Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PUP.mywebsearch


  • Please log in to reply
13 replies to this topic

#1 nick2222

nick2222

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 08 August 2012 - 02:13 PM

My computer was running slow so I ran a scan with malwarebytes. It showed a bunch of things with PUP.mywebsearch so I checked them all and deleted them. I ran another scan and it came up clean but my computer is still running slow when trying to load websites. I get alot of try again or in the bottom corner saying its trying to connect to different sites like google-analytics.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 08 August 2012 - 02:24 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 nick2222

nick2222
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 08 August 2012 - 04:26 PM

16:23:41.0568 2764 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
16:23:41.0964 2764 ============================================================
16:23:41.0964 2764 Current date / time: 2012/08/08 16:23:41.0964
16:23:41.0964 2764 SystemInfo:
16:23:41.0964 2764
16:23:41.0964 2764 OS Version: 6.1.7601 ServicePack: 1.0
16:23:41.0964 2764 Product type: Workstation
16:23:41.0964 2764 ComputerName: CHRIS-PC
16:23:41.0965 2764 UserName: CHRIS
16:23:41.0965 2764 Windows directory: C:\Windows
16:23:41.0965 2764 System windows directory: C:\Windows
16:23:41.0965 2764 Processor architecture: Intel x86
16:23:41.0965 2764 Number of processors: 2
16:23:41.0965 2764 Page size: 0x1000
16:23:41.0965 2764 Boot type: Normal boot
16:23:41.0965 2764 ============================================================
16:23:43.0483 2764 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:23:43.0491 2764 ============================================================
16:23:43.0491 2764 \Device\Harddisk0\DR0:
16:23:43.0491 2764 MBR partitions:
16:23:43.0491 2764 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681
16:23:43.0491 2764 ============================================================
16:23:43.0514 2764 C: <-> \Device\Harddisk0\DR0\Partition0
16:23:43.0515 2764 ============================================================
16:23:43.0515 2764 Initialize success
16:23:43.0515 2764 ============================================================
16:23:54.0333 1364 ============================================================
16:23:54.0333 1364 Scan started
16:23:54.0333 1364 Mode: Manual; TDLFS;
16:23:54.0333 1364 ============================================================
16:23:54.0963 1364 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
16:23:54.0969 1364 1394ohci - ok
16:23:55.0014 1364 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
16:23:55.0028 1364 ACPI - ok
16:23:55.0044 1364 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
16:23:55.0046 1364 AcpiPmi - ok
16:23:55.0138 1364 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:23:55.0140 1364 AdobeARMservice - ok
16:23:55.0413 1364 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:23:55.0426 1364 AdobeFlashPlayerUpdateSvc - ok
16:23:55.0461 1364 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
16:23:55.0468 1364 adp94xx - ok
16:23:55.0493 1364 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
16:23:55.0499 1364 adpahci - ok
16:23:55.0532 1364 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
16:23:55.0539 1364 adpu320 - ok
16:23:55.0568 1364 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
16:23:55.0569 1364 AeLookupSvc - ok
16:23:55.0616 1364 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
16:23:55.0620 1364 AFD - ok
16:23:55.0654 1364 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
16:23:55.0656 1364 agp440 - ok
16:23:55.0687 1364 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
16:23:55.0689 1364 aic78xx - ok
16:23:55.0743 1364 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
16:23:55.0745 1364 ALG - ok
16:23:55.0757 1364 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
16:23:55.0759 1364 aliide - ok
16:23:55.0772 1364 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
16:23:55.0774 1364 amdagp - ok
16:23:55.0791 1364 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
16:23:55.0793 1364 amdide - ok
16:23:55.0819 1364 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
16:23:55.0821 1364 AmdK8 - ok
16:23:55.0830 1364 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys
16:23:55.0832 1364 AmdPPM - ok
16:23:55.0875 1364 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
16:23:55.0877 1364 amdsata - ok
16:23:55.0910 1364 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
16:23:55.0914 1364 amdsbs - ok
16:23:55.0926 1364 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
16:23:55.0927 1364 amdxata - ok
16:23:55.0952 1364 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
16:23:55.0954 1364 AppID - ok
16:23:55.0996 1364 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
16:23:55.0997 1364 AppIDSvc - ok
16:23:56.0027 1364 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
16:23:56.0029 1364 Appinfo - ok
16:23:56.0140 1364 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:23:56.0142 1364 Apple Mobile Device - ok
16:23:56.0205 1364 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
16:23:56.0208 1364 arc - ok
16:23:56.0224 1364 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
16:23:56.0231 1364 arcsas - ok
16:23:56.0249 1364 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
16:23:56.0251 1364 AsyncMac - ok
16:23:56.0261 1364 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
16:23:56.0263 1364 atapi - ok
16:23:56.0311 1364 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
16:23:56.0364 1364 AudioEndpointBuilder - ok
16:23:56.0373 1364 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
16:23:56.0378 1364 Audiosrv - ok
16:23:56.0409 1364 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
16:23:56.0411 1364 AxInstSV - ok
16:23:56.0447 1364 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
16:23:56.0466 1364 b06bdrv - ok
16:23:56.0501 1364 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
16:23:56.0539 1364 b57nd60x - ok
16:23:56.0563 1364 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
16:23:56.0570 1364 BDESVC - ok
16:23:56.0592 1364 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
16:23:56.0593 1364 Beep - ok
16:23:56.0637 1364 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
16:23:56.0681 1364 BFE - ok
16:23:56.0726 1364 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\system32\qmgr.dll
16:23:56.0752 1364 BITS - ok
16:23:56.0776 1364 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
16:23:56.0778 1364 blbdrive - ok
16:23:56.0919 1364 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
16:23:56.0938 1364 Bonjour Service - ok
16:23:56.0969 1364 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
16:23:56.0970 1364 bowser - ok
16:23:56.0976 1364 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
16:23:56.0977 1364 BrFiltLo - ok
16:23:56.0992 1364 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
16:23:56.0994 1364 BrFiltUp - ok
16:23:57.0013 1364 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
16:23:57.0015 1364 BridgeMP - ok
16:23:57.0049 1364 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
16:23:57.0055 1364 Browser - ok
16:23:57.0084 1364 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
16:23:57.0122 1364 Brserid - ok
16:23:57.0129 1364 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
16:23:57.0131 1364 BrSerWdm - ok
16:23:57.0140 1364 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:23:57.0142 1364 BrUsbMdm - ok
16:23:57.0153 1364 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
16:23:57.0154 1364 BrUsbSer - ok
16:23:57.0176 1364 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
16:23:57.0178 1364 BTHMODEM - ok
16:23:57.0202 1364 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
16:23:57.0203 1364 bthserv - ok
16:23:57.0273 1364 catchme - ok
16:23:57.0307 1364 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
16:23:57.0309 1364 cdfs - ok
16:23:57.0337 1364 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
16:23:57.0344 1364 cdrom - ok
16:23:57.0369 1364 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
16:23:57.0371 1364 CertPropSvc - ok
16:23:57.0397 1364 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
16:23:57.0398 1364 circlass - ok
16:23:57.0420 1364 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
16:23:57.0458 1364 CLFS - ok
16:23:57.0527 1364 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:23:57.0528 1364 clr_optimization_v2.0.50727_32 - ok
16:23:57.0598 1364 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:23:57.0604 1364 clr_optimization_v4.0.30319_32 - ok
16:23:57.0612 1364 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
16:23:57.0613 1364 CmBatt - ok
16:23:57.0630 1364 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
16:23:57.0631 1364 cmdide - ok
16:23:57.0676 1364 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
16:23:57.0723 1364 CNG - ok
16:23:57.0743 1364 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
16:23:57.0744 1364 Compbatt - ok
16:23:57.0762 1364 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
16:23:57.0763 1364 CompositeBus - ok
16:23:57.0770 1364 COMSysApp - ok
16:23:57.0798 1364 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
16:23:57.0799 1364 crcdisk - ok
16:23:57.0853 1364 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
16:23:57.0859 1364 CryptSvc - ok
16:23:57.0908 1364 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
16:23:57.0952 1364 DcomLaunch - ok
16:23:57.0985 1364 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
16:23:58.0022 1364 defragsvc - ok
16:23:58.0054 1364 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
16:23:58.0056 1364 DfsC - ok
16:23:58.0074 1364 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
16:23:58.0080 1364 Dhcp - ok
16:23:58.0097 1364 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
16:23:58.0098 1364 discache - ok
16:23:58.0120 1364 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
16:23:58.0122 1364 Disk - ok
16:23:58.0149 1364 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
16:23:58.0156 1364 Dnscache - ok
16:23:58.0177 1364 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
16:23:58.0216 1364 dot3svc - ok
16:23:58.0267 1364 Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys
16:23:58.0270 1364 Dot4 - ok
16:23:58.0294 1364 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\Windows\system32\DRIVERS\Dot4Prt.sys
16:23:58.0295 1364 Dot4Print - ok
16:23:58.0306 1364 dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys
16:23:58.0309 1364 dot4usb - ok
16:23:58.0336 1364 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
16:23:58.0342 1364 DPS - ok
16:23:58.0370 1364 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
16:23:58.0371 1364 drmkaud - ok
16:23:58.0414 1364 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
16:23:58.0438 1364 DXGKrnl - ok
16:23:58.0479 1364 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
16:23:58.0481 1364 EapHost - ok
16:23:58.0629 1364 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
16:23:58.0710 1364 ebdrv - ok
16:23:58.0797 1364 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
16:23:58.0799 1364 EFS - ok
16:23:58.0874 1364 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
16:23:58.0899 1364 ehRecvr - ok
16:23:58.0921 1364 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
16:23:58.0927 1364 ehSched - ok
16:23:58.0990 1364 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
16:23:59.0006 1364 elxstor - ok
16:23:59.0021 1364 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
16:23:59.0022 1364 ErrDev - ok
16:23:59.0060 1364 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
16:23:59.0072 1364 EventSystem - ok
16:23:59.0081 1364 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
16:23:59.0084 1364 exfat - ok
16:23:59.0108 1364 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
16:23:59.0123 1364 fastfat - ok
16:23:59.0171 1364 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
16:23:59.0189 1364 Fax - ok
16:23:59.0224 1364 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\drivers\fdc.sys
16:23:59.0226 1364 fdc - ok
16:23:59.0244 1364 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
16:23:59.0246 1364 fdPHost - ok
16:23:59.0255 1364 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
16:23:59.0257 1364 FDResPub - ok
16:23:59.0271 1364 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
16:23:59.0273 1364 FileInfo - ok
16:23:59.0289 1364 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
16:23:59.0291 1364 Filetrace - ok
16:23:59.0302 1364 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\drivers\flpydisk.sys
16:23:59.0304 1364 flpydisk - ok
16:23:59.0344 1364 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
16:23:59.0348 1364 FltMgr - ok
16:23:59.0407 1364 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
16:23:59.0457 1364 FontCache - ok
16:23:59.0531 1364 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:23:59.0533 1364 FontCache3.0.0.0 - ok
16:23:59.0565 1364 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
16:23:59.0566 1364 FsDepends - ok
16:23:59.0599 1364 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
16:23:59.0600 1364 Fs_Rec - ok
16:23:59.0627 1364 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
16:23:59.0633 1364 fvevol - ok
16:23:59.0658 1364 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
16:23:59.0660 1364 gagp30kx - ok
16:23:59.0727 1364 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:23:59.0728 1364 GEARAspiWDM - ok
16:23:59.0767 1364 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
16:23:59.0826 1364 gpsvc - ok
16:23:59.0923 1364 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
16:23:59.0929 1364 gupdate - ok
16:23:59.0935 1364 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
16:23:59.0937 1364 gupdatem - ok
16:23:59.0990 1364 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:24:00.0004 1364 gusvc - ok
16:24:00.0017 1364 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
16:24:00.0023 1364 hcw85cir - ok
16:24:00.0064 1364 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
16:24:00.0078 1364 HdAudAddService - ok
16:24:00.0095 1364 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:24:00.0102 1364 HDAudBus - ok
16:24:00.0118 1364 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
16:24:00.0120 1364 HidBatt - ok
16:24:00.0128 1364 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
16:24:00.0138 1364 HidBth - ok
16:24:00.0158 1364 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
16:24:00.0160 1364 HidIr - ok
16:24:00.0175 1364 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
16:24:00.0177 1364 hidserv - ok
16:24:00.0200 1364 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
16:24:00.0202 1364 HidUsb - ok
16:24:00.0229 1364 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
16:24:00.0232 1364 hkmsvc - ok
16:24:00.0251 1364 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
16:24:00.0265 1364 HomeGroupListener - ok
16:24:00.0302 1364 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
16:24:00.0306 1364 HomeGroupProvider - ok
16:24:00.0395 1364 hpqcxs08 (08457d8f8149757c70cea59c71ec5d27) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
16:24:00.0433 1364 hpqcxs08 - ok
16:24:00.0575 1364 hpqddsvc (75cc8c5146a3fb76221a7606628778d5) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
16:24:00.0577 1364 hpqddsvc - ok
16:24:00.0604 1364 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
16:24:00.0607 1364 HpSAMD - ok
16:24:00.0685 1364 HPSLPSVC (83db5dd8be71cba5447fbd7a48fdbeda) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
16:24:00.0710 1364 HPSLPSVC - ok
16:24:00.0752 1364 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
16:24:00.0771 1364 HTTP - ok
16:24:00.0787 1364 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
16:24:00.0789 1364 hwpolicy - ok
16:24:00.0824 1364 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
16:24:00.0826 1364 i8042prt - ok
16:24:00.0874 1364 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
16:24:00.0888 1364 iaStorV - ok
16:24:00.0999 1364 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:24:01.0028 1364 idsvc - ok
16:24:01.0043 1364 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
16:24:01.0045 1364 iirsp - ok
16:24:01.0101 1364 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
16:24:01.0159 1364 IKEEXT - ok
16:24:01.0183 1364 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
16:24:01.0184 1364 intelide - ok
16:24:01.0205 1364 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\drivers\intelppm.sys
16:24:01.0207 1364 intelppm - ok
16:24:01.0239 1364 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
16:24:01.0241 1364 IPBusEnum - ok
16:24:01.0251 1364 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:24:01.0253 1364 IpFilterDriver - ok
16:24:01.0292 1364 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
16:24:01.0313 1364 iphlpsvc - ok
16:24:01.0321 1364 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
16:24:01.0323 1364 IPMIDRV - ok
16:24:01.0343 1364 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
16:24:01.0346 1364 IPNAT - ok
16:24:01.0469 1364 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
16:24:01.0518 1364 iPod Service - ok
16:24:01.0534 1364 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
16:24:01.0535 1364 IRENUM - ok
16:24:01.0567 1364 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
16:24:01.0569 1364 isapnp - ok
16:24:01.0595 1364 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
16:24:01.0634 1364 iScsiPrt - ok
16:24:01.0662 1364 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
16:24:01.0663 1364 kbdclass - ok
16:24:01.0690 1364 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
16:24:01.0691 1364 kbdhid - ok
16:24:01.0712 1364 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:24:01.0715 1364 KeyIso - ok
16:24:01.0746 1364 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
16:24:01.0748 1364 KSecDD - ok
16:24:01.0765 1364 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
16:24:01.0773 1364 KSecPkg - ok
16:24:01.0821 1364 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
16:24:01.0875 1364 KtmRm - ok
16:24:01.0900 1364 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\System32\srvsvc.dll
16:24:01.0915 1364 LanmanServer - ok
16:24:01.0943 1364 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
16:24:01.0947 1364 LanmanWorkstation - ok
16:24:01.0988 1364 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
16:24:01.0990 1364 lltdio - ok
16:24:02.0027 1364 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
16:24:02.0066 1364 lltdsvc - ok
16:24:02.0077 1364 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
16:24:02.0079 1364 lmhosts - ok
16:24:02.0115 1364 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
16:24:02.0118 1364 LSI_FC - ok
16:24:02.0195 1364 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
16:24:02.0198 1364 LSI_SAS - ok
16:24:02.0217 1364 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
16:24:02.0219 1364 LSI_SAS2 - ok
16:24:02.0226 1364 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
16:24:02.0230 1364 LSI_SCSI - ok
16:24:02.0253 1364 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
16:24:02.0256 1364 luafv - ok
16:24:02.0311 1364 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
16:24:02.0312 1364 MBAMProtector - ok
16:24:02.0482 1364 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:24:02.0500 1364 MBAMService - ok
16:24:02.0519 1364 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
16:24:02.0526 1364 Mcx2Svc - ok
16:24:02.0543 1364 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
16:24:02.0545 1364 megasas - ok
16:24:02.0566 1364 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
16:24:02.0580 1364 MegaSR - ok
16:24:02.0606 1364 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
16:24:02.0613 1364 MMCSS - ok
16:24:02.0627 1364 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
16:24:02.0629 1364 Modem - ok
16:24:02.0701 1364 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
16:24:02.0702 1364 monitor - ok
16:24:02.0723 1364 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
16:24:02.0724 1364 mouclass - ok
16:24:02.0753 1364 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
16:24:02.0754 1364 mouhid - ok
16:24:02.0773 1364 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
16:24:02.0775 1364 mountmgr - ok
16:24:02.0842 1364 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:24:02.0845 1364 MozillaMaintenance - ok
16:24:02.0905 1364 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
16:24:02.0912 1364 MpFilter - ok
16:24:02.0924 1364 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
16:24:02.0932 1364 mpio - ok
16:24:03.0048 1364 MpKsld1a69596 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10CE8727-24B8-48E7-843A-6451D84B41AA}\MpKsld1a69596.sys
16:24:03.0049 1364 MpKsld1a69596 - ok
16:24:03.0078 1364 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
16:24:03.0079 1364 mpsdrv - ok
16:24:03.0123 1364 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
16:24:03.0181 1364 MpsSvc - ok
16:24:03.0193 1364 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
16:24:03.0195 1364 MRxDAV - ok
16:24:03.0225 1364 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:24:03.0232 1364 mrxsmb - ok
16:24:03.0251 1364 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:24:03.0266 1364 mrxsmb10 - ok
16:24:03.0285 1364 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:24:03.0288 1364 mrxsmb20 - ok
16:24:03.0319 1364 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
16:24:03.0320 1364 msahci - ok
16:24:03.0336 1364 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
16:24:03.0339 1364 msdsm - ok
16:24:03.0362 1364 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
16:24:03.0369 1364 MSDTC - ok
16:24:03.0396 1364 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
16:24:03.0398 1364 Msfs - ok
16:24:03.0408 1364 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
16:24:03.0410 1364 mshidkmdf - ok
16:24:03.0428 1364 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
16:24:03.0429 1364 msisadrv - ok
16:24:03.0462 1364 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
16:24:03.0470 1364 MSiSCSI - ok
16:24:03.0477 1364 msiserver - ok
16:24:03.0499 1364 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
16:24:03.0501 1364 MSKSSRV - ok
16:24:03.0563 1364 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:24:03.0564 1364 MsMpSvc - ok
16:24:03.0572 1364 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
16:24:03.0574 1364 MSPCLOCK - ok
16:24:03.0583 1364 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
16:24:03.0584 1364 MSPQM - ok
16:24:03.0621 1364 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
16:24:03.0625 1364 MsRPC - ok
16:24:03.0639 1364 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
16:24:03.0641 1364 mssmbios - ok
16:24:03.0656 1364 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
16:24:03.0657 1364 MSTEE - ok
16:24:03.0664 1364 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
16:24:03.0666 1364 MTConfig - ok
16:24:03.0684 1364 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
16:24:03.0687 1364 Mup - ok
16:24:03.0726 1364 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
16:24:03.0740 1364 napagent - ok
16:24:03.0790 1364 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
16:24:03.0836 1364 NativeWifiP - ok
16:24:03.0926 1364 NBService (0d01287d85b3715fa8270e8ec919b7f7) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
16:24:03.0951 1364 NBService - ok
16:24:03.0998 1364 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
16:24:04.0022 1364 NDIS - ok
16:24:04.0049 1364 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
16:24:04.0051 1364 NdisCap - ok
16:24:04.0083 1364 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
16:24:04.0085 1364 NdisTapi - ok
16:24:04.0097 1364 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
16:24:04.0099 1364 Ndisuio - ok
16:24:04.0116 1364 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
16:24:04.0123 1364 NdisWan - ok
16:24:04.0136 1364 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
16:24:04.0138 1364 NDProxy - ok
16:24:04.0190 1364 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\Windows\system32\HPZinw12.dll
16:24:04.0192 1364 Net Driver HPZ12 - ok
16:24:04.0208 1364 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
16:24:04.0210 1364 NetBIOS - ok
16:24:04.0225 1364 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
16:24:04.0229 1364 NetBT - ok
16:24:04.0253 1364 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:24:04.0255 1364 Netlogon - ok
16:24:04.0298 1364 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
16:24:04.0312 1364 Netman - ok
16:24:04.0333 1364 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
16:24:04.0345 1364 netprofm - ok
16:24:04.0398 1364 netr73 (76b1157ef850830c5ece61d3e591ca8b) C:\Windows\system32\DRIVERS\netr73.sys
16:24:04.0448 1364 netr73 - ok
16:24:04.0515 1364 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:24:04.0523 1364 NetTcpPortSharing - ok
16:24:04.0558 1364 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
16:24:04.0559 1364 nfrd960 - ok
16:24:04.0602 1364 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:24:04.0604 1364 NisDrv - ok
16:24:04.0680 1364 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
16:24:04.0695 1364 NisSrv - ok
16:24:04.0727 1364 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
16:24:04.0741 1364 NlaSvc - ok
16:24:04.0802 1364 NMIndexingService (c4ebbbd7165be535f0bfd06b80601d91) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
16:24:04.0816 1364 NMIndexingService - ok
16:24:04.0831 1364 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
16:24:04.0832 1364 Npfs - ok
16:24:04.0853 1364 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
16:24:04.0856 1364 nsi - ok
16:24:04.0874 1364 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
16:24:04.0875 1364 nsiproxy - ok
16:24:04.0955 1364 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
16:24:05.0024 1364 Ntfs - ok
16:24:05.0089 1364 NuidFltr (cf7e041663119e09d2e118521ada9300) C:\Windows\system32\DRIVERS\NuidFltr.sys
16:24:05.0091 1364 NuidFltr - ok
16:24:05.0121 1364 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
16:24:05.0122 1364 Null - ok
16:24:05.0164 1364 NVENETFD (b5e37e31c053bc9950455a257526514b) C:\Windows\system32\DRIVERS\nvm62x32.sys
16:24:05.0176 1364 NVENETFD - ok
16:24:05.0610 1364 nvlddmkm (b0881dda5a8160422561ffab7f0008b1) C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:24:05.0859 1364 nvlddmkm - ok
16:24:05.0970 1364 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
16:24:05.0976 1364 nvraid - ok
16:24:06.0005 1364 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
16:24:06.0007 1364 nvstor - ok
16:24:06.0027 1364 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
16:24:06.0033 1364 nv_agp - ok
16:24:06.0049 1364 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
16:24:06.0051 1364 ohci1394 - ok
16:24:06.0128 1364 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:24:06.0133 1364 ose - ok
16:24:06.0168 1364 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
16:24:06.0207 1364 p2pimsvc - ok
16:24:06.0244 1364 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
16:24:06.0258 1364 p2psvc - ok
16:24:06.0288 1364 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
16:24:06.0290 1364 Parport - ok
16:24:06.0321 1364 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
16:24:06.0324 1364 partmgr - ok
16:24:06.0347 1364 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
16:24:06.0348 1364 Parvdm - ok
16:24:06.0358 1364 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
16:24:06.0362 1364 PcaSvc - ok
16:24:06.0387 1364 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
16:24:06.0394 1364 pci - ok
16:24:06.0408 1364 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
16:24:06.0410 1364 pciide - ok
16:24:06.0431 1364 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
16:24:06.0436 1364 pcmcia - ok
16:24:06.0456 1364 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
16:24:06.0458 1364 pcw - ok
16:24:06.0510 1364 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
16:24:06.0556 1364 PEAUTH - ok
16:24:06.0653 1364 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
16:24:06.0693 1364 pla - ok
16:24:06.0813 1364 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
16:24:06.0827 1364 PlugPlay - ok
16:24:06.0873 1364 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\Windows\system32\HPZipm12.dll
16:24:06.0876 1364 Pml Driver HPZ12 - ok
16:24:06.0905 1364 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
16:24:06.0908 1364 PNRPAutoReg - ok
16:24:06.0935 1364 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
16:24:06.0939 1364 PNRPsvc - ok
16:24:06.0993 1364 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
16:24:07.0005 1364 PolicyAgent - ok
16:24:07.0043 1364 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
16:24:07.0048 1364 Power - ok
16:24:07.0100 1364 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
16:24:07.0102 1364 PptpMiniport - ok
16:24:07.0124 1364 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
16:24:07.0127 1364 Processor - ok
16:24:07.0175 1364 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
16:24:07.0190 1364 ProfSvc - ok
16:24:07.0226 1364 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:24:07.0229 1364 ProtectedStorage - ok
16:24:07.0256 1364 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
16:24:07.0258 1364 Psched - ok
16:24:07.0328 1364 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
16:24:07.0369 1364 ql2300 - ok
16:24:07.0464 1364 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
16:24:07.0471 1364 ql40xx - ok
16:24:07.0504 1364 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
16:24:07.0519 1364 QWAVE - ok
16:24:07.0553 1364 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
16:24:07.0554 1364 QWAVEdrv - ok
16:24:07.0564 1364 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
16:24:07.0565 1364 RasAcd - ok
16:24:07.0589 1364 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:24:07.0591 1364 RasAgileVpn - ok
16:24:07.0616 1364 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
16:24:07.0623 1364 RasAuto - ok
16:24:07.0632 1364 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:24:07.0635 1364 Rasl2tp - ok
16:24:07.0665 1364 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
16:24:07.0680 1364 RasMan - ok
16:24:07.0719 1364 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
16:24:07.0721 1364 RasPppoe - ok
16:24:07.0777 1364 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
16:24:07.0779 1364 RasSstp - ok
16:24:07.0800 1364 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
16:24:07.0804 1364 rdbss - ok
16:24:07.0848 1364 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\drivers\rdpbus.sys
16:24:07.0850 1364 rdpbus - ok
16:24:07.0868 1364 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:24:07.0870 1364 RDPCDD - ok
16:24:07.0900 1364 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
16:24:07.0902 1364 RDPENCDD - ok
16:24:07.0916 1364 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
16:24:07.0917 1364 RDPREFMP - ok
16:24:07.0959 1364 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
16:24:07.0973 1364 RDPWD - ok
16:24:08.0003 1364 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
16:24:08.0017 1364 rdyboost - ok
16:24:08.0048 1364 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
16:24:08.0051 1364 RemoteAccess - ok
16:24:08.0074 1364 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
16:24:08.0081 1364 RemoteRegistry - ok
16:24:08.0111 1364 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
16:24:08.0114 1364 RpcEptMapper - ok
16:24:08.0143 1364 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
16:24:08.0146 1364 RpcLocator - ok
16:24:08.0209 1364 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
16:24:08.0215 1364 RpcSs - ok
16:24:08.0262 1364 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
16:24:08.0264 1364 rspndr - ok
16:24:08.0292 1364 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:24:08.0295 1364 SamSs - ok
16:24:08.0311 1364 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
16:24:08.0314 1364 sbp2port - ok
16:24:08.0337 1364 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
16:24:08.0352 1364 SCardSvr - ok
16:24:08.0364 1364 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
16:24:08.0366 1364 scfilter - ok
16:24:08.0420 1364 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
16:24:08.0442 1364 Schedule - ok
16:24:08.0472 1364 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
16:24:08.0473 1364 SCPolicySvc - ok
16:24:08.0488 1364 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
16:24:08.0495 1364 SDRSVC - ok
16:24:08.0538 1364 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:24:08.0540 1364 secdrv - ok
16:24:08.0552 1364 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
16:24:08.0555 1364 seclogon - ok
16:24:08.0613 1364 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
16:24:08.0616 1364 SENS - ok
16:24:08.0645 1364 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
16:24:08.0649 1364 SensrSvc - ok
16:24:08.0677 1364 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
16:24:08.0679 1364 Serenum - ok
16:24:08.0706 1364 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
16:24:08.0709 1364 Serial - ok
16:24:08.0727 1364 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
16:24:08.0729 1364 sermouse - ok
16:24:08.0766 1364 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
16:24:08.0772 1364 SessionEnv - ok
16:24:08.0784 1364 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
16:24:08.0786 1364 sffdisk - ok
16:24:08.0799 1364 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
16:24:08.0800 1364 sffp_mmc - ok
16:24:08.0808 1364 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
16:24:08.0810 1364 sffp_sd - ok
16:24:08.0819 1364 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
16:24:08.0824 1364 sfloppy - ok
16:24:08.0888 1364 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
16:24:08.0900 1364 SharedAccess - ok
16:24:08.0933 1364 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
16:24:08.0946 1364 ShellHWDetection - ok
16:24:08.0954 1364 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
16:24:08.0956 1364 sisagp - ok
16:24:08.0981 1364 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
16:24:08.0983 1364 SiSRaid2 - ok
16:24:08.0991 1364 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
16:24:08.0994 1364 SiSRaid4 - ok
16:24:09.0016 1364 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
16:24:09.0018 1364 Smb - ok
16:24:09.0062 1364 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
16:24:09.0065 1364 SNMPTRAP - ok
16:24:09.0080 1364 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
16:24:09.0082 1364 spldr - ok
16:24:09.0122 1364 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
16:24:09.0135 1364 Spooler - ok
16:24:09.0308 1364 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
16:24:09.0389 1364 sppsvc - ok
16:24:09.0473 1364 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
16:24:09.0481 1364 sppuinotify - ok
16:24:09.0555 1364 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
16:24:09.0600 1364 srv - ok
16:24:09.0625 1364 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
16:24:09.0639 1364 srv2 - ok
16:24:09.0674 1364 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
16:24:09.0681 1364 srvnet - ok
16:24:09.0699 1364 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
16:24:09.0739 1364 SSDPSRV - ok
16:24:09.0747 1364 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
16:24:09.0752 1364 SstpSvc - ok
16:24:09.0775 1364 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
16:24:09.0777 1364 stexstor - ok
16:24:09.0823 1364 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
16:24:09.0829 1364 StiSvc - ok
16:24:09.0867 1364 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
16:24:09.0868 1364 swenum - ok
16:24:09.0897 1364 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
16:24:09.0908 1364 swprv - ok
16:24:09.0959 1364 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
16:24:09.0998 1364 SysMain - ok
16:24:10.0011 1364 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
16:24:10.0018 1364 TabletInputService - ok
16:24:10.0059 1364 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
16:24:10.0104 1364 TapiSrv - ok
16:24:10.0123 1364 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
16:24:10.0128 1364 TBS - ok
16:24:10.0310 1364 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
16:24:10.0368 1364 Tcpip - ok
16:24:10.0397 1364 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
16:24:10.0408 1364 TCPIP6 - ok
16:24:10.0432 1364 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
16:24:10.0434 1364 tcpipreg - ok
16:24:10.0476 1364 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
16:24:10.0477 1364 TDPIPE - ok
16:24:10.0495 1364 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
16:24:10.0497 1364 TDTCP - ok
16:24:10.0516 1364 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
16:24:10.0518 1364 tdx - ok
16:24:10.0546 1364 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
16:24:10.0548 1364 TermDD - ok
16:24:10.0581 1364 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
16:24:10.0607 1364 TermService - ok
16:24:10.0617 1364 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
16:24:10.0621 1364 Themes - ok
16:24:10.0651 1364 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
16:24:10.0654 1364 THREADORDER - ok
16:24:10.0667 1364 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
16:24:10.0671 1364 TrkWks - ok
16:24:10.0711 1364 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
16:24:10.0752 1364 TrustedInstaller - ok
16:24:10.0773 1364 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:24:10.0775 1364 tssecsrv - ok
16:24:10.0796 1364 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
16:24:10.0798 1364 TsUsbFlt - ok
16:24:10.0833 1364 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
16:24:10.0835 1364 TsUsbGD - ok
16:24:10.0876 1364 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
16:24:10.0879 1364 tunnel - ok
16:24:10.0897 1364 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
16:24:10.0899 1364 uagp35 - ok
16:24:10.0928 1364 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
16:24:10.0933 1364 udfs - ok
16:24:10.0962 1364 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
16:24:10.0967 1364 UI0Detect - ok
16:24:10.0990 1364 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
16:24:10.0993 1364 uliagpkx - ok
16:24:11.0036 1364 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
16:24:11.0038 1364 umbus - ok
16:24:11.0044 1364 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
16:24:11.0045 1364 UmPass - ok
16:24:11.0097 1364 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
16:24:11.0135 1364 upnphost - ok
16:24:11.0166 1364 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
16:24:11.0173 1364 usbccgp - ok
16:24:11.0199 1364 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
16:24:11.0201 1364 usbcir - ok
16:24:11.0223 1364 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
16:24:11.0224 1364 usbehci - ok
16:24:11.0244 1364 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
16:24:11.0249 1364 usbhub - ok
16:24:11.0262 1364 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
16:24:11.0264 1364 usbohci - ok
16:24:11.0282 1364 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
16:24:11.0283 1364 usbprint - ok
16:24:11.0312 1364 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
16:24:11.0313 1364 usbscan - ok
16:24:11.0331 1364 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS
16:24:11.0334 1364 USBSTOR - ok
16:24:11.0347 1364 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
16:24:11.0349 1364 usbuhci - ok
16:24:11.0365 1364 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
16:24:11.0368 1364 UxSms - ok
16:24:11.0391 1364 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:24:11.0393 1364 VaultSvc - ok
16:24:11.0409 1364 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
16:24:11.0411 1364 vdrvroot - ok
16:24:11.0450 1364 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
16:24:11.0457 1364 vds - ok
16:24:11.0497 1364 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
16:24:11.0499 1364 vga - ok
16:24:11.0512 1364 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
16:24:11.0513 1364 VgaSave - ok
16:24:11.0536 1364 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
16:24:11.0540 1364 vhdmp - ok
16:24:11.0555 1364 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
16:24:11.0557 1364 viaagp - ok
16:24:11.0567 1364 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
16:24:11.0569 1364 ViaC7 - ok
16:24:11.0587 1364 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
16:24:11.0589 1364 viaide - ok
16:24:11.0603 1364 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
16:24:11.0606 1364 volmgr - ok
16:24:11.0630 1364 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
16:24:11.0643 1364 volmgrx - ok
16:24:11.0674 1364 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
16:24:11.0689 1364 volsnap - ok
16:24:11.0718 1364 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
16:24:11.0722 1364 vsmraid - ok
16:24:11.0793 1364 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
16:24:11.0803 1364 VSS - ok
16:24:11.0829 1364 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
16:24:11.0830 1364 vwifibus - ok
16:24:11.0861 1364 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
16:24:11.0862 1364 vwififlt - ok
16:24:11.0881 1364 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
16:24:11.0882 1364 vwifimp - ok
16:24:11.0907 1364 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
16:24:11.0914 1364 W32Time - ok
16:24:11.0936 1364 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
16:24:11.0938 1364 WacomPen - ok
16:24:11.0966 1364 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:24:11.0968 1364 WANARP - ok
16:24:11.0973 1364 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:24:11.0974 1364 Wanarpv6 - ok
16:24:12.0060 1364 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
16:24:12.0096 1364 WatAdminSvc - ok
16:24:12.0176 1364 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
16:24:12.0209 1364 wbengine - ok
16:24:12.0230 1364 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
16:24:12.0235 1364 WbioSrvc - ok
16:24:12.0270 1364 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
16:24:12.0275 1364 wcncsvc - ok
16:24:12.0300 1364 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
16:24:12.0304 1364 WcsPlugInService - ok
16:24:12.0377 1364 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
16:24:12.0379 1364 Wd - ok
16:24:12.0412 1364 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
16:24:12.0428 1364 Wdf01000 - ok
16:24:12.0446 1364 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
16:24:12.0450 1364 WdiServiceHost - ok
16:24:12.0455 1364 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
16:24:12.0459 1364 WdiSystemHost - ok
16:24:12.0482 1364 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
16:24:12.0486 1364 WebClient - ok
16:24:12.0533 1364 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
16:24:12.0548 1364 Wecsvc - ok
16:24:12.0562 1364 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
16:24:12.0566 1364 wercplsupport - ok
16:24:12.0590 1364 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
16:24:12.0594 1364 WerSvc - ok
16:24:12.0609 1364 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
16:24:12.0609 1364 WfpLwf - ok
16:24:12.0623 1364 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
16:24:12.0624 1364 WIMMount - ok
16:24:12.0722 1364 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
16:24:12.0738 1364 WinDefend - ok
16:24:12.0749 1364 WinHttpAutoProxySvc - ok
16:24:12.0801 1364 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
16:24:12.0803 1364 Winmgmt - ok
16:24:12.0904 1364 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
16:24:12.0916 1364 WinRM - ok
16:24:12.0987 1364 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
16:24:13.0026 1364 Wlansvc - ok
16:24:13.0082 1364 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
16:24:13.0084 1364 WmiAcpi - ok
16:24:13.0118 1364 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
16:24:13.0121 1364 wmiApSrv - ok
16:24:13.0207 1364 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
16:24:13.0216 1364 WMPNetworkSvc - ok
16:24:13.0235 1364 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
16:24:13.0239 1364 WPCSvc - ok
16:24:13.0256 1364 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
16:24:13.0260 1364 WPDBusEnum - ok
16:24:13.0302 1364 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
16:24:13.0303 1364 ws2ifsl - ok
16:24:13.0315 1364 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll
16:24:13.0320 1364 wscsvc - ok
16:24:13.0350 1364 WSDPrintDevice (553f6ccd7c58eb98d4a8fbdaf283d7a9) C:\Windows\system32\DRIVERS\WSDPrint.sys
16:24:13.0351 1364 WSDPrintDevice - ok
16:24:13.0357 1364 WSearch - ok
16:24:13.0502 1364 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
16:24:13.0519 1364 wuauserv - ok
16:24:13.0585 1364 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
16:24:13.0587 1364 WudfPf - ok
16:24:13.0618 1364 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:24:13.0621 1364 WUDFRd - ok
16:24:13.0650 1364 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
16:24:13.0658 1364 wudfsvc - ok
16:24:13.0694 1364 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
16:24:13.0698 1364 WwanSvc - ok
16:24:13.0806 1364 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
16:24:13.0824 1364 YahooAUService - ok
16:24:13.0885 1364 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:24:14.0159 1364 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:24:14.0160 1364 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:24:14.0167 1364 Boot (0x1200) (775171023cfb58b53ac451eaa489775a) \Device\Harddisk0\DR0\Partition0
16:24:14.0168 1364 \Device\Harddisk0\DR0\Partition0 - ok
16:24:14.0169 1364 ============================================================
16:24:14.0169 1364 Scan finished
16:24:14.0169 1364 ============================================================
16:24:14.0198 3944 Detected object count: 1
16:24:14.0198 3944 Actual detected object count: 1
16:24:23.0187 3944 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
16:24:23.0187 3944 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
16:24:26.0819 2420 Deinitialize success

The second download stopped scanning saying their was a problem and couldnt continue



C:\Program Files\MyScrapNook_12\bar\1.bin\12datact.dll a variant of Win32/Toolbar.MyWebSearch.A application cleaned by deleting - quarantined
C:\Program Files\MyScrapNook_12\bar\1.bin\12htmlmu.dll probably a variant of Win32/Toolbar.MyWebSearch.B application cleaned by deleting - quarantined
C:\Program Files\MyScrapNook_12\bar\1.bin\12ieovr.dll probably a variant of Win32/Toolbar.MyWebSearch.P application cleaned by deleting - quarantined
C:\Program Files\MyScrapNook_12\bar\1.bin\12Plugin.dll probably a variant of Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Program Files\MyScrapNook_12\bar\1.bin\12skin.dll a variant of Win32/Toolbar.MyWebSearch.P application cleaned by deleting - quarantined
C:\Program Files\MyScrapNook_12\bar\1.bin\T8HTML.DLL probably a variant of Win32/Toolbar.MyWebSearch.F application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.08.2012_15.13.39\mbr0000\tdlfs0000\tsk0001.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.08.2012_15.13.39\mbr0000\tdlfs0000\tsk0002.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.08.2012_15.13.39\mbr0000\tdlfs0000\tsk0003.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.08.2012_15.13.39\mbr0000\tdlfs0000\tsk0004.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined

#4 nick2222

nick2222
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 08 August 2012 - 04:28 PM

I forgot to click on the TDLFS on the first scan so heres that log if u need it

15:13:37.0098 3568 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
15:13:39.0119 3568 ============================================================
15:13:39.0119 3568 Current date / time: 2012/08/08 15:13:39.0119
15:13:39.0119 3568 SystemInfo:
15:13:39.0119 3568
15:13:39.0119 3568 OS Version: 6.1.7601 ServicePack: 1.0
15:13:39.0119 3568 Product type: Workstation
15:13:39.0119 3568 ComputerName: CHRIS-PC
15:13:39.0119 3568 UserName: CHRIS
15:13:39.0119 3568 Windows directory: C:\Windows
15:13:39.0119 3568 System windows directory: C:\Windows
15:13:39.0119 3568 Processor architecture: Intel x86
15:13:39.0119 3568 Number of processors: 2
15:13:39.0119 3568 Page size: 0x1000
15:13:39.0119 3568 Boot type: Normal boot
15:13:39.0119 3568 ============================================================
15:13:40.0836 3568 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:13:40.0963 3568 ============================================================
15:13:40.0963 3568 \Device\Harddisk0\DR0:
15:13:40.0964 3568 MBR partitions:
15:13:40.0964 3568 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681
15:13:40.0964 3568 ============================================================
15:13:40.0976 3568 C: <-> \Device\Harddisk0\DR0\Partition0
15:13:40.0976 3568 ============================================================
15:13:40.0976 3568 Initialize success
15:13:40.0976 3568 ============================================================
15:13:47.0929 5304 ============================================================
15:13:47.0929 5304 Scan started
15:13:47.0929 5304 Mode: Manual;
15:13:47.0929 5304 ============================================================
15:13:48.0461 5304 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
15:13:48.0500 5304 1394ohci - ok
15:13:48.0529 5304 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
15:13:48.0541 5304 ACPI - ok
15:13:48.0583 5304 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
15:13:48.0584 5304 AcpiPmi - ok
15:13:48.0669 5304 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:13:48.0671 5304 AdobeARMservice - ok
15:13:48.0792 5304 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:13:48.0797 5304 AdobeFlashPlayerUpdateSvc - ok
15:13:48.0860 5304 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
15:13:48.0867 5304 adp94xx - ok
15:13:48.0907 5304 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
15:13:48.0912 5304 adpahci - ok
15:13:48.0964 5304 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
15:13:48.0970 5304 adpu320 - ok
15:13:48.0998 5304 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
15:13:48.0999 5304 AeLookupSvc - ok
15:13:49.0047 5304 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
15:13:49.0085 5304 AFD - ok
15:13:49.0100 5304 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
15:13:49.0102 5304 agp440 - ok
15:13:49.0135 5304 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
15:13:49.0138 5304 aic78xx - ok
15:13:49.0190 5304 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
15:13:49.0194 5304 ALG - ok
15:13:49.0205 5304 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
15:13:49.0206 5304 aliide - ok
15:13:49.0236 5304 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
15:13:49.0238 5304 amdagp - ok
15:13:49.0255 5304 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
15:13:49.0256 5304 amdide - ok
15:13:49.0293 5304 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
15:13:49.0298 5304 AmdK8 - ok
15:13:49.0306 5304 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys
15:13:49.0310 5304 AmdPPM - ok
15:13:49.0355 5304 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
15:13:49.0363 5304 amdsata - ok
15:13:49.0389 5304 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
15:13:49.0393 5304 amdsbs - ok
15:13:49.0406 5304 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
15:13:49.0408 5304 amdxata - ok
15:13:49.0474 5304 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
15:13:49.0477 5304 AppID - ok
15:13:49.0517 5304 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
15:13:49.0519 5304 AppIDSvc - ok
15:13:49.0550 5304 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
15:13:49.0557 5304 Appinfo - ok
15:13:49.0711 5304 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:13:49.0712 5304 Apple Mobile Device - ok
15:13:49.0773 5304 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
15:13:49.0791 5304 arc - ok
15:13:49.0854 5304 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
15:13:49.0857 5304 arcsas - ok
15:13:49.0929 5304 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
15:13:49.0930 5304 AsyncMac - ok
15:13:49.0966 5304 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
15:13:49.0968 5304 atapi - ok
15:13:50.0057 5304 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
15:13:50.0063 5304 AudioEndpointBuilder - ok
15:13:50.0092 5304 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
15:13:50.0098 5304 Audiosrv - ok
15:13:50.0141 5304 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
15:13:50.0147 5304 AxInstSV - ok
15:13:50.0205 5304 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
15:13:50.0222 5304 b06bdrv - ok
15:13:50.0268 5304 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
15:13:50.0311 5304 b57nd60x - ok
15:13:50.0343 5304 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
15:13:50.0346 5304 BDESVC - ok
15:13:50.0372 5304 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
15:13:50.0374 5304 Beep - ok
15:13:50.0476 5304 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
15:13:50.0504 5304 BFE - ok
15:13:50.0578 5304 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\system32\qmgr.dll
15:13:50.0585 5304 BITS - ok
15:13:50.0608 5304 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
15:13:50.0614 5304 blbdrive - ok
15:13:50.0732 5304 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
15:13:50.0736 5304 Bonjour Service - ok
15:13:50.0774 5304 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
15:13:50.0790 5304 bowser - ok
15:13:50.0839 5304 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
15:13:50.0841 5304 BrFiltLo - ok
15:13:50.0864 5304 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
15:13:50.0867 5304 BrFiltUp - ok
15:13:50.0901 5304 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
15:13:50.0903 5304 BridgeMP - ok
15:13:50.0953 5304 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
15:13:50.0979 5304 Browser - ok
15:13:51.0014 5304 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
15:13:51.0035 5304 Brserid - ok
15:13:51.0042 5304 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
15:13:51.0058 5304 BrSerWdm - ok
15:13:51.0070 5304 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:13:51.0116 5304 BrUsbMdm - ok
15:13:51.0136 5304 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
15:13:51.0156 5304 BrUsbSer - ok
15:13:51.0205 5304 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
15:13:51.0207 5304 BTHMODEM - ok
15:13:51.0257 5304 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
15:13:51.0265 5304 bthserv - ok
15:13:51.0347 5304 catchme - ok
15:13:51.0387 5304 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
15:13:51.0394 5304 cdfs - ok
15:13:51.0434 5304 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
15:13:51.0441 5304 cdrom - ok
15:13:51.0474 5304 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
15:13:51.0486 5304 CertPropSvc - ok
15:13:51.0510 5304 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
15:13:51.0513 5304 circlass - ok
15:13:51.0558 5304 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
15:13:51.0597 5304 CLFS - ok
15:13:51.0674 5304 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:13:51.0681 5304 clr_optimization_v2.0.50727_32 - ok
15:13:51.0761 5304 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:13:51.0766 5304 clr_optimization_v4.0.30319_32 - ok
15:13:51.0827 5304 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
15:13:51.0866 5304 CmBatt - ok
15:13:51.0885 5304 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
15:13:51.0893 5304 cmdide - ok
15:13:52.0025 5304 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
15:13:52.0090 5304 CNG - ok
15:13:52.0114 5304 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
15:13:52.0119 5304 Compbatt - ok
15:13:52.0141 5304 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
15:13:52.0147 5304 CompositeBus - ok
15:13:52.0185 5304 COMSysApp - ok
15:13:52.0220 5304 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
15:13:52.0222 5304 crcdisk - ok
15:13:52.0300 5304 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
15:13:52.0304 5304 CryptSvc - ok
15:13:52.0366 5304 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
15:13:52.0374 5304 DcomLaunch - ok
15:13:52.0439 5304 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
15:13:52.0478 5304 defragsvc - ok
15:13:52.0519 5304 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
15:13:52.0525 5304 DfsC - ok
15:13:52.0575 5304 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
15:13:52.0579 5304 Dhcp - ok
15:13:52.0593 5304 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
15:13:52.0595 5304 discache - ok
15:13:52.0626 5304 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
15:13:52.0636 5304 Disk - ok
15:13:52.0671 5304 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
15:13:52.0675 5304 Dnscache - ok
15:13:52.0737 5304 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
15:13:52.0746 5304 dot3svc - ok
15:13:52.0864 5304 Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys
15:13:52.0869 5304 Dot4 - ok
15:13:52.0923 5304 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:13:52.0925 5304 Dot4Print - ok
15:13:52.0975 5304 dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys
15:13:52.0981 5304 dot4usb - ok
15:13:53.0016 5304 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
15:13:53.0063 5304 DPS - ok
15:13:53.0100 5304 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
15:13:53.0102 5304 drmkaud - ok
15:13:53.0179 5304 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
15:13:53.0206 5304 DXGKrnl - ok
15:13:53.0267 5304 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
15:13:53.0276 5304 EapHost - ok
15:13:53.0547 5304 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
15:13:53.0628 5304 ebdrv - ok
15:13:53.0753 5304 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
15:13:53.0756 5304 EFS - ok
15:13:53.0829 5304 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
15:13:53.0856 5304 ehRecvr - ok
15:13:53.0876 5304 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
15:13:53.0882 5304 ehSched - ok
15:13:53.0963 5304 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
15:13:53.0986 5304 elxstor - ok
15:13:54.0009 5304 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
15:13:54.0011 5304 ErrDev - ok
15:13:54.0064 5304 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
15:13:54.0126 5304 EventSystem - ok
15:13:54.0146 5304 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
15:13:54.0152 5304 exfat - ok
15:13:54.0196 5304 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
15:13:54.0213 5304 fastfat - ok
15:13:54.0302 5304 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
15:13:54.0320 5304 Fax - ok
15:13:54.0379 5304 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\drivers\fdc.sys
15:13:54.0381 5304 fdc - ok
15:13:54.0407 5304 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
15:13:54.0409 5304 fdPHost - ok
15:13:54.0443 5304 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
15:13:54.0446 5304 FDResPub - ok
15:13:54.0501 5304 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
15:13:54.0508 5304 FileInfo - ok
15:13:54.0544 5304 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
15:13:54.0546 5304 Filetrace - ok
15:13:54.0572 5304 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\drivers\flpydisk.sys
15:13:54.0575 5304 flpydisk - ok
15:13:54.0610 5304 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
15:13:54.0617 5304 FltMgr - ok
15:13:54.0693 5304 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
15:13:54.0755 5304 FontCache - ok
15:13:54.0836 5304 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:13:54.0838 5304 FontCache3.0.0.0 - ok
15:13:54.0877 5304 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
15:13:54.0881 5304 FsDepends - ok
15:13:54.0920 5304 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
15:13:54.0921 5304 Fs_Rec - ok
15:13:54.0960 5304 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
15:13:54.0972 5304 fvevol - ok
15:13:55.0006 5304 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
15:13:55.0012 5304 gagp30kx - ok
15:13:55.0057 5304 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:13:55.0060 5304 GEARAspiWDM - ok
15:13:55.0132 5304 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
15:13:55.0157 5304 gpsvc - ok
15:13:55.0252 5304 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
15:13:55.0258 5304 gupdate - ok
15:13:55.0265 5304 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
15:13:55.0266 5304 gupdatem - ok
15:13:55.0327 5304 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:13:55.0333 5304 gusvc - ok
15:13:55.0361 5304 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
15:13:55.0363 5304 hcw85cir - ok
15:13:55.0421 5304 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
15:13:55.0431 5304 HdAudAddService - ok
15:13:55.0456 5304 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:13:55.0465 5304 HDAudBus - ok
15:13:55.0489 5304 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
15:13:55.0491 5304 HidBatt - ok
15:13:55.0505 5304 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
15:13:55.0510 5304 HidBth - ok
15:13:55.0518 5304 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
15:13:55.0523 5304 HidIr - ok
15:13:55.0555 5304 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
15:13:55.0558 5304 hidserv - ok
15:13:55.0588 5304 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
15:13:55.0590 5304 HidUsb - ok
15:13:55.0617 5304 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
15:13:55.0624 5304 hkmsvc - ok
15:13:55.0650 5304 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
15:13:55.0661 5304 HomeGroupListener - ok
15:13:55.0700 5304 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
15:13:55.0714 5304 HomeGroupProvider - ok
15:13:55.0922 5304 hpqcxs08 (08457d8f8149757c70cea59c71ec5d27) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
15:13:56.0381 5304 hpqcxs08 - ok
15:13:56.0414 5304 hpqddsvc (75cc8c5146a3fb76221a7606628778d5) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
15:13:56.0657 5304 hpqddsvc - ok
15:13:56.0691 5304 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
15:13:56.0694 5304 HpSAMD - ok
15:13:56.0766 5304 HPSLPSVC (83db5dd8be71cba5447fbd7a48fdbeda) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
15:13:57.0013 5304 HPSLPSVC - ok
15:13:57.0057 5304 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
15:13:57.0075 5304 HTTP - ok
15:13:57.0091 5304 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
15:13:57.0092 5304 hwpolicy - ok
15:13:57.0128 5304 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
15:13:57.0136 5304 i8042prt - ok
15:13:57.0188 5304 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
15:13:57.0191 5304 iaStorV - ok
15:13:57.0304 5304 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:13:57.0358 5304 idsvc - ok
15:13:57.0379 5304 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
15:13:57.0383 5304 iirsp - ok
15:13:57.0456 5304 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
15:13:57.0482 5304 IKEEXT - ok
15:13:57.0504 5304 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
15:13:57.0512 5304 intelide - ok
15:13:57.0542 5304 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\drivers\intelppm.sys
15:13:57.0544 5304 intelppm - ok
15:13:57.0568 5304 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
15:13:57.0575 5304 IPBusEnum - ok
15:13:57.0590 5304 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:13:57.0593 5304 IpFilterDriver - ok
15:13:57.0632 5304 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
15:13:57.0641 5304 iphlpsvc - ok
15:13:57.0671 5304 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
15:13:57.0674 5304 IPMIDRV - ok
15:13:57.0687 5304 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
15:13:57.0690 5304 IPNAT - ok
15:13:57.0826 5304 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
15:13:57.0889 5304 iPod Service - ok
15:13:57.0933 5304 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
15:13:57.0935 5304 IRENUM - ok
15:13:57.0963 5304 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
15:13:57.0965 5304 isapnp - ok
15:13:57.0992 5304 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
15:13:57.0997 5304 iScsiPrt - ok
15:13:58.0057 5304 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
15:13:58.0058 5304 kbdclass - ok
15:13:58.0085 5304 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
15:13:58.0087 5304 kbdhid - ok
15:13:58.0116 5304 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:13:58.0118 5304 KeyIso - ok
15:13:58.0149 5304 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
15:13:58.0152 5304 KSecDD - ok
15:13:58.0169 5304 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
15:13:58.0176 5304 KSecPkg - ok
15:13:58.0233 5304 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
15:13:58.0270 5304 KtmRm - ok
15:13:58.0314 5304 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\System32\srvsvc.dll
15:13:58.0319 5304 LanmanServer - ok
15:13:58.0355 5304 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
15:13:58.0362 5304 LanmanWorkstation - ok
15:13:58.0400 5304 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
15:13:58.0402 5304 lltdio - ok
15:13:58.0440 5304 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
15:13:58.0478 5304 lltdsvc - ok
15:13:58.0498 5304 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
15:13:58.0502 5304 lmhosts - ok
15:13:58.0561 5304 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
15:13:58.0563 5304 LSI_FC - ok
15:13:58.0633 5304 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
15:13:58.0636 5304 LSI_SAS - ok
15:13:58.0662 5304 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
15:13:58.0664 5304 LSI_SAS2 - ok
15:13:58.0678 5304 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
15:13:58.0687 5304 LSI_SCSI - ok
15:13:58.0749 5304 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
15:13:58.0752 5304 luafv - ok
15:13:59.0073 5304 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
15:13:59.0076 5304 MBAMProtector - ok
15:13:59.0246 5304 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:13:59.0254 5304 MBAMService - ok
15:13:59.0289 5304 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
15:13:59.0292 5304 Mcx2Svc - ok
15:13:59.0321 5304 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
15:13:59.0324 5304 megasas - ok
15:13:59.0376 5304 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
15:13:59.0383 5304 MegaSR - ok
15:13:59.0417 5304 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
15:13:59.0420 5304 MMCSS - ok
15:13:59.0439 5304 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
15:13:59.0442 5304 Modem - ok
15:13:59.0504 5304 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
15:13:59.0506 5304 monitor - ok
15:13:59.0535 5304 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
15:13:59.0539 5304 mouclass - ok
15:13:59.0582 5304 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
15:13:59.0584 5304 mouhid - ok
15:13:59.0612 5304 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
15:13:59.0618 5304 mountmgr - ok
15:13:59.0697 5304 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:13:59.0704 5304 MozillaMaintenance - ok
15:13:59.0776 5304 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
15:13:59.0783 5304 MpFilter - ok
15:13:59.0804 5304 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
15:13:59.0810 5304 mpio - ok
15:13:59.0963 5304 MpKslfba3c7fb (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10CE8727-24B8-48E7-843A-6451D84B41AA}\MpKslfba3c7fb.sys
15:13:59.0967 5304 MpKslfba3c7fb - ok
15:13:59.0982 5304 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
15:13:59.0990 5304 mpsdrv - ok
15:14:00.0048 5304 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
15:14:00.0095 5304 MpsSvc - ok
15:14:00.0130 5304 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
15:14:00.0138 5304 MRxDAV - ok
15:14:00.0170 5304 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:14:00.0177 5304 mrxsmb - ok
15:14:00.0204 5304 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:14:00.0219 5304 mrxsmb10 - ok
15:14:00.0238 5304 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:14:00.0240 5304 mrxsmb20 - ok
15:14:00.0272 5304 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
15:14:00.0274 5304 msahci - ok
15:14:00.0290 5304 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
15:14:00.0295 5304 msdsm - ok
15:14:00.0324 5304 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
15:14:00.0339 5304 MSDTC - ok
15:14:00.0374 5304 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
15:14:00.0376 5304 Msfs - ok
15:14:00.0420 5304 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
15:14:00.0422 5304 mshidkmdf - ok
15:14:00.0431 5304 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
15:14:00.0433 5304 msisadrv - ok
15:14:00.0474 5304 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
15:14:00.0482 5304 MSiSCSI - ok
15:14:00.0488 5304 msiserver - ok
15:14:00.0527 5304 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
15:14:00.0529 5304 MSKSSRV - ok
15:14:00.0600 5304 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:14:00.0601 5304 MsMpSvc - ok
15:14:00.0616 5304 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
15:14:00.0619 5304 MSPCLOCK - ok
15:14:00.0643 5304 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
15:14:00.0645 5304 MSPQM - ok
15:14:00.0683 5304 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
15:14:00.0687 5304 MsRPC - ok
15:14:00.0709 5304 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
15:14:00.0713 5304 mssmbios - ok
15:14:00.0734 5304 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
15:14:00.0736 5304 MSTEE - ok
15:14:00.0746 5304 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
15:14:00.0750 5304 MTConfig - ok
15:14:00.0773 5304 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
15:14:00.0775 5304 Mup - ok
15:14:00.0826 5304 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
15:14:00.0838 5304 napagent - ok
15:14:00.0888 5304 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
15:14:00.0932 5304 NativeWifiP - ok
15:14:01.0046 5304 NBService (0d01287d85b3715fa8270e8ec919b7f7) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
15:14:01.0206 5304 NBService - ok
15:14:01.0401 5304 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
15:14:01.0458 5304 NDIS - ok
15:14:01.0502 5304 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
15:14:01.0504 5304 NdisCap - ok
15:14:01.0536 5304 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
15:14:01.0540 5304 NdisTapi - ok
15:14:01.0558 5304 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
15:14:01.0561 5304 Ndisuio - ok
15:14:01.0587 5304 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
15:14:01.0594 5304 NdisWan - ok
15:14:01.0615 5304 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
15:14:01.0618 5304 NDProxy - ok
15:14:01.0668 5304 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\Windows\system32\HPZinw12.dll
15:14:01.0671 5304 Net Driver HPZ12 - ok
15:14:01.0687 5304 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
15:14:01.0689 5304 NetBIOS - ok
15:14:01.0706 5304 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
15:14:01.0712 5304 NetBT - ok
15:14:01.0739 5304 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:14:01.0742 5304 Netlogon - ok
15:14:01.0796 5304 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
15:14:01.0807 5304 Netman - ok
15:14:01.0828 5304 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
15:14:01.0890 5304 netprofm - ok
15:14:01.0942 5304 netr73 (76b1157ef850830c5ece61d3e591ca8b) C:\Windows\system32\DRIVERS\netr73.sys
15:14:01.0947 5304 netr73 - ok
15:14:02.0043 5304 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:14:02.0051 5304 NetTcpPortSharing - ok
15:14:02.0111 5304 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
15:14:02.0112 5304 nfrd960 - ok
15:14:02.0155 5304 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:14:02.0158 5304 NisDrv - ok
15:14:02.0234 5304 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
15:14:02.0248 5304 NisSrv - ok
15:14:02.0306 5304 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
15:14:02.0319 5304 NlaSvc - ok
15:14:02.0382 5304 NMIndexingService (c4ebbbd7165be535f0bfd06b80601d91) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
15:14:02.0760 5304 NMIndexingService - ok
15:14:02.0783 5304 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
15:14:02.0784 5304 Npfs - ok
15:14:02.0806 5304 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
15:14:02.0810 5304 nsi - ok
15:14:02.0827 5304 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
15:14:02.0828 5304 nsiproxy - ok
15:14:02.0919 5304 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
15:14:02.0951 5304 Ntfs - ok
15:14:03.0042 5304 NuidFltr (cf7e041663119e09d2e118521ada9300) C:\Windows\system32\DRIVERS\NuidFltr.sys
15:14:03.0043 5304 NuidFltr - ok
15:14:03.0074 5304 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
15:14:03.0077 5304 Null - ok
15:14:03.0126 5304 NVENETFD (b5e37e31c053bc9950455a257526514b) C:\Windows\system32\DRIVERS\nvm62x32.sys
15:14:03.0146 5304 NVENETFD - ok
15:14:03.0695 5304 nvlddmkm (b0881dda5a8160422561ffab7f0008b1) C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:14:03.0966 5304 nvlddmkm - ok
15:14:04.0106 5304 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
15:14:04.0112 5304 nvraid - ok
15:14:04.0174 5304 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
15:14:04.0176 5304 nvstor - ok
15:14:04.0229 5304 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
15:14:04.0232 5304 nv_agp - ok
15:14:04.0253 5304 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
15:14:04.0262 5304 ohci1394 - ok
15:14:04.0345 5304 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:14:04.0353 5304 ose - ok
15:14:04.0399 5304 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
15:14:04.0443 5304 p2pimsvc - ok
15:14:04.0489 5304 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
15:14:04.0502 5304 p2psvc - ok
15:14:04.0519 5304 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
15:14:04.0523 5304 Parport - ok
15:14:04.0558 5304 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
15:14:04.0565 5304 partmgr - ok
15:14:04.0600 5304 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
15:14:04.0601 5304 Parvdm - ok
15:14:04.0622 5304 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
15:14:04.0627 5304 PcaSvc - ok
15:14:04.0666 5304 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
15:14:04.0680 5304 pci - ok
15:14:04.0695 5304 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
15:14:04.0697 5304 pciide - ok
15:14:04.0735 5304 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
15:14:04.0773 5304 pcmcia - ok
15:14:04.0792 5304 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
15:14:04.0795 5304 pcw - ok
15:14:04.0846 5304 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
15:14:04.0884 5304 PEAUTH - ok
15:14:04.0989 5304 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
15:14:05.0037 5304 pla - ok
15:14:05.0166 5304 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
15:14:05.0206 5304 PlugPlay - ok
15:14:05.0267 5304 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\Windows\system32\HPZipm12.dll
15:14:05.0277 5304 Pml Driver HPZ12 - ok
15:14:05.0326 5304 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
15:14:05.0333 5304 PNRPAutoReg - ok
15:14:05.0378 5304 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
15:14:05.0383 5304 PNRPsvc - ok
15:14:05.0445 5304 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
15:14:05.0484 5304 PolicyAgent - ok
15:14:05.0525 5304 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
15:14:05.0540 5304 Power - ok
15:14:05.0621 5304 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
15:14:05.0635 5304 PptpMiniport - ok
15:14:05.0666 5304 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
15:14:05.0668 5304 Processor - ok
15:14:05.0745 5304 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
15:14:05.0766 5304 ProfSvc - ok
15:14:05.0795 5304 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:14:05.0798 5304 ProtectedStorage - ok
15:14:05.0834 5304 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
15:14:05.0840 5304 Psched - ok
15:14:05.0927 5304 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
15:14:05.0966 5304 ql2300 - ok
15:14:06.0083 5304 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
15:14:06.0085 5304 ql40xx - ok
15:14:06.0124 5304 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
15:14:06.0138 5304 QWAVE - ok
15:14:06.0155 5304 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
15:14:06.0157 5304 QWAVEdrv - ok
15:14:06.0175 5304 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
15:14:06.0176 5304 RasAcd - ok
15:14:06.0208 5304 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:14:06.0210 5304 RasAgileVpn - ok
15:14:06.0235 5304 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
15:14:06.0242 5304 RasAuto - ok
15:14:06.0267 5304 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:14:06.0269 5304 Rasl2tp - ok
15:14:06.0310 5304 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
15:14:06.0324 5304 RasMan - ok
15:14:06.0399 5304 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
15:14:06.0421 5304 RasPppoe - ok
15:14:06.0468 5304 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
15:14:06.0471 5304 RasSstp - ok
15:14:06.0504 5304 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
15:14:06.0508 5304 rdbss - ok
15:14:06.0526 5304 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\drivers\rdpbus.sys
15:14:06.0527 5304 rdpbus - ok
15:14:06.0547 5304 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:14:06.0549 5304 RDPCDD - ok
15:14:06.0587 5304 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
15:14:06.0589 5304 RDPENCDD - ok
15:14:06.0627 5304 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
15:14:06.0629 5304 RDPREFMP - ok
15:14:06.0669 5304 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
15:14:06.0684 5304 RDPWD - ok
15:14:06.0713 5304 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
15:14:06.0728 5304 rdyboost - ok
15:14:06.0760 5304 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
15:14:06.0766 5304 RemoteAccess - ok
15:14:06.0810 5304 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
15:14:06.0818 5304 RemoteRegistry - ok
15:14:06.0863 5304 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
15:14:06.0867 5304 RpcEptMapper - ok
15:14:06.0904 5304 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
15:14:06.0907 5304 RpcLocator - ok
15:14:06.0963 5304 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
15:14:06.0968 5304 RpcSs - ok
15:14:07.0031 5304 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
15:14:07.0033 5304 rspndr - ok
15:14:07.0107 5304 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:14:07.0109 5304 SamSs - ok
15:14:07.0127 5304 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
15:14:07.0133 5304 sbp2port - ok
15:14:07.0164 5304 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
15:14:07.0172 5304 SCardSvr - ok
15:14:07.0191 5304 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
15:14:07.0193 5304 scfilter - ok
15:14:07.0248 5304 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
15:14:07.0256 5304 Schedule - ok
15:14:07.0283 5304 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
15:14:07.0284 5304 SCPolicySvc - ok
15:14:07.0307 5304 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
15:14:07.0315 5304 SDRSVC - ok
15:14:07.0341 5304 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:14:07.0343 5304 secdrv - ok
15:14:07.0362 5304 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
15:14:07.0365 5304 seclogon - ok
15:14:07.0415 5304 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
15:14:07.0419 5304 SENS - ok
15:14:07.0448 5304 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
15:14:07.0451 5304 SensrSvc - ok
15:14:07.0480 5304 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
15:14:07.0481 5304 Serenum - ok
15:14:07.0508 5304 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
15:14:07.0511 5304 Serial - ok
15:14:07.0520 5304 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
15:14:07.0524 5304 sermouse - ok
15:14:07.0562 5304 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
15:14:07.0576 5304 SessionEnv - ok
15:14:07.0595 5304 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
15:14:07.0596 5304 sffdisk - ok
15:14:07.0618 5304 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
15:14:07.0620 5304 sffp_mmc - ok
15:14:07.0626 5304 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
15:14:07.0634 5304 sffp_sd - ok
15:14:07.0641 5304 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
15:14:07.0645 5304 sfloppy - ok
15:14:07.0731 5304 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
15:14:07.0737 5304 SharedAccess - ok
15:14:07.0769 5304 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
15:14:07.0776 5304 ShellHWDetection - ok
15:14:07.0784 5304 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
15:14:07.0787 5304 sisagp - ok
15:14:07.0817 5304 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
15:14:07.0818 5304 SiSRaid2 - ok
15:14:07.0825 5304 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
15:14:07.0833 5304 SiSRaid4 - ok
15:14:07.0861 5304 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
15:14:07.0863 5304 Smb - ok
15:14:07.0898 5304 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
15:14:07.0902 5304 SNMPTRAP - ok
15:14:07.0965 5304 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
15:14:07.0967 5304 spldr - ok
15:14:08.0006 5304 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
15:14:08.0011 5304 Spooler - ok
15:14:08.0239 5304 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
15:14:08.0350 5304 sppsvc - ok
15:14:08.0511 5304 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
15:14:08.0516 5304 sppuinotify - ok
15:14:08.0609 5304 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
15:14:08.0629 5304 srv - ok
15:14:08.0694 5304 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
15:14:08.0727 5304 srv2 - ok
15:14:08.0760 5304 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
15:14:08.0776 5304 srvnet - ok
15:14:08.0825 5304 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
15:14:08.0865 5304 SSDPSRV - ok
15:14:08.0890 5304 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
15:14:08.0898 5304 SstpSvc - ok
15:14:08.0935 5304 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
15:14:08.0938 5304 stexstor - ok
15:14:09.0021 5304 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
15:14:09.0071 5304 StiSvc - ok
15:14:09.0111 5304 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
15:14:09.0111 5304 swenum - ok
15:14:09.0171 5304 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
15:14:09.0171 5304 swprv - ok
15:14:09.0251 5304 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
15:14:09.0261 5304 SysMain - ok
15:14:09.0271 5304 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
15:14:09.0281 5304 TabletInputService - ok
15:14:09.0301 5304 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
15:14:09.0341 5304 TapiSrv - ok
15:14:09.0361 5304 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
15:14:09.0371 5304 TBS - ok
15:14:09.0471 5304 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
15:14:09.0541 5304 Tcpip - ok
15:14:09.0601 5304 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
15:14:09.0611 5304 TCPIP6 - ok
15:14:09.0651 5304 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
15:14:09.0651 5304 tcpipreg - ok
15:14:09.0701 5304 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
15:14:09.0711 5304 TDPIPE - ok
15:14:09.0741 5304 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
15:14:09.0741 5304 TDTCP - ok
15:14:09.0761 5304 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
15:14:09.0771 5304 tdx - ok
15:14:09.0781 5304 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
15:14:09.0791 5304 TermDD - ok
15:14:09.0841 5304 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
15:14:09.0851 5304 TermService - ok
15:14:09.0861 5304 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
15:14:09.0861 5304 Themes - ok
15:14:09.0881 5304 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
15:14:09.0881 5304 THREADORDER - ok
15:14:09.0911 5304 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
15:14:09.0911 5304 TrkWks - ok
15:14:09.0991 5304 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
15:14:10.0011 5304 TrustedInstaller - ok
15:14:10.0021 5304 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:14:10.0021 5304 tssecsrv - ok
15:14:10.0041 5304 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
15:14:10.0041 5304 TsUsbFlt - ok
15:14:10.0101 5304 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
15:14:10.0101 5304 TsUsbGD - ok
15:14:10.0131 5304 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
15:14:10.0141 5304 tunnel - ok
15:14:10.0161 5304 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
15:14:10.0161 5304 uagp35 - ok
15:14:10.0191 5304 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
15:14:10.0201 5304 udfs - ok
15:14:10.0231 5304 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
15:14:10.0241 5304 UI0Detect - ok
15:14:10.0261 5304 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
15:14:10.0271 5304 uliagpkx - ok
15:14:10.0291 5304 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
15:14:10.0291 5304 umbus - ok
15:14:10.0301 5304 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
15:14:10.0301 5304 UmPass - ok
15:14:10.0361 5304 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
15:14:10.0361 5304 upnphost - ok
15:14:10.0401 5304 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
15:14:10.0401 5304 usbccgp - ok
15:14:10.0421 5304 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
15:14:10.0421 5304 usbcir - ok
15:14:10.0451 5304 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
15:14:10.0461 5304 usbehci - ok
15:14:10.0471 5304 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
15:14:10.0481 5304 usbhub - ok
15:14:10.0501 5304 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
15:14:10.0501 5304 usbohci - ok
15:14:10.0531 5304 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
15:14:10.0531 5304 usbprint - ok
15:14:10.0561 5304 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
15:14:10.0561 5304 usbscan - ok
15:14:10.0581 5304 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS
15:14:10.0581 5304 USBSTOR - ok
15:14:10.0591 5304 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
15:14:10.0601 5304 usbuhci - ok
15:14:10.0641 5304 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
15:14:10.0641 5304 UxSms - ok
15:14:10.0662 5304 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
15:14:10.0662 5304 VaultSvc - ok
15:14:10.0702 5304 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
15:14:10.0702 5304 vdrvroot - ok
15:14:10.0742 5304 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
15:14:10.0772 5304 vds - ok
15:14:10.0792 5304 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
15:14:10.0802 5304 vga - ok
15:14:10.0822 5304 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
15:14:10.0832 5304 VgaSave - ok
15:14:10.0862 5304 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
15:14:10.0872 5304 vhdmp - ok
15:14:10.0882 5304 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
15:14:10.0892 5304 viaagp - ok
15:14:10.0902 5304 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
15:14:10.0902 5304 ViaC7 - ok
15:14:10.0922 5304 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
15:14:10.0922 5304 viaide - ok
15:14:10.0932 5304 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
15:14:10.0942 5304 volmgr - ok
15:14:10.0962 5304 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
15:14:10.0972 5304 volmgrx - ok
15:14:11.0002 5304 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
15:14:11.0012 5304 volsnap - ok
15:14:11.0042 5304 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
15:14:11.0042 5304 vsmraid - ok
15:14:11.0122 5304 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
15:14:11.0132 5304 VSS - ok
15:14:11.0179 5304 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
15:14:11.0179 5304 vwifibus - ok
15:14:11.0194 5304 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
15:14:11.0194 5304 vwififlt - ok
15:14:11.0257 5304 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
15:14:11.0257 5304 vwifimp - ok
15:14:11.0272 5304 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
15:14:11.0288 5304 W32Time - ok
15:14:11.0304 5304 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
15:14:11.0304 5304 WacomPen - ok
15:14:11.0350 5304 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
15:14:11.0350 5304 WANARP - ok
15:14:11.0366 5304 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
15:14:11.0366 5304 Wanarpv6 - ok
15:14:11.0496 5304 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
15:14:11.0546 5304 WatAdminSvc - ok
15:14:11.0646 5304 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
15:14:11.0676 5304 wbengine - ok
15:14:11.0706 5304 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
15:14:11.0716 5304 WbioSrvc - ok
15:14:11.0746 5304 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
15:14:11.0756 5304 wcncsvc - ok
15:14:11.0776 5304 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
15:14:11.0776 5304 WcsPlugInService - ok
15:14:11.0836 5304 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
15:14:11.0836 5304 Wd - ok
15:14:11.0886 5304 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
15:14:11.0906 5304 Wdf01000 - ok
15:14:11.0926 5304 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
15:14:11.0926 5304 WdiServiceHost - ok
15:14:11.0936 5304 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
15:14:11.0946 5304 WdiSystemHost - ok
15:14:11.0976 5304 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
15:14:12.0016 5304 WebClient - ok
15:14:12.0036 5304 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
15:14:12.0056 5304 Wecsvc - ok
15:14:12.0066 5304 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
15:14:12.0076 5304 wercplsupport - ok
15:14:12.0086 5304 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
15:14:12.0096 5304 WerSvc - ok
15:14:12.0136 5304 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
15:14:12.0136 5304 WfpLwf - ok
15:14:12.0156 5304 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
15:14:12.0156 5304 WIMMount - ok
15:14:12.0266 5304 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
15:14:12.0286 5304 WinDefend - ok
15:14:12.0296 5304 WinHttpAutoProxySvc - ok
15:14:12.0346 5304 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
15:14:12.0356 5304 Winmgmt - ok
15:14:12.0426 5304 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
15:14:12.0466 5304 WinRM - ok
15:14:12.0546 5304 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
15:14:12.0616 5304 Wlansvc - ok
15:14:12.0656 5304 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
15:14:12.0667 5304 WmiAcpi - ok
15:14:12.0707 5304 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
15:14:12.0717 5304 wmiApSrv - ok
15:14:12.0797 5304 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:14:12.0837 5304 WMPNetworkSvc - ok
15:14:12.0857 5304 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
15:14:12.0857 5304 WPCSvc - ok
15:14:12.0877 5304 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
15:14:12.0897 5304 WPDBusEnum - ok
15:14:12.0927 5304 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
15:14:12.0927 5304 ws2ifsl - ok
15:14:12.0937 5304 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll
15:14:12.0957 5304 wscsvc - ok
15:14:12.0987 5304 WSDPrintDevice (553f6ccd7c58eb98d4a8fbdaf283d7a9) C:\Windows\system32\DRIVERS\WSDPrint.sys
15:14:12.0987 5304 WSDPrintDevice - ok
15:14:12.0997 5304 WSearch - ok
15:14:13.0147 5304 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:14:13.0207 5304 wuauserv - ok
15:14:13.0277 5304 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
15:14:13.0277 5304 WudfPf - ok
15:14:13.0317 5304 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:14:13.0317 5304 WUDFRd - ok
15:14:13.0347 5304 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
15:14:13.0357 5304 wudfsvc - ok
15:14:13.0379 5304 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
15:14:13.0394 5304 WwanSvc - ok
15:14:13.0483 5304 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
15:14:13.0499 5304 YahooAUService - ok
15:14:13.0552 5304 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:14:13.0577 5304 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
15:14:13.0577 5304 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
15:14:13.0582 5304 Boot (0x1200) (775171023cfb58b53ac451eaa489775a) \Device\Harddisk0\DR0\Partition0
15:14:13.0585 5304 \Device\Harddisk0\DR0\Partition0 - ok
15:14:13.0587 5304 ============================================================
15:14:13.0587 5304 Scan finished
15:14:13.0587 5304 ============================================================
15:14:13.0609 4900 Detected object count: 1
15:14:13.0609 4900 Actual detected object count: 1
15:15:33.0564 4900 \Device\Harddisk0\DR0\# - copied to quarantine
15:15:33.0983 4900 \Device\Harddisk0\DR0 - copied to quarantine
15:15:36.0119 4900 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
15:15:36.0129 4900 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
15:15:36.0229 4900 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
15:15:36.0312 4900 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
15:15:36.0336 4900 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
15:15:36.0372 4900 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
15:15:38.0221 4900 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
15:15:38.0296 4900 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
15:15:38.0302 4900 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
15:15:38.0307 4900 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
15:15:38.0612 4900 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
15:15:38.0656 4900 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
15:15:38.0673 4900 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
15:15:38.0691 4900 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
15:15:38.0726 4900 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
15:15:38.0729 4900 \Device\Harddisk0\DR0 - ok
15:15:38.0804 4900 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
15:15:57.0353 4212 Deinitialize success

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 09 August 2012 - 12:37 AM

Reboot the PC and run TDSSkiller and ASWMBR again

#6 nick2222

nick2222
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 09 August 2012 - 02:38 PM

14:22:59.0412 3860 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
14:22:59.0739 3860 ============================================================
14:22:59.0739 3860 Current date / time: 2012/08/09 14:22:59.0739
14:22:59.0739 3860 SystemInfo:
14:22:59.0739 3860
14:22:59.0739 3860 OS Version: 6.1.7601 ServicePack: 1.0
14:22:59.0739 3860 Product type: Workstation
14:22:59.0739 3860 ComputerName: CHRIS-PC
14:22:59.0739 3860 UserName: CHRIS
14:22:59.0739 3860 Windows directory: C:\Windows
14:22:59.0739 3860 System windows directory: C:\Windows
14:22:59.0739 3860 Processor architecture: Intel x86
14:22:59.0739 3860 Number of processors: 2
14:22:59.0739 3860 Page size: 0x1000
14:22:59.0739 3860 Boot type: Normal boot
14:22:59.0739 3860 ============================================================
14:23:01.0424 3860 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:23:01.0424 3860 ============================================================
14:23:01.0424 3860 \Device\Harddisk0\DR0:
14:23:01.0424 3860 MBR partitions:
14:23:01.0424 3860 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681
14:23:01.0424 3860 ============================================================
14:23:01.0424 3860 C: <-> \Device\Harddisk0\DR0\Partition0
14:23:01.0424 3860 ============================================================
14:23:01.0424 3860 Initialize success
14:23:01.0424 3860 ============================================================
14:25:06.0514 1500 ============================================================
14:25:06.0514 1500 Scan started
14:25:06.0514 1500 Mode: Manual; TDLFS;
14:25:06.0514 1500 ============================================================
14:25:07.0355 1500 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
14:25:07.0362 1500 1394ohci - ok
14:25:07.0406 1500 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
14:25:07.0408 1500 ACPI - ok
14:25:07.0437 1500 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
14:25:07.0438 1500 AcpiPmi - ok
14:25:07.0530 1500 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:25:07.0533 1500 AdobeARMservice - ok
14:25:07.0624 1500 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:25:07.0626 1500 AdobeFlashPlayerUpdateSvc - ok
14:25:07.0663 1500 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
14:25:07.0671 1500 adp94xx - ok
14:25:07.0694 1500 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
14:25:07.0700 1500 adpahci - ok
14:25:07.0733 1500 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
14:25:07.0740 1500 adpu320 - ok
14:25:07.0777 1500 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
14:25:07.0778 1500 AeLookupSvc - ok
14:25:07.0833 1500 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
14:25:07.0847 1500 AFD - ok
14:25:07.0871 1500 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
14:25:07.0875 1500 agp440 - ok
14:25:07.0906 1500 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
14:25:07.0907 1500 aic78xx - ok
14:25:07.0944 1500 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
14:25:07.0948 1500 ALG - ok
14:25:07.0967 1500 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
14:25:07.0968 1500 aliide - ok
14:25:07.0990 1500 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
14:25:07.0991 1500 amdagp - ok
14:25:08.0008 1500 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
14:25:08.0011 1500 amdide - ok
14:25:08.0045 1500 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
14:25:08.0047 1500 AmdK8 - ok
14:25:08.0062 1500 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys
14:25:08.0063 1500 AmdPPM - ok
14:25:08.0101 1500 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
14:25:08.0109 1500 amdsata - ok
14:25:08.0136 1500 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
14:25:08.0137 1500 amdsbs - ok
14:25:08.0152 1500 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
14:25:08.0153 1500 amdxata - ok
14:25:08.0170 1500 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
14:25:08.0172 1500 AppID - ok
14:25:08.0222 1500 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
14:25:08.0224 1500 AppIDSvc - ok
14:25:08.0262 1500 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
14:25:08.0263 1500 Appinfo - ok
14:25:08.0350 1500 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:25:08.0352 1500 Apple Mobile Device - ok
14:25:08.0398 1500 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
14:25:08.0399 1500 arc - ok
14:25:08.0412 1500 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
14:25:08.0414 1500 arcsas - ok
14:25:08.0450 1500 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
14:25:08.0451 1500 AsyncMac - ok
14:25:08.0461 1500 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
14:25:08.0462 1500 atapi - ok
14:25:08.0499 1500 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
14:25:08.0504 1500 AudioEndpointBuilder - ok
14:25:08.0513 1500 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
14:25:08.0519 1500 Audiosrv - ok
14:25:08.0552 1500 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
14:25:08.0554 1500 AxInstSV - ok
14:25:08.0627 1500 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
14:25:08.0631 1500 b06bdrv - ok
14:25:08.0694 1500 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
14:25:08.0740 1500 b57nd60x - ok
14:25:08.0764 1500 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
14:25:08.0771 1500 BDESVC - ok
14:25:08.0800 1500 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
14:25:08.0803 1500 Beep - ok
14:25:08.0902 1500 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
14:25:08.0907 1500 BFE - ok
14:25:08.0983 1500 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\system32\qmgr.dll
14:25:09.0005 1500 BITS - ok
14:25:09.0019 1500 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
14:25:09.0021 1500 blbdrive - ok
14:25:09.0165 1500 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
14:25:09.0189 1500 Bonjour Service - ok
14:25:09.0230 1500 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
14:25:09.0234 1500 bowser - ok
14:25:09.0254 1500 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
14:25:09.0264 1500 BrFiltLo - ok
14:25:09.0292 1500 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
14:25:09.0293 1500 BrFiltUp - ok
14:25:09.0328 1500 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
14:25:09.0330 1500 BridgeMP - ok
14:25:09.0360 1500 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
14:25:09.0362 1500 Browser - ok
14:25:09.0390 1500 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
14:25:09.0395 1500 Brserid - ok
14:25:09.0411 1500 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
14:25:09.0412 1500 BrSerWdm - ok
14:25:09.0429 1500 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:25:09.0430 1500 BrUsbMdm - ok
14:25:09.0436 1500 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
14:25:09.0441 1500 BrUsbSer - ok
14:25:09.0460 1500 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
14:25:09.0462 1500 BTHMODEM - ok
14:25:09.0504 1500 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
14:25:09.0511 1500 bthserv - ok
14:25:09.0652 1500 catchme - ok
14:25:09.0716 1500 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
14:25:09.0719 1500 cdfs - ok
14:25:09.0754 1500 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
14:25:09.0756 1500 cdrom - ok
14:25:09.0795 1500 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
14:25:09.0796 1500 CertPropSvc - ok
14:25:09.0831 1500 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
14:25:09.0833 1500 circlass - ok
14:25:09.0864 1500 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
14:25:09.0917 1500 CLFS - ok
14:25:10.0002 1500 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:25:10.0005 1500 clr_optimization_v2.0.50727_32 - ok
14:25:10.0076 1500 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:25:10.0088 1500 clr_optimization_v4.0.30319_32 - ok
14:25:10.0108 1500 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
14:25:10.0109 1500 CmBatt - ok
14:25:10.0131 1500 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
14:25:10.0131 1500 cmdide - ok
14:25:10.0181 1500 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
14:25:10.0198 1500 CNG - ok
14:25:10.0219 1500 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
14:25:10.0222 1500 Compbatt - ok
14:25:10.0273 1500 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:25:10.0275 1500 CompositeBus - ok
14:25:10.0295 1500 COMSysApp - ok
14:25:10.0316 1500 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
14:25:10.0319 1500 crcdisk - ok
14:25:10.0369 1500 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
14:25:10.0372 1500 CryptSvc - ok
14:25:10.0425 1500 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
14:25:10.0431 1500 DcomLaunch - ok
14:25:10.0493 1500 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
14:25:10.0531 1500 defragsvc - ok
14:25:10.0563 1500 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
14:25:10.0566 1500 DfsC - ok
14:25:10.0585 1500 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
14:25:10.0588 1500 Dhcp - ok
14:25:10.0606 1500 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
14:25:10.0608 1500 discache - ok
14:25:10.0630 1500 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
14:25:10.0631 1500 Disk - ok
14:25:10.0658 1500 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
14:25:10.0660 1500 Dnscache - ok
14:25:10.0686 1500 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
14:25:10.0725 1500 dot3svc - ok
14:25:10.0776 1500 Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys
14:25:10.0779 1500 Dot4 - ok
14:25:10.0811 1500 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:25:10.0812 1500 Dot4Print - ok
14:25:10.0832 1500 dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys
14:25:10.0834 1500 dot4usb - ok
14:25:10.0869 1500 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
14:25:10.0871 1500 DPS - ok
14:25:10.0895 1500 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
14:25:10.0897 1500 drmkaud - ok
14:25:10.0940 1500 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
14:25:10.0946 1500 DXGKrnl - ok
14:25:11.0005 1500 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
14:25:11.0008 1500 EapHost - ok
14:25:11.0200 1500 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
14:25:11.0226 1500 ebdrv - ok
14:25:11.0323 1500 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
14:25:11.0325 1500 EFS - ok
14:25:11.0400 1500 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
14:25:11.0417 1500 ehRecvr - ok
14:25:11.0437 1500 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
14:25:11.0439 1500 ehSched - ok
14:25:11.0597 1500 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
14:25:11.0624 1500 elxstor - ok
14:25:11.0714 1500 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
14:25:11.0715 1500 ErrDev - ok
14:25:11.0820 1500 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
14:25:11.0824 1500 EventSystem - ok
14:25:11.0837 1500 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
14:25:11.0843 1500 exfat - ok
14:25:11.0875 1500 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
14:25:11.0891 1500 fastfat - ok
14:25:11.0984 1500 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
14:25:11.0990 1500 Fax - ok
14:25:12.0050 1500 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\drivers\fdc.sys
14:25:12.0051 1500 fdc - ok
14:25:12.0094 1500 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
14:25:12.0096 1500 fdPHost - ok
14:25:12.0114 1500 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
14:25:12.0117 1500 FDResPub - ok
14:25:12.0156 1500 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
14:25:12.0157 1500 FileInfo - ok
14:25:12.0173 1500 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
14:25:12.0176 1500 Filetrace - ok
14:25:12.0211 1500 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\drivers\flpydisk.sys
14:25:12.0212 1500 flpydisk - ok
14:25:12.0273 1500 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
14:25:12.0278 1500 FltMgr - ok
14:25:12.0676 1500 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
14:25:12.0691 1500 FontCache - ok
14:25:12.0790 1500 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:25:12.0792 1500 FontCache3.0.0.0 - ok
14:25:12.0838 1500 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
14:25:12.0840 1500 FsDepends - ok
14:25:12.0874 1500 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
14:25:12.0875 1500 Fs_Rec - ok
14:25:12.0906 1500 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
14:25:12.0917 1500 fvevol - ok
14:25:12.0942 1500 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
14:25:12.0944 1500 gagp30kx - ok
14:25:13.0019 1500 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:25:13.0020 1500 GEARAspiWDM - ok
14:25:13.0296 1500 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
14:25:13.0305 1500 gpsvc - ok
14:25:13.0462 1500 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
14:25:13.0464 1500 gupdate - ok
14:25:13.0471 1500 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files\Google\Update\GoogleUpdate.exe
14:25:13.0473 1500 gupdatem - ok
14:25:13.0531 1500 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
14:25:13.0533 1500 gusvc - ok
14:25:13.0565 1500 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
14:25:13.0566 1500 hcw85cir - ok
14:25:13.0696 1500 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
14:25:13.0708 1500 HdAudAddService - ok
14:25:13.0719 1500 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:25:13.0721 1500 HDAudBus - ok
14:25:13.0735 1500 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
14:25:13.0736 1500 HidBatt - ok
14:25:13.0747 1500 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
14:25:13.0749 1500 HidBth - ok
14:25:13.0762 1500 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
14:25:13.0763 1500 HidIr - ok
14:25:13.0791 1500 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
14:25:13.0793 1500 hidserv - ok
14:25:13.0825 1500 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
14:25:13.0827 1500 HidUsb - ok
14:25:13.0876 1500 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
14:25:13.0878 1500 hkmsvc - ok
14:25:13.0901 1500 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
14:25:13.0940 1500 HomeGroupListener - ok
14:25:13.0977 1500 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
14:25:13.0980 1500 HomeGroupProvider - ok
14:25:14.0113 1500 hpqcxs08 (08457d8f8149757c70cea59c71ec5d27) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
14:25:14.0140 1500 hpqcxs08 - ok
14:25:14.0157 1500 hpqddsvc (75cc8c5146a3fb76221a7606628778d5) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
14:25:14.0195 1500 hpqddsvc - ok
14:25:14.0229 1500 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
14:25:14.0230 1500 HpSAMD - ok
14:25:14.0308 1500 HPSLPSVC (83db5dd8be71cba5447fbd7a48fdbeda) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
14:25:14.0368 1500 HPSLPSVC - ok
14:25:14.0411 1500 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
14:25:14.0437 1500 HTTP - ok
14:25:14.0454 1500 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
14:25:14.0455 1500 hwpolicy - ok
14:25:14.0483 1500 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
14:25:14.0486 1500 i8042prt - ok
14:25:14.0533 1500 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
14:25:14.0555 1500 iaStorV - ok
14:25:14.0828 1500 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:25:14.0886 1500 idsvc - ok
14:25:14.0917 1500 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
14:25:14.0918 1500 iirsp - ok
14:25:14.0978 1500 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
14:25:14.0984 1500 IKEEXT - ok
14:25:15.0007 1500 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
14:25:15.0011 1500 intelide - ok
14:25:15.0039 1500 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\drivers\intelppm.sys
14:25:15.0046 1500 intelppm - ok
14:25:15.0073 1500 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
14:25:15.0080 1500 IPBusEnum - ok
14:25:15.0090 1500 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:25:15.0092 1500 IpFilterDriver - ok
14:25:15.0129 1500 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
14:25:15.0135 1500 iphlpsvc - ok
14:25:15.0144 1500 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
14:25:15.0148 1500 IPMIDRV - ok
14:25:15.0169 1500 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
14:25:15.0173 1500 IPNAT - ok
14:25:15.0295 1500 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
14:25:15.0344 1500 iPod Service - ok
14:25:15.0359 1500 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
14:25:15.0360 1500 IRENUM - ok
14:25:15.0384 1500 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
14:25:15.0385 1500 isapnp - ok
14:25:15.0404 1500 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
14:25:15.0442 1500 iScsiPrt - ok
14:25:15.0478 1500 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
14:25:15.0480 1500 kbdclass - ok
14:25:15.0498 1500 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
14:25:15.0500 1500 kbdhid - ok
14:25:15.0529 1500 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:25:15.0530 1500 KeyIso - ok
14:25:15.0562 1500 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
14:25:15.0563 1500 KSecDD - ok
14:25:15.0591 1500 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
14:25:15.0598 1500 KSecPkg - ok
14:25:15.0646 1500 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
14:25:15.0700 1500 KtmRm - ok
14:25:15.0726 1500 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\System32\srvsvc.dll
14:25:15.0730 1500 LanmanServer - ok
14:25:15.0759 1500 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
14:25:15.0762 1500 LanmanWorkstation - ok
14:25:15.0797 1500 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
14:25:15.0799 1500 lltdio - ok
14:25:15.0835 1500 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
14:25:15.0849 1500 lltdsvc - ok
14:25:15.0899 1500 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
14:25:15.0909 1500 lmhosts - ok
14:25:15.0966 1500 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
14:25:15.0967 1500 LSI_FC - ok
14:25:16.0022 1500 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
14:25:16.0023 1500 LSI_SAS - ok
14:25:16.0042 1500 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
14:25:16.0044 1500 LSI_SAS2 - ok
14:25:16.0057 1500 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
14:25:16.0061 1500 LSI_SCSI - ok
14:25:16.0088 1500 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
14:25:16.0103 1500 luafv - ok
14:25:16.0169 1500 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
14:25:16.0171 1500 MBAMProtector - ok
14:25:16.0322 1500 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
14:25:16.0347 1500 MBAMService - ok
14:25:16.0368 1500 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
14:25:16.0372 1500 Mcx2Svc - ok
14:25:16.0385 1500 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
14:25:16.0387 1500 megasas - ok
14:25:16.0432 1500 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
14:25:16.0434 1500 MegaSR - ok
14:25:16.0463 1500 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:25:16.0465 1500 MMCSS - ok
14:25:16.0485 1500 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
14:25:16.0487 1500 Modem - ok
14:25:16.0509 1500 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
14:25:16.0511 1500 monitor - ok
14:25:16.0539 1500 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
14:25:16.0541 1500 mouclass - ok
14:25:16.0578 1500 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
14:25:16.0581 1500 mouhid - ok
14:25:16.0599 1500 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
14:25:16.0605 1500 mountmgr - ok
14:25:16.0675 1500 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:25:16.0677 1500 MozillaMaintenance - ok
14:25:16.0747 1500 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
14:25:16.0753 1500 MpFilter - ok
14:25:16.0766 1500 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
14:25:16.0768 1500 mpio - ok
14:25:16.0859 1500 MpKsld5b5128b (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10CE8727-24B8-48E7-843A-6451D84B41AA}\MpKsld5b5128b.sys
14:25:16.0860 1500 MpKsld5b5128b - ok
14:25:16.0878 1500 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
14:25:16.0880 1500 mpsdrv - ok
14:25:16.0925 1500 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
14:25:16.0930 1500 MpsSvc - ok
14:25:16.0952 1500 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
14:25:16.0960 1500 MRxDAV - ok
14:25:17.0000 1500 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:25:17.0007 1500 mrxsmb - ok
14:25:17.0051 1500 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:25:17.0066 1500 mrxsmb10 - ok
14:25:17.0085 1500 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:25:17.0088 1500 mrxsmb20 - ok
14:25:17.0119 1500 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
14:25:17.0120 1500 msahci - ok
14:25:17.0146 1500 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
14:25:17.0148 1500 msdsm - ok
14:25:17.0200 1500 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
14:25:17.0204 1500 MSDTC - ok
14:25:17.0229 1500 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
14:25:17.0230 1500 Msfs - ok
14:25:17.0242 1500 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
14:25:17.0243 1500 mshidkmdf - ok
14:25:17.0252 1500 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
14:25:17.0253 1500 msisadrv - ok
14:25:17.0296 1500 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
14:25:17.0303 1500 MSiSCSI - ok
14:25:17.0308 1500 msiserver - ok
14:25:17.0340 1500 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
14:25:17.0342 1500 MSKSSRV - ok
14:25:17.0404 1500 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
14:25:17.0406 1500 MsMpSvc - ok
14:25:17.0411 1500 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
14:25:17.0413 1500 MSPCLOCK - ok
14:25:17.0423 1500 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
14:25:17.0425 1500 MSPQM - ok
14:25:17.0443 1500 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
14:25:17.0446 1500 MsRPC - ok
14:25:17.0464 1500 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
14:25:17.0466 1500 mssmbios - ok
14:25:17.0481 1500 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
14:25:17.0482 1500 MSTEE - ok
14:25:17.0490 1500 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
14:25:17.0494 1500 MTConfig - ok
14:25:17.0517 1500 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
14:25:17.0518 1500 Mup - ok
14:25:17.0551 1500 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
14:25:17.0557 1500 napagent - ok
14:25:17.0589 1500 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
14:25:17.0636 1500 NativeWifiP - ok
14:25:17.0735 1500 NBService (0d01287d85b3715fa8270e8ec919b7f7) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
14:25:17.0842 1500 NBService - ok
14:25:17.0913 1500 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
14:25:17.0918 1500 NDIS - ok
14:25:17.0940 1500 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
14:25:17.0943 1500 NdisCap - ok
14:25:17.0966 1500 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
14:25:17.0968 1500 NdisTapi - ok
14:25:17.0980 1500 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
14:25:17.0982 1500 Ndisuio - ok
14:25:17.0999 1500 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
14:25:18.0006 1500 NdisWan - ok
14:25:18.0028 1500 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
14:25:18.0029 1500 NDProxy - ok
14:25:18.0115 1500 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\Windows\system32\HPZinw12.dll
14:25:18.0117 1500 Net Driver HPZ12 - ok
14:25:18.0134 1500 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
14:25:18.0137 1500 NetBIOS - ok
14:25:18.0160 1500 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
14:25:18.0163 1500 NetBT - ok
14:25:18.0194 1500 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:25:18.0197 1500 Netlogon - ok
14:25:18.0240 1500 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
14:25:18.0245 1500 Netman - ok
14:25:18.0326 1500 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
14:25:18.0331 1500 netprofm - ok
14:25:18.0402 1500 netr73 (76b1157ef850830c5ece61d3e591ca8b) C:\Windows\system32\DRIVERS\netr73.sys
14:25:18.0450 1500 netr73 - ok
14:25:18.0621 1500 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:25:18.0650 1500 NetTcpPortSharing - ok
14:25:18.0732 1500 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
14:25:18.0803 1500 nfrd960 - ok
14:25:18.0913 1500 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:25:18.0916 1500 NisDrv - ok
14:25:19.0047 1500 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
14:25:19.0053 1500 NisSrv - ok
14:25:19.0223 1500 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
14:25:19.0227 1500 NlaSvc - ok
14:25:19.0504 1500 NMIndexingService (c4ebbbd7165be535f0bfd06b80601d91) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
14:25:19.0508 1500 NMIndexingService - ok
14:25:19.0554 1500 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
14:25:19.0555 1500 Npfs - ok
14:25:19.0644 1500 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
14:25:19.0653 1500 nsi - ok
14:25:19.0693 1500 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
14:25:19.0695 1500 nsiproxy - ok
14:25:19.0841 1500 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
14:25:19.0894 1500 Ntfs - ok
14:25:20.0031 1500 NuidFltr (cf7e041663119e09d2e118521ada9300) C:\Windows\system32\DRIVERS\NuidFltr.sys
14:25:20.0032 1500 NuidFltr - ok
14:25:20.0080 1500 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
14:25:20.0087 1500 Null - ok
14:25:20.0352 1500 NVENETFD (b5e37e31c053bc9950455a257526514b) C:\Windows\system32\DRIVERS\nvm62x32.sys
14:25:20.0358 1500 NVENETFD - ok
14:25:21.0335 1500 nvlddmkm (b0881dda5a8160422561ffab7f0008b1) C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:25:21.0549 1500 nvlddmkm - ok
14:25:21.0700 1500 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
14:25:21.0703 1500 nvraid - ok
14:25:21.0745 1500 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
14:25:21.0747 1500 nvstor - ok
14:25:21.0808 1500 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
14:25:21.0810 1500 nv_agp - ok
14:25:21.0831 1500 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
14:25:21.0833 1500 ohci1394 - ok
14:25:21.0908 1500 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:25:21.0911 1500 ose - ok
14:25:21.0950 1500 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:25:21.0989 1500 p2pimsvc - ok
14:25:22.0042 1500 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
14:25:22.0056 1500 p2psvc - ok
14:25:22.0079 1500 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
14:25:22.0082 1500 Parport - ok
14:25:22.0113 1500 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
14:25:22.0114 1500 partmgr - ok
14:25:22.0138 1500 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
14:25:22.0139 1500 Parvdm - ok
14:25:22.0155 1500 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
14:25:22.0167 1500 PcaSvc - ok
14:25:22.0197 1500 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
14:25:22.0209 1500 pci - ok
14:25:22.0224 1500 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
14:25:22.0225 1500 pciide - ok
14:25:22.0248 1500 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
14:25:22.0251 1500 pcmcia - ok
14:25:22.0288 1500 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
14:25:22.0290 1500 pcw - ok
14:25:22.0333 1500 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
14:25:22.0344 1500 PEAUTH - ok
14:25:22.0453 1500 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
14:25:22.0500 1500 pla - ok
14:25:22.0620 1500 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
14:25:22.0624 1500 PlugPlay - ok
14:25:22.0673 1500 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\Windows\system32\HPZipm12.dll
14:25:22.0675 1500 Pml Driver HPZ12 - ok
14:25:22.0704 1500 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
14:25:22.0707 1500 PNRPAutoReg - ok
14:25:22.0735 1500 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:25:22.0739 1500 PNRPsvc - ok
14:25:22.0792 1500 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
14:25:22.0804 1500 PolicyAgent - ok
14:25:22.0837 1500 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
14:25:22.0840 1500 Power - ok
14:25:22.0900 1500 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
14:25:22.0902 1500 PptpMiniport - ok
14:25:22.0931 1500 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
14:25:22.0934 1500 Processor - ok
14:25:22.0982 1500 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
14:25:22.0985 1500 ProfSvc - ok
14:25:23.0017 1500 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:25:23.0019 1500 ProtectedStorage - ok
14:25:23.0047 1500 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
14:25:23.0054 1500 Psched - ok
14:25:23.0137 1500 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
14:25:23.0148 1500 ql2300 - ok
14:25:23.0205 1500 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
14:25:23.0206 1500 ql40xx - ok
14:25:23.0229 1500 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
14:25:23.0243 1500 QWAVE - ok
14:25:23.0260 1500 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
14:25:23.0262 1500 QWAVEdrv - ok
14:25:23.0279 1500 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
14:25:23.0280 1500 RasAcd - ok
14:25:23.0305 1500 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:25:23.0307 1500 RasAgileVpn - ok
14:25:23.0331 1500 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
14:25:23.0338 1500 RasAuto - ok
14:25:23.0348 1500 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:25:23.0350 1500 Rasl2tp - ok
14:25:23.0380 1500 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
14:25:23.0395 1500 RasMan - ok
14:25:23.0410 1500 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
14:25:23.0412 1500 RasPppoe - ok
14:25:23.0455 1500 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
14:25:23.0457 1500 RasSstp - ok
14:25:23.0482 1500 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
14:25:23.0496 1500 rdbss - ok
14:25:23.0522 1500 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\drivers\rdpbus.sys
14:25:23.0523 1500 rdpbus - ok
14:25:23.0542 1500 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:25:23.0543 1500 RDPCDD - ok
14:25:23.0566 1500 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
14:25:23.0568 1500 RDPENCDD - ok
14:25:23.0582 1500 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
14:25:23.0583 1500 RDPREFMP - ok
14:25:23.0624 1500 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
14:25:23.0638 1500 RDPWD - ok
14:25:23.0668 1500 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
14:25:23.0674 1500 rdyboost - ok
14:25:23.0705 1500 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
14:25:23.0708 1500 RemoteAccess - ok
14:25:23.0722 1500 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
14:25:23.0730 1500 RemoteRegistry - ok
14:25:23.0759 1500 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
14:25:23.0762 1500 RpcEptMapper - ok
14:25:23.0783 1500 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
14:25:23.0787 1500 RpcLocator - ok
14:25:23.0816 1500 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
14:25:23.0823 1500 RpcSs - ok
14:25:23.0911 1500 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
14:25:23.0914 1500 rspndr - ok
14:25:23.0955 1500 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:25:23.0958 1500 SamSs - ok
14:25:24.0039 1500 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
14:25:24.0042 1500 sbp2port - ok
14:25:24.0086 1500 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
14:25:24.0090 1500 SCardSvr - ok
14:25:24.0105 1500 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
14:25:24.0107 1500 scfilter - ok
14:25:24.0180 1500 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
14:25:24.0206 1500 Schedule - ok
14:25:24.0242 1500 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
14:25:24.0243 1500 SCPolicySvc - ok
14:25:24.0283 1500 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
14:25:24.0294 1500 SDRSVC - ok
14:25:24.0339 1500 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
14:25:24.0340 1500 secdrv - ok
14:25:24.0368 1500 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
14:25:24.0372 1500 seclogon - ok
14:25:24.0434 1500 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
14:25:24.0437 1500 SENS - ok
14:25:24.0469 1500 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
14:25:24.0473 1500 SensrSvc - ok
14:25:24.0534 1500 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
14:25:24.0540 1500 Serenum - ok
14:25:24.0580 1500 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
14:25:24.0582 1500 Serial - ok
14:25:24.0613 1500 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
14:25:24.0616 1500 sermouse - ok
14:25:24.0665 1500 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
14:25:24.0668 1500 SessionEnv - ok
14:25:24.0700 1500 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
14:25:24.0702 1500 sffdisk - ok
14:25:24.0723 1500 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
14:25:24.0724 1500 sffp_mmc - ok
14:25:24.0731 1500 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
14:25:24.0734 1500 sffp_sd - ok
14:25:24.0744 1500 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
14:25:24.0746 1500 sfloppy - ok
14:25:24.0811 1500 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
14:25:24.0858 1500 SharedAccess - ok
14:25:24.0881 1500 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
14:25:24.0886 1500 ShellHWDetection - ok
14:25:24.0895 1500 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
14:25:24.0896 1500 sisagp - ok
14:25:24.0930 1500 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
14:25:24.0932 1500 SiSRaid2 - ok
14:25:24.0940 1500 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
14:25:24.0945 1500 SiSRaid4 - ok
14:25:24.0965 1500 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
14:25:24.0967 1500 Smb - ok
14:25:25.0002 1500 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
14:25:25.0005 1500 SNMPTRAP - ok
14:25:25.0046 1500 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
14:25:25.0047 1500 spldr - ok
14:25:25.0080 1500 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
14:25:25.0101 1500 Spooler - ok
14:25:25.0295 1500 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
14:25:25.0380 1500 sppsvc - ok
14:25:25.0472 1500 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
14:25:25.0476 1500 sppuinotify - ok
14:25:25.0544 1500 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
14:25:25.0591 1500 srv - ok
14:25:25.0615 1500 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
14:25:25.0629 1500 srv2 - ok
14:25:25.0664 1500 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
14:25:25.0672 1500 srvnet - ok
14:25:25.0707 1500 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
14:25:25.0721 1500 SSDPSRV - ok
14:25:25.0730 1500 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
14:25:25.0735 1500 SstpSvc - ok
14:25:25.0749 1500 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
14:25:25.0751 1500 stexstor - ok
14:25:25.0796 1500 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
14:25:25.0848 1500 StiSvc - ok
14:25:25.0874 1500 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
14:25:25.0876 1500 swenum - ok
14:25:25.0902 1500 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
14:25:25.0915 1500 swprv - ok
14:25:25.0991 1500 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
14:25:26.0001 1500 SysMain - ok
14:25:26.0042 1500 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
14:25:26.0045 1500 TabletInputService - ok
14:25:26.0072 1500 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
14:25:26.0116 1500 TapiSrv - ok
14:25:26.0147 1500 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
14:25:26.0151 1500 TBS - ok
14:25:26.0292 1500 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
14:25:26.0337 1500 Tcpip - ok
14:25:26.0375 1500 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
14:25:26.0384 1500 TCPIP6 - ok
14:25:26.0406 1500 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
14:25:26.0407 1500 tcpipreg - ok
14:25:26.0450 1500 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
14:25:26.0451 1500 TDPIPE - ok
14:25:26.0468 1500 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
14:25:26.0472 1500 TDTCP - ok
14:25:26.0490 1500 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
14:25:26.0492 1500 tdx - ok
14:25:26.0513 1500 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
14:25:26.0514 1500 TermDD - ok
14:25:26.0566 1500 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
14:25:26.0572 1500 TermService - ok
14:25:26.0585 1500 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
14:25:26.0588 1500 Themes - ok
14:25:26.0616 1500 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:25:26.0619 1500 THREADORDER - ok
14:25:26.0632 1500 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
14:25:26.0635 1500 TrkWks - ok
14:25:26.0678 1500 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
14:25:26.0680 1500 TrustedInstaller - ok
14:25:26.0700 1500 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:25:26.0703 1500 tssecsrv - ok
14:25:26.0720 1500 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
14:25:26.0722 1500 TsUsbFlt - ok
14:25:26.0774 1500 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
14:25:26.0776 1500 TsUsbGD - ok
14:25:26.0838 1500 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
14:25:26.0840 1500 tunnel - ok
14:25:26.0854 1500 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
14:25:26.0855 1500 uagp35 - ok
14:25:26.0884 1500 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
14:25:26.0890 1500 udfs - ok
14:25:26.0911 1500 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
14:25:26.0915 1500 UI0Detect - ok
14:25:26.0939 1500 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
14:25:26.0941 1500 uliagpkx - ok
14:25:26.0993 1500 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
14:25:26.0994 1500 umbus - ok
14:25:27.0037 1500 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
14:25:27.0038 1500 UmPass - ok
14:25:27.0070 1500 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
14:25:27.0108 1500 upnphost - ok
14:25:27.0131 1500 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
14:25:27.0133 1500 usbccgp - ok
14:25:27.0156 1500 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
14:25:27.0158 1500 usbcir - ok
14:25:27.0205 1500 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
14:25:27.0207 1500 usbehci - ok
14:25:27.0243 1500 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
14:25:27.0248 1500 usbhub - ok
14:25:27.0261 1500 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
14:25:27.0263 1500 usbohci - ok
14:25:27.0289 1500 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
14:25:27.0292 1500 usbprint - ok
14:25:27.0328 1500 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
14:25:27.0330 1500 usbscan - ok
14:25:27.0355 1500 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS
14:25:27.0358 1500 USBSTOR - ok
14:25:27.0379 1500 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
14:25:27.0380 1500 usbuhci - ok
14:25:27.0405 1500 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
14:25:27.0408 1500 UxSms - ok
14:25:27.0440 1500 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:25:27.0442 1500 VaultSvc - ok
14:25:27.0466 1500 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
14:25:27.0468 1500 vdrvroot - ok
14:25:27.0499 1500 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
14:25:27.0527 1500 vds - ok
14:25:27.0556 1500 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
14:25:27.0557 1500 vga - ok
14:25:27.0586 1500 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
14:25:27.0588 1500 VgaSave - ok
14:25:27.0626 1500 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
14:25:27.0628 1500 vhdmp - ok
14:25:27.0646 1500 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
14:25:27.0647 1500 viaagp - ok
14:25:27.0661 1500 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
14:25:27.0662 1500 ViaC7 - ok
14:25:27.0677 1500 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
14:25:27.0678 1500 viaide - ok
14:25:27.0713 1500 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
14:25:27.0714 1500 volmgr - ok
14:25:27.0746 1500 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
14:25:27.0759 1500 volmgrx - ok
14:25:27.0791 1500 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
14:25:27.0804 1500 volsnap - ok
14:25:27.0843 1500 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
14:25:27.0848 1500 vsmraid - ok
14:25:27.0941 1500 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
14:25:27.0966 1500 VSS - ok
14:25:27.0986 1500 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
14:25:27.0988 1500 vwifibus - ok
14:25:28.0009 1500 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
14:25:28.0012 1500 vwififlt - ok
14:25:28.0030 1500 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
14:25:28.0031 1500 vwifimp - ok
14:25:28.0072 1500 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
14:25:28.0077 1500 W32Time - ok
14:25:28.0093 1500 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
14:25:28.0095 1500 WacomPen - ok
14:25:28.0131 1500 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
14:25:28.0133 1500 WANARP - ok
14:25:28.0140 1500 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
14:25:28.0141 1500 Wanarpv6 - ok
14:25:28.0243 1500 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
14:25:28.0288 1500 WatAdminSvc - ok
14:25:28.0373 1500 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
14:25:28.0409 1500 wbengine - ok
14:25:28.0429 1500 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
14:25:28.0444 1500 WbioSrvc - ok
14:25:28.0469 1500 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
14:25:28.0483 1500 wcncsvc - ok
14:25:28.0499 1500 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
14:25:28.0503 1500 WcsPlugInService - ok
14:25:28.0559 1500 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
14:25:28.0560 1500 Wd - ok
14:25:28.0593 1500 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
14:25:28.0611 1500 Wdf01000 - ok
14:25:28.0628 1500 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:25:28.0631 1500 WdiServiceHost - ok
14:25:28.0636 1500 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:25:28.0640 1500 WdiSystemHost - ok
14:25:28.0672 1500 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
14:25:28.0711 1500 WebClient - ok
14:25:28.0731 1500 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
14:25:28.0746 1500 Wecsvc - ok
14:25:28.0755 1500 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
14:25:28.0759 1500 wercplsupport - ok
14:25:28.0789 1500 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
14:25:28.0792 1500 WerSvc - ok
14:25:28.0832 1500 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
14:25:28.0833 1500 WfpLwf - ok
14:25:28.0847 1500 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
14:25:28.0849 1500 WIMMount - ok
14:25:28.0979 1500 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
14:25:29.0003 1500 WinDefend - ok
14:25:29.0012 1500 WinHttpAutoProxySvc - ok
14:25:29.0066 1500 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
14:25:29.0072 1500 Winmgmt - ok
14:25:29.0153 1500 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
14:25:29.0163 1500 WinRM - ok
14:25:29.0272 1500 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
14:25:29.0342 1500 Wlansvc - ok
14:25:29.0390 1500 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
14:25:29.0391 1500 WmiAcpi - ok
14:25:29.0423 1500 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
14:25:29.0430 1500 wmiApSrv - ok
14:25:29.0504 1500 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
14:25:29.0540 1500 WMPNetworkSvc - ok
14:25:29.0558 1500 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
14:25:29.0562 1500 WPCSvc - ok
14:25:29.0580 1500 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
14:25:29.0585 1500 WPDBusEnum - ok
14:25:29.0618 1500 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
14:25:29.0619 1500 ws2ifsl - ok
14:25:29.0630 1500 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll
14:25:29.0633 1500 wscsvc - ok
14:25:29.0666 1500 WSDPrintDevice (553f6ccd7c58eb98d4a8fbdaf283d7a9) C:\Windows\system32\DRIVERS\WSDPrint.sys
14:25:29.0668 1500 WSDPrintDevice - ok
14:25:29.0676 1500 WSearch - ok
14:25:29.0823 1500 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
14:25:29.0881 1500 wuauserv - ok
14:25:29.0969 1500 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
14:25:29.0974 1500 WudfPf - ok
14:25:30.0008 1500 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:25:30.0011 1500 WUDFRd - ok
14:25:30.0057 1500 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
14:25:30.0061 1500 wudfsvc - ok
14:25:30.0083 1500 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
14:25:30.0099 1500 WwanSvc - ok
14:25:30.0189 1500 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
14:25:30.0217 1500 YahooAUService - ok
14:25:30.0267 1500 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:25:30.0455 1500 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
14:25:30.0456 1500 \Device\Harddisk0\DR0 - detected TDSS File System (1)
14:25:30.0461 1500 Boot (0x1200) (775171023cfb58b53ac451eaa489775a) \Device\Harddisk0\DR0\Partition0
14:25:30.0462 1500 \Device\Harddisk0\DR0\Partition0 - ok
14:25:30.0465 1500 ============================================================
14:25:30.0465 1500 Scan finished
14:25:30.0465 1500 ============================================================
14:25:30.0484 2732 Detected object count: 1
14:25:30.0484 2732 Actual detected object count: 1
14:25:38.0459 2732 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
14:25:38.0459 2732 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
14:25:50.0138 2488 Deinitialize success


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-09 14:28:55
-----------------------------
14:28:55.384 OS Version: Windows 6.1.7601 Service Pack 1
14:28:55.385 Number of processors: 2 586 0x6B02
14:28:55.388 ComputerName: CHRIS-PC UserName: CHRIS
14:29:06.779 Initialize success
14:29:22.177 AVAST engine defs: 12080801
14:29:28.040 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000058
14:29:28.043 Disk 0 Vendor: WDC_WD25 10.0 Size: 238475MB BusType: 3
14:29:28.065 Disk 0 MBR read successfully
14:29:28.069 Disk 0 MBR scan
14:29:28.083 Disk 0 Windows 7 default MBR code
14:29:28.087 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 238464 MB offset 63
14:29:28.146 Disk 0 scanning sectors +488376000
14:29:28.240 Disk 0 scanning C:\Windows\system32\drivers
14:29:50.046 Service scanning
14:30:14.756 Service MpKsld5b5128b c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10CE8727-24B8-48E7-843A-6451D84B41AA}\MpKsld5b5128b.sys **HIDDEN**
14:30:43.574 Modules scanning
14:30:53.004 Disk 0 trace - called modules:
14:30:53.047 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll storport.sys nvstor.sys
14:30:53.431 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x856da030]
14:30:53.442 3 CLASSPNP.SYS[889b659e] -> nt!IofCallDriver -> [0x84838f08]
14:30:53.452 5 ACPI.sys[883a63d4] -> nt!IofCallDriver -> \Device\00000058[0x8510a030]
14:30:54.471 AVAST engine scan C:\Windows
14:31:02.369 AVAST engine scan C:\Windows\system32
14:34:52.779 AVAST engine scan C:\Windows\system32\drivers
14:35:14.618 AVAST engine scan C:\Users\CHRIS
14:36:51.134 Disk 0 MBR has been saved successfully to "C:\Users\CHRIS\Documents\MBR.dat"
14:36:51.245 The log file has been saved successfully to "C:\Users\CHRIS\Documents\aswMBR.txt"

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 09 August 2012 - 03:14 PM

ESET log?

#8 nick2222

nick2222
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 09 August 2012 - 07:07 PM

The ESET scan found no threats

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 09 August 2012 - 07:09 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#10 nick2222

nick2222
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 10 August 2012 - 12:30 AM

MiniToolBox by Farbar Version: 23-07-2012
Ran by CHRIS (administrator) on 10-08-2012 at 00:26:43
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Compact Wireless-G USB Adapter = Wireless Network Connection 3 (Connected)
NVIDIA nForce Networking Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 4 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : CHRIS-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 4:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 00-1C-10-E6-2E-17
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Compact Wireless-G USB Adapter #2
Physical Address. . . . . . . . . : 00-1C-10-E6-2E-16
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::88f1:a02f:3681:2d66%16(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.12(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, August 09, 2012 11:53:07 PM
Lease Expires . . . . . . . . . . : Friday, August 10, 2012 1:23:11 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 402660368
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-F7-AC-19-00-21-85-04-29-24
DNS Servers . . . . . . . . . . . : 97.64.183.164
97.64.209.37
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
Physical Address. . . . . . . . . : 00-21-85-04-29-24
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:304f:35ba:52ed:2b6f(Preferred)
Link-local IPv6 Address . . . . . : fe80::304f:35ba:52ed:2b6f%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{F5F7EAC4-CBAD-4A78-AC4F-867DCCD347E0}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: sprdc-dns-dts10.mcomdc.com
Address: 97.64.183.164

Name: google.com
Addresses: 2607:f8b0:4009:802::1009
74.125.225.110
74.125.225.96
74.125.225.97
74.125.225.98
74.125.225.99
74.125.225.100
74.125.225.101
74.125.225.102
74.125.225.103
74.125.225.104
74.125.225.105


Pinging google.com [74.125.225.97] with 32 bytes of data:
Reply from 74.125.225.97: bytes=32 time=28ms TTL=55
Reply from 74.125.225.97: bytes=32 time=17ms TTL=55

Ping statistics for 74.125.225.97:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 17ms, Maximum = 28ms, Average = 22ms
Server: sprdc-dns-dts10.mcomdc.com
Address: 97.64.183.164

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=38ms TTL=49
Reply from 209.191.122.70: bytes=32 time=38ms TTL=49

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 38ms, Maximum = 38ms, Average = 38ms
Server: sprdc-dns-dts10.mcomdc.com
Address: 97.64.183.164

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=12ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 12ms, Average = 7ms
===========================================================================
Interface List
17...00 1c 10 e6 2e 17 ......Microsoft Virtual WiFi Miniport Adapter #2
16...00 1c 10 e6 2e 16 ......Compact Wireless-G USB Adapter #2
11...00 21 85 04 29 24 ......NVIDIA nForce Networking Controller
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.12 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.12 281
192.168.0.12 255.255.255.255 On-link 192.168.0.12 281
192.168.0.255 255.255.255.255 On-link 192.168.0.12 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.12 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.12 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 58 ::/0 On-link
1 306 ::1/128 On-link
14 58 2001::/32 On-link
14 306 2001:0:4137:9e76:304f:35ba:52ed:2b6f/128
On-link
16 281 fe80::/64 On-link
14 306 fe80::/64 On-link
14 306 fe80::304f:35ba:52ed:2b6f/128
On-link
16 281 fe80::88f1:a02f:3681:2d66/128
On-link
1 306 ff00::/8 On-link
14 306 ff00::/8 On-link
16 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/09/2012 11:54:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 11:09:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 02:19:42 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 03:42:59 PM) (Source: Application Error) (User: )
Description: Faulting application name: aswMBR.exe, version: 0.9.9.1665, time stamp: 0x4f5f9c86
Faulting module name: aswMBR.exe, version: 0.9.9.1665, time stamp: 0x4f5f9c86
Exception code: 0xc0000005
Fault offset: 0x0004f5db
Faulting process id: 0xd78
Faulting application start time: 0xaswMBR.exe0
Faulting application path: aswMBR.exe1
Faulting module path: aswMBR.exe2
Report Id: aswMBR.exe3

Error: (08/08/2012 03:18:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 11:38:33 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 10:43:30 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 10:29:08 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 10:13:39 AM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.62.0.87 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 918

Start Time: 01cd757850813230

Termination Time: 16

Application Path: C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

Report Id: 9ec6b371-e16b-11e1-8f79-002185042924

Error: (08/07/2012 11:15:23 AM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 12.0.0.4493, time stamp: 0x4f920759
Faulting module name: NPSWF32_11_3_300_270.dll_unloaded, version: 0.0.0.0, time stamp: 0x5019828e
Exception code: 0xc0000005
Fault offset: 0x63bbad23
Faulting process id: 0x728
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3


System errors:
=============
Error: (08/09/2012 11:54:10 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (08/09/2012 11:09:08 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (08/09/2012 02:19:05 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (08/08/2012 03:18:22 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (08/08/2012 01:22:13 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (08/08/2012 01:17:48 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (08/08/2012 01:14:23 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (08/08/2012 11:38:40 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (08/08/2012 10:43:37 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (08/08/2012 10:29:16 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================
Error: (08/09/2012 11:54:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 11:09:44 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 02:19:42 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 03:42:59 PM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.16654f5f9c86aswMBR.exe0.9.9.16654f5f9c86c00000050004f5dbd7801cd75a6233b2500C:\Users\CHRIS\Downloads\aswMBR.exeC:\Users\CHRIS\Downloads\aswMBR.exea3306040-e199-11e1-97f3-002185042924

Error: (08/08/2012 03:18:54 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 11:38:33 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 10:43:30 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 10:29:08 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/08/2012 10:13:39 AM) (Source: Application Hang)(User: )
Description: mbam.exe1.62.0.8791801cd75785081323016C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe9ec6b371-e16b-11e1-8f79-002185042924

Error: (08/07/2012 11:15:23 AM) (Source: Application Error)(User: )
Description: plugin-container.exe12.0.0.44934f920759NPSWF32_11_3_300_270.dll_unloaded0.0.0.05019828ec000000563bbad2372801cd74b487850154C:\Program Files\Mozilla Firefox\plugin-container.exeNPSWF32_11_3_300_270.dll172243b4-e0ab-11e1-8f79-002185042924


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 7.1.8)
6400_Help (Version: 1.00.0000)
Adobe AIR (Version: 3.3.0.3670)
Adobe Download Assistant (Version: 1.2.2)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Flash Player 11 Plugin (Version: 11.3.300.270)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.14.1.0)
Ask Toolbar Updater (Version: 1.2.0.20007)
Bonjour (Version: 3.0.0.10)
bpd_scan (Version: 3.00.0000)
BPDSoftware (Version: 130.0.000.000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 130.0.331.000)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.465.000)
DocProc (Version: 13.0.0.0)
EPSON Scan
ESET Online Scanner v3
Fax (Version: 130.0.418.000)
FrostWire 5.3.4 (Version: 5.3.4.0)
Google Earth (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
GPBaseService2 (Version: 130.0.371.000)
Graph 4.3
HashCalc 2.02
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP OfficeJet J6400 (Version: 13.0)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.003.001.001)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
iTunes (Version: 10.6.1.7)
J6400 (Version: 130.0.000.000)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 3 (Version: 7.0.30)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 130.0.374.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 7 Essentials (Version: 7.02.4509)
Network (Version: 130.0.579.000)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
ProductContext (Version: 130.0.000.000)
QuickTime (Version: 7.71.80.42)
Scan (Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
SmartWebPrinting (Version: 130.0.457.000)
SolutionCenter (Version: 130.0.373.000)
Status (Version: 130.0.469.000)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.422.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
WebReg (Version: 130.0.132.017)
Yahoo! Install Manager
Yahoo! Internet Mail
Yahoo! Mail Advisor
Yahoo! Software Update
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 1983.43 MB
Available physical RAM: 1120.77 MB
Total Pagefile: 3966.86 MB
Available Pagefile: 2942.03 MB
Total Virtual: 2047.88 MB
Available Virtual: 1938.74 MB

========================= Partitions: =====================================

1 Drive c: (Chris C) (Fixed) (Total:232.88 GB) (Free:197.34 GB) NTFS

========================= Users: ========================================

User accounts for \\CHRIS-PC

Administrator CHRIS Guest


**** End of log ****


Farbar Service Scanner Version: 06-08-2012
Ran by CHRIS (administrator) on 10-08-2012 at 00:28:28
Running from "C:\Users\CHRIS\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#11 nick2222

nick2222
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 10 August 2012 - 12:33 AM

# AdwCleaner v1.800 - Logfile created 08/10/2012 at 00:30:06
# Updated 01/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (32 bits)
# User : CHRIS - CHRIS-PC
# Running from : C:\Users\CHRIS\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\CHRIS\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Program Files\Ask.com
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\APN
Key Deleted : HKLM\SOFTWARE\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\CHRIS\AppData\Roaming\Mozilla\Firefox\Profiles\92ln5cay.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3540 octets] - [10/08/2012 00:30:06]

########## EOF - C:\AdwCleaner[S1].txt - [3668 octets] ##########

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 10 August 2012 - 03:58 AM

MBAM log?

Any current issues?

#13 nick2222

nick2222
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:09:25 AM

Posted 10 August 2012 - 11:40 AM

The MBAM log was clean. No my issues of the computer being slow have gone away. Ithank you very much for your help.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:25 AM

Posted 10 August 2012 - 01:56 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users