856 WbioSrvc - ok
10:54:10.0889 6856 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
10:54:10.0905 6856 wcncsvc - ok
10:54:10.0934 6856 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
10:54:10.0959 6856 WcsPlugInService - ok
10:54:11.0027 6856 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
10:54:11.0034 6856 Wd - ok
10:54:11.0237 6856 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:54:11.0254 6856 Wdf01000 - ok
10:54:11.0368 6856 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:54:11.0520 6856 WdiServiceHost - ok
10:54:11.0522 6856 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:54:11.0534 6856 WdiSystemHost - ok
10:54:11.0563 6856 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
10:54:11.0588 6856 WebClient - ok
10:54:11.0774 6856 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
10:54:11.0812 6856 Wecsvc - ok
10:54:11.0928 6856 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
10:54:11.0989 6856 wercplsupport - ok
10:54:12.0092 6856 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
10:54:12.0119 6856 WerSvc - ok
10:54:12.0600 6856 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:54:12.0629 6856 WfpLwf - ok
10:54:12.0641 6856 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:54:12.0647 6856 WIMMount - ok
10:54:12.0725 6856 WinDefend - ok
10:54:12.0729 6856 WinHttpAutoProxySvc - ok
10:54:13.0117 6856 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
10:54:13.0156 6856 Winmgmt - ok
10:54:14.0782 6856 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
10:54:14.0882 6856 WinRM - ok
10:54:16.0479 6856 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
10:54:16.0489 6856 WinUsb - ok
10:54:16.0680 6856 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
10:54:16.0850 6856 Wlansvc - ok
10:54:16.0984 6856 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
10:54:17.0013 6856 WmiAcpi - ok
10:54:17.0478 6856 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
10:54:17.0500 6856 wmiApSrv - ok
10:54:17.0559 6856 WMPNetworkSvc - ok
10:54:17.0608 6856 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
10:54:17.0643 6856 WPCSvc - ok
10:54:18.0008 6856 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
10:54:18.0018 6856 WPDBusEnum - ok
10:54:18.0089 6856 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:54:18.0121 6856 ws2ifsl - ok
10:54:18.0510 6856 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
10:54:18.0575 6856 wscsvc - ok
10:54:18.0836 6856 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
10:54:18.0898 6856 WSDPrintDevice - ok
10:54:18.0900 6856 WSearch - ok
10:54:21.0679 6856 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
10:54:21.0777 6856 wuauserv - ok
10:54:24.0389 6856 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:54:24.0465 6856 WudfPf - ok
10:54:24.0593 6856 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:54:24.0644 6856 WUDFRd - ok
10:54:24.0742 6856 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
10:54:24.0764 6856 wudfsvc - ok
10:54:25.0191 6856 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
10:54:25.0231 6856 WwanSvc - ok
10:54:25.0259 6856 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk3\DR3
10:54:25.0469 6856 \Device\Harddisk3\DR3 - ok
10:54:25.0939 6856 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk2\DR2
10:54:26.0006 6856 \Device\Harddisk2\DR2 - ok
10:54:26.0463 6856 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
10:54:26.0532 6856 \Device\Harddisk1\DR1 - ok
10:54:26.0554 6856 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:54:30.0965 6856 \Device\Harddisk0\DR0 - ok
10:54:30.0969 6856 Boot (0x1200) (5e6c5929f1a514f75e0a0bf30fa76cb8) \Device\Harddisk3\DR3\Partition0
10:54:30.0971 6856 \Device\Harddisk3\DR3\Partition0 - ok
10:54:30.0997 6856 Boot (0x1200) (c3feb4a97e17ad43f5e47b8adb0b0892) \Device\Harddisk0\DR0\Partition0
10:54:30.0998 6856 \Device\Harddisk0\DR0\Partition0 - ok
10:54:31.0035 6856 Boot (0x1200) (72fbdef0ccabbad681caabd81eb82dd9) \Device\Harddisk0\DR0\Partition1
10:54:31.0036 6856 \Device\Harddisk0\DR0\Partition1 - ok
10:54:31.0037 6856 ============================================================
10:54:31.0037 6856 Scan finished
10:54:31.0037 6856 ============================================================
10:54:31.0049 5664 Detected object count: 1
10:54:31.0049 5664 Actual detected object count: 1
10:54:37.0065 5664 C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe - copied to quarantine
10:54:37.0119 5664 UsbClientService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
11:03:51.0205 4108 ============================================================
11:03:51.0205 4108 Scan started
11:03:51.0205 4108 Mode: Manual;
11:03:51.0205 4108 ============================================================
11:03:52.0232 4108 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
11:03:52.0233 4108 1394ohci - ok
11:03:52.0645 4108 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
11:03:52.0647 4108 ACPI - ok
11:03:52.0707 4108 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
11:03:52.0707 4108 AcpiPmi - ok
11:03:52.0935 4108 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:03:52.0936 4108 AdobeARMservice - ok
11:03:53.0849 4108 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
11:03:53.0853 4108 adp94xx - ok
11:03:54.0018 4108 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
11:03:54.0021 4108 adpahci - ok
11:03:54.0155 4108 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
11:03:54.0157 4108 adpu320 - ok
11:03:54.0323 4108 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
11:03:54.0324 4108 AeLookupSvc - ok
11:03:55.0155 4108 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
11:03:55.0159 4108 AFD - ok
11:03:55.0306 4108 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
11:03:55.0307 4108 agp440 - ok
11:03:55.0595 4108 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
11:03:55.0596 4108 ALG - ok
11:03:55.0726 4108 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
11:03:55.0727 4108 aliide - ok
11:03:55.0836 4108 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
11:03:55.0837 4108 amdide - ok
11:03:55.0904 4108 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
11:03:55.0905 4108 AmdK8 - ok
11:03:55.0910 4108 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
11:03:55.0911 4108 AmdPPM - ok
11:03:56.0020 4108 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
11:03:56.0021 4108 amdsata - ok
11:03:56.0190 4108 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
11:03:56.0192 4108 amdsbs - ok
11:03:56.0369 4108 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
11:03:56.0369 4108 amdxata - ok
11:03:56.0739 4108 APC Data Service (107ab19cc1d40b9d04537f6eeaac34c9) C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
11:03:56.0740 4108 APC Data Service - ok
11:03:58.0550 4108 APC UPS Service (c7f8c8080b055b3de9a8141dfd8e308a) C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
11:03:58.0553 4108 APC UPS Service - ok
11:03:58.0835 4108 APCPBEAgent (2b3f956ac2e0ba937fff1bc407acd6c9) C:\PROGRA~2\APC\POWERC~1\agent\pbeagent.exe
11:03:58.0835 4108 APCPBEAgent - ok
11:03:59.0050 4108 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
11:03:59.0219 4108 AppID - ok
11:03:59.0365 4108 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
11:03:59.0366 4108 AppIDSvc - ok
11:03:59.0751 4108 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
11:03:59.0752 4108 Appinfo - ok
11:04:00.0339 4108 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:04:00.0339 4108 Apple Mobile Device - ok
11:04:00.0816 4108 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
11:04:00.0818 4108 AppMgmt - ok
11:04:01.0008 4108 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
11:04:01.0009 4108 arc - ok
11:04:01.0017 4108 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
11:04:01.0018 4108 arcsas - ok
11:04:01.0228 4108 asmthub3 (e1e75921e9eb025009696d4837f531fb) C:\Windows\system32\DRIVERS\asmthub3.sys
11:04:01.0228 4108 asmthub3 - ok
11:04:01.0325 4108 asmtxhci (b0cf9ab16006b61634d4f955345ca5d2) C:\Windows\system32\DRIVERS\asmtxhci.sys
11:04:01.0328 4108 asmtxhci - ok
11:04:01.0395 4108 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
11:04:01.0395 4108 AsyncMac - ok
11:04:01.0508 4108 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
11:04:01.0509 4108 atapi - ok
11:04:01.0737 4108 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
11:04:01.0740 4108 AudioEndpointBuilder - ok
11:04:01.0744 4108 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
11:04:01.0747 4108 AudioSrv - ok
11:04:02.0200 4108 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
11:04:02.0201 4108 AxInstSV - ok
11:04:03.0910 4108 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
11:04:03.0914 4108 b06bdrv - ok
11:04:04.0093 4108 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
11:04:04.0096 4108 b57nd60a - ok
11:04:04.0216 4108 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
11:04:04.0217 4108 BDESVC - ok
11:04:04.0220 4108 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
11:04:04.0221 4108 Beep - ok
11:04:06.0614 4108 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
11:04:06.0619 4108 BFE - ok
11:04:07.0873 4108 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
11:04:07.0878 4108 BITS - ok
11:04:08.0189 4108 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
11:04:08.0190 4108 blbdrive - ok
11:04:08.0416 4108 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
11:04:08.0420 4108 Bonjour Service - ok
11:04:08.0522 4108 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
11:04:08.0522 4108 bowser - ok
11:04:08.0562 4108 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:04:08.0562 4108 BrFiltLo - ok
11:04:08.0604 4108 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:04:08.0605 4108 BrFiltUp - ok
11:04:08.0859 4108 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
11:04:08.0860 4108 BridgeMP - ok
11:04:08.0948 4108 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
11:04:08.0949 4108 Browser - ok
11:04:09.0401 4108 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
11:04:09.0403 4108 Brserid - ok
11:04:09.0408 4108 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
11:04:09.0409 4108 BrSerWdm - ok
11:04:09.0441 4108 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:04:09.0441 4108 BrUsbMdm - ok
11:04:09.0444 4108 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
11:04:09.0444 4108 BrUsbSer - ok
11:04:09.0448 4108 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
11:04:09.0448 4108 BTHMODEM - ok
11:04:09.0544 4108 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
11:04:09.0545 4108 bthserv - ok
11:04:09.0716 4108 busenum (fc278504bfa3ac7e9ed92359d0ee7282) C:\Windows\system32\DRIVERS\busenum.sys
11:04:09.0717 4108 busenum - ok
11:04:09.0753 4108 catchme - ok
11:04:09.0827 4108 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
11:04:09.0828 4108 cdfs - ok
11:04:10.0248 4108 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
11:04:10.0250 4108 cdrom - ok
11:04:10.0563 4108 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
11:04:10.0564 4108 CertPropSvc - ok
11:04:10.0846 4108 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
11:04:10.0847 4108 circlass - ok
11:04:11.0403 4108 CLDTVHNService (6c99de57c87d6f3ee85998a7e49f7bf9) C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\CLDTVHNService.exe
11:04:11.0404 4108 CLDTVHNService - ok
11:04:11.0922 4108 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
11:04:11.0924 4108 CLFS - ok
11:04:12.0070 4108 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:04:12.0071 4108 clr_optimization_v2.0.50727_32 - ok
11:04:12.0316 4108 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:04:12.0317 4108 clr_optimization_v2.0.50727_64 - ok
11:04:12.0541 4108 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:04:12.0542 4108 clr_optimization_v4.0.30319_32 - ok
11:04:12.0696 4108 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:04:12.0698 4108 clr_optimization_v4.0.30319_64 - ok
11:04:12.0810 4108 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
11:04:12.0811 4108 CmBatt - ok
11:04:12.0911 4108 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
11:04:12.0911 4108 cmdide - ok
11:04:13.0197 4108 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
11:04:13.0198 4108 CNG - ok
11:04:13.0289 4108 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
11:04:13.0289 4108 Compbatt - ok
11:04:13.0490 4108 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
11:04:13.0491 4108 CompositeBus - ok
11:04:13.0494 4108 COMSysApp - ok
11:04:13.0561 4108 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
11:04:13.0562 4108 crcdisk - ok
11:04:13.0726 4108 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
11:04:13.0727 4108 CryptSvc - ok
11:04:13.0877 4108 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
11:04:13.0879 4108 CSC - ok
11:04:14.0224 4108 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
11:04:14.0231 4108 CscService - ok
11:04:14.0774 4108 dc3d (1ca90212a99db6975c344826d11055c9) C:\Windows\system32\DRIVERS\dc3d.sys
11:04:14.0774 4108 dc3d - ok
11:04:17.0184 4108 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
11:04:17.0190 4108 DcomLaunch - ok
11:04:18.0838 4108 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
11:04:18.0840 4108 defragsvc - ok
11:04:19.0179 4108 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
11:04:19.0180 4108 DfsC - ok
11:04:19.0871 4108 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
11:04:19.0874 4108 Dhcp - ok
11:04:19.0910 4108 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
11:04:19.0910 4108 discache - ok
11:04:19.0983 4108 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
11:04:19.0984 4108 Disk - ok
11:04:20.0119 4108 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
11:04:20.0121 4108 Dnscache - ok
11:04:20.0307 4108 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
11:04:20.0309 4108 dot3svc - ok
11:04:20.0438 4108 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
11:04:20.0440 4108 DPS - ok
11:04:20.0512 4108 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
11:04:20.0513 4108 drmkaud - ok
11:04:21.0243 4108 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
11:04:21.0250 4108 DXGKrnl - ok
11:04:22.0485 4108 e1cexpress (6bafd9819d9fec2edbaebc8493c711a4) C:\Windows\system32\DRIVERS\e1c62x64.sys
11:04:22.0488 4108 e1cexpress - ok
11:04:22.0837 4108 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
11:04:22.0838 4108 EapHost - ok
11:04:32.0788 4108 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
11:04:32.0807 4108 ebdrv - ok
11:04:34.0880 4108 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
11:04:34.0881 4108 EFS - ok
11:04:36.0875 4108 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
11:04:36.0918 4108 ehRecvr - ok
11:04:37.0155 4108 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
11:04:37.0156 4108 ehSched - ok
11:04:38.0133 4108 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
11:04:38.0137 4108 elxstor - ok
11:04:38.0318 4108 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
11:04:38.0319 4108 ErrDev - ok
11:04:38.0561 4108 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
11:04:38.0564 4108 EventSystem - ok
11:04:38.0865 4108 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
11:04:38.0866 4108 exfat - ok
11:04:39.0354 4108 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
11:04:39.0356 4108 fastfat - ok
11:04:40.0380 4108 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
11:04:40.0386 4108 Fax - ok
11:04:40.0476 4108 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
11:04:40.0477 4108 fdc - ok
11:04:40.0656 4108 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
11:04:40.0657 4108 fdPHost - ok
11:04:40.0790 4108 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
11:04:40.0791 4108 FDResPub - ok
11:04:41.0074 4108 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
11:04:41.0075 4108 FileInfo - ok
11:04:41.0151 4108 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
11:04:41.0152 4108 Filetrace - ok
11:04:41.0181 4108 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
11:04:41.0181 4108 flpydisk - ok
11:04:41.0914 4108 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
11:04:41.0917 4108 FltMgr - ok
11:04:42.0352 4108 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
11:04:42.0359 4108 FontCache - ok
11:04:42.0751 4108 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:04:42.0751 4108 FontCache3.0.0.0 - ok
11:04:42.0965 4108 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
11:04:42.0966 4108 FsDepends - ok
11:04:43.0094 4108 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
11:04:43.0095 4108 Fs_Rec - ok
11:04:43.0240 4108 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
11:04:43.0242 4108 fvevol - ok
11:04:43.0443 4108 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
11:04:43.0444 4108 gagp30kx - ok
11:04:43.0706 4108 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:04:43.0706 4108 GEARAspiWDM - ok
11:04:45.0039 4108 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
11:04:45.0045 4108 gpsvc - ok
11:04:45.0265 4108 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
11:04:45.0266 4108 hcw85cir - ok
11:04:45.0755 4108 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
11:04:45.0758 4108 HdAudAddService - ok
11:04:45.0855 4108 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
11:04:45.0856 4108 HDAudBus - ok
11:04:45.0923 4108 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
11:04:45.0923 4108 HidBatt - ok
11:04:46.0004 4108 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
11:04:46.0005 4108 HidBth - ok
11:04:46.0175 4108 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
11:04:46.0175 4108 HidIr - ok
11:04:46.0340 4108 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
11:04:46.0341 4108 hidserv - ok
11:04:46.0528 4108 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
11:04:46.0529 4108 HidUsb - ok
11:04:46.0690 4108 hitmanpro36 (44f92c1f913e582bef9cac66443c6230) C:\Windows\system32\drivers\hitmanpro36.sys
11:04:46.0690 4108 hitmanpro36 - ok
11:04:47.0207 4108 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
11:04:47.0208 4108 hkmsvc - ok
11:04:47.0420 4108 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
11:04:47.0423 4108 HomeGroupListener - ok
11:04:47.0506 4108 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
11:04:47.0509 4108 HomeGroupProvider - ok
11:04:47.0575 4108 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
11:04:47.0575 4108 HpSAMD - ok
11:04:49.0944 4108 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
11:04:49.0950 4108 HTTP - ok
11:04:50.0350 4108 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
11:04:50.0350 4108 hwpolicy - ok
11:04:50.0826 4108 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
11:04:50.0827 4108 i8042prt - ok
11:04:52.0170 4108 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
11:04:52.0174 4108 iaStorV - ok
11:04:54.0631 4108 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:04:54.0638 4108 idsvc - ok
11:04:54.0686 4108 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
11:04:54.0687 4108 iirsp - ok
11:04:54.0943 4108 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
11:04:54.0947 4108 IKEEXT - ok
11:05:00.0625 4108 IntcAzAudAddService (dab7318ccfa8081200d5b7b486793f74) C:\Windows\system32\drivers\RTKVHD64.sys
11:05:00.0635 4108 IntcAzAudAddService - ok
11:05:01.0138 4108 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
11:05:01.0138 4108 intelide - ok
11:05:01.0387 4108 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
11:05:01.0388 4108 intelppm - ok
11:05:01.0512 4108 Intel® PROSet Monitoring Service (068ec06f3b6dd7b81b365d8fd2ce27e6) C:\Windows\system32\IProsetMonitor.exe
11:05:01.0513 4108 Intel® PROSet Monitoring Service - ok
11:05:01.0761 4108 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
11:05:01.0762 4108 IPBusEnum - ok
11:05:01.0944 4108 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:05:01.0945 4108 IpFilterDriver - ok
11:05:02.0112 4108 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
11:05:02.0114 4108 iphlpsvc - ok
11:05:02.0326 4108 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
11:05:02.0326 4108 IPMIDRV - ok
11:05:02.0369 4108 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
11:05:02.0370 4108 IPNAT - ok
11:05:02.0994 4108 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
11:05:03.0001 4108 iPod Service - ok
11:05:03.0059 4108 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
11:05:03.0060 4108 IRENUM - ok
11:05:03.0163 4108 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
11:05:03.0163 4108 isapnp - ok
11:05:04.0071 4108 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
11:05:04.0073 4108 iScsiPrt - ok
11:05:04.0242 4108 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
11:05:04.0242 4108 kbdclass - ok
11:05:04.0342 4108 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
11:05:04.0343 4108 kbdhid - ok
11:05:04.0382 4108 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:05:04.0383 4108 KeyIso - ok
11:05:04.0456 4108 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
11:05:04.0457 4108 KSecDD - ok
11:05:04.0557 4108 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
11:05:04.0558 4108 KSecPkg - ok
11:05:04.0682 4108 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
11:05:04.0683 4108 ksthunk - ok
11:05:05.0685 4108 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
11:05:05.0689 4108 KtmRm - ok
11:05:05.0894 4108 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
11:05:05.0897 4108 LanmanServer - ok
11:05:05.0961 4108 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
11:05:05.0964 4108 LanmanWorkstation - ok
11:05:06.0179 4108 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
11:05:06.0180 4108 lltdio - ok
11:05:07.0059 4108 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
11:05:07.0060 4108 lltdsvc - ok
11:05:07.0083 4108 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
11:05:07.0084 4108 lmhosts - ok
11:05:07.0122 4108 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
11:05:07.0122 4108 LSI_FC - ok
11:05:07.0160 4108 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
11:05:07.0160 4108 LSI_SAS - ok
11:05:07.0179 4108 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:05:07.0179 4108 LSI_SAS2 - ok
11:05:07.0313 4108 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:05:07.0314 4108 LSI_SCSI - ok
11:05:07.0652 4108 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
11:05:07.0652 4108 luafv - ok
11:05:07.0944 4108 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
11:05:07.0946 4108 Mcx2Svc - ok
11:05:07.0983 4108 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
11:05:07.0984 4108 megasas - ok
11:05:08.0039 4108 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
11:05:08.0041 4108 MegaSR - ok
11:05:08.0330 4108 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
11:05:08.0331 4108 MEIx64 - ok
11:05:08.0688 4108 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
11:05:08.0689 4108 MMCSS - ok
11:05:08.0758 4108 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
11:05:08.0758 4108 Modem - ok
11:05:08.0807 4108 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
11:05:08.0807 4108 monitor - ok
11:05:08.0969 4108 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
11:05:08.0970 4108 mouclass - ok
11:05:08.0993 4108 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
11:05:08.0993 4108 mouhid - ok
11:05:09.0131 4108 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
11:05:09.0132 4108 mountmgr - ok
11:05:09.0566 4108 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:05:09.0567 4108 MozillaMaintenance - ok
11:05:10.0180 4108 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
11:05:10.0181 4108 MpFilter - ok
11:05:10.0591 4108 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
11:05:10.0592 4108 mpio - ok
11:05:10.0648 4108 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
11:05:10.0649 4108 mpsdrv - ok
11:05:12.0702 4108 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
11:05:12.0706 4108 MpsSvc - ok
11:05:13.0069 4108 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
11:05:13.0070 4108 MRxDAV - ok
11:05:13.0263 4108 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:05:13.0264 4108 mrxsmb - ok
11:05:13.0448 4108 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:05:13.0449 4108 mrxsmb10 - ok
11:05:13.0676 4108 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:05:13.0677 4108 mrxsmb20 - ok
11:05:13.0807 4108 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
11:05:13.0807 4108 msahci - ok
11:05:14.0177 4108 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
11:05:14.0178 4108 msdsm - ok
11:05:14.0333 4108 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
11:05:14.0335 4108 MSDTC - ok
11:05:14.0434 4108 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
11:05:14.0434 4108 Msfs - ok
11:05:14.0456 4108 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
11:05:14.0457 4108 mshidkmdf - ok
11:05:14.0487 4108 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
11:05:14.0487 4108 msisadrv - ok
11:05:14.0556 4108 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
11:05:14.0557 4108 MSiSCSI - ok
11:05:14.0559 4108 msiserver - ok
11:05:14.0618 4108 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
11:05:14.0618 4108 MSKSSRV - ok
11:05:14.0845 4108 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:05:14.0845 4108 MsMpSvc - ok
11:05:14.0912 4108 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
11:05:14.0912 4108 MSPCLOCK - ok
11:05:14.0926 4108 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
11:05:14.0926 4108 MSPQM - ok
11:05:15.0806 4108 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
11:05:15.0808 4108 MsRPC - ok
11:05:15.0897 4108 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
11:05:15.0898 4108 mssmbios - ok
11:05:15.0941 4108 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
11:05:15.0941 4108 MSTEE - ok
11:05:16.0007 4108 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
11:05:16.0008 4108 MTConfig - ok
11:05:16.0142 4108 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
11:05:16.0142 4108 Mup - ok
11:05:17.0225 4108 mv91xx (38b4c95e821528fb91df16a78e04450f) C:\Windows\system32\DRIVERS\mv91xx.sys
11:05:17.0227 4108 mv91xx - ok
11:05:18.0377 4108 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
11:05:18.0379 4108 napagent - ok
11:05:18.0664 4108 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
11:05:18.0666 4108 NativeWifiP - ok
11:05:21.0636 4108 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
11:05:21.0643 4108 NDIS - ok
11:05:21.0746 4108 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
11:05:21.0747 4108 NdisCap - ok
11:05:21.0933 4108 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
11:05:21.0934 4108 NdisTapi - ok
11:05:22.0095 4108 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
11:05:22.0096 4108 Ndisuio - ok
11:05:22.0592 4108 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
11:05:22.0593 4108 NdisWan - ok
11:05:22.0866 4108 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
11:05:22.0866 4108 NDProxy - ok
11:05:23.0052 4108 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
11:05:23.0053 4108 NetBIOS - ok
11:05:23.0387 4108 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
11:05:23.0388 4108 NetBT - ok
11:05:23.0484 4108 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:05:23.0485 4108 Netlogon - ok
11:05:24.0481 4108 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
11:05:24.0483 4108 Netman - ok
11:05:25.0898 4108 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
11:05:25.0902 4108 netprofm - ok
11:05:26.0031 4108 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:05:26.0032 4108 NetTcpPortSharing - ok
11:05:26.0362 4108 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
11:05:26.0363 4108 nfrd960 - ok
11:05:26.0760 4108 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:05:26.0761 4108 NisDrv - ok
11:05:28.0195 4108 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
11:05:28.0223 4108 NisSrv - ok
11:05:30.0342 4108 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
11:05:30.0345 4108 NlaSvc - ok
11:05:30.0608 4108 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
11:05:30.0608 4108 Npfs - ok
11:05:30.0840 4108 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
11:05:30.0841 4108 nsi - ok
11:05:31.0033 4108 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
11:05:31.0034 4108 nsiproxy - ok
11:05:35.0636 4108 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
11:05:35.0649 4108 Ntfs - ok
11:05:35.0995 4108 ntk_dtv (10694a19236a6355741914c3737cf3a5) C:\Program Files (x86)\DirecTV\DirecTV\Kernel\DMP\ntk_dtv_64.sys
11:05:35.0996 4108 ntk_dtv - ok
11:05:36.0496 4108 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
11:05:36.0496 4108 Null - ok
11:06:03.0998 4108 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:06:04.0044 4108 nvlddmkm - ok
11:06:04.0842 4108 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
11:06:04.0843 4108 nvraid - ok
11:06:05.0193 4108 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
11:06:05.0195 4108 nvstor - ok
11:06:05.0736 4108 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
11:06:05.0744 4108 nvsvc - ok
11:06:06.0814 4108 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
11:06:06.0825 4108 nvUpdatusService - ok
11:06:07.0270 4108 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
11:06:07.0272 4108 nv_agp - ok
11:06:07.0450 4108 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
11:06:07.0451 4108 ohci1394 - ok
11:06:07.0766 4108 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:06:07.0767 4108 ose - ok
11:06:09.0826 4108 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:06:09.0844 4108 osppsvc - ok
11:06:09.0981 4108 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
11:06:09.0983 4108 p2pimsvc - ok
11:06:10.0028 4108 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
11:06:10.0031 4108 p2psvc - ok
11:06:10.0235 4108 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
11:06:10.0236 4108 Parport - ok
11:06:10.0290 4108 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
11:06:10.0290 4108 partmgr - ok
11:06:10.0464 4108 PcaSp50 (54c6bd3c6c102396eb01a4877df7b6e3) C:\Windows\system32\Drivers\PcaSp50.sys
11:06:10.0465 4108 PcaSp50 - ok
11:06:10.0492 4108 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
11:06:10.0495 4108 PcaSvc - ok
11:06:10.0542 4108 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
11:06:10.0542 4108 pci - ok
11:06:10.0586 4108 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
11:06:10.0587 4108 pciide - ok
11:06:10.0805 4108 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
11:06:10.0806 4108 pcmcia - ok
11:06:10.0816 4108 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
11:06:10.0817 4108 pcw - ok
11:06:11.0228 4108 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
11:06:11.0233 4108 PEAUTH - ok
11:06:11.0380 4108 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
11:06:11.0391 4108 PeerDistSvc - ok
11:06:12.0699 4108 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
11:06:12.0700 4108 PerfHost - ok
11:06:17.0849 4108 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
11:06:17.0861 4108 pla - ok
11:06:18.0367 4108 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
11:06:18.0371 4108 PlugPlay - ok
11:06:18.0385 4108 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
11:06:18.0387 4108 PNRPAutoReg - ok
11:06:18.0939 4108 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
11:06:18.0943 4108 PNRPsvc - ok
11:06:19.0150 4108 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\Windows\system32\DRIVERS\point64.sys
11:06:19.0150 4108 Point64 - ok
11:06:19.0881 4108 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
11:06:19.0885 4108 PolicyAgent - ok
11:06:20.0219 4108 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
11:06:20.0220 4108 Power - ok
11:06:20.0520 4108 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
11:06:20.0522 4108 PptpMiniport - ok
11:06:20.0543 4108 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
11:06:20.0544 4108 Processor - ok
11:06:20.0965 4108 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
11:06:20.0967 4108 ProfSvc - ok
11:06:21.0031 4108 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:06:21.0032 4108 ProtectedStorage - ok
11:06:21.0321 4108 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
11:06:21.0322 4108 Psched - ok
11:06:21.0419 4108 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
11:06:21.0424 4108 ql2300 - ok
11:06:22.0070 4108 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
11:06:22.0071 4108 ql40xx - ok
11:06:22.0125 4108 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
11:06:22.0129 4108 QWAVE - ok
11:06:22.0134 4108 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
11:06:22.0135 4108 QWAVEdrv - ok
11:06:22.0139 4108 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
11:06:22.0140 4108 RasAcd - ok
11:06:22.0532 4108 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:06:22.0532 4108 RasAgileVpn - ok
11:06:22.0739 4108 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
11:06:22.0741 4108 RasAuto - ok
11:06:22.0965 4108 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:06:22.0967 4108 Rasl2tp - ok
11:06:23.0702 4108 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
11:06:23.0706 4108 RasMan - ok
11:06:23.0838 4108 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
11:06:23.0839 4108 RasPppoe - ok
11:06:24.0009 4108 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
11:06:24.0010 4108 RasSstp - ok
11:06:24.0053 4108 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
11:06:24.0055 4108 rdbss - ok
11:06:24.0100 4108 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
11:06:24.0100 4108 rdpbus - ok
11:06:24.0124 4108 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:06:24.0124 4108 RDPCDD - ok
11:06:24.0538 4108 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
11:06:24.0540 4108 RDPDR - ok
11:06:24.0550 4108 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
11:06:24.0550 4108 RDPENCDD - ok
11:06:24.0562 4108 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
11:06:24.0562 4108 RDPREFMP - ok
11:06:24.0624 4108 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
11:06:24.0625 4108 RdpVideoMiniport - ok
11:06:25.0075 4108 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
11:06:25.0076 4108 RDPWD - ok
11:06:25.0153 4108 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
11:06:25.0155 4108 rdyboost - ok
11:06:25.0326 4108 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
11:06:25.0328 4108 RemoteAccess - ok
11:06:25.0660 4108 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
11:06:25.0663 4108 RemoteRegistry - ok
11:06:25.0717 4108 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
11:06:25.0719 4108 RpcEptMapper - ok
11:06:25.0780 4108 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
11:06:25.0781 4108 RpcLocator - ok
11:06:25.0867 4108 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
11:06:25.0873 4108 RpcSs - ok
11:06:25.0954 4108 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
11:06:25.0955 4108 rspndr - ok
11:06:26.0016 4108 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
11:06:26.0016 4108 s3cap - ok
11:06:26.0045 4108 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:06:26.0047 4108 SamSs - ok
11:06:26.0125 4108 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
11:06:26.0126 4108 sbp2port - ok
11:06:26.0310 4108 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
11:06:26.0313 4108 SCardSvr - ok
11:06:26.0530 4108 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
11:06:26.0531 4108 scfilter - ok
11:06:26.0701 4108 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
11:06:26.0711 4108 Schedule - ok
11:06:26.0827 4108 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
11:06:26.0828 4108 SCPolicySvc - ok
11:06:26.0889 4108 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
11:06:26.0892 4108 SDRSVC - ok
11:06:26.0954 4108 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
11:06:26.0955 4108 secdrv - ok
11:06:26.0981 4108 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
11:06:26.0982 4108 seclogon - ok
11:06:26.0998 4108 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
11:06:27.0000 4108 SENS - ok
11:06:27.0026 4108 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
11:06:27.0028 4108 SensrSvc - ok
11:06:27.0121 4108 Ser2pl (ef7b5ec21e7c0f6e4237424a41fa720e) C:\Windows\system32\DRIVERS\ser2pl64.sys
11:06:27.0122 4108 Ser2pl - ok
11:06:27.0159 4108 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
11:06:27.0159 4108 Serenum - ok
11:06:27.0257 4108 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
11:06:27.0259 4108 Serial - ok
11:06:27.0311 4108 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
11:06:27.0312 4108 sermouse - ok
11:06:27.0714 4108 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
11:06:27.0717 4108 SessionEnv - ok
11:06:27.0777 4108 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
11:06:27.0778 4108 sffdisk - ok
11:06:27.0815 4108 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
11:06:27.0815 4108 sffp_mmc - ok
11:06:27.0852 4108 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
11:06:27.0853 4108 sffp_sd - ok
11:06:27.0895 4108 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
11:06:27.0896 4108 sfloppy - ok
11:06:28.0239 4108 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
11:06:28.0243 4108 SharedAccess - ok
11:06:28.0343 4108 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
11:06:28.0347 4108 ShellHWDetection - ok
11:06:28.0394 4108 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:06:28.0395 4108 SiSRaid2 - ok
11:06:28.0528 4108 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
11:06:28.0529 4108 SiSRaid4 - ok
11:06:28.0870 4108 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
11:06:28.0872 4108 SkypeUpdate - ok
11:06:28.0932 4108 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
11:06:28.0933 4108 Smb - ok
11:06:28.0974 4108 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
11:06:28.0976 4108 SNMPTRAP - ok
11:06:28.0986 4108 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
11:06:28.0987 4108 spldr - ok
11:06:29.0069 4108 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
11:06:29.0075 4108 Spooler - ok
11:06:32.0365 4108 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
11:06:32.0387 4108 sppsvc - ok
11:06:32.0701 4108 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
11:06:32.0702 4108 sppuinotify - ok
11:06:32.0837 4108 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
11:06:32.0841 4108 srv - ok
11:06:32.0879 4108 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
11:06:32.0883 4108 srv2 - ok
11:06:32.0906 4108 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
11:06:32.0907 4108 srvnet - ok
11:06:32.0944 4108 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
11:06:32.0946 4108 SSDPSRV - ok
11:06:33.0102 4108 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
11:06:33.0105 4108 SstpSvc - ok
11:06:33.0182 4108 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
11:06:33.0183 4108 stexstor - ok
11:06:33.0249 4108 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
11:06:33.0254 4108 stisvc - ok
11:06:33.0277 4108 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
11:06:33.0277 4108 storflt - ok
11:06:33.0385 4108 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
11:06:33.0386 4108 storvsc - ok
11:06:33.0437 4108 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
11:06:33.0438 4108 swenum - ok
11:06:33.0486 4108 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
11:06:33.0492 4108 swprv - ok
11:06:33.0496 4108 Synth3dVsc - ok
11:06:33.0701 4108 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
11:06:33.0715 4108 SysMain - ok
11:06:33.0818 4108 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
11:06:33.0821 4108 TabletInputService - ok
11:06:33.0869 4108 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
11:06:33.0871 4108 TapiSrv - ok
11:06:33.0895 4108 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
11:06:33.0897 4108 TBS - ok
11:06:34.0125 4108 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
11:06:34.0134 4108 Tcpip - ok
11:06:34.0228 4108 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
11:06:34.0235 4108 TCPIP6 - ok
11:06:34.0338 4108 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
11:06:34.0339 4108 tcpipreg - ok
11:06:34.0375 4108 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
11:06:34.0376 4108 TDPIPE - ok
11:06:34.0467 4108 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
11:06:34.0467 4108 TDTCP - ok
11:06:34.0807 4108 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
11:06:34.0808 4108 tdx - ok
11:06:34.0843 4108 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
11:06:34.0844 4108 TermDD - ok
11:06:35.0927 4108 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
11:06:35.0934 4108 TermService - ok
11:06:35.0957 4108 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
11:06:35.0960 4108 Themes - ok
11:06:36.0013 4108 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
11:06:36.0014 4108 THREADORDER - ok
11:06:36.0032 4108 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
11:06:36.0035 4108 TrkWks - ok
11:06:36.0093 4108 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
11:06:36.0094 4108 TrustedInstaller - ok
11:06:36.0174 4108 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:06:36.0175 4108 tssecsrv - ok
11:06:36.0345 4108 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
11:06:36.0346 4108 TsUsbFlt - ok
11:06:36.0348 4108 tsusbhub - ok
11:06:36.0713 4108 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
11:06:36.0715 4108 tunnel - ok
11:06:36.0862 4108 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
11:06:36.0862 4108 uagp35 - ok
11:06:37.0682 4108 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
11:06:37.0685 4108 udfs - ok
11:06:37.0777 4108 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
11:06:37.0779 4108 UI0Detect - ok
11:06:38.0107 4108 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
11:06:38.0108 4108 uliagpkx - ok
11:06:38.0255 4108 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
11:06:38.0256 4108 umbus - ok
11:06:38.0293 4108 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
11:06:38.0294 4108 UmPass - ok
11:06:38.0971 4108 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
11:06:38.0975 4108 UmRdpService - ok
11:06:39.0013 4108 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
11:06:39.0016 4108 upnphost - ok
11:06:39.0150 4108 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
11:06:39.0150 4108 USBAAPL64 - ok
11:06:39.0400 4108 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
11:06:39.0401 4108 usbaudio - ok
11:06:39.0685 4108 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
11:06:39.0687 4108 usbccgp - ok
11:06:39.0972 4108 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
11:06:39.0973 4108 usbcir - ok
11:06:40.0069 4108 UsbClientService (6af12011c88c80920d0543616e107cff) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
11:06:40.0071 4108 UsbClientService - ok
11:06:40.0240 4108 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
11:06:40.0241 4108 usbehci - ok
11:06:41.0455 4108 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
11:06:41.0458 4108 usbhub - ok
11:06:41.0616 4108 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
11:06:41.0617 4108 usbohci - ok
11:06:41.0671 4108 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
11:06:41.0672 4108 usbprint - ok
11:06:41.0734 4108 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
11:06:41.0734 4108 usbscan - ok
11:06:41.0819 4108 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:06:41.0820 4108 USBSTOR - ok
11:06:41.0929 4108 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
11:06:41.0929 4108 usbuhci - ok
11:06:42.0323 4108 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
11:06:42.0325 4108 usbvideo - ok
11:06:42.0393 4108 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
11:06:42.0395 4108 UxSms - ok
11:06:42.0448 4108 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:06:42.0449 4108 VaultSvc - ok
11:06:42.0549 4108 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
11:06:42.0550 4108 vdrvroot - ok
11:06:44.0207 4108 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
11:06:44.0213 4108 vds - ok
11:06:44.0289 4108 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
11:06:44.0290 4108 vga - ok
11:06:44.0294 4108 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
11:06:44.0295 4108 VgaSave - ok
11:06:44.0298 4108 VGPU - ok
11:06:44.0854 4108 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
11:06:44.0856 4108 vhdmp - ok
11:06:44.0927 4108 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
11:06:44.0927 4108 viaide - ok
11:06:44.0967 4108 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
11:06:44.0969 4108 vmbus - ok
11:06:45.0065 4108 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
11:06:45.0066 4108 VMBusHID - ok
11:06:45.0381 4108 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
11:06:45.0382 4108 volmgr - ok
11:06:45.0523 4108 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
11:06:45.0526 4108 volmgrx - ok
11:06:45.0576 4108 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
11:06:45.0579 4108 volsnap - ok
11:06:45.0658 4108 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
11:06:45.0659 4108 vsmraid - ok
11:06:47.0595 4108 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
11:06:47.0608 4108 VSS - ok
11:06:47.0809 4108 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
11:06:47.0809 4108 vwifibus - ok
11:06:47.0873 4108 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
11:06:47.0878 4108 W32Time - ok
11:06:47.0889 4108 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
11:06:47.0890 4108 WacomPen - ok
11:06:47.0989 4108 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:06:47.0990 4108 WANARP - ok
11:06:47.0994 4108 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:06:47.0995 4108 Wanarpv6 - ok
11:06:51.0020 4108 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
11:06:51.0029 4108 WatAdminSvc - ok
11:06:52.0872 4108 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
11:06:52.0885 4108 wbengine - ok
11:06:53.0273 4108 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
11:06:53.0276 4108 WbioSrvc - ok
11:06:53.0334 4108 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
11:06:53.0338 4108 wcncsvc - ok
11:06:53.0390 4108 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
11:06:53.0392 4108 WcsPlugInService - ok
11:06:53.0513 4108 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
11:06:53.0513 4108 Wd - ok
11:06:53.0569 4108 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
11:06:53.0575 4108 Wdf01000 - ok
11:06:53.0590 4108 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
11:06:53.0593 4108 WdiServiceHost - ok
11:06:53.0596 4108 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
11:06:53.0599 4108 WdiSystemHost - ok
11:06:53.0659 4108 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
11:06:53.0663 4108 WebClient - ok
11:06:54.0075 4108 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
11:06:54.0078 4108 Wecsvc - ok
11:06:54.0146 4108 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
11:06:54.0148 4108 wercplsupport - ok
11:06:54.0176 4108 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
11:06:54.0178 4108 WerSvc - ok
11:06:54.0216 4108 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
11:06:54.0217 4108 WfpLwf - ok
11:06:54.0265 4108 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
11:06:54.0265 4108 WIMMount - ok
11:06:54.0329 4108 WinDefend - ok
11:06:54.0335 4108 WinHttpAutoProxySvc - ok
11:06:54.0397 4108 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
11:06:54.0400 4108 Winmgmt - ok
11:06:57.0698 4108 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
11:06:57.0711 4108 WinRM - ok
11:06:58.0091 4108 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
11:06:58.0091 4108 WinUsb - ok
11:06:59.0327 4108 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
11:06:59.0336 4108 Wlansvc - ok
11:06:59.0405 4108 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
11:06:59.0405 4108 WmiAcpi - ok
11:06:59.0994 4108 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
11:06:59.0995 4108 wmiApSrv - ok
11:07:00.0138 4108 WMPNetworkSvc - ok
11:07:00.0167 4108 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
11:07:00.0169 4108 WPCSvc - ok
11:07:00.0210 4108 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
11:07:00.0213 4108 WPDBusEnum - ok
11:07:00.0300 4108 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
11:07:00.0301 4108 ws2ifsl - ok
11:07:00.0326 4108 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
11:07:00.0329 4108 wscsvc - ok
11:07:00.0388 4108 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
11:07:00.0388 4108 WSDPrintDevice - ok
11:07:00.0390 4108 WSearch - ok
11:07:02.0122 4108 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
11:07:02.0142 4108 wuauserv - ok
11:07:02.0706 4108 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
11:07:02.0707 4108 WudfPf - ok
11:07:03.0479 4108 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:07:03.0479 4108 WUDFRd - ok
11:07:03.0540 4108 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
11:07:03.0542 4108 wudfsvc - ok
11:07:04.0024 4108 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
11:07:04.0027 4108 WwanSvc - ok
11:07:04.0036 4108 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk3\DR3
11:07:04.0163 4108 \Device\Harddisk3\DR3 - ok
11:07:04.0632 4108 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk2\DR2
11:07:04.0634 4108 \Device\Harddisk2\DR2 - ok
11:07:05.0092 4108 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
11:07:05.0095 4108 \Device\Harddisk1\DR1 - ok
11:07:05.0112 4108 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
11:07:05.0419 4108 \Device\Harddisk0\DR0 - ok
11:07:05.0424 4108 Boot (0x1200) (5e6c5929f1a514f75e0a0bf30fa76cb8) \Device\Harddisk3\DR3\Partition0
11:07:05.0426 4108 \Device\Harddisk3\DR3\Partition0 - ok
11:07:05.0428 4108 Boot (0x1200) (c3feb4a97e17ad43f5e47b8adb0b0892) \Device\Harddisk0\DR0\Partition0
11:07:05.0430 4108 \Device\Harddisk0\DR0\Partition0 - ok
11:07:05.0448 4108 Boot (0x1200) (72fbdef0ccabbad681caabd81eb82dd9) \Device\Harddisk0\DR0\Partition1
11:07:05.0450 4108 \Device\Harddisk0\DR0\Partition1 - ok
11:07:05.0450 4108 ============================================================
11:07:05.0450 4108 Scan finished
11:07:05.0450 4108 ============================================================
11:07:05.0461 1152 Detected object count: 0
11:07:05.0461 1152 Actual detected object count: 0


aswMBR
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-26 11:08:07
-----------------------------
11:08:07.007 OS Version: Windows x64 6.1.7601 Service Pack 1
11:08:07.007 Number of processors: 4 586 0x2A07
11:08:07.008 ComputerName: SEKIWAKE UserName: jc
11:08:08.041 Initialize success
11:08:40.119 AVAST engine defs: 12072601
11:08:44.942 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP7T0L0-9
11:08:44.944 Disk 0 Vendor: WDC_WD740ADFD-00NLR5 21.07QR5 Size: 70910MB BusType: 11
11:08:44.946 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP6T0L0-8
11:08:44.948 Disk 1 Vendor: WDC_WD10EADS-00L5B1 01.01A01 Size: 953869MB BusType: 11
11:08:44.950 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP4T0L0-6
11:08:44.952 Disk 2 Vendor: WDC_WD10EADS-00L5B1 01.01A01 Size: 953869MB BusType: 11
11:08:44.954 Disk 3 \Device\Harddisk3\DR3 -> \Device\Ide\IdeDeviceP2T0L0-4
11:08:44.957 Disk 3 Vendor: SAMSUNG_HD501LJ CR100-11 Size: 476940MB BusType: 11
11:08:44.970 Disk 0 MBR read successfully
11:08:44.973 Disk 0 MBR scan
11:08:44.977 Disk 0 Windows 7 default MBR code
11:08:44.999 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
11:08:45.025 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 70808 MB offset 206848
11:08:45.108 Disk 0 scanning C:\Windows\system32\drivers
11:09:11.300 Service scanning
11:09:47.243 Modules scanning
11:09:47.250 Disk 0 trace - called modules:
11:09:47.271 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
11:09:47.278 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800803d060]
11:09:47.283 3 CLASSPNP.SYS[fffff88001bb043f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP7T0L0-9[0xfffffa80078a7060]
11:09:50.680 AVAST engine scan C:\Windows
11:09:55.300 AVAST engine scan C:\Windows\system32
11:13:02.130 AVAST engine scan C:\Windows\system32\drivers
11:13:11.381 AVAST engine scan C:\Users\jc
11:17:29.071 AVAST engine scan C:\ProgramData
11:17:53.704 Scan finished successfully
11:18:34.277 Disk 0 MBR has been saved successfully to "C:\Users\jc\Desktop\MBR.dat"
11:18:34.280 The log file has been saved successfully to "C:\Users\jc\Desktop\aswMBR.txt"




eset

F:\Users\jc\Documents\NAVTEQ\Software\aim553595.exe Win32/Adware.WBug.A application
M:\Software\Software (Vista x86)\Nero-8.3.2.1b_eng_trial.exe Win32/Toolbar.AskSBar application

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:02 PM

Posted 26 July 2012 - 01:34 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 igbyslocumb

igbyslocumb
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 26 July 2012 - 02:08 PM

Minitoolbox:


MiniToolBox by Farbar Version: 23-07-2012
Ran by jc (administrator) on 26-07-2012 at 14:05:04
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82579V Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : sekiwake
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : [redacted]

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : [redacted]
Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
Physical Address. . . . . . . . . : F4-6D-04-45-72-F2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.1.208(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, July 26, 2012 10:28:24 AM
Lease Expires . . . . . . . . . . : Friday, July 27, 2012 10:32:22 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 8.8.8.8
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.[redacted]:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : [redacted]
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:c97:2ae8:3f57:fe2f(Preferred)
Link-local IPv6 Address . . . . . : fe80::c97:2ae8:3f57:fe2f%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: google.com
Addresses: 2607:f8b0:4009:801::100e
74.125.225.69
74.125.225.71
74.125.225.72
74.125.225.66
74.125.225.67
74.125.225.73
74.125.225.78
74.125.225.64
74.125.225.68
74.125.225.65
74.125.225.70


Pinging google.com [74.125.225.69] with 32 bytes of data:
Reply from 74.125.225.69: bytes=32 time=11ms TTL=55
Reply from 74.125.225.69: bytes=32 time=11ms TTL=55

Ping statistics for 74.125.225.69:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 11ms, Maximum = 11ms, Average = 11ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=138ms TTL=50
Reply from 72.30.38.140: bytes=32 time=79ms TTL=50

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 79ms, Maximum = 138ms, Average = 108ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...f4 6d 04 45 72 f2 ......Intel® 82579V Gigabit Network Connection
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.208 11
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.208 266
192.168.1.208 255.255.255.255 On-link 192.168.1.208 266
192.168.1.255 255.255.255.255 On-link 192.168.1.208 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.208 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.208 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:c97:2ae8:3f57:fe2f/128
On-link
12 306 fe80::/64 On-link
12 306 fe80::c97:2ae8:3f57:fe2f/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/26/2012 02:03:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/26/2012 02:01:45 PM) (Source: Application Error) (User: )
Description: Faulting application name: mbam.exe, version: 1.62.0.87, time stamp: 0x4fc6d5ba
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc000041d
Fault offset: 0x74c54f0d
Faulting process id: 0x1004
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3

Error: (07/26/2012 11:18:41 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/26/2012 11:18:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/26/2012 11:03:28 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/26/2012 10:30:19 AM) (Source: Application Hang) (User: )
Description: The program spotify.exe version 0.8.4.107 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: e90

Start Time: 01cd6b4366d32474

Termination Time: 64

Application Path: C:\Users\jc\AppData\Roaming\Spotify\spotify.exe

Report Id: c76758a5-d736-11e1-884b-f46d044572f2

Error: (07/26/2012 06:53:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7005

Error: (07/26/2012 06:53:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7005

Error: (07/26/2012 06:53:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/26/2012 06:53:46 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6006


System errors:
=============
Error: (07/26/2012 10:29:59 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (07/26/2012 10:28:36 AM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error:
%%126

Error: (07/26/2012 10:26:53 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (07/26/2012 10:26:26 AM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (07/26/2012 10:26:14 AM) (Source: Service Control Manager) (User: )
Description: The UsbClientService service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 200 milliseconds: Restart the service.

Error: (07/26/2012 10:25:53 AM) (Source: Service Control Manager) (User: )
Description: The UsbClientService service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 200 milliseconds: Restart the service.

Error: (07/26/2012 10:25:27 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (07/26/2012 10:24:16 AM) (Source: Service Control Manager) (User: )
Description: The UsbClientService service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 200 milliseconds: Restart the service.

Error: (07/26/2012 10:23:30 AM) (Source: Service Control Manager) (User: )
Description: The UsbClientService service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 200 milliseconds: Restart the service.

Error: (07/26/2012 09:57:10 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================
Error: (07/26/2012 02:03:04 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\jc\Desktop\antimalware\esetsmartinstaller_enu.exe

Error: (07/26/2012 02:01:45 PM) (Source: Application Error)(User: )
Description: mbam.exe1.62.0.874fc6d5baunknown0.0.0.000000000c000041d74c54f0d100401cd6b6112caf551C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exeunknown57884a26-d754-11e1-884b-f46d044572f2

Error: (07/26/2012 11:18:41 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\jc\Desktop\esetsmartinstaller_enu.exe

Error: (07/26/2012 11:18:39 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\jc\Desktop\esetsmartinstaller_enu.exe

Error: (07/26/2012 11:03:28 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\jc\Desktop\esetsmartinstaller_enu.exe

Error: (07/26/2012 10:30:19 AM) (Source: Application Hang)(User: )
Description: spotify.exe0.8.4.107e9001cd6b4366d3247464C:\Users\jc\AppData\Roaming\Spotify\spotify.exec76758a5-d736-11e1-884b-f46d044572f2

Error: (07/26/2012 06:53:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7005

Error: (07/26/2012 06:53:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7005

Error: (07/26/2012 06:53:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/26/2012 06:53:46 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6006


=========================== Installed Programs ============================

Adobe Acrobat 6.0 Standard (Version: 006.000.000)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Photoshop 6.0 (Version: 6.0)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe SVG Viewer (Version: 1.0)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Asmedia ASM104x USB 3.0 Host Controller Driver (Version: 1.4.5.0)
Bonjour (Version: 3.0.0.10)
Brother HL-3040CN (Version: 1.00)
Cisco Jabber Video for TelePresence (Version: 4.4.3.14479)
Cisco WebEx Meetings
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DIRECTV Player (Version: 4.00)
DIRECTV2PC™ (Version: 2.0.7507)
Dropbox (Version: 1.4.7)
ESET Online Scanner v3
Evernote v. 4.5.7 (Version: 4.5.7.7146)
Google Chrome (Version: 20.0.1132.57)
Intel® Network Connections 15.6.25.0 (Version: 15.6.25.0)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
marvell 91xx driver (Version: 1.0.0.1051)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10516.0)
Microsoft Visio 2010 Service Pack 1 (SP1)
Microsoft Visio Premium 2010 (Version: 14.0.6029.1000)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NETGEAR Powerline Utility (Version: 2.0.0.8)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.78.0)
NVIDIA Update 1.3.5 (Version: 1.3.5)
NVIDIA Update Components (Version: 1.3.5)
PowerChute Business Edition Agent (Version: 9.0.1.606)
PowerChute Personal Edition 3.0.2 (Version: 3.0.2)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.6235)
Skype™ 5.10 (Version: 5.10.114)
Sonos Controller (Version: 19.3.53220)
Spotify (Version: 0.8.4.107.g4fa0003f)
Synology Assistant (remove only)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 8168.92 MB
Available physical RAM: 4687.83 MB
Total Pagefile: 16336.03 MB
Available Pagefile: 12739.29 MB
Total Virtual: 4095.88 MB
Available Virtual: 3861.49 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:69.15 GB) (Free:14.15 GB) NTFS
4 Drive f: (DATA) (Fixed) (Total:465.76 GB) (Free:151.55 GB) NTFS
9 Drive m: (MEDIA) (Fixed) (Total:1863.02 GB) (Free:1287.91 GB) NTFS
10 Drive p: (Photos) (Network) (Total:2746.24 GB) (Free:2090.89 GB) NTFS
11 Drive s: (NAS_Shared) (Network) (Total:2746.24 GB) (Free:2090.89 GB) NTFS
12 Drive z: (music) (Network) (Total:2746.24 GB) (Free:2090.89 GB) NTFS

========================= Users: ========================================

User accounts for \\SEKIWAKE

Administrator Guest jc
Sonos UpdatusUser


**** End of log ****

#6 igbyslocumb

igbyslocumb
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 26 July 2012 - 02:10 PM

fss


Farbar Service Scanner Version: 26-07-2012
Ran by jc (administrator) on 26-07-2012 at 14:09:34
Running from "C:\Users\jc\Desktop\antimalware"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Auto
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#7 igbyslocumb

igbyslocumb
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 26 July 2012 - 02:11 PM

adwcleaner

# AdwCleaner v1.703 - Logfile created 07/26/2012 at 14:10:56
# Updated 20/07/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : jc - SEKIWAKE
# Running from : C:\Users\jc\Desktop\antimalware\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Mozilla Firefox v13.0.1 (en-US)

Profile name : default
File : C:\Users\jc\AppData\Roaming\Mozilla\Firefox\Profiles\svri5uh0.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v20.0.1132.57

File : C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found : "description": "The fastest way to search the web.",

*************************

AdwCleaner[R1].txt - [900 octets] - [26/07/2012 14:10:56]

########## EOF - C:\AdwCleaner[R1].txt - [1027 octets] ##########

#8 igbyslocumb

igbyslocumb
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 26 July 2012 - 02:23 PM

mbam

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.26.14

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
jc :: SEKIWAKE [administrator]

7/26/2012 2:02:02 PM
mbam-log-2012-07-26 (14-22-38).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 350240
Time elapsed: 20 minute(s), 24 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 1
C:\Users\jc\AppData\Local\SUPERAntiSpyware.com\xsnjpzag.dll (Spyware.Password) -> No action taken.

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SUPERAntiSpyware.com (Spyware.Password) -> Data: rundll32.exe C:\Users\jc\AppData\Local\SUPERAntiSpyware.com\xsnjpzag.dll,?beep@CFlashIK@@QAE_NXZ -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\jc\AppData\Local\SUPERAntiSpyware.com\xsnjpzag.dll (Spyware.Password) -> No action taken.

(end)

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:02 PM

Posted 26 July 2012 - 02:25 PM

Remove the infections in MBAM scan and run the scan again and post the clean log

#10 igbyslocumb

igbyslocumb
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 26 July 2012 - 03:28 PM

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.26.14

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
jc :: SEKIWAKE [administrator]

7/26/2012 2:44:34 PM
mbam-log-2012-07-26 (14-44-34).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 349606
Time elapsed: 28 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:02 PM

Posted 26 July 2012 - 03:55 PM

Uninstall firefox

Makesure to checkmark remove my personal data option

Reinstall it

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#12 igbyslocumb

igbyslocumb
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 30 July 2012 - 09:28 AM

Thanks for your help!

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:02 PM

Posted 30 July 2012 - 11:31 AM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users