Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Redirect to 8.26.70.252


  • Please log in to reply
13 replies to this topic

#1 Timber_Wolf

Timber_Wolf

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 06 August 2012 - 11:20 PM

As so many others I have this redirect when I use google.
I used Firefox, and I don't know if it is in IE as well.

I already used TDSSkiller with the TDLFS file system option.

It didn't show any threads at all.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 PM

Posted 06 August 2012 - 11:28 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 06 August 2012 - 11:29 PM.


#3 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 07 August 2012 - 12:11 AM

22:08:19.0058 4316 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
22:08:19.0483 4316 ============================================================
22:08:19.0483 4316 Current date / time: 2012/08/06 22:08:19.0483
22:08:19.0483 4316 SystemInfo:
22:08:19.0483 4316
22:08:19.0483 4316 OS Version: 6.0.6002 ServicePack: 2.0
22:08:19.0483 4316 Product type: Workstation
22:08:19.0483 4316 ComputerName: MARCUS-PC
22:08:19.0484 4316 UserName: Marcus
22:08:19.0484 4316 Windows directory: C:\Windows
22:08:19.0484 4316 System windows directory: C:\Windows
22:08:19.0484 4316 Running under WOW64
22:08:19.0484 4316 Processor architecture: Intel x64
22:08:19.0484 4316 Number of processors: 2
22:08:19.0484 4316 Page size: 0x1000
22:08:19.0484 4316 Boot type: Normal boot
22:08:19.0484 4316 ============================================================
22:08:20.0435 4316 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x17A85, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
22:08:20.0503 4316 Drive \Device\Harddisk5\DR5 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:08:20.0507 4316 ============================================================
22:08:20.0507 4316 \Device\Harddisk0\DR0:
22:08:20.0507 4316 MBR partitions:
22:08:20.0507 4316 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
22:08:20.0507 4316 \Device\Harddisk5\DR5:
22:08:20.0510 4316 MBR partitions:
22:08:20.0510 4316 \Device\Harddisk5\DR5\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
22:08:20.0510 4316 ============================================================
22:08:20.0556 4316 C: <-> \Device\Harddisk0\DR0\Partition0
22:08:20.0618 4316 J: <-> \Device\Harddisk5\DR5\Partition0
22:08:20.0619 4316 ============================================================
22:08:20.0619 4316 Initialize success
22:08:20.0619 4316 ============================================================
22:08:26.0097 3988 ============================================================
22:08:26.0097 3988 Scan started
22:08:26.0097 3988 Mode: Manual;
22:08:26.0097 3988 ============================================================
22:08:27.0437 3988 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
22:08:27.0440 3988 ACPI - ok
22:08:27.0679 3988 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:08:27.0681 3988 AdobeFlashPlayerUpdateSvc - ok
22:08:27.0836 3988 adp94xx (9137451d37ba1c325cd6c2def3d2d692) C:\Windows\system32\drivers\adp94xx.sys
22:08:27.0839 3988 adp94xx - ok
22:08:27.0921 3988 adpahci (01f80898df5cc7df19b3b11351846263) C:\Windows\system32\drivers\adpahci.sys
22:08:27.0923 3988 adpahci - ok
22:08:28.0168 3988 adpu160m (da001db13fff45dfe9109936e265b7cc) C:\Windows\system32\drivers\adpu160m.sys
22:08:28.0170 3988 adpu160m - ok
22:08:28.0197 3988 adpu320 (2b10c35c5b7c5c0c28f572e035319602) C:\Windows\system32\drivers\adpu320.sys
22:08:28.0199 3988 adpu320 - ok
22:08:28.0233 3988 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
22:08:28.0234 3988 AeLookupSvc - ok
22:08:28.0309 3988 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
22:08:28.0311 3988 AFD - ok
22:08:28.0378 3988 agp440 (5ccdd13bc602ae33cd8b62d33c29ab72) C:\Windows\system32\drivers\agp440.sys
22:08:28.0379 3988 agp440 - ok
22:08:28.0419 3988 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
22:08:28.0420 3988 aic78xx - ok
22:08:28.0443 3988 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
22:08:28.0444 3988 ALG - ok
22:08:28.0488 3988 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
22:08:28.0489 3988 aliide - ok
22:08:28.0512 3988 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
22:08:28.0513 3988 amdide - ok
22:08:28.0560 3988 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\DRIVERS\amdk8.sys
22:08:28.0561 3988 AmdK8 - ok
22:08:28.0634 3988 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
22:08:28.0636 3988 Appinfo - ok
22:08:28.0766 3988 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:08:28.0768 3988 Apple Mobile Device - ok
22:08:28.0952 3988 AppMgmt (3da98c07b18a676180fe7eed924d1673) C:\Windows\System32\appmgmts.dll
22:08:28.0954 3988 AppMgmt - ok
22:08:29.0004 3988 arc (2e8623f2fed998a97129a3db919551c8) C:\Windows\system32\drivers\arc.sys
22:08:29.0004 3988 arc - ok
22:08:29.0052 3988 arcsas (741a003c041a3ec480a2e71af71e9654) C:\Windows\system32\drivers\arcsas.sys
22:08:29.0053 3988 arcsas - ok
22:08:29.0207 3988 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:08:29.0207 3988 aspnet_state - ok
22:08:29.0347 3988 astcc (e61b38684a1c1c65612dcbabd29d0376) C:\Windows\SysWOW64\AstSrv.exe
22:08:29.0350 3988 astcc - ok
22:08:29.0421 3988 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
22:08:29.0422 3988 AsyncMac - ok
22:08:29.0481 3988 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys
22:08:29.0482 3988 atapi - ok
22:08:29.0555 3988 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:08:29.0558 3988 AudioEndpointBuilder - ok
22:08:29.0567 3988 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:08:29.0570 3988 AudioSrv - ok
22:08:29.0758 3988 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
22:08:29.0761 3988 BFE - ok
22:08:29.0924 3988 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\System32\qmgr.dll
22:08:29.0932 3988 BITS - ok
22:08:30.0015 3988 blbdrive - ok
22:08:30.0110 3988 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
22:08:30.0113 3988 Bonjour Service - ok
22:08:30.0142 3988 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
22:08:30.0143 3988 bowser - ok
22:08:30.0266 3988 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
22:08:30.0267 3988 BrFiltLo - ok
22:08:30.0308 3988 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
22:08:30.0308 3988 BrFiltUp - ok
22:08:30.0396 3988 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
22:08:30.0397 3988 Browser - ok
22:08:30.0504 3988 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
22:08:30.0505 3988 Brserid - ok
22:08:30.0524 3988 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
22:08:30.0525 3988 BrSerWdm - ok
22:08:30.0545 3988 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
22:08:30.0546 3988 BrUsbMdm - ok
22:08:30.0577 3988 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
22:08:30.0578 3988 BrUsbSer - ok
22:08:30.0615 3988 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
22:08:30.0616 3988 BTHMODEM - ok
22:08:30.0817 3988 CAXHWBS2 (6c2dd66a3db32450d661ba89b18b1941) C:\Windows\system32\DRIVERS\CAXHWBS2.sys
22:08:30.0820 3988 CAXHWBS2 - ok
22:08:30.0857 3988 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
22:08:30.0858 3988 cdfs - ok
22:08:30.0886 3988 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
22:08:30.0887 3988 cdrom - ok
22:08:31.0032 3988 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
22:08:31.0033 3988 CertPropSvc - ok
22:08:31.0055 3988 circlass (f28f00596824058bc61d5edf434c9b82) C:\Windows\system32\drivers\circlass.sys
22:08:31.0056 3988 circlass - ok
22:08:31.0221 3988 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
22:08:31.0224 3988 CLFS - ok
22:08:31.0342 3988 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:08:31.0343 3988 clr_optimization_v2.0.50727_32 - ok
22:08:31.0419 3988 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:08:31.0420 3988 clr_optimization_v2.0.50727_64 - ok
22:08:31.0476 3988 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:08:31.0477 3988 clr_optimization_v4.0.30319_32 - ok
22:08:31.0558 3988 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:08:31.0559 3988 clr_optimization_v4.0.30319_64 - ok
22:08:31.0647 3988 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
22:08:31.0647 3988 cmdide - ok
22:08:31.0662 3988 Compbatt (0e77a445640bf310817f60941c50560c) C:\Windows\system32\drivers\compbatt.sys
22:08:31.0663 3988 Compbatt - ok
22:08:31.0666 3988 COMSysApp - ok
22:08:31.0689 3988 crcdisk (b1192dcd5b9cf46beed0e2a9e5bcf59a) C:\Windows\system32\drivers\crcdisk.sys
22:08:31.0689 3988 crcdisk - ok
22:08:31.0762 3988 CryptSvc (62740b9d2a137e8ced41a9e4239a7a31) C:\Windows\system32\cryptsvc.dll
22:08:31.0763 3988 CryptSvc - ok
22:08:31.0962 3988 CSC (f60f50c8ed3fcbe358430b95fe27d09c) C:\Windows\system32\drivers\csc.sys
22:08:31.0965 3988 CSC - ok
22:08:32.0049 3988 CscService (1b5f256d31836ed2ba60b3a6c800200c) C:\Windows\System32\cscsvc.dll
22:08:32.0054 3988 CscService - ok
22:08:32.0206 3988 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
22:08:32.0211 3988 DcomLaunch - ok
22:08:32.0282 3988 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
22:08:32.0283 3988 DfsC - ok
22:08:32.0588 3988 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
22:08:32.0611 3988 DFSR - ok
22:08:32.0928 3988 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
22:08:32.0931 3988 Dhcp - ok
22:08:33.0057 3988 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
22:08:33.0058 3988 disk - ok
22:08:33.0109 3988 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
22:08:33.0110 3988 Dnscache - ok
22:08:33.0225 3988 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
22:08:33.0227 3988 dot3svc - ok
22:08:33.0281 3988 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
22:08:33.0282 3988 DPS - ok
22:08:33.0318 3988 DRHARD - ok
22:08:33.0392 3988 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
22:08:33.0392 3988 drmkaud - ok
22:08:33.0547 3988 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
22:08:33.0552 3988 DXGKrnl - ok
22:08:33.0630 3988 E1G60 (d57fe09b575545738a73a0c193d0616a) C:\Windows\system32\DRIVERS\E1G6032E.sys
22:08:33.0631 3988 E1G60 - ok
22:08:33.0701 3988 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
22:08:33.0702 3988 EapHost - ok
22:08:33.0761 3988 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
22:08:33.0762 3988 Ecache - ok
22:08:33.0877 3988 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
22:08:33.0879 3988 ehRecvr - ok
22:08:33.0903 3988 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
22:08:33.0904 3988 ehSched - ok
22:08:33.0939 3988 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
22:08:33.0939 3988 ehstart - ok
22:08:33.0978 3988 elxstor (3d6298aff3fe06c0616ce5d090a3eeaa) C:\Windows\system32\drivers\elxstor.sys
22:08:33.0980 3988 elxstor - ok
22:08:34.0232 3988 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
22:08:34.0235 3988 EMDMgmt - ok
22:08:34.0327 3988 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
22:08:34.0330 3988 EventSystem - ok
22:08:34.0394 3988 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
22:08:34.0395 3988 exfat - ok
22:08:34.0438 3988 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
22:08:34.0439 3988 fastfat - ok
22:08:34.0499 3988 Fax (989a776a2ff32a148fcf15c44058b129) C:\Windows\system32\fxssvc.exe
22:08:34.0504 3988 Fax - ok
22:08:34.0544 3988 fdc (61b6dbd1ad1143f008364d4e9a96b224) C:\Windows\system32\DRIVERS\fdc.sys
22:08:34.0545 3988 fdc - ok
22:08:34.0613 3988 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
22:08:34.0614 3988 fdPHost - ok
22:08:34.0659 3988 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
22:08:34.0660 3988 FDResPub - ok
22:08:34.0701 3988 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
22:08:34.0702 3988 FileInfo - ok
22:08:34.0770 3988 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
22:08:34.0771 3988 Filetrace - ok
22:08:34.0913 3988 FLEXnet Licensing Service (bb0667b0171b632b97ea759515476f07) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:08:34.0918 3988 FLEXnet Licensing Service - ok
22:08:34.0938 3988 flpydisk (12c3d1b4d0ce49e1ce343ba2f22f15e0) C:\Windows\system32\DRIVERS\flpydisk.sys
22:08:34.0938 3988 flpydisk - ok
22:08:35.0004 3988 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
22:08:35.0008 3988 FltMgr - ok
22:08:35.0212 3988 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
22:08:35.0220 3988 FontCache - ok
22:08:35.0301 3988 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:08:35.0302 3988 FontCache3.0.0.0 - ok
22:08:35.0347 3988 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
22:08:35.0347 3988 Fs_Rec - ok
22:08:35.0378 3988 fvevol (849e38db7d829962d0233a0a252b60c3) C:\Windows\system32\DRIVERS\fvevol.sys
22:08:35.0380 3988 fvevol - ok
22:08:35.0398 3988 gagp30kx (b54520cc7b4b55134d7527b1cd3fc1f2) C:\Windows\system32\drivers\gagp30kx.sys
22:08:35.0398 3988 gagp30kx - ok
22:08:35.0421 3988 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\Drivers\GEARAspiWDM.sys
22:08:35.0421 3988 GEARAspiWDM - ok
22:08:35.0484 3988 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
22:08:35.0490 3988 gpsvc - ok
22:08:35.0576 3988 grmnusb (38f92e8510b8faec9bbb9e31724236dc) C:\Windows\system32\drivers\grmnusb.sys
22:08:35.0577 3988 grmnusb - ok
22:08:35.0779 3988 gupdate (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:08:35.0781 3988 gupdate - ok
22:08:35.0825 3988 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:08:35.0826 3988 gupdatem - ok
22:08:35.0976 3988 gusvc (751c1d2ca2abf4a9f5a6b8d7d45b907c) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:08:35.0978 3988 gusvc - ok
22:08:36.0046 3988 HdAudAddService (68e732382b32417ff61fd663259b4b09) C:\Windows\system32\drivers\HdAudio.sys
22:08:36.0054 3988 HdAudAddService - ok
22:08:36.0123 3988 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:08:36.0201 3988 HDAudBus - ok
22:08:36.0302 3988 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
22:08:36.0304 3988 HidBth - ok
22:08:36.0354 3988 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
22:08:36.0355 3988 HidIr - ok
22:08:36.0381 3988 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\system32\hidserv.dll
22:08:36.0383 3988 hidserv - ok
22:08:36.0394 3988 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
22:08:36.0395 3988 HidUsb - ok
22:08:36.0438 3988 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
22:08:36.0442 3988 hkmsvc - ok
22:08:36.0488 3988 HpCISSs (8edc820115df1e04763b2923676ea5b2) C:\Windows\system32\drivers\hpcisss.sys
22:08:36.0490 3988 HpCISSs - ok
22:08:36.0757 3988 HSF_DP (3a9291d4047935f776db8af831ab9ba6) C:\Windows\system32\DRIVERS\CAX_DP.sys
22:08:36.0868 3988 HSF_DP - ok
22:08:37.0219 3988 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
22:08:37.0243 3988 HTTP - ok
22:08:37.0363 3988 HWiNFO32 (160bab05a99fcf8fd77153371644546f) C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS
22:08:37.0364 3988 HWiNFO32 - ok
22:08:37.0404 3988 i2omp (f2901763845570ecac48e6a50ec50812) C:\Windows\system32\drivers\i2omp.sys
22:08:37.0406 3988 i2omp - ok
22:08:37.0496 3988 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
22:08:37.0498 3988 i8042prt - ok
22:08:37.0528 3988 iaStorV (72c3ee7ea3cd75a772e62ae0e5df8b8c) C:\Windows\system32\drivers\iastorv.sys
22:08:37.0605 3988 iaStorV - ok
22:08:37.0689 3988 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:08:37.0690 3988 IDriverT - ok
22:08:37.0851 3988 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:08:37.0857 3988 idsvc - ok
22:08:37.0933 3988 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
22:08:37.0936 3988 iirsp - ok
22:08:37.0981 3988 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
22:08:38.0028 3988 IKEEXT - ok
22:08:38.0061 3988 intelide (36a266c673812878996f72b200203fbb) C:\Windows\system32\drivers\intelide.sys
22:08:38.0062 3988 intelide - ok
22:08:38.0078 3988 intelppm (cd802075728e514548841dcc3f8b0220) C:\Windows\system32\DRIVERS\intelppm.sys
22:08:38.0080 3988 intelppm - ok
22:08:38.0119 3988 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
22:08:38.0122 3988 IPBusEnum - ok
22:08:38.0136 3988 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:08:38.0138 3988 IpFilterDriver - ok
22:08:38.0210 3988 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
22:08:38.0220 3988 iphlpsvc - ok
22:08:38.0224 3988 IpInIp - ok
22:08:38.0254 3988 IPMIDRV (eacdbbe429c6d170bdeee0effcbc317b) C:\Windows\system32\drivers\ipmidrv.sys
22:08:38.0256 3988 IPMIDRV - ok
22:08:38.0377 3988 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
22:08:38.0379 3988 IPNAT - ok
22:08:38.0542 3988 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
22:08:38.0546 3988 iPod Service - ok
22:08:38.0646 3988 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
22:08:38.0647 3988 IRENUM - ok
22:08:38.0699 3988 isapnp (d3bb520b31f28c1a065cd058e762ee73) C:\Windows\system32\drivers\isapnp.sys
22:08:38.0700 3988 isapnp - ok
22:08:38.0827 3988 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
22:08:38.0838 3988 iScsiPrt - ok
22:08:38.0871 3988 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
22:08:38.0873 3988 iteatapi - ok
22:08:38.0916 3988 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
22:08:38.0917 3988 iteraid - ok
22:08:39.0031 3988 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
22:08:39.0032 3988 kbdclass - ok
22:08:39.0062 3988 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
22:08:39.0063 3988 kbdhid - ok
22:08:39.0084 3988 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:08:39.0088 3988 KeyIso - ok
22:08:39.0138 3988 KSecDD (88956ad9fa510848ad176777a6c6c1f5) C:\Windows\system32\Drivers\ksecdd.sys
22:08:39.0156 3988 KSecDD - ok
22:08:39.0176 3988 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
22:08:39.0177 3988 ksthunk - ok
22:08:39.0286 3988 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
22:08:39.0337 3988 KtmRm - ok
22:08:39.0406 3988 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\system32\srvsvc.dll
22:08:39.0415 3988 LanmanServer - ok
22:08:39.0473 3988 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
22:08:39.0478 3988 LanmanWorkstation - ok
22:08:39.0549 3988 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
22:08:39.0551 3988 lltdio - ok
22:08:39.0697 3988 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
22:08:39.0705 3988 lltdsvc - ok
22:08:39.0759 3988 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
22:08:39.0761 3988 lmhosts - ok
22:08:39.0788 3988 LSI_FC (1572f8d999c0ab4376afdce058a78df9) C:\Windows\system32\drivers\lsi_fc.sys
22:08:39.0790 3988 LSI_FC - ok
22:08:39.0812 3988 LSI_SAS (64470979c3e3c9ff60edfb5230c56e0e) C:\Windows\system32\drivers\lsi_sas.sys
22:08:39.0814 3988 LSI_SAS - ok
22:08:39.0849 3988 LSI_SCSI (4ced7d3b54bfc5bbae75c4a73c7f7428) C:\Windows\system32\drivers\lsi_scsi.sys
22:08:39.0852 3988 LSI_SCSI - ok
22:08:39.0871 3988 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
22:08:39.0873 3988 luafv - ok
22:08:39.0961 3988 MBAMDrvService (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
22:08:39.0962 3988 MBAMDrvService - ok
22:08:40.0049 3988 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
22:08:40.0053 3988 Mcx2Svc - ok
22:08:40.0135 3988 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:08:40.0136 3988 mdmxsdk - ok
22:08:40.0173 3988 megasas (2f631c2939d5f2e8958935ee701d70d7) C:\Windows\system32\drivers\megasas.sys
22:08:40.0174 3988 megasas - ok
22:08:40.0215 3988 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
22:08:40.0218 3988 MMCSS - ok
22:08:40.0236 3988 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
22:08:40.0238 3988 Modem - ok
22:08:40.0267 3988 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
22:08:40.0268 3988 monitor - ok
22:08:40.0294 3988 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
22:08:40.0295 3988 mouclass - ok
22:08:40.0337 3988 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
22:08:40.0338 3988 mouhid - ok
22:08:40.0354 3988 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
22:08:40.0356 3988 MountMgr - ok
22:08:40.0552 3988 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:08:40.0553 3988 MozillaMaintenance - ok
22:08:40.0610 3988 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
22:08:40.0662 3988 MpFilter - ok
22:08:40.0755 3988 mpio (ed48eac719ee28db773359eb1b06e2b5) C:\Windows\system32\drivers\mpio.sys
22:08:40.0757 3988 mpio - ok
22:08:40.0796 3988 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
22:08:40.0798 3988 mpsdrv - ok
22:08:40.0847 3988 MpsSvc (897e3baf68ba406a61682ae39c83900c) C:\Windows\system32\mpssvc.dll
22:08:40.0862 3988 MpsSvc - ok
22:08:40.0881 3988 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
22:08:40.0882 3988 Mraid35x - ok
22:08:40.0915 3988 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
22:08:40.0927 3988 MRxDAV - ok
22:08:40.0958 3988 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:08:40.0971 3988 mrxsmb - ok
22:08:41.0009 3988 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:08:41.0016 3988 mrxsmb10 - ok
22:08:41.0054 3988 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:08:41.0056 3988 mrxsmb20 - ok
22:08:41.0075 3988 msahci (eeadf970795148bfbb1db3abcc89c16b) C:\Windows\system32\drivers\msahci.sys
22:08:41.0076 3988 msahci - ok
22:08:41.0122 3988 msdsm (96d7c0a1b98434c6e4ff0c2e26a0e20a) C:\Windows\system32\drivers\msdsm.sys
22:08:41.0124 3988 msdsm - ok
22:08:41.0167 3988 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
22:08:41.0170 3988 MSDTC - ok
22:08:41.0213 3988 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
22:08:41.0215 3988 Msfs - ok
22:08:41.0259 3988 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
22:08:41.0260 3988 msisadrv - ok
22:08:41.0326 3988 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
22:08:41.0329 3988 MSiSCSI - ok
22:08:41.0345 3988 msiserver - ok
22:08:41.0383 3988 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
22:08:41.0385 3988 MSKSSRV - ok
22:08:41.0429 3988 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:08:41.0430 3988 MsMpSvc - ok
22:08:41.0444 3988 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
22:08:41.0445 3988 MSPCLOCK - ok
22:08:41.0453 3988 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
22:08:41.0454 3988 MSPQM - ok
22:08:41.0495 3988 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
22:08:41.0541 3988 MsRPC - ok
22:08:41.0578 3988 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
22:08:41.0579 3988 mssmbios - ok
22:08:41.0612 3988 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
22:08:41.0614 3988 MSTEE - ok
22:08:42.0012 3988 msvsmon90 (cb4a082af58d1a0969f931816d5cfb05) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
22:08:42.0126 3988 msvsmon90 - ok
22:08:42.0131 3988 Scan interrupted by user!
22:08:42.0131 3988 Scan interrupted by user!
22:08:42.0131 3988 Scan interrupted by user!
22:08:42.0131 3988 ============================================================
22:08:42.0131 3988 Scan finished
22:08:42.0131 3988 ============================================================
22:08:42.0142 2192 Detected object count: 0
22:08:42.0142 2192 Actual detected object count: 0
22:08:48.0792 6188 ============================================================
22:08:48.0792 6188 Scan started
22:08:48.0792 6188 Mode: Manual; TDLFS;
22:08:48.0792 6188 ============================================================
22:08:49.0586 6188 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
22:08:49.0588 6188 ACPI - ok
22:08:49.0906 6188 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:08:49.0908 6188 AdobeFlashPlayerUpdateSvc - ok
22:08:50.0057 6188 adp94xx (9137451d37ba1c325cd6c2def3d2d692) C:\Windows\system32\drivers\adp94xx.sys
22:08:50.0060 6188 adp94xx - ok
22:08:50.0142 6188 adpahci (01f80898df5cc7df19b3b11351846263) C:\Windows\system32\drivers\adpahci.sys
22:08:50.0144 6188 adpahci - ok
22:08:50.0264 6188 adpu160m (da001db13fff45dfe9109936e265b7cc) C:\Windows\system32\drivers\adpu160m.sys
22:08:50.0266 6188 adpu160m - ok
22:08:50.0295 6188 adpu320 (2b10c35c5b7c5c0c28f572e035319602) C:\Windows\system32\drivers\adpu320.sys
22:08:50.0297 6188 adpu320 - ok
22:08:50.0390 6188 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
22:08:50.0391 6188 AeLookupSvc - ok
22:08:50.0432 6188 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
22:08:50.0435 6188 AFD - ok
22:08:50.0533 6188 agp440 (5ccdd13bc602ae33cd8b62d33c29ab72) C:\Windows\system32\drivers\agp440.sys
22:08:50.0534 6188 agp440 - ok
22:08:50.0657 6188 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
22:08:50.0658 6188 aic78xx - ok
22:08:50.0788 6188 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
22:08:50.0789 6188 ALG - ok
22:08:50.0834 6188 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
22:08:50.0834 6188 aliide - ok
22:08:50.0894 6188 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
22:08:50.0895 6188 amdide - ok
22:08:50.0932 6188 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\DRIVERS\amdk8.sys
22:08:50.0933 6188 AmdK8 - ok
22:08:50.0965 6188 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
22:08:50.0966 6188 Appinfo - ok
22:08:51.0162 6188 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:08:51.0164 6188 Apple Mobile Device - ok
22:08:51.0208 6188 AppMgmt (3da98c07b18a676180fe7eed924d1673) C:\Windows\System32\appmgmts.dll
22:08:51.0209 6188 AppMgmt - ok
22:08:51.0301 6188 arc (2e8623f2fed998a97129a3db919551c8) C:\Windows\system32\drivers\arc.sys
22:08:51.0302 6188 arc - ok
22:08:51.0377 6188 arcsas (741a003c041a3ec480a2e71af71e9654) C:\Windows\system32\drivers\arcsas.sys
22:08:51.0378 6188 arcsas - ok
22:08:51.0481 6188 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:08:51.0482 6188 aspnet_state - ok
22:08:51.0634 6188 astcc (e61b38684a1c1c65612dcbabd29d0376) C:\Windows\SysWOW64\AstSrv.exe
22:08:51.0637 6188 astcc - ok
22:08:51.0738 6188 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
22:08:51.0738 6188 AsyncMac - ok
22:08:51.0770 6188 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys
22:08:51.0771 6188 atapi - ok
22:08:51.0864 6188 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:08:51.0867 6188 AudioEndpointBuilder - ok
22:08:51.0874 6188 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:08:51.0877 6188 AudioSrv - ok
22:08:51.0993 6188 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
22:08:51.0996 6188 BFE - ok
22:08:52.0183 6188 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\System32\qmgr.dll
22:08:52.0193 6188 BITS - ok
22:08:52.0235 6188 blbdrive - ok
22:08:52.0325 6188 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
22:08:52.0327 6188 Bonjour Service - ok
22:08:52.0357 6188 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
22:08:52.0358 6188 bowser - ok
22:08:52.0384 6188 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
22:08:52.0384 6188 BrFiltLo - ok
22:08:52.0397 6188 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
22:08:52.0397 6188 BrFiltUp - ok
22:08:52.0547 6188 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
22:08:52.0549 6188 Browser - ok
22:08:52.0578 6188 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
22:08:52.0579 6188 Brserid - ok
22:08:52.0638 6188 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
22:08:52.0639 6188 BrSerWdm - ok
22:08:52.0675 6188 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
22:08:52.0675 6188 BrUsbMdm - ok
22:08:52.0703 6188 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
22:08:52.0704 6188 BrUsbSer - ok
22:08:52.0729 6188 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
22:08:52.0729 6188 BTHMODEM - ok
22:08:52.0816 6188 CAXHWBS2 (6c2dd66a3db32450d661ba89b18b1941) C:\Windows\system32\DRIVERS\CAXHWBS2.sys
22:08:52.0819 6188 CAXHWBS2 - ok
22:08:52.0876 6188 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
22:08:52.0877 6188 cdfs - ok
22:08:52.0922 6188 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
22:08:52.0922 6188 cdrom - ok
22:08:52.0953 6188 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
22:08:52.0954 6188 CertPropSvc - ok
22:08:52.0980 6188 circlass (f28f00596824058bc61d5edf434c9b82) C:\Windows\system32\drivers\circlass.sys
22:08:52.0980 6188 circlass - ok
22:08:53.0140 6188 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
22:08:53.0143 6188 CLFS - ok
22:08:53.0233 6188 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:08:53.0234 6188 clr_optimization_v2.0.50727_32 - ok
22:08:53.0285 6188 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:08:53.0286 6188 clr_optimization_v2.0.50727_64 - ok
22:08:53.0333 6188 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:08:53.0334 6188 clr_optimization_v4.0.30319_32 - ok
22:08:53.0374 6188 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:08:53.0375 6188 clr_optimization_v4.0.30319_64 - ok
22:08:53.0403 6188 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
22:08:53.0404 6188 cmdide - ok
22:08:53.0420 6188 Compbatt (0e77a445640bf310817f60941c50560c) C:\Windows\system32\drivers\compbatt.sys
22:08:53.0420 6188 Compbatt - ok
22:08:53.0427 6188 COMSysApp - ok
22:08:53.0457 6188 crcdisk (b1192dcd5b9cf46beed0e2a9e5bcf59a) C:\Windows\system32\drivers\crcdisk.sys
22:08:53.0457 6188 crcdisk - ok
22:08:53.0590 6188 CryptSvc (62740b9d2a137e8ced41a9e4239a7a31) C:\Windows\system32\cryptsvc.dll
22:08:53.0592 6188 CryptSvc - ok
22:08:53.0724 6188 CSC (f60f50c8ed3fcbe358430b95fe27d09c) C:\Windows\system32\drivers\csc.sys
22:08:53.0727 6188 CSC - ok
22:08:53.0790 6188 CscService (1b5f256d31836ed2ba60b3a6c800200c) C:\Windows\System32\cscsvc.dll
22:08:53.0794 6188 CscService - ok
22:08:53.0913 6188 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
22:08:53.0919 6188 DcomLaunch - ok
22:08:54.0051 6188 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
22:08:54.0052 6188 DfsC - ok
22:08:54.0270 6188 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
22:08:54.0294 6188 DFSR - ok
22:08:54.0419 6188 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
22:08:54.0422 6188 Dhcp - ok
22:08:54.0506 6188 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
22:08:54.0507 6188 disk - ok
22:08:54.0543 6188 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
22:08:54.0544 6188 Dnscache - ok
22:08:54.0612 6188 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
22:08:54.0613 6188 dot3svc - ok
22:08:54.0641 6188 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
22:08:54.0642 6188 DPS - ok
22:08:54.0648 6188 DRHARD - ok
22:08:54.0665 6188 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
22:08:54.0665 6188 drmkaud - ok
22:08:54.0875 6188 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
22:08:54.0882 6188 DXGKrnl - ok
22:08:54.0945 6188 E1G60 (d57fe09b575545738a73a0c193d0616a) C:\Windows\system32\DRIVERS\E1G6032E.sys
22:08:54.0946 6188 E1G60 - ok
22:08:54.0979 6188 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
22:08:54.0980 6188 EapHost - ok
22:08:54.0997 6188 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
22:08:54.0998 6188 Ecache - ok
22:08:55.0063 6188 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
22:08:55.0065 6188 ehRecvr - ok
22:08:55.0089 6188 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
22:08:55.0090 6188 ehSched - ok
22:08:55.0132 6188 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
22:08:55.0132 6188 ehstart - ok
22:08:55.0166 6188 elxstor (3d6298aff3fe06c0616ce5d090a3eeaa) C:\Windows\system32\drivers\elxstor.sys
22:08:55.0169 6188 elxstor - ok
22:08:55.0253 6188 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
22:08:55.0256 6188 EMDMgmt - ok
22:08:55.0317 6188 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
22:08:55.0321 6188 EventSystem - ok
22:08:55.0355 6188 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
22:08:55.0357 6188 exfat - ok
22:08:55.0434 6188 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
22:08:55.0436 6188 fastfat - ok
22:08:55.0511 6188 Fax (989a776a2ff32a148fcf15c44058b129) C:\Windows\system32\fxssvc.exe
22:08:55.0515 6188 Fax - ok
22:08:55.0563 6188 fdc (61b6dbd1ad1143f008364d4e9a96b224) C:\Windows\system32\DRIVERS\fdc.sys
22:08:55.0564 6188 fdc - ok
22:08:55.0600 6188 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
22:08:55.0601 6188 fdPHost - ok
22:08:55.0721 6188 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
22:08:55.0722 6188 FDResPub - ok
22:08:55.0770 6188 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
22:08:55.0771 6188 FileInfo - ok
22:08:55.0822 6188 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
22:08:55.0823 6188 Filetrace - ok
22:08:55.0933 6188 FLEXnet Licensing Service (bb0667b0171b632b97ea759515476f07) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:08:55.0937 6188 FLEXnet Licensing Service - ok
22:08:55.0957 6188 flpydisk (12c3d1b4d0ce49e1ce343ba2f22f15e0) C:\Windows\system32\DRIVERS\flpydisk.sys
22:08:55.0958 6188 flpydisk - ok
22:08:55.0993 6188 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
22:08:55.0995 6188 FltMgr - ok
22:08:56.0104 6188 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
22:08:56.0113 6188 FontCache - ok
22:08:56.0196 6188 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:08:56.0197 6188 FontCache3.0.0.0 - ok
22:08:56.0263 6188 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
22:08:56.0264 6188 Fs_Rec - ok
22:08:56.0306 6188 fvevol (849e38db7d829962d0233a0a252b60c3) C:\Windows\system32\DRIVERS\fvevol.sys
22:08:56.0310 6188 fvevol - ok
22:08:56.0334 6188 gagp30kx (b54520cc7b4b55134d7527b1cd3fc1f2) C:\Windows\system32\drivers\gagp30kx.sys
22:08:56.0335 6188 gagp30kx - ok
22:08:56.0357 6188 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\Drivers\GEARAspiWDM.sys
22:08:56.0358 6188 GEARAspiWDM - ok
22:08:56.0471 6188 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
22:08:56.0483 6188 gpsvc - ok
22:08:56.0573 6188 grmnusb (38f92e8510b8faec9bbb9e31724236dc) C:\Windows\system32\drivers\grmnusb.sys
22:08:56.0574 6188 grmnusb - ok
22:08:56.0693 6188 gupdate (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:08:56.0694 6188 gupdate - ok
22:08:56.0700 6188 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:08:56.0702 6188 gupdatem - ok
22:08:56.0780 6188 gusvc (751c1d2ca2abf4a9f5a6b8d7d45b907c) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:08:56.0781 6188 gusvc - ok
22:08:56.0833 6188 HdAudAddService (68e732382b32417ff61fd663259b4b09) C:\Windows\system32\drivers\HdAudio.sys
22:08:56.0841 6188 HdAudAddService - ok
22:08:56.0943 6188 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:08:56.0963 6188 HDAudBus - ok
22:08:56.0995 6188 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
22:08:56.0996 6188 HidBth - ok
22:08:57.0035 6188 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
22:08:57.0043 6188 HidIr - ok
22:08:57.0070 6188 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\system32\hidserv.dll
22:08:57.0072 6188 hidserv - ok
22:08:57.0082 6188 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
22:08:57.0083 6188 HidUsb - ok
22:08:57.0109 6188 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
22:08:57.0112 6188 hkmsvc - ok
22:08:57.0133 6188 HpCISSs (8edc820115df1e04763b2923676ea5b2) C:\Windows\system32\drivers\hpcisss.sys
22:08:57.0135 6188 HpCISSs - ok
22:08:57.0344 6188 HSF_DP (3a9291d4047935f776db8af831ab9ba6) C:\Windows\system32\DRIVERS\CAX_DP.sys
22:08:57.0373 6188 HSF_DP - ok
22:08:57.0564 6188 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
22:08:57.0592 6188 HTTP - ok
22:08:57.0695 6188 HWiNFO32 (160bab05a99fcf8fd77153371644546f) C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS
22:08:57.0696 6188 HWiNFO32 - ok
22:08:57.0708 6188 i2omp (f2901763845570ecac48e6a50ec50812) C:\Windows\system32\drivers\i2omp.sys
22:08:57.0710 6188 i2omp - ok
22:08:57.0739 6188 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
22:08:57.0742 6188 i8042prt - ok
22:08:57.0768 6188 iaStorV (72c3ee7ea3cd75a772e62ae0e5df8b8c) C:\Windows\system32\drivers\iastorv.sys
22:08:57.0775 6188 iaStorV - ok
22:08:57.0814 6188 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:08:57.0815 6188 IDriverT - ok
22:08:57.0969 6188 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:08:57.0975 6188 idsvc - ok
22:08:58.0033 6188 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
22:08:58.0035 6188 iirsp - ok
22:08:58.0125 6188 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
22:08:58.0148 6188 IKEEXT - ok
22:08:58.0176 6188 intelide (36a266c673812878996f72b200203fbb) C:\Windows\system32\drivers\intelide.sys
22:08:58.0177 6188 intelide - ok
22:08:58.0193 6188 intelppm (cd802075728e514548841dcc3f8b0220) C:\Windows\system32\DRIVERS\intelppm.sys
22:08:58.0194 6188 intelppm - ok
22:08:58.0275 6188 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
22:08:58.0277 6188 IPBusEnum - ok
22:08:58.0302 6188 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:08:58.0304 6188 IpFilterDriver - ok
22:08:58.0361 6188 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
22:08:58.0394 6188 iphlpsvc - ok
22:08:58.0402 6188 IpInIp - ok
22:08:58.0426 6188 IPMIDRV (eacdbbe429c6d170bdeee0effcbc317b) C:\Windows\system32\drivers\ipmidrv.sys
22:08:58.0428 6188 IPMIDRV - ok
22:08:58.0464 6188 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
22:08:58.0468 6188 IPNAT - ok
22:08:58.0538 6188 iPod Service (056ab99a00e2023a24ab4f067880cc3e) C:\Program Files\iPod\bin\iPodService.exe
22:08:58.0543 6188 iPod Service - ok
22:08:58.0585 6188 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
22:08:58.0605 6188 IRENUM - ok
22:08:58.0626 6188 isapnp (d3bb520b31f28c1a065cd058e762ee73) C:\Windows\system32\drivers\isapnp.sys
22:08:58.0627 6188 isapnp - ok
22:08:58.0670 6188 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
22:08:58.0673 6188 iScsiPrt - ok
22:08:58.0729 6188 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
22:08:58.0731 6188 iteatapi - ok
22:08:58.0757 6188 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
22:08:58.0758 6188 iteraid - ok
22:08:58.0845 6188 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
22:08:58.0846 6188 kbdclass - ok
22:08:58.0878 6188 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
22:08:58.0879 6188 kbdhid - ok
22:08:58.0908 6188 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:08:58.0910 6188 KeyIso - ok
22:08:58.0954 6188 KSecDD (88956ad9fa510848ad176777a6c6c1f5) C:\Windows\system32\Drivers\ksecdd.sys
22:08:58.0963 6188 KSecDD - ok
22:08:59.0004 6188 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
22:08:59.0006 6188 ksthunk - ok
22:08:59.0053 6188 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
22:08:59.0066 6188 KtmRm - ok
22:08:59.0106 6188 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\system32\srvsvc.dll
22:08:59.0111 6188 LanmanServer - ok
22:08:59.0150 6188 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
22:08:59.0155 6188 LanmanWorkstation - ok
22:08:59.0191 6188 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
22:08:59.0193 6188 lltdio - ok
22:08:59.0233 6188 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
22:08:59.0247 6188 lltdsvc - ok
22:08:59.0294 6188 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
22:08:59.0296 6188 lmhosts - ok
22:08:59.0346 6188 LSI_FC (1572f8d999c0ab4376afdce058a78df9) C:\Windows\system32\drivers\lsi_fc.sys
22:08:59.0348 6188 LSI_FC - ok
22:08:59.0371 6188 LSI_SAS (64470979c3e3c9ff60edfb5230c56e0e) C:\Windows\system32\drivers\lsi_sas.sys
22:08:59.0374 6188 LSI_SAS - ok
22:08:59.0400 6188 LSI_SCSI (4ced7d3b54bfc5bbae75c4a73c7f7428) C:\Windows\system32\drivers\lsi_scsi.sys
22:08:59.0402 6188 LSI_SCSI - ok
22:08:59.0437 6188 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
22:08:59.0439 6188 luafv - ok
22:08:59.0500 6188 MBAMDrvService (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
22:08:59.0501 6188 MBAMDrvService - ok
22:08:59.0579 6188 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
22:08:59.0589 6188 Mcx2Svc - ok
22:08:59.0626 6188 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:08:59.0627 6188 mdmxsdk - ok
22:08:59.0656 6188 megasas (2f631c2939d5f2e8958935ee701d70d7) C:\Windows\system32\drivers\megasas.sys
22:08:59.0657 6188 megasas - ok
22:08:59.0692 6188 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
22:08:59.0694 6188 MMCSS - ok
22:08:59.0721 6188 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
22:08:59.0723 6188 Modem - ok
22:08:59.0751 6188 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
22:08:59.0753 6188 monitor - ok
22:08:59.0778 6188 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
22:08:59.0779 6188 mouclass - ok
22:08:59.0808 6188 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
22:08:59.0809 6188 mouhid - ok
22:08:59.0838 6188 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
22:08:59.0840 6188 MountMgr - ok
22:08:59.0899 6188 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:08:59.0900 6188 MozillaMaintenance - ok
22:08:59.0943 6188 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
22:08:59.0946 6188 MpFilter - ok
22:08:59.0972 6188 mpio (ed48eac719ee28db773359eb1b06e2b5) C:\Windows\system32\drivers\mpio.sys
22:08:59.0974 6188 mpio - ok
22:09:00.0025 6188 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
22:09:00.0036 6188 mpsdrv - ok
22:09:00.0097 6188 MpsSvc (897e3baf68ba406a61682ae39c83900c) C:\Windows\system32\mpssvc.dll
22:09:00.0114 6188 MpsSvc - ok
22:09:00.0141 6188 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
22:09:00.0143 6188 Mraid35x - ok
22:09:00.0177 6188 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
22:09:00.0205 6188 MRxDAV - ok
22:09:00.0245 6188 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:09:00.0256 6188 mrxsmb - ok
22:09:00.0313 6188 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:09:00.0343 6188 mrxsmb10 - ok
22:09:00.0362 6188 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:09:00.0373 6188 mrxsmb20 - ok
22:09:00.0402 6188 msahci (eeadf970795148bfbb1db3abcc89c16b) C:\Windows\system32\drivers\msahci.sys
22:09:00.0403 6188 msahci - ok
22:09:00.0434 6188 msdsm (96d7c0a1b98434c6e4ff0c2e26a0e20a) C:\Windows\system32\drivers\msdsm.sys
22:09:00.0436 6188 msdsm - ok
22:09:00.0463 6188 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
22:09:00.0466 6188 MSDTC - ok
22:09:00.0550 6188 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
22:09:00.0551 6188 Msfs - ok
22:09:00.0569 6188 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
22:09:00.0571 6188 msisadrv - ok
22:09:00.0613 6188 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
22:09:00.0616 6188 MSiSCSI - ok
22:09:00.0622 6188 msiserver - ok
22:09:00.0677 6188 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
22:09:00.0678 6188 MSKSSRV - ok
22:09:00.0745 6188 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:09:00.0746 6188 MsMpSvc - ok
22:09:00.0787 6188 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
22:09:00.0788 6188 MSPCLOCK - ok
22:09:00.0813 6188 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
22:09:00.0814 6188 MSPQM - ok
22:09:00.0853 6188 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
22:09:00.0858 6188 MsRPC - ok
22:09:00.0877 6188 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
22:09:00.0878 6188 mssmbios - ok
22:09:00.0914 6188 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
22:09:00.0916 6188 MSTEE - ok
22:09:01.0336 6188 msvsmon90 (cb4a082af58d1a0969f931816d5cfb05) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
22:09:01.0445 6188 msvsmon90 - ok
22:09:01.0582 6188 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
22:09:01.0583 6188 Mup - ok
22:09:01.0716 6188 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
22:09:01.0730 6188 napagent - ok
22:09:01.0800 6188 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
22:09:01.0809 6188 NativeWifiP - ok
22:09:01.0995 6188 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
22:09:02.0010 6188 NDIS - ok
22:09:02.0035 6188 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
22:09:02.0037 6188 NdisTapi - ok
22:09:02.0054 6188 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
22:09:02.0055 6188 Ndisuio - ok
22:09:02.0071 6188 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
22:09:02.0082 6188 NdisWan - ok
22:09:02.0110 6188 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
22:09:02.0112 6188 NDProxy - ok
22:09:02.0161 6188 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
22:09:02.0162 6188 NetBIOS - ok
22:09:02.0203 6188 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
22:09:02.0207 6188 netbt - ok
22:09:02.0240 6188 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:09:02.0241 6188 Netlogon - ok
22:09:02.0291 6188 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
22:09:02.0305 6188 Netman - ok
22:09:02.0462 6188 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:09:02.0463 6188 NetMsmqActivator - ok
22:09:02.0468 6188 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:09:02.0469 6188 NetPipeActivator - ok
22:09:02.0519 6188 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
22:09:02.0533 6188 netprofm - ok
22:09:02.0543 6188 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:09:02.0544 6188 NetTcpActivator - ok
22:09:02.0550 6188 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:09:02.0551 6188 NetTcpPortSharing - ok
22:09:02.0608 6188 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
22:09:02.0610 6188 nfrd960 - ok
22:09:02.0696 6188 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:09:02.0698 6188 NisDrv - ok
22:09:02.0921 6188 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
22:09:02.0938 6188 NisSrv - ok
22:09:03.0001 6188 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
22:09:03.0006 6188 NlaSvc - ok
22:09:03.0042 6188 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
22:09:03.0044 6188 Npfs - ok
22:09:03.0065 6188 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
22:09:03.0067 6188 nsi - ok
22:09:03.0107 6188 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
22:09:03.0108 6188 nsiproxy - ok
22:09:03.0266 6188 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
22:09:03.0315 6188 Ntfs - ok
22:09:03.0465 6188 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
22:09:03.0467 6188 Null - ok
22:09:03.0590 6188 NVENETFD (cf2a023f422ce6e43302b139e4b87b05) C:\Windows\system32\DRIVERS\nvmfdx64.sys
22:09:03.0634 6188 NVENETFD - ok
22:09:03.0692 6188 NVHDA (17a7e888e330c7dfe59c97be44ddcf16) C:\Windows\system32\drivers\nvhda64v.sys
22:09:03.0695 6188 NVHDA - ok
22:09:04.0817 6188 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:09:05.0137 6188 nvlddmkm - ok
22:09:05.0373 6188 NVNET (cf2a023f422ce6e43302b139e4b87b05) C:\Windows\system32\DRIVERS\nvmfdx64.sys
22:09:05.0384 6188 NVNET - ok
22:09:05.0409 6188 nvraid (840eeb44dc49317a6161961f7682cd99) C:\Windows\system32\drivers\nvraid.sys
22:09:05.0411 6188 nvraid - ok
22:09:05.0455 6188 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
22:09:05.0457 6188 nvstor - ok
22:09:05.0512 6188 nvstor64 (0996a440d510904b79935a91155b0e4c) C:\Windows\system32\DRIVERS\nvstor64.sys
22:09:05.0513 6188 nvstor64 - ok
22:09:05.0675 6188 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
22:09:05.0687 6188 nvsvc - ok
22:09:05.0893 6188 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
22:09:05.0937 6188 nvUpdatusService - ok
22:09:06.0097 6188 nv_agp (aa1b6c86a4763502e20b65c025f39bad) C:\Windows\system32\drivers\nv_agp.sys
22:09:06.0105 6188 nv_agp - ok
22:09:06.0113 6188 NwlnkFlt - ok
22:09:06.0123 6188 NwlnkFwd - ok
22:09:06.0236 6188 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:09:06.0238 6188 odserv - ok
22:09:06.0271 6188 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
22:09:06.0273 6188 ohci1394 - ok
22:09:06.0310 6188 OneTouch 4.0 Monitor (fe129ddc352e1c810df9df9deb10c6db) C:\Program Files\Visioneer\OneTouch 4.0\OtService.exe
22:09:06.0312 6188 OneTouch 4.0 Monitor - ok
22:09:06.0384 6188 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:09:06.0386 6188 ose - ok
22:09:06.0580 6188 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:09:06.0637 6188 p2pimsvc - ok
22:09:06.0651 6188 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:09:06.0657 6188 p2psvc - ok
22:09:06.0685 6188 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
22:09:06.0689 6188 Parport - ok
22:09:06.0728 6188 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
22:09:06.0730 6188 partmgr - ok
22:09:06.0756 6188 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
22:09:06.0759 6188 PcaSvc - ok
22:09:06.0774 6188 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
22:09:06.0777 6188 pci - ok
22:09:06.0784 6188 pciide (2657f6c0b78c36d95034be109336e382) C:\Windows\system32\drivers\pciide.sys
22:09:06.0786 6188 pciide - ok
22:09:06.0960 6188 PCLEPCI (1bebe7de8508a02650cdce45c664c2a2) C:\Windows\SysWOW64\drivers\pclepci.sys
22:09:06.0961 6188 PCLEPCI - ok
22:09:06.0982 6188 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
22:09:06.0992 6188 pcmcia - ok
22:09:07.0044 6188 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
22:09:07.0061 6188 PEAUTH - ok
22:09:07.0140 6188 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
22:09:07.0142 6188 PerfHost - ok
22:09:07.0326 6188 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
22:09:07.0360 6188 pla - ok
22:09:07.0532 6188 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
22:09:07.0543 6188 PlugPlay - ok
22:09:07.0769 6188 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:09:07.0776 6188 PNRPAutoReg - ok
22:09:07.0791 6188 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:09:07.0797 6188 PNRPsvc - ok
22:09:07.0869 6188 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
22:09:07.0904 6188 PolicyAgent - ok
22:09:08.0038 6188 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
22:09:08.0040 6188 PptpMiniport - ok
22:09:08.0114 6188 Processor (6bc78e5f12cbb74e7930aaaa4a0db387) C:\Windows\system32\drivers\processr.sys
22:09:08.0116 6188 Processor - ok
22:09:08.0152 6188 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
22:09:08.0162 6188 ProfSvc - ok
22:09:08.0194 6188 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:09:08.0195 6188 ProtectedStorage - ok
22:09:08.0273 6188 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
22:09:08.0273 6188 PSched - ok
22:09:08.0351 6188 PSI (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
22:09:08.0352 6188 PSI - ok
22:09:08.0471 6188 ql2300 (4a29d25704917161bad9b4659a248dfd) C:\Windows\system32\drivers\ql2300.sys
22:09:08.0528 6188 ql2300 - ok
22:09:08.0572 6188 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
22:09:08.0609 6188 ql40xx - ok
22:09:08.0690 6188 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
22:09:08.0756 6188 QWAVE - ok
22:09:08.0827 6188 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
22:09:08.0846 6188 QWAVEdrv - ok
22:09:08.0967 6188 RapiMgr (ed4e69c31ef566266be13638ebe9da56) C:\Windows\WindowsMobile\rapimgr.dll
22:09:08.0968 6188 RapiMgr - ok
22:09:08.0997 6188 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
22:09:09.0016 6188 RasAcd - ok
22:09:09.0053 6188 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
22:09:09.0065 6188 RasAuto - ok
22:09:09.0103 6188 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:09:09.0105 6188 Rasl2tp - ok
22:09:09.0151 6188 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
22:09:09.0156 6188 RasMan - ok
22:09:09.0209 6188 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
22:09:09.0210 6188 RasPppoe - ok
22:09:09.0329 6188 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
22:09:09.0331 6188 RasSstp - ok
22:09:09.0444 6188 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
22:09:09.0448 6188 rdbss - ok
22:09:09.0504 6188 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:09:09.0505 6188 RDPCDD - ok
22:09:09.0593 6188 rdpdr (ae23e79b13feb62939e2ca1189e71735) C:\Windows\system32\DRIVERS\rdpdr.sys
22:09:09.0609 6188 rdpdr - ok
22:09:09.0616 6188 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
22:09:09.0617 6188 RDPENCDD - ok
22:09:09.0697 6188 RDPWD (ae4bd9e1c33d351d8e607fc81f15160c) C:\Windows\system32\drivers\RDPWD.sys
22:09:09.0700 6188 RDPWD - ok
22:09:09.0768 6188 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
22:09:09.0771 6188 RemoteAccess - ok
22:09:09.0850 6188 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
22:09:09.0855 6188 RemoteRegistry - ok
22:09:09.0884 6188 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
22:09:09.0886 6188 RpcLocator - ok
22:09:09.0988 6188 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
22:09:10.0050 6188 RpcSs - ok
22:09:10.0090 6188 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
22:09:10.0092 6188 rspndr - ok
22:09:10.0136 6188 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:09:10.0137 6188 SamSs - ok
22:09:10.0192 6188 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
22:09:10.0194 6188 sbp2port - ok
22:09:10.0503 6188 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
22:09:10.0585 6188 SBSDWSCService - ok
22:09:10.0658 6188 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
22:09:10.0670 6188 SCardSvr - ok
22:09:10.0945 6188 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
22:09:10.0976 6188 Schedule - ok
22:09:11.0023 6188 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
22:09:11.0025 6188 SCPolicySvc - ok
22:09:11.0124 6188 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
22:09:11.0129 6188 SDRSVC - ok
22:09:11.0198 6188 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:09:11.0199 6188 secdrv - ok
22:09:11.0226 6188 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
22:09:11.0228 6188 seclogon - ok
22:09:11.0426 6188 Secunia PSI Agent (2d0599dd0124764fc939c59985c860de) C:\Program Files (x86)\Secunia\PSI (RC2)\PSIA.exe
22:09:11.0488 6188 Secunia PSI Agent - ok
22:09:11.0540 6188 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\System32\sens.dll
22:09:11.0542 6188 SENS - ok
22:09:11.0573 6188 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
22:09:11.0574 6188 Serenum - ok
22:09:11.0636 6188 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
22:09:11.0639 6188 Serial - ok
22:09:11.0683 6188 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
22:09:11.0684 6188 sermouse - ok
22:09:11.0729 6188 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
22:09:11.0732 6188 SessionEnv - ok
22:09:11.0764 6188 sffdisk (541b32f8d6b2dcb92ec43bab267e79ea) C:\Windows\system32\drivers\sffdisk.sys
22:09:11.0765 6188 sffdisk - ok
22:09:11.0823 6188 sffp_mmc (446e7cca3325c7e0ae0fde7f73cdd9c2) C:\Windows\system32\drivers\sffp_mmc.sys
22:09:11.0824 6188 sffp_mmc - ok
22:09:11.0843 6188 sffp_sd (67edc221348911e895af51c57d9a3725) C:\Windows\system32\drivers\sffp_sd.sys
22:09:11.0845 6188 sffp_sd - ok
22:09:11.0865 6188 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
22:09:11.0880 6188 sfloppy - ok
22:09:11.0957 6188 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll
22:09:11.0963 6188 SharedAccess - ok
22:09:12.0046 6188 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
22:09:12.0055 6188 ShellHWDetection - ok
22:09:12.0073 6188 SiSRaid2 (08dda16573fa44f8b13afe74597ad2e5) C:\Windows\system32\drivers\sisraid2.sys
22:09:12.0075 6188 SiSRaid2 - ok
22:09:12.0112 6188 SiSRaid4 (c52259e9daaf3890d572d87ffee0979e) C:\Windows\system32\drivers\sisraid4.sys
22:09:12.0114 6188 SiSRaid4 - ok
22:09:12.0219 6188 SIVDRIVER (cf5b9b961aac00ec88f303e241189d70) C:\Windows\system32\Drivers\SIVX64.sys
22:09:12.0221 6188 SIVDRIVER - ok
22:09:12.0429 6188 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
22:09:12.0561 6188 slsvc - ok
22:09:12.0674 6188 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
22:09:12.0678 6188 SLUINotify - ok
22:09:12.0715 6188 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
22:09:12.0717 6188 Smb - ok
22:09:12.0771 6188 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
22:09:12.0784 6188 SNMPTRAP - ok
22:09:12.0830 6188 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
22:09:12.0831 6188 spldr - ok
22:09:12.0932 6188 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
22:09:12.0937 6188 Spooler - ok
22:09:13.0016 6188 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
22:09:13.0026 6188 srv - ok
22:09:13.0061 6188 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
22:09:13.0065 6188 srv2 - ok
22:09:13.0082 6188 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
22:09:13.0085 6188 srvnet - ok
22:09:13.0124 6188 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
22:09:13.0135 6188 SSDPSRV - ok
22:09:13.0232 6188 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
22:09:13.0264 6188 SstpSvc - ok
22:09:13.0330 6188 Steam Client Service - ok
22:09:13.0459 6188 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
22:09:13.0469 6188 stisvc - ok
22:09:13.0508 6188 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
22:09:13.0510 6188 swenum - ok
22:09:13.0575 6188 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
22:09:13.0616 6188 swprv - ok
22:09:13.0655 6188 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
22:09:13.0656 6188 Symc8xx - ok
22:09:13.0685 6188 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
22:09:13.0686 6188 Sym_hi - ok
22:09:13.0712 6188 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
22:09:13.0713 6188 Sym_u3 - ok
22:09:13.0871 6188 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
22:09:13.0898 6188 SysMain - ok
22:09:13.0930 6188 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
22:09:13.0943 6188 TabletInputService - ok
22:09:14.0004 6188 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
22:09:14.0025 6188 TapiSrv - ok
22:09:14.0082 6188 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
22:09:14.0097 6188 TBS - ok
22:09:14.0337 6188 Tcpip (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\drivers\tcpip.sys
22:09:14.0364 6188 Tcpip - ok
22:09:14.0513 6188 Tcpip6 (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\DRIVERS\tcpip.sys
22:09:14.0522 6188 Tcpip6 - ok
22:09:14.0690 6188 tcpipreg (fd8fde859e38e40a20085ebb0c22b416) C:\Windows\system32\drivers\tcpipreg.sys
22:09:14.0691 6188 tcpipreg - ok
22:09:14.0746 6188 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
22:09:14.0747 6188 TDPIPE - ok
22:09:14.0781 6188 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
22:09:14.0783 6188 TDTCP - ok
22:09:14.0814 6188 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
22:09:14.0817 6188 tdx - ok
22:09:14.0852 6188 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
22:09:14.0854 6188 TermDD - ok
22:09:14.0904 6188 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
22:09:14.0921 6188 TermService - ok
22:09:14.0997 6188 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
22:09:15.0000 6188 Themes - ok
22:09:15.0060 6188 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
22:09:15.0062 6188 THREADORDER - ok
22:09:15.0122 6188 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
22:09:15.0147 6188 TrkWks - ok
22:09:15.0186 6188 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
22:09:15.0187 6188 TrustedInstaller - ok
22:09:15.0237 6188 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:09:15.0239 6188 tssecsrv - ok
22:09:15.0312 6188 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
22:09:15.0313 6188 tunmp - ok
22:09:15.0344 6188 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
22:09:15.0345 6188 tunnel - ok
22:09:15.0372 6188 uagp35 (e4722dfbd6232acf17543ef2c2dce8d2) C:\Windows\system32\drivers\uagp35.sys
22:09:15.0374 6188 uagp35 - ok
22:09:15.0421 6188 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
22:09:15.0427 6188 udfs - ok
22:09:15.0489 6188 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
22:09:15.0492 6188 UI0Detect - ok
22:09:15.0562 6188 uliagpkx (5663d7696abbe71f8c9d915c5374118a) C:\Windows\system32\drivers\uliagpkx.sys
22:09:15.0564 6188 uliagpkx - ok
22:09:15.0605 6188 uliahci (6030b68e86a30d1b315b51c4d7778b16) C:\Windows\system32\drivers\uliahci.sys
22:09:15.0613 6188 uliahci - ok
22:09:15.0650 6188 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
22:09:15.0653 6188 UlSata - ok
22:09:15.0686 6188 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
22:09:15.0697 6188 ulsata2 - ok
22:09:15.0726 6188 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
22:09:15.0728 6188 umbus - ok
22:09:15.0784 6188 UmRdpService (dc5e34f189b827199b9cc8481c648269) C:\Windows\System32\umrdp.dll
22:09:15.0791 6188 UmRdpService - ok
22:09:15.0877 6188 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
22:09:15.0892 6188 upnphost - ok
22:09:15.0918 6188 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys
22:09:15.0920 6188 USBAAPL64 - ok
22:09:16.0082 6188 usbaudio (c6ba890de6e41857fbe84175519cae7d) C:\Windows\system32\drivers\usbaudio.sys
22:09:16.0092 6188 usbaudio - ok
22:09:16.0151 6188 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
22:09:16.0153 6188 usbccgp - ok
22:09:16.0232 6188 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
22:09:16.0235 6188 usbcir - ok
22:09:16.0244 6188 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
22:09:16.0246 6188 usbehci - ok
22:09:16.0284 6188 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
22:09:16.0292 6188 usbhub - ok
22:09:16.0303 6188 usbohci (e406b003a354776d317762694956b0fc) C:\Windows\system32\DRIVERS\usbohci.sys
22:09:16.0305 6188 usbohci - ok
22:09:16.0371 6188 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
22:09:16.0380 6188 usbprint - ok
22:09:16.0454 6188 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys
22:09:16.0455 6188 usbscan - ok
22:09:16.0489 6188 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:09:16.0491 6188 USBSTOR - ok
22:09:16.0690 6188 USBTINSP (bb7a161ef5f0d03cc9755579a8aa23d0) C:\Windows\system32\DRIVERS\tinspusb.sys
22:09:16.0695 6188 USBTINSP - ok
22:09:16.0725 6188 usbuhci (7bf55d2538740b25936e93553e5d190d) C:\Windows\system32\DRIVERS\usbuhci.sys
22:09:16.0726 6188 usbuhci - ok
22:09:16.0764 6188 usb_rndisx (1e36bb1a3c5aaf2aa9fa9a126df8c16c) C:\Windows\system32\DRIVERS\usb8023x.sys
22:09:16.0765 6188 usb_rndisx - ok
22:09:16.0805 6188 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
22:09:16.0807 6188 UxSms - ok
22:09:16.0875 6188 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
22:09:16.0928 6188 vds - ok
22:09:16.0964 6188 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
22:09:16.0965 6188 vga - ok
22:09:17.0003 6188 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
22:09:17.0005 6188 VgaSave - ok
22:09:17.0058 6188 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
22:09:17.0059 6188 viaide - ok
22:09:17.0077 6188 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
22:09:17.0079 6188 volmgr - ok
22:09:17.0152 6188 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
22:09:17.0174 6188 volmgrx - ok
22:09:17.0236 6188 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
22:09:17.0257 6188 volsnap - ok
22:09:17.0402 6188 vpnagent (fb8ccef6f281c0725f88181b4bd8a226) C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
22:09:17.0415 6188 vpnagent - ok
22:09:17.0474 6188 vpnva (67d62d30f4688d5cfe7c26db3f98da1e) C:\Windows\system32\DRIVERS\vpnva64.sys
22:09:17.0484 6188 vpnva - ok
22:09:17.0562 6188 vsmraid (410ae2c141142c58bc617fc2c677f8b0) C:\Windows\system32\drivers\vsmraid.sys
22:09:17.0565 6188 vsmraid - ok
22:09:17.0840 6188 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
22:09:17.0898 6188 VSS - ok
22:09:18.0123 6188 VST64HWBS2 (23de6f86133361c8dd5410e08a32bb3e) C:\Windows\system32\DRIVERS\VSTBS26.SYS
22:09:18.0129 6188 VST64HWBS2 - ok
22:09:18.0266 6188 VST64_DPV (e6cd7f641916484b0141d191a390d866) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
22:09:18.0318 6188 VST64_DPV - ok
22:09:18.0468 6188 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
22:09:18.0503 6188 W32Time - ok
22:09:18.0576 6188 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
22:09:18.0577 6188 WacomPen - ok
22:09:18.0717 6188 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
22:09:18.0720 6188 Wanarp - ok
22:09:18.0729 6188 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
22:09:18.0730 6188 Wanarpv6 - ok
22:09:18.0882 6188 wbengine (48eee289df9e4989128b2283f3eeacc6) C:\Windows\system32\wbengine.exe
22:09:18.0941 6188 wbengine - ok
22:09:19.0050 6188 WcesComm (382a7b0b632ec98de5f0658da9de6159) C:\Windows\WindowsMobile\wcescomm.dll
22:09:19.0053 6188 WcesComm - ok
22:09:19.0189 6188 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
22:09:19.0205 6188 wcncsvc - ok
22:09:19.0243 6188 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
22:09:19.0246 6188 WcsPlugInService - ok
22:09:19.0393 6188 Wd (59b501b0a04c9672142b7ffa2bdbf663) C:\Windows\system32\drivers\wd.sys
22:09:19.0395 6188 Wd - ok
22:09:19.0530 6188 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
22:09:19.0630 6188 Wdf01000 - ok
22:09:19.0787 6188 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
22:09:19.0790 6188 WdiServiceHost - ok
22:09:19.0798 6188 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
22:09:19.0800 6188 WdiSystemHost - ok
22:09:19.0879 6188 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
22:09:19.0889 6188 WebClient - ok
22:09:19.0937 6188 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
22:09:19.0947 6188 Wecsvc - ok
22:09:20.0013 6188 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
22:09:20.0017 6188 wercplsupport - ok
22:09:20.0090 6188 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
22:09:20.0094 6188 WerSvc - ok
22:09:20.0194 6188 winachsf (a53cde6beea165fe9b430476eede3c54) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
22:09:20.0208 6188 winachsf - ok
22:09:20.0244 6188 WinDefend - ok
22:09:20.0256 6188 WinHttpAutoProxySvc - ok
22:09:20.0396 6188 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
22:09:20.0400 6188 Winmgmt - ok
22:09:20.0731 6188 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
22:09:20.0834 6188 WinRM - ok
22:09:21.0023 6188 winusb (7f2f9e48566b2087f2aaad258cb2a8d4) C:\Windows\system32\DRIVERS\winusb.sys
22:09:21.0024 6188 winusb - ok
22:09:21.0104 6188 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
22:09:21.0159 6188 Wlansvc - ok
22:09:21.0605 6188 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:09:21.0680 6188 wlidsvc - ok
22:09:21.0894 6188 WmiAcpi (ae34218455d5dc12d1e45de85f160346) C:\Windows\system32\drivers\wmiacpi.sys
22:09:21.0895 6188 WmiAcpi - ok
22:09:22.0063 6188 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
22:09:22.0066 6188 wmiApSrv - ok
22:09:22.0207 6188 WMPNetworkSvc - ok
22:09:22.0258 6188 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
22:09:22.0263 6188 WPCSvc - ok
22:09:22.0350 6188 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
22:09:22.0363 6188 WPDBusEnum - ok
22:09:22.0391 6188 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
22:09:22.0393 6188 WpdUsb - ok
22:09:22.0596 6188 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:09:22.0603 6188 WPFFontCache_v0400 - ok
22:09:22.0668 6188 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
22:09:22.0669 6188 ws2ifsl - ok
22:09:22.0725 6188 wscsvc (9ea3e6d0ef7a5c2b9181961052a4b01a) C:\Windows\System32\wscsvc.dll
22:09:22.0728 6188 wscsvc - ok
22:09:22.0738 6188 WSearch - ok
22:09:22.0898 6188 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
22:09:22.0951 6188 wuauserv - ok
22:09:23.0187 6188 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:09:23.0189 6188 WUDFRd - ok
22:09:23.0209 6188 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
22:09:23.0215 6188 wudfsvc - ok
22:09:23.0324 6188 XAudio (f22e443518bc599d12888daf292a56d8) C:\Windows\system32\DRIVERS\xaudio64.sys
22:09:23.0330 6188 XAudio - ok
22:09:23.0384 6188 XAudioService (963c27034bba4ac52a13f7a3c657c708) C:\Windows\system32\DRIVERS\xaudio64.exe
22:09:23.0397 6188 XAudioService - ok
22:09:23.0461 6188 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:09:24.0120 6188 \Device\Harddisk0\DR0 - ok
22:09:24.0153 6188 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR5
22:09:24.0376 6188 \Device\Harddisk5\DR5 - ok
22:09:24.0384 6188 Boot (0x1200) (b910d32dbc857697e9a637a2540901e3) \Device\Harddisk0\DR0\Partition0
22:09:24.0385 6188 \Device\Harddisk0\DR0\Partition0 - ok
22:09:24.0394 6188 Boot (0x1200) (4dcdeb71fe132ab59d3ba11bf71665f3) \Device\Harddisk5\DR5\Partition0
22:09:24.0396 6188 \Device\Harddisk5\DR5\Partition0 - ok
22:09:24.0397 6188 ============================================================
22:09:24.0397 6188 Scan finished
22:09:24.0397 6188 ============================================================
22:09:24.0413 4996 Detected object count: 0
22:09:24.0413 4996 Actual detected object count: 0
22:11:05.0362 3464 Deinitialize success

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-06 22:11:24
-----------------------------
22:11:24.525 OS Version: Windows x64 6.0.6002 Service Pack 2
22:11:24.525 Number of processors: 2 586 0x4303
22:11:24.550 ComputerName: MARCUS-PC UserName: Marcus
22:11:30.894 Initialize success
22:14:07.075 AVAST engine defs: 12080601
22:14:51.514 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000004e
22:14:51.517 Disk 0 Vendor: WDC_WD75 30.0 Size: 715404MB BusType: 6
22:14:51.535 Disk 0 MBR read successfully
22:14:51.541 Disk 0 MBR scan
22:14:51.567 Disk 0 Windows VISTA default MBR code
22:14:51.604 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 715402 MB offset 2048
22:14:51.731 Disk 0 scanning C:\Windows\system32\drivers
22:15:21.574 Service scanning
22:16:21.295 Modules scanning
22:16:21.307 Disk 0 trace - called modules:
22:16:21.331 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys storport.sys hal.dll nvstor64.sys
22:16:21.337 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004ce2790]
22:16:21.342 3 CLASSPNP.SYS[fffffa6001209c33] -> nt!IofCallDriver -> [0xfffffa80048a6c60]
22:16:21.348 5 acpi.sys[fffffa60008f9fde] -> nt!IofCallDriver -> \Device\0000004e[0xfffffa8004882060]
22:16:26.920 AVAST engine scan C:\Windows
22:16:44.143 AVAST engine scan C:\Windows\system32
22:33:21.206 AVAST engine scan C:\Windows\system32\drivers
22:33:59.407 AVAST engine scan C:\Users\Marcus
23:09:51.531 Disk 0 MBR has been saved successfully to "C:\Users\Marcus\Documents\MBR.dat"
23:09:51.563 The log file has been saved successfully to "C:\Users\Marcus\Documents\aswMBR.txt"

#4 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 07 August 2012 - 07:06 AM

C:\Users\Marcus\AppData\Local\{E3D1465C-DAA5-11E1-8270-B8AC6F996F26}\chrome\content\browser.xul JS/Redirector.NIQ trojan cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Roaming\clnsc.dll a variant of Win32/Kryptik.AJLB trojan cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\computer class\sumo.exe multiple threats cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\Programme\Setup_FreeBurner.exe Win32/Toolbar.Widgi application cleaned by deleting - quarantined

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 PM

Posted 07 August 2012 - 07:08 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#6 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 07 August 2012 - 04:15 PM

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Datenbank Version: v2012.08.07.04

Windows Vista Service Pack 2 x64 NTFS
Internet Explorer 9.0.8112.16421
Marcus :: MARCUS-PC [Administrator]

8/7/2012 7:17:40
mbam-log-2012-08-07 (07-17-40).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|J:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM | P2P
Deaktivierte Suchlaufeinstellungen:
Durchsuchte Objekte: 727402
Laufzeit: 2 Stunde(n), 58 Minute(n), 34 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

#7 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 07 August 2012 - 04:21 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Marcus (administrator) on 07-08-2012 at 16:17:30
Microsoft® Windows Vista™ Ultimate Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows-IP-Konfiguration

Der DNS-Aufl”sungscache wurde geleert.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.10sek.com
127.0.0.1 10sek.com
127.0.0.1 www.123topsearch.com
127.0.0.1 123topsearch.com

There are 15032 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64 = LAN-Verbindung 2 (Disconnected)
NVIDIA nForce 10/100 Mbps Ethernet = LAN-Verbindung (Connected)


# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# Ende der IPv4-Konfiguration



Windows-IP-Konfiguration

Hostname . . . . . . . . . . . . : Marcus-PC
Prim„res DNS-Suffix . . . . . . . :
Knotentyp . . . . . . . . . . . . : Hybrid
IP-Routing aktiviert . . . . . . : Nein
WINS-Proxy aktiviert . . . . . . : Nein

Ethernet-Adapter LAN-Verbindung:

Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet
Physikalische Adresse . . . . . . : 00-1D-60-C1-B1-97
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Verbindungslokale IPv6-Adresse . : fe80::189d:1538:af8d:b76f%8(Bevorzugt)
IPv4-Adresse . . . . . . . . . . : 192.168.1.137(Bevorzugt)
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Lease erhalten. . . . . . . . . . : Monday, August 06, 2012 10:27:50
Lease l„uft ab. . . . . . . . . . : Wednesday, August 08, 2012 10:27:57
Standardgateway . . . . . . . . . : 192.168.1.3
DHCP-Server . . . . . . . . . . . : 192.168.1.3
DHCPv6-IAID . . . . . . . . . . . : 201334112
DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-0E-D8-CE-7D-00-1D-60-C1-B1-97
DNS-Server . . . . . . . . . . . : 208.180.42.68
208.180.42.100
NetBIOS ber TCP/IP . . . . . . . : Aktiviert

Tunneladapter LAN-Verbindung*:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : isatap.{078C3FC6-A7B3-45F8-B002-DF55328C3A06}
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 7:

Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physikalische Adresse . . . . . . : 02-00-54-55-4E-01
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
IPv6-Adresse. . . . . . . . . . . : 2001:0:9d38:953c:c8f:2e8c:3f57:fe76(Bevorzugt)
Verbindungslokale IPv6-Adresse . : fe80::c8f:2e8c:3f57:fe76%9(Bevorzugt)
Standardgateway . . . . . . . . . : ::
NetBIOS ber TCP/IP . . . . . . . : Deaktiviert
Server: rdns01.suddenlink.net
Address: 208.180.42.68

Name: google.com
Addresses: 2001:4860:4002:802::1008
74.125.227.64
74.125.227.65
74.125.227.66
74.125.227.67
74.125.227.68
74.125.227.69
74.125.227.70
74.125.227.71
74.125.227.72
74.125.227.73
74.125.227.78



Ping wird ausgefhrt fr google.com [74.125.227.65] mit 32 Bytes Daten:

Antwort von 74.125.227.65: Bytes=32 Zeit=21ms TTL=55

Antwort von 74.125.227.65: Bytes=32 Zeit=20ms TTL=55



Ping-Statistik fr 74.125.227.65:

Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0 (0% Verlust),

Ca. Zeitangaben in Millisek.:

Minimum = 20ms, Maximum = 21ms, Mittelwert = 20ms

Server: rdns01.suddenlink.net
Address: 208.180.42.68

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70



Ping wird ausgefhrt fr yahoo.com [209.191.122.70] mit 32 Bytes Daten:

Antwort von 209.191.122.70: Bytes=32 Zeit=24ms TTL=54

Antwort von 209.191.122.70: Bytes=32 Zeit=23ms TTL=54



Ping-Statistik fr 209.191.122.70:

Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0 (0% Verlust),

Ca. Zeitangaben in Millisek.:

Minimum = 23ms, Maximum = 24ms, Mittelwert = 23ms

Server: rdns01.suddenlink.net
Address: 208.180.42.68

Name: bleepingcomputer.com
Address: 208.43.87.2



Ping wird ausgefhrt fr bleepingcomputer.com [208.43.87.2] mit 32 Bytes Daten:

Zeitberschreitung der Anforderung.

Zeitberschreitung der Anforderung.



Ping-Statistik fr 208.43.87.2:

Pakete: Gesendet = 2, Empfangen = 0, Verloren = 2 (100% Verlust),



Ping wird ausgefhrt fr 127.0.0.1 mit 32 Bytes Daten:

Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128

Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128



Ping-Statistik fr 127.0.0.1:

Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0 (0% Verlust),

Ca. Zeitangaben in Millisek.:

Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms

===========================================================================
Schnittstellenliste
8 ...00 1d 60 c1 b1 97 ...... NVIDIA nForce 10/100 Mbps Ethernet
1 ........................... Software Loopback Interface 1
14 ...00 00 00 00 00 00 00 e0 isatap.{078C3FC6-A7B3-45F8-B002-DF55328C3A06}
9 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4-Routentabelle
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik
0.0.0.0 0.0.0.0 192.168.1.3 192.168.1.137 20
127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306
127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306
127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
192.168.1.0 255.255.255.0 Auf Verbindung 192.168.1.137 276
192.168.1.137 255.255.255.255 Auf Verbindung 192.168.1.137 276
192.168.1.255 255.255.255.255 Auf Verbindung 192.168.1.137 276
224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306
224.0.0.0 240.0.0.0 Auf Verbindung 192.168.1.137 276
255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
255.255.255.255 255.255.255.255 Auf Verbindung 192.168.1.137 276
===========================================================================
St„ndige Routen:
Keine

IPv6-Routentabelle
===========================================================================
Aktive Routen:
If Metrik Netzwerkziel Gateway
9 18 ::/0 Auf Verbindung
1 306 ::1/128 Auf Verbindung
9 18 2001::/32 Auf Verbindung
9 266 2001:0:9d38:953c:c8f:2e8c:3f57:fe76/128
Auf Verbindung
8 276 fe80::/64 Auf Verbindung
9 266 fe80::/64 Auf Verbindung
9 266 fe80::c8f:2e8c:3f57:fe76/128
Auf Verbindung
8 276 fe80::189d:1538:af8d:b76f/128
Auf Verbindung
1 306 ff00::/8 Auf Verbindung
9 266 ff00::/8 Auf Verbindung
8 276 ff00::/8 Auf Verbindung
===========================================================================
St„ndige Routen:
Keine
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/07/2012 07:04:18 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen bereits aktiven Komponentenversion.
Die widersprüchlichen Komponenten sind:
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (08/07/2012 00:09:18 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen bereits aktiven Komponentenversion.
Die widersprüchlichen Komponenten sind:
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (08/07/2012 00:09:12 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen bereits aktiven Komponentenversion.
Die widersprüchlichen Komponenten sind:
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (08/06/2012 02:00:28 AM) (Source: OneTouch 4.0 Monitor) (User: )
Description: Unable to Interact with Console Session Object [Der RPC-Server ist nicht verfügbar.].

Error: (08/06/2012 01:06:00 AM) (Source: OneTouch 4.0 Monitor) (User: )
Description: Unable to Interact with Console Session Object [Der RPC-Server ist nicht verfügbar.].

Error: (08/05/2012 11:44:54 PM) (Source: OneTouch 4.0 Monitor) (User: )
Description: Unable to Interact with Console Session Object [Der RPC-Server ist nicht verfügbar.].

Error: (08/05/2012 01:07:45 AM) (Source: OneTouch 4.0 Monitor) (User: )
Description: Unable to Interact with Console Session Object [Der RPC-Server ist nicht verfügbar.].

Error: (08/05/2012 00:34:00 AM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\NANCY\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\LOW\CONTENT.IE5\XEYMEMG5\MERGE[1].GIF> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext: Anwendung, SystemIndex Katalog

Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)

Error: (08/04/2012 10:44:38 PM) (Source: OneTouch 4.0 Monitor) (User: )
Description: Unable to Interact with Console Session Object [Der RPC-Server ist nicht verfügbar.].

Error: (08/03/2012 11:47:27 PM) (Source: OneTouch 4.0 Monitor) (User: )
Description: Unable to Interact with Console Session Object [Der RPC-Server ist nicht verfügbar.].


System errors:
=============
Error: (08/06/2012 10:28:17 AM) (Source: Service Control Manager) (User: )
Description: i8042prt

Error: (08/06/2012 10:28:16 AM) (Source: Service Control Manager) (User: )
Description: MBAMDrvService%%2

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue192.168.2.2:63331

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue192.168.100.10:6331

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue192.168.1.102:63331

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue192.168.1.101:63331

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue192.168.1.101:6331

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue192.168.1.100:63331

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue192.168.1.100:6331

Error: (08/06/2012 10:27:54 AM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue169.254.183.111:63331


Microsoft Office Sessions:
=========================
Error: (05/08/2011 00:54:14 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/04/2008 07:20:42 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 8168 seconds with 4560 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Apple Mobile Device Support (Version: 3.1.0.62)
BOINC (Version: 5.10.45)
Bonjour (Version: 2.0.2.0)
CCleaner (Version: 3.18)
Digital Image Tool 1.3
Fallout 3 (Version: 1.00.0000)
iTunes (Version: 9.2.1.5)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - DEU (Version: 9.0.30729)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (Version: 6.1.5288.17011)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - deu (Version: 3.5.30729)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32 (Version: 6.1.5295.17011)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Grafiktreiber 275.33 (Version: 275.33)
NVIDIA Install Application (Version: 2.275.78.0)
NVIDIA Systemsteuerung 275.33 (Version: 275.33)
NVIDIA Update 1.3.5 (Version: 1.3.5)
NVIDIA Update Components (Version: 1.3.5)
O&O DiskRecovery (Version: 4.1.1334)
Octoshape add-in for Adobe Flash Player
OneTouch 4.0 (Version: 4.1.0)
PVSonyDll (Version: 1.00.0001)
Screenpresso (Version: 1.3.0.0)
Soft Data Fax Modem with SmartCP (Version: 7.74.00)
Ultimate Extras sounds from Microsoft® Tinker™
Unity Web Player (Version: )
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Vista Codec x64 Components (Version: 1.5.2.0)
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows-Soundschemas
Windows-Treiberpaket - Pinnacle Systems (BENDER) Media (11/21/2006 2.0.19.0) (Version: 11/21/2006 2.0.19.0)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)

========================= Memory info: ===================================

Percentage of memory in use: 74%
Total physical RAM: 4093.63 MB
Available physical RAM: 1056.17 MB
Total Pagefile: 8415.27 MB
Available Pagefile: 5093.57 MB
Total Virtual: 4095.88 MB
Available Virtual: 3996.66 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:698.63 GB) (Free:279.66 GB) NTFS
7 Drive j: (FreeAgent Drive) (Fixed) (Total:465.76 GB) (Free:88.4 GB) NTFS

========================= Users: ========================================

Benutzerkonten fr \\MARCUS-PC

Administrator Gast Marcus
Nancy UpdatusUser
Der Befehl wurde erfolgreich ausgefhrt.


**** End of log ****

#8 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 07 August 2012 - 04:23 PM

The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-14 23:20] - [2012-01-03 09:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-09 21:01] - [2012-03-30 07:45] - 1422720 ____A (Microsoft Corporation) AC8D5728E6AD6A7C4819D9A67008337A

C:\Windows\System32\dnsrslvr.dll
[2011-04-12 12:56] - [2011-03-02 11:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2009-08-11 23:50] - [2009-04-11 02:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-06-14 00:33] - [2012-04-23 11:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****

#9 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 07 August 2012 - 04:30 PM

# AdwCleaner v1.800 - Logfile created 08/07/2012 at 16:25:12
# Updated 01/08/2012 by Xplode
# Operating system : Windows ™ Vista Ultimate Service Pack 2 (64 bits)
# User : Marcus - MARCUS-PC
# Running from : C:\Users\Marcus\Downloads\computer class\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\ProgramData\boost_interprocess
Deleted on reboot : C:\ProgramData\Tarma Installer
File Deleted : C:\Users\Marcus\AppData\Local\Temp\searchqutoolbar-manifest.xml
File Deleted : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\81gd8vna.default\searchplugins\Search_Results.xml
File Deleted : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml

***** [Registry] *****

Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Key Deleted : HKLM\SOFTWARE\Wise Solutions
[x64] Key Deleted : HKLM\SOFTWARE\DataMngr

***** [Registre - GUID] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4F11ACBB-393F-4c86-A214-FF3D0D155CC3}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4F11ACBB-393F-4c86-A214-FF3D0D155CC3}]
[x64] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2421}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\81gd8vna.default\prefs.js

C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\81gd8vna.default\user.js ... Deleted !

Deleted : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=0&systemid=421&sr=0&q=");

Profile name : default
File : C:\Users\Nancy\AppData\Roaming\Mozilla\Firefox\Profiles\pgxbvnxa.default\prefs.js

Deleted : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=0&systemid=421&sr=0&q=");

*************************

AdwCleaner[R1].txt - [3024 octets] - [07/08/2012 16:24:23]
AdwCleaner[S1].txt - [2598 octets] - [07/08/2012 16:25:12]

########## EOF - C:\AdwCleaner[S1].txt - [2726 octets] ##########

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 PM

Posted 07 August 2012 - 04:58 PM

FSS log is incomplete.Please run FSS again

#11 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 07 August 2012 - 05:14 PM

I run it twice and this is what I am getting:

Farbar Service Scanner Version: 06-08-2012
Ran by Marcus (administrator) on 07-08-2012 at 17:13:55
Running from "C:\Users\Marcus\Downloads\computer class"
Microsoft® Windows Vista™ Ultimate Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-14 23:20] - [2012-01-03 09:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-09 21:01] - [2012-03-30 07:45] - 1422720 ____A (Microsoft Corporation) AC8D5728E6AD6A7C4819D9A67008337A

C:\Windows\System32\dnsrslvr.dll
[2011-04-12 12:56] - [2011-03-02 11:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2009-08-11 23:50] - [2009-04-11 02:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2009-08-11 23:49] - [2009-04-11 02:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-06-14 00:33] - [2012-04-23 11:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2009-08-11 23:50] - [2009-04-11 02:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 PM

Posted 07 August 2012 - 05:30 PM

That looks good

Download

Hosts fix

Run it

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vista/Turn-System-Restore-on-or-off


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#13 Timber_Wolf

Timber_Wolf
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:59 PM

Posted 08 August 2012 - 12:57 PM

Thanks,
everything works fine.

Guess what.
I used the scanners you told me to use on my Vista computer on my Windows 7, and right now I cam killing a couple of Toolbar.Zugo applocations.

Both computers run different virus scanners and they both while up to date didn't find anything.


Tanks, and you can close this here and take care of others.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 PM

Posted 08 August 2012 - 02:31 PM

You're most welcome :thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users