Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan Agent - svchost.exe - Please Help


  • Please log in to reply
11 replies to this topic

#1 btimm

btimm

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 07:47 AM

My computer is infected with this trojan and I am having difficulty removing it. I tried using MalwareBytes, but the nasty trojan keeps returning every time I start my computer. I did some google research and stumbled upon this thread:

http://www.bleepingcomputer.com/forums/topic449836.html

I am currently following the first steps in the process of that thread, assuming it would help to have these log files. If not, I don't think it will hurt anything, so it is worth a try I guess. I would really appreciate any help that could be given to me, as my own searching has failed to give enough ammo to try it myself. I don't really understand these log files or how to analyze them.

My scans are finished, I will post the log files now. The log file for gmer yielded nothing however. It performed the scan and just didn't have anything in the file when I saved it.

BC AdBot (Login to Remove)

 


#2 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 07:49 AM

TDSS Killer log:

07:40:37.0129 4184 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
07:40:38.0438 4184 ============================================================
07:40:38.0438 4184 Current date / time: 2012/08/10 07:40:38.0438
07:40:38.0438 4184 SystemInfo:
07:40:38.0439 4184
07:40:38.0439 4184 OS Version: 6.1.7601 ServicePack: 1.0
07:40:38.0439 4184 Product type: Workstation
07:40:38.0439 4184 ComputerName: BRIAN-PC
07:40:38.0439 4184 UserName: Brian
07:40:38.0439 4184 Windows directory: C:\Windows
07:40:38.0439 4184 System windows directory: C:\Windows
07:40:38.0439 4184 Running under WOW64
07:40:38.0439 4184 Processor architecture: Intel x64
07:40:38.0439 4184 Number of processors: 2
07:40:38.0439 4184 Page size: 0x1000
07:40:38.0439 4184 Boot type: Normal boot
07:40:38.0439 4184 ============================================================
07:40:39.0700 4184 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:40:39.0709 4184 ============================================================
07:40:39.0709 4184 \Device\Harddisk0\DR0:
07:40:39.0736 4184 MBR partitions:
07:40:39.0736 4184 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
07:40:39.0736 4184 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x236CE2B0
07:40:39.0736 4184 ============================================================
07:40:39.0845 4184 C: <-> \Device\Harddisk0\DR0\Partition1
07:40:39.0845 4184 ============================================================
07:40:39.0845 4184 Initialize success
07:40:39.0845 4184 ============================================================
07:40:53.0609 1848 ============================================================
07:40:53.0609 1848 Scan started
07:40:53.0609 1848 Mode: Manual;
07:40:53.0609 1848 ============================================================
07:40:58.0354 1848 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
07:40:58.0357 1848 1394ohci - ok
07:40:58.0984 1848 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
07:40:58.0988 1848 ACPI - ok
07:40:59.0048 1848 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
07:40:59.0049 1848 AcpiPmi - ok
07:40:59.0308 1848 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
07:40:59.0330 1848 adp94xx - ok
07:40:59.0444 1848 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
07:40:59.0449 1848 adpahci - ok
07:40:59.0543 1848 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
07:40:59.0547 1848 adpu320 - ok
07:40:59.0596 1848 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
07:40:59.0598 1848 AeLookupSvc - ok
07:40:59.0990 1848 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
07:40:59.0995 1848 AFD - ok
07:41:00.0057 1848 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
07:41:00.0059 1848 agp440 - ok
07:41:00.0169 1848 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
07:41:00.0172 1848 ALG - ok
07:41:00.0229 1848 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
07:41:00.0229 1848 aliide - ok
07:41:00.0247 1848 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
07:41:00.0248 1848 amdide - ok
07:41:00.0275 1848 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
07:41:00.0277 1848 AmdK8 - ok
07:41:00.0303 1848 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
07:41:00.0304 1848 AmdPPM - ok
07:41:00.0369 1848 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
07:41:00.0371 1848 amdsata - ok
07:41:00.0393 1848 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
07:41:00.0397 1848 amdsbs - ok
07:41:00.0445 1848 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
07:41:00.0446 1848 amdxata - ok
07:41:00.0553 1848 ApfiltrService (9b0b7fde049cb283fabe5877a49f2611) C:\Windows\system32\DRIVERS\Apfiltr.sys
07:41:00.0559 1848 ApfiltrService - ok
07:41:00.0615 1848 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
07:41:00.0617 1848 AppID - ok
07:41:00.0657 1848 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
07:41:00.0659 1848 AppIDSvc - ok
07:41:00.0719 1848 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
07:41:00.0721 1848 Appinfo - ok
07:41:00.0964 1848 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:41:00.0966 1848 Apple Mobile Device - ok
07:41:01.0068 1848 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
07:41:01.0071 1848 arc - ok
07:41:01.0092 1848 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
07:41:01.0094 1848 arcsas - ok
07:41:01.0130 1848 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
07:41:01.0131 1848 AsyncMac - ok
07:41:01.0196 1848 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
07:41:01.0197 1848 atapi - ok
07:41:01.0294 1848 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
07:41:01.0302 1848 AudioEndpointBuilder - ok
07:41:01.0312 1848 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
07:41:01.0318 1848 AudioSrv - ok
07:41:01.0512 1848 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
07:41:01.0515 1848 AxInstSV - ok
07:41:01.0589 1848 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
07:41:01.0604 1848 b06bdrv - ok
07:41:01.0675 1848 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
07:41:01.0679 1848 b57nd60a - ok
07:41:01.0812 1848 BCM42RLY (e001dd475a7c27ebe5a0db45c11bad71) C:\Windows\system32\drivers\BCM42RLY.sys
07:41:01.0813 1848 BCM42RLY - ok
07:41:03.0355 1848 BCM43XX (37394d3553e220fb732c21e217e1bd8b) C:\Windows\system32\DRIVERS\bcmwl664.sys
07:41:03.0372 1848 BCM43XX - ok
07:41:03.0665 1848 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
07:41:03.0668 1848 BDESVC - ok
07:41:03.0785 1848 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
07:41:03.0806 1848 Beep - ok
07:41:03.0953 1848 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
07:41:03.0962 1848 BFE - ok
07:41:04.0365 1848 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120804.001\BHDrvx64.sys
07:41:04.0372 1848 BHDrvx64 - ok
07:41:04.0633 1848 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
07:41:04.0644 1848 BITS - ok
07:41:04.0750 1848 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
07:41:04.0752 1848 blbdrive - ok
07:41:04.0915 1848 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
07:41:04.0923 1848 Bonjour Service - ok
07:41:04.0984 1848 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
07:41:04.0985 1848 bowser - ok
07:41:05.0015 1848 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:41:05.0016 1848 BrFiltLo - ok
07:41:05.0029 1848 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:41:05.0030 1848 BrFiltUp - ok
07:41:05.0100 1848 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
07:41:05.0101 1848 Browser - ok
07:41:05.0160 1848 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
07:41:05.0164 1848 Brserid - ok
07:41:05.0191 1848 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
07:41:05.0192 1848 BrSerWdm - ok
07:41:05.0217 1848 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
07:41:05.0218 1848 BrUsbMdm - ok
07:41:05.0262 1848 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
07:41:05.0263 1848 BrUsbSer - ok
07:41:05.0289 1848 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
07:41:05.0290 1848 BTHMODEM - ok
07:41:05.0438 1848 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
07:41:05.0461 1848 bthserv - ok
07:41:05.0877 1848 ccSet_NIS (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys
07:41:05.0879 1848 ccSet_NIS - ok
07:41:05.0942 1848 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
07:41:05.0944 1848 cdfs - ok
07:41:06.0049 1848 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
07:41:06.0051 1848 cdrom - ok
07:41:06.0150 1848 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
07:41:06.0153 1848 CertPropSvc - ok
07:41:06.0204 1848 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
07:41:06.0206 1848 circlass - ok
07:41:06.0265 1848 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
07:41:06.0270 1848 CLFS - ok
07:41:06.0399 1848 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:41:06.0401 1848 clr_optimization_v2.0.50727_32 - ok
07:41:06.0521 1848 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:41:06.0525 1848 clr_optimization_v2.0.50727_64 - ok
07:41:06.0691 1848 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:41:06.0768 1848 clr_optimization_v4.0.30319_32 - ok
07:41:06.0830 1848 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:41:06.0832 1848 clr_optimization_v4.0.30319_64 - ok
07:41:06.0940 1848 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
07:41:06.0941 1848 CmBatt - ok
07:41:07.0024 1848 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
07:41:07.0024 1848 cmdide - ok
07:41:07.0083 1848 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
07:41:07.0088 1848 CNG - ok
07:41:07.0148 1848 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
07:41:07.0149 1848 Compbatt - ok
07:41:07.0305 1848 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
07:41:07.0306 1848 CompositeBus - ok
07:41:07.0328 1848 COMSysApp - ok
07:41:07.0365 1848 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
07:41:07.0366 1848 crcdisk - ok
07:41:07.0443 1848 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
07:41:07.0445 1848 CryptSvc - ok
07:41:07.0515 1848 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
07:41:07.0518 1848 CtClsFlt - ok
07:41:07.0712 1848 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
07:41:07.0734 1848 DcomLaunch - ok
07:41:07.0804 1848 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
07:41:07.0809 1848 defragsvc - ok
07:41:07.0989 1848 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
07:41:07.0992 1848 DfsC - ok
07:41:08.0524 1848 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
07:41:08.0527 1848 Dhcp - ok
07:41:08.0583 1848 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
07:41:08.0584 1848 discache - ok
07:41:08.0694 1848 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
07:41:08.0696 1848 Disk - ok
07:41:08.0974 1848 DMService (ae3d76825152764ef016370fdac219f9) C:\Windows\Downloaded Program Files\DM.0\DMService.exe
07:41:08.0981 1848 DMService - ok
07:41:09.0020 1848 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
07:41:09.0023 1848 Dnscache - ok
07:41:09.0241 1848 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
07:41:09.0244 1848 DockLoginService - ok
07:41:09.0348 1848 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
07:41:09.0369 1848 dot3svc - ok
07:41:09.0435 1848 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
07:41:09.0438 1848 DPS - ok
07:41:09.0575 1848 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
07:41:09.0587 1848 drmkaud - ok
07:41:09.0673 1848 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
07:41:09.0679 1848 DXGKrnl - ok
07:41:09.0815 1848 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
07:41:09.0816 1848 EapHost - ok
07:41:10.0058 1848 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
07:41:10.0273 1848 ebdrv - ok
07:41:10.0464 1848 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
07:41:10.0467 1848 eeCtrl - ok
07:41:10.0694 1848 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
07:41:10.0695 1848 EFS - ok
07:41:11.0021 1848 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
07:41:11.0037 1848 ehRecvr - ok
07:41:11.0080 1848 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
07:41:11.0083 1848 ehSched - ok
07:41:11.0319 1848 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
07:41:11.0333 1848 elxstor - ok
07:41:11.0397 1848 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
07:41:11.0397 1848 ErrDev - ok
07:41:11.0535 1848 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
07:41:11.0539 1848 EventSystem - ok
07:41:11.0582 1848 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
07:41:11.0585 1848 exfat - ok
07:41:11.0607 1848 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
07:41:11.0610 1848 fastfat - ok
07:41:11.0729 1848 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
07:41:11.0737 1848 Fax - ok
07:41:11.0852 1848 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
07:41:11.0853 1848 fdc - ok
07:41:11.0927 1848 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
07:41:11.0928 1848 fdPHost - ok
07:41:11.0949 1848 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
07:41:11.0952 1848 FDResPub - ok
07:41:11.0999 1848 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
07:41:12.0001 1848 FileInfo - ok
07:41:12.0021 1848 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
07:41:12.0022 1848 Filetrace - ok
07:41:12.0091 1848 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
07:41:12.0092 1848 flpydisk - ok
07:41:12.0475 1848 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
07:41:12.0501 1848 FltMgr - ok
07:41:12.0585 1848 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
07:41:12.0612 1848 FontCache - ok
07:41:12.0742 1848 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:41:12.0746 1848 FontCache3.0.0.0 - ok
07:41:12.0871 1848 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
07:41:12.0872 1848 FsDepends - ok
07:41:12.0966 1848 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
07:41:12.0967 1848 Fs_Rec - ok
07:41:13.0186 1848 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
07:41:13.0189 1848 fvevol - ok
07:41:13.0219 1848 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
07:41:13.0220 1848 gagp30kx - ok
07:41:13.0721 1848 GameConsoleService (c1bbce4b30b45410178ee674c818d10c) C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
07:41:13.0761 1848 GameConsoleService - ok
07:41:13.0871 1848 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:41:13.0872 1848 GEARAspiWDM - ok
07:41:14.0049 1848 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
07:41:14.0077 1848 GoToAssist - ok
07:41:14.0141 1848 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
07:41:14.0149 1848 gpsvc - ok
07:41:14.0243 1848 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
07:41:14.0244 1848 hcw85cir - ok
07:41:14.0450 1848 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
07:41:14.0451 1848 HDAudBus - ok
07:41:14.0503 1848 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
07:41:14.0504 1848 HidBatt - ok
07:41:14.0535 1848 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
07:41:14.0537 1848 HidBth - ok
07:41:14.0605 1848 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
07:41:14.0606 1848 HidIr - ok
07:41:14.0677 1848 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
07:41:14.0678 1848 hidserv - ok
07:41:14.0792 1848 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
07:41:14.0793 1848 HidUsb - ok
07:41:14.0830 1848 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
07:41:14.0857 1848 hkmsvc - ok
07:41:15.0027 1848 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
07:41:15.0030 1848 HomeGroupListener - ok
07:41:15.0080 1848 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
07:41:15.0083 1848 HomeGroupProvider - ok
07:41:15.0394 1848 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
07:41:15.0395 1848 HpSAMD - ok
07:41:15.0500 1848 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
07:41:15.0509 1848 HTTP - ok
07:41:15.0636 1848 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
07:41:15.0637 1848 hwpolicy - ok
07:41:15.0720 1848 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
07:41:15.0722 1848 i8042prt - ok
07:41:16.0082 1848 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
07:41:16.0087 1848 IAANTMON - ok
07:41:16.0860 1848 iaStor (4f6fb2cdbdeefc47e7d2066e78254580) C:\Windows\system32\DRIVERS\iaStor.sys
07:41:16.0864 1848 iaStor - ok
07:41:17.0205 1848 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
07:41:17.0210 1848 iaStorV - ok
07:41:19.0693 1848 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:41:19.0773 1848 idsvc - ok
07:41:20.0391 1848 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120809.001\IDSvia64.sys
07:41:20.0394 1848 IDSVia64 - ok
07:41:24.0035 1848 igfx (babd5f9b2bcc82ce556a0baf1ae208a7) C:\Windows\system32\DRIVERS\igdkmd64.sys
07:41:24.0183 1848 igfx - ok
07:41:24.0595 1848 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
07:41:24.0596 1848 iirsp - ok
07:41:25.0581 1848 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
07:41:25.0604 1848 IKEEXT - ok
07:41:25.0657 1848 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
07:41:25.0658 1848 intelide - ok
07:41:25.0741 1848 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
07:41:25.0743 1848 intelppm - ok
07:41:25.0781 1848 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
07:41:25.0798 1848 IPBusEnum - ok
07:41:25.0888 1848 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:41:25.0891 1848 IpFilterDriver - ok
07:41:26.0035 1848 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
07:41:26.0078 1848 iphlpsvc - ok
07:41:26.0126 1848 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
07:41:26.0127 1848 IPMIDRV - ok
07:41:26.0555 1848 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
07:41:26.0558 1848 IPNAT - ok
07:41:26.0786 1848 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
07:41:26.0806 1848 iPod Service - ok
07:41:26.0891 1848 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
07:41:26.0892 1848 IRENUM - ok
07:41:26.0964 1848 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
07:41:26.0966 1848 isapnp - ok
07:41:27.0019 1848 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
07:41:27.0023 1848 iScsiPrt - ok
07:41:27.0084 1848 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
07:41:27.0085 1848 kbdclass - ok
07:41:27.0138 1848 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
07:41:27.0139 1848 kbdhid - ok
07:41:27.0201 1848 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:41:27.0202 1848 KeyIso - ok
07:41:27.0663 1848 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
07:41:27.0664 1848 KSecDD - ok
07:41:28.0082 1848 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
07:41:28.0097 1848 KSecPkg - ok
07:41:28.0152 1848 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
07:41:28.0153 1848 ksthunk - ok
07:41:28.0208 1848 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
07:41:28.0249 1848 KtmRm - ok
07:41:28.0338 1848 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
07:41:28.0342 1848 LanmanServer - ok
07:41:28.0765 1848 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
07:41:28.0767 1848 LanmanWorkstation - ok
07:41:28.0827 1848 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
07:41:28.0829 1848 lltdio - ok
07:41:29.0927 1848 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
07:41:29.0940 1848 lltdsvc - ok
07:41:30.0003 1848 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
07:41:30.0004 1848 lmhosts - ok
07:41:30.0076 1848 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
07:41:30.0078 1848 LSI_FC - ok
07:41:30.0192 1848 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
07:41:30.0194 1848 LSI_SAS - ok
07:41:30.0222 1848 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:41:30.0223 1848 LSI_SAS2 - ok
07:41:30.0307 1848 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:41:30.0309 1848 LSI_SCSI - ok
07:41:30.0339 1848 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
07:41:30.0353 1848 luafv - ok
07:41:30.0382 1848 lxdq_device - ok
07:41:30.0457 1848 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
07:41:30.0460 1848 Mcx2Svc - ok
07:41:30.0498 1848 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
07:41:30.0499 1848 megasas - ok
07:41:30.0539 1848 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
07:41:30.0542 1848 MegaSR - ok
07:41:30.0857 1848 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
07:41:30.0860 1848 Microsoft Office Groove Audit Service - ok
07:41:30.0924 1848 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
07:41:30.0926 1848 MMCSS - ok
07:41:30.0978 1848 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
07:41:30.0979 1848 Modem - ok
07:41:31.0070 1848 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
07:41:31.0070 1848 monitor - ok
07:41:31.0122 1848 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys
07:41:31.0123 1848 motandroidusb - ok
07:41:31.0165 1848 motccgp (c94a2ea3fdfa5d650884926b710b7db1) C:\Windows\system32\DRIVERS\motccgp.sys
07:41:31.0166 1848 motccgp - ok
07:41:31.0201 1848 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
07:41:31.0202 1848 motccgpfl - ok
07:41:31.0920 1848 MotDev (3cc500c9b0e4d476802d277353cb2c89) C:\Windows\system32\DRIVERS\motodrv.sys
07:41:31.0921 1848 MotDev - ok
07:41:31.0964 1848 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
07:41:31.0965 1848 MotoSwitchService - ok
07:41:32.0093 1848 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
07:41:32.0096 1848 mouclass - ok
07:41:32.0307 1848 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
07:41:32.0321 1848 mouhid - ok
07:41:32.0383 1848 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
07:41:32.0389 1848 mountmgr - ok
07:41:32.0701 1848 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
07:41:32.0705 1848 MozillaMaintenance - ok
07:41:32.0757 1848 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
07:41:32.0759 1848 mpio - ok
07:41:32.0863 1848 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
07:41:32.0865 1848 mpsdrv - ok
07:41:34.0786 1848 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
07:41:34.0888 1848 MpsSvc - ok
07:41:35.0505 1848 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
07:41:35.0545 1848 MRxDAV - ok
07:41:35.0691 1848 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
07:41:36.0687 1848 mrxsmb - ok
07:41:37.0504 1848 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:41:37.0535 1848 mrxsmb10 - ok
07:41:37.0887 1848 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:41:37.0889 1848 mrxsmb20 - ok
07:41:38.0010 1848 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
07:41:38.0017 1848 msahci - ok
07:41:38.0075 1848 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
07:41:38.0093 1848 msdsm - ok
07:41:38.0684 1848 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
07:41:38.0693 1848 MSDTC - ok
07:41:38.0924 1848 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
07:41:38.0930 1848 Msfs - ok
07:41:39.0030 1848 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
07:41:39.0032 1848 mshidkmdf - ok
07:41:39.0184 1848 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
07:41:39.0185 1848 msisadrv - ok
07:41:39.0980 1848 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
07:41:40.0077 1848 MSiSCSI - ok
07:41:40.0087 1848 msiserver - ok
07:41:40.0236 1848 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
07:41:40.0253 1848 MSKSSRV - ok
07:41:40.0306 1848 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
07:41:40.0317 1848 MSPCLOCK - ok
07:41:40.0454 1848 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
07:41:40.0471 1848 MSPQM - ok
07:41:41.0640 1848 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
07:41:41.0689 1848 MsRPC - ok
07:41:42.0063 1848 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
07:41:42.0064 1848 mssmbios - ok
07:41:42.0161 1848 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
07:41:42.0184 1848 MSTEE - ok
07:41:42.0267 1848 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
07:41:42.0288 1848 MTConfig - ok
07:41:42.0526 1848 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
07:41:42.0528 1848 Mup - ok
07:41:43.0467 1848 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
07:41:43.0525 1848 napagent - ok
07:41:44.0085 1848 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
07:41:44.0105 1848 NativeWifiP - ok
07:41:45.0216 1848 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120809.003\ENG64.SYS
07:41:45.0218 1848 NAVENG - ok
07:41:49.0843 1848 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120809.003\EX64.SYS
07:41:49.0856 1848 NAVEX15 - ok
07:41:51.0126 1848 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
07:41:51.0191 1848 NDIS - ok
07:41:51.0606 1848 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
07:41:51.0608 1848 NdisCap - ok
07:41:51.0722 1848 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
07:41:51.0723 1848 NdisTapi - ok
07:41:51.0945 1848 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
07:41:51.0947 1848 Ndisuio - ok
07:41:52.0634 1848 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
07:41:52.0651 1848 NdisWan - ok
07:41:52.0732 1848 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
07:41:52.0733 1848 NDProxy - ok
07:41:52.0809 1848 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
07:41:52.0810 1848 NetBIOS - ok
07:41:53.0114 1848 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
07:41:53.0137 1848 NetBT - ok
07:41:53.0298 1848 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:41:53.0300 1848 Netlogon - ok
07:41:53.0696 1848 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
07:41:53.0733 1848 Netman - ok
07:41:54.0270 1848 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
07:41:54.0296 1848 netprofm - ok
07:41:54.0677 1848 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:41:54.0738 1848 NetTcpPortSharing - ok
07:41:54.0952 1848 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
07:41:54.0954 1848 nfrd960 - ok
07:41:56.0389 1848 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe
07:41:56.0419 1848 NIS - ok
07:41:56.0871 1848 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
07:41:56.0904 1848 NlaSvc - ok
07:41:57.0011 1848 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
07:41:57.0012 1848 Npfs - ok
07:41:57.0182 1848 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
07:41:57.0184 1848 nsi - ok
07:41:57.0424 1848 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
07:41:57.0425 1848 nsiproxy - ok
07:41:59.0256 1848 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
07:41:59.0462 1848 Ntfs - ok
07:42:01.0748 1848 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
07:42:01.0761 1848 Null - ok
07:42:01.0813 1848 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
07:42:01.0815 1848 nvraid - ok
07:42:01.0841 1848 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
07:42:01.0843 1848 nvstor - ok
07:42:01.0936 1848 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
07:42:01.0939 1848 nv_agp - ok
07:42:02.0223 1848 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
07:42:02.0276 1848 odserv - ok
07:42:02.0534 1848 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
07:42:02.0536 1848 ohci1394 - ok
07:42:02.0644 1848 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:42:02.0677 1848 ose - ok
07:42:02.0806 1848 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
07:42:02.0816 1848 p2pimsvc - ok
07:42:02.0910 1848 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
07:42:02.0916 1848 p2psvc - ok
07:42:02.0949 1848 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
07:42:02.0951 1848 Parport - ok
07:42:03.0032 1848 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
07:42:03.0034 1848 partmgr - ok
07:42:03.0069 1848 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
07:42:03.0072 1848 PcaSvc - ok
07:42:03.0149 1848 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
07:42:03.0152 1848 pci - ok
07:42:03.0166 1848 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
07:42:03.0167 1848 pciide - ok
07:42:03.0337 1848 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
07:42:03.0355 1848 pcmcia - ok
07:42:03.0406 1848 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
07:42:03.0407 1848 pcw - ok
07:42:03.0577 1848 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
07:42:03.0614 1848 PEAUTH - ok
07:42:03.0791 1848 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
07:42:03.0793 1848 PerfHost - ok
07:42:04.0110 1848 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
07:42:04.0153 1848 pla - ok
07:42:04.0325 1848 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
07:42:04.0362 1848 PlugPlay - ok
07:42:04.0387 1848 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
07:42:04.0391 1848 PNRPAutoReg - ok
07:42:04.0415 1848 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
07:42:04.0418 1848 PNRPsvc - ok
07:42:04.0998 1848 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
07:42:05.0037 1848 PolicyAgent - ok
07:42:05.0220 1848 postgresql-8.4 - ok
07:42:05.0379 1848 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
07:42:05.0383 1848 Power - ok
07:42:05.0593 1848 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
07:42:05.0595 1848 PptpMiniport - ok
07:42:05.0621 1848 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
07:42:05.0623 1848 Processor - ok
07:42:05.0693 1848 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
07:42:05.0696 1848 ProfSvc - ok
07:42:05.0744 1848 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:42:05.0746 1848 ProtectedStorage - ok
07:42:05.0801 1848 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
07:42:05.0803 1848 Psched - ok
07:42:05.0852 1848 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
07:42:05.0853 1848 PxHlpa64 - ok
07:42:06.0179 1848 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
07:42:06.0226 1848 ql2300 - ok
07:42:06.0760 1848 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
07:42:06.0762 1848 ql40xx - ok
07:42:06.0992 1848 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
07:42:07.0002 1848 QWAVE - ok
07:42:07.0043 1848 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
07:42:07.0044 1848 QWAVEdrv - ok
07:42:07.0059 1848 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
07:42:07.0060 1848 RasAcd - ok
07:42:07.0175 1848 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
07:42:07.0177 1848 RasAgileVpn - ok
07:42:07.0433 1848 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
07:42:07.0444 1848 RasAuto - ok
07:42:07.0602 1848 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
07:42:07.0624 1848 Rasl2tp - ok
07:42:07.0766 1848 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
07:42:07.0887 1848 RasMan - ok
07:42:08.0002 1848 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
07:42:08.0004 1848 RasPppoe - ok
07:42:08.0085 1848 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
07:42:08.0087 1848 RasSstp - ok
07:42:08.0182 1848 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
07:42:08.0185 1848 rdbss - ok
07:42:08.0211 1848 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
07:42:08.0212 1848 rdpbus - ok
07:42:08.0257 1848 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
07:42:08.0258 1848 RDPCDD - ok
07:42:08.0293 1848 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
07:42:08.0294 1848 RDPENCDD - ok
07:42:08.0335 1848 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
07:42:08.0335 1848 RDPREFMP - ok
07:42:08.0459 1848 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
07:42:08.0462 1848 RDPWD - ok
07:42:08.0573 1848 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
07:42:08.0576 1848 rdyboost - ok
07:42:08.0631 1848 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
07:42:08.0636 1848 RemoteAccess - ok
07:42:08.0745 1848 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
07:42:08.0758 1848 RemoteRegistry - ok
07:42:08.0817 1848 RimUsb (7b04c9843921ab1f695fb395422c5360) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
07:42:08.0818 1848 RimUsb - ok
07:42:08.0843 1848 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
07:42:08.0845 1848 RpcEptMapper - ok
07:42:08.0890 1848 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
07:42:08.0892 1848 RpcLocator - ok
07:42:09.0013 1848 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
07:42:09.0019 1848 RpcSs - ok
07:42:09.0157 1848 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
07:42:09.0158 1848 rspndr - ok
07:42:09.0210 1848 RSUSBSTOR (4a25dc970c58104602ed274dacafd784) C:\Windows\system32\Drivers\RtsUStor.sys
07:42:09.0213 1848 RSUSBSTOR - ok
07:42:09.0470 1848 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:42:09.0472 1848 SamSs - ok
07:42:09.0724 1848 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
07:42:09.0726 1848 sbp2port - ok
07:42:09.0798 1848 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
07:42:09.0834 1848 SCardSvr - ok
07:42:09.0972 1848 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
07:42:09.0974 1848 scfilter - ok
07:42:10.0445 1848 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
07:42:10.0535 1848 Schedule - ok
07:42:10.0666 1848 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
07:42:10.0668 1848 SCPolicySvc - ok
07:42:10.0793 1848 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
07:42:10.0824 1848 SDRSVC - ok
07:42:11.0057 1848 SeaPort (d358e077a0a05d9b12da22d137ee8464) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
07:42:11.0060 1848 SeaPort - ok
07:42:11.0198 1848 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
07:42:11.0199 1848 secdrv - ok
07:42:11.0313 1848 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
07:42:11.0353 1848 seclogon - ok
07:42:11.0439 1848 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
07:42:11.0442 1848 SENS - ok
07:42:11.0471 1848 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
07:42:11.0484 1848 SensrSvc - ok
07:42:11.0510 1848 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
07:42:11.0512 1848 Serenum - ok
07:42:11.0599 1848 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
07:42:11.0601 1848 Serial - ok
07:42:11.0660 1848 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
07:42:11.0661 1848 sermouse - ok
07:42:11.0761 1848 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
07:42:11.0779 1848 SessionEnv - ok
07:42:11.0839 1848 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
07:42:11.0841 1848 sffdisk - ok
07:42:11.0896 1848 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
07:42:11.0898 1848 sffp_mmc - ok
07:42:11.0939 1848 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
07:42:11.0941 1848 sffp_sd - ok
07:42:11.0986 1848 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
07:42:11.0988 1848 sfloppy - ok
07:42:12.0266 1848 SftService (38f88f0df46c4d42125ef721abd7f6b9) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
07:42:12.0288 1848 SftService - ok
07:42:12.0356 1848 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
07:42:12.0361 1848 SharedAccess - ok
07:42:12.0406 1848 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
07:42:12.0428 1848 ShellHWDetection - ok
07:42:12.0551 1848 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:42:12.0553 1848 SiSRaid2 - ok
07:42:12.0572 1848 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
07:42:12.0574 1848 SiSRaid4 - ok
07:42:12.0635 1848 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
07:42:12.0637 1848 Smb - ok
07:42:12.0713 1848 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
07:42:12.0735 1848 SNMPTRAP - ok
07:42:12.0780 1848 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
07:42:12.0781 1848 spldr - ok
07:42:12.0864 1848 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
07:42:12.0875 1848 Spooler - ok
07:42:13.0421 1848 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
07:42:13.0518 1848 sppsvc - ok
07:42:13.0799 1848 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
07:42:13.0802 1848 sppuinotify - ok
07:42:14.0012 1848 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
07:42:14.0016 1848 sprtsvc_DellSupportCenter - ok
07:42:14.0308 1848 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\NISx64\1307010.005\SRTSP64.SYS
07:42:14.0313 1848 SRTSP - ok
07:42:14.0401 1848 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\NISx64\1307010.005\SRTSPX64.SYS
07:42:14.0401 1848 SRTSPX - ok
07:42:14.0577 1848 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
07:42:14.0583 1848 srv - ok
07:42:14.0660 1848 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
07:42:14.0665 1848 srv2 - ok
07:42:14.0843 1848 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
07:42:14.0861 1848 srvnet - ok
07:42:14.0957 1848 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
07:42:14.0960 1848 SSDPSRV - ok
07:42:14.0984 1848 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
07:42:14.0987 1848 SstpSvc - ok
07:42:15.0141 1848 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
07:42:15.0144 1848 STacSV - ok
07:42:15.0177 1848 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
07:42:15.0178 1848 stexstor - ok
07:42:15.0214 1848 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
07:42:15.0221 1848 STHDA - ok
07:42:15.0297 1848 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
07:42:15.0305 1848 stisvc - ok
07:42:15.0355 1848 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
07:42:15.0356 1848 swenum - ok
07:42:15.0502 1848 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
07:42:15.0550 1848 swprv - ok
07:42:15.0718 1848 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS
07:42:15.0723 1848 SymDS - ok
07:42:15.0897 1848 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS
07:42:15.0908 1848 SymEFA - ok
07:42:15.0989 1848 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
07:42:15.0991 1848 SymEvent - ok
07:42:16.0062 1848 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS
07:42:16.0064 1848 SymIRON - ok
07:42:16.0134 1848 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\NISx64\1307010.005\SYMNETS.SYS
07:42:16.0138 1848 SymNetS - ok
07:42:16.0324 1848 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
07:42:16.0349 1848 SysMain - ok
07:42:16.0446 1848 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
07:42:16.0462 1848 TabletInputService - ok
07:42:16.0501 1848 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
07:42:16.0509 1848 TapiSrv - ok
07:42:16.0550 1848 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
07:42:16.0555 1848 TBS - ok
07:42:16.0777 1848 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
07:42:16.0818 1848 Tcpip - ok
07:42:17.0542 1848 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
07:42:17.0561 1848 TCPIP6 - ok
07:42:17.0848 1848 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
07:42:17.0850 1848 tcpipreg - ok
07:42:17.0888 1848 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
07:42:17.0889 1848 TDPIPE - ok
07:42:18.0125 1848 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
07:42:18.0138 1848 TDTCP - ok
07:42:18.0815 1848 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
07:42:18.0849 1848 tdx - ok
07:42:19.0238 1848 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
07:42:19.0239 1848 TermDD - ok
07:42:20.0552 1848 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
07:42:20.0618 1848 TermService - ok
07:42:20.0685 1848 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
07:42:20.0688 1848 Themes - ok
07:42:20.0891 1848 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
07:42:20.0893 1848 THREADORDER - ok
07:42:21.0457 1848 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
07:42:21.0459 1848 TrkWks - ok
07:42:21.0893 1848 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
07:42:21.0917 1848 TrustedInstaller - ok
07:42:22.0017 1848 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
07:42:22.0028 1848 tssecsrv - ok
07:42:22.0304 1848 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
07:42:22.0315 1848 TsUsbFlt - ok
07:42:22.0551 1848 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
07:42:22.0581 1848 tunnel - ok
07:42:22.0796 1848 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
07:42:22.0797 1848 uagp35 - ok
07:42:22.0986 1848 uagqecsvc (3bd865754624eea5af13c4a114a7cab8) C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe
07:42:22.0989 1848 uagqecsvc - ok
07:42:23.0641 1848 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
07:42:23.0713 1848 udfs - ok
07:42:24.0025 1848 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
07:42:24.0094 1848 UI0Detect - ok
07:42:24.0598 1848 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
07:42:24.0605 1848 uliagpkx - ok
07:42:24.0890 1848 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
07:42:24.0901 1848 umbus - ok
07:42:25.0058 1848 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
07:42:25.0105 1848 UmPass - ok
07:42:25.0883 1848 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
07:42:25.0889 1848 upnphost - ok
07:42:25.0944 1848 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
07:42:25.0946 1848 USBAAPL64 - ok
07:42:25.0981 1848 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
07:42:25.0982 1848 usbccgp - ok
07:42:26.0054 1848 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
07:42:26.0056 1848 usbcir - ok
07:42:26.0089 1848 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
07:42:26.0091 1848 usbehci - ok
07:42:26.0189 1848 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
07:42:26.0194 1848 usbhub - ok
07:42:26.0234 1848 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
07:42:26.0235 1848 usbohci - ok
07:42:26.0296 1848 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
07:42:26.0297 1848 usbprint - ok
07:42:26.0350 1848 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:42:26.0352 1848 USBSTOR - ok
07:42:26.0411 1848 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
07:42:26.0412 1848 usbuhci - ok
07:42:26.0483 1848 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
07:42:26.0485 1848 usbvideo - ok
07:42:26.0555 1848 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
07:42:26.0557 1848 UxSms - ok
07:42:26.0604 1848 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:42:26.0606 1848 VaultSvc - ok
07:42:26.0665 1848 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
07:42:26.0665 1848 vdrvroot - ok
07:42:26.0975 1848 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
07:42:26.0997 1848 vds - ok
07:42:27.0055 1848 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
07:42:27.0056 1848 vga - ok
07:42:27.0094 1848 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
07:42:27.0095 1848 VgaSave - ok
07:42:27.0175 1848 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
07:42:27.0178 1848 vhdmp - ok
07:42:27.0234 1848 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
07:42:27.0235 1848 viaide - ok
07:42:27.0250 1848 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
07:42:27.0251 1848 volmgr - ok
07:42:27.0840 1848 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
07:42:27.0845 1848 volmgrx - ok
07:42:27.0882 1848 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
07:42:27.0885 1848 volsnap - ok
07:42:27.0927 1848 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
07:42:27.0929 1848 vsmraid - ok
07:42:28.0157 1848 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
07:42:28.0332 1848 VSS - ok
07:42:28.0507 1848 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
07:42:28.0508 1848 vwifibus - ok
07:42:28.0564 1848 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
07:42:28.0566 1848 vwififlt - ok
07:42:28.0607 1848 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
07:42:28.0608 1848 vwifimp - ok
07:42:28.0824 1848 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
07:42:28.0831 1848 W32Time - ok
07:42:28.0874 1848 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
07:42:28.0875 1848 WacomPen - ok
07:42:28.0928 1848 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
07:42:28.0930 1848 WANARP - ok
07:42:28.0934 1848 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
07:42:28.0935 1848 Wanarpv6 - ok
07:42:29.0190 1848 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
07:42:29.0230 1848 WatAdminSvc - ok
07:42:29.0520 1848 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
07:42:29.0686 1848 wbengine - ok
07:42:30.0218 1848 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
07:42:30.0226 1848 WbioSrvc - ok
07:42:30.0996 1848 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
07:42:31.0006 1848 wcncsvc - ok
07:42:31.0076 1848 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
07:42:31.0099 1848 WcsPlugInService - ok
07:42:31.0313 1848 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
07:42:31.0314 1848 Wd - ok
07:42:31.0483 1848 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
07:42:31.0493 1848 Wdf01000 - ok
07:42:31.0537 1848 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
07:42:31.0540 1848 WdiServiceHost - ok
07:42:31.0543 1848 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
07:42:31.0546 1848 WdiSystemHost - ok
07:42:31.0742 1848 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
07:42:31.0749 1848 WebClient - ok
07:42:31.0800 1848 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
07:42:31.0810 1848 Wecsvc - ok
07:42:31.0830 1848 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
07:42:31.0832 1848 wercplsupport - ok
07:42:31.0946 1848 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
07:42:31.0948 1848 WerSvc - ok
07:42:32.0006 1848 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
07:42:32.0006 1848 WfpLwf - ok
07:42:32.0080 1848 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
07:42:32.0082 1848 WimFltr - ok
07:42:32.0093 1848 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
07:42:32.0095 1848 WIMMount - ok
07:42:32.0164 1848 WinDefend - ok
07:42:32.0178 1848 WinHttpAutoProxySvc - ok
07:42:32.0660 1848 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
07:42:32.0663 1848 Winmgmt - ok
07:42:32.0829 1848 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
07:42:32.0852 1848 WinRM - ok
07:42:33.0070 1848 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
07:42:33.0071 1848 WinUsb - ok
07:42:33.0222 1848 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
07:42:33.0233 1848 Wlansvc - ok
07:42:33.0357 1848 wltrysvc (13b0a570e1ae451c92da550085d72cf3) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
07:42:33.0358 1848 wltrysvc - ok
07:42:33.0424 1848 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
07:42:33.0425 1848 WmiAcpi - ok
07:42:33.0610 1848 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
07:42:33.0618 1848 wmiApSrv - ok
07:42:33.0720 1848 WMPNetworkSvc - ok
07:42:33.0752 1848 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
07:42:33.0770 1848 WPCSvc - ok
07:42:33.0837 1848 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
07:42:33.0841 1848 WPDBusEnum - ok
07:42:33.0948 1848 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
07:42:33.0949 1848 ws2ifsl - ok
07:42:33.0975 1848 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
07:42:33.0988 1848 wscsvc - ok
07:42:33.0994 1848 WSearch - ok
07:42:34.0364 1848 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
07:42:34.0449 1848 wuauserv - ok
07:42:34.0718 1848 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
07:42:34.0734 1848 WudfPf - ok
07:42:34.0759 1848 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
07:42:34.0762 1848 WUDFRd - ok
07:42:34.0800 1848 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
07:42:34.0802 1848 wudfsvc - ok
07:42:34.0855 1848 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
07:42:34.0863 1848 WwanSvc - ok
07:42:34.0916 1848 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
07:42:34.0920 1848 yukonw7 - ok
07:42:34.0947 1848 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
07:42:35.0034 1848 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
07:42:35.0034 1848 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
07:42:35.0041 1848 Boot (0x1200) (85af29dac008a8545c9ba2eaad7df661) \Device\Harddisk0\DR0\Partition0
07:42:35.0043 1848 \Device\Harddisk0\DR0\Partition0 - ok
07:42:35.0073 1848 Boot (0x1200) (91fccc1547dfd2482d1becb0510b4e16) \Device\Harddisk0\DR0\Partition1
07:42:35.0075 1848 \Device\Harddisk0\DR0\Partition1 - ok
07:42:35.0075 1848 ============================================================
07:42:35.0075 1848 Scan finished
07:42:35.0075 1848 ============================================================
07:42:35.0091 4340 Detected object count: 1
07:42:35.0091 4340 Actual detected object count: 1
07:48:08.0854 4340 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user
07:48:08.0854 4340 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip
07:48:24.0821 6000 ============================================================
07:48:24.0821 6000 Scan started
07:48:24.0822 6000 Mode: Manual; TDLFS;
07:48:24.0822 6000 ============================================================
07:48:28.0842 6000 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
07:48:28.0843 6000 1394ohci - ok
07:48:28.0929 6000 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
07:48:28.0931 6000 ACPI - ok
07:48:28.0971 6000 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
07:48:28.0971 6000 AcpiPmi - ok
07:48:29.0063 6000 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
07:48:29.0066 6000 adp94xx - ok
07:48:29.0101 6000 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
07:48:29.0105 6000 adpahci - ok
07:48:29.0155 6000 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
07:48:29.0157 6000 adpu320 - ok
07:48:29.0199 6000 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
07:48:29.0200 6000 AeLookupSvc - ok
07:48:29.0248 6000 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
07:48:29.0252 6000 AFD - ok
07:48:29.0317 6000 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
07:48:29.0318 6000 agp440 - ok
07:48:29.0349 6000 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
07:48:29.0351 6000 ALG - ok
07:48:29.0411 6000 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
07:48:29.0412 6000 aliide - ok
07:48:29.0463 6000 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
07:48:29.0464 6000 amdide - ok
07:48:29.0502 6000 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
07:48:29.0503 6000 AmdK8 - ok
07:48:29.0519 6000 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
07:48:29.0519 6000 AmdPPM - ok
07:48:29.0563 6000 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
07:48:29.0565 6000 amdsata - ok
07:48:29.0605 6000 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
07:48:29.0606 6000 amdsbs - ok
07:48:29.0661 6000 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
07:48:29.0662 6000 amdxata - ok
07:48:29.0751 6000 ApfiltrService (9b0b7fde049cb283fabe5877a49f2611) C:\Windows\system32\DRIVERS\Apfiltr.sys
07:48:29.0753 6000 ApfiltrService - ok
07:48:29.0798 6000 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
07:48:29.0799 6000 AppID - ok
07:48:29.0817 6000 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
07:48:29.0818 6000 AppIDSvc - ok
07:48:29.0858 6000 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
07:48:29.0859 6000 Appinfo - ok
07:48:30.0016 6000 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:48:30.0017 6000 Apple Mobile Device - ok
07:48:30.0063 6000 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
07:48:30.0064 6000 arc - ok
07:48:30.0119 6000 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
07:48:30.0120 6000 arcsas - ok
07:48:30.0136 6000 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
07:48:30.0137 6000 AsyncMac - ok
07:48:30.0180 6000 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
07:48:30.0180 6000 atapi - ok
07:48:30.0239 6000 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
07:48:30.0243 6000 AudioEndpointBuilder - ok
07:48:30.0252 6000 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
07:48:30.0256 6000 AudioSrv - ok
07:48:30.0309 6000 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
07:48:30.0310 6000 AxInstSV - ok
07:48:30.0352 6000 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
07:48:30.0355 6000 b06bdrv - ok
07:48:30.0394 6000 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
07:48:30.0396 6000 b57nd60a - ok
07:48:30.0453 6000 BCM42RLY (e001dd475a7c27ebe5a0db45c11bad71) C:\Windows\system32\drivers\BCM42RLY.sys
07:48:30.0453 6000 BCM42RLY - ok
07:48:30.0704 6000 BCM43XX (37394d3553e220fb732c21e217e1bd8b) C:\Windows\system32\DRIVERS\bcmwl664.sys
07:48:30.0721 6000 BCM43XX - ok
07:48:30.0867 6000 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
07:48:30.0870 6000 BDESVC - ok
07:48:30.0969 6000 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
07:48:30.0970 6000 Beep - ok
07:48:31.0041 6000 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
07:48:31.0046 6000 BFE - ok
07:48:31.0362 6000 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120804.001\BHDrvx64.sys
07:48:31.0369 6000 BHDrvx64 - ok
07:48:31.0508 6000 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
07:48:31.0515 6000 BITS - ok
07:48:31.0603 6000 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
07:48:31.0604 6000 blbdrive - ok
07:48:31.0742 6000 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
07:48:31.0746 6000 Bonjour Service - ok
07:48:31.0803 6000 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
07:48:31.0806 6000 bowser - ok
07:48:31.0845 6000 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:48:31.0846 6000 BrFiltLo - ok
07:48:31.0871 6000 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:48:31.0873 6000 BrFiltUp - ok
07:48:31.0930 6000 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
07:48:31.0932 6000 Browser - ok
07:48:31.0975 6000 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
07:48:31.0977 6000 Brserid - ok
07:48:32.0022 6000 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
07:48:32.0023 6000 BrSerWdm - ok
07:48:32.0037 6000 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
07:48:32.0038 6000 BrUsbMdm - ok
07:48:32.0082 6000 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
07:48:32.0082 6000 BrUsbSer - ok
07:48:32.0112 6000 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
07:48:32.0113 6000 BTHMODEM - ok
07:48:32.0147 6000 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
07:48:32.0148 6000 bthserv - ok
07:48:32.0276 6000 ccSet_NIS (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys
07:48:32.0277 6000 ccSet_NIS - ok
07:48:32.0319 6000 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
07:48:32.0320 6000 cdfs - ok
07:48:32.0382 6000 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
07:48:32.0383 6000 cdrom - ok
07:48:32.0430 6000 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
07:48:32.0431 6000 CertPropSvc - ok
07:48:32.0515 6000 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
07:48:32.0516 6000 circlass - ok
07:48:32.0564 6000 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
07:48:32.0567 6000 CLFS - ok
07:48:32.0644 6000 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:48:32.0645 6000 clr_optimization_v2.0.50727_32 - ok
07:48:32.0787 6000 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:48:32.0788 6000 clr_optimization_v2.0.50727_64 - ok
07:48:32.0848 6000 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:48:32.0850 6000 clr_optimization_v4.0.30319_32 - ok
07:48:32.0913 6000 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:48:32.0914 6000 clr_optimization_v4.0.30319_64 - ok
07:48:32.0987 6000 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
07:48:32.0987 6000 CmBatt - ok
07:48:33.0026 6000 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
07:48:33.0027 6000 cmdide - ok
07:48:33.0074 6000 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
07:48:33.0079 6000 CNG - ok
07:48:33.0141 6000 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
07:48:33.0141 6000 Compbatt - ok
07:48:33.0209 6000 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
07:48:33.0210 6000 CompositeBus - ok
07:48:33.0221 6000 COMSysApp - ok
07:48:33.0423 6000 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
07:48:33.0424 6000 crcdisk - ok
07:48:33.0480 6000 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
07:48:33.0482 6000 CryptSvc - ok
07:48:33.0790 6000 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
07:48:33.0791 6000 CtClsFlt - ok
07:48:33.0883 6000 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
07:48:33.0887 6000 DcomLaunch - ok
07:48:33.0940 6000 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
07:48:33.0956 6000 defragsvc - ok
07:48:34.0008 6000 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
07:48:34.0009 6000 DfsC - ok
07:48:34.0113 6000 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
07:48:34.0115 6000 Dhcp - ok
07:48:34.0166 6000 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
07:48:34.0167 6000 discache - ok
07:48:34.0189 6000 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
07:48:34.0190 6000 Disk - ok
07:48:34.0321 6000 DMService (ae3d76825152764ef016370fdac219f9) C:\Windows\Downloaded Program Files\DM.0\DMService.exe
07:48:34.0325 6000 DMService - ok
07:48:34.0426 6000 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
07:48:34.0428 6000 Dnscache - ok
07:48:34.0515 6000 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
07:48:34.0516 6000 DockLoginService - ok
07:48:34.0599 6000 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
07:48:34.0602 6000 dot3svc - ok
07:48:34.0619 6000 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
07:48:34.0621 6000 DPS - ok
07:48:34.0715 6000 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
07:48:34.0715 6000 drmkaud - ok
07:48:34.0808 6000 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
07:48:34.0815 6000 DXGKrnl - ok
07:48:34.0901 6000 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
07:48:34.0902 6000 EapHost - ok
07:48:35.0578 6000 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
07:48:35.0599 6000 ebdrv - ok
07:48:35.0757 6000 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
07:48:35.0760 6000 eeCtrl - ok
07:48:35.0934 6000 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
07:48:35.0935 6000 EFS - ok
07:48:36.0059 6000 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
07:48:36.0063 6000 ehRecvr - ok
07:48:36.0142 6000 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
07:48:36.0144 6000 ehSched - ok
07:48:36.0215 6000 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
07:48:36.0221 6000 elxstor - ok
07:48:36.0272 6000 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
07:48:36.0332 6000 ErrDev - ok
07:48:36.0406 6000 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
07:48:36.0409 6000 EventSystem - ok
07:48:36.0491 6000 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
07:48:36.0492 6000 exfat - ok
07:48:36.0526 6000 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
07:48:36.0527 6000 fastfat - ok
07:48:36.0582 6000 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
07:48:36.0587 6000 Fax - ok
07:48:37.0732 6000 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
07:48:37.0732 6000 fdc - ok
07:48:37.0774 6000 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
07:48:37.0775 6000 fdPHost - ok
07:48:37.0807 6000 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
07:48:37.0808 6000 FDResPub - ok
07:48:37.0824 6000 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
07:48:37.0825 6000 FileInfo - ok
07:48:37.0846 6000 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
07:48:37.0846 6000 Filetrace - ok
07:48:37.0893 6000 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
07:48:37.0894 6000 flpydisk - ok
07:48:37.0986 6000 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
07:48:37.0987 6000 FltMgr - ok
07:48:38.0115 6000 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
07:48:38.0123 6000 FontCache - ok
07:48:38.0278 6000 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:48:38.0279 6000 FontCache3.0.0.0 - ok
07:48:38.0332 6000 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
07:48:38.0332 6000 FsDepends - ok
07:48:38.0371 6000 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
07:48:38.0372 6000 Fs_Rec - ok
07:48:38.0435 6000 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
07:48:38.0437 6000 fvevol - ok
07:48:38.0473 6000 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
07:48:38.0473 6000 gagp30kx - ok
07:48:38.0618 6000 GameConsoleService (c1bbce4b30b45410178ee674c818d10c) C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
07:48:38.0620 6000 GameConsoleService - ok
07:48:38.0668 6000 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:48:38.0669 6000 GEARAspiWDM - ok
07:48:38.0768 6000 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
07:48:38.0768 6000 GoToAssist - ok
07:48:38.0851 6000 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
07:48:38.0856 6000 gpsvc - ok
07:48:38.0897 6000 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
07:48:38.0898 6000 hcw85cir - ok
07:48:38.0954 6000 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
07:48:38.0955 6000 HDAudBus - ok
07:48:38.0981 6000 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
07:48:38.0981 6000 HidBatt - ok
07:48:39.0001 6000 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
07:48:39.0002 6000 HidBth - ok
07:48:39.0027 6000 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
07:48:39.0028 6000 HidIr - ok
07:48:39.0079 6000 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
07:48:39.0080 6000 hidserv - ok
07:48:39.0126 6000 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
07:48:39.0128 6000 HidUsb - ok
07:48:39.0175 6000 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
07:48:39.0176 6000 hkmsvc - ok
07:48:39.0241 6000 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
07:48:39.0243 6000 HomeGroupListener - ok
07:48:39.0316 6000 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
07:48:39.0319 6000 HomeGroupProvider - ok
07:48:39.0385 6000 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
07:48:39.0386 6000 HpSAMD - ok
07:48:39.0458 6000 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
07:48:39.0463 6000 HTTP - ok
07:48:39.0503 6000 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
07:48:39.0503 6000 hwpolicy - ok
07:48:39.0568 6000 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
07:48:39.0570 6000 i8042prt - ok
07:48:39.0716 6000 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
07:48:39.0719 6000 IAANTMON - ok
07:48:39.0795 6000 iaStor (4f6fb2cdbdeefc47e7d2066e78254580) C:\Windows\system32\DRIVERS\iaStor.sys
07:48:39.0799 6000 iaStor - ok
07:48:39.0858 6000 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
07:48:39.0861 6000 iaStorV - ok
07:48:40.0001 6000 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:48:40.0007 6000 idsvc - ok
07:48:40.0198 6000 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120809.001\IDSvia64.sys
07:48:40.0201 6000 IDSVia64 - ok
07:48:40.0622 6000 igfx (babd5f9b2bcc82ce556a0baf1ae208a7) C:\Windows\system32\DRIVERS\igdkmd64.sys
07:48:40.0667 6000 igfx - ok
07:48:40.0835 6000 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
07:48:40.0835 6000 iirsp - ok
07:48:40.0917 6000 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
07:48:40.0923 6000 IKEEXT - ok
07:48:40.0991 6000 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
07:48:40.0992 6000 intelide - ok
07:48:41.0076 6000 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
07:48:41.0076 6000 intelppm - ok
07:48:41.0147 6000 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
07:48:41.0149 6000 IPBusEnum - ok
07:48:41.0192 6000 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:48:41.0193 6000 IpFilterDriver - ok
07:48:41.0229 6000 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
07:48:41.0233 6000 iphlpsvc - ok
07:48:41.0299 6000 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
07:48:41.0300 6000 IPMIDRV - ok
07:48:41.0338 6000 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
07:48:41.0340 6000 IPNAT - ok
07:48:41.0415 6000 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
07:48:41.0421 6000 iPod Service - ok
07:48:41.0481 6000 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
07:48:41.0482 6000 IRENUM - ok
07:48:41.0526 6000 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
07:48:41.0527 6000 isapnp - ok
07:48:41.0559 6000 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
07:48:41.0561 6000 iScsiPrt - ok
07:48:41.0591 6000 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
07:48:41.0592 6000 kbdclass - ok
07:48:41.0611 6000 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
07:48:41.0612 6000 kbdhid - ok
07:48:41.0698 6000 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:48:41.0699 6000 KeyIso - ok
07:48:41.0754 6000 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
07:48:41.0756 6000 KSecDD - ok
07:48:41.0783 6000 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
07:48:41.0785 6000 KSecPkg - ok
07:48:41.0839 6000 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
07:48:41.0840 6000 ksthunk - ok
07:48:41.0885 6000 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
07:48:41.0890 6000 KtmRm - ok
07:48:41.0938 6000 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
07:48:41.0941 6000 LanmanServer - ok
07:48:42.0001 6000 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
07:48:42.0004 6000 LanmanWorkstation - ok
07:48:42.0074 6000 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
07:48:42.0074 6000 lltdio - ok
07:48:42.0122 6000 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
07:48:42.0125 6000 lltdsvc - ok
07:48:42.0145 6000 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
07:48:42.0146 6000 lmhosts - ok
07:48:42.0185 6000 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
07:48:42.0186 6000 LSI_FC - ok
07:48:42.0228 6000 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
07:48:42.0229 6000 LSI_SAS - ok
07:48:42.0253 6000 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:48:42.0254 6000 LSI_SAS2 - ok
07:48:42.0272 6000 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:48:42.0273 6000 LSI_SCSI - ok
07:48:42.0305 6000 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
07:48:42.0307 6000 luafv - ok
07:48:42.0316 6000 lxdq_device - ok
07:48:42.0368 6000 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
07:48:42.0370 6000 Mcx2Svc - ok
07:48:42.0408 6000 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
07:48:42.0409 6000 megasas - ok
07:48:42.0441 6000 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
07:48:42.0443 6000 MegaSR - ok
07:48:42.0568 6000 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
07:48:42.0569 6000 Microsoft Office Groove Audit Service - ok
07:48:42.0592 6000 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
07:48:42.0593 6000 MMCSS - ok
07:48:42.0621 6000 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
07:48:42.0622 6000 Modem - ok
07:48:42.0637 6000 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
07:48:42.0639 6000 monitor - ok
07:48:42.0678 6000 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys
07:48:42.0679 6000 motandroidusb - ok
07:48:42.0733 6000 motccgp (c94a2ea3fdfa5d650884926b710b7db1) C:\Windows\system32\DRIVERS\motccgp.sys
07:48:42.0734 6000 motccgp - ok
07:48:42.0758 6000 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
07:48:42.0758 6000 motccgpfl - ok
07:48:42.0793 6000 MotDev (3cc500c9b0e4d476802d277353cb2c89) C:\Windows\system32\DRIVERS\motodrv.sys
07:48:42.0794 6000 MotDev - ok
07:48:42.0814 6000 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
07:48:42.0815 6000 MotoSwitchService - ok
07:48:42.0860 6000 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
07:48:42.0860 6000 mouclass - ok
07:48:42.0891 6000 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
07:48:42.0892 6000 mouhid - ok
07:48:42.0944 6000 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
07:48:42.0945 6000 mountmgr - ok
07:48:42.0994 6000 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
07:48:42.0995 6000 MozillaMaintenance - ok
07:48:43.0032 6000 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
07:48:43.0033 6000 mpio - ok
07:48:43.0071 6000 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
07:48:43.0072 6000 mpsdrv - ok
07:48:43.0143 6000 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
07:48:43.0149 6000 MpsSvc - ok
07:48:43.0193 6000 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
07:48:43.0195 6000 MRxDAV - ok
07:48:43.0242 6000 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
07:48:43.0243 6000 mrxsmb - ok
07:48:43.0305 6000 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:48:43.0308 6000 mrxsmb10 - ok
07:48:43.0329 6000 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:48:43.0330 6000 mrxsmb20 - ok
07:48:43.0381 6000 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
07:48:43.0382 6000 msahci - ok
07:48:43.0437 6000 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
07:48:43.0439 6000 msdsm - ok
07:48:43.0471 6000 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
07:48:43.0473 6000 MSDTC - ok
07:48:43.0518 6000 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
07:48:43.0519 6000 Msfs - ok
07:48:43.0540 6000 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
07:48:43.0540 6000 mshidkmdf - ok
07:48:43.0601 6000 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
07:48:43.0602 6000 msisadrv - ok
07:48:43.0652 6000 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
07:48:43.0654 6000 MSiSCSI - ok
07:48:43.0666 6000 msiserver - ok
07:48:43.0693 6000 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
07:48:43.0694 6000 MSKSSRV - ok
07:48:43.0758 6000 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
07:48:43.0759 6000 MSPCLOCK - ok
07:48:43.0795 6000 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
07:48:43.0796 6000 MSPQM - ok
07:48:43.0873 6000 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
07:48:43.0876 6000 MsRPC - ok
07:48:43.0938 6000 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
07:48:43.0938 6000 mssmbios - ok
07:48:43.0979 6000 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
07:48:43.0980 6000 MSTEE - ok
07:48:43.0996 6000 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
07:48:43.0996 6000 MTConfig - ok
07:48:44.0024 6000 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
07:48:44.0025 6000 Mup - ok
07:48:44.0090 6000 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
07:48:44.0094 6000 napagent - ok
07:48:44.0158 6000 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
07:48:44.0160 6000 NativeWifiP - ok
07:48:44.0319 6000 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120809.003\ENG64.SYS
07:48:44.0321 6000 NAVENG - ok
07:48:44.0396 6000 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120809.003\EX64.SYS
07:48:44.0409 6000 NAVEX15 - ok
07:48:44.0578 6000 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
07:48:44.0584 6000 NDIS - ok
07:48:44.0640 6000 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
07:48:44.0641 6000 NdisCap - ok
07:48:44.0662 6000 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
07:48:44.0663 6000 NdisTapi - ok
07:48:44.0703 6000 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
07:48:44.0703 6000 Ndisuio - ok
07:48:44.0777 6000 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
07:48:44.0778 6000 NdisWan - ok
07:48:44.0820 6000 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
07:48:44.0821 6000 NDProxy - ok
07:48:44.0839 6000 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
07:48:44.0839 6000 NetBIOS - ok
07:48:44.0884 6000 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
07:48:44.0886 6000 NetBT - ok
07:48:44.0935 6000 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:48:44.0936 6000 Netlogon - ok
07:48:44.0977 6000 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
07:48:44.0982 6000 Netman - ok
07:48:45.0011 6000 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
07:48:45.0017 6000 netprofm - ok
07:48:45.0121 6000 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:48:45.0122 6000 NetTcpPortSharing - ok
07:48:45.0154 6000 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
07:48:45.0155 6000 nfrd960 - ok
07:48:45.0404 6000 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe
07:48:45.0405 6000 NIS - ok
07:48:45.0464 6000 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
07:48:45.0468 6000 NlaSvc - ok
07:48:45.0493 6000 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
07:48:45.0494 6000 Npfs - ok
07:48:45.0525 6000 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
07:48:45.0526 6000 nsi - ok
07:48:45.0553 6000 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
07:48:45.0554 6000 nsiproxy - ok
07:48:45.0663 6000 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
07:48:45.0676 6000 Ntfs - ok
07:48:45.0798 6000 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
07:48:45.0800 6000 Null - ok
07:48:45.0853 6000 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
07:48:45.0855 6000 nvraid - ok
07:48:45.0877 6000 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
07:48:45.0879 6000 nvstor - ok
07:48:45.0898 6000 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
07:48:45.0902 6000 nv_agp - ok
07:48:46.0062 6000 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
07:48:46.0065 6000 odserv - ok
07:48:46.0109 6000 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
07:48:46.0110 6000 ohci1394 - ok
07:48:46.0175 6000 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:48:46.0176 6000 ose - ok
07:48:46.0233 6000 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
07:48:46.0237 6000 p2pimsvc - ok
07:48:46.0290 6000 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
07:48:46.0294 6000 p2psvc - ok
07:48:46.0347 6000 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
07:48:46.0348 6000 Parport - ok
07:48:46.0409 6000 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
07:48:46.0410 6000 partmgr - ok
07:48:46.0445 6000 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
07:48:46.0447 6000 PcaSvc - ok
07:48:46.0490 6000 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
07:48:46.0492 6000 pci - ok
07:48:46.0520 6000 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
07:48:46.0520 6000 pciide - ok
07:48:46.0588 6000 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
07:48:46.0590 6000 pcmcia - ok
07:48:46.0614 6000 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
07:48:46.0615 6000 pcw - ok
07:48:46.0654 6000 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
07:48:46.0659 6000 PEAUTH - ok
07:48:46.0769 6000 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
07:48:46.0770 6000 PerfHost - ok
07:48:46.0933 6000 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
07:48:46.0943 6000 pla - ok
07:48:47.0000 6000 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
07:48:47.0004 6000 PlugPlay - ok
07:48:47.0056 6000 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
07:48:47.0057 6000 PNRPAutoReg - ok
07:48:47.0084 6000 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
07:48:47.0088 6000 PNRPsvc - ok
07:48:47.0167 6000 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
07:48:47.0171 6000 PolicyAgent - ok
07:48:47.0252 6000 postgresql-8.4 - ok
07:48:47.0358 6000 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
07:48:47.0360 6000 Power - ok
07:48:47.0445 6000 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
07:48:47.0446 6000 PptpMiniport - ok
07:48:47.0493 6000 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
07:48:47.0494 6000 Processor - ok
07:48:47.0534 6000 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
07:48:47.0537 6000 ProfSvc - ok
07:48:47.0596 6000 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:48:47.0598 6000 ProtectedStorage - ok
07:48:47.0664 6000 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
07:48:47.0666 6000 Psched - ok
07:48:47.0704 6000 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
07:48:47.0705 6000 PxHlpa64 - ok
07:48:47.0773 6000 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
07:48:47.0784 6000 ql2300 - ok
07:48:47.0950 6000 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
07:48:47.0952 6000 ql40xx - ok
07:48:48.0009 6000 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
07:48:48.0011 6000 QWAVE - ok
07:48:48.0032 6000 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
07:48:48.0033 6000 QWAVEdrv - ok
07:48:48.0060 6000 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
07:48:48.0061 6000 RasAcd - ok
07:48:48.0121 6000 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
07:48:48.0122 6000 RasAgileVpn - ok
07:48:48.0174 6000 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
07:48:48.0176 6000 RasAuto - ok
07:48:48.0240 6000 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
07:48:48.0241 6000 Rasl2tp - ok
07:48:48.0303 6000 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
07:48:48.0307 6000 RasMan - ok
07:48:48.0359 6000 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
07:48:48.0360 6000 RasPppoe - ok
07:48:48.0378 6000 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
07:48:48.0379 6000 RasSstp - ok
07:48:48.0422 6000 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
07:48:48.0426 6000 rdbss - ok
07:48:48.0439 6000 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
07:48:48.0440 6000 rdpbus - ok
07:48:48.0464 6000 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
07:48:48.0464 6000 RDPCDD - ok
07:48:48.0500 6000 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
07:48:48.0500 6000 RDPENCDD - ok
07:48:48.0530 6000 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
07:48:48.0531 6000 RDPREFMP - ok
07:48:48.0586 6000 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
07:48:48.0587 6000 RDPWD - ok
07:48:48.0657 6000 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
07:48:48.0659 6000 rdyboost - ok
07:48:48.0705 6000 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
07:48:48.0707 6000 RemoteAccess - ok
07:48:48.0744 6000 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
07:48:48.0746 6000 RemoteRegistry - ok
07:48:48.0782 6000 RimUsb (7b04c9843921ab1f695fb395422c5360) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
07:48:48.0783 6000 RimUsb - ok
07:48:48.0819 6000 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
07:48:48.0821 6000 RpcEptMapper - ok
07:48:48.0898 6000 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
07:48:48.0899 6000 RpcLocator - ok
07:48:48.0982 6000 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
07:48:48.0986 6000 RpcSs - ok
07:48:49.0033 6000 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
07:48:49.0034 6000 rspndr - ok
07:48:49.0086 6000 RSUSBSTOR (4a25dc970c58104602ed274dacafd784) C:\Windows\system32\Drivers\RtsUStor.sys
07:48:49.0088 6000 RSUSBSTOR - ok
07:48:49.0142 6000 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:48:49.0145 6000 SamSs - ok
07:48:49.0203 6000 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
07:48:49.0204 6000 sbp2port - ok
07:48:49.0256 6000 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
07:48:49.0259 6000 SCardSvr - ok
07:48:49.0326 6000 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
07:48:49.0327 6000 scfilter - ok
07:48:49.0413 6000 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
07:48:49.0421 6000 Schedule - ok
07:48:49.0480 6000 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
07:48:49.0481 6000 SCPolicySvc - ok
07:48:49.0498 6000 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
07:48:49.0500 6000 SDRSVC - ok
07:48:49.0614 6000 SeaPort (d358e077a0a05d9b12da22d137ee8464) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
07:48:49.0616 6000 SeaPort - ok
07:48:49.0672 6000 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
07:48:49.0672 6000 secdrv - ok
07:48:49.0730 6000 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
07:48:49.0731 6000 seclogon - ok
07:48:49.0767 6000 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
07:48:49.0769 6000 SENS - ok
07:48:49.0789 6000 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
07:48:49.0790 6000 SensrSvc - ok
07:48:49.0813 6000 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
07:48:49.0814 6000 Serenum - ok
07:48:49.0860 6000 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
07:48:49.0864 6000 Serial - ok
07:48:49.0933 6000 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
07:48:49.0934 6000 sermouse - ok
07:48:50.0001 6000 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
07:48:50.0003 6000 SessionEnv - ok
07:48:50.0058 6000 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
07:48:50.0058 6000 sffdisk - ok
07:48:50.0093 6000 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
07:48:50.0093 6000 sffp_mmc - ok
07:48:50.0125 6000 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
07:48:50.0126 6000 sffp_sd - ok
07:48:50.0194 6000 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
07:48:50.0194 6000 sfloppy - ok
07:48:50.0265 6000 SftService (38f88f0df46c4d42125ef721abd7f6b9) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
07:48:50.0269 6000 SftService - ok
07:48:50.0439 6000 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
07:48:50.0442 6000 SharedAccess - ok
07:48:50.0517 6000 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
07:48:50.0521 6000 ShellHWDetection - ok
07:48:50.0582 6000 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:48:50.0583 6000 SiSRaid2 - ok
07:48:50.0602 6000 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
07:48:50.0603 6000 SiSRaid4 - ok
07:48:50.0621 6000 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
07:48:50.0622 6000 Smb - ok
07:48:50.0677 6000 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
07:48:50.0679 6000 SNMPTRAP - ok
07:48:50.0722 6000 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
07:48:50.0723 6000 spldr - ok
07:48:50.0780 6000 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
07:48:50.0787 6000 Spooler - ok
07:48:50.0956 6000 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
07:48:50.0978 6000 sppsvc - ok
07:48:51.0079 6000 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
07:48:51.0081 6000 sppuinotify - ok
07:48:51.0194 6000 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
07:48:51.0196 6000 sprtsvc_DellSupportCenter - ok
07:48:51.0368 6000 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\NISx64\1307010.005\SRTSP64.SYS
07:48:51.0372 6000 SRTSP - ok
07:48:51.0426 6000 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\NISx64\1307010.005\SRTSPX64.SYS
07:48:51.0427 6000 SRTSPX - ok
07:48:51.0492 6000 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
07:48:51.0496 6000 srv - ok
07:48:51.0552 6000 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
07:48:51.0554 6000 srv2 - ok
07:48:51.0583 6000 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
07:48:51.0586 6000 srvnet - ok
07:48:51.0631 6000 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
07:48:51.0635 6000 SSDPSRV - ok
07:48:51.0656 6000 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
07:48:51.0658 6000 SstpSvc - ok
07:48:51.0770 6000 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
07:48:51.0772 6000 STacSV - ok
07:48:51.0816 6000 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
07:48:51.0817 6000 stexstor - ok
07:48:51.0863 6000 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
07:48:51.0867 6000 STHDA - ok
07:48:51.0997 6000 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
07:48:52.0002 6000 stisvc - ok
07:48:52.0061 6000 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
07:48:52.0062 6000 swenum - ok
07:48:52.0108 6000 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
07:48:52.0113 6000 swprv - ok
07:48:52.0215 6000 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS
07:48:52.0218 6000 SymDS - ok
07:48:52.0305 6000 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS
07:48:52.0312 6000 SymEFA - ok
07:48:52.0392 6000 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
07:48:52.0394 6000 SymEvent - ok
07:48:52.0444 6000 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS
07:48:52.0445 6000 SymIRON - ok
07:48:52.0469 6000 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\NISx64\1307010.005\SYMNETS.SYS
07:48:52.0473 6000 SymNetS - ok
07:48:52.0582 6000 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
07:48:52.0594 6000 SysMain - ok
07:48:52.0722 6000 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
07:48:52.0724 6000 TabletInputService - ok
07:48:52.0750 6000 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
07:48:52.0753 6000 TapiSrv - ok
07:48:52.0802 6000 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
07:48:52.0806 6000 TBS - ok
07:48:52.0934 6000 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
07:48:52.0949 6000 Tcpip - ok
07:48:53.0145 6000 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
07:48:53.0157 6000 TCPIP6 - ok
07:48:53.0316 6000 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
07:48:53.0317 6000 tcpipreg - ok
07:48:53.0357 6000 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
07:48:53.0358 6000 TDPIPE - ok
07:48:53.0395 6000 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
07:48:53.0396 6000 TDTCP - ok
07:48:53.0435 6000 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
07:48:53.0436 6000 tdx - ok
07:48:53.0495 6000 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
07:48:53.0496 6000 TermDD - ok
07:48:53.0552 6000 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
07:48:53.0558 6000 TermService - ok
07:48:53.0621 6000 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
07:48:53.0623 6000 Themes - ok
07:48:53.0658 6000 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
07:48:53.0660 6000 THREADORDER - ok
07:48:53.0693 6000 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
07:48:53.0695 6000 TrkWks - ok
07:48:53.0765 6000 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
07:48:53.0766 6000 TrustedInstaller - ok
07:48:53.0814 6000 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
07:48:53.0815 6000 tssecsrv - ok
07:48:53.0874 6000 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
07:48:53.0876 6000 TsUsbFlt - ok
07:48:54.0074 6000 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
07:48:54.0075 6000 tunnel - ok
07:48:54.0113 6000 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
07:48:54.0114 6000 uagp35 - ok
07:48:54.0224 6000 uagqecsvc (3bd865754624eea5af13c4a114a7cab8) C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe
07:48:54.0227 6000 uagqecsvc - ok
07:48:54.0289 6000 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
07:48:54.0292 6000 udfs - ok
07:48:54.0348 6000 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
07:48:54.0350 6000 UI0Detect - ok
07:48:54.0406 6000 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
07:48:54.0407 6000 uliagpkx - ok
07:48:54.0451 6000 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
07:48:54.0452 6000 umbus - ok
07:48:54.0504 6000 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
07:48:54.0504 6000 UmPass - ok
07:48:54.0574 6000 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
07:48:54.0578 6000 upnphost - ok
07:48:54.0632 6000 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
07:48:54.0633 6000 USBAAPL64 - ok
07:48:54.0679 6000 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
07:48:54.0680 6000 usbccgp - ok
07:48:54.0708 6000 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
07:48:54.0709 6000 usbcir - ok
07:48:54.0744 6000 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
07:48:54.0745 6000 usbehci - ok
07:48:54.0773 6000 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
07:48:54.0775 6000 usbhub - ok
07:48:54.0823 6000 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
07:48:54.0824 6000 usbohci - ok
07:48:54.0874 6000 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
07:48:54.0875 6000 usbprint - ok
07:48:54.0929 6000 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:48:54.0930 6000 USBSTOR - ok
07:48:54.0956 6000 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
07:48:54.0957 6000 usbuhci - ok
07:48:55.0024 6000 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
07:48:55.0026 6000 usbvideo - ok
07:48:55.0067 6000 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
07:48:55.0069 6000 UxSms - ok
07:48:55.0127 6000 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
07:48:55.0130 6000 VaultSvc - ok
07:48:55.0165 6000 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
07:48:55.0166 6000 vdrvroot - ok
07:48:55.0238 6000 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
07:48:55.0243 6000 vds - ok
07:48:55.0430 6000 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
07:48:55.0431 6000 vga - ok
07:48:55.0671 6000 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
07:48:55.0672 6000 VgaSave - ok
07:48:55.0719 6000 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
07:48:55.0721 6000 vhdmp - ok
07:48:55.0757 6000 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
07:48:55.0757 6000 viaide - ok
07:48:55.0804 6000 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
07:48:55.0805 6000 volmgr - ok
07:48:55.0883 6000 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
07:48:55.0885 6000 volmgrx - ok
07:48:55.0952 6000 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
07:48:55.0954 6000 volsnap - ok
07:48:56.0004 6000 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
07:48:56.0006 6000 vsmraid - ok
07:48:56.0165 6000 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
07:48:56.0177 6000 VSS - ok
07:48:56.0330 6000 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
07:48:56.0331 6000 vwifibus - ok
07:48:56.0369 6000 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
07:48:56.0370 6000 vwififlt - ok
07:48:56.0390 6000 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
07:48:56.0391 6000 vwifimp - ok
07:48:56.0466 6000 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
07:48:56.0470 6000 W32Time - ok
07:48:56.0535 6000 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
07:48:56.0536 6000 WacomPen - ok
07:48:56.0589 6000 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
07:48:56.0591 6000 WANARP - ok
07:48:56.0602 6000 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
07:48:56.0603 6000 Wanarpv6 - ok
07:48:56.0700 6000 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
07:48:56.0708 6000 WatAdminSvc - ok
07:48:56.0826 6000 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
07:48:56.0837 6000 wbengine - ok
07:48:56.0939 6000 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
07:48:56.0942 6000 WbioSrvc - ok
07:48:57.0003 6000 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
07:48:57.0007 6000 wcncsvc - ok
07:48:57.0057 6000 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
07:48:57.0059 6000 WcsPlugInService - ok
07:48:57.0118 6000 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
07:48:57.0119 6000 Wd - ok
07:48:57.0172 6000 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
07:48:57.0176 6000 Wdf01000 - ok
07:48:57.0198 6000 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
07:48:57.0200 6000 WdiServiceHost - ok
07:48:57.0212 6000 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
07:48:57.0214 6000 WdiSystemHost - ok
07:48:57.0295 6000 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
07:48:57.0298 6000 WebClient - ok
07:48:57.0361 6000 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
07:48:57.0364 6000 Wecsvc - ok
07:48:57.0415 6000 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
07:48:57.0418 6000 wercplsupport - ok
07:48:57.0504 6000 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
07:48:57.0506 6000 WerSvc - ok
07:48:57.0591 6000 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
07:48:57.0591 6000 WfpLwf - ok
07:48:57.0632 6000 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
07:48:57.0634 6000 WimFltr - ok
07:48:57.0656 6000 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
07:48:57.0657 6000 WIMMount - ok
07:48:57.0719 6000 WinDefend - ok
07:48:57.0732 6000 WinHttpAutoProxySvc - ok
07:48:57.0829 6000 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
07:48:57.0831 6000 Winmgmt - ok
07:48:58.0004 6000 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
07:48:58.0018 6000 WinRM - ok
07:48:58.0191 6000 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
07:48:58.0192 6000 WinUsb - ok
07:48:58.0252 6000 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
07:48:58.0259 6000 Wlansvc - ok
07:48:58.0346 6000 wltrysvc (13b0a570e1ae451c92da550085d72cf3) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
07:48:58.0346 6000 wltrysvc - ok
07:48:58.0391 6000 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
07:48:58.0392 6000 WmiAcpi - ok
07:48:58.0488 6000 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
07:48:58.0490 6000 wmiApSrv - ok
07:48:58.0568 6000 WMPNetworkSvc - ok
07:48:58.0608 6000 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
07:48:58.0609 6000 WPCSvc - ok
07:48:58.0675 6000 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
07:48:58.0678 6000 WPDBusEnum - ok
07:48:58.0707 6000 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
07:48:58.0709 6000 ws2ifsl - ok
07:48:58.0764 6000 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
07:48:58.0766 6000 wscsvc - ok
07:48:58.0778 6000 WSearch - ok
07:48:58.0953 6000 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
07:48:58.0970 6000 wuauserv - ok
07:48:59.0113 6000 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
07:48:59.0115 6000 WudfPf - ok
07:48:59.0140 6000 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
07:48:59.0143 6000 WUDFRd - ok
07:48:59.0193 6000 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
07:48:59.0195 6000 wudfsvc - ok
07:48:59.0235 6000 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
07:48:59.0238 6000 WwanSvc - ok
07:48:59.0437 6000 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
07:48:59.0440 6000 yukonw7 - ok
07:48:59.0494 6000 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
07:48:59.0558 6000 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
07:48:59.0558 6000 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
07:48:59.0616 6000 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
07:48:59.0616 6000 \Device\Harddisk0\DR0 - detected TDSS File System (1)
07:48:59.0624 6000 Boot (0x1200) (85af29dac008a8545c9ba2eaad7df661) \Device\Harddisk0\DR0\Partition0
07:48:59.0625 6000 \Device\Harddisk0\DR0\Partition0 - ok
07:48:59.0664 6000 Boot (0x1200) (91fccc1547dfd2482d1becb0510b4e16) \Device\Harddisk0\DR0\Partition1
07:48:59.0666 6000 \Device\Harddisk0\DR0\Partition1 - ok
07:48:59.0670 6000 ============================================================
07:48:59.0670 6000 Scan finished
07:48:59.0670 6000 ============================================================
07:48:59.0685 4088 Detected object count: 2
07:48:59.0685 4088 Actual detected object count: 2
07:52:00.0585 4088 \Device\Harddisk0\DR0\# - copied to quarantine
07:52:00.0586 4088 \Device\Harddisk0\DR0 - copied to quarantine
07:52:00.0644 4088 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
07:52:00.0646 4088 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
07:52:00.0652 4088 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
07:52:00.0656 4088 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
07:52:00.0666 4088 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
07:52:00.0673 4088 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
07:52:00.0675 4088 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
07:52:00.0677 4088 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
07:52:00.0679 4088 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
07:52:00.0682 4088 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
07:52:00.0685 4088 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
07:52:00.0688 4088 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
07:52:00.0691 4088 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
07:52:00.0693 4088 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
07:52:00.0702 4088 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
07:52:00.0759 4088 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
07:52:00.0760 4088 \Device\Harddisk0\DR0 - ok
07:52:00.0840 4088 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
07:52:00.0844 4088 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
07:52:00.0844 4088 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
07:52:12.0789 5248 Deinitialize success

aswMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-10 08:29:44
-----------------------------
08:29:44.839 OS Version: Windows x64 6.1.7601 Service Pack 1
08:29:44.839 Number of processors: 2 586 0x170A
08:29:44.840 ComputerName: BRIAN-PC UserName: Brian
08:29:46.430 Initialize success
08:30:42.725 AVAST engine defs: 12081000
08:31:37.992 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:31:37.995 Disk 0 Vendor: SAMSUNG_ 2AJ1 Size: 305245MB BusType: 3
08:31:38.018 Disk 0 MBR read successfully
08:31:38.022 Disk 0 MBR scan
08:31:38.030 Disk 0 Windows VISTA default MBR code
08:31:38.035 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
08:31:38.047 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 81920
08:31:38.066 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 290204 MB offset 30801920
08:31:38.101 Disk 0 scanning C:\Windows\system32\drivers
08:31:50.488 Service scanning
08:32:16.077 Modules scanning
08:32:16.090 Disk 0 trace - called modules:
08:32:16.114 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
08:32:16.124 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005c59060]
08:32:16.132 3 CLASSPNP.SYS[fffff88001c1743f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005906050]
08:32:17.265 AVAST engine scan C:\Windows
08:32:19.419 AVAST engine scan C:\Windows\system32
08:35:32.343 AVAST engine scan C:\Windows\system32\drivers
08:35:50.433 AVAST engine scan C:\Users\Brian
08:42:23.831 AVAST engine scan C:\ProgramData
08:45:02.987 Scan finished successfully
08:46:09.855 Disk 0 MBR has been saved successfully to "C:\Users\Brian\Desktop\Virus Fix\MBR.dat"
08:46:09.861 The log file has been saved successfully to "C:\Users\Brian\Desktop\Virus Fix\aswMBR.txt"

#3 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:58 AM

Posted 10 August 2012 - 07:54 AM

Restart the PC and run TDSSkiller once again make sure to delete this

07:52:00.0844 4088 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user

Post the new log

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#4 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 08:05 AM

Wow, thanks for the quick reply! I will get started on these other scans! Thanks again!

#5 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 08:09 AM

New TDSSKiller log:

09:04:07.0169 0764 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
09:04:07.0520 0764 ============================================================
09:04:07.0520 0764 Current date / time: 2012/08/10 09:04:07.0520
09:04:07.0520 0764 SystemInfo:
09:04:07.0520 0764
09:04:07.0520 0764 OS Version: 6.1.7601 ServicePack: 1.0
09:04:07.0520 0764 Product type: Workstation
09:04:07.0521 0764 ComputerName: BRIAN-PC
09:04:07.0521 0764 UserName: Brian
09:04:07.0521 0764 Windows directory: C:\Windows
09:04:07.0521 0764 System windows directory: C:\Windows
09:04:07.0521 0764 Running under WOW64
09:04:07.0521 0764 Processor architecture: Intel x64
09:04:07.0521 0764 Number of processors: 2
09:04:07.0521 0764 Page size: 0x1000
09:04:07.0521 0764 Boot type: Normal boot
09:04:07.0521 0764 ============================================================
09:04:08.0070 0764 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:04:08.0083 0764 ============================================================
09:04:08.0083 0764 \Device\Harddisk0\DR0:
09:04:08.0083 0764 MBR partitions:
09:04:08.0083 0764 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
09:04:08.0083 0764 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x236CE2B0
09:04:08.0083 0764 ============================================================
09:04:08.0113 0764 C: <-> \Device\Harddisk0\DR0\Partition1
09:04:08.0113 0764 ============================================================
09:04:08.0113 0764 Initialize success
09:04:08.0113 0764 ============================================================
09:04:13.0556 3008 ============================================================
09:04:13.0556 3008 Scan started
09:04:13.0556 3008 Mode: Manual; TDLFS;
09:04:13.0556 3008 ============================================================
09:04:13.0915 3008 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
09:04:13.0921 3008 1394ohci - ok
09:04:13.0971 3008 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
09:04:13.0975 3008 ACPI - ok
09:04:14.0033 3008 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
09:04:14.0036 3008 AcpiPmi - ok
09:04:14.0122 3008 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
09:04:14.0148 3008 adp94xx - ok
09:04:14.0226 3008 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
09:04:14.0233 3008 adpahci - ok
09:04:14.0291 3008 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
09:04:14.0310 3008 adpu320 - ok
09:04:14.0363 3008 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
09:04:14.0365 3008 AeLookupSvc - ok
09:04:14.0441 3008 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
09:04:14.0469 3008 AFD - ok
09:04:14.0548 3008 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
09:04:14.0551 3008 agp440 - ok
09:04:14.0613 3008 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
09:04:14.0616 3008 ALG - ok
09:04:14.0673 3008 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
09:04:14.0688 3008 aliide - ok
09:04:14.0714 3008 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
09:04:14.0716 3008 amdide - ok
09:04:14.0744 3008 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
09:04:14.0746 3008 AmdK8 - ok
09:04:14.0771 3008 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
09:04:14.0782 3008 AmdPPM - ok
09:04:14.0827 3008 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
09:04:14.0841 3008 amdsata - ok
09:04:14.0880 3008 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
09:04:14.0895 3008 amdsbs - ok
09:04:14.0924 3008 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
09:04:14.0937 3008 amdxata - ok
09:04:15.0011 3008 ApfiltrService (9b0b7fde049cb283fabe5877a49f2611) C:\Windows\system32\DRIVERS\Apfiltr.sys
09:04:15.0029 3008 ApfiltrService - ok
09:04:15.0106 3008 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
09:04:15.0120 3008 AppID - ok
09:04:15.0146 3008 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
09:04:15.0148 3008 AppIDSvc - ok
09:04:15.0210 3008 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
09:04:15.0212 3008 Appinfo - ok
09:04:15.0345 3008 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:04:15.0347 3008 Apple Mobile Device - ok
09:04:15.0404 3008 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
09:04:15.0419 3008 arc - ok
09:04:15.0460 3008 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
09:04:15.0463 3008 arcsas - ok
09:04:15.0498 3008 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
09:04:15.0500 3008 AsyncMac - ok
09:04:15.0563 3008 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
09:04:15.0565 3008 atapi - ok
09:04:15.0665 3008 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
09:04:15.0672 3008 AudioEndpointBuilder - ok
09:04:15.0684 3008 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
09:04:15.0690 3008 AudioSrv - ok
09:04:15.0761 3008 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
09:04:15.0765 3008 AxInstSV - ok
09:04:15.0846 3008 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
09:04:15.0863 3008 b06bdrv - ok
09:04:15.0952 3008 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
09:04:15.0957 3008 b57nd60a - ok
09:04:16.0013 3008 BCM42RLY (e001dd475a7c27ebe5a0db45c11bad71) C:\Windows\system32\drivers\BCM42RLY.sys
09:04:16.0030 3008 BCM42RLY - ok
09:04:16.0364 3008 BCM43XX (37394d3553e220fb732c21e217e1bd8b) C:\Windows\system32\DRIVERS\bcmwl664.sys
09:04:16.0387 3008 BCM43XX - ok
09:04:16.0541 3008 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
09:04:16.0544 3008 BDESVC - ok
09:04:16.0606 3008 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
09:04:16.0628 3008 Beep - ok
09:04:16.0741 3008 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
09:04:16.0750 3008 BFE - ok
09:04:17.0026 3008 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120804.001\BHDrvx64.sys
09:04:17.0038 3008 BHDrvx64 - ok
09:04:17.0192 3008 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
09:04:17.0205 3008 BITS - ok
09:04:17.0274 3008 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
09:04:17.0276 3008 blbdrive - ok
09:04:17.0392 3008 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
09:04:17.0399 3008 Bonjour Service - ok
09:04:17.0452 3008 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
09:04:17.0472 3008 bowser - ok
09:04:17.0516 3008 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:04:17.0518 3008 BrFiltLo - ok
09:04:17.0530 3008 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:04:17.0547 3008 BrFiltUp - ok
09:04:17.0594 3008 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
09:04:17.0596 3008 Browser - ok
09:04:17.0631 3008 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
09:04:17.0648 3008 Brserid - ok
09:04:17.0682 3008 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
09:04:17.0684 3008 BrSerWdm - ok
09:04:17.0696 3008 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:04:17.0711 3008 BrUsbMdm - ok
09:04:17.0741 3008 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
09:04:17.0743 3008 BrUsbSer - ok
09:04:17.0773 3008 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
09:04:17.0776 3008 BTHMODEM - ok
09:04:17.0843 3008 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
09:04:17.0862 3008 bthserv - ok
09:04:17.0974 3008 ccSet_NIS (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys
09:04:17.0977 3008 ccSet_NIS - ok
09:04:18.0048 3008 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
09:04:18.0051 3008 cdfs - ok
09:04:18.0112 3008 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
09:04:18.0132 3008 cdrom - ok
09:04:18.0202 3008 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
09:04:18.0204 3008 CertPropSvc - ok
09:04:18.0265 3008 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
09:04:18.0276 3008 circlass - ok
09:04:18.0332 3008 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
09:04:18.0338 3008 CLFS - ok
09:04:18.0403 3008 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:04:18.0422 3008 clr_optimization_v2.0.50727_32 - ok
09:04:18.0482 3008 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:04:18.0485 3008 clr_optimization_v2.0.50727_64 - ok
09:04:18.0588 3008 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:04:18.0590 3008 clr_optimization_v4.0.30319_32 - ok
09:04:18.0627 3008 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:04:18.0630 3008 clr_optimization_v4.0.30319_64 - ok
09:04:18.0690 3008 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
09:04:18.0710 3008 CmBatt - ok
09:04:18.0752 3008 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
09:04:18.0765 3008 cmdide - ok
09:04:18.0835 3008 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
09:04:18.0853 3008 CNG - ok
09:04:18.0922 3008 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
09:04:18.0942 3008 Compbatt - ok
09:04:18.0991 3008 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
09:04:18.0993 3008 CompositeBus - ok
09:04:19.0014 3008 COMSysApp - ok
09:04:19.0039 3008 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
09:04:19.0058 3008 crcdisk - ok
09:04:19.0142 3008 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
09:04:19.0145 3008 CryptSvc - ok
09:04:19.0216 3008 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
09:04:19.0239 3008 CtClsFlt - ok
09:04:19.0330 3008 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
09:04:19.0335 3008 DcomLaunch - ok
09:04:19.0399 3008 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
09:04:19.0404 3008 defragsvc - ok
09:04:19.0462 3008 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
09:04:19.0464 3008 DfsC - ok
09:04:19.0541 3008 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
09:04:19.0545 3008 Dhcp - ok
09:04:19.0573 3008 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
09:04:19.0594 3008 discache - ok
09:04:19.0641 3008 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
09:04:19.0643 3008 Disk - ok
09:04:19.0786 3008 DMService (ae3d76825152764ef016370fdac219f9) C:\Windows\Downloaded Program Files\DM.0\DMService.exe
09:04:19.0803 3008 DMService - ok
09:04:19.0848 3008 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
09:04:19.0851 3008 Dnscache - ok
09:04:19.0970 3008 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
09:04:19.0972 3008 DockLoginService - ok
09:04:20.0019 3008 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
09:04:20.0039 3008 dot3svc - ok
09:04:20.0095 3008 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
09:04:20.0098 3008 DPS - ok
09:04:20.0165 3008 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
09:04:20.0167 3008 drmkaud - ok
09:04:20.0261 3008 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
09:04:20.0271 3008 DXGKrnl - ok
09:04:20.0307 3008 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
09:04:20.0309 3008 EapHost - ok
09:04:20.0672 3008 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
09:04:20.0939 3008 ebdrv - ok
09:04:21.0073 3008 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
09:04:21.0086 3008 eeCtrl - ok
09:04:21.0218 3008 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
09:04:21.0221 3008 EFS - ok
09:04:21.0326 3008 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
09:04:21.0337 3008 ehRecvr - ok
09:04:21.0375 3008 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
09:04:21.0402 3008 ehSched - ok
09:04:21.0495 3008 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
09:04:21.0506 3008 elxstor - ok
09:04:21.0556 3008 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
09:04:21.0559 3008 ErrDev - ok
09:04:21.0647 3008 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
09:04:21.0652 3008 EventSystem - ok
09:04:21.0703 3008 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
09:04:21.0717 3008 exfat - ok
09:04:21.0761 3008 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
09:04:21.0765 3008 fastfat - ok
09:04:22.0061 3008 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
09:04:22.0072 3008 Fax - ok
09:04:22.0111 3008 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
09:04:22.0125 3008 fdc - ok
09:04:22.0164 3008 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
09:04:22.0166 3008 fdPHost - ok
09:04:22.0208 3008 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
09:04:22.0210 3008 FDResPub - ok
09:04:22.0226 3008 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
09:04:22.0228 3008 FileInfo - ok
09:04:22.0247 3008 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
09:04:22.0261 3008 Filetrace - ok
09:04:22.0283 3008 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
09:04:22.0296 3008 flpydisk - ok
09:04:22.0373 3008 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
09:04:22.0397 3008 FltMgr - ok
09:04:22.0507 3008 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
09:04:22.0523 3008 FontCache - ok
09:04:22.0637 3008 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:04:22.0639 3008 FontCache3.0.0.0 - ok
09:04:22.0701 3008 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
09:04:22.0704 3008 FsDepends - ok
09:04:22.0740 3008 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
09:04:22.0757 3008 Fs_Rec - ok
09:04:22.0820 3008 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
09:04:22.0840 3008 fvevol - ok
09:04:22.0883 3008 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
09:04:22.0886 3008 gagp30kx - ok
09:04:23.0050 3008 GameConsoleService (c1bbce4b30b45410178ee674c818d10c) C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
09:04:23.0074 3008 GameConsoleService - ok
09:04:23.0148 3008 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:04:23.0164 3008 GEARAspiWDM - ok
09:04:23.0255 3008 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
09:04:23.0276 3008 GoToAssist - ok
09:04:23.0386 3008 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
09:04:23.0397 3008 gpsvc - ok
09:04:23.0465 3008 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
09:04:23.0483 3008 hcw85cir - ok
09:04:23.0547 3008 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
09:04:23.0549 3008 HDAudBus - ok
09:04:23.0571 3008 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
09:04:23.0573 3008 HidBatt - ok
09:04:23.0593 3008 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
09:04:23.0596 3008 HidBth - ok
09:04:23.0617 3008 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
09:04:23.0620 3008 HidIr - ok
09:04:23.0658 3008 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
09:04:23.0660 3008 hidserv - ok
09:04:23.0738 3008 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
09:04:23.0740 3008 HidUsb - ok
09:04:23.0777 3008 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
09:04:23.0780 3008 hkmsvc - ok
09:04:23.0832 3008 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
09:04:23.0837 3008 HomeGroupListener - ok
09:04:23.0886 3008 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
09:04:23.0890 3008 HomeGroupProvider - ok
09:04:23.0932 3008 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
09:04:23.0953 3008 HpSAMD - ok
09:04:24.0030 3008 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
09:04:24.0072 3008 HTTP - ok
09:04:24.0125 3008 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
09:04:24.0126 3008 hwpolicy - ok
09:04:24.0192 3008 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
09:04:24.0210 3008 i8042prt - ok
09:04:24.0346 3008 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
09:04:24.0350 3008 IAANTMON - ok
09:04:24.0444 3008 iaStor (4f6fb2cdbdeefc47e7d2066e78254580) C:\Windows\system32\DRIVERS\iaStor.sys
09:04:24.0449 3008 iaStor - ok
09:04:24.0526 3008 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
09:04:24.0534 3008 iaStorV - ok
09:04:24.0713 3008 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:04:24.0735 3008 idsvc - ok
09:04:24.0968 3008 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120809.001\IDSvia64.sys
09:04:24.0973 3008 IDSVia64 - ok
09:04:25.0388 3008 igfx (babd5f9b2bcc82ce556a0baf1ae208a7) C:\Windows\system32\DRIVERS\igdkmd64.sys
09:04:25.0546 3008 igfx - ok
09:04:25.0679 3008 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
09:04:25.0682 3008 iirsp - ok
09:04:25.0754 3008 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
09:04:25.0767 3008 IKEEXT - ok
09:04:25.0823 3008 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
09:04:25.0825 3008 intelide - ok
09:04:25.0887 3008 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
09:04:25.0888 3008 intelppm - ok
09:04:25.0928 3008 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
09:04:25.0943 3008 IPBusEnum - ok
09:04:26.0016 3008 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:04:26.0019 3008 IpFilterDriver - ok
09:04:26.0088 3008 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
09:04:26.0097 3008 iphlpsvc - ok
09:04:26.0140 3008 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
09:04:26.0142 3008 IPMIDRV - ok
09:04:26.0183 3008 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
09:04:26.0186 3008 IPNAT - ok
09:04:26.0310 3008 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
09:04:26.0325 3008 iPod Service - ok
09:04:26.0678 3008 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
09:04:26.0696 3008 IRENUM - ok
09:04:26.0745 3008 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
09:04:26.0765 3008 isapnp - ok
09:04:26.0815 3008 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
09:04:26.0835 3008 iScsiPrt - ok
09:04:26.0888 3008 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
09:04:26.0889 3008 kbdclass - ok
09:04:26.0930 3008 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
09:04:26.0932 3008 kbdhid - ok
09:04:26.0973 3008 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:04:26.0975 3008 KeyIso - ok
09:04:27.0009 3008 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
09:04:27.0031 3008 KSecDD - ok
09:04:27.0072 3008 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
09:04:27.0098 3008 KSecPkg - ok
09:04:27.0147 3008 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
09:04:27.0149 3008 ksthunk - ok
09:04:27.0202 3008 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
09:04:27.0210 3008 KtmRm - ok
09:04:27.0276 3008 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
09:04:27.0280 3008 LanmanServer - ok
09:04:27.0330 3008 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
09:04:27.0333 3008 LanmanWorkstation - ok
09:04:27.0391 3008 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
09:04:27.0407 3008 lltdio - ok
09:04:27.0439 3008 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
09:04:27.0444 3008 lltdsvc - ok
09:04:27.0463 3008 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
09:04:27.0464 3008 lmhosts - ok
09:04:27.0516 3008 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
09:04:27.0520 3008 LSI_FC - ok
09:04:27.0549 3008 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
09:04:27.0553 3008 LSI_SAS - ok
09:04:27.0571 3008 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:04:27.0573 3008 LSI_SAS2 - ok
09:04:27.0590 3008 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:04:27.0593 3008 LSI_SCSI - ok
09:04:27.0635 3008 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
09:04:27.0638 3008 luafv - ok
09:04:27.0663 3008 lxdq_device - ok
09:04:27.0699 3008 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
09:04:27.0713 3008 Mcx2Svc - ok
09:04:27.0738 3008 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
09:04:27.0740 3008 megasas - ok
09:04:27.0777 3008 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
09:04:27.0783 3008 MegaSR - ok
09:04:27.0933 3008 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
09:04:27.0954 3008 Microsoft Office Groove Audit Service - ok
09:04:28.0011 3008 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:04:28.0014 3008 MMCSS - ok
09:04:28.0039 3008 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
09:04:28.0042 3008 Modem - ok
09:04:28.0088 3008 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
09:04:28.0090 3008 monitor - ok
09:04:28.0140 3008 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys
09:04:28.0158 3008 motandroidusb - ok
09:04:28.0206 3008 motccgp (c94a2ea3fdfa5d650884926b710b7db1) C:\Windows\system32\DRIVERS\motccgp.sys
09:04:28.0227 3008 motccgp - ok
09:04:28.0263 3008 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
09:04:28.0282 3008 motccgpfl - ok
09:04:28.0344 3008 MotDev (3cc500c9b0e4d476802d277353cb2c89) C:\Windows\system32\DRIVERS\motodrv.sys
09:04:28.0358 3008 MotDev - ok
09:04:28.0397 3008 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
09:04:28.0399 3008 MotoSwitchService - ok
09:04:28.0444 3008 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
09:04:28.0446 3008 mouclass - ok
09:04:28.0529 3008 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
09:04:28.0532 3008 mouhid - ok
09:04:28.0573 3008 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
09:04:28.0588 3008 mountmgr - ok
09:04:28.0691 3008 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:04:28.0710 3008 MozillaMaintenance - ok
09:04:28.0764 3008 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
09:04:28.0767 3008 mpio - ok
09:04:28.0798 3008 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
09:04:28.0820 3008 mpsdrv - ok
09:04:28.0917 3008 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
09:04:28.0929 3008 MpsSvc - ok
09:04:28.0980 3008 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
09:04:28.0994 3008 MRxDAV - ok
09:04:29.0079 3008 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:04:29.0105 3008 mrxsmb - ok
09:04:29.0165 3008 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:04:29.0187 3008 mrxsmb10 - ok
09:04:29.0210 3008 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:04:29.0232 3008 mrxsmb20 - ok
09:04:29.0317 3008 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
09:04:29.0332 3008 msahci - ok
09:04:29.0385 3008 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
09:04:29.0408 3008 msdsm - ok
09:04:29.0518 3008 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
09:04:29.0523 3008 MSDTC - ok
09:04:29.0598 3008 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
09:04:29.0617 3008 Msfs - ok
09:04:29.0652 3008 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
09:04:29.0674 3008 mshidkmdf - ok
09:04:29.0769 3008 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
09:04:29.0798 3008 msisadrv - ok
09:04:30.0020 3008 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
09:04:30.0036 3008 MSiSCSI - ok
09:04:30.0049 3008 msiserver - ok
09:04:30.0137 3008 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
09:04:30.0156 3008 MSKSSRV - ok
09:04:30.0180 3008 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
09:04:30.0194 3008 MSPCLOCK - ok
09:04:30.0239 3008 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
09:04:30.0241 3008 MSPQM - ok
09:04:30.0294 3008 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
09:04:30.0300 3008 MsRPC - ok
09:04:30.0361 3008 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
09:04:30.0362 3008 mssmbios - ok
09:04:30.0390 3008 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
09:04:30.0392 3008 MSTEE - ok
09:04:30.0407 3008 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
09:04:30.0409 3008 MTConfig - ok
09:04:30.0435 3008 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
09:04:30.0436 3008 Mup - ok
09:04:30.0494 3008 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
09:04:30.0502 3008 napagent - ok
09:04:30.0578 3008 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
09:04:30.0596 3008 NativeWifiP - ok
09:04:30.0781 3008 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120809.033\ENG64.SYS
09:04:30.0783 3008 NAVENG - ok
09:04:30.0925 3008 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120809.033\EX64.SYS
09:04:30.0957 3008 NAVEX15 - ok
09:04:31.0160 3008 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
09:04:31.0173 3008 NDIS - ok
09:04:31.0239 3008 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
09:04:31.0255 3008 NdisCap - ok
09:04:31.0304 3008 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
09:04:31.0307 3008 NdisTapi - ok
09:04:31.0368 3008 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
09:04:31.0371 3008 Ndisuio - ok
09:04:31.0423 3008 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
09:04:31.0428 3008 NdisWan - ok
09:04:31.0463 3008 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
09:04:31.0466 3008 NDProxy - ok
09:04:31.0511 3008 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
09:04:31.0533 3008 NetBIOS - ok
09:04:31.0588 3008 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
09:04:31.0594 3008 NetBT - ok
09:04:31.0720 3008 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:04:31.0722 3008 Netlogon - ok
09:04:31.0817 3008 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
09:04:31.0833 3008 Netman - ok
09:04:31.0865 3008 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
09:04:31.0869 3008 netprofm - ok
09:04:31.0977 3008 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:04:31.0998 3008 NetTcpPortSharing - ok
09:04:32.0030 3008 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
09:04:32.0046 3008 nfrd960 - ok
09:04:32.0194 3008 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe
09:04:32.0196 3008 NIS - ok
09:04:32.0270 3008 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
09:04:32.0276 3008 NlaSvc - ok
09:04:32.0290 3008 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
09:04:32.0291 3008 Npfs - ok
09:04:32.0321 3008 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
09:04:32.0323 3008 nsi - ok
09:04:32.0338 3008 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
09:04:32.0359 3008 nsiproxy - ok
09:04:32.0511 3008 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
09:04:32.0562 3008 Ntfs - ok
09:04:32.0694 3008 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
09:04:32.0707 3008 Null - ok
09:04:32.0775 3008 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
09:04:32.0793 3008 nvraid - ok
09:04:32.0833 3008 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
09:04:32.0837 3008 nvstor - ok
09:04:32.0887 3008 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
09:04:32.0890 3008 nv_agp - ok
09:04:33.0037 3008 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:04:33.0060 3008 odserv - ok
09:04:33.0105 3008 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
09:04:33.0108 3008 ohci1394 - ok
09:04:33.0196 3008 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:04:33.0213 3008 ose - ok
09:04:33.0284 3008 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:04:33.0291 3008 p2pimsvc - ok
09:04:33.0354 3008 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
09:04:33.0362 3008 p2psvc - ok
09:04:33.0401 3008 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
09:04:33.0404 3008 Parport - ok
09:04:33.0451 3008 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
09:04:33.0464 3008 partmgr - ok
09:04:33.0524 3008 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
09:04:33.0528 3008 PcaSvc - ok
09:04:33.0580 3008 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
09:04:33.0584 3008 pci - ok
09:04:33.0603 3008 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
09:04:33.0605 3008 pciide - ok
09:04:33.0645 3008 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
09:04:33.0662 3008 pcmcia - ok
09:04:33.0689 3008 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
09:04:33.0691 3008 pcw - ok
09:04:33.0745 3008 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
09:04:33.0755 3008 PEAUTH - ok
09:04:33.0853 3008 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
09:04:33.0855 3008 PerfHost - ok
09:04:33.0971 3008 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
09:04:34.0021 3008 pla - ok
09:04:34.0092 3008 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
09:04:34.0100 3008 PlugPlay - ok
09:04:34.0128 3008 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
09:04:34.0130 3008 PNRPAutoReg - ok
09:04:34.0158 3008 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:04:34.0161 3008 PNRPsvc - ok
09:04:34.0212 3008 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
09:04:34.0220 3008 PolicyAgent - ok
09:04:34.0333 3008 postgresql-8.4 - ok
09:04:34.0373 3008 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
09:04:34.0377 3008 Power - ok
09:04:34.0462 3008 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
09:04:34.0485 3008 PptpMiniport - ok
09:04:34.0511 3008 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
09:04:34.0514 3008 Processor - ok
09:04:34.0580 3008 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
09:04:34.0585 3008 ProfSvc - ok
09:04:34.0625 3008 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:04:34.0627 3008 ProtectedStorage - ok
09:04:34.0684 3008 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
09:04:34.0687 3008 Psched - ok
09:04:34.0745 3008 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
09:04:34.0747 3008 PxHlpa64 - ok
09:04:34.0854 3008 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
09:04:34.0872 3008 ql2300 - ok
09:04:34.0991 3008 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
09:04:34.0994 3008 ql40xx - ok
09:04:35.0025 3008 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
09:04:35.0030 3008 QWAVE - ok
09:04:35.0049 3008 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
09:04:35.0051 3008 QWAVEdrv - ok
09:04:35.0066 3008 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
09:04:35.0077 3008 RasAcd - ok
09:04:35.0127 3008 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
09:04:35.0129 3008 RasAgileVpn - ok
09:04:35.0148 3008 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
09:04:35.0153 3008 RasAuto - ok
09:04:35.0191 3008 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:04:35.0206 3008 Rasl2tp - ok
09:04:35.0298 3008 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
09:04:35.0312 3008 RasMan - ok
09:04:35.0387 3008 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
09:04:35.0408 3008 RasPppoe - ok
09:04:35.0439 3008 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
09:04:35.0441 3008 RasSstp - ok
09:04:35.0489 3008 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
09:04:35.0496 3008 rdbss - ok
09:04:35.0512 3008 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
09:04:35.0525 3008 rdpbus - ok
09:04:35.0547 3008 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:04:35.0562 3008 RDPCDD - ok
09:04:35.0627 3008 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
09:04:35.0629 3008 RDPENCDD - ok
09:04:35.0660 3008 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
09:04:35.0662 3008 RDPREFMP - ok
09:04:35.0702 3008 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
09:04:35.0724 3008 RDPWD - ok
09:04:35.0795 3008 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
09:04:35.0810 3008 rdyboost - ok
09:04:35.0842 3008 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
09:04:35.0846 3008 RemoteAccess - ok
09:04:35.0883 3008 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
09:04:35.0904 3008 RemoteRegistry - ok
09:04:35.0966 3008 RimUsb (7b04c9843921ab1f695fb395422c5360) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
09:04:35.0978 3008 RimUsb - ok
09:04:36.0026 3008 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
09:04:36.0030 3008 RpcEptMapper - ok
09:04:36.0060 3008 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
09:04:36.0063 3008 RpcLocator - ok
09:04:36.0127 3008 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
09:04:36.0132 3008 RpcSs - ok
09:04:36.0205 3008 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
09:04:36.0222 3008 rspndr - ok
09:04:36.0301 3008 RSUSBSTOR (4a25dc970c58104602ed274dacafd784) C:\Windows\system32\Drivers\RtsUStor.sys
09:04:36.0305 3008 RSUSBSTOR - ok
09:04:36.0346 3008 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:04:36.0348 3008 SamSs - ok
09:04:36.0385 3008 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
09:04:36.0387 3008 sbp2port - ok
09:04:36.0429 3008 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
09:04:36.0435 3008 SCardSvr - ok
09:04:36.0479 3008 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
09:04:36.0491 3008 scfilter - ok
09:04:36.0579 3008 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
09:04:36.0594 3008 Schedule - ok
09:04:36.0641 3008 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
09:04:36.0642 3008 SCPolicySvc - ok
09:04:36.0690 3008 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
09:04:36.0710 3008 SDRSVC - ok
09:04:36.0847 3008 SeaPort (d358e077a0a05d9b12da22d137ee8464) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
09:04:36.0849 3008 SeaPort - ok
09:04:36.0933 3008 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
09:04:36.0953 3008 secdrv - ok
09:04:37.0002 3008 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
09:04:37.0018 3008 seclogon - ok
09:04:37.0074 3008 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
09:04:37.0077 3008 SENS - ok
09:04:37.0126 3008 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
09:04:37.0137 3008 SensrSvc - ok
09:04:37.0161 3008 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
09:04:37.0181 3008 Serenum - ok
09:04:37.0209 3008 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
09:04:37.0212 3008 Serial - ok
09:04:37.0249 3008 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
09:04:37.0251 3008 sermouse - ok
09:04:37.0306 3008 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
09:04:37.0310 3008 SessionEnv - ok
09:04:37.0340 3008 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
09:04:37.0355 3008 sffdisk - ok
09:04:37.0375 3008 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
09:04:37.0404 3008 sffp_mmc - ok
09:04:37.0430 3008 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
09:04:37.0431 3008 sffp_sd - ok
09:04:37.0465 3008 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
09:04:37.0467 3008 sfloppy - ok
09:04:37.0572 3008 SftService (38f88f0df46c4d42125ef721abd7f6b9) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
09:04:37.0580 3008 SftService - ok
09:04:37.0655 3008 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
09:04:37.0680 3008 SharedAccess - ok
09:04:37.0799 3008 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
09:04:37.0805 3008 ShellHWDetection - ok
09:04:37.0876 3008 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:04:37.0878 3008 SiSRaid2 - ok
09:04:37.0906 3008 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
09:04:37.0908 3008 SiSRaid4 - ok
09:04:37.0959 3008 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
09:04:37.0979 3008 Smb - ok
09:04:38.0059 3008 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
09:04:38.0072 3008 SNMPTRAP - ok
09:04:38.0233 3008 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
09:04:38.0235 3008 spldr - ok
09:04:38.0321 3008 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
09:04:38.0328 3008 Spooler - ok
09:04:38.0472 3008 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
09:04:38.0560 3008 sppsvc - ok
09:04:38.0737 3008 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
09:04:38.0754 3008 sppuinotify - ok
09:04:38.0954 3008 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
09:04:38.0956 3008 sprtsvc_DellSupportCenter - ok
09:04:39.0109 3008 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\NISx64\1307010.005\SRTSP64.SYS
09:04:39.0115 3008 SRTSP - ok
09:04:39.0163 3008 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\NISx64\1307010.005\SRTSPX64.SYS
09:04:39.0165 3008 SRTSPX - ok
09:04:39.0224 3008 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
09:04:39.0232 3008 srv - ok
09:04:39.0258 3008 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
09:04:39.0263 3008 srv2 - ok
09:04:39.0297 3008 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
09:04:39.0317 3008 srvnet - ok
09:04:39.0719 3008 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
09:04:39.0722 3008 SSDPSRV - ok
09:04:39.0746 3008 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
09:04:39.0761 3008 SstpSvc - ok
09:04:39.0885 3008 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
09:04:39.0890 3008 STacSV - ok
09:04:39.0918 3008 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
09:04:39.0931 3008 stexstor - ok
09:04:39.0988 3008 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
09:04:39.0995 3008 STHDA - ok
09:04:40.0064 3008 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
09:04:40.0075 3008 stisvc - ok
09:04:40.0173 3008 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
09:04:40.0175 3008 swenum - ok
09:04:40.0260 3008 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
09:04:40.0290 3008 swprv - ok
09:04:40.0451 3008 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS
09:04:40.0458 3008 SymDS - ok
09:04:40.0561 3008 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS
09:04:40.0578 3008 SymEFA - ok
09:04:40.0664 3008 SymEvent (894579207e39c465737e850a252ce4f2) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
09:04:40.0667 3008 SymEvent - ok
09:04:40.0745 3008 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS
09:04:40.0748 3008 SymIRON - ok
09:04:40.0823 3008 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\NISx64\1307010.005\SYMNETS.SYS
09:04:40.0827 3008 SymNetS - ok
09:04:40.0946 3008 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
09:04:40.0968 3008 SysMain - ok
09:04:41.0132 3008 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
09:04:41.0137 3008 TabletInputService - ok
09:04:41.0171 3008 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
09:04:41.0176 3008 TapiSrv - ok
09:04:41.0212 3008 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
09:04:41.0214 3008 TBS - ok
09:04:41.0332 3008 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
09:04:41.0375 3008 Tcpip - ok
09:04:41.0623 3008 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
09:04:41.0641 3008 TCPIP6 - ok
09:04:41.0793 3008 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
09:04:41.0796 3008 tcpipreg - ok
09:04:41.0822 3008 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
09:04:41.0825 3008 TDPIPE - ok
09:04:41.0883 3008 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
09:04:41.0891 3008 TDTCP - ok
09:04:41.0948 3008 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
09:04:41.0952 3008 tdx - ok
09:04:42.0007 3008 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
09:04:42.0009 3008 TermDD - ok
09:04:42.0068 3008 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
09:04:42.0080 3008 TermService - ok
09:04:42.0153 3008 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
09:04:42.0156 3008 Themes - ok
09:04:42.0191 3008 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:04:42.0193 3008 THREADORDER - ok
09:04:42.0247 3008 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
09:04:42.0252 3008 TrkWks - ok
09:04:42.0364 3008 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
09:04:42.0367 3008 TrustedInstaller - ok
09:04:42.0412 3008 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:04:42.0413 3008 tssecsrv - ok
09:04:42.0483 3008 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
09:04:42.0486 3008 TsUsbFlt - ok
09:04:42.0554 3008 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
09:04:42.0558 3008 tunnel - ok
09:04:42.0592 3008 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
09:04:42.0594 3008 uagp35 - ok
09:04:42.0727 3008 uagqecsvc (3bd865754624eea5af13c4a114a7cab8) C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe
09:04:42.0729 3008 uagqecsvc - ok
09:04:42.0785 3008 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
09:04:42.0791 3008 udfs - ok
09:04:42.0825 3008 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
09:04:42.0829 3008 UI0Detect - ok
09:04:42.0885 3008 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
09:04:42.0887 3008 uliagpkx - ok
09:04:42.0929 3008 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
09:04:42.0948 3008 umbus - ok
09:04:42.0991 3008 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
09:04:42.0993 3008 UmPass - ok
09:04:43.0037 3008 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
09:04:43.0044 3008 upnphost - ok
09:04:43.0109 3008 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
09:04:43.0124 3008 USBAAPL64 - ok
09:04:43.0192 3008 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
09:04:43.0195 3008 usbccgp - ok
09:04:43.0243 3008 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
09:04:43.0246 3008 usbcir - ok
09:04:43.0275 3008 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
09:04:43.0291 3008 usbehci - ok
09:04:43.0347 3008 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
09:04:43.0353 3008 usbhub - ok
09:04:43.0399 3008 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
09:04:43.0411 3008 usbohci - ok
09:04:43.0460 3008 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
09:04:43.0462 3008 usbprint - ok
09:04:43.0495 3008 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:04:43.0498 3008 USBSTOR - ok
09:04:43.0544 3008 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
09:04:43.0546 3008 usbuhci - ok
09:04:43.0604 3008 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
09:04:43.0622 3008 usbvideo - ok
09:04:43.0654 3008 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
09:04:43.0657 3008 UxSms - ok
09:04:43.0702 3008 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
09:04:43.0704 3008 VaultSvc - ok
09:04:43.0742 3008 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
09:04:43.0743 3008 vdrvroot - ok
09:04:43.0799 3008 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
09:04:43.0810 3008 vds - ok
09:04:43.0867 3008 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
09:04:43.0888 3008 vga - ok
09:04:43.0938 3008 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
09:04:43.0941 3008 VgaSave - ok
09:04:43.0989 3008 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
09:04:43.0993 3008 vhdmp - ok
09:04:44.0013 3008 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
09:04:44.0015 3008 viaide - ok
09:04:44.0062 3008 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
09:04:44.0064 3008 volmgr - ok
09:04:44.0125 3008 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
09:04:44.0131 3008 volmgrx - ok
09:04:44.0195 3008 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
09:04:44.0200 3008 volsnap - ok
09:04:44.0238 3008 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
09:04:44.0241 3008 vsmraid - ok
09:04:44.0365 3008 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
09:04:44.0384 3008 VSS - ok
09:04:44.0520 3008 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
09:04:44.0522 3008 vwifibus - ok
09:04:44.0538 3008 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
09:04:44.0540 3008 vwififlt - ok
09:04:44.0601 3008 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
09:04:44.0603 3008 vwifimp - ok
09:04:44.0678 3008 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
09:04:44.0687 3008 W32Time - ok
09:04:44.0747 3008 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
09:04:44.0750 3008 WacomPen - ok
09:04:44.0824 3008 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:04:44.0826 3008 WANARP - ok
09:04:44.0832 3008 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
09:04:44.0834 3008 Wanarpv6 - ok
09:04:44.0977 3008 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
09:04:45.0008 3008 WatAdminSvc - ok
09:04:45.0139 3008 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
09:04:45.0162 3008 wbengine - ok
09:04:45.0291 3008 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
09:04:45.0298 3008 WbioSrvc - ok
09:04:45.0357 3008 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
09:04:45.0365 3008 wcncsvc - ok
09:04:45.0390 3008 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
09:04:45.0413 3008 WcsPlugInService - ok
09:04:45.0495 3008 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
09:04:45.0516 3008 Wd - ok
09:04:45.0585 3008 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
09:04:45.0596 3008 Wdf01000 - ok
09:04:45.0644 3008 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:04:45.0647 3008 WdiServiceHost - ok
09:04:45.0652 3008 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:04:45.0656 3008 WdiSystemHost - ok
09:04:45.0697 3008 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
09:04:45.0704 3008 WebClient - ok
09:04:45.0750 3008 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
09:04:45.0756 3008 Wecsvc - ok
09:04:45.0782 3008 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
09:04:45.0786 3008 wercplsupport - ok
09:04:45.0839 3008 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
09:04:45.0843 3008 WerSvc - ok
09:04:45.0902 3008 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
09:04:45.0904 3008 WfpLwf - ok
09:04:45.0978 3008 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
09:04:46.0001 3008 WimFltr - ok
09:04:46.0044 3008 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
09:04:46.0047 3008 WIMMount - ok
09:04:46.0104 3008 WinDefend - ok
09:04:46.0115 3008 WinHttpAutoProxySvc - ok
09:04:46.0192 3008 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
09:04:46.0196 3008 Winmgmt - ok
09:04:46.0360 3008 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
09:04:46.0408 3008 WinRM - ok
09:04:46.0580 3008 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
09:04:46.0583 3008 WinUsb - ok
09:04:46.0654 3008 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
09:04:46.0669 3008 Wlansvc - ok
09:04:46.0735 3008 wltrysvc (13b0a570e1ae451c92da550085d72cf3) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
09:04:46.0736 3008 wltrysvc - ok
09:04:46.0790 3008 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
09:04:46.0791 3008 WmiAcpi - ok
09:04:46.0881 3008 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
09:04:46.0885 3008 wmiApSrv - ok
09:04:46.0997 3008 WMPNetworkSvc - ok
09:04:47.0062 3008 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
09:04:47.0079 3008 WPCSvc - ok
09:04:47.0119 3008 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
09:04:47.0123 3008 WPDBusEnum - ok
09:04:47.0151 3008 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
09:04:47.0169 3008 ws2ifsl - ok
09:04:47.0198 3008 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
09:04:47.0202 3008 wscsvc - ok
09:04:47.0207 3008 WSearch - ok
09:04:47.0364 3008 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
09:04:47.0388 3008 wuauserv - ok
09:04:47.0512 3008 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
09:04:47.0516 3008 WudfPf - ok
09:04:47.0545 3008 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:04:47.0558 3008 WUDFRd - ok
09:04:47.0605 3008 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
09:04:47.0608 3008 wudfsvc - ok
09:04:47.0650 3008 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
09:04:47.0658 3008 WwanSvc - ok
09:04:47.0731 3008 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
09:04:47.0738 3008 yukonw7 - ok
09:04:47.0771 3008 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
09:04:48.0085 3008 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:04:48.0085 3008 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:04:48.0090 3008 Boot (0x1200) (85af29dac008a8545c9ba2eaad7df661) \Device\Harddisk0\DR0\Partition0
09:04:48.0092 3008 \Device\Harddisk0\DR0\Partition0 - ok
09:04:48.0129 3008 Boot (0x1200) (91fccc1547dfd2482d1becb0510b4e16) \Device\Harddisk0\DR0\Partition1
09:04:48.0132 3008 \Device\Harddisk0\DR0\Partition1 - ok
09:04:48.0133 3008 ============================================================
09:04:48.0133 3008 Scan finished
09:04:48.0133 3008 ============================================================
09:04:48.0154 6036 Detected object count: 1
09:04:48.0154 6036 Actual detected object count: 1
09:05:26.0513 6036 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:05:26.0527 6036 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:05:26.0544 6036 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
09:05:26.0586 6036 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
09:05:26.0755 6036 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
09:05:26.0816 6036 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
09:05:26.0833 6036 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
09:05:27.0231 6036 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
09:05:27.0249 6036 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:05:27.0283 6036 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:05:27.0287 6036 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:05:27.0291 6036 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
09:05:27.0294 6036 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
09:05:27.0297 6036 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
09:05:27.0357 6036 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
09:05:27.0369 6036 \Device\Harddisk0\DR0\TDLFS - deleted
09:05:27.0369 6036 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
09:05:36.0195 3084 Deinitialize success

#6 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 10:23 AM

ESET Scan:

C:\TDSSKiller_Quarantine\10.08.2012_07.40.38\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_07.40.38\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_07.40.38\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_07.40.38\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_07.40.38\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_09.04.07\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_09.04.07\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_09.04.07\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_09.04.07\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\10.08.2012_09.04.07\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined

#7 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 01:38 PM

MalwareBytes removed 4 files; restarted and rerain MalwareBytes with no infections.

From Mini Tool box:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Brian (administrator) on 10-08-2012 at 14:36:30
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Brian-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : carolina.rr.com
System Quarantine State . . . . . : Not Restricted


Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 78-E4-00-43-DD-DD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : carolina.rr.com
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
Physical Address. . . . . . . . . : 78-E4-00-43-DD-DD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::49bc:149d:75e5:4aa%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.105(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, August 10, 2012 1:00:51 PM
Lease Expires . . . . . . . . . . : Friday, August 17, 2012 2:19:24 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 226026496
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-9F-79-3B-A4-BA-DB-C9-5F-13
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : A4-BA-DB-C9-5F-13
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:34ec:d59:519f:5508(Preferred)
Link-local IPv6 Address . . . . . : fe80::34ec:d59:519f:5508%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.carolina.rr.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : carolina.rr.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 2607:f8b0:4002:802::1000
74.125.137.139
74.125.137.100
74.125.137.101
74.125.137.102
74.125.137.113
74.125.137.138


Pinging google.com [74.125.45.139] with 32 bytes of data:
Reply from 74.125.45.139: bytes=32 time=42ms TTL=53
Reply from 74.125.45.139: bytes=32 time=43ms TTL=53

Ping statistics for 74.125.45.139:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 42ms, Maximum = 43ms, Average = 42ms
Server: UnKnown
Address: 192.168.0.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=237ms TTL=48
Reply from 98.139.183.24: bytes=32 time=130ms TTL=49

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 130ms, Maximum = 237ms, Average = 183ms
Server: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 6ms, Average = 4ms
===========================================================================
Interface List
13...78 e4 00 43 dd dd ......Microsoft Virtual WiFi Miniport Adapter
11...78 e4 00 43 dd dd ......Dell Wireless 1397 WLAN Mini-Card
10...a4 ba db c9 5f 13 ......Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.105 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.105 286
192.168.0.105 255.255.255.255 On-link 192.168.0.105 286
192.168.0.255 255.255.255.255 On-link 192.168.0.105 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.105 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.105 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:4137:9e76:34ec:d59:519f:5508/128
On-link
11 286 fe80::/64 On-link
15 306 fe80::/64 On-link
15 306 fe80::34ec:d59:519f:5508/128
On-link
11 286 fe80::49bc:149d:75e5:4aa/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
11 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/10/2012 09:10:06 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/10/2012 09:10:05 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/10/2012 09:06:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/10/2012 07:26:47 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: mshtml.dll, version: 8.0.7601.17824, time stamp: 0x4f90eac5
Exception code: 0xc0000005
Fault offset: 0x00209801
Faulting process id: 0x1640
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (08/06/2012 11:53:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.

Error: (08/06/2012 11:52:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.

Error: (08/06/2012 11:51:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/06/2012 11:51:09 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Multiple requestedPrivileges elements are not allowed in manifest.

Error: (08/06/2012 11:33:03 PM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume OS (C:) was not defragmented because an error was encountered: The dirty bit is set on this volume. (0x89000015)

Error: (08/06/2012 10:22:53 PM) (Source: Application Error) (User: )
Description: Faulting application name: SetMUILanguage.exe, version: 1.0.83.18, time stamp: 0x4c21bb04
Faulting module name: STString.dll, version: 1.1.0.5, time stamp: 0x47e11d41
Exception code: 0xc0000005
Fault offset: 0x0000abcc
Faulting process id: 0xe78
Faulting application start time: 0xSetMUILanguage.exe0
Faulting application path: SetMUILanguage.exe1
Faulting module path: SetMUILanguage.exe2
Report Id: SetMUILanguage.exe3


System errors:
=============
Error: (08/10/2012 07:36:51 AM) (Source: BugCheck) (User: )
Description: 0x0000000a (0x00000000000000dc, 0x0000000000000002, 0x0000000000000001, 0xfffff8000310a405)C:\Windows\MEMORY.DMP081012-86642-01

Error: (08/10/2012 07:36:44 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 7:34:08 AM on ?8/?10/?2012 was unexpected.

Error: (08/10/2012 07:33:06 AM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service failed to start due to the following error:
%%1053

Error: (08/10/2012 07:33:06 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the IPsec Policy Agent service to connect.

Error: (08/10/2012 07:30:38 AM) (Source: BugCheck) (User: )
Description: 0x0000001e (0xffffffffc0000005, 0xfffff800030b67ef, 0x0000000000000000, 0x000000007efa0000)C:\Windows\MEMORY.DMP081012-78577-01

Error: (08/10/2012 07:30:20 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 7:27:36 AM on ?8/?10/?2012 was unexpected.

Error: (08/09/2012 08:06:37 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (08/09/2012 08:06:37 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (08/09/2012 08:06:37 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (08/09/2012 08:06:37 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Adobe Digital Editions
Adobe Flash Player 10 ActiveX (Version: 10.3.181.23)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.55)
Adobe Reader 9.5.1 (Version: 9.5.1)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Advanced Audio FX Engine (Version: 1.12.05)
AIM Pro (Version: 1.5.0.291)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
Banctec Service Agreement (Version: 2.0.0)
Bonjour (Version: 3.0.0.10)
Camtasia Studio 5 (Version: 5.1.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Cozi (Version: 1.0.4323.24051)
Dell DataSafe Local Backup - Support Software (Version: 2.41)
Dell DataSafe Local Backup (Version: 9.4.51)
Dell DataSafe Online (Version: 1.2.0009)
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Support Software) (Version: 2.5.09100)
Dell Touchpad (Version: 7.1102.115.102)
Dell Webcam Central (Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
ESET Online Scanner v3
FUJIFILM MyFinePix Studio 2.0
Full Tilt Poker (Version: 4.34.4.WIN.FullTilt.COM)
GoToAssist 8.0.0.514
Guitar Pro 6
Holdem Manager
Intel® Graphics Media Accelerator Driver
Intel® Rapid Storage Technology (Version: 10.5.0.1029)
Intel® Matrix Storage Manager
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.2.1)
Java™ 6 Update 18 (64-bit) (Version: 6.0.180)
Java™ 6 Update 18 (Version: 6.0.180)
Junk Mail filter update (Version: 14.0.8089.726)
Lexmark Z2400 Series
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Lock Poker (Version: 2.0.1.4548)
Lock Poker (Version: 5.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Master Blues Piano Solos Volume 1
Master Flatpick Guitar Volume 1
Master Jazz Guitar Solos SuperPAK
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Access 2000 Runtime (Version: 9.00.2729)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Forefront UAG endpoint components v4.0.0
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Search Enhancement Pack (Version: 1.2.123.0)
Microsoft Silverlight (Version: 3.0.40624.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Motorola Mobile Drivers Installation 5.2.0 (Version: 5.2.0)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Norton Internet Security (Version: 19.7.1.5)
Nuclides
PG Music DirectX Plugins 1.3.4.1
PokerStove version 1.23
PokerTracker 3 (remove only)
PostgreSQL 8.4 (Version: 8.4)
PowerDVD DX (Version: 8.3.6029)
Quickset64 (Version: 9.6.6)
QuickTime (Version: 7.72.80.56)
RAF (Version: 1.00.0001)
Roxio Burn (Version: 1.01)
RSDLite (Version: 5.4.4)
Skype Click to Call (Version: 5.6.8442)
Skype™ 5.5 (Version: 5.5.124)
swMSM (Version: 12.0.0.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
WildTangent Games (Version: 1.0.0.71)
Windows iLivid Toolbar (Version: 2.5.0.103268)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
XnView 1.98.1 (Version: 1.98.1)
Zelda Classic 2.10w

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 6104.36 MB
Available physical RAM: 3445.93 MB
Total Pagefile: 12206.92 MB
Available Pagefile: 9409.27 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.11 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:283.4 GB) (Free:148.11 GB) NTFS

========================= Users: ========================================

User accounts for \\BRIAN-PC

Administrator Brian Guest
postgres


**** End of log ****

#8 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 01:41 PM

From FSS:

Farbar Service Scanner Version: 06-08-2012
Ran by Brian (administrator) on 10-08-2012 at 14:39:52
Running from "C:\Users\Brian\Desktop\Virus Fix\Part 2"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#9 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 02:01 PM

Okay and the last scan results, from adware cleaner, are listed below. Thanks again for all of your help!

# AdwCleaner v1.800 - Logfile created 08/10/2012 at 14:42:08
# Updated 01/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Brian - BRIAN-PC
# Running from : C:\Users\Brian\Desktop\Virus Fix\Part 2\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\Brian\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Brian\AppData\LocalLow\searchquband
Folder Deleted : C:\Users\Brian\AppData\LocalLow\Searchqutoolbar
Folder Deleted : C:\Program Files (x86)\Windows iLivid Toolbar
File Deleted : C:\Users\Brian\AppData\Local\Temp\Searchqu.ini
File Deleted : C:\Users\Brian\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\SearchquWebSearch.xml

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\searchqutoolbar
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu 406 MediaBar
Key Deleted : HKLM\SOFTWARE\SearchquMediabarTb
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43B7-BEA3-87217BDA7406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43B7-BEA3-87217BDA7406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
[x64] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
[x64] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\qgez6zbj.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3693 octets] - [10/08/2012 14:42:08]

########## EOF - C:\AdwCleaner[S1].txt - [3821 octets] ##########

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:58 AM

Posted 10 August 2012 - 02:05 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 btimm

btimm
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:05:58 AM

Posted 10 August 2012 - 02:34 PM

Awesome, thanks for all of your help!

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:58 AM

Posted 10 August 2012 - 02:36 PM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users