Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Live Security Platinum


  • Please log in to reply
13 replies to this topic

#1 gagooba

gagooba

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:16 AM

Posted 13 August 2012 - 07:12 AM

Hi all,

Helping a sibling out.
From what I have been told the user was: while watching a youtube link sent from a friend. A popup ad came up, and upon closing it, Live Security Platinum appeared shortly thereafter.
I have followed the bleepingcomputer's removal guide up until step 10. When trying to uninstall nothing happens, except an action center popup appears from the running programs icon in the bottom right asking me to:

You must restart your computer to turn off User Account Control
(my spider senses tell me not to).

Running Windows 7 64bit.

Feed me knowledge oh great one!

Thanks
Gag out

Edited by gagooba, 13 August 2012 - 07:13 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:16 AM

Posted 13 August 2012 - 10:29 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 gagooba

gagooba
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:16 AM

Posted 14 August 2012 - 01:14 PM

Hi Narenxp,

Thanks for replying, here are the results:

For TDSSkiller

19:17:23.0741 0976 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
19:17:24.0490 0976 ============================================================
19:17:24.0490 0976 Current date / time: 2012/08/14 19:17:24.0490
19:17:24.0490 0976 SystemInfo:
19:17:24.0490 0976
19:17:24.0490 0976 OS Version: 6.1.7600 ServicePack: 0.0
19:17:24.0490 0976 Product type: Workstation
19:17:24.0490 0976 ComputerName: ASUSK53U
19:17:24.0490 0976 UserName: User1
19:17:24.0490 0976 Windows directory: C:\Windows
19:17:24.0490 0976 System windows directory: C:\Windows
19:17:24.0490 0976 Running under WOW64
19:17:24.0490 0976 Processor architecture: Intel x64
19:17:24.0490 0976 Number of processors: 2
19:17:24.0490 0976 Page size: 0x1000
19:17:24.0490 0976 Boot type: Safe boot with network
19:17:24.0490 0976 ============================================================
19:17:26.0409 0976 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:17:26.0409 0976 ============================================================
19:17:26.0409 0976 \Device\Harddisk0\DR0:
19:17:26.0409 0976 MBR partitions:
19:17:26.0409 0976 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1005B800
19:17:26.0440 0976 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1325C800, BlocksNum 0x121D2000
19:17:26.0440 0976 ============================================================
19:17:26.0487 0976 C: <-> \Device\Harddisk0\DR0\Partition0
19:17:26.0549 0976 D: <-> \Device\Harddisk0\DR0\Partition1
19:17:26.0549 0976 ============================================================
19:17:26.0549 0976 Initialize success
19:17:26.0549 0976 ============================================================
19:17:54.0567 1460 ============================================================
19:17:54.0567 1460 Scan started
19:17:54.0567 1460 Mode: Manual; TDLFS;
19:17:54.0567 1460 ============================================================
19:17:56.0314 1460 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
19:17:56.0329 1460 1394ohci - ok
19:17:56.0439 1460 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
19:17:56.0439 1460 ACPI - ok
19:17:56.0470 1460 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
19:17:56.0485 1460 AcpiPmi - ok
19:17:56.0595 1460 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:17:56.0626 1460 adp94xx - ok
19:17:56.0688 1460 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:17:56.0719 1460 adpahci - ok
19:17:56.0782 1460 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:17:56.0797 1460 adpu320 - ok
19:17:56.0844 1460 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:17:56.0875 1460 AeLookupSvc - ok
19:17:56.0985 1460 AFBAgent (6e79a119b0ce418fe44e0c824bf3f039) C:\Windows\system32\FBAgent.exe
19:17:57.0031 1460 AFBAgent - ok
19:17:57.0141 1460 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
19:17:57.0156 1460 AFD - ok
19:17:57.0187 1460 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
19:17:57.0187 1460 agp440 - ok
19:17:57.0234 1460 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:17:57.0250 1460 ALG - ok
19:17:57.0297 1460 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
19:17:57.0297 1460 aliide - ok
19:17:57.0390 1460 AMD External Events Utility (e5bd1b0943b6aa242b79995b42ccd1f8) C:\Windows\system32\atiesrxx.exe
19:17:57.0421 1460 AMD External Events Utility - ok
19:17:57.0484 1460 AMD FUEL Service - ok
19:17:57.0546 1460 AMD Reservation Manager (dd27f6c3de9bfe50635c721e09edc5dd) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
19:17:57.0562 1460 AMD Reservation Manager - ok
19:17:57.0562 1460 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
19:17:57.0577 1460 amdide - ok
19:17:57.0609 1460 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
19:17:57.0624 1460 amdiox64 - ok
19:17:57.0655 1460 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:17:57.0655 1460 AmdK8 - ok
19:17:58.0857 1460 amdkmdag (7dcf6685cc9195607537b082cd853f35) C:\Windows\system32\DRIVERS\atikmdag.sys
19:17:59.0075 1460 amdkmdag - ok
19:17:59.0449 1460 amdkmdap (540fc730cac044d1482af874fdc43b9a) C:\Windows\system32\DRIVERS\atikmpag.sys
19:17:59.0465 1460 amdkmdap - ok
19:17:59.0527 1460 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:17:59.0527 1460 AmdPPM - ok
19:17:59.0590 1460 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
19:17:59.0621 1460 amdsata - ok
19:17:59.0668 1460 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:17:59.0699 1460 amdsbs - ok
19:17:59.0715 1460 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
19:17:59.0730 1460 amdxata - ok
19:17:59.0777 1460 amd_sata (caee7c1afc9f1c9ee8dd11acd18d22e7) C:\Windows\system32\DRIVERS\amd_sata.sys
19:17:59.0777 1460 amd_sata - ok
19:17:59.0793 1460 amd_xata (23726116b4fbcc84fc45b95157c08f5f) C:\Windows\system32\DRIVERS\amd_xata.sys
19:17:59.0808 1460 amd_xata - ok
19:17:59.0871 1460 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
19:17:59.0871 1460 AppID - ok
19:17:59.0917 1460 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:17:59.0917 1460 AppIDSvc - ok
19:17:59.0949 1460 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
19:17:59.0980 1460 Appinfo - ok
19:18:00.0089 1460 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:18:00.0120 1460 Apple Mobile Device - ok
19:18:00.0167 1460 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:18:00.0183 1460 arc - ok
19:18:00.0214 1460 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:18:00.0214 1460 arcsas - ok
19:18:00.0292 1460 ASLDRService (18e5c2f937f9deb8c282df66a3761925) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
19:18:00.0307 1460 ASLDRService - ok
19:18:00.0339 1460 ASMMAP64 (4c016fd76ed5c05e84ca8cab77993961) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
19:18:00.0354 1460 ASMMAP64 - ok
19:18:00.0401 1460 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:18:00.0401 1460 AsyncMac - ok
19:18:00.0432 1460 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
19:18:00.0448 1460 atapi - ok
19:18:00.0853 1460 athr (b2931c83cfb12a3223a47b180473ae1a) C:\Windows\system32\DRIVERS\athrx.sys
19:18:00.0931 1460 athr - ok
19:18:01.0197 1460 AtiHDAudioService (4bf5bca6e2608cd8a00bc4a6673a9f47) C:\Windows\system32\drivers\AtihdW76.sys
19:18:01.0212 1460 AtiHDAudioService - ok
19:18:01.0306 1460 ATKGFNEXSrv (7910158929571214a959d5a6d16dd9c0) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
19:18:01.0321 1460 ATKGFNEXSrv - ok
19:18:01.0477 1460 ATKWMIACPIIO (1f7238a37389ed92e9d8eee975cabd54) C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
19:18:01.0477 1460 ATKWMIACPIIO - ok
19:18:01.0618 1460 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
19:18:01.0633 1460 AudioEndpointBuilder - ok
19:18:01.0665 1460 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
19:18:01.0665 1460 AudioSrv - ok
19:18:01.0727 1460 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
19:18:01.0727 1460 AxInstSV - ok
19:18:01.0867 1460 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:18:01.0883 1460 b06bdrv - ok
19:18:01.0961 1460 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:18:01.0977 1460 b57nd60a - ok
19:18:02.0055 1460 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:18:02.0070 1460 BDESVC - ok
19:18:02.0101 1460 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:18:02.0101 1460 Beep - ok
19:18:02.0257 1460 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
19:18:02.0273 1460 BFE - ok
19:18:02.0304 1460 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:18:02.0304 1460 blbdrive - ok
19:18:02.0445 1460 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
19:18:02.0476 1460 Bonjour Service - ok
19:18:02.0523 1460 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
19:18:02.0554 1460 bowser - ok
19:18:02.0569 1460 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:18:02.0585 1460 BrFiltLo - ok
19:18:02.0601 1460 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:18:02.0601 1460 BrFiltUp - ok
19:18:02.0647 1460 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
19:18:02.0663 1460 Browser - ok
19:18:02.0710 1460 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:18:02.0725 1460 Brserid - ok
19:18:02.0757 1460 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:18:02.0757 1460 BrSerWdm - ok
19:18:02.0772 1460 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:18:02.0788 1460 BrUsbMdm - ok
19:18:02.0788 1460 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:18:02.0803 1460 BrUsbSer - ok
19:18:02.0835 1460 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
19:18:02.0850 1460 BthEnum - ok
19:18:02.0881 1460 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:18:02.0897 1460 BTHMODEM - ok
19:18:02.0944 1460 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
19:18:02.0944 1460 BthPan - ok
19:18:03.0069 1460 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
19:18:03.0100 1460 BTHPORT - ok
19:18:03.0147 1460 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:18:03.0178 1460 bthserv - ok
19:18:03.0209 1460 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
19:18:03.0225 1460 BTHUSB - ok
19:18:03.0256 1460 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:18:03.0287 1460 cdfs - ok
19:18:03.0334 1460 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
19:18:03.0365 1460 cdrom - ok
19:18:03.0443 1460 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
19:18:03.0474 1460 CertPropSvc - ok
19:18:03.0505 1460 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:18:03.0505 1460 circlass - ok
19:18:03.0599 1460 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:18:03.0615 1460 CLFS - ok
19:18:03.0693 1460 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:18:03.0708 1460 clr_optimization_v2.0.50727_32 - ok
19:18:03.0771 1460 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:18:03.0786 1460 clr_optimization_v2.0.50727_64 - ok
19:18:03.0895 1460 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:18:03.0942 1460 clr_optimization_v4.0.30319_32 - ok
19:18:04.0020 1460 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:18:04.0051 1460 clr_optimization_v4.0.30319_64 - ok
19:18:04.0067 1460 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:18:04.0067 1460 CmBatt - ok
19:18:04.0114 1460 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
19:18:04.0114 1460 cmdide - ok
19:18:04.0192 1460 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
19:18:04.0207 1460 CNG - ok
19:18:04.0254 1460 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:18:04.0254 1460 Compbatt - ok
19:18:04.0285 1460 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:18:04.0285 1460 CompositeBus - ok
19:18:04.0301 1460 COMSysApp - ok
19:18:04.0332 1460 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:18:04.0348 1460 crcdisk - ok
19:18:04.0426 1460 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
19:18:04.0426 1460 CryptSvc - ok
19:18:04.0551 1460 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
19:18:04.0597 1460 DcomLaunch - ok
19:18:04.0675 1460 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:18:04.0691 1460 defragsvc - ok
19:18:04.0753 1460 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
19:18:04.0753 1460 DfsC - ok
19:18:04.0816 1460 dg_ssudbus (113212d25d0c9bb8901a9833774da97f) C:\Windows\system32\DRIVERS\ssudbus.sys
19:18:04.0831 1460 dg_ssudbus - ok
19:18:04.0909 1460 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
19:18:04.0925 1460 Dhcp - ok
19:18:04.0956 1460 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:18:04.0956 1460 discache - ok
19:18:04.0987 1460 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:18:05.0003 1460 Disk - ok
19:18:05.0065 1460 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
19:18:05.0081 1460 Dnscache - ok
19:18:05.0143 1460 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
19:18:05.0159 1460 dot3svc - ok
19:18:05.0206 1460 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
19:18:05.0206 1460 DPS - ok
19:18:05.0237 1460 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:18:05.0253 1460 drmkaud - ok
19:18:05.0440 1460 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
19:18:05.0455 1460 DXGKrnl - ok
19:18:05.0502 1460 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:18:05.0533 1460 EapHost - ok
19:18:05.0986 1460 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:18:06.0064 1460 ebdrv - ok
19:18:06.0298 1460 EFS (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\System32\lsass.exe
19:18:06.0298 1460 EFS - ok
19:18:06.0469 1460 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
19:18:06.0501 1460 ehRecvr - ok
19:18:06.0532 1460 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:18:06.0563 1460 ehSched - ok
19:18:06.0719 1460 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:18:06.0735 1460 elxstor - ok
19:18:06.0766 1460 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
19:18:06.0766 1460 ErrDev - ok
19:18:06.0844 1460 ETD (4c120d2b2ea269eae7a5744794eb6db1) C:\Windows\system32\DRIVERS\ETD.sys
19:18:06.0859 1460 ETD - ok
19:18:06.0953 1460 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:18:06.0969 1460 EventSystem - ok
19:18:07.0015 1460 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:18:07.0031 1460 exfat - ok
19:18:07.0078 1460 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:18:07.0093 1460 fastfat - ok
19:18:07.0234 1460 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
19:18:07.0265 1460 Fax - ok
19:18:07.0296 1460 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:18:07.0312 1460 fdc - ok
19:18:07.0343 1460 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:18:07.0343 1460 fdPHost - ok
19:18:07.0374 1460 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:18:07.0374 1460 FDResPub - ok
19:18:07.0421 1460 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:18:07.0421 1460 FileInfo - ok
19:18:07.0452 1460 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:18:07.0452 1460 Filetrace - ok
19:18:07.0483 1460 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:18:07.0483 1460 flpydisk - ok
19:18:07.0530 1460 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
19:18:07.0546 1460 FltMgr - ok
19:18:07.0733 1460 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
19:18:07.0764 1460 FontCache - ok
19:18:07.0873 1460 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:18:07.0873 1460 FontCache3.0.0.0 - ok
19:18:07.0936 1460 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:18:07.0936 1460 FsDepends - ok
19:18:07.0983 1460 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
19:18:07.0983 1460 fssfltr - ok
19:18:08.0248 1460 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:18:08.0295 1460 fsssvc - ok
19:18:08.0607 1460 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
19:18:08.0622 1460 Fs_Rec - ok
19:18:08.0700 1460 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:18:08.0716 1460 fvevol - ok
19:18:08.0763 1460 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:18:08.0778 1460 gagp30kx - ok
19:18:08.0809 1460 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:18:08.0809 1460 GEARAspiWDM - ok
19:18:08.0997 1460 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
19:18:09.0028 1460 gpsvc - ok
19:18:09.0137 1460 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:18:09.0153 1460 gupdate - ok
19:18:09.0184 1460 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:18:09.0184 1460 gupdatem - ok
19:18:09.0246 1460 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:18:09.0293 1460 gusvc - ok
19:18:09.0387 1460 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:18:09.0387 1460 hcw85cir - ok
19:18:09.0449 1460 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
19:18:09.0465 1460 HdAudAddService - ok
19:18:09.0511 1460 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:18:09.0527 1460 HDAudBus - ok
19:18:09.0543 1460 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:18:09.0543 1460 HidBatt - ok
19:18:09.0589 1460 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:18:09.0667 1460 HidBth - ok
19:18:09.0699 1460 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:18:09.0699 1460 HidIr - ok
19:18:09.0761 1460 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
19:18:09.0761 1460 hidserv - ok
19:18:09.0808 1460 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
19:18:09.0808 1460 HidUsb - ok
19:18:09.0855 1460 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
19:18:09.0870 1460 hkmsvc - ok
19:18:09.0948 1460 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
19:18:09.0964 1460 HomeGroupListener - ok
19:18:10.0026 1460 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
19:18:10.0042 1460 HomeGroupProvider - ok
19:18:10.0073 1460 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
19:18:10.0089 1460 HpSAMD - ok
19:18:10.0245 1460 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
19:18:10.0260 1460 HTTP - ok
19:18:10.0276 1460 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
19:18:10.0291 1460 hwpolicy - ok
19:18:10.0323 1460 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
19:18:10.0354 1460 i8042prt - ok
19:18:10.0463 1460 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
19:18:10.0479 1460 iaStorV - ok
19:18:10.0713 1460 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:18:10.0728 1460 idsvc - ok
19:18:10.0775 1460 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:18:10.0775 1460 iirsp - ok
19:18:10.0931 1460 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
19:18:10.0962 1460 IKEEXT - ok
19:18:11.0399 1460 IntcAzAudAddService (2cc2f7c5990bb76767038f4b16d17a56) C:\Windows\system32\drivers\RTKVHD64.sys
19:18:11.0493 1460 IntcAzAudAddService - ok
19:18:11.0664 1460 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
19:18:11.0664 1460 intelide - ok
19:18:11.0680 1460 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:18:11.0680 1460 intelppm - ok
19:18:11.0742 1460 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:18:11.0773 1460 IPBusEnum - ok
19:18:11.0805 1460 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:18:11.0805 1460 IpFilterDriver - ok
19:18:11.0929 1460 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
19:18:11.0945 1460 iphlpsvc - ok
19:18:11.0976 1460 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:18:11.0976 1460 IPMIDRV - ok
19:18:12.0023 1460 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:18:12.0039 1460 IPNAT - ok
19:18:12.0241 1460 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
19:18:12.0273 1460 iPod Service - ok
19:18:12.0304 1460 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:18:12.0304 1460 IRENUM - ok
19:18:12.0351 1460 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
19:18:12.0351 1460 isapnp - ok
19:18:12.0413 1460 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
19:18:12.0429 1460 iScsiPrt - ok
19:18:12.0460 1460 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:18:12.0475 1460 kbdclass - ok
19:18:12.0491 1460 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
19:18:12.0507 1460 kbdhid - ok
19:18:12.0553 1460 kbfiltr (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
19:18:12.0553 1460 kbfiltr - ok
19:18:12.0585 1460 KeyIso (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:18:12.0600 1460 KeyIso - ok
19:18:12.0631 1460 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
19:18:12.0647 1460 KSecDD - ok
19:18:12.0694 1460 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
19:18:12.0709 1460 KSecPkg - ok
19:18:12.0741 1460 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:18:12.0741 1460 ksthunk - ok
19:18:12.0803 1460 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:18:12.0834 1460 KtmRm - ok
19:18:12.0865 1460 L1C (033b4aed2c5519072c0d81e00804d003) C:\Windows\system32\DRIVERS\L1C62x64.sys
19:18:12.0865 1460 L1C - ok
19:18:12.0959 1460 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
19:18:12.0990 1460 LanmanServer - ok
19:18:13.0037 1460 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
19:18:13.0053 1460 LanmanWorkstation - ok
19:18:13.0115 1460 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:18:13.0115 1460 lltdio - ok
19:18:13.0193 1460 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:18:13.0224 1460 lltdsvc - ok
19:18:13.0240 1460 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:18:13.0240 1460 lmhosts - ok
19:18:13.0333 1460 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:18:13.0349 1460 LSI_FC - ok
19:18:13.0396 1460 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:18:13.0411 1460 LSI_SAS - ok
19:18:13.0427 1460 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:18:13.0443 1460 LSI_SAS2 - ok
19:18:13.0474 1460 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:18:13.0474 1460 LSI_SCSI - ok
19:18:13.0521 1460 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:18:13.0552 1460 luafv - ok
19:18:13.0755 1460 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
19:18:13.0755 1460 McComponentHostService - ok
19:18:13.0801 1460 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
19:18:13.0817 1460 Mcx2Svc - ok
19:18:13.0848 1460 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:18:13.0864 1460 megasas - ok
19:18:13.0926 1460 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:18:13.0926 1460 MegaSR - ok
19:18:13.0957 1460 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:18:13.0989 1460 MMCSS - ok
19:18:14.0020 1460 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:18:14.0035 1460 Modem - ok
19:18:14.0051 1460 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:18:14.0067 1460 monitor - ok
19:18:14.0113 1460 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:18:14.0113 1460 mouclass - ok
19:18:14.0160 1460 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:18:14.0160 1460 mouhid - ok
19:18:14.0207 1460 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
19:18:14.0223 1460 mountmgr - ok
19:18:14.0332 1460 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:18:14.0379 1460 MozillaMaintenance - ok
19:18:14.0472 1460 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
19:18:14.0503 1460 mpio - ok
19:18:14.0535 1460 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:18:14.0566 1460 mpsdrv - ok
19:18:14.0706 1460 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
19:18:14.0737 1460 MpsSvc - ok
19:18:14.0784 1460 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
19:18:14.0800 1460 MRxDAV - ok
19:18:14.0862 1460 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:18:14.0878 1460 mrxsmb - ok
19:18:14.0956 1460 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:18:14.0971 1460 mrxsmb10 - ok
19:18:15.0018 1460 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:18:15.0049 1460 mrxsmb20 - ok
19:18:15.0065 1460 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
19:18:15.0081 1460 msahci - ok
19:18:15.0112 1460 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
19:18:15.0127 1460 msdsm - ok
19:18:15.0174 1460 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:18:15.0190 1460 MSDTC - ok
19:18:15.0237 1460 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:18:15.0237 1460 Msfs - ok
19:18:15.0283 1460 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:18:15.0283 1460 mshidkmdf - ok
19:18:15.0299 1460 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
19:18:15.0299 1460 msisadrv - ok
19:18:15.0377 1460 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:18:15.0393 1460 MSiSCSI - ok
19:18:15.0393 1460 msiserver - ok
19:18:15.0439 1460 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:18:15.0455 1460 MSKSSRV - ok
19:18:15.0471 1460 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:18:15.0471 1460 MSPCLOCK - ok
19:18:15.0486 1460 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:18:15.0502 1460 MSPQM - ok
19:18:15.0580 1460 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
19:18:15.0595 1460 MsRPC - ok
19:18:15.0627 1460 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
19:18:15.0627 1460 mssmbios - ok
19:18:15.0658 1460 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:18:15.0658 1460 MSTEE - ok
19:18:15.0689 1460 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:18:15.0689 1460 MTConfig - ok
19:18:15.0720 1460 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:18:15.0736 1460 Mup - ok
19:18:15.0829 1460 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
19:18:15.0845 1460 napagent - ok
19:18:15.0923 1460 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:18:15.0939 1460 NativeWifiP - ok
19:18:16.0126 1460 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
19:18:16.0157 1460 NDIS - ok
19:18:16.0204 1460 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:18:16.0204 1460 NdisCap - ok
19:18:16.0251 1460 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:18:16.0251 1460 NdisTapi - ok
19:18:16.0282 1460 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
19:18:16.0297 1460 Ndisuio - ok
19:18:16.0329 1460 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:18:16.0329 1460 NdisWan - ok
19:18:16.0422 1460 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
19:18:16.0422 1460 NDProxy - ok
19:18:16.0469 1460 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:18:16.0469 1460 NetBIOS - ok
19:18:16.0531 1460 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
19:18:16.0531 1460 NetBT - ok
19:18:16.0563 1460 Netlogon (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:18:16.0578 1460 Netlogon - ok
19:18:16.0672 1460 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:18:16.0687 1460 Netman - ok
19:18:16.0781 1460 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:18:16.0797 1460 netprofm - ok
19:18:16.0906 1460 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:18:16.0937 1460 NetTcpPortSharing - ok
19:18:16.0984 1460 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:18:16.0984 1460 nfrd960 - ok
19:18:17.0062 1460 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
19:18:17.0077 1460 NlaSvc - ok
19:18:17.0109 1460 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:18:17.0124 1460 Npfs - ok
19:18:17.0171 1460 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:18:17.0171 1460 nsi - ok
19:18:17.0218 1460 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:18:17.0233 1460 nsiproxy - ok
19:18:17.0514 1460 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
19:18:17.0561 1460 Ntfs - ok
19:18:17.0779 1460 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:18:17.0779 1460 Null - ok
19:18:17.0842 1460 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
19:18:17.0857 1460 nvraid - ok
19:18:17.0904 1460 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
19:18:17.0920 1460 nvstor - ok
19:18:17.0998 1460 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
19:18:18.0013 1460 nv_agp - ok
19:18:18.0216 1460 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:18:18.0232 1460 odserv - ok
19:18:18.0325 1460 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
19:18:18.0325 1460 ohci1394 - ok
19:18:18.0497 1460 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:18:18.0544 1460 ose - ok
19:18:18.0637 1460 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:18:18.0684 1460 p2pimsvc - ok
19:18:18.0809 1460 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:18:18.0840 1460 p2psvc - ok
19:18:18.0887 1460 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:18:18.0903 1460 Parport - ok
19:18:18.0934 1460 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
19:18:18.0949 1460 partmgr - ok
19:18:18.0996 1460 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:18:19.0012 1460 PcaSvc - ok
19:18:19.0090 1460 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
19:18:19.0105 1460 pci - ok
19:18:19.0121 1460 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:18:19.0121 1460 pciide - ok
19:18:19.0183 1460 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:18:19.0246 1460 pcmcia - ok
19:18:19.0324 1460 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:18:19.0324 1460 pcw - ok
19:18:19.0558 1460 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:18:19.0589 1460 PEAUTH - ok
19:18:19.0870 1460 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:18:19.0885 1460 PerfHost - ok
19:18:20.0244 1460 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
19:18:20.0291 1460 pla - ok
19:18:20.0431 1460 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
19:18:20.0447 1460 PlugPlay - ok
19:18:20.0509 1460 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:18:20.0509 1460 PNRPAutoReg - ok
19:18:20.0634 1460 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:18:20.0650 1460 PNRPsvc - ok
19:18:20.0821 1460 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
19:18:20.0853 1460 PolicyAgent - ok
19:18:20.0931 1460 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:18:20.0946 1460 Power - ok
19:18:21.0040 1460 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
19:18:21.0055 1460 PptpMiniport - ok
19:18:21.0102 1460 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:18:21.0102 1460 Processor - ok
19:18:21.0165 1460 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
19:18:21.0180 1460 ProfSvc - ok
19:18:21.0211 1460 ProtectedStorage (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:18:21.0211 1460 ProtectedStorage - ok
19:18:21.0258 1460 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
19:18:21.0274 1460 Psched - ok
19:18:21.0539 1460 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:18:21.0586 1460 ql2300 - ok
19:18:21.0820 1460 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:18:21.0835 1460 ql40xx - ok
19:18:21.0898 1460 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:18:21.0929 1460 QWAVE - ok
19:18:22.0007 1460 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:18:22.0007 1460 QWAVEdrv - ok
19:18:22.0023 1460 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:18:22.0038 1460 RasAcd - ok
19:18:22.0101 1460 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:18:22.0101 1460 RasAgileVpn - ok
19:18:22.0163 1460 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:18:22.0210 1460 RasAuto - ok
19:18:22.0272 1460 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:18:22.0272 1460 Rasl2tp - ok
19:18:22.0366 1460 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
19:18:22.0397 1460 RasMan - ok
19:18:22.0506 1460 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:18:22.0537 1460 RasPppoe - ok
19:18:22.0615 1460 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:18:22.0631 1460 RasSstp - ok
19:18:22.0740 1460 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
19:18:22.0787 1460 rdbss - ok
19:18:22.0834 1460 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:18:22.0834 1460 rdpbus - ok
19:18:22.0849 1460 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:18:22.0865 1460 RDPCDD - ok
19:18:22.0912 1460 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:18:22.0912 1460 RDPENCDD - ok
19:18:22.0943 1460 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:18:22.0943 1460 RDPREFMP - ok
19:18:23.0021 1460 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
19:18:23.0052 1460 RDPWD - ok
19:18:23.0115 1460 rdyboost (e5dc9ba9e439d6dbdd79f8caacb5bf01) C:\Windows\system32\drivers\rdyboost.sys
19:18:23.0130 1460 rdyboost - ok
19:18:23.0177 1460 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:18:23.0208 1460 RemoteAccess - ok
19:18:23.0255 1460 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:18:23.0255 1460 RemoteRegistry - ok
19:18:23.0317 1460 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
19:18:23.0333 1460 RFCOMM - ok
19:18:23.0364 1460 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:18:23.0395 1460 RpcEptMapper - ok
19:18:23.0427 1460 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:18:23.0427 1460 RpcLocator - ok
19:18:23.0536 1460 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
19:18:23.0536 1460 RpcSs - ok
19:18:23.0629 1460 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:18:23.0645 1460 rspndr - ok
19:18:23.0754 1460 RSUSBSTOR (135a64530d7699ad48f29d73a658dd11) C:\Windows\system32\Drivers\RtsUStor.sys
19:18:23.0754 1460 RSUSBSTOR - ok
19:18:23.0863 1460 RTL8167 (6d3c7e7d82d3dc92dc2a8b0df9f20f8a) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:18:23.0863 1460 RTL8167 - ok
19:18:23.0879 1460 SamSs (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:18:23.0879 1460 SamSs - ok
19:18:23.0926 1460 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
19:18:23.0941 1460 sbp2port - ok
19:18:24.0004 1460 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:18:24.0019 1460 SCardSvr - ok
19:18:24.0051 1460 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
19:18:24.0051 1460 scfilter - ok
19:18:24.0269 1460 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
19:18:24.0300 1460 Schedule - ok
19:18:24.0363 1460 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
19:18:24.0363 1460 SCPolicySvc - ok
19:18:24.0441 1460 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
19:18:24.0456 1460 SDRSVC - ok
19:18:24.0519 1460 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:18:24.0534 1460 secdrv - ok
19:18:24.0550 1460 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
19:18:24.0565 1460 seclogon - ok
19:18:24.0628 1460 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:18:24.0643 1460 SENS - ok
19:18:24.0675 1460 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:18:24.0675 1460 SensrSvc - ok
19:18:24.0706 1460 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:18:24.0706 1460 Serenum - ok
19:18:24.0737 1460 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:18:24.0753 1460 Serial - ok
19:18:24.0784 1460 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:18:24.0784 1460 sermouse - ok
19:18:24.0877 1460 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
19:18:24.0909 1460 SessionEnv - ok
19:18:24.0909 1460 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
19:18:24.0924 1460 sffdisk - ok
19:18:24.0940 1460 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
19:18:24.0940 1460 sffp_mmc - ok
19:18:24.0955 1460 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
19:18:24.0955 1460 sffp_sd - ok
19:18:24.0971 1460 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:18:24.0971 1460 sfloppy - ok
19:18:25.0065 1460 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
19:18:25.0080 1460 SharedAccess - ok
19:18:25.0158 1460 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
19:18:25.0174 1460 ShellHWDetection - ok
19:18:25.0221 1460 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
19:18:25.0221 1460 SiSGbeLH - ok
19:18:25.0252 1460 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:18:25.0267 1460 SiSRaid2 - ok
19:18:25.0283 1460 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:18:25.0314 1460 SiSRaid4 - ok
19:18:25.0439 1460 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
19:18:25.0455 1460 SkypeUpdate - ok
19:18:25.0486 1460 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:18:25.0517 1460 Smb - ok
19:18:25.0579 1460 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:18:25.0579 1460 SNMPTRAP - ok
19:18:25.0595 1460 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:18:25.0611 1460 spldr - ok
19:18:25.0720 1460 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
19:18:25.0735 1460 Spooler - ok
19:18:26.0235 1460 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
19:18:26.0328 1460 sppsvc - ok
19:18:26.0593 1460 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:18:26.0593 1460 sppuinotify - ok
19:18:26.0827 1460 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
19:18:26.0843 1460 srv - ok
19:18:26.0921 1460 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
19:18:26.0937 1460 srv2 - ok
19:18:27.0015 1460 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
19:18:27.0015 1460 srvnet - ok
19:18:27.0061 1460 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:18:27.0077 1460 SSDPSRV - ok
19:18:27.0108 1460 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:18:27.0108 1460 SstpSvc - ok
19:18:27.0202 1460 ssudmdm (78cd64791f8634cf7b582fd085e57c4b) C:\Windows\system32\DRIVERS\ssudmdm.sys
19:18:27.0217 1460 ssudmdm - ok
19:18:27.0264 1460 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:18:27.0264 1460 stexstor - ok
19:18:27.0389 1460 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
19:18:27.0405 1460 stisvc - ok
19:18:27.0420 1460 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
19:18:27.0436 1460 swenum - ok
19:18:27.0545 1460 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:18:27.0561 1460 swprv - ok
19:18:27.0841 1460 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
19:18:27.0904 1460 SysMain - ok
19:18:28.0091 1460 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
19:18:28.0122 1460 TabletInputService - ok
19:18:28.0185 1460 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
19:18:28.0200 1460 TapiSrv - ok
19:18:28.0231 1460 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:18:28.0247 1460 TBS - ok
19:18:28.0715 1460 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
19:18:28.0762 1460 Tcpip - ok
19:18:29.0199 1460 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
19:18:29.0230 1460 TCPIP6 - ok
19:18:29.0401 1460 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
19:18:29.0401 1460 tcpipreg - ok
19:18:29.0448 1460 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:18:29.0448 1460 TDPIPE - ok
19:18:29.0479 1460 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
19:18:29.0479 1460 TDTCP - ok
19:18:29.0526 1460 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
19:18:29.0557 1460 tdx - ok
19:18:29.0573 1460 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
19:18:29.0589 1460 TermDD - ok
19:18:29.0713 1460 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
19:18:29.0729 1460 TermService - ok
19:18:29.0760 1460 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
19:18:29.0760 1460 Themes - ok
19:18:29.0807 1460 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:18:29.0807 1460 THREADORDER - ok
19:18:29.0854 1460 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:18:29.0885 1460 TrkWks - ok
19:18:29.0947 1460 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
19:18:29.0963 1460 TrustedInstaller - ok
19:18:29.0994 1460 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:18:29.0994 1460 tssecsrv - ok
19:18:30.0057 1460 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
19:18:30.0057 1460 tunnel - ok
19:18:30.0088 1460 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:18:30.0088 1460 uagp35 - ok
19:18:30.0166 1460 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
19:18:30.0181 1460 udfs - ok
19:18:30.0228 1460 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:18:30.0228 1460 UI0Detect - ok
19:18:30.0275 1460 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
19:18:30.0275 1460 uliagpkx - ok
19:18:30.0322 1460 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
19:18:30.0322 1460 umbus - ok
19:18:30.0353 1460 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:18:30.0353 1460 UmPass - ok
19:18:30.0462 1460 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:18:30.0509 1460 upnphost - ok
19:18:30.0556 1460 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
19:18:30.0556 1460 USBAAPL64 - ok
19:18:30.0618 1460 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
19:18:30.0634 1460 usbccgp - ok
19:18:30.0665 1460 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
19:18:30.0696 1460 usbcir - ok
19:18:30.0727 1460 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\DRIVERS\usbehci.sys
19:18:30.0727 1460 usbehci - ok
19:18:30.0774 1460 usbfilter (76e2ffad301490ba27b947c6507752fb) C:\Windows\system32\DRIVERS\usbfilter.sys
19:18:30.0774 1460 usbfilter - ok
19:18:30.0852 1460 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
19:18:30.0852 1460 usbhub - ok
19:18:30.0883 1460 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\DRIVERS\usbohci.sys
19:18:30.0883 1460 usbohci - ok
19:18:30.0915 1460 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:18:30.0915 1460 usbprint - ok
19:18:30.0961 1460 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:18:30.0993 1460 USBSTOR - ok
19:18:31.0008 1460 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
19:18:31.0024 1460 usbuhci - ok
19:18:31.0071 1460 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
19:18:31.0086 1460 usbvideo - ok
19:18:31.0117 1460 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:18:31.0133 1460 UxSms - ok
19:18:31.0164 1460 VaultSvc (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:18:31.0164 1460 VaultSvc - ok
19:18:31.0227 1460 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
19:18:31.0227 1460 vdrvroot - ok
19:18:31.0351 1460 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
19:18:31.0367 1460 vds - ok
19:18:31.0398 1460 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:18:31.0398 1460 vga - ok
19:18:31.0429 1460 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:18:31.0429 1460 VgaSave - ok
19:18:31.0492 1460 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
19:18:31.0507 1460 vhdmp - ok
19:18:31.0523 1460 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
19:18:31.0539 1460 viaide - ok
19:18:31.0570 1460 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
19:18:31.0585 1460 volmgr - ok
19:18:31.0663 1460 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
19:18:31.0663 1460 volmgrx - ok
19:18:31.0741 1460 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
19:18:31.0741 1460 volsnap - ok
19:18:31.0788 1460 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:18:31.0804 1460 vsmraid - ok
19:18:32.0069 1460 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
19:18:32.0116 1460 VSS - ok
19:18:32.0397 1460 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:18:32.0397 1460 vwifibus - ok
19:18:32.0428 1460 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:18:32.0459 1460 vwififlt - ok
19:18:32.0599 1460 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:18:32.0615 1460 W32Time - ok
19:18:32.0662 1460 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:18:32.0662 1460 WacomPen - ok
19:18:32.0709 1460 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:18:32.0724 1460 WANARP - ok
19:18:32.0755 1460 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:18:32.0755 1460 Wanarpv6 - ok
19:18:33.0067 1460 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
19:18:33.0099 1460 WatAdminSvc - ok
19:18:33.0364 1460 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
19:18:33.0411 1460 wbengine - ok
19:18:33.0629 1460 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:18:33.0645 1460 WbioSrvc - ok
19:18:33.0754 1460 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
19:18:33.0769 1460 wcncsvc - ok
19:18:33.0801 1460 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:18:33.0801 1460 WcsPlugInService - ok
19:18:33.0910 1460 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:18:33.0910 1460 Wd - ok
19:18:34.0050 1460 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:18:34.0066 1460 Wdf01000 - ok
19:18:34.0113 1460 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:18:34.0144 1460 WdiServiceHost - ok
19:18:34.0159 1460 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:18:34.0159 1460 WdiSystemHost - ok
19:18:34.0237 1460 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
19:18:34.0253 1460 WebClient - ok
19:18:34.0315 1460 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:18:34.0331 1460 Wecsvc - ok
19:18:34.0393 1460 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:18:34.0409 1460 wercplsupport - ok
19:18:34.0456 1460 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:18:34.0487 1460 WerSvc - ok
19:18:34.0534 1460 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:18:34.0534 1460 WfpLwf - ok
19:18:34.0612 1460 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
19:18:34.0627 1460 WimFltr - ok
19:18:34.0643 1460 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:18:34.0643 1460 WIMMount - ok
19:18:34.0705 1460 WinDefend - ok
19:18:34.0737 1460 WinHttpAutoProxySvc - ok
19:18:34.0846 1460 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:18:34.0877 1460 Winmgmt - ok
19:18:35.0189 1460 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
19:18:35.0251 1460 WinRM - ok
19:18:35.0501 1460 WinUsb (4d52c872018af7e18d078978dcc3f6f2) C:\Windows\system32\DRIVERS\WinUsb.sys
19:18:35.0517 1460 WinUsb - ok
19:18:35.0657 1460 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:18:35.0688 1460 Wlansvc - ok
19:18:35.0766 1460 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:18:35.0766 1460 wlcrasvc - ok
19:18:36.0141 1460 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:18:36.0203 1460 wlidsvc - ok
19:18:36.0343 1460 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:18:36.0359 1460 WmiAcpi - ok
19:18:36.0484 1460 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:18:36.0515 1460 wmiApSrv - ok
19:18:36.0562 1460 WMPNetworkSvc - ok
19:18:36.0671 1460 WMZuneComm (83b6ca03c846fcd47f9883d77d1eb27b) C:\Program Files\Zune\WMZuneComm.exe
19:18:36.0702 1460 WMZuneComm - ok
19:18:36.0733 1460 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:18:36.0733 1460 WPCSvc - ok
19:18:36.0780 1460 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
19:18:36.0796 1460 WPDBusEnum - ok
19:18:36.0827 1460 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:18:36.0827 1460 ws2ifsl - ok
19:18:36.0889 1460 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
19:18:36.0921 1460 wscsvc - ok
19:18:36.0936 1460 WSearch - ok
19:18:36.0983 1460 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
19:18:37.0014 1460 WudfPf - ok
19:18:37.0077 1460 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:18:37.0092 1460 WUDFRd - ok
19:18:37.0108 1460 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
19:18:37.0123 1460 wudfsvc - ok
19:18:37.0170 1460 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:18:37.0201 1460 WwanSvc - ok
19:18:38.0481 1460 ZuneNetworkSvc (67b787c34fb2888d01b130ae007042d8) C:\Program Files\Zune\ZuneNss.exe
19:18:38.0683 1460 ZuneNetworkSvc - ok
19:18:38.0917 1460 ZuneWlanCfgSvc (4d89fc1c20cf655739efac5da81a67bc) C:\Program Files\Zune\ZuneWlanCfgSvc.exe
19:18:38.0933 1460 ZuneWlanCfgSvc - ok
19:18:38.0980 1460 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:18:39.0775 1460 \Device\Harddisk0\DR0 - ok
19:18:39.0791 1460 Boot (0x1200) (323f4a5153f8256b1cbc247198b08cd7) \Device\Harddisk0\DR0\Partition0
19:18:39.0791 1460 \Device\Harddisk0\DR0\Partition0 - ok
19:18:39.0838 1460 Boot (0x1200) (1797ae520911b62b2c4521d5eff05ee1) \Device\Harddisk0\DR0\Partition1
19:18:39.0838 1460 \Device\Harddisk0\DR0\Partition1 - ok
19:18:39.0838 1460 ============================================================
19:18:39.0838 1460 Scan finished
19:18:39.0838 1460 ============================================================
19:18:39.0885 1380 Detected object count: 0
19:18:39.0885 1380 Actual detected object count: 0


For aswMBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-14 19:20:16
-----------------------------
19:20:16.636 OS Version: Windows x64 6.1.7600
19:20:16.636 Number of processors: 2 586 0x100
19:20:16.636 ComputerName: ASUSK53U UserName: User1
19:20:17.697 Initialize success
19:23:51.090 AVAST engine defs: 12081400
19:26:06.716 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000062
19:26:06.716 Disk 0 Vendor: WDC_WD32 01.0 Size: 305245MB BusType: 11
19:26:06.763 Disk 0 MBR read successfully
19:26:06.763 Disk 0 MBR scan
19:26:06.794 Disk 0 Windows 7 default MBR code
19:26:06.810 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 25600 MB offset 2048
19:26:06.841 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 131255 MB offset 52430848
19:26:06.872 Disk 0 Partition - 00 0F Extended LBA 148389 MB offset 321241088
19:26:06.903 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 148388 MB offset 321243136
19:26:06.966 Disk 0 scanning C:\Windows\system32\drivers
19:26:21.131 Service scanning
19:26:52.877 Modules scanning
19:26:52.892 Disk 0 trace - called modules:
19:26:52.939 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
19:26:52.986 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80023dc060]
19:26:53.002 3 CLASSPNP.SYS[fffff880019d043f] -> nt!IofCallDriver -> [0xfffffa80022c4a20]
19:26:53.017 5 amd_xata.sys[fffff880011548b4] -> nt!IofCallDriver -> \Device\00000062[0xfffffa8001e4b270]
19:26:54.187 AVAST engine scan C:\Windows
19:26:58.228 AVAST engine scan C:\Windows\system32
19:31:58.575 AVAST engine scan C:\Windows\system32\drivers
19:32:16.156 AVAST engine scan C:\Users\User1
19:34:00.333 File: C:\Users\User1\AppData\Local\Temp\la12.exe **INFECTED** Win32:Karagany-JW [Trj]
19:34:04.561 File: C:\Users\User1\AppData\Local\Temp\msimg32.dll **INFECTED** Win32:Kryptik-JQG [Trj]
19:34:18.726 File: C:\Users\User1\AppData\Local\Temp\~!#22FA.tmp **INFECTED** Win32:Kryptik-JQG [Trj]
19:34:27.430 File: C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}\n **INFECTED** Win64:Sirefef-F [Rtk]
19:34:27.508 File: C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}\U\00000001.@ **INFECTED** Win32:Malware-gen
19:34:27.602 File: C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}\U\80000000.@ **INFECTED** Win32:Malware-gen
19:34:27.696 File: C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}\U\800000cb.@ **INFECTED** Win32:Trojan-gen
19:34:31.128 File: C:\Users\User1\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\13c5832b-31b3c87e **INFECTED** Win32:Karagany-JW [Trj]
19:35:19.144 File: C:\Users\User1\AppData\Roaming\aprfxt.dll **INFECTED** Win32:Agent-APJY [Trj]
19:35:36.070 File: C:\Users\User1\AppData\Roaming\roscp.dll **INFECTED** Win32:Agent-APIG [Trj]
19:38:34.472 AVAST engine scan C:\ProgramData
19:38:35.050 File: C:\ProgramData\0C1D22810056A8F7157EB6A44F147CE7\0C1D22810056A8F7157EB6A44F147CE7.exe **INFECTED** Win32:Kryptik-JQH [Trj]
19:40:42.970 Scan finished successfully
19:41:32.344 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
19:41:32.375 The log file has been saved successfully to "C:\14_08_2012_aswMBR.txt"



For ESET Online

C:\ProgramData\0C1D22810056A8F7157EB6A44F147CE7\0C1D22810056A8F7157EB6A44F147CE7.exe a variant of Win32/Kryptik.AKDG trojan cleaned by deleting - quarantined
C:\Users\User1\AppData\Local\Temp\msimg32.dll Win32/Sirefef.EV trojan cleaned by deleting - quarantined
C:\Users\User1\AppData\Local\Temp\~!#22FA.tmp Win32/Sirefef.EV trojan cleaned by deleting - quarantined
C:\Users\User1\AppData\Local\Temp\~!#5A03.tmp Win32/PSW.Delf.OBN trojan cleaned by deleting - quarantined
C:\Users\User1\AppData\Local\{B43AA016-E534-11E1-8270-B8AC6F996F26}\chrome\content\browser.xul JS/Redirector.NIQ trojan cleaned by deleting - quarantined
C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}\n Win64/Sirefef.W trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}\U\80000000.@ Win64/Sirefef.AL trojan cleaned by deleting - quarantined
C:\Users\User1\AppData\Roaming\aprfxt.dll a variant of Win32/Medfos.CM trojan cleaned by deleting - quarantined
C:\Users\User1\AppData\Roaming\roscp.dll a variant of Win32/Medfos.CH trojan cleaned by deleting - quarantined



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:16 AM

Posted 14 August 2012 - 01:26 PM

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}

Click on LOOK,post the generated log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 gagooba

gagooba
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:16 AM

Posted 16 August 2012 - 04:36 AM

When i log on to regular mode i get the following popup RunDLL error stating:

There was a problem starting
C:\User\User1\AppData\Roaming\roscp.dll

The specified module could not be found.


Im assuming that happened from a result of the cleanup?

SystemLook

SystemLook 30.07.11 by jpshortstuff
Log created at 19:05 on 15/08/2012 by User1
Administrator - Elevation successful
WARNING: SystemLook running under WOW64. Use SystemLook_x64 for accurate results.

========== filefind ==========

Searching for "services.exe"
C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB

========== folderfind ==========

Searching for "{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}"
C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18} d--hs-- [12:52 27/06/2011]

-= EOF =-



Mini Toolbox

MiniToolBox by Farbar Version: 23-07-2012
Ran by User1 (administrator) on 16-08-2012 at 19:12:12
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : ASUSK53U
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F4-6D-04-A3-1B-31
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : E0-B9-A5-61-70-19
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c4cd:db7:e48b:4254%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.9(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, 16 August 2012 7:06:32 PM
Lease Expires . . . . . . . . . . : Friday, 17 August 2012 7:06:33 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 249608613
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-37-5D-BF-E0-B9-A5-61-70-19
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{D04F09F2-60A1-4AFF-9C0C-80A5A9600D1F}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:180d:3c96:c30f:a386(Preferred)
Link-local IPv6 Address . . . . . : fe80::180d:3c96:c30f:a386%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{4F829CA2-5B28-41CF-B1E9-FA9BB3A84E9D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 2404:6800:4006:803::1002
74.125.237.100
74.125.237.99
74.125.237.104
74.125.237.103
74.125.237.110
74.125.237.96
74.125.237.105
74.125.237.97
74.125.237.98
74.125.237.101
74.125.237.102


Pinging google.com [74.125.237.100] with 32 bytes of data:
Reply from 74.125.237.100: bytes=32 time=19ms TTL=57
Reply from 74.125.237.100: bytes=32 time=36ms TTL=57

Ping statistics for 74.125.237.100:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 19ms, Maximum = 36ms, Average = 27ms
Server: UnKnown
Address: 192.168.0.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=269ms TTL=50
Reply from 98.139.183.24: bytes=32 time=329ms TTL=50

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 269ms, Maximum = 329ms, Average = 299ms
Server: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...f4 6d 04 a3 1b 31 ......Realtek PCIe GBE Family Controller
11...e0 b9 a5 61 70 19 ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.9 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.9 281
192.168.0.9 255.255.255.255 On-link 192.168.0.9 281
192.168.0.255 255.255.255.255 On-link 192.168.0.9 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.9 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.9 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:9d38:953c:180d:3c96:c30f:a386/128
On-link
11 281 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::180d:3c96:c30f:a386/128
On-link
11 281 fe80::c4cd:db7:e48b:4254/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [46592] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/16/2012 07:10:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/16/2012 04:33:32 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18034308

Error: (08/16/2012 04:33:32 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 18034308

Error: (08/16/2012 04:33:32 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/16/2012 04:33:14 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18016446

Error: (08/16/2012 04:33:14 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 18016446

Error: (08/16/2012 04:33:14 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/15/2012 08:44:09 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (08/15/2012 08:44:09 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (08/15/2012 08:44:09 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.


System errors:
=============
Error: (08/16/2012 04:33:07 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AMD FUEL Service service.

Error: (08/15/2012 11:14:29 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the EFS service.

Error: (08/15/2012 08:41:12 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/15/2012 08:41:12 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/15/2012 08:41:12 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/15/2012 08:36:12 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/15/2012 08:36:12 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/15/2012 08:36:12 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/15/2012 08:34:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/15/2012 08:34:06 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
??????? Windows Live Mesh ActiveX ??(????) (Version: 15.4.5722.2)
??????? Windows Live Mesh ActiveX ??? (Version: 15.4.5722.2)
Adobe Flash Player 10 ActiveX (Version: 10.0.42.34)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.55)
AMD Fuel (Version: 2011.0201.2246.40820)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.4.0)
Ask Toolbar Updater (Version: 1.2.2.23821)
ASUS AI Recovery (Version: 1.0.13)
ASUS FancyStart (Version: 1.1.0)
ASUS LifeFrame3 (Version: 3.0.21)
ASUS Power4Gear Hybrid (Version: 1.1.44)
ASUS SmartLogon (Version: 1.0.0011)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0031)
ASUS Virtual Camera (Version: 1.0.21)
ASUS WebStorage (Version: 2.0.46.1429)
ASUS_Screensaver
AsusVibe2.0 (Version: 2.0.3.585)
Atheros Client Installation Program (Version: 9.0)
ATI Catalyst Install Manager (Version: 3.0.808.0)
ATK Package (Version: 1.0.0008)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center InstallProxy (Version: 2011.0201.2246.40820)
Catalyst Control Center Localization All (Version: 2011.0201.2246.40820)
Catalyst Control Center Profiles Mobile (Version: 2011.0201.2246.40820)
ccc-core-static (Version: 2011.0201.2246.40820)
ccc-utility64 (Version: 2011.0201.2246.40820)
CCC Help Chinese Standard (Version: 2011.0201.2245.40820)
CCC Help Chinese Traditional (Version: 2011.0201.2245.40820)
CCC Help Czech (Version: 2011.0201.2245.40820)
CCC Help Danish (Version: 2011.0201.2245.40820)
CCC Help Dutch (Version: 2011.0201.2245.40820)
CCC Help English (Version: 2011.0201.2245.40820)
CCC Help Finnish (Version: 2011.0201.2245.40820)
CCC Help French (Version: 2011.0201.2245.40820)
CCC Help German (Version: 2011.0201.2245.40820)
CCC Help Greek (Version: 2011.0201.2245.40820)
CCC Help Hungarian (Version: 2011.0201.2245.40820)
CCC Help Italian (Version: 2011.0201.2245.40820)
CCC Help Japanese (Version: 2011.0201.2245.40820)
CCC Help Korean (Version: 2011.0201.2245.40820)
CCC Help Norwegian (Version: 2011.0201.2245.40820)
CCC Help Polish (Version: 2011.0201.2245.40820)
CCC Help Portuguese (Version: 2011.0201.2245.40820)
CCC Help Russian (Version: 2011.0201.2245.40820)
CCC Help Spanish (Version: 2011.0201.2245.40820)
CCC Help Swedish (Version: 2011.0201.2245.40820)
CCC Help Thai (Version: 2011.0201.2245.40820)
CCC Help Turkish (Version: 2011.0201.2245.40820)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Complemento Messenger (Version: 15.4.3502.0922)
Complément Messenger (Version: 15.4.3502.0922)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (Version: 15.4.5722.2)
CyberLink LabelPrint (Version: 2.5.1908)
CyberLink Power2Go (Version: 6.1.3602c)
D3DX10 (Version: 15.4.2368.0902)
ESET Online Scanner v3
ETDWare PS/2-X64 8.0.5.1_WHQL (Version: 8.0.5.1)
Fast Boot (Version: 1.0.9)
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Google Chrome (Version: 21.0.1180.79)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.21.115)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee Security Scan Plus (Version: 2.0.181.2)
Mesh Runtime (Version: 15.4.5722.2)
Messenger ???? (Version: 15.4.3502.0922)
Messenger ????? (Version: 15.4.3502.0922)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 14.0.1 (x86 en-GB) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
Nuance PDF Reader (Version: 6.00.0041)
Realtek Ethernet Controller Driver (Version: 7.38.113.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6307)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30127)
Samsung Kies (Version: 2.0.0.11014_49)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.4.0)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.8 (Version: 5.8.158)
Sonic Focus (Version: 1.00.0000)
syncables desktop SE (Version: 5.5.746.11492)
The Sims™ 2 Deluxe
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 1.1.11 (Version: 1.1.11)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
WinFlash (Version: 2.31.1)
Wireless Console 3 (Version: 3.0.19)
WMV9/VC-1 Video Playback (Version: 1.00.0000)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Memory info: ===================================

Percentage of memory in use: 64%
Total physical RAM: 1643.73 MB
Available physical RAM: 588.97 MB
Total Pagefile: 3287.45 MB
Available Pagefile: 1516.82 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.4 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:128.18 GB) (Free:52.89 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:144.91 GB) (Free:144.74 GB) NTFS

========================= Users: ========================================

User accounts for \\ASUSK53U

Administrator Guest User1


**** End of log ****


FSS

Farbar Service Scanner Version: 06-08-2012
Ran by User1 (administrator) on 16-08-2012 at 19:15:08
Running from "C:\"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Disabled. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-14 10:09] - [2009-07-14 11:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-14 09:36] - [2009-07-14 11:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


AdwCleaner

# AdwCleaner v1.801 - Logfile created 08/16/2012 at 19:16:10
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : User1 - ASUSK53U
# Boot Mode : Normal
# Running from : C:\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\User1\AppData\LocalLow\AskToolbar
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Folder Deleted : C:\ProgramData\Partner
File Deleted : C:\Users\User1\AppData\Roaming\Mozilla\Firefox\Profiles\nj8z0s8k.default\searchplugins\Askcom.xml

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\APN
Key Deleted : HKLM\SOFTWARE\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
[x64] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.16385

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-GB)

Profile name : default
File : C:\Users\User1\AppData\Roaming\Mozilla\Firefox\Profiles\nj8z0s8k.default\prefs.js

Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");

*************************

AdwCleaner[S1].txt - [4492 octets] - [16/08/2012 19:16:10]

########## EOF - C:\AdwCleaner[S1].txt - [4620 octets] ##########



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:16 AM

Posted 16 August 2012 - 05:39 AM

Please download new version of TDSSkiller from this link and post the logs

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

#7 gagooba

gagooba
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:16 AM

Posted 20 August 2012 - 05:57 AM

New log

20:45:25.0678 5940 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
20:45:26.0895 5940 ============================================================
20:45:26.0895 5940 Current date / time: 2012/08/20 20:45:26.0895
20:45:26.0895 5940 SystemInfo:
20:45:26.0895 5940
20:45:26.0895 5940 OS Version: 6.1.7600 ServicePack: 0.0
20:45:26.0895 5940 Product type: Workstation
20:45:26.0895 5940 ComputerName: ASUSK53U
20:45:26.0895 5940 UserName: User1
20:45:26.0895 5940 Windows directory: C:\Windows
20:45:26.0895 5940 System windows directory: C:\Windows
20:45:26.0895 5940 Running under WOW64
20:45:26.0895 5940 Processor architecture: Intel x64
20:45:26.0895 5940 Number of processors: 2
20:45:26.0895 5940 Page size: 0x1000
20:45:26.0895 5940 Boot type: Normal boot
20:45:26.0895 5940 ============================================================
20:45:28.0907 5940 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:45:28.0907 5940 ============================================================
20:45:28.0907 5940 \Device\Harddisk0\DR0:
20:45:28.0923 5940 MBR partitions:
20:45:28.0923 5940 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1005B800
20:45:28.0939 5940 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1325C800, BlocksNum 0x121D2000
20:45:28.0939 5940 ============================================================
20:45:28.0985 5940 C: <-> \Device\Harddisk0\DR0\Partition1
20:45:29.0048 5940 D: <-> \Device\Harddisk0\DR0\Partition2
20:45:29.0048 5940 ============================================================
20:45:29.0048 5940 Initialize success
20:45:29.0048 5940 ============================================================
20:46:23.0876 4104 ============================================================
20:46:23.0876 4104 Scan started
20:46:23.0876 4104 Mode: Manual; TDLFS;
20:46:23.0876 4104 ============================================================
20:46:26.0359 4104 ================ Scan services =============================
20:46:26.0811 4104 [ 1b00662092f9f9568b995902f0cc40d5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:46:26.0811 4104 1394ohci - ok
20:46:26.0858 4104 [ 6f11e88748cdefd2f76aa215f97ddfe5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
20:46:26.0874 4104 ACPI - ok
20:46:26.0889 4104 [ 63b05a0420ce4bf0e4af6dcc7cada254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
20:46:26.0905 4104 AcpiPmi - ok
20:46:26.0952 4104 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:46:26.0967 4104 adp94xx - ok
20:46:26.0999 4104 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:46:27.0014 4104 adpahci - ok
20:46:27.0045 4104 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:46:27.0045 4104 adpu320 - ok
20:46:27.0123 4104 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:46:27.0123 4104 AeLookupSvc - ok
20:46:27.0186 4104 [ 6e79a119b0ce418fe44e0c824bf3f039 ] AFBAgent C:\Windows\system32\FBAgent.exe
20:46:27.0201 4104 AFBAgent - ok
20:46:27.0279 4104 [ 6ef20ddf3172e97d69f596fb90602f29 ] AFD C:\Windows\system32\drivers\afd.sys
20:46:27.0295 4104 AFD - ok
20:46:27.0326 4104 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
20:46:27.0326 4104 agp440 - ok
20:46:27.0357 4104 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
20:46:27.0357 4104 ALG - ok
20:46:27.0389 4104 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
20:46:27.0389 4104 aliide - ok
20:46:27.0451 4104 [ e5bd1b0943b6aa242b79995b42ccd1f8 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:46:27.0451 4104 AMD External Events Utility - ok
20:46:27.0513 4104 AMD FUEL Service - ok
20:46:27.0560 4104 [ dd27f6c3de9bfe50635c721e09edc5dd ] AMD Reservation Manager C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
20:46:27.0560 4104 AMD Reservation Manager - ok
20:46:27.0576 4104 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\DRIVERS\amdide.sys
20:46:27.0591 4104 amdide - ok
20:46:27.0623 4104 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
20:46:27.0623 4104 amdiox64 - ok
20:46:27.0638 4104 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:46:27.0654 4104 AmdK8 - ok
20:46:27.0950 4104 [ 7dcf6685cc9195607537b082cd853f35 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:46:28.0215 4104 amdkmdag - ok
20:46:28.0278 4104 [ 540fc730cac044d1482af874fdc43b9a ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:46:28.0293 4104 amdkmdap - ok
20:46:28.0325 4104 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:46:28.0325 4104 AmdPPM - ok
20:46:28.0371 4104 [ ec7ebab00a4d8448bab68d1e49b4beb9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:46:28.0371 4104 amdsata - ok
20:46:28.0403 4104 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:46:28.0418 4104 amdsbs - ok
20:46:28.0434 4104 [ db27766102c7bf7e95140a2aa81d042e ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:46:28.0434 4104 amdxata - ok
20:46:28.0465 4104 [ caee7c1afc9f1c9ee8dd11acd18d22e7 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
20:46:28.0465 4104 amd_sata - ok
20:46:28.0496 4104 [ 23726116b4fbcc84fc45b95157c08f5f ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
20:46:28.0496 4104 amd_xata - ok
20:46:28.0543 4104 [ 42fd751b27fa0e9c69bb39f39e409594 ] AppID C:\Windows\system32\drivers\appid.sys
20:46:28.0559 4104 AppID - ok
20:46:28.0590 4104 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:46:28.0590 4104 AppIDSvc - ok
20:46:28.0621 4104 [ d065be66822847b7f127d1f90158376e ] Appinfo C:\Windows\System32\appinfo.dll
20:46:28.0621 4104 Appinfo - ok
20:46:28.0777 4104 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:46:28.0777 4104 Apple Mobile Device - ok
20:46:28.0824 4104 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
20:46:28.0824 4104 arc - ok
20:46:28.0839 4104 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:46:28.0855 4104 arcsas - ok
20:46:28.0917 4104 [ 18e5c2f937f9deb8c282df66a3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
20:46:28.0917 4104 ASLDRService - ok
20:46:28.0949 4104 [ 4c016fd76ed5c05e84ca8cab77993961 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
20:46:28.0949 4104 ASMMAP64 - ok
20:46:28.0980 4104 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:46:28.0995 4104 AsyncMac - ok
20:46:29.0027 4104 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\DRIVERS\atapi.sys
20:46:29.0027 4104 atapi - ok
20:46:29.0136 4104 [ b2931c83cfb12a3223a47b180473ae1a ] athr C:\Windows\system32\DRIVERS\athrx.sys
20:46:29.0229 4104 athr - ok
20:46:29.0292 4104 [ 4bf5bca6e2608cd8a00bc4a6673a9f47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
20:46:29.0292 4104 AtiHDAudioService - ok
20:46:29.0307 4104 [ 7910158929571214a959d5a6d16dd9c0 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
20:46:29.0323 4104 ATKGFNEXSrv - ok
20:46:29.0370 4104 [ 1f7238a37389ed92e9d8eee975cabd54 ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
20:46:29.0385 4104 ATKWMIACPIIO - ok
20:46:29.0463 4104 [ 07721a77180edd4d39ccb865bf63c7fd ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:46:29.0495 4104 AudioEndpointBuilder - ok
20:46:29.0526 4104 [ 07721a77180edd4d39ccb865bf63c7fd ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:46:29.0541 4104 AudioSrv - ok
20:46:29.0557 4104 [ b20b5fa5ca050e9926e4d1db81501b32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:46:29.0573 4104 AxInstSV - ok
20:46:29.0604 4104 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:46:29.0619 4104 b06bdrv - ok
20:46:29.0666 4104 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:46:29.0682 4104 b57nd60a - ok
20:46:29.0713 4104 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:46:29.0729 4104 BDESVC - ok
20:46:29.0744 4104 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:46:29.0744 4104 Beep - ok
20:46:29.0822 4104 [ 4992c609a6315671463e30f6512bc022 ] BFE C:\Windows\System32\bfe.dll
20:46:29.0853 4104 BFE - ok
20:46:29.0900 4104 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:46:29.0900 4104 blbdrive - ok
20:46:29.0963 4104 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:46:29.0978 4104 Bonjour Service - ok
20:46:30.0009 4104 [ 19d20159708e152267e53b66677a4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:46:30.0025 4104 bowser - ok
20:46:30.0041 4104 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:46:30.0056 4104 BrFiltLo - ok
20:46:30.0072 4104 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:46:30.0072 4104 BrFiltUp - ok
20:46:30.0103 4104 [ 94fbc06f294d58d02361918418f996e3 ] Browser C:\Windows\System32\browser.dll
20:46:30.0119 4104 Browser - ok
20:46:30.0134 4104 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:46:30.0150 4104 Brserid - ok
20:46:30.0181 4104 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:46:30.0181 4104 BrSerWdm - ok
20:46:30.0212 4104 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:46:30.0212 4104 BrUsbMdm - ok
20:46:30.0228 4104 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:46:30.0243 4104 BrUsbSer - ok
20:46:30.0275 4104 [ cf98190a94f62e405c8cb255018b2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:46:30.0275 4104 BthEnum - ok
20:46:30.0306 4104 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:46:30.0321 4104 BTHMODEM - ok
20:46:30.0353 4104 [ 02dd601b708dd0667e1331fa8518e9ff ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:46:30.0353 4104 BthPan - ok
20:46:30.0415 4104 [ 21084ceb85280468c9aca3c805c0f8cf ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:46:30.0431 4104 BTHPORT - ok
20:46:30.0462 4104 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
20:46:30.0477 4104 bthserv - ok
20:46:30.0509 4104 [ 8504842634dd144c075b6b0c982ccec4 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:46:30.0509 4104 BTHUSB - ok
20:46:30.0540 4104 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:46:30.0540 4104 cdfs - ok
20:46:30.0571 4104 [ 83d2d75e1efb81b3450c18131443f7db ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:46:30.0587 4104 cdrom - ok
20:46:30.0633 4104 [ 312e2f82af11e79906898ac3e3d58a1f ] CertPropSvc C:\Windows\System32\certprop.dll
20:46:30.0633 4104 CertPropSvc - ok
20:46:30.0665 4104 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:46:30.0665 4104 circlass - ok
20:46:30.0696 4104 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
20:46:30.0711 4104 CLFS - ok
20:46:30.0805 4104 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:46:30.0805 4104 clr_optimization_v2.0.50727_32 - ok
20:46:30.0852 4104 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:46:30.0867 4104 clr_optimization_v2.0.50727_64 - ok
20:46:30.0961 4104 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:46:30.0977 4104 clr_optimization_v4.0.30319_32 - ok
20:46:31.0023 4104 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:46:31.0023 4104 clr_optimization_v4.0.30319_64 - ok
20:46:31.0070 4104 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:46:31.0070 4104 CmBatt - ok
20:46:31.0148 4104 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
20:46:31.0148 4104 cmdide - ok
20:46:31.0179 4104 [ f95fd4cb7da00ba2a63ce9f6b5c053e1 ] CNG C:\Windows\system32\Drivers\cng.sys
20:46:31.0195 4104 CNG - ok
20:46:31.0226 4104 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:46:31.0226 4104 Compbatt - ok
20:46:31.0257 4104 [ f26b3a86f6fa87ca360b879581ab4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:46:31.0257 4104 CompositeBus - ok
20:46:31.0289 4104 COMSysApp - ok
20:46:31.0304 4104 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:46:31.0304 4104 crcdisk - ok
20:46:31.0351 4104 [ 8c57411b66282c01533cb776f98ad384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:46:31.0351 4104 CryptSvc - ok
20:46:31.0413 4104 [ 7266972e86890e2b30c0c322e906b027 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:46:31.0460 4104 DcomLaunch - ok
20:46:31.0554 4104 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
20:46:31.0569 4104 defragsvc - ok
20:46:31.0616 4104 [ 9c253ce7311ca60fc11c774692a13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:46:31.0632 4104 DfsC - ok
20:46:31.0679 4104 [ 113212d25d0c9bb8901a9833774da97f ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
20:46:31.0679 4104 dg_ssudbus - ok
20:46:31.0725 4104 [ ce3b9562d997f69b330d181a8875960f ] Dhcp C:\Windows\system32\dhcpcore.dll
20:46:31.0741 4104 Dhcp - ok
20:46:31.0772 4104 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
20:46:31.0772 4104 discache - ok
20:46:31.0803 4104 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:46:31.0819 4104 Disk - ok
20:46:31.0866 4104 [ 85cf424c74a1d5ec33533e1dbff9920a ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:46:31.0866 4104 Dnscache - ok
20:46:31.0897 4104 [ 14452acdb09b70964c8c21bf80a13acb ] dot3svc C:\Windows\System32\dot3svc.dll
20:46:31.0913 4104 dot3svc - ok
20:46:31.0944 4104 [ 8c2ba6bea949ee6e68385f5692bafb94 ] DPS C:\Windows\system32\dps.dll
20:46:31.0944 4104 DPS - ok
20:46:31.0991 4104 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:46:31.0991 4104 drmkaud - ok
20:46:32.0069 4104 [ 1633b9abf52784a1331476397a48cbef ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:46:32.0115 4104 DXGKrnl - ok
20:46:32.0147 4104 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:46:32.0162 4104 EapHost - ok
20:46:32.0287 4104 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:46:32.0396 4104 ebdrv - ok
20:46:32.0427 4104 [ 0793f40b9b8a1bdd266296409dbd91ea ] EFS C:\Windows\System32\lsass.exe
20:46:32.0427 4104 EFS - ok
20:46:32.0521 4104 [ 47c071994c3f649f23d9cd075ac9304a ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:46:32.0568 4104 ehRecvr - ok
20:46:32.0583 4104 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
20:46:32.0583 4104 ehSched - ok
20:46:32.0661 4104 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:46:32.0677 4104 elxstor - ok
20:46:32.0708 4104 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
20:46:32.0724 4104 ErrDev - ok
20:46:32.0771 4104 [ 4c120d2b2ea269eae7a5744794eb6db1 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
20:46:32.0786 4104 ETD - ok
20:46:32.0817 4104 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
20:46:32.0833 4104 EventSystem - ok
20:46:32.0880 4104 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
20:46:32.0880 4104 exfat - ok
20:46:32.0911 4104 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:46:32.0911 4104 fastfat - ok
20:46:32.0973 4104 [ d607b2f1bee3992aa6c2c92c0a2f0855 ] Fax C:\Windows\system32\fxssvc.exe
20:46:33.0005 4104 Fax - ok
20:46:33.0036 4104 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:46:33.0051 4104 fdc - ok
20:46:33.0114 4104 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:46:33.0114 4104 fdPHost - ok
20:46:33.0161 4104 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:46:33.0161 4104 FDResPub - ok
20:46:33.0192 4104 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:46:33.0192 4104 FileInfo - ok
20:46:33.0207 4104 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:46:33.0223 4104 Filetrace - ok
20:46:33.0239 4104 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:46:33.0239 4104 flpydisk - ok
20:46:33.0254 4104 [ f7866af72abbaf84b1fa5aa195378c59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:46:33.0270 4104 FltMgr - ok
20:46:33.0348 4104 [ cb5e4b9c319e3c6bb363eb7e58a4a051 ] FontCache C:\Windows\system32\FntCache.dll
20:46:33.0395 4104 FontCache - ok
20:46:33.0457 4104 [ 8d89e3131c27fdd6932189cb785e1b7a ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:46:33.0457 4104 FontCache3.0.0.0 - ok
20:46:33.0488 4104 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:46:33.0488 4104 FsDepends - ok
20:46:33.0519 4104 [ 6c06701bf1db05405804d7eb610991ce ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
20:46:33.0519 4104 fssfltr - ok
20:46:33.0613 4104 [ 4ce9dac1518ff7e77bd213e6394b9d77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:46:33.0675 4104 fsssvc - ok
20:46:33.0707 4104 [ e95ef8547de20cf0603557c0cf7a9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:46:33.0707 4104 Fs_Rec - ok
20:46:33.0769 4104 [ ae87ba80d0ec3b57126ed2cdc15b24ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:46:33.0769 4104 fvevol - ok
20:46:33.0816 4104 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:46:33.0816 4104 gagp30kx - ok
20:46:33.0847 4104 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:46:33.0863 4104 GEARAspiWDM - ok
20:46:33.0941 4104 [ fe5ab4525bc2ec68b9119a6e5d40128b ] gpsvc C:\Windows\System32\gpsvc.dll
20:46:33.0972 4104 gpsvc - ok
20:46:34.0065 4104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:46:34.0065 4104 gupdate - ok
20:46:34.0097 4104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:46:34.0097 4104 gupdatem - ok
20:46:34.0128 4104 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:46:34.0143 4104 gusvc - ok
20:46:34.0190 4104 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:46:34.0190 4104 hcw85cir - ok
20:46:34.0221 4104 [ 6410f6f415b2a5a9037224c41da8bf12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:46:34.0221 4104 HdAudAddService - ok
20:46:34.0268 4104 [ 0a49913402747a0b67de940fb42cbdbb ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:46:34.0268 4104 HDAudBus - ok
20:46:34.0284 4104 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:46:34.0284 4104 HidBatt - ok
20:46:34.0331 4104 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:46:34.0331 4104 HidBth - ok
20:46:34.0346 4104 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:46:34.0362 4104 HidIr - ok
20:46:34.0393 4104 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
20:46:34.0393 4104 hidserv - ok
20:46:34.0424 4104 [ b3bf6b5b50006def50b66306d99fcf6f ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:46:34.0424 4104 HidUsb - ok
20:46:34.0455 4104 [ efa58ede58dd74388ffd04cb32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:46:34.0455 4104 hkmsvc - ok
20:46:34.0487 4104 [ 046b2673767ca626e2cfb7fdf735e9e8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:46:34.0502 4104 HomeGroupListener - ok
20:46:34.0549 4104 [ 06a7422224d9865a5613710a089987df ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:46:34.0565 4104 HomeGroupProvider - ok
20:46:34.0596 4104 [ 0886d440058f203eba0e1825e4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
20:46:34.0596 4104 HpSAMD - ok
20:46:34.0658 4104 [ cee049cac4efa7f4e1e4ad014414a5d4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:46:34.0689 4104 HTTP - ok
20:46:34.0705 4104 [ f17766a19145f111856378df337a5d79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:46:34.0721 4104 hwpolicy - ok
20:46:34.0767 4104 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:46:34.0767 4104 i8042prt - ok
20:46:34.0814 4104 [ b75e45c564e944a2657167d197ab29da ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:46:34.0845 4104 iaStorV - ok
20:46:34.0939 4104 [ 2f2be70d3e02b6fa877921ab9516d43c ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:46:34.0986 4104 idsvc - ok
20:46:35.0017 4104 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:46:35.0033 4104 iirsp - ok
20:46:35.0095 4104 [ c5b4683680df085b57bc53e5ef34861f ] IKEEXT C:\Windows\System32\ikeext.dll
20:46:35.0126 4104 IKEEXT - ok
20:46:35.0267 4104 [ 2cc2f7c5990bb76767038f4b16d17a56 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:46:35.0360 4104 IntcAzAudAddService - ok
20:46:35.0391 4104 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\DRIVERS\intelide.sys
20:46:35.0391 4104 intelide - ok
20:46:35.0407 4104 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:46:35.0407 4104 intelppm - ok
20:46:35.0454 4104 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:46:35.0454 4104 IPBusEnum - ok
20:46:35.0485 4104 [ 722dd294df62483cecaae6e094b4d695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:46:35.0485 4104 IpFilterDriver - ok
20:46:35.0532 4104 [ f8e058d17363ec580e4b7232778b6cb5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:46:35.0563 4104 iphlpsvc - ok
20:46:35.0579 4104 [ e2b4a4494db7cb9b89b55ca268c337c5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:46:35.0579 4104 IPMIDRV - ok
20:46:35.0610 4104 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:46:35.0610 4104 IPNAT - ok
20:46:35.0688 4104 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:46:35.0735 4104 iPod Service - ok
20:46:35.0766 4104 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:46:35.0766 4104 IRENUM - ok
20:46:35.0797 4104 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
20:46:35.0797 4104 isapnp - ok
20:46:35.0828 4104 [ fa4d2557de56d45b0a346f93564be6e1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:46:35.0844 4104 iScsiPrt - ok
20:46:35.0875 4104 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:46:35.0875 4104 kbdclass - ok
20:46:35.0906 4104 [ 6def98f8541e1b5dceb2c822a11f7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:46:35.0922 4104 kbdhid - ok
20:46:35.0969 4104 [ e63ef8c3271d014f14e2469ce75fecb4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
20:46:35.0969 4104 kbfiltr - ok
20:46:35.0984 4104 [ 0793f40b9b8a1bdd266296409dbd91ea ] KeyIso C:\Windows\system32\lsass.exe
20:46:35.0984 4104 KeyIso - ok
20:46:36.0015 4104 [ e8b6fcc9c83535c67f835d407620bd27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:46:36.0015 4104 KSecDD - ok
20:46:36.0047 4104 [ a8c63880ef6f4d3fec7b616b9c060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:46:36.0062 4104 KSecPkg - ok
20:46:36.0078 4104 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:46:36.0093 4104 ksthunk - ok
20:46:36.0140 4104 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
20:46:36.0156 4104 KtmRm - ok
20:46:36.0187 4104 [ 033b4aed2c5519072c0d81e00804d003 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
20:46:36.0187 4104 L1C - ok
20:46:36.0234 4104 [ 81f1d04d4d0e433099365127375fd501 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:46:36.0249 4104 LanmanServer - ok
20:46:36.0296 4104 [ 27026eac8818e8a6c00a1cad2f11d29a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:46:36.0296 4104 LanmanWorkstation - ok
20:46:36.0359 4104 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:46:36.0359 4104 lltdio - ok
20:46:36.0421 4104 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:46:36.0437 4104 lltdsvc - ok
20:46:36.0452 4104 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:46:36.0468 4104 lmhosts - ok
20:46:36.0530 4104 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:46:36.0530 4104 LSI_FC - ok
20:46:36.0561 4104 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:46:36.0577 4104 LSI_SAS - ok
20:46:36.0593 4104 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:46:36.0593 4104 LSI_SAS2 - ok
20:46:36.0624 4104 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:46:36.0624 4104 LSI_SCSI - ok
20:46:36.0655 4104 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
20:46:36.0671 4104 luafv - ok
20:46:36.0780 4104 [ f453d1e6d881e8f8717e20ccd4199e85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
20:46:36.0780 4104 McComponentHostService - ok
20:46:36.0811 4104 [ f84c8f1000bc11e3b7b23cbd3baff111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:46:36.0827 4104 Mcx2Svc - ok
20:46:36.0858 4104 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:46:36.0858 4104 megasas - ok
20:46:36.0889 4104 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:46:36.0905 4104 MegaSR - ok
20:46:36.0936 4104 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
20:46:36.0936 4104 MMCSS - ok
20:46:36.0967 4104 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:46:36.0967 4104 Modem - ok
20:46:36.0998 4104 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:46:36.0998 4104 monitor - ok
20:46:37.0014 4104 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:46:37.0029 4104 mouclass - ok
20:46:37.0045 4104 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:46:37.0045 4104 mouhid - ok
20:46:37.0076 4104 [ 791af66c4d0e7c90a3646066386fb571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:46:37.0076 4104 mountmgr - ok
20:46:37.0170 4104 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:46:37.0170 4104 MozillaMaintenance - ok
20:46:37.0217 4104 [ 609d1d87649ecc19796f4d76d4c15cea ] mpio C:\Windows\system32\DRIVERS\mpio.sys
20:46:37.0232 4104 mpio - ok
20:46:37.0263 4104 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:46:37.0263 4104 mpsdrv - ok
20:46:37.0326 4104 [ aecab449567d1846dad63ece49e893e3 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:46:37.0357 4104 MpsSvc - ok
20:46:37.0388 4104 [ 30524261bb51d96d6fcbac20c810183c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:46:37.0388 4104 MRxDAV - ok
20:46:37.0435 4104 [ 040d62a9d8ad28922632137acdd984f2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:46:37.0435 4104 mrxsmb - ok
20:46:37.0482 4104 [ f0067552f8f9b33d7c59403ab808a3cb ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:46:37.0497 4104 mrxsmb10 - ok
20:46:37.0529 4104 [ 3c142d31de9f2f193218a53fe2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:46:37.0529 4104 mrxsmb20 - ok
20:46:37.0560 4104 [ 5c37497276e3b3a5488b23a326a754b7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
20:46:37.0560 4104 msahci - ok
20:46:37.0591 4104 [ 8d27b597229aed79430fb9db3bcbfbd0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
20:46:37.0607 4104 msdsm - ok
20:46:37.0638 4104 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
20:46:37.0638 4104 MSDTC - ok
20:46:37.0700 4104 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:46:37.0700 4104 Msfs - ok
20:46:37.0731 4104 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:46:37.0731 4104 mshidkmdf - ok
20:46:37.0763 4104 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
20:46:37.0763 4104 msisadrv - ok
20:46:37.0825 4104 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:46:37.0825 4104 MSiSCSI - ok
20:46:37.0841 4104 msiserver - ok
20:46:37.0887 4104 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:46:37.0887 4104 MSKSSRV - ok
20:46:37.0934 4104 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:46:37.0934 4104 MSPCLOCK - ok
20:46:37.0950 4104 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:46:37.0965 4104 MSPQM - ok
20:46:38.0012 4104 [ 89cb141aa8616d8c6a4610fa26c60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:46:38.0028 4104 MsRPC - ok
20:46:38.0059 4104 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:46:38.0059 4104 mssmbios - ok
20:46:38.0090 4104 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:46:38.0090 4104 MSTEE - ok
20:46:38.0121 4104 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:46:38.0121 4104 MTConfig - ok
20:46:38.0153 4104 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:46:38.0153 4104 Mup - ok
20:46:38.0199 4104 [ 4987e079a4530fa737a128be54b63b12 ] napagent C:\Windows\system32\qagentRT.dll
20:46:38.0215 4104 napagent - ok
20:46:38.0262 4104 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:46:38.0262 4104 NativeWifiP - ok
20:46:38.0324 4104 [ cad515dbd07d082bb317d9928ce8962c ] NDIS C:\Windows\system32\drivers\ndis.sys
20:46:38.0355 4104 NDIS - ok
20:46:38.0387 4104 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:46:38.0387 4104 NdisCap - ok
20:46:38.0418 4104 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:46:38.0418 4104 NdisTapi - ok
20:46:38.0449 4104 [ f105ba1e22bf1f2ee8f005d4305e4bec ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:46:38.0449 4104 Ndisuio - ok
20:46:38.0465 4104 [ 557dfab9ca1fcb036ac77564c010dad3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:46:38.0480 4104 NdisWan - ok
20:46:38.0496 4104 [ 659b74fb74b86228d6338d643cd3e3cf ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:46:38.0511 4104 NDProxy - ok
20:46:38.0527 4104 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:46:38.0527 4104 NetBIOS - ok
20:46:38.0558 4104 [ 9162b273a44ab9dce5b44362731d062a ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:46:38.0558 4104 NetBT - ok
20:46:38.0574 4104 [ 0793f40b9b8a1bdd266296409dbd91ea ] Netlogon C:\Windows\system32\lsass.exe
20:46:38.0589 4104 Netlogon - ok
20:46:38.0636 4104 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
20:46:38.0652 4104 Netman - ok
20:46:38.0683 4104 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
20:46:38.0714 4104 netprofm - ok
20:46:38.0745 4104 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:46:38.0761 4104 NetTcpPortSharing - ok
20:46:38.0792 4104 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:46:38.0792 4104 nfrd960 - ok
20:46:38.0823 4104 [ d9a0ce66046d6efa0c61baa885cba0a8 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:46:38.0839 4104 NlaSvc - ok
20:46:38.0855 4104 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:46:38.0870 4104 Npfs - ok
20:46:38.0901 4104 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:46:38.0917 4104 nsi - ok
20:46:38.0933 4104 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:46:38.0948 4104 nsiproxy - ok
20:46:39.0057 4104 [ 378e0e0dfea67d98ae6ea53adbbd76bc ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:46:39.0135 4104 Ntfs - ok
20:46:39.0182 4104 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
20:46:39.0182 4104 Null - ok
20:46:39.0229 4104 [ a4d9c9a608a97f59307c2f2600edc6a4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:46:39.0229 4104 nvraid - ok
20:46:39.0276 4104 [ 6c1d5f70e7a6a3fd1c90d840edc048b9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:46:39.0276 4104 nvstor - ok
20:46:39.0307 4104 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
20:46:39.0307 4104 nv_agp - ok
20:46:39.0416 4104 [ 1f0e05dff4f5a833168e49be1256f002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:46:39.0432 4104 odserv - ok
20:46:39.0463 4104 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:46:39.0463 4104 ohci1394 - ok
20:46:39.0510 4104 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:46:39.0525 4104 ose - ok
20:46:39.0572 4104 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:46:39.0588 4104 p2pimsvc - ok
20:46:39.0635 4104 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:46:39.0650 4104 p2psvc - ok
20:46:39.0681 4104 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:46:39.0681 4104 Parport - ok
20:46:39.0713 4104 [ 7daa117143316c4a1537e074a5a9eaf0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:46:39.0713 4104 partmgr - ok
20:46:39.0744 4104 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:46:39.0759 4104 PcaSvc - ok
20:46:39.0791 4104 [ f36f6504009f2fb0dfd1b17a116ad74b ] pci C:\Windows\system32\DRIVERS\pci.sys
20:46:39.0806 4104 pci - ok
20:46:39.0822 4104 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
20:46:39.0837 4104 pciide - ok
20:46:39.0869 4104 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:46:39.0869 4104 pcmcia - ok
20:46:39.0900 4104 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:46:39.0900 4104 pcw - ok
20:46:39.0947 4104 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:46:39.0962 4104 PEAUTH - ok
20:46:40.0103 4104 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:46:40.0118 4104 PerfHost - ok
20:46:40.0212 4104 [ 557e9a86f65f0de18c9b6751dfe9d3f1 ] pla C:\Windows\system32\pla.dll
20:46:40.0274 4104 pla - ok
20:46:40.0337 4104 [ 98b1721b8718164293b9701b98c52d77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:46:40.0368 4104 PlugPlay - ok
20:46:40.0383 4104 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:46:40.0399 4104 PNRPAutoReg - ok
20:46:40.0415 4104 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:46:40.0430 4104 PNRPsvc - ok
20:46:40.0477 4104 [ 166eb40d1f5b47e615de3d0fffe5f243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:46:40.0508 4104 PolicyAgent - ok
20:46:40.0555 4104 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
20:46:40.0571 4104 Power - ok
20:46:40.0602 4104 [ 27cc19e81ba5e3403c48302127bda717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:46:40.0602 4104 PptpMiniport - ok
20:46:40.0633 4104 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:46:40.0633 4104 Processor - ok
20:46:40.0680 4104 [ f381975e1f4346de875cb07339ce8d3a ] ProfSvc C:\Windows\system32\profsvc.dll
20:46:40.0695 4104 ProfSvc - ok
20:46:40.0711 4104 [ 0793f40b9b8a1bdd266296409dbd91ea ] ProtectedStorage C:\Windows\system32\lsass.exe
20:46:40.0727 4104 ProtectedStorage - ok
20:46:40.0758 4104 [ ee992183bd8eaefd9973f352e587a299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:46:40.0758 4104 Psched - ok
20:46:40.0836 4104 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:46:40.0883 4104 ql2300 - ok
20:46:40.0929 4104 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:46:40.0929 4104 ql40xx - ok
20:46:40.0976 4104 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
20:46:40.0976 4104 QWAVE - ok
20:46:41.0007 4104 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:46:41.0007 4104 QWAVEdrv - ok
20:46:41.0023 4104 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:46:41.0039 4104 RasAcd - ok
20:46:41.0054 4104 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:46:41.0054 4104 RasAgileVpn - ok
20:46:41.0132 4104 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
20:46:41.0132 4104 RasAuto - ok
20:46:41.0163 4104 [ 87a6e852a22991580d6d39adc4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:46:41.0163 4104 Rasl2tp - ok
20:46:41.0210 4104 [ 47394ed3d16d053f5906efe5ab51cc83 ] RasMan C:\Windows\System32\rasmans.dll
20:46:41.0226 4104 RasMan - ok
20:46:41.0257 4104 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:46:41.0273 4104 RasPppoe - ok
20:46:41.0288 4104 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:46:41.0304 4104 RasSstp - ok
20:46:41.0335 4104 [ 3bac8142102c15d59a87757c1d41dce5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:46:41.0351 4104 rdbss - ok
20:46:41.0366 4104 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:46:41.0366 4104 rdpbus - ok
20:46:41.0397 4104 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:46:41.0397 4104 RDPCDD - ok
20:46:41.0444 4104 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:46:41.0444 4104 RDPENCDD - ok
20:46:41.0475 4104 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:46:41.0475 4104 RDPREFMP - ok
20:46:41.0507 4104 [ 8a3e6bea1c53ea6177fe2b6eba2c80d7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:46:41.0522 4104 RDPWD - ok
20:46:41.0538 4104 [ e5dc9ba9e439d6dbdd79f8caacb5bf01 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:46:41.0553 4104 rdyboost - ok
20:46:41.0600 4104 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:46:41.0616 4104 RemoteAccess - ok
20:46:41.0647 4104 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:46:41.0647 4104 RemoteRegistry - ok
20:46:41.0694 4104 [ 3dd798846e2c28102b922c56e71b7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:46:41.0709 4104 RFCOMM - ok
20:46:41.0741 4104 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:46:41.0756 4104 RpcEptMapper - ok
20:46:41.0803 4104 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
20:46:41.0803 4104 RpcLocator - ok
20:46:41.0834 4104 [ 7266972e86890e2b30c0c322e906b027 ] RpcSs C:\Windows\system32\rpcss.dll
20:46:41.0850 4104 RpcSs - ok
20:46:41.0912 4104 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:46:41.0928 4104 rspndr - ok
20:46:41.0990 4104 [ 135a64530d7699ad48f29d73a658dd11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
20:46:41.0990 4104 RSUSBSTOR - ok
20:46:42.0021 4104 [ 6d3c7e7d82d3dc92dc2a8b0df9f20f8a ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:46:42.0037 4104 RTL8167 - ok
20:46:42.0053 4104 [ 0793f40b9b8a1bdd266296409dbd91ea ] SamSs C:\Windows\system32\lsass.exe
20:46:42.0068 4104 SamSs - ok
20:46:42.0084 4104 [ e3bbb89983daf5622c1d50cf49f28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
20:46:42.0084 4104 sbp2port - ok
20:46:42.0115 4104 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:46:42.0115 4104 SCardSvr - ok
20:46:42.0146 4104 [ c94da20c7e3ba1dca269bc8460d98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:46:42.0146 4104 scfilter - ok
20:46:42.0224 4104 [ 624d0f5ff99428bb90a5b8a4123e918e ] Schedule C:\Windows\system32\schedsvc.dll
20:46:42.0271 4104 Schedule - ok
20:46:42.0318 4104 [ 312e2f82af11e79906898ac3e3d58a1f ] SCPolicySvc C:\Windows\System32\certprop.dll
20:46:42.0318 4104 SCPolicySvc - ok
20:46:42.0365 4104 [ 765a27c3279ce11d14cb9e4f5869fca5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:46:42.0365 4104 SDRSVC - ok
20:46:42.0396 4104 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:46:42.0396 4104 secdrv - ok
20:46:42.0427 4104 [ 463b386ebc70f98da5dff85f7e654346 ] seclogon C:\Windows\system32\seclogon.dll
20:46:42.0443 4104 seclogon - ok
20:46:42.0474 4104 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
20:46:42.0474 4104 SENS - ok
20:46:42.0505 4104 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:46:42.0521 4104 SensrSvc - ok
20:46:42.0552 4104 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:46:42.0552 4104 Serenum - ok
20:46:42.0583 4104 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:46:42.0599 4104 Serial - ok
20:46:42.0599 4104 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:46:42.0614 4104 sermouse - ok
20:46:42.0677 4104 [ c3bc61ce47ff6f4e88ab8a3b429a36af ] SessionEnv C:\Windows\system32\sessenv.dll
20:46:42.0692 4104 SessionEnv - ok
20:46:42.0708 4104 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:46:42.0723 4104 sffdisk - ok
20:46:42.0723 4104 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:46:42.0739 4104 sffp_mmc - ok
20:46:42.0755 4104 [ 178298f767fe638c9fedcbdef58bb5e4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:46:42.0755 4104 sffp_sd - ok
20:46:42.0770 4104 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:46:42.0770 4104 sfloppy - ok
20:46:42.0833 4104 [ b95f6501a2f8b2e78c697fec401970ce ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:46:42.0848 4104 SharedAccess - ok
20:46:42.0879 4104 [ 0298ac45d0efffb2db4baa7dd186e7bf ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:46:42.0895 4104 ShellHWDetection - ok
20:46:42.0942 4104 [ 1bc348cf6baa90ec8e533ef6e6a69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
20:46:42.0942 4104 SiSGbeLH - ok
20:46:42.0989 4104 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:46:42.0989 4104 SiSRaid2 - ok
20:46:43.0004 4104 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:46:43.0020 4104 SiSRaid4 - ok
20:46:43.0082 4104 [ 6128e98eaaed364ed1a32708d2fd22cb ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:46:43.0098 4104 SkypeUpdate - ok
20:46:43.0113 4104 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:46:43.0113 4104 Smb - ok
20:46:43.0176 4104 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:46:43.0176 4104 SNMPTRAP - ok
20:46:43.0207 4104 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:46:43.0207 4104 spldr - ok
20:46:43.0254 4104 [ f8e1fa03cb70d54a9892ac88b91d1e7b ] Spooler C:\Windows\System32\spoolsv.exe
20:46:43.0285 4104 Spooler - ok
20:46:43.0425 4104 [ 913d843498553a1bc8f8dbad6358e49f ] sppsvc C:\Windows\system32\sppsvc.exe
20:46:43.0535 4104 sppsvc - ok
20:46:43.0581 4104 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:46:43.0581 4104 sppuinotify - ok
20:46:43.0628 4104 [ 2408c0366d96bcdf63e8f1c78e4a29c5 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:46:43.0644 4104 srv - ok
20:46:43.0675 4104 [ 76548f7b818881b47d8d1ae1be9c11f8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:46:43.0691 4104 srv2 - ok
20:46:43.0722 4104 [ 0af6e19d39c70844c5caa8fb0183c36e ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:46:43.0737 4104 srvnet - ok
20:46:43.0769 4104 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:46:43.0784 4104 SSDPSRV - ok
20:46:43.0800 4104 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:46:43.0800 4104 SstpSvc - ok
20:46:43.0878 4104 [ 78cd64791f8634cf7b582fd085e57c4b ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
20:46:43.0878 4104 ssudmdm - ok
20:46:43.0925 4104 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:46:43.0925 4104 stexstor - ok
20:46:43.0987 4104 [ 52d0e33b681bd0f33fdc08812fee4f7d ] stisvc C:\Windows\System32\wiaservc.dll
20:46:44.0018 4104 stisvc - ok
20:46:44.0049 4104 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:46:44.0065 4104 swenum - ok
20:46:44.0096 4104 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
20:46:44.0127 4104 swprv - ok
20:46:44.0221 4104 [ 3c1284516a62078fb68f768de4f1a7be ] SysMain C:\Windows\system32\sysmain.dll
20:46:44.0283 4104 SysMain - ok
20:46:44.0330 4104 [ 238935c3cf2854886dc7cbb2a0e2cc66 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:46:44.0330 4104 TabletInputService - ok
20:46:44.0361 4104 [ 884264ac597b690c5707c89723bb8e7b ] TapiSrv C:\Windows\System32\tapisrv.dll
20:46:44.0377 4104 TapiSrv - ok
20:46:44.0393 4104 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
20:46:44.0408 4104 TBS - ok
20:46:44.0517 4104 [ f18f56efc0bfb9c87ba01c37b27f4da5 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:46:44.0580 4104 Tcpip - ok
20:46:44.0658 4104 [ f18f56efc0bfb9c87ba01c37b27f4da5 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:46:44.0689 4104 TCPIP6 - ok
20:46:44.0720 4104 [ 76d078af6f587b162d50210f761eb9ed ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:46:44.0736 4104 tcpipreg - ok
20:46:44.0767 4104 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:46:44.0783 4104 TDPIPE - ok
20:46:44.0798 4104 [ e4245bda3190a582d55ed09e137401a9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:46:44.0798 4104 TDTCP - ok
20:46:44.0845 4104 [ 079125c4b17b01fcaeebce0bcb290c0f ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:46:44.0845 4104 tdx - ok
20:46:44.0876 4104 [ c448651339196c0e869a355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:46:44.0876 4104 TermDD - ok
20:46:44.0939 4104 [ 0f05ec2887bfe197ad82a13287d2f404 ] TermService C:\Windows\System32\termsrv.dll
20:46:44.0970 4104 TermService - ok
20:46:45.0001 4104 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
20:46:45.0001 4104 Themes - ok
20:46:45.0032 4104 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
20:46:45.0032 4104 THREADORDER - ok
20:46:45.0063 4104 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
20:46:45.0079 4104 TrkWks - ok
20:46:45.0173 4104 [ 840f7fb849f5887a49ba18c13b2da920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:46:45.0173 4104 TrustedInstaller - ok
20:46:45.0204 4104 [ 61b96c26131e37b24e93327a0bd1fb95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:46:45.0204 4104 tssecsrv - ok
20:46:45.0251 4104 [ 3836171a2cdf3af8ef10856db9835a70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:46:45.0251 4104 tunnel - ok
20:46:45.0282 4104 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:46:45.0282 4104 uagp35 - ok
20:46:45.0329 4104 [ d47baead86c65d4f4069d7ce0a4edceb ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:46:45.0329 4104 udfs - ok
20:46:45.0391 4104 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:46:45.0391 4104 UI0Detect - ok
20:46:45.0438 4104 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
20:46:45.0438 4104 uliagpkx - ok
20:46:45.0485 4104 [ eab6c35e62b1b0db0d1b48b671d3a117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:46:45.0485 4104 umbus - ok
20:46:45.0516 4104 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:46:45.0516 4104 UmPass - ok
20:46:45.0547 4104 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
20:46:45.0578 4104 upnphost - ok
20:46:45.0641 4104 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:46:45.0641 4104 USBAAPL64 - ok
20:46:45.0687 4104 [ 537a4e03d7103c12d42dfd8ffdb5bdc9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:46:45.0687 4104 usbccgp - ok
20:46:45.0719 4104 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
20:46:45.0734 4104 usbcir - ok
20:46:45.0765 4104 [ fbb21ebe49f6d560db37ac25fbc68e66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:46:45.0765 4104 usbehci - ok
20:46:45.0812 4104 [ 76e2ffad301490ba27b947c6507752fb ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:46:45.0812 4104 usbfilter - ok
20:46:45.0843 4104 [ 6b7a8a99c4a459e73c286a6763ea24cc ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:46:45.0859 4104 usbhub - ok
20:46:45.0875 4104 [ 8c88aa7617b4cbc2e4bed61d26b33a27 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:46:45.0890 4104 usbohci - ok
20:46:45.0921 4104 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:46:45.0921 4104 usbprint - ok
20:46:45.0953 4104 [ f39983647bc1f3e6100778ddfe9dce29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:46:45.0953 4104 USBSTOR - ok
20:46:45.0984 4104 [ 0b5b3b2df3fd1709618acfa50b8392b0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:46:45.0984 4104 usbuhci - ok
20:46:46.0031 4104 [ 7cb8c573c6e4a2714402cc0a36eab4fe ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:46:46.0046 4104 usbvideo - ok
20:46:46.0062 4104 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
20:46:46.0077 4104 UxSms - ok
20:46:46.0093 4104 [ 0793f40b9b8a1bdd266296409dbd91ea ] VaultSvc C:\Windows\system32\lsass.exe
20:46:46.0093 4104 VaultSvc - ok
20:46:46.0124 4104 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
20:46:46.0124 4104 vdrvroot - ok
20:46:46.0171 4104 [ 44d73e0bbc1d3c8981304ba15135c2f2 ] vds C:\Windows\System32\vds.exe
20:46:46.0202 4104 vds - ok
20:46:46.0233 4104 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:46:46.0233 4104 vga - ok
20:46:46.0265 4104 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
20:46:46.0265 4104 VgaSave - ok
20:46:46.0311 4104 [ c82e748660f62a242b2dfac1442f22a4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
20:46:46.0311 4104 vhdmp - ok
20:46:46.0343 4104 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
20:46:46.0343 4104 viaide - ok
20:46:46.0374 4104 [ 2b1a3dae2b4e70dbba822b7a03fbd4a3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
20:46:46.0374 4104 volmgr - ok
20:46:46.0405 4104 [ 99b0cbb569ca79acaed8c91461d765fb ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:46:46.0405 4104 volmgrx - ok
20:46:46.0436 4104 [ 58f82eed8ca24b461441f9c3e4f0bf5c ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
20:46:46.0452 4104 volsnap - ok
20:46:46.0499 4104 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:46:46.0499 4104 vsmraid - ok
20:46:46.0577 4104 [ 787898bf9fb6d7bd87a36e2d95c899ba ] VSS C:\Windows\system32\vssvc.exe
20:46:46.0639 4104 VSS - ok
20:46:46.0655 4104 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:46:46.0670 4104 vwifibus - ok
20:46:46.0686 4104 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:46:46.0686 4104 vwififlt - ok
20:46:46.0733 4104 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
20:46:46.0764 4104 W32Time - ok
20:46:46.0795 4104 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:46:46.0795 4104 WacomPen - ok
20:46:46.0826 4104 [ 47ca49400643effd3f1c9a27e1d69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:46:46.0826 4104 WANARP - ok
20:46:46.0842 4104 [ 47ca49400643effd3f1c9a27e1d69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:46:46.0842 4104 Wanarpv6 - ok
20:46:46.0951 4104 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:46:46.0998 4104 WatAdminSvc - ok
20:46:47.0076 4104 [ 5ab1bb85bd8b5089cc5d64200dedae68 ] wbengine C:\Windows\system32\wbengine.exe
20:46:47.0154 4104 wbengine - ok
20:46:47.0185 4104 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:46:47.0201 4104 WbioSrvc - ok
20:46:47.0247 4104 [ dd1bae8ebfc653824d29ccf8c9054d68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:46:47.0263 4104 wcncsvc - ok
20:46:47.0294 4104 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:46:47.0294 4104 WcsPlugInService - ok
20:46:47.0325 4104 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:46:47.0341 4104 Wd - ok
20:46:47.0372 4104 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:46:47.0403 4104 Wdf01000 - ok
20:46:47.0419 4104 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:46:47.0435 4104 WdiServiceHost - ok
20:46:47.0450 4104 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:46:47.0450 4104 WdiSystemHost - ok
20:46:47.0497 4104 [ 733006127f235be7c35354ebee7b9a7b ] WebClient C:\Windows\System32\webclnt.dll
20:46:47.0513 4104 WebClient - ok
20:46:47.0544 4104 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:46:47.0575 4104 Wecsvc - ok
20:46:47.0591 4104 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:46:47.0606 4104 wercplsupport - ok
20:46:47.0637 4104 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:46:47.0637 4104 WerSvc - ok
20:46:47.0669 4104 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:46:47.0669 4104 WfpLwf - ok
20:46:47.0731 4104 [ 52ded146e4797e6ccf94799e8e22bb2a ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:46:47.0731 4104 WimFltr - ok
20:46:47.0747 4104 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:46:47.0762 4104 WIMMount - ok
20:46:47.0778 4104 WinDefend - ok
20:46:47.0809 4104 WinHttpAutoProxySvc - ok
20:46:47.0903 4104 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:46:47.0903 4104 Winmgmt - ok
20:46:47.0996 4104 [ 41fbb751936b387f9179e7f03a74fe29 ] WinRM C:\Windows\system32\WsmSvc.dll
20:46:48.0074 4104 WinRM - ok
20:46:48.0137 4104 [ 4d52c872018af7e18d078978dcc3f6f2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:46:48.0152 4104 WinUsb - ok
20:46:48.0215 4104 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
20:46:48.0261 4104 Wlansvc - ok
20:46:48.0356 4104 [ 06c8fa1cf39de6a735b54d906ba791c6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:46:48.0356 4104 wlcrasvc - ok
20:46:48.0465 4104 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:46:48.0543 4104 wlidsvc - ok
20:46:48.0606 4104 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:46:48.0606 4104 WmiAcpi - ok
20:46:48.0637 4104 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:46:48.0652 4104 wmiApSrv - ok
20:46:48.0684 4104 WMPNetworkSvc - ok
20:46:48.0746 4104 [ 83b6ca03c846fcd47f9883d77d1eb27b ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
20:46:48.0762 4104 WMZuneComm - ok
20:46:48.0793 4104 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:46:48.0793 4104 WPCSvc - ok
20:46:48.0824 4104 [ 2e57ddf2880a7e52e76f41c7e96d327b ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:46:48.0824 4104 WPDBusEnum - ok
20:46:48.0855 4104 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:46:48.0855 4104 ws2ifsl - ok
20:46:48.0902 4104 [ 8f9f3969933c02da96eb0f84576db43e ] wscsvc C:\Windows\System32\wscsvc.dll
20:46:48.0902 4104 wscsvc - ok
20:46:48.0918 4104 WSearch - ok
20:46:48.0964 4104 [ 7cadc74271dd6461c452c271b30bd378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:46:48.0980 4104 WudfPf - ok
20:46:48.0996 4104 [ 3b197af0fff08aa66b6b2241ca538d64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:46:48.0996 4104 WUDFRd - ok
20:46:49.0027 4104 [ b551d6637aa0e132c18ac6e504f7b79b ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:46:49.0027 4104 wudfsvc - ok
20:46:49.0058 4104 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
20:46:49.0105 4104 WwanSvc - ok
20:46:49.0418 4104 [ 67b787c34fb2888d01b130ae007042d8 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
20:46:49.0667 4104 ZuneNetworkSvc - ok
20:46:49.0730 4104 [ 4d89fc1c20cf655739efac5da81a67bc ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
20:46:49.0745 4104 ZuneWlanCfgSvc - ok
20:46:49.0777 4104 ================ Scan global ===============================
20:46:49.0823 4104 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
20:46:49.0855 4104 (0cb6ebf4b461a6043353c570bd72a1e1) C:\Windows\system32\winsrv.dll
20:46:49.0886 4104 (0cb6ebf4b461a6043353c570bd72a1e1) C:\Windows\system32\winsrv.dll
20:46:49.0948 4104 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
20:46:49.0995 4104 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
20:46:50.0011 4104 [Global] - ok
20:46:50.0011 4104 ================ Scan MBR ==================================
20:46:50.0026 4104 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:46:50.0697 4104 \Device\Harddisk0\DR0 - ok
20:46:50.0697 4104 ================ Scan VBR ==================================
20:46:50.0713 4104 Boot (0x1200) (323f4a5153f8256b1cbc247198b08cd7) \Device\Harddisk0\DR0\Partition1
20:46:50.0713 4104 \Device\Harddisk0\DR0\Partition1 - ok
20:46:50.0759 4104 Boot (0x1200) (1797ae520911b62b2c4521d5eff05ee1) \Device\Harddisk0\DR0\Partition2
20:46:50.0759 4104 \Device\Harddisk0\DR0\Partition2 - ok
20:46:50.0759 4104 ============================================================
20:46:50.0759 4104 Scan finished
20:46:50.0759 4104 ============================================================
20:46:50.0791 1164 Detected object count: 0
20:46:50.0791 1164 Actual detected object count: 0
20:55:57.0713 4892 ============================================================
20:55:57.0713 4892 Scan started
20:55:57.0713 4892 Mode: Manual; TDLFS;
20:55:57.0713 4892 ============================================================
20:55:58.0134 4892 ================ Scan services =============================
20:55:58.0368 4892 [ 1b00662092f9f9568b995902f0cc40d5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:55:58.0368 4892 1394ohci - ok
20:55:58.0399 4892 [ 6f11e88748cdefd2f76aa215f97ddfe5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
20:55:58.0415 4892 ACPI - ok
20:55:58.0431 4892 [ 63b05a0420ce4bf0e4af6dcc7cada254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
20:55:58.0431 4892 AcpiPmi - ok
20:55:58.0477 4892 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:55:58.0477 4892 adp94xx - ok
20:55:58.0524 4892 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:55:58.0540 4892 adpahci - ok
20:55:58.0571 4892 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:55:58.0571 4892 adpu320 - ok
20:55:58.0633 4892 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:55:58.0633 4892 AeLookupSvc - ok
20:55:58.0680 4892 [ 6e79a119b0ce418fe44e0c824bf3f039 ] AFBAgent C:\Windows\system32\FBAgent.exe
20:55:58.0680 4892 AFBAgent - ok
20:55:58.0743 4892 [ 6ef20ddf3172e97d69f596fb90602f29 ] AFD C:\Windows\system32\drivers\afd.sys
20:55:58.0758 4892 AFD - ok
20:55:58.0789 4892 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
20:55:58.0789 4892 agp440 - ok
20:55:58.0805 4892 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
20:55:58.0805 4892 ALG - ok
20:55:58.0836 4892 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
20:55:58.0836 4892 aliide - ok
20:55:58.0883 4892 [ e5bd1b0943b6aa242b79995b42ccd1f8 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:55:58.0883 4892 AMD External Events Utility - ok
20:55:58.0914 4892 AMD FUEL Service - ok
20:55:58.0961 4892 [ dd27f6c3de9bfe50635c721e09edc5dd ] AMD Reservation Manager C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
20:55:58.0961 4892 AMD Reservation Manager - ok
20:55:58.0977 4892 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\DRIVERS\amdide.sys
20:55:58.0977 4892 amdide - ok
20:55:59.0023 4892 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
20:55:59.0023 4892 amdiox64 - ok
20:55:59.0055 4892 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:55:59.0055 4892 AmdK8 - ok
20:55:59.0367 4892 [ 7dcf6685cc9195607537b082cd853f35 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:55:59.0507 4892 amdkmdag - ok
20:55:59.0554 4892 [ 540fc730cac044d1482af874fdc43b9a ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:55:59.0554 4892 amdkmdap - ok
20:55:59.0585 4892 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:55:59.0601 4892 AmdPPM - ok
20:55:59.0647 4892 [ ec7ebab00a4d8448bab68d1e49b4beb9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:55:59.0647 4892 amdsata - ok
20:55:59.0679 4892 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:55:59.0679 4892 amdsbs - ok
20:55:59.0710 4892 [ db27766102c7bf7e95140a2aa81d042e ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:55:59.0710 4892 amdxata - ok
20:55:59.0741 4892 [ caee7c1afc9f1c9ee8dd11acd18d22e7 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
20:55:59.0741 4892 amd_sata - ok
20:55:59.0757 4892 [ 23726116b4fbcc84fc45b95157c08f5f ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
20:55:59.0757 4892 amd_xata - ok
20:55:59.0788 4892 [ 42fd751b27fa0e9c69bb39f39e409594 ] AppID C:\Windows\system32\drivers\appid.sys
20:55:59.0788 4892 AppID - ok
20:55:59.0803 4892 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:55:59.0819 4892 AppIDSvc - ok
20:55:59.0850 4892 [ d065be66822847b7f127d1f90158376e ] Appinfo C:\Windows\System32\appinfo.dll
20:55:59.0850 4892 Appinfo - ok
20:55:59.0991 4892 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:55:59.0991 4892 Apple Mobile Device - ok
20:56:00.0006 4892 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
20:56:00.0022 4892 arc - ok
20:56:00.0037 4892 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:56:00.0037 4892 arcsas - ok
20:56:00.0084 4892 [ 18e5c2f937f9deb8c282df66a3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
20:56:00.0084 4892 ASLDRService - ok
20:56:00.0115 4892 [ 4c016fd76ed5c05e84ca8cab77993961 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
20:56:00.0115 4892 ASMMAP64 - ok
20:56:00.0147 4892 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:56:00.0147 4892 AsyncMac - ok
20:56:00.0178 4892 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\DRIVERS\atapi.sys
20:56:00.0178 4892 atapi - ok
20:56:00.0287 4892 [ b2931c83cfb12a3223a47b180473ae1a ] athr C:\Windows\system32\DRIVERS\athrx.sys
20:56:00.0334 4892 athr - ok
20:56:00.0396 4892 [ 4bf5bca6e2608cd8a00bc4a6673a9f47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
20:56:00.0396 4892 AtiHDAudioService - ok
20:56:00.0412 4892 [ 7910158929571214a959d5a6d16dd9c0 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
20:56:00.0427 4892 ATKGFNEXSrv - ok
20:56:00.0443 4892 [ 1f7238a37389ed92e9d8eee975cabd54 ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
20:56:00.0443 4892 ATKWMIACPIIO - ok
20:56:00.0490 4892 [ 07721a77180edd4d39ccb865bf63c7fd ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:56:00.0505 4892 AudioEndpointBuilder - ok
20:56:00.0552 4892 [ 07721a77180edd4d39ccb865bf63c7fd ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:56:00.0568 4892 AudioSrv - ok
20:56:00.0599 4892 [ b20b5fa5ca050e9926e4d1db81501b32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:56:00.0599 4892 AxInstSV - ok
20:56:00.0646 4892 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:56:00.0646 4892 b06bdrv - ok
20:56:00.0693 4892 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:56:00.0708 4892 b57nd60a - ok
20:56:00.0739 4892 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:56:00.0755 4892 BDESVC - ok
20:56:00.0771 4892 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:56:00.0771 4892 Beep - ok
20:56:00.0817 4892 [ 4992c609a6315671463e30f6512bc022 ] BFE C:\Windows\System32\bfe.dll
20:56:00.0833 4892 BFE - ok
20:56:00.0864 4892 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:56:00.0864 4892 blbdrive - ok
20:56:00.0911 4892 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:56:00.0927 4892 Bonjour Service - ok
20:56:00.0973 4892 [ 19d20159708e152267e53b66677a4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:56:00.0973 4892 bowser - ok
20:56:01.0005 4892 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:56:01.0005 4892 BrFiltLo - ok
20:56:01.0020 4892 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:56:01.0020 4892 BrFiltUp - ok
20:56:01.0067 4892 [ 94fbc06f294d58d02361918418f996e3 ] Browser C:\Windows\System32\browser.dll
20:56:01.0067 4892 Browser - ok
20:56:01.0098 4892 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:56:01.0114 4892 Brserid - ok
20:56:01.0145 4892 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:56:01.0145 4892 BrSerWdm - ok
20:56:01.0161 4892 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:56:01.0161 4892 BrUsbMdm - ok
20:56:01.0192 4892 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:56:01.0192 4892 BrUsbSer - ok
20:56:01.0223 4892 [ cf98190a94f62e405c8cb255018b2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:56:01.0223 4892 BthEnum - ok
20:56:01.0254 4892 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:56:01.0254 4892 BTHMODEM - ok
20:56:01.0285 4892 [ 02dd601b708dd0667e1331fa8518e9ff ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:56:01.0285 4892 BthPan - ok
20:56:01.0332 4892 [ 21084ceb85280468c9aca3c805c0f8cf ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:56:01.0348 4892 BTHPORT - ok
20:56:01.0379 4892 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
20:56:01.0379 4892 bthserv - ok
20:56:01.0410 4892 [ 8504842634dd144c075b6b0c982ccec4 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:56:01.0410 4892 BTHUSB - ok
20:56:01.0441 4892 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:56:01.0441 4892 cdfs - ok
20:56:01.0473 4892 [ 83d2d75e1efb81b3450c18131443f7db ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:56:01.0473 4892 cdrom - ok
20:56:01.0504 4892 [ 312e2f82af11e79906898ac3e3d58a1f ] CertPropSvc C:\Windows\System32\certprop.dll
20:56:01.0504 4892 CertPropSvc - ok
20:56:01.0535 4892 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:56:01.0535 4892 circlass - ok
20:56:01.0566 4892 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
20:56:01.0582 4892 CLFS - ok
20:56:01.0644 4892 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:56:01.0660 4892 clr_optimization_v2.0.50727_32 - ok
20:56:01.0707 4892 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:56:01.0722 4892 clr_optimization_v2.0.50727_64 - ok
20:56:01.0800 4892 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:56:01.0800 4892 clr_optimization_v4.0.30319_32 - ok
20:56:01.0847 4892 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:56:01.0847 4892 clr_optimization_v4.0.30319_64 - ok
20:56:01.0878 4892 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:56:01.0878 4892 CmBatt - ok
20:56:01.0894 4892 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
20:56:01.0909 4892 cmdide - ok
20:56:01.0925 4892 [ f95fd4cb7da00ba2a63ce9f6b5c053e1 ] CNG C:\Windows\system32\Drivers\cng.sys
20:56:01.0941 4892 CNG - ok
20:56:01.0972 4892 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:56:01.0972 4892 Compbatt - ok
20:56:02.0003 4892 [ f26b3a86f6fa87ca360b879581ab4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:56:02.0003 4892 CompositeBus - ok
20:56:02.0019 4892 COMSysApp - ok
20:56:02.0034 4892 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:56:02.0034 4892 crcdisk - ok
20:56:02.0081 4892 [ 8c57411b66282c01533cb776f98ad384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:56:02.0081 4892 CryptSvc - ok
20:56:02.0143 4892 [ 7266972e86890e2b30c0c322e906b027 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:56:02.0159 4892 DcomLaunch - ok
20:56:02.0221 4892 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
20:56:02.0221 4892 defragsvc - ok
20:56:02.0268 4892 [ 9c253ce7311ca60fc11c774692a13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:56:02.0268 4892 DfsC - ok
20:56:02.0315 4892 [ 113212d25d0c9bb8901a9833774da97f ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
20:56:02.0315 4892 dg_ssudbus - ok
20:56:02.0362 4892 [ ce3b9562d997f69b330d181a8875960f ] Dhcp C:\Windows\system32\dhcpcore.dll
20:56:02.0362 4892 Dhcp - ok
20:56:02.0393 4892 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
20:56:02.0393 4892 discache - ok
20:56:02.0424 4892 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:56:02.0424 4892 Disk - ok
20:56:02.0471 4892 [ 85cf424c74a1d5ec33533e1dbff9920a ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:56:02.0487 4892 Dnscache - ok
20:56:02.0518 4892 [ 14452acdb09b70964c8c21bf80a13acb ] dot3svc C:\Windows\System32\dot3svc.dll
20:56:02.0518 4892 dot3svc - ok
20:56:02.0549 4892 [ 8c2ba6bea949ee6e68385f5692bafb94 ] DPS C:\Windows\system32\dps.dll
20:56:02.0549 4892 DPS - ok
20:56:02.0596 4892 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:56:02.0596 4892 drmkaud - ok
20:56:02.0674 4892 [ 1633b9abf52784a1331476397a48cbef ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:56:02.0689 4892 DXGKrnl - ok
20:56:02.0721 4892 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:56:02.0721 4892 EapHost - ok
20:56:02.0861 4892 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:56:02.0923 4892 ebdrv - ok
20:56:02.0970 4892 [ 0793f40b9b8a1bdd266296409dbd91ea ] EFS C:\Windows\System32\lsass.exe
20:56:02.0970 4892 EFS - ok
20:56:03.0064 4892 [ 47c071994c3f649f23d9cd075ac9304a ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:56:03.0079 4892 ehRecvr - ok
20:56:03.0111 4892 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
20:56:03.0111 4892 ehSched - ok
20:56:03.0173 4892 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:56:03.0189 4892 elxstor - ok
20:56:03.0220 4892 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
20:56:03.0220 4892 ErrDev - ok
20:56:03.0267 4892 [ 4c120d2b2ea269eae7a5744794eb6db1 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
20:56:03.0267 4892 ETD - ok
20:56:03.0313 4892 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
20:56:03.0329 4892 EventSystem - ok
20:56:03.0360 4892 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
20:56:03.0360 4892 exfat - ok
20:56:03.0391 4892 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:56:03.0391 4892 fastfat - ok
20:56:03.0469 4892 [ d607b2f1bee3992aa6c2c92c0a2f0855 ] Fax C:\Windows\system32\fxssvc.exe
20:56:03.0469 4892 Fax - ok
20:56:03.0501 4892 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:56:03.0501 4892 fdc - ok
20:56:03.0532 4892 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:56:03.0532 4892 fdPHost - ok
20:56:03.0594 4892 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:56:03.0594 4892 FDResPub - ok
20:56:03.0625 4892 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:56:03.0625 4892 FileInfo - ok
20:56:03.0657 4892 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:56:03.0657 4892 Filetrace - ok
20:56:03.0672 4892 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:56:03.0672 4892 flpydisk - ok
20:56:03.0688 4892 [ f7866af72abbaf84b1fa5aa195378c59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:56:03.0703 4892 FltMgr - ok
20:56:03.0766 4892 [ cb5e4b9c319e3c6bb363eb7e58a4a051 ] FontCache C:\Windows\system32\FntCache.dll
20:56:03.0797 4892 FontCache - ok
20:56:03.0859 4892 [ 8d89e3131c27fdd6932189cb785e1b7a ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:56:03.0859 4892 FontCache3.0.0.0 - ok
20:56:03.0891 4892 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:56:03.0891 4892 FsDepends - ok
20:56:03.0922 4892 [ 6c06701bf1db05405804d7eb610991ce ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
20:56:03.0922 4892 fssfltr - ok
20:56:04.0015 4892 [ 4ce9dac1518ff7e77bd213e6394b9d77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:56:04.0031 4892 fsssvc - ok
20:56:04.0062 4892 [ e95ef8547de20cf0603557c0cf7a9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:56:04.0062 4892 Fs_Rec - ok
20:56:04.0125 4892 [ ae87ba80d0ec3b57126ed2cdc15b24ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:56:04.0125 4892 fvevol - ok
20:56:04.0156 4892 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:56:04.0156 4892 gagp30kx - ok
20:56:04.0218 4892 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:56:04.0218 4892 GEARAspiWDM - ok
20:56:04.0265 4892 [ fe5ab4525bc2ec68b9119a6e5d40128b ] gpsvc C:\Windows\System32\gpsvc.dll
20:56:04.0281 4892 gpsvc - ok
20:56:04.0359 4892 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:56:04.0374 4892 gupdate - ok
20:56:04.0390 4892 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:56:04.0390 4892 gupdatem - ok
20:56:04.0421 4892 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:56:04.0437 4892 gusvc - ok
20:56:04.0452 4892 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:56:04.0468 4892 hcw85cir - ok
20:56:04.0483 4892 [ 6410f6f415b2a5a9037224c41da8bf12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:56:04.0499 4892 HdAudAddService - ok
20:56:04.0530 4892 [ 0a49913402747a0b67de940fb42cbdbb ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:56:04.0530 4892 HDAudBus - ok
20:56:04.0546 4892 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:56:04.0546 4892 HidBatt - ok
20:56:04.0577 4892 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:56:04.0577 4892 HidBth - ok
20:56:04.0593 4892 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:56:04.0593 4892 HidIr - ok
20:56:04.0624 4892 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
20:56:04.0624 4892 hidserv - ok
20:56:04.0655 4892 [ b3bf6b5b50006def50b66306d99fcf6f ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:56:04.0655 4892 HidUsb - ok
20:56:04.0686 4892 [ efa58ede58dd74388ffd04cb32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:56:04.0686 4892 hkmsvc - ok
20:56:04.0717 4892 [ 046b2673767ca626e2cfb7fdf735e9e8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:56:04.0717 4892 HomeGroupListener - ok
20:56:04.0764 4892 [ 06a7422224d9865a5613710a089987df ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:56:04.0780 4892 HomeGroupProvider - ok
20:56:04.0795 4892 [ 0886d440058f203eba0e1825e4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
20:56:04.0795 4892 HpSAMD - ok
20:56:04.0858 4892 [ cee049cac4efa7f4e1e4ad014414a5d4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:56:04.0873 4892 HTTP - ok
20:56:04.0889 4892 [ f17766a19145f111856378df337a5d79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:56:04.0889 4892 hwpolicy - ok
20:56:04.0920 4892 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:56:04.0920 4892 i8042prt - ok
20:56:04.0967 4892 [ b75e45c564e944a2657167d197ab29da ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:56:04.0983 4892 iaStorV - ok
20:56:05.0076 4892 [ 2f2be70d3e02b6fa877921ab9516d43c ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:56:05.0092 4892 idsvc - ok
20:56:05.0123 4892 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:56:05.0123 4892 iirsp - ok
20:56:05.0185 4892 [ c5b4683680df085b57bc53e5ef34861f ] IKEEXT C:\Windows\System32\ikeext.dll
20:56:05.0201 4892 IKEEXT - ok
20:56:05.0341 4892 [ 2cc2f7c5990bb76767038f4b16d17a56 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:56:05.0388 4892 IntcAzAudAddService - ok
20:56:05.0419 4892 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\DRIVERS\intelide.sys
20:56:05.0419 4892 intelide - ok
20:56:05.0435 4892 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:56:05.0435 4892 intelppm - ok
20:56:05.0466 4892 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:56:05.0482 4892 IPBusEnum - ok
20:56:05.0497 4892 [ 722dd294df62483cecaae6e094b4d695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:56:05.0497 4892 IpFilterDriver - ok
20:56:05.0544 4892 [ f8e058d17363ec580e4b7232778b6cb5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:56:05.0560 4892 iphlpsvc - ok
20:56:05.0575 4892 [ e2b4a4494db7cb9b89b55ca268c337c5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:56:05.0575 4892 IPMIDRV - ok
20:56:05.0607 4892 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:56:05.0607 4892 IPNAT - ok
20:56:05.0669 4892 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:56:05.0685 4892 iPod Service - ok
20:56:05.0716 4892 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:56:05.0716 4892 IRENUM - ok
20:56:05.0731 4892 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
20:56:05.0731 4892 isapnp - ok
20:56:05.0763 4892 [ fa4d2557de56d45b0a346f93564be6e1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:56:05.0778 4892 iScsiPrt - ok
20:56:05.0809 4892 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:56:05.0809 4892 kbdclass - ok
20:56:05.0825 4892 [ 6def98f8541e1b5dceb2c822a11f7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:56:05.0825 4892 kbdhid - ok
20:56:05.0872 4892 [ e63ef8c3271d014f14e2469ce75fecb4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
20:56:05.0872 4892 kbfiltr - ok
20:56:05.0887 4892 [ 0793f40b9b8a1bdd266296409dbd91ea ] KeyIso C:\Windows\system32\lsass.exe
20:56:05.0887 4892 KeyIso - ok
20:56:05.0919 4892 [ e8b6fcc9c83535c67f835d407620bd27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:56:05.0919 4892 KSecDD - ok
20:56:05.0950 4892 [ a8c63880ef6f4d3fec7b616b9c060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:56:05.0950 4892 KSecPkg - ok
20:56:05.0981 4892 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:56:05.0981 4892 ksthunk - ok
20:56:06.0028 4892 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
20:56:06.0043 4892 KtmRm - ok
20:56:06.0075 4892 [ 033b4aed2c5519072c0d81e00804d003 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
20:56:06.0075 4892 L1C - ok
20:56:06.0121 4892 [ 81f1d04d4d0e433099365127375fd501 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:56:06.0137 4892 LanmanServer - ok
20:56:06.0199 4892 [ 27026eac8818e8a6c00a1cad2f11d29a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:56:06.0199 4892 LanmanWorkstation - ok
20:56:06.0246 4892 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:56:06.0246 4892 lltdio - ok
20:56:06.0293 4892 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:56:06.0293 4892 lltdsvc - ok
20:56:06.0324 4892 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:56:06.0324 4892 lmhosts - ok
20:56:06.0371 4892 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:56:06.0371 4892 LSI_FC - ok
20:56:06.0402 4892 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:56:06.0402 4892 LSI_SAS - ok
20:56:06.0433 4892 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:56:06.0433 4892 LSI_SAS2 - ok
20:56:06.0449 4892 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:56:06.0449 4892 LSI_SCSI - ok
20:56:06.0480 4892 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
20:56:06.0496 4892 luafv - ok
20:56:06.0574 4892 [ f453d1e6d881e8f8717e20ccd4199e85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
20:56:06.0574 4892 McComponentHostService - ok
20:56:06.0621 4892 [ f84c8f1000bc11e3b7b23cbd3baff111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:56:06.0621 4892 Mcx2Svc - ok
20:56:06.0652 4892 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:56:06.0652 4892 megasas - ok
20:56:06.0699 4892 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:56:06.0699 4892 MegaSR - ok
20:56:06.0730 4892 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
20:56:06.0730 4892 MMCSS - ok
20:56:06.0761 4892 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:56:06.0761 4892 Modem - ok
20:56:06.0792 4892 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:56:06.0792 4892 monitor - ok
20:56:06.0808 4892 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:56:06.0808 4892 mouclass - ok
20:56:06.0839 4892 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:56:06.0839 4892 mouhid - ok
20:56:06.0870 4892 [ 791af66c4d0e7c90a3646066386fb571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:56:06.0870 4892 mountmgr - ok
20:56:06.0933 4892 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:56:06.0933 4892 MozillaMaintenance - ok
20:56:06.0964 4892 [ 609d1d87649ecc19796f4d76d4c15cea ] mpio C:\Windows\system32\DRIVERS\mpio.sys
20:56:06.0964 4892 mpio - ok
20:56:06.0995 4892 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:56:06.0995 4892 mpsdrv - ok
20:56:07.0042 4892 [ aecab449567d1846dad63ece49e893e3 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:56:07.0057 4892 MpsSvc - ok
20:56:07.0104 4892 [ 30524261bb51d96d6fcbac20c810183c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:56:07.0120 4892 MRxDAV - ok
20:56:07.0151 4892 [ 040d62a9d8ad28922632137acdd984f2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:56:07.0151 4892 mrxsmb - ok
20:56:07.0198 4892 [ f0067552f8f9b33d7c59403ab808a3cb ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:56:07.0198 4892 mrxsmb10 - ok
20:56:07.0229 4892 [ 3c142d31de9f2f193218a53fe2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:56:07.0229 4892 mrxsmb20 - ok
20:56:07.0260 4892 [ 5c37497276e3b3a5488b23a326a754b7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
20:56:07.0260 4892 msahci - ok
20:56:07.0307 4892 [ 8d27b597229aed79430fb9db3bcbfbd0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
20:56:07.0307 4892 msdsm - ok
20:56:07.0338 4892 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
20:56:07.0338 4892 MSDTC - ok
20:56:07.0385 4892 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:56:07.0385 4892 Msfs - ok
20:56:07.0416 4892 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:56:07.0416 4892 mshidkmdf - ok
20:56:07.0432 4892 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
20:56:07.0432 4892 msisadrv - ok
20:56:07.0494 4892 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:56:07.0494 4892 MSiSCSI - ok
20:56:07.0510 4892 msiserver - ok
20:56:07.0541 4892 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:56:07.0541 4892 MSKSSRV - ok
20:56:07.0572 4892 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:56:07.0588 4892 MSPCLOCK - ok
20:56:07.0603 4892 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:56:07.0603 4892 MSPQM - ok
20:56:07.0650 4892 [ 89cb141aa8616d8c6a4610fa26c60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:56:07.0666 4892 MsRPC - ok
20:56:07.0697 4892 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:56:07.0697 4892 mssmbios - ok
20:56:07.0728 4892 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:56:07.0728 4892 MSTEE - ok
20:56:07.0759 4892 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:56:07.0759 4892 MTConfig - ok
20:56:07.0791 4892 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:56:07.0791 4892 Mup - ok
20:56:07.0822 4892 [ 4987e079a4530fa737a128be54b63b12 ] napagent C:\Windows\system32\qagentRT.dll
20:56:07.0837 4892 napagent - ok
20:56:07.0884 4892 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:56:07.0884 4892 NativeWifiP - ok
20:56:07.0931 4892 [ cad515dbd07d082bb317d9928ce8962c ] NDIS C:\Windows\system32\drivers\ndis.sys
20:56:07.0947 4892 NDIS - ok
20:56:07.0978 4892 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:56:07.0978 4892 NdisCap - ok
20:56:08.0009 4892 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:56:08.0009 4892 NdisTapi - ok
20:56:08.0040 4892 [ f105ba1e22bf1f2ee8f005d4305e4bec ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:56:08.0040 4892 Ndisuio - ok
20:56:08.0056 4892 [ 557dfab9ca1fcb036ac77564c010dad3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:56:08.0071 4892 NdisWan - ok
20:56:08.0087 4892 [ 659b74fb74b86228d6338d643cd3e3cf ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:56:08.0087 4892 NDProxy - ok
20:56:08.0118 4892 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:56:08.0118 4892 NetBIOS - ok
20:56:08.0149 4892 [ 9162b273a44ab9dce5b44362731d062a ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:56:08.0149 4892 NetBT - ok
20:56:08.0181 4892 [ 0793f40b9b8a1bdd266296409dbd91ea ] Netlogon C:\Windows\system32\lsass.exe
20:56:08.0181 4892 Netlogon - ok
20:56:08.0227 4892 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32\netman.dll
20:56:08.0243 4892 Netman - ok
20:56:08.0274 4892 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32\netprofm.dll
20:56:08.0290 4892 netprofm - ok
20:56:08.0337 4892 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:56:08.0337 4892 NetTcpPortSharing - ok
20:56:08.0368 4892 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:56:08.0368 4892 nfrd960 - ok
20:56:08.0415 4892 [ d9a0ce66046d6efa0c61baa885cba0a8 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:56:08.0415 4892 NlaSvc - ok
20:56:08.0446 4892 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:56:08.0446 4892 Npfs - ok
20:56:08.0493 4892 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:56:08.0493 4892 nsi - ok
20:56:08.0508 4892 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:56:08.0508 4892 nsiproxy - ok
20:56:08.0617 4892 [ 378e0e0dfea67d98ae6ea53adbbd76bc ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:56:08.0633 4892 Ntfs - ok
20:56:08.0664 4892 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
20:56:08.0664 4892 Null - ok
20:56:08.0711 4892 [ a4d9c9a608a97f59307c2f2600edc6a4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:56:08.0711 4892 nvraid - ok
20:56:08.0758 4892 [ 6c1d5f70e7a6a3fd1c90d840edc048b9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:56:08.0758 4892 nvstor - ok
20:56:08.0789 4892 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
20:56:08.0789 4892 nv_agp - ok
20:56:08.0883 4892 [ 1f0e05dff4f5a833168e49be1256f002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:56:08.0898 4892 odserv - ok
20:56:08.0929 4892 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:56:08.0929 4892 ohci1394 - ok
20:56:08.0976 4892 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:56:08.0976 4892 ose - ok
20:56:09.0023 4892 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:56:09.0039 4892 p2pimsvc - ok
20:56:09.0070 4892 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:56:09.0085 4892 p2psvc - ok
20:56:09.0163 4892 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:56:09.0163 4892 Parport - ok
20:56:09.0195 4892 [ 7daa117143316c4a1537e074a5a9eaf0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:56:09.0195 4892 partmgr - ok
20:56:09.0226 4892 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:56:09.0241 4892 PcaSvc - ok
20:56:09.0273 4892 [ f36f6504009f2fb0dfd1b17a116ad74b ] pci C:\Windows\system32\DRIVERS\pci.sys
20:56:09.0273 4892 pci - ok
20:56:09.0304 4892 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
20:56:09.0304 4892 pciide - ok
20:56:09.0335 4892 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:56:09.0335 4892 pcmcia - ok
20:56:09.0382 4892 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:56:09.0382 4892 pcw - ok
20:56:09.0429 4892 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:56:09.0444 4892 PEAUTH - ok
20:56:09.0569 4892 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:56:09.0569 4892 PerfHost - ok
20:56:09.0663 4892 [ 557e9a86f65f0de18c9b6751dfe9d3f1 ] pla C:\Windows\system32\pla.dll
20:56:09.0694 4892 pla - ok
20:56:09.0741 4892 [ 98b1721b8718164293b9701b98c52d77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:56:09.0756 4892 PlugPlay - ok
20:56:09.0787 4892 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:56:09.0787 4892 PNRPAutoReg - ok
20:56:09.0834 4892 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:56:09.0834 4892 PNRPsvc - ok
20:56:09.0881 4892 [ 166eb40d1f5b47e615de3d0fffe5f243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:56:09.0881 4892 PolicyAgent - ok
20:56:09.0928 4892 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
20:56:09.0943 4892 Power - ok
20:56:09.0959 4892 [ 27cc19e81ba5e3403c48302127bda717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:56:09.0959 4892 PptpMiniport - ok
20:56:09.0990 4892 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:56:09.0990 4892 Processor - ok
20:56:10.0021 4892 [ f381975e1f4346de875cb07339ce8d3a ] ProfSvc C:\Windows\system32\profsvc.dll
20:56:10.0037 4892 ProfSvc - ok
20:56:10.0053 4892 [ 0793f40b9b8a1bdd266296409dbd91ea ] ProtectedStorage C:\Windows\system32\lsass.exe
20:56:10.0053 4892 ProtectedStorage - ok
20:56:10.0084 4892 [ ee992183bd8eaefd9973f352e587a299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:56:10.0084 4892 Psched - ok
20:56:10.0162 4892 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:56:10.0193 4892 ql2300 - ok
20:56:10.0255 4892 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:56:10.0255 4892 ql40xx - ok
20:56:10.0287 4892 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
20:56:10.0287 4892 QWAVE - ok
20:56:10.0318 4892 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:56:10.0318 4892 QWAVEdrv - ok
20:56:10.0333 4892 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:56:10.0333 4892 RasAcd - ok
20:56:10.0365 4892 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:56:10.0365 4892 RasAgileVpn - ok
20:56:10.0411 4892 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
20:56:10.0411 4892 RasAuto - ok
20:56:10.0443 4892 [ 87a6e852a22991580d6d39adc4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:56:10.0443 4892 Rasl2tp - ok
20:56:10.0489 4892 [ 47394ed3d16d053f5906efe5ab51cc83 ] RasMan C:\Windows\System32\rasmans.dll
20:56:10.0489 4892 RasMan - ok
20:56:10.0521 4892 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:56:10.0521 4892 RasPppoe - ok
20:56:10.0552 4892 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:56:10.0552 4892 RasSstp - ok
20:56:10.0599 4892 [ 3bac8142102c15d59a87757c1d41dce5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:56:10.0599 4892 rdbss - ok
20:56:10.0630 4892 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:56:10.0630 4892 rdpbus - ok
20:56:10.0661 4892 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:56:10.0661 4892 RDPCDD - ok
20:56:10.0692 4892 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:56:10.0692 4892 RDPENCDD - ok
20:56:10.0723 4892 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:56:10.0723 4892 RDPREFMP - ok
20:56:10.0755 4892 [ 8a3e6bea1c53ea6177fe2b6eba2c80d7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:56:10.0770 4892 RDPWD - ok
20:56:10.0786 4892 [ e5dc9ba9e439d6dbdd79f8caacb5bf01 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:56:10.0801 4892 rdyboost - ok
20:56:10.0833 4892 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:56:10.0848 4892 RemoteAccess - ok
20:56:10.0864 4892 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:56:10.0879 4892 RemoteRegistry - ok
20:56:10.0911 4892 [ 3dd798846e2c28102b922c56e71b7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:56:10.0911 4892 RFCOMM - ok
20:56:10.0942 4892 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:56:10.0957 4892 RpcEptMapper - ok
20:56:11.0004 4892 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
20:56:11.0004 4892 RpcLocator - ok
20:56:11.0035 4892 [ 7266972e86890e2b30c0c322e906b027 ] RpcSs C:\Windows\system32\rpcss.dll
20:56:11.0051 4892 RpcSs - ok
20:56:11.0129 4892 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:56:11.0129 4892 rspndr - ok
20:56:11.0176 4892 [ 135a64530d7699ad48f29d73a658dd11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
20:56:11.0176 4892 RSUSBSTOR - ok
20:56:11.0238 4892 [ 6d3c7e7d82d3dc92dc2a8b0df9f20f8a ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:56:11.0254 4892 RTL8167 - ok
20:56:11.0269 4892 [ 0793f40b9b8a1bdd266296409dbd91ea ] SamSs C:\Windows\system32\lsass.exe
20:56:11.0269 4892 SamSs - ok
20:56:11.0285 4892 [ e3bbb89983daf5622c1d50cf49f28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
20:56:11.0285 4892 sbp2port - ok
20:56:11.0332 4892 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:56:11.0332 4892 SCardSvr - ok
20:56:11.0363 4892 [ c94da20c7e3ba1dca269bc8460d98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:56:11.0363 4892 scfilter - ok
20:56:11.0425 4892 [ 624d0f5ff99428bb90a5b8a4123e918e ] Schedule C:\Windows\system32\schedsvc.dll
20:56:11.0457 4892 Schedule - ok
20:56:11.0488 4892 [ 312e2f82af11e79906898ac3e3d58a1f ] SCPolicySvc C:\Windows\System32\certprop.dll
20:56:11.0488 4892 SCPolicySvc - ok
20:56:11.0535 4892 [ 765a27c3279ce11d14cb9e4f5869fca5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:56:11.0535 4892 SDRSVC - ok
20:56:11.0566 4892 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:56:11.0566 4892 secdrv - ok
20:56:11.0597 4892 [ 463b386ebc70f98da5dff85f7e654346 ] seclogon C:\Windows\system32\seclogon.dll
20:56:11.0597 4892 seclogon - ok
20:56:11.0628 4892 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
20:56:11.0628 4892 SENS - ok
20:56:11.0659 4892 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:56:11.0659 4892 SensrSvc - ok
20:56:11.0691 4892 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:56:11.0691 4892 Serenum - ok
20:56:11.0722 4892 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:56:11.0722 4892 Serial - ok
20:56:11.0737 4892 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:56:11.0737 4892 sermouse - ok
20:56:11.0800 4892 [ c3bc61ce47ff6f4e88ab8a3b429a36af ] SessionEnv C:\Windows\system32\sessenv.dll
20:56:11.0815 4892 SessionEnv - ok
20:56:11.0831 4892 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:56:11.0831 4892 sffdisk - ok
20:56:11.0847 4892 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:56:11.0847 4892 sffp_mmc - ok
20:56:11.0862 4892 [ 178298f767fe638c9fedcbdef58bb5e4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:56:11.0862 4892 sffp_sd - ok
20:56:11.0893 4892 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:56:11.0893 4892 sfloppy - ok
20:56:11.0940 4892 [ b95f6501a2f8b2e78c697fec401970ce ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:56:11.0956 4892 SharedAccess - ok
20:56:11.0987 4892 [ 0298ac45d0efffb2db4baa7dd186e7bf ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:56:12.0003 4892 ShellHWDetection - ok
20:56:12.0034 4892 [ 1bc348cf6baa90ec8e533ef6e6a69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
20:56:12.0034 4892 SiSGbeLH - ok
20:56:12.0065 4892 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:56:12.0065 4892 SiSRaid2 - ok
20:56:12.0096 4892 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:56:12.0096 4892 SiSRaid4 - ok
20:56:12.0143 4892 [ 6128e98eaaed364ed1a32708d2fd22cb ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:56:12.0143 4892 SkypeUpdate - ok
20:56:12.0159 4892 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:56:12.0159 4892 Smb - ok
20:56:12.0205 4892 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:56:12.0205 4892 SNMPTRAP - ok
20:56:12.0237 4892 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:56:12.0237 4892 spldr - ok
20:56:12.0283 4892 [ f8e1fa03cb70d54a9892ac88b91d1e7b ] Spooler C:\Windows\System32\spoolsv.exe
20:56:12.0299 4892 Spooler - ok
20:56:12.0424 4892 [ 913d843498553a1bc8f8dbad6358e49f ] sppsvc C:\Windows\system32\sppsvc.exe
20:56:12.0486 4892 sppsvc - ok
20:56:12.0517 4892 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:56:12.0533 4892 sppuinotify - ok
20:56:12.0580 4892 [ 2408c0366d96bcdf63e8f1c78e4a29c5 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:56:12.0580 4892 srv - ok
20:56:12.0627 4892 [ 76548f7b818881b47d8d1ae1be9c11f8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:56:12.0627 4892 srv2 - ok
20:56:12.0673 4892 [ 0af6e19d39c70844c5caa8fb0183c36e ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:56:12.0673 4892 srvnet - ok
20:56:12.0705 4892 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:56:12.0720 4892 SSDPSRV - ok
20:56:12.0736 4892 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:56:12.0736 4892 SstpSvc - ok
20:56:12.0798 4892 [ 78cd64791f8634cf7b582fd085e57c4b ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
20:56:12.0798 4892 ssudmdm - ok
20:56:12.0829 4892 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:56:12.0829 4892 stexstor - ok
20:56:12.0907 4892 [ 52d0e33b681bd0f33fdc08812fee4f7d ] stisvc C:\Windows\System32\wiaservc.dll
20:56:12.0923 4892 stisvc - ok
20:56:12.0954 4892 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:56:12.0954 4892 swenum - ok
20:56:13.0001 4892 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
20:56:13.0017 4892 swprv - ok
20:56:13.0095 4892 [ 3c1284516a62078fb68f768de4f1a7be ] SysMain C:\Windows\system32\sysmain.dll
20:56:13.0126 4892 SysMain - ok
20:56:13.0157 4892 [ 238935c3cf2854886dc7cbb2a0e2cc66 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:56:13.0173 4892 TabletInputService - ok
20:56:13.0204 4892 [ 884264ac597b690c5707c89723bb8e7b ] TapiSrv C:\Windows\System32\tapisrv.dll
20:56:13.0204 4892 TapiSrv - ok
20:56:13.0235 4892 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
20:56:13.0251 4892 TBS - ok
20:56:13.0344 4892 [ f18f56efc0bfb9c87ba01c37b27f4da5 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:56:13.0375 4892 Tcpip - ok
20:56:13.0469 4892 [ f18f56efc0bfb9c87ba01c37b27f4da5 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:56:13.0500 4892 TCPIP6 - ok
20:56:13.0547 4892 [ 76d078af6f587b162d50210f761eb9ed ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:56:13.0547 4892 tcpipreg - ok
20:56:13.0578 4892 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:56:13.0578 4892 TDPIPE - ok
20:56:13.0609 4892 [ e4245bda3190a582d55ed09e137401a9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:56:13.0609 4892 TDTCP - ok
20:56:13.0641 4892 [ 079125c4b17b01fcaeebce0bcb290c0f ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:56:13.0641 4892 tdx - ok
20:56:13.0672 4892 [ c448651339196c0e869a355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:56:13.0672 4892 TermDD - ok
20:56:13.0719 4892 [ 0f05ec2887bfe197ad82a13287d2f404 ] TermService C:\Windows\System32\termsrv.dll
20:56:13.0734 4892 TermService - ok
20:56:13.0765 4892 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
20:56:13.0765 4892 Themes - ok
20:56:13.0797 4892 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
20:56:13.0812 4892 THREADORDER - ok
20:56:13.0828 4892 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
20:56:13.0843 4892 TrkWks - ok
20:56:13.0906 4892 [ 840f7fb849f5887a49ba18c13b2da920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:56:13.0906 4892 TrustedInstaller - ok
20:56:13.0937 4892 [ 61b96c26131e37b24e93327a0bd1fb95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:56:13.0953 4892 tssecsrv - ok
20:56:13.0968 4892 [ 3836171a2cdf3af8ef10856db9835a70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:56:13.0968 4892 tunnel - ok
20:56:13.0999 4892 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:56:13.0999 4892 uagp35 - ok
20:56:14.0031 4892 [ d47baead86c65d4f4069d7ce0a4edceb ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:56:14.0046 4892 udfs - ok
20:56:14.0093 4892 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:56:14.0093 4892 UI0Detect - ok
20:56:14.0124 4892 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
20:56:14.0124 4892 uliagpkx - ok
20:56:14.0171 4892 [ eab6c35e62b1b0db0d1b48b671d3a117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:56:14.0171 4892 umbus - ok
20:56:14.0202 4892 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:56:14.0202 4892 UmPass - ok
20:56:14.0249 4892 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
20:56:14.0249 4892 upnphost - ok
20:56:14.0311 4892 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:56:14.0311 4892 USBAAPL64 - ok
20:56:14.0358 4892 [ 537a4e03d7103c12d42dfd8ffdb5bdc9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:56:14.0358 4892 usbccgp - ok
20:56:14.0389 4892 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
20:56:14.0389 4892 usbcir - ok
20:56:14.0436 4892 [ fbb21ebe49f6d560db37ac25fbc68e66 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:56:14.0436 4892 usbehci - ok
20:56:14.0483 4892 [ 76e2ffad301490ba27b947c6507752fb ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:56:14.0483 4892 usbfilter - ok
20:56:14.0514 4892 [ 6b7a8a99c4a459e73c286a6763ea24cc ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:56:14.0530 4892 usbhub - ok
20:56:14.0545 4892 [ 8c88aa7617b4cbc2e4bed61d26b33a27 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:56:14.0545 4892 usbohci - ok
20:56:14.0592 4892 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:56:14.0592 4892 usbprint - ok
20:56:14.0608 4892 [ f39983647bc1f3e6100778ddfe9dce29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:56:14.0608 4892 USBSTOR - ok
20:56:14.0639 4892 [ 0b5b3b2df3fd1709618acfa50b8392b0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:56:14.0655 4892 usbuhci - ok
20:56:14.0686 4892 [ 7cb8c573c6e4a2714402cc0a36eab4fe ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:56:14.0686 4892 usbvideo - ok
20:56:14.0717 4892 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
20:56:14.0717 4892 UxSms - ok
20:56:14.0748 4892 [ 0793f40b9b8a1bdd266296409dbd91ea ] VaultSvc C:\Windows\system32\lsass.exe
20:56:14.0748 4892 VaultSvc - ok
20:56:14.0779 4892 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
20:56:14.0779 4892 vdrvroot - ok
20:56:14.0811 4892 [ 44d73e0bbc1d3c8981304ba15135c2f2 ] vds C:\Windows\System32\vds.exe
20:56:14.0826 4892 vds - ok
20:56:14.0857 4892 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:56:14.0857 4892 vga - ok
20:56:14.0889 4892 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
20:56:14.0889 4892 VgaSave - ok
20:56:14.0935 4892 [ c82e748660f62a242b2dfac1442f22a4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
20:56:14.0935 4892 vhdmp - ok
20:56:14.0967 4892 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
20:56:14.0967 4892 viaide - ok
20:56:14.0998 4892 [ 2b1a3dae2b4e70dbba822b7a03fbd4a3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
20:56:14.0998 4892 volmgr - ok
20:56:15.0013 4892 [ 99b0cbb569ca79acaed8c91461d765fb ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:56:15.0029 4892 volmgrx - ok
20:56:15.0060 4892 [ 58f82eed8ca24b461441f9c3e4f0bf5c ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
20:56:15.0060 4892 volsnap - ok
20:56:15.0107 4892 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:56:15.0107 4892 vsmraid - ok
20:56:15.0185 4892 [ 787898bf9fb6d7bd87a36e2d95c899ba ] VSS C:\Windows\system32\vssvc.exe
20:56:15.0216 4892 VSS - ok
20:56:15.0247 4892 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:56:15.0247 4892 vwifibus - ok
20:56:15.0279 4892 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:56:15.0279 4892 vwififlt - ok
20:56:15.0310 4892 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
20:56:15.0325 4892 W32Time - ok
20:56:15.0357 4892 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:56:15.0357 4892 WacomPen - ok
20:56:15.0388 4892 [ 47ca49400643effd3f1c9a27e1d69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:56:15.0388 4892 WANARP - ok
20:56:15.0403 4892 [ 47ca49400643effd3f1c9a27e1d69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:56:15.0403 4892 Wanarpv6 - ok
20:56:15.0497 4892 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:56:15.0513 4892 WatAdminSvc - ok
20:56:15.0591 4892 [ 5ab1bb85bd8b5089cc5d64200dedae68 ] wbengine C:\Windows\system32\wbengine.exe
20:56:15.0622 4892 wbengine - ok
20:56:15.0653 4892 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:56:15.0669 4892 WbioSrvc - ok
20:56:15.0715 4892 [ dd1bae8ebfc653824d29ccf8c9054d68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:56:15.0731 4892 wcncsvc - ok
20:56:15.0762 4892 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:56:15.0762 4892 WcsPlugInService - ok
20:56:15.0793 4892 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:56:15.0793 4892 Wd - ok
20:56:15.0825 4892 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:56:15.0840 4892 Wdf01000 - ok
20:56:15.0887 4892 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:56:15.0887 4892 WdiServiceHost - ok
20:56:15.0903 4892 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:56:15.0918 4892 WdiSystemHost - ok
20:56:15.0965 4892 [ 733006127f235be7c35354ebee7b9a7b ] WebClient C:\Windows\System32\webclnt.dll
20:56:15.0965 4892 WebClient - ok
20:56:15.0996 4892 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:56:16.0012 4892 Wecsvc - ok
20:56:16.0027 4892 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:56:16.0043 4892 wercplsupport - ok
20:56:16.0074 4892 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:56:16.0074 4892 WerSvc - ok
20:56:16.0105 4892 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:56:16.0105 4892 WfpLwf - ok
20:56:16.0152 4892 [ 52ded146e4797e6ccf94799e8e22bb2a ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:56:16.0152 4892 WimFltr - ok
20:56:16.0168 4892 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:56:16.0183 4892 WIMMount - ok
20:56:16.0215 4892 WinDefend - ok
20:56:16.0230 4892 WinHttpAutoProxySvc - ok
20:56:16.0324 4892 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:56:16.0324 4892 Winmgmt - ok
20:56:16.0417 4892 [ 41fbb751936b387f9179e7f03a74fe29 ] WinRM C:\Windows\system32\WsmSvc.dll
20:56:16.0449 4892 WinRM - ok
20:56:16.0511 4892 [ 4d52c872018af7e18d078978dcc3f6f2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:56:16.0511 4892 WinUsb - ok
20:56:16.0573 4892 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
20:56:16.0589 4892 Wlansvc - ok
20:56:16.0698 4892 [ 06c8fa1cf39de6a735b54d906ba791c6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:56:16.0698 4892 wlcrasvc - ok
20:56:16.0823 4892 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:56:16.0854 4892 wlidsvc - ok
20:56:16.0885 4892 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:56:16.0885 4892 WmiAcpi - ok
20:56:16.0932 4892 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:56:16.0932 4892 wmiApSrv - ok
20:56:16.0963 4892 WMPNetworkSvc - ok
20:56:17.0041 4892 [ 83b6ca03c846fcd47f9883d77d1eb27b ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
20:56:17.0041 4892 WMZuneComm - ok
20:56:17.0073 4892 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:56:17.0073 4892 WPCSvc - ok
20:56:17.0119 4892 [ 2e57ddf2880a7e52e76f41c7e96d327b ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:56:17.0135 4892 WPDBusEnum - ok
20:56:17.0166 4892 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:56:17.0166 4892 ws2ifsl - ok
20:56:17.0197 4892 [ 8f9f3969933c02da96eb0f84576db43e ] wscsvc C:\Windows\System32\wscsvc.dll
20:56:17.0213 4892 wscsvc - ok
20:56:17.0229 4892 WSearch - ok
20:56:17.0260 4892 [ 7cadc74271dd6461c452c271b30bd378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:56:17.0260 4892 WudfPf - ok
20:56:17.0291 4892 [ 3b197af0fff08aa66b6b2241ca538d64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:56:17.0291 4892 WUDFRd - ok
20:56:17.0307 4892 [ b551d6637aa0e132c18ac6e504f7b79b ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:56:17.0322 4892 wudfsvc - ok
20:56:17.0353 4892 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
20:56:17.0369 4892 WwanSvc - ok
20:56:17.0665 4892 [ 67b787c34fb2888d01b130ae007042d8 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
20:56:17.0806 4892 ZuneNetworkSvc - ok
20:56:17.0899 4892 [ 4d89fc1c20cf655739efac5da81a67bc ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
20:56:17.0899 4892 ZuneWlanCfgSvc - ok
20:56:17.0931 4892 ================ Scan global ===============================
20:56:17.0962 4892 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
20:56:17.0993 4892 (0cb6ebf4b461a6043353c570bd72a1e1) C:\Windows\system32\winsrv.dll
20:56:18.0024 4892 (0cb6ebf4b461a6043353c570bd72a1e1) C:\Windows\system32\winsrv.dll
20:56:18.0087 4892 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
20:56:18.0119 4892 (24acb7e5be595468e3b9aa488b9b4fcb) C:\Windows\system32\services.exe
20:56:18.0134 4892 [Global] - ok
20:56:18.0134 4892 ================ Scan MBR ==================================
20:56:18.0166 4892 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:56:18.0868 4892 \Device\Harddisk0\DR0 - ok
20:56:18.0868 4892 ================ Scan VBR ==================================
20:56:18.0868 4892 Boot (0x1200) (323f4a5153f8256b1cbc247198b08cd7) \Device\Harddisk0\DR0\Partition1
20:56:18.0883 4892 \Device\Harddisk0\DR0\Partition1 - ok
20:56:18.0914 4892 Boot (0x1200) (1797ae520911b62b2c4521d5eff05ee1) \Device\Harddisk0\DR0\Partition2
20:56:18.0914 4892 \Device\Harddisk0\DR0\Partition2 - ok
20:56:18.0914 4892 ============================================================
20:56:18.0914 4892 Scan finished
20:56:18.0914 4892 ============================================================
20:56:18.0946 3276 Detected object count: 0
20:56:18.0946 3276 Actual detected object count: 0
20:56:59.0089 5924 Deinitialize success



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:16 AM

Posted 20 August 2012 - 06:07 AM

Malwarebytes log?

Open your C drive

On top,click on Organize-folder and search options

Click on View tab and scroll down

Check mark Show hidden files
Uncheck Hide operating system files


Click ok,now go to

C:\Users\User1\AppData\Local\{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}

delete the folder

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}

Click on LOOK,post the generated log

Download

wuauserv
BITS

Launch them ,click YES when you get UAC prompt

restart the PC


Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
reset file permissions
Repair WMI
Remove Policies Set By Infections
Repair Winsock & DNS Cache


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Also download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#9 gagooba

gagooba
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:16 AM

Posted 21 August 2012 - 07:49 AM

MalwareBytes log

This is the third one clean, first one deleted detected malware and deleted should i post that log?

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.15.03

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
User1 :: ASUSK53U [administrator]

21/08/2012 7:02:46 PM
mbam-log-2012-08-21 (19-02-46).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 389166
Time elapsed: 1 hour(s), 22 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


System Look

SystemLook 30.07.11 by jpshortstuff
Log created at 19:10 on 21/08/2012 by User1
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\System32\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB
C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB

========== folderfind ==========

Searching for "{e8ff0e60-1b97-ddf9-64ee-6ae871d94b18}"
No folders found.

-= EOF =-



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:16 AM

Posted 21 August 2012 - 09:06 AM

Not needed.Other logs?

#11 gagooba

gagooba
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:16 AM

Posted 21 August 2012 - 10:14 AM

Rkill Log

I believe this is the only log left?

Rkill 2.2.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/22/2012 01:11:03 AM in x64 mode.
Windows Version: Windows 7

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* C:\Windows\SysWOW64\ACEngSvr.exe (PID: 3196) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings.

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\User1\Desktop\rkill\rkill-08-22-2012-01-11-11.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* ALERT: ZEROACCESS rootkit symptoms found!

* HKEY_CLASSES_ROOT\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32 [ZA Reg Hijack]

Checking Windows Service Integrity:

* AppMgmt [Missing Service]
* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 08/22/2012 01:11:35 AM
Execution time: 0 hours(s), 0 minute(s), and 31 seconds(s)



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:16 AM

Posted 21 August 2012 - 11:39 AM

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#13 gagooba

gagooba
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:05:16 AM

Posted 21 August 2012 - 05:11 PM

Autorun log

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ASUS WebStorage" " " "" "c:\program files (x86)\asus\asus webstorage\service\asuswsservice.exe"
+ "ETDCtrl" "ETD Control Center" "ELAN Microelectronics Corp." "c:\program files\elantech\etdctrl.exe"
+ "RtHDVBg" "HD Audio Background Process" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravbg64.exe"
+ "Setwallpaper" "" "" "File not found: c:\programdata\SetWallpaper.cmd"
+ "Zune Launcher" "Zune Auto-Launcher" "Microsoft Corporation" "c:\program files\zune\zunelauncher.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "ATKMEDIA" "ATK Media" "ASUS" "c:\program files (x86)\asus\atk package\atk media\dmedia.exe"
+ "ATKOSD2" "ATKOSD2" "ASUS" "c:\program files (x86)\asus\atk package\atkosd2\atkosd2.exe"
+ "HControlUser" "HControlUser" "ASUS" "c:\program files (x86)\asus\atk package\atk hotkey\hcontroluser.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "Nuance PDF Reader-reminder" "Ereg" "Nuance Communications, Inc." "c:\program files (x86)\nuance\pdf reader\ereg\ereg.exe"
+ "SonicMasterTray" "ASUS_MATray.exe" "Virage Logic Corporation / Sonic Focus" "c:\program files (x86)\asus\sonic focus\sonicfocustray.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "UpdateLBPShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files (x86)\cyberlink\labelprint\muitransfer\muistartmenu.exe"
+ "UpdateP2GoShortCut" "MUI StartMenu Application" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\muitransfer\muistartmenu.exe"
+ "Wireless Console 3" "Wireless Console 3" "" "c:\program files (x86)\asus\wireless console 3\wcourier.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "AsusVibeLauncher.lnk" "AsusVibe Application" "" "c:\program files (x86)\asus\asusvibe\asusvibelauncher.exe"
+ "FancyStart daemon.lnk" "" "" "c:\windows\installer\{2b81872b-a054-48da-be3b-fa5c164c303a}\_94e3ce3704fe82fbf49a6a.exe"
+ "McAfee Security Scan Plus.lnk" "McAfee Security Scanner Scheduler" "McAfee, Inc." "c:\program files (x86)\mcafee security scan\2.0.181\ssscheduler.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "KiesHelper" "Kies" "Samsung" "c:\program files (x86)\samsung\kies\kieshelper.exe"
+ "KiesPDLR" "KiesPDLR" "" "c:\program files (x86)\samsung\kies\external\firmwareupdate\kiespdlr.exe"
+ "KiesTrayAgent" "Kies TrayAgent Application" "Samsung Electronics Co., Ltd." "c:\program files (x86)\samsung\kies\kiestrayagent.exe"
+ "msnmsgr" "Windows Live Messenger" "Microsoft Corporation" "c:\program files (x86)\windows live\messenger\msnmsgr.exe"
+ "roscp" "" "" "File not found: C:\Users\User1\AppData\Roaming\roscp.dll"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "AsusWSShellExt_B" "AsusWSShellExt64" "eCareme Technologies, Inc." "c:\program files (x86)\asus\asus webstorage\service\asuswsshellext64.dll"
+ "AsusWSShellExt_O" "AsusWSShellExt64" "eCareme Technologies, Inc." "c:\program files (x86)\asus\asus webstorage\service\asuswsshellext64.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg64.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Dictionary Compression sdch" "Fast Search" "Google Inc." "c:\program files (x86)\google\google toolbar\component\fastsearch_b7c5ac242193bb3e.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\5.2.4204.1700\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\ssv.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
"Task Scheduler" "" "" ""
+ "\ACMON" "ACMON " "ASUS" "c:\program files (x86)\asus\splendid\acmon.exe"
+ "\AIRecoveryRemind" "AIRecoveryRemind" "ASUSTek Computer Inc." "c:\program files (x86)\asus\ai recovery\airecoveryremind.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\ASUS P4G" "Power4Gear Hybrid" "ASUS" "c:\program files\p4g\batterylife.exe"
+ "\ASUS SmartLogon Console Sensor" "SmartLogon Application" "ASUS" "c:\program files (x86)\asus\smartlogon\sensorsrv.exe"
+ "\ATKOSD2" "ATKOSD2" "ASUS" "c:\program files (x86)\asus\atk package\atkosd2\atkosd2.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Scheduled Update for Ask Toolbar" "" "" "File not found: C:\Program Files (x86)\Ask.com\UpdateTask.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AFBAgent" "ASUS FastBoot" "ASUSTeK Computer Inc." "c:\windows\system32\fbagent.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "AMD FUEL Service" "Provides FUEL Functionality" "Advanced Micro Devices, Inc." "c:\program files\ati technologies\ati.ace\fuel\fuel.service.exe"
+ "AMD Reservation Manager" "Blocks the resources for the applications at the software level." "Advanced Micro Devices" "c:\program files\ati technologies\ati.ace\reservation manager\amd reservation manager.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "ASLDRService" "ASLDR Service" "ASUS" "c:\program files (x86)\asus\atk package\atk hotkey\asldrsrv.exe"
+ "ATKGFNEXSrv" "GFNEXSrv" "ASUS" "c:\program files (x86)\asus\atk package\atkgfnex\gfnexsrv.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files (x86)\windows live\family safety\fsssvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "McComponentHostService" "McAfee Security Scan Component Host Service" "McAfee, Inc." "c:\program files (x86)\mcafee security scan\2.0.181\mcchsvc.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
+ "WMZuneComm" "Zune Connectivity for Windows Mobile devices" "Microsoft Corporation" "c:\program files\zune\wmzunecomm.exe"
+ "ZuneNetworkSvc" "Shares Zune media libraries to Zune devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\zune\zunenss.exe"
+ "ZuneWlanCfgSvc" "Configures Zune for wireless syncing" "Microsoft Corporation" "c:\program files\zune\zunewlancfgsvc.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amd_sata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amd_sata.sys"
+ "amd_xata" "Stor Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amd_xata.sys"
+ "amdiox64" "AMD IO Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdiox64.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "ASMMAP64" "Memory mapping Driver" "ASUS" "c:\program files (x86)\asus\atk package\atkgfnex\asmmap64.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "AtiHDAudioService" "AMD High Definition Audio Function Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\atihdw76.sys"
+ "ATKWMIACPIIO" "ATK WMIACPI Utility" "ASUS" "c:\program files (x86)\asus\atk package\atk wmiacpi\atkwmiacpi64.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "dg_ssudbus" "SAMSUNG USB Composite Device Driver (MSS Ver.3)" "DEVGURU Co., LTD.(www.devguru.co.kr)" "c:\windows\system32\drivers\ssudbus.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "ETD" "ETD Kernel Center" "ELAN Microelectronics Corp." "c:\windows\system32\drivers\etd.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "kbfiltr" "Keyboard Filter Driver" " " "c:\windows\system32\drivers\kbfiltr.sys"
+ "L1C" "Atheros L1c PCI-E Gigabit Ethernet Controller" "Atheros Communications, Inc." "c:\windows\system32\drivers\l1c62x64.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSGbeLH" "NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisg664.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "ssudmdm" "SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)" "DEVGURU Co., LTD.(www.devguru.co.kr)" "c:\windows\system32\drivers\ssudmdm.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "usbfilter" "AMD USB Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\usbfilter.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.VP60" "VP6 VIDEO FOR WINDOWS CODEC " "On2.com" "c:\windows\syswow64\vp6vfw.dll"
+ "vidc.VP61" "VP6 VIDEO FOR WINDOWS CODEC " "On2.com" "c:\windows\syswow64\vp6vfw.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ASUS Color Preview Filter" "ASUS Color Preview Filter" "ASUSTek" "c:\program files (x86)\asus\splendid\rgbtran.ax"
+ "Color Convert" "ASUS Color Preview Filter" "ASUSTek" "c:\program files (x86)\asus\splendid\rgbtran.ax"
+ "Microsoft Zune H.264 Video Decoder" "Microsoft Zune H.264 Video Decoder" "Microsoft Corporation" "c:\program files\zune\zuneh264dec.dll"
+ "WMEnc Screen Capture Filter" "ZuneSrcWrp Module" "Microsoft Corporation" "c:\program files\zune\zunesrcwrp.dll"
+ "Zune Enhanced Video Renderer" "Enhanced Video Renderer DLL" "Microsoft Corporation" "c:\program files\zune\zuneevr.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ASUS SplitVCam Pump" "" "" "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "ASUS SplitVCam Relayer" "" "" "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "ASUS SplitVCam Renderer" "" "" "c:\program files (x86)\asus\virtualcamera\splitvcamrenderer.ax"
+ "ASUS Virtual Camera" "" "" "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "Gargle" "Gargle Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\asus\asus lifeframe3\lifeframeaudio.ax"
+ "LifeFrame Image Effects" "Camera Filter" "ASUS" "c:\program files (x86)\asus\asus lifeframe3\camera_effect.ax"
+ "Logon Effects" "SmartLogon Filter" "ASUS" "c:\program files (x86)\asus\smartlogon\face_filter.ax"
+ "MACSReaderMP3 Filter" "MACSReaderMP3 Filter" "" "c:\program files (x86)\samsung\kies\external\mediamodules\macsreaderavi.ax"
+ "MotionDetect" "" "" "c:\program files (x86)\asus\asus lifeframe3\motiondetect.ax"
+ "MusicCity MPEG Splitter" "PCube MPEG Splitter Filter" "© MusicCity" "c:\windows\syswow64\muzmpgsp.ax"
+ "MusicCity OGG Splitter" "OGG Splitter" "© PeeringPortal" "c:\windows\syswow64\muzoggsp.ax"
+ "NEDFilter4Samsung Filter" "MACSReaderMP3 Filter" "L544™ Technology" "c:\program files (x86)\samsung\kies\external\mediamodules\nedfilter4samsung.ax"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
+ "P3Audio" "PCube Audio Decoder Filter" "© MusicCity" "c:\windows\syswow64\muzdecode.ax"
+ "P3AudioEffect" "P3AudioEffect Filter" "© MUSICCITY" "c:\windows\syswow64\muzeffect.ax"
+ "P3MP4Splitter" "P3MP4Splitter Filter" "© MusicCity" "c:\windows\syswow64\muzmp4sp.ax"
+ "P3Sourcer" "AOD Sourcer Filter" "Musiccity Co.Ltd." "c:\windows\syswow64\muzaf1.dll"
+ "P3WMTSplitter" "P3WMTSplitter Filter" " © MusicCity" "c:\windows\syswow64\muzwmts.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "SelfMusicVideo Dump Filter" "SelfMusicVideo Dump Filter (DShow)" "ENJsoft Corporation" "c:\program files (x86)\samsung\kies\external\transmodules\tg_dump0708.dll"
+ "SpatialStereo Filter" "" "" "c:\windows\syswow64\3daudio.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "FaceCredentialProvider64" "SmartLogon Dynamic Link Library" "ASUS" "c:\program files (x86)\asus\smartlogon\system\facecredentialprovider64.dll"
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:16 AM

Posted 21 August 2012 - 05:16 PM

Launch Autoruns and uncheck this entry

"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "roscp" "" "" "File not found: C:\Users\User1\AppData\Roaming\roscp.dll"

Download the file

Fix.reg

launch it,click YES

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users