Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

saw the exploit happen.


  • Please log in to reply
17 replies to this topic

#1 DaKlown

DaKlown

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 14 August 2012 - 01:38 PM

While web browsing a pop up appeared that cause firefox to crash. From then windows kept saying that adobe flash needed permission. I kept pressing no but it kept asking so I restarted. From there nod32 says that I have 2 viruses that keep appearing. Both are variants of conedex and gigabase.ru is my default search no matter how many times i restore it.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 14 August 2012 - 03:39 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

#3 DaKlown

DaKlown
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 17 August 2012 - 08:44 PM

I apoligize for the late response. I kept getting the BSOD(Blue screen of death) during the aswmbr scans. Finally was able to do all the scans today. Not sure why.

16:03:19.0980 4388 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
16:03:20.0610 4388 ============================================================
16:03:20.0610 4388 Current date / time: 2012/08/17 16:03:20.0610
16:03:20.0610 4388 SystemInfo:
16:03:20.0610 4388
16:03:20.0610 4388 OS Version: 6.0.6002 ServicePack: 2.0
16:03:20.0610 4388 Product type: Workstation
16:03:20.0610 4388 ComputerName: BRIDGETTE-PC
16:03:20.0610 4388 UserName: Bridgette
16:03:20.0610 4388 Windows directory: C:\Windows
16:03:20.0610 4388 System windows directory: C:\Windows
16:03:20.0610 4388 Processor architecture: Intel x86
16:03:20.0610 4388 Number of processors: 2
16:03:20.0610 4388 Page size: 0x1000
16:03:20.0610 4388 Boot type: Normal boot
16:03:20.0610 4388 ============================================================
16:03:25.0233 4388 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:03:25.0239 4388 ============================================================
16:03:25.0239 4388 \Device\Harddisk0\DR0:
16:03:25.0240 4388 MBR partitions:
16:03:25.0240 4388 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1388000
16:03:25.0240 4388 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x139B9C5, BlocksNum 0x240928EB
16:03:25.0240 4388 ============================================================
16:03:25.0327 4388 C: <-> \Device\Harddisk0\DR0\Partition2
16:03:25.0438 4388 D: <-> \Device\Harddisk0\DR0\Partition1
16:03:25.0438 4388 ============================================================
16:03:25.0438 4388 Initialize success
16:03:25.0438 4388 ============================================================
16:03:27.0350 4612 ============================================================
16:03:27.0350 4612 Scan started
16:03:27.0350 4612 Mode: Manual;
16:03:27.0350 4612 ============================================================
16:03:38.0449 4612 ================ Scan services =============================
16:03:40.0027 4612 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
16:03:40.0076 4612 ACPI - ok
16:03:40.0408 4612 [ 04f0fcac69c7c71a3ac4eb97fafc8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:03:40.0575 4612 adp94xx - ok
16:03:40.0685 4612 [ 60505e0041f7751bdbb80f88bf45c2ce ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:03:40.0727 4612 adpahci - ok
16:03:40.0790 4612 [ 8a42779b02aec986eab64ecfc98f8bd7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
16:03:40.0792 4612 adpu160m - ok
16:03:40.0846 4612 [ 241c9e37f8ce45ef51c3de27515ca4e5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:03:40.0848 4612 adpu320 - ok
16:03:40.0983 4612 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:03:40.0984 4612 AeLookupSvc - ok
16:03:41.0439 4612 [ 827dbc22c96eecf6d36a13162fabafd3 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe
16:03:41.0440 4612 AESTFilters - ok
16:03:41.0791 4612 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
16:03:41.0798 4612 AFD - ok
16:03:41.0848 4612 [ 13f9e33747e6b41a3ff305c37db0d360 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:03:41.0853 4612 agp440 - ok
16:03:41.0936 4612 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
16:03:41.0938 4612 aic78xx - ok
16:03:42.0044 4612 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
16:03:42.0046 4612 ALG - ok
16:03:42.0127 4612 [ 9eaef5fc9b8e351afa7e78a6fae91f91 ] aliide C:\Windows\system32\drivers\aliide.sys
16:03:42.0129 4612 aliide - ok
16:03:42.0162 4612 [ c47344bc706e5f0b9dce369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
16:03:42.0163 4612 amdagp - ok
16:03:42.0193 4612 [ 9b78a39a4c173fdbc1321e0dd659b34c ] amdide C:\Windows\system32\drivers\amdide.sys
16:03:42.0194 4612 amdide - ok
16:03:42.0267 4612 [ 18f29b49ad23ecee3d2a826c725c8d48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
16:03:42.0269 4612 AmdK7 - ok
16:03:42.0308 4612 [ 93ae7f7dd54ab986a6f1a1b37be7442d ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:03:42.0310 4612 AmdK8 - ok
16:03:42.0405 4612 [ 1de27858a431a5749e0f3df54ba935b9 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
16:03:42.0412 4612 ApfiltrService - ok
16:03:42.0530 4612 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
16:03:42.0532 4612 Appinfo - ok
16:03:42.0848 4612 [ 20f6f19fe9e753f2780dc2fa083ad597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:03:42.0851 4612 Apple Mobile Device - ok
16:03:42.0922 4612 [ 66faa704724f42cfb8ef7c24c66f9591 ] AR5211 C:\Windows\system32\DRIVERS\ar5211.sys
16:03:43.0134 4612 AR5211 - ok
16:03:43.0302 4612 [ 5d2888182fb46632511acee92fdad522 ] arc C:\Windows\system32\drivers\arc.sys
16:03:43.0306 4612 arc - ok
16:03:43.0599 4612 [ 5e2a321bd7c8b3624e41fdec3e244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:03:43.0602 4612 arcsas - ok
16:03:43.0671 4612 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:03:43.0710 4612 AsyncMac - ok
16:03:43.0813 4612 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
16:03:43.0816 4612 atapi - ok
16:03:44.0010 4612 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:03:44.0052 4612 AudioEndpointBuilder - ok
16:03:44.0063 4612 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:03:44.0066 4612 Audiosrv - ok
16:03:44.0129 4612 [ 423c7b87e886ac93d22936ea82665f83 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
16:03:44.0130 4612 BCM42RLY - ok
16:03:44.0262 4612 [ 41a70777e892c3dea606758366566a77 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
16:03:44.0278 4612 BCM43XX - ok
16:03:44.0389 4612 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
16:03:44.0390 4612 Beep - ok
16:03:44.0469 4612 [ c789af0f724fda5852fb9a7d3a432381 ] BFE C:\Windows\System32\bfe.dll
16:03:44.0501 4612 BFE - ok
16:03:44.0868 4612 [ 93952506c6d67330367f7e7934b6a02f ] BITS C:\Windows\System32\qmgr.dll
16:03:44.0888 4612 BITS - ok
16:03:44.0934 4612 [ d4df28447741fd3d953526e33a617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
16:03:44.0939 4612 blbdrive - ok
16:03:45.0120 4612 [ 1c87705ccb2f60172b0fc86b5d82f00d ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:03:45.0123 4612 Bonjour Service - ok
16:03:45.0219 4612 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:03:45.0301 4612 bowser - ok
16:03:45.0370 4612 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
16:03:45.0371 4612 BrFiltLo - ok
16:03:45.0415 4612 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
16:03:45.0416 4612 BrFiltUp - ok
16:03:45.0521 4612 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
16:03:45.0522 4612 Browser - ok
16:03:45.0582 4612 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
16:03:45.0790 4612 Brserid - ok
16:03:45.0841 4612 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
16:03:45.0843 4612 BrSerWdm - ok
16:03:45.0868 4612 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
16:03:45.0869 4612 BrUsbMdm - ok
16:03:45.0932 4612 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
16:03:45.0933 4612 BrUsbSer - ok
16:03:45.0981 4612 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:03:45.0982 4612 BTHMODEM - ok
16:03:46.0024 4612 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:03:46.0025 4612 cdfs - ok
16:03:46.0120 4612 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:03:46.0213 4612 cdrom - ok
16:03:46.0270 4612 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
16:03:46.0272 4612 CertPropSvc - ok
16:03:46.0302 4612 [ e5d4133f37219dbcfe102bc61072589d ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:03:46.0359 4612 circlass - ok
16:03:46.0513 4612 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
16:03:46.0545 4612 CLFS - ok
16:03:46.0704 4612 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:03:46.0710 4612 clr_optimization_v2.0.50727_32 - ok
16:03:46.0884 4612 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:03:46.0938 4612 clr_optimization_v4.0.30319_32 - ok
16:03:46.0963 4612 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:03:46.0969 4612 CmBatt - ok
16:03:47.0071 4612 [ 0ca25e686a4928484e9fdabd168ab629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:03:47.0092 4612 cmdide - ok
16:03:47.0126 4612 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:03:47.0129 4612 Compbatt - ok
16:03:47.0136 4612 COMSysApp - ok
16:03:47.0184 4612 [ 741e9dff4f42d2d8477d0fc1dc0df871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:03:47.0225 4612 crcdisk - ok
16:03:47.0268 4612 [ 1f07becdca750766a96cda811ba86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
16:03:47.0270 4612 Crusoe - ok
16:03:47.0359 4612 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:03:47.0361 4612 CryptSvc - ok
16:03:47.0508 4612 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:03:47.0527 4612 DcomLaunch - ok
16:03:47.0582 4612 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:03:47.0624 4612 DfsC - ok
16:03:47.0926 4612 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
16:03:47.0980 4612 DFSR - ok
16:03:48.0092 4612 [ aeb179b855161ec9c88172abc75ad0ef ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
16:03:48.0118 4612 dg_ssudbus - ok
16:03:48.0248 4612 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
16:03:48.0254 4612 Dhcp - ok
16:03:48.0329 4612 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
16:03:48.0388 4612 disk - ok
16:03:48.0475 4612 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:03:48.0478 4612 Dnscache - ok
16:03:48.0522 4612 [ db29915209770d8b59654345ec2d943a ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:03:48.0525 4612 DockLoginService - ok
16:03:48.0597 4612 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:03:48.0606 4612 dot3svc - ok
16:03:48.0750 4612 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
16:03:48.0754 4612 DPS - ok
16:03:48.0797 4612 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:03:48.0819 4612 drmkaud - ok
16:03:49.0133 4612 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:03:49.0139 4612 DXGKrnl - ok
16:03:49.0369 4612 [ 908ed85b7806e8af3af5e9b74f7809d4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
16:03:49.0424 4612 e1express - ok
16:03:49.0519 4612 [ 5425f74ac0c1dbd96a1e04f17d63f94c ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
16:03:49.0527 4612 E1G60 - ok
16:03:49.0648 4612 [ 8a45015e85a4dce0086b9973f0fd9a20 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
16:03:49.0677 4612 eamonm - ok
16:03:49.0760 4612 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
16:03:49.0762 4612 EapHost - ok
16:03:49.0849 4612 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
16:03:49.0856 4612 Ecache - ok
16:03:49.0941 4612 [ 5412ed24fffca64e2f0168399b86c952 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
16:03:49.0968 4612 ehdrv - ok
16:03:50.0034 4612 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:03:50.0039 4612 ehRecvr - ok
16:03:50.0096 4612 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
16:03:50.0384 4612 ehSched - ok
16:03:50.0424 4612 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
16:03:50.0429 4612 ehstart - ok
16:03:50.0871 4612 [ ad4faade819e0da9933bea7c01d2c763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
16:03:50.0880 4612 ekrn - ok
16:03:51.0258 4612 [ 23b62471681a124889978f6295b3f4c6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:03:51.0351 4612 elxstor - ok
16:03:51.0527 4612 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
16:03:51.0687 4612 EMDMgmt - ok
16:03:51.0898 4612 [ 774babcb1144513dc86992003740b774 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
16:03:51.0905 4612 epfw - ok
16:03:52.0039 4612 [ 2c22cc39309ee06ae870c183bf2a769d ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
16:03:52.0089 4612 EpfwLWF - ok
16:03:52.0117 4612 [ 2b4e5f01a4e786b422f4d617b51fa7d9 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
16:03:52.0153 4612 epfwwfp - ok
16:03:52.0325 4612 [ 3db974f3935483555d7148663f726c61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:03:52.0340 4612 ErrDev - ok
16:03:52.0452 4612 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
16:03:52.0456 4612 EventSystem - ok
16:03:52.0539 4612 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
16:03:52.0543 4612 exfat - ok
16:03:52.0655 4612 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:03:52.0659 4612 fastfat - ok
16:03:52.0930 4612 [ afe1e8b9782a0dd7fb46bbd88e43f89a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:03:52.0976 4612 fdc - ok
16:03:53.0039 4612 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
16:03:53.0040 4612 fdPHost - ok
16:03:53.0061 4612 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
16:03:53.0063 4612 FDResPub - ok
16:03:53.0094 4612 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:03:53.0141 4612 FileInfo - ok
16:03:53.0197 4612 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:03:53.0218 4612 Filetrace - ok
16:03:53.0360 4612 [ 1f63900e2eb00101b9aca2b7a870704e ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:03:53.0366 4612 FLEXnet Licensing Service - ok
16:03:53.0416 4612 [ 85b7cf99d532820495d68d747fda9ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:03:53.0454 4612 flpydisk - ok
16:03:53.0544 4612 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:03:53.0616 4612 FltMgr - ok
16:03:53.0709 4612 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
16:03:53.0719 4612 FontCache - ok
16:03:53.0874 4612 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:03:53.0876 4612 FontCache3.0.0.0 - ok
16:03:53.0939 4612 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:03:53.0941 4612 Fs_Rec - ok
16:03:54.0045 4612 [ 34582a6e6573d54a07ece5fe24a126b5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:03:54.0048 4612 gagp30kx - ok
16:03:54.0142 4612 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:03:54.0151 4612 GEARAspiWDM - ok
16:03:54.0386 4612 [ 9f5f2f0fb0a7f5aa9f16b9a7b6dad89f ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
16:03:54.0409 4612 GoogleDesktopManager-051210-111108 - ok
16:03:54.0472 4612 [ d3316f6e3c011435f36e3d6e49b3196c ] GoToAssist C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
16:03:54.0473 4612 GoToAssist - ok
16:03:54.0616 4612 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
16:03:54.0626 4612 gpsvc - ok
16:03:54.0731 4612 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
16:03:54.0735 4612 gupdate - ok
16:03:54.0755 4612 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
16:03:54.0757 4612 gupdatem - ok
16:03:54.0819 4612 [ 5d4bc124faae6730ac002cdb67bf1a1c ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:03:54.0822 4612 gusvc - ok
16:03:54.0935 4612 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:03:54.0967 4612 HDAudBus - ok
16:03:55.0015 4612 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:03:55.0017 4612 HidBth - ok
16:03:55.0046 4612 [ d8df3722d5e961baa1292aa2f12827e2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:03:55.0076 4612 HidIr - ok
16:03:55.0171 4612 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\system32\hidserv.dll
16:03:55.0174 4612 hidserv - ok
16:03:55.0289 4612 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:03:55.0363 4612 HidUsb - ok
16:03:55.0429 4612 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:03:55.0445 4612 hkmsvc - ok
16:03:55.0523 4612 [ 16ee7b23a009e00d835cdb79574a91a6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
16:03:55.0548 4612 HpCISSs - ok
16:03:55.0606 4612 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:03:55.0637 4612 HTTP - ok
16:03:55.0687 4612 [ c6b032d69650985468160fc9937cf5b4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
16:03:55.0712 4612 i2omp - ok
16:03:55.0750 4612 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:03:55.0772 4612 i8042prt - ok
16:03:55.0829 4612 [ 54155ea1b0df185878e0fc9ec3ac3a14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
16:03:55.0833 4612 iaStorV - ok
16:03:55.0972 4612 [ 1cf03c69b49acb70c722df92755c0c8c ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:03:55.0974 4612 IDriverT - ok
16:03:56.0088 4612 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:03:56.0107 4612 idsvc - ok
16:03:57.0357 4612 [ dce0b53570703cce580d066f89ef58cd ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
16:03:57.0647 4612 igfx - ok
16:03:57.0730 4612 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:03:57.0731 4612 iirsp - ok
16:03:57.0790 4612 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
16:03:57.0795 4612 IKEEXT - ok
16:03:57.0897 4612 [ ab8b0206bcdff0ed03cec500fa03a32a ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
16:03:57.0921 4612 IntcHdmiAddService - ok
16:03:57.0991 4612 [ 83aa759f3189e6370c30de5dc5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
16:03:57.0994 4612 intelide - ok
16:03:58.0124 4612 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:03:58.0125 4612 intelppm - ok
16:03:58.0151 4612 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:03:58.0154 4612 IPBusEnum - ok
16:03:58.0194 4612 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:03:58.0217 4612 IpFilterDriver - ok
16:03:58.0311 4612 [ 1998bd97f950680bb55f55a7244679c2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:03:58.0376 4612 iphlpsvc - ok
16:03:58.0383 4612 IpInIp - ok
16:03:58.0474 4612 [ b25aaf203552b7b3491139d582b39ad1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
16:03:58.0476 4612 IPMIDRV - ok
16:03:58.0504 4612 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
16:03:58.0566 4612 IPNAT - ok
16:03:59.0034 4612 [ f62c69376a95795fe7cdb1c778edaca4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:03:59.0046 4612 iPod Service - ok
16:03:59.0105 4612 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:03:59.0167 4612 IRENUM - ok
16:03:59.0299 4612 [ 6c70698a3e5c4376c6ab5c7c17fb0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:03:59.0300 4612 isapnp - ok
16:03:59.0357 4612 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:03:59.0360 4612 iScsiPrt - ok
16:03:59.0432 4612 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
16:03:59.0433 4612 iteatapi - ok
16:03:59.0488 4612 [ 20425664e2e196d339ca877e0387c023 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
16:03:59.0510 4612 itecir - ok
16:03:59.0553 4612 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
16:03:59.0591 4612 iteraid - ok
16:03:59.0691 4612 [ a67e8cfcad7d4f8b35643d6c79ba64c3 ] k57nd60x C:\Windows\system32\DRIVERS\k57nd60x.sys
16:03:59.0799 4612 k57nd60x - ok
16:03:59.0925 4612 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:03:59.0983 4612 kbdclass - ok
16:04:00.0169 4612 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:04:00.0189 4612 kbdhid - ok
16:04:00.0249 4612 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
16:04:00.0251 4612 KeyIso - ok
16:04:00.0483 4612 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:04:00.0510 4612 KSecDD - ok
16:04:00.0701 4612 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:04:00.0706 4612 KtmRm - ok
16:04:00.0845 4612 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\system32\srvsvc.dll
16:04:00.0850 4612 LanmanServer - ok
16:04:01.0005 4612 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:04:01.0012 4612 LanmanWorkstation - ok
16:04:01.0064 4612 [ b716d4d759663bc4174fd0a379da8e50 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
16:04:01.0072 4612 libusb0 - ok
16:04:01.0100 4612 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:04:01.0160 4612 lltdio - ok
16:04:01.0274 4612 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:04:01.0320 4612 lltdsvc - ok
16:04:01.0347 4612 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:04:01.0349 4612 lmhosts - ok
16:04:01.0392 4612 [ c7e15e82879bf3235b559563d4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:04:01.0393 4612 LSI_FC - ok
16:04:01.0443 4612 [ ee01ebae8c9bf0fa072e0ff68718920a ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:04:01.0445 4612 LSI_SAS - ok
16:04:01.0495 4612 [ 912a04696e9ca30146a62afa1463dd5c ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:04:01.0497 4612 LSI_SCSI - ok
16:04:01.0540 4612 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
16:04:01.0542 4612 luafv - ok
16:04:01.0590 4612 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:04:01.0592 4612 Mcx2Svc - ok
16:04:01.0627 4612 [ 0001ce609d66632fa17b84705f658879 ] megasas C:\Windows\system32\drivers\megasas.sys
16:04:01.0628 4612 megasas - ok
16:04:01.0654 4612 [ c252f32cd9a49dbfc25ecf26ebd51a99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
16:04:01.0662 4612 MegaSR - ok
16:04:01.0688 4612 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
16:04:01.0690 4612 MMCSS - ok
16:04:01.0730 4612 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
16:04:01.0788 4612 Modem - ok
16:04:01.0840 4612 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:04:01.0842 4612 monitor - ok
16:04:01.0883 4612 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:04:01.0910 4612 mouclass - ok
16:04:01.0950 4612 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:04:01.0986 4612 mouhid - ok
16:04:02.0020 4612 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
16:04:02.0052 4612 MountMgr - ok
16:04:02.0158 4612 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:04:02.0161 4612 MozillaMaintenance - ok
16:04:02.0403 4612 [ 511d011289755dd9f9a7579fb0b064e6 ] mpio C:\Windows\system32\drivers\mpio.sys
16:04:02.0408 4612 mpio - ok
16:04:02.0463 4612 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:04:02.0582 4612 mpsdrv - ok
16:04:02.0756 4612 [ 5de62c6e9108f14f6794060a9bdecaec ] MpsSvc C:\Windows\system32\mpssvc.dll
16:04:02.0777 4612 MpsSvc - ok
16:04:02.0829 4612 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
16:04:02.0853 4612 Mraid35x - ok
16:04:02.0922 4612 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:04:02.0923 4612 MRxDAV - ok
16:04:02.0958 4612 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:04:02.0992 4612 mrxsmb - ok
16:04:03.0034 4612 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:04:03.0084 4612 mrxsmb10 - ok
16:04:03.0131 4612 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:04:03.0284 4612 mrxsmb20 - ok
16:04:03.0322 4612 [ 5457dcfa7c0da43522f4d9d4049c1472 ] msahci C:\Windows\system32\drivers\msahci.sys
16:04:03.0343 4612 msahci - ok
16:04:03.0421 4612 [ 4468b0f385a86ecddaf8d3ca662ec0e7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:04:03.0423 4612 msdsm - ok
16:04:03.0553 4612 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
16:04:03.0651 4612 MSDTC - ok
16:04:03.0776 4612 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:04:03.0778 4612 Msfs - ok
16:04:03.0859 4612 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:04:03.0894 4612 msisadrv - ok
16:04:03.0985 4612 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:04:04.0003 4612 MSiSCSI - ok
16:04:04.0011 4612 msiserver - ok
16:04:04.0074 4612 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:04:04.0134 4612 MSKSSRV - ok
16:04:04.0180 4612 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:04:04.0186 4612 MSPCLOCK - ok
16:04:04.0230 4612 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:04:04.0253 4612 MSPQM - ok
16:04:04.0290 4612 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:04:04.0292 4612 MsRPC - ok
16:04:04.0328 4612 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:04:04.0330 4612 mssmbios - ok
16:04:04.0355 4612 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:04:04.0397 4612 MSTEE - ok
16:04:04.0469 4612 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
16:04:04.0491 4612 Mup - ok
16:04:04.0624 4612 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
16:04:04.0636 4612 napagent - ok
16:04:04.0729 4612 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:04:04.0791 4612 NativeWifiP - ok
16:04:04.0875 4612 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:04:04.0886 4612 NDIS - ok
16:04:04.0926 4612 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:04:04.0930 4612 NdisTapi - ok
16:04:04.0947 4612 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:04:04.0977 4612 Ndisuio - ok
16:04:05.0080 4612 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:04:05.0139 4612 NdisWan - ok
16:04:05.0172 4612 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:04:05.0174 4612 NDProxy - ok
16:04:05.0233 4612 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:04:05.0273 4612 NetBIOS - ok
16:04:05.0337 4612 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
16:04:05.0361 4612 netbt - ok
16:04:05.0416 4612 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
16:04:05.0418 4612 Netlogon - ok
16:04:05.0478 4612 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
16:04:05.0484 4612 Netman - ok
16:04:05.0601 4612 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
16:04:05.0607 4612 netprofm - ok
16:04:05.0669 4612 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:04:05.0671 4612 NetTcpPortSharing - ok
16:04:05.0756 4612 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:04:05.0757 4612 nfrd960 - ok
16:04:05.0828 4612 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:04:05.0834 4612 NlaSvc - ok
16:04:05.0877 4612 [ b48dc6abcd3aeff8618350ccbdc6b09a ] NPF C:\Windows\system32\drivers\npf.sys
16:04:05.0883 4612 NPF - ok
16:04:06.0161 4612 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:04:06.0164 4612 Npfs - ok
16:04:06.0270 4612 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
16:04:06.0273 4612 nsi - ok
16:04:06.0313 4612 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:04:06.0335 4612 nsiproxy - ok
16:04:06.0483 4612 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:04:06.0505 4612 Ntfs - ok
16:04:06.0542 4612 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
16:04:06.0543 4612 ntrigdigi - ok
16:04:06.0565 4612 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
16:04:06.0567 4612 Null - ok
16:04:06.0625 4612 [ 2edf9e7751554b42cbb60116de727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:04:06.0627 4612 nvraid - ok
16:04:06.0686 4612 [ abed0c09758d1d97db0042dbb2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:04:06.0688 4612 nvstor - ok
16:04:06.0698 4612 [ 18bbdf913916b71bd54575bdb6eeac0b ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:04:06.0706 4612 nv_agp - ok
16:04:06.0714 4612 NwlnkFlt - ok
16:04:06.0730 4612 NwlnkFwd - ok
16:04:06.0886 4612 [ 2cf21d5f8f1b74bb1922135ac2b12ddb ] OA001Ufd C:\Windows\system32\DRIVERS\OA001Ufd.sys
16:04:06.0895 4612 OA001Ufd - ok
16:04:07.0012 4612 [ 4075063d25af9da64101769854b83787 ] OA001Vid C:\Windows\system32\DRIVERS\OA001Vid.sys
16:04:07.0039 4612 OA001Vid - ok
16:04:07.0271 4612 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:04:07.0278 4612 odserv - ok
16:04:07.0361 4612 [ 6f310e890d46e246e0e261a63d9b36b4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:04:07.0362 4612 ohci1394 - ok
16:04:07.0466 4612 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:04:07.0469 4612 ose - ok
16:04:07.0701 4612 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
16:04:07.0987 4612 p2pimsvc - ok
16:04:08.0011 4612 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
16:04:08.0023 4612 p2psvc - ok
16:04:08.0149 4612 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
16:04:08.0195 4612 Parport - ok
16:04:08.0237 4612 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:04:08.0264 4612 partmgr - ok
16:04:08.0315 4612 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
16:04:08.0337 4612 Parvdm - ok
16:04:08.0402 4612 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
16:04:08.0405 4612 PcaSvc - ok
16:04:08.0504 4612 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
16:04:08.0609 4612 pci - ok
16:04:08.0667 4612 [ fc175f5ddab666d7f4d17449a547626f ] pciide C:\Windows\system32\drivers\pciide.sys
16:04:08.0669 4612 pciide - ok
16:04:08.0947 4612 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:04:08.0950 4612 pcmcia - ok
16:04:09.0053 4612 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:04:09.0079 4612 PEAUTH - ok
16:04:09.0435 4612 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
16:04:09.0491 4612 pla - ok
16:04:09.0642 4612 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:04:09.0646 4612 PlugPlay - ok
16:04:09.0734 4612 [ 088335b06f75adbcbb81575c7cae6c43 ] pneteth C:\Windows\system32\DRIVERS\pneteth.sys
16:04:09.0774 4612 pneteth - ok
16:04:09.0864 4612 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
16:04:09.0872 4612 PNRPAutoReg - ok
16:04:09.0887 4612 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
16:04:09.0894 4612 PNRPsvc - ok
16:04:09.0975 4612 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:04:09.0980 4612 PolicyAgent - ok
16:04:10.0025 4612 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:04:10.0052 4612 PptpMiniport - ok
16:04:10.0092 4612 [ 2027293619dd0f047c584cf2e7df4ffd ] Processor C:\Windows\system32\drivers\processr.sys
16:04:10.0120 4612 Processor - ok
16:04:10.0177 4612 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
16:04:10.0181 4612 ProfSvc - ok
16:04:10.0416 4612 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
16:04:10.0419 4612 ProtectedStorage - ok
16:04:10.0490 4612 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
16:04:10.0493 4612 PSched - ok
16:04:10.0625 4612 [ e42e3433dbb4cffe8fdd91eab29aea8e ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
16:04:10.0706 4612 PxHelp20 - ok
16:04:11.0068 4612 [ 0a6db55afb7820c99aa1f3a1d270f4f6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:04:11.0144 4612 ql2300 - ok
16:04:11.0179 4612 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:04:11.0197 4612 ql40xx - ok
16:04:11.0244 4612 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
16:04:11.0255 4612 QWAVE - ok
16:04:11.0331 4612 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:04:11.0334 4612 QWAVEdrv - ok
16:04:11.0491 4612 [ e642b131fb74caf4bb8a014f31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
16:04:11.0607 4612 R300 - ok
16:04:11.0657 4612 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:04:11.0764 4612 RasAcd - ok
16:04:11.0869 4612 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
16:04:11.0874 4612 RasAuto - ok
16:04:11.0920 4612 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:04:11.0984 4612 Rasl2tp - ok
16:04:12.0104 4612 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
16:04:12.0131 4612 RasMan - ok
16:04:12.0204 4612 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:04:12.0248 4612 RasPppoe - ok
16:04:12.0627 4612 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:04:12.0701 4612 RasSstp - ok
16:04:12.0832 4612 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:04:12.0861 4612 rdbss - ok
16:04:12.0941 4612 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:04:12.0990 4612 RDPCDD - ok
16:04:13.0081 4612 [ fbc0bacd9c3d7f6956853f64a66e252d ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
16:04:13.0424 4612 rdpdr - ok
16:04:13.0453 4612 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:04:13.0533 4612 RDPENCDD - ok
16:04:13.0610 4612 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:04:13.0614 4612 RDPWD - ok
16:04:13.0679 4612 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:04:13.0683 4612 RemoteAccess - ok
16:04:14.0211 4612 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:04:14.0236 4612 RemoteRegistry - ok
16:04:14.0300 4612 [ c2ef513bbe069f0d4ee0938a76f975d3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
16:04:14.0375 4612 rimmptsk - ok
16:04:14.0724 4612 [ c398bca91216755b098679a8da8a2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
16:04:14.0755 4612 rimsptsk - ok
16:04:14.0800 4612 [ 2a2554cb24506e0a0508fc395c4a1b42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
16:04:14.0825 4612 rismxdp - ok
16:04:14.0872 4612 [ b60f58f175de20a6739194e85b035178 ] rpcapd C:\Program Files\WinPcap\rpcapd.exe
16:04:14.0874 4612 rpcapd - ok
16:04:14.0927 4612 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
16:04:14.0930 4612 RpcLocator - ok
16:04:15.0003 4612 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
16:04:15.0010 4612 RpcSs - ok
16:04:15.0097 4612 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:04:15.0365 4612 rspndr - ok
16:04:16.0178 4612 [ 4b36f90ef3515b986944aa223871e12e ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
16:04:17.0050 4612 RTL8192su - ok
16:04:17.0116 4612 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
16:04:17.0119 4612 SamSs - ok
16:04:17.0161 4612 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:04:17.0164 4612 sbp2port - ok
16:04:17.0218 4612 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:04:17.0244 4612 SCardSvr - ok
16:04:17.0321 4612 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
16:04:17.0336 4612 Schedule - ok
16:04:17.0349 4612 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:04:17.0351 4612 SCPolicySvc - ok
16:04:17.0417 4612 [ 8f36b54688c31eed4580129040c6a3d3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
16:04:17.0440 4612 sdbus - ok
16:04:17.0481 4612 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:04:17.0487 4612 SDRSVC - ok
16:04:17.0555 4612 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:04:17.0556 4612 secdrv - ok
16:04:17.0596 4612 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
16:04:17.0599 4612 seclogon - ok
16:04:17.0650 4612 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\System32\sens.dll
16:04:17.0653 4612 SENS - ok
16:04:17.0679 4612 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
16:04:17.0680 4612 Serenum - ok
16:04:17.0700 4612 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
16:04:17.0702 4612 Serial - ok
16:04:17.0727 4612 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:04:17.0728 4612 sermouse - ok
16:04:17.0803 4612 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
16:04:17.0818 4612 SessionEnv - ok
16:04:17.0856 4612 [ 3efa810bdca87f6ecc24f9832243fe86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:04:17.0857 4612 sffdisk - ok
16:04:17.0873 4612 [ e95d451f7ea3e583aec75f3b3ee42dc5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:04:17.0917 4612 sffp_mmc - ok
16:04:17.0939 4612 [ 3d0ea348784b7ac9ea9bd9f317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:04:17.0940 4612 sffp_sd - ok
16:04:17.0961 4612 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:04:17.0963 4612 sfloppy - ok
16:04:17.0997 4612 [ e1499bd0ff76b1b2fbbf1af339d91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:04:18.0004 4612 SharedAccess - ok
16:04:18.0076 4612 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:04:18.0087 4612 ShellHWDetection - ok
16:04:18.0177 4612 [ 1d76624a09a054f682d746b924e2dbc3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
16:04:18.0179 4612 sisagp - ok
16:04:18.0200 4612 [ 43cb7aa756c7db280d01da9b676cfde2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
16:04:18.0202 4612 SiSRaid2 - ok
16:04:18.0241 4612 [ a99c6c8b0baa970d8aa59ddc50b57f94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:04:18.0259 4612 SiSRaid4 - ok
16:04:18.0510 4612 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
16:04:18.0620 4612 slsvc - ok
16:04:18.0714 4612 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
16:04:18.0720 4612 SLUINotify - ok
16:04:18.0793 4612 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:04:18.0830 4612 Smb - ok
16:04:18.0902 4612 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:04:18.0908 4612 SNMPTRAP - ok
16:04:18.0970 4612 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
16:04:18.0973 4612 spldr - ok
16:04:19.0074 4612 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
16:04:19.0079 4612 Spooler - ok
16:04:19.0218 4612 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:04:19.0377 4612 srv - ok
16:04:19.0482 4612 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:04:19.0507 4612 srv2 - ok
16:04:19.0546 4612 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:04:19.0615 4612 srvnet - ok
16:04:19.0686 4612 [ ffe42941e0326c322f40b0b79a46493c ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
16:04:19.0710 4612 sscdbus - ok
16:04:19.0747 4612 [ a68e7d87adfbb8c50d88cd58230c6819 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
16:04:19.0773 4612 sscdmdfl - ok
16:04:19.0846 4612 [ b534b24151281856ec2f69ed3d6d60dd ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
16:04:19.0896 4612 sscdmdm - ok
16:04:19.0942 4612 [ d04bd59f28c78e2e66632092cafc0a2b ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
16:04:19.0950 4612 sscdserd - ok
16:04:20.0004 4612 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:04:20.0010 4612 SSDPSRV - ok
16:04:20.0044 4612 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:04:20.0049 4612 SstpSvc - ok
16:04:20.0108 4612 [ 6c0cc5868f99064516fb9f82563a02ea ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
16:04:20.0145 4612 ssudmdm - ok
16:04:20.0495 4612 [ ddeb942850278d67edc108d57f774bf8 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe
16:04:20.0498 4612 STacSV - ok
16:04:20.0573 4612 [ c4be9c3af8af6f2e4cdd22fcabf77a1b ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
16:04:20.0721 4612 STHDA - ok
16:04:20.0898 4612 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
16:04:20.0977 4612 stisvc - ok
16:04:21.0052 4612 [ 1d0063597c3666404fcf97698abeb019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
16:04:21.0076 4612 stllssvr - ok
16:04:21.0124 4612 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:04:21.0348 4612 swenum - ok
16:04:21.0675 4612 [ f577910a133a592234ebaad3f3afa258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:04:21.0713 4612 SwitchBoard - ok
16:04:21.0795 4612 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
16:04:21.0805 4612 swprv - ok
16:04:21.0847 4612 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
16:04:21.0871 4612 Symc8xx - ok
16:04:21.0908 4612 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
16:04:21.0911 4612 Sym_hi - ok
16:04:21.0943 4612 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
16:04:21.0970 4612 Sym_u3 - ok
16:04:22.0231 4612 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
16:04:22.0391 4612 SysMain - ok
16:04:22.0460 4612 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:04:22.0465 4612 TabletInputService - ok
16:04:22.0563 4612 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:04:22.0583 4612 TapiSrv - ok
16:04:22.0615 4612 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
16:04:22.0622 4612 TBS - ok
16:04:23.0020 4612 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:04:23.0112 4612 Tcpip - ok
16:04:23.0167 4612 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
16:04:23.0179 4612 Tcpip6 - ok
16:04:23.0254 4612 [ 608c345a255d82a6289c2d468eb41fd7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:04:23.0294 4612 tcpipreg - ok
16:04:23.0340 4612 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:04:23.0368 4612 TDPIPE - ok
16:04:23.0407 4612 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:04:23.0447 4612 TDTCP - ok
16:04:23.0526 4612 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:04:23.0548 4612 tdx - ok
16:04:23.0626 4612 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:04:23.0650 4612 TermDD - ok
16:04:23.0769 4612 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
16:04:23.0780 4612 TermService - ok
16:04:23.0842 4612 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
16:04:23.0847 4612 Themes - ok
16:04:23.0889 4612 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
16:04:23.0891 4612 THREADORDER - ok
16:04:23.0995 4612 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
16:04:24.0019 4612 TrkWks - ok
16:04:24.0128 4612 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:04:24.0129 4612 TrustedInstaller - ok
16:04:24.0196 4612 [ 2c8fc39cce0b166240929ad88fed2861 ] TsLwWfF C:\Windows\system32\DRIVERS\TsLwWfF.sys
16:04:24.0222 4612 TsLwWfF - ok
16:04:24.0351 4612 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:04:24.0411 4612 tssecsrv - ok
16:04:24.0473 4612 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
16:04:24.0494 4612 tunmp - ok
16:04:24.0543 4612 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:04:24.0584 4612 tunnel - ok
16:04:24.0628 4612 [ 7d33c4db2ce363c8518d2dfcf533941f ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:04:24.0630 4612 uagp35 - ok
16:04:24.0675 4612 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:04:24.0754 4612 udfs - ok
16:04:24.0858 4612 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:04:24.0889 4612 UI0Detect - ok
16:04:24.0931 4612 [ b0acfdc9e4af279e9116c03e014b2b27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:04:24.0934 4612 uliagpkx - ok
16:04:24.0958 4612 [ 9224bb254f591de4ca8d572a5f0d635c ] uliahci C:\Windows\system32\drivers\uliahci.sys
16:04:24.0964 4612 uliahci - ok
16:04:24.0984 4612 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
16:04:24.0988 4612 UlSata - ok
16:04:25.0030 4612 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
16:04:25.0034 4612 ulsata2 - ok
16:04:25.0074 4612 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:04:25.0078 4612 umbus - ok
16:04:25.0150 4612 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
16:04:25.0171 4612 upnphost - ok
16:04:25.0238 4612 [ 83cafcb53201bbac04d822f32438e244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
16:04:25.0270 4612 USBAAPL - ok
16:04:25.0336 4612 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:04:25.0369 4612 usbccgp - ok
16:04:25.0446 4612 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:04:25.0450 4612 usbcir - ok
16:04:25.0497 4612 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:04:25.0535 4612 usbehci - ok
16:04:25.0590 4612 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:04:25.0648 4612 usbhub - ok
16:04:25.0683 4612 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:04:25.0687 4612 usbohci - ok
16:04:25.0730 4612 [ b51e52acf758be00ef3a58ea452fe360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
16:04:25.0755 4612 usbprint - ok
16:04:25.0802 4612 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:04:25.0846 4612 USBSTOR - ok
16:04:25.0890 4612 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:04:25.0923 4612 usbuhci - ok
16:04:26.0027 4612 [ 35c9095fa7076466afbfc5b9ec4b779e ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
16:04:26.0073 4612 usb_rndisx - ok
16:04:26.0132 4612 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
16:04:26.0135 4612 UxSms - ok
16:04:26.0224 4612 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
16:04:26.0236 4612 vds - ok
16:04:26.0286 4612 [ 87b06e1f30b749a114f74622d013f8d4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:04:26.0313 4612 vga - ok
16:04:26.0395 4612 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
16:04:26.0419 4612 VgaSave - ok
16:04:26.0445 4612 [ 5d7159def58a800d5781ba3a879627bc ] viaagp C:\Windows\system32\drivers\viaagp.sys
16:04:26.0447 4612 viaagp - ok
16:04:26.0462 4612 [ c4f3a691b5bad343e6249bd8c2d45dee ] ViaC7 C:\Windows\system32\drivers\viac7.sys
16:04:26.0465 4612 ViaC7 - ok
16:04:26.0530 4612 [ aadf5587a4063f52c2c3fed7887426fc ] viaide C:\Windows\system32\drivers\viaide.sys
16:04:26.0548 4612 viaide - ok
16:04:26.0582 4612 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:04:26.0610 4612 volmgr - ok
16:04:26.0710 4612 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:04:26.0800 4612 volmgrx - ok
16:04:26.0864 4612 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:04:26.0927 4612 volsnap - ok
16:04:26.0986 4612 [ 587253e09325e6bf226b299774b728a9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:04:26.0990 4612 vsmraid - ok
16:04:27.0225 4612 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
16:04:27.0290 4612 VSS - ok
16:04:27.0376 4612 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
16:04:27.0396 4612 W32Time - ok
16:04:27.0457 4612 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:04:27.0460 4612 WacomPen - ok
16:04:27.0478 4612 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
16:04:27.0529 4612 Wanarp - ok
16:04:27.0710 4612 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:04:27.0712 4612 Wanarpv6 - ok
16:04:27.0866 4612 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:04:28.0038 4612 wcncsvc - ok
16:04:28.0196 4612 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:04:28.0258 4612 WcsPlugInService - ok
16:04:28.0291 4612 [ 78fe9542363f297b18c027b2d7e7c07f ] Wd C:\Windows\system32\drivers\wd.sys
16:04:28.0293 4612 Wd - ok
16:04:28.0327 4612 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:04:28.0427 4612 Wdf01000 - ok
16:04:28.0456 4612 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:04:28.0460 4612 WdiServiceHost - ok
16:04:28.0465 4612 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:04:28.0469 4612 WdiSystemHost - ok
16:04:28.0589 4612 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
16:04:28.0595 4612 WebClient - ok
16:04:28.0675 4612 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:04:28.0698 4612 Wecsvc - ok
16:04:28.0726 4612 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:04:28.0731 4612 wercplsupport - ok
16:04:28.0801 4612 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
16:04:28.0806 4612 WerSvc - ok
16:04:28.0913 4612 [ 4575aa12561c5648483403541d0d7f2b ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
16:04:28.0916 4612 WinDefend - ok
16:04:28.0924 4612 WinHttpAutoProxySvc - ok
16:04:29.0173 4612 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:04:29.0186 4612 Winmgmt - ok
16:04:29.0522 4612 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
16:04:29.0591 4612 WinRM - ok
16:04:29.0644 4612 [ 676f4b665bdd8053eaa53ac1695b8074 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
16:04:29.0656 4612 WinUSB - ok
16:04:29.0705 4612 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:04:29.0717 4612 Wlansvc - ok
16:04:29.0775 4612 wltrysvc - ok
16:04:29.0872 4612 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:04:29.0873 4612 WmiAcpi - ok
16:04:29.0986 4612 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:04:29.0992 4612 wmiApSrv - ok
16:04:30.0074 4612 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
16:04:30.0086 4612 WMPNetworkSvc - ok
16:04:30.0208 4612 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:04:30.0376 4612 WPCSvc - ok
16:04:30.0461 4612 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:04:30.0472 4612 WPDBusEnum - ok
16:04:30.0575 4612 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
16:04:30.0629 4612 WpdUsb - ok
16:04:31.0195 4612 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:04:31.0211 4612 WPFFontCache_v0400 - ok
16:04:31.0259 4612 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:04:31.0279 4612 ws2ifsl - ok
16:04:31.0327 4612 [ 1ca6c40261ddc0425987980d0cd2aaab ] wscsvc C:\Windows\System32\wscsvc.dll
16:04:31.0332 4612 wscsvc - ok
16:04:31.0340 4612 WSearch - ok
16:04:31.0548 4612 [ fc3ec24fce372c89423e015a2ac1a31e ] wuauserv C:\Windows\system32\wuaueng.dll
16:04:31.0628 4612 wuauserv - ok
16:04:31.0651 4612 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:04:31.0662 4612 WUDFRd - ok
16:04:31.0696 4612 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:04:31.0703 4612 wudfsvc - ok
16:04:31.0763 4612 ================ Scan global ===============================
16:04:31.0809 4612 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
16:04:31.0938 4612 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
16:04:31.0998 4612 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
16:04:32.0145 4612 (d4e6d91c1349b7bfb3599a6ada56851b) C:\Windows\system32\services.exe
16:04:32.0191 4612 [Global] - ok
16:04:32.0192 4612 ================ Scan MBR ==================================
16:04:32.0403 4612 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
16:04:33.0326 4612 \Device\Harddisk0\DR0 - ok
16:04:33.0326 4612 ================ Scan VBR ==================================
16:04:33.0351 4612 Boot (0x1200) (a431838945ca4aead0b42711b8ca0e9b) \Device\Harddisk0\DR0\Partition1
16:04:33.0355 4612 \Device\Harddisk0\DR0\Partition1 - ok
16:04:33.0378 4612 Boot (0x1200) (25ecac526feeabbaed81c5132d1e93c5) \Device\Harddisk0\DR0\Partition2
16:04:33.0409 4612 \Device\Harddisk0\DR0\Partition2 - ok
16:04:33.0409 4612 ============================================================
16:04:33.0409 4612 Scan finished
16:04:33.0409 4612 ============================================================
16:04:33.0437 5676 Detected object count: 0
16:04:33.0437 5676 Actual detected object count: 0
16:06:43.0688 1340 ============================================================
16:06:43.0688 1340 Scan started
16:06:43.0688 1340 Mode: Manual;
16:06:43.0688 1340 ============================================================
16:06:44.0877 1340 ================ Scan services =============================
16:06:45.0200 1340 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
16:06:45.0204 1340 ACPI - ok
16:06:45.0297 1340 [ 04f0fcac69c7c71a3ac4eb97fafc8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:06:45.0303 1340 adp94xx - ok
16:06:45.0442 1340 [ 60505e0041f7751bdbb80f88bf45c2ce ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:06:45.0448 1340 adpahci - ok
16:06:45.0502 1340 [ 8a42779b02aec986eab64ecfc98f8bd7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
16:06:45.0504 1340 adpu160m - ok
16:06:45.0558 1340 [ 241c9e37f8ce45ef51c3de27515ca4e5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:06:45.0560 1340 adpu320 - ok
16:06:45.0672 1340 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:06:45.0674 1340 AeLookupSvc - ok
16:06:45.0828 1340 [ 827dbc22c96eecf6d36a13162fabafd3 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe
16:06:45.0831 1340 AESTFilters - ok
16:06:45.0952 1340 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
16:06:45.0957 1340 AFD - ok
16:06:46.0026 1340 [ 13f9e33747e6b41a3ff305c37db0d360 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:06:46.0029 1340 agp440 - ok
16:06:46.0081 1340 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
16:06:46.0083 1340 aic78xx - ok
16:06:46.0167 1340 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
16:06:46.0169 1340 ALG - ok
16:06:46.0228 1340 [ 9eaef5fc9b8e351afa7e78a6fae91f91 ] aliide C:\Windows\system32\drivers\aliide.sys
16:06:46.0230 1340 aliide - ok
16:06:46.0274 1340 [ c47344bc706e5f0b9dce369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
16:06:46.0275 1340 amdagp - ok
16:06:46.0305 1340 [ 9b78a39a4c173fdbc1321e0dd659b34c ] amdide C:\Windows\system32\drivers\amdide.sys
16:06:46.0306 1340 amdide - ok
16:06:46.0323 1340 [ 18f29b49ad23ecee3d2a826c725c8d48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
16:06:46.0325 1340 AmdK7 - ok
16:06:46.0408 1340 [ 93ae7f7dd54ab986a6f1a1b37be7442d ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:06:46.0410 1340 AmdK8 - ok
16:06:46.0460 1340 [ 1de27858a431a5749e0f3df54ba935b9 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
16:06:46.0462 1340 ApfiltrService - ok
16:06:46.0509 1340 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
16:06:46.0510 1340 Appinfo - ok
16:06:46.0605 1340 [ 20f6f19fe9e753f2780dc2fa083ad597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:06:46.0606 1340 Apple Mobile Device - ok
16:06:46.0686 1340 [ 66faa704724f42cfb8ef7c24c66f9591 ] AR5211 C:\Windows\system32\DRIVERS\ar5211.sys
16:06:46.0692 1340 AR5211 - ok
16:06:46.0735 1340 [ 5d2888182fb46632511acee92fdad522 ] arc C:\Windows\system32\drivers\arc.sys
16:06:46.0736 1340 arc - ok
16:06:46.0777 1340 [ 5e2a321bd7c8b3624e41fdec3e244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:06:46.0778 1340 arcsas - ok
16:06:46.0805 1340 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:06:46.0806 1340 AsyncMac - ok
16:06:46.0836 1340 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
16:06:46.0837 1340 atapi - ok
16:06:46.0900 1340 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:06:46.0904 1340 AudioEndpointBuilder - ok
16:06:46.0913 1340 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:06:46.0917 1340 Audiosrv - ok
16:06:46.0951 1340 [ 423c7b87e886ac93d22936ea82665f83 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
16:06:46.0952 1340 BCM42RLY - ok
16:06:47.0067 1340 [ 41a70777e892c3dea606758366566a77 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
16:06:47.0079 1340 BCM43XX - ok
16:06:47.0110 1340 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
16:06:47.0111 1340 Beep - ok
16:06:47.0168 1340 [ c789af0f724fda5852fb9a7d3a432381 ] BFE C:\Windows\System32\bfe.dll
16:06:47.0172 1340 BFE - ok
16:06:47.0254 1340 [ 93952506c6d67330367f7e7934b6a02f ] BITS C:\Windows\System32\qmgr.dll
16:06:47.0265 1340 BITS - ok
16:06:47.0301 1340 [ d4df28447741fd3d953526e33a617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
16:06:47.0302 1340 blbdrive - ok
16:06:47.0387 1340 [ 1c87705ccb2f60172b0fc86b5d82f00d ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:06:47.0391 1340 Bonjour Service - ok
16:06:47.0452 1340 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:06:47.0453 1340 bowser - ok
16:06:47.0480 1340 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
16:06:47.0481 1340 BrFiltLo - ok
16:06:47.0503 1340 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
16:06:47.0504 1340 BrFiltUp - ok
16:06:47.0542 1340 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
16:06:47.0544 1340 Browser - ok
16:06:47.0626 1340 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
16:06:47.0627 1340 Brserid - ok
16:06:47.0663 1340 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
16:06:47.0664 1340 BrSerWdm - ok
16:06:47.0690 1340 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
16:06:47.0692 1340 BrUsbMdm - ok
16:06:47.0731 1340 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
16:06:47.0732 1340 BrUsbSer - ok
16:06:47.0781 1340 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:06:47.0782 1340 BTHMODEM - ok
16:06:47.0823 1340 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:06:47.0824 1340 cdfs - ok
16:06:48.0041 1340 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:06:48.0042 1340 cdrom - ok
16:06:48.0136 1340 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
16:06:48.0137 1340 CertPropSvc - ok
16:06:48.0158 1340 [ e5d4133f37219dbcfe102bc61072589d ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:06:48.0159 1340 circlass - ok
16:06:48.0223 1340 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
16:06:48.0226 1340 CLFS - ok
16:06:48.0303 1340 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:06:48.0304 1340 clr_optimization_v2.0.50727_32 - ok
16:06:48.0405 1340 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:06:48.0407 1340 clr_optimization_v4.0.30319_32 - ok
16:06:48.0440 1340 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:06:48.0442 1340 CmBatt - ok
16:06:48.0504 1340 [ 0ca25e686a4928484e9fdabd168ab629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:06:48.0505 1340 cmdide - ok
16:06:48.0559 1340 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:06:48.0560 1340 Compbatt - ok
16:06:48.0570 1340 COMSysApp - ok
16:06:48.0585 1340 [ 741e9dff4f42d2d8477d0fc1dc0df871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:06:48.0586 1340 crcdisk - ok
16:06:48.0646 1340 [ 1f07becdca750766a96cda811ba86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
16:06:48.0647 1340 Crusoe - ok
16:06:48.0726 1340 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:06:48.0728 1340 CryptSvc - ok
16:06:48.0824 1340 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:06:48.0839 1340 DcomLaunch - ok
16:06:48.0903 1340 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:06:48.0905 1340 DfsC - ok
16:06:49.0072 1340 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
16:06:49.0089 1340 DFSR - ok
16:06:49.0131 1340 [ aeb179b855161ec9c88172abc75ad0ef ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
16:06:49.0132 1340 dg_ssudbus - ok
16:06:49.0192 1340 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
16:06:49.0194 1340 Dhcp - ok
16:06:49.0251 1340 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
16:06:49.0251 1340 disk - ok
16:06:49.0285 1340 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:06:49.0288 1340 Dnscache - ok
16:06:49.0332 1340 [ db29915209770d8b59654345ec2d943a ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
16:06:49.0334 1340 DockLoginService - ok
16:06:49.0407 1340 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:06:49.0410 1340 dot3svc - ok
16:06:49.0460 1340 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
16:06:49.0463 1340 DPS - ok
16:06:49.0519 1340 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:06:49.0520 1340 drmkaud - ok
16:06:49.0631 1340 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:06:49.0638 1340 DXGKrnl - ok
16:06:49.0679 1340 [ 908ed85b7806e8af3af5e9b74f7809d4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
16:06:49.0681 1340 e1express - ok
16:06:49.0719 1340 [ 5425f74ac0c1dbd96a1e04f17d63f94c ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
16:06:49.0722 1340 E1G60 - ok
16:06:49.0802 1340 [ 8a45015e85a4dce0086b9973f0fd9a20 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
16:06:49.0804 1340 eamonm - ok
16:06:49.0882 1340 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
16:06:49.0884 1340 EapHost - ok
16:06:49.0949 1340 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
16:06:49.0951 1340 Ecache - ok
16:06:50.0007 1340 [ 5412ed24fffca64e2f0168399b86c952 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
16:06:50.0009 1340 ehdrv - ok
16:06:50.0100 1340 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:06:50.0103 1340 ehRecvr - ok
16:06:50.0129 1340 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
16:06:50.0131 1340 ehSched - ok
16:06:50.0146 1340 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
16:06:50.0147 1340 ehstart - ok
16:06:50.0298 1340 [ ad4faade819e0da9933bea7c01d2c763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
16:06:50.0311 1340 ekrn - ok
16:06:50.0365 1340 [ 23b62471681a124889978f6295b3f4c6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:06:50.0370 1340 elxstor - ok
16:06:50.0604 1340 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
16:06:50.0616 1340 EMDMgmt - ok
16:06:50.0676 1340 [ 774babcb1144513dc86992003740b774 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
16:06:50.0680 1340 epfw - ok
16:06:50.0728 1340 [ 2c22cc39309ee06ae870c183bf2a769d ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
16:06:50.0729 1340 EpfwLWF - ok
16:06:50.0784 1340 [ 2b4e5f01a4e786b422f4d617b51fa7d9 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
16:06:50.0786 1340 epfwwfp - ok
16:06:50.0881 1340 [ 3db974f3935483555d7148663f726c61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:06:50.0882 1340 ErrDev - ok
16:06:51.0023 1340 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
16:06:51.0029 1340 EventSystem - ok
16:06:51.0103 1340 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
16:06:51.0106 1340 exfat - ok
16:06:51.0311 1340 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:06:51.0317 1340 fastfat - ok
16:06:51.0475 1340 [ afe1e8b9782a0dd7fb46bbd88e43f89a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:06:51.0476 1340 fdc - ok
16:06:51.0572 1340 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
16:06:51.0576 1340 fdPHost - ok
16:06:51.0717 1340 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
16:06:51.0720 1340 FDResPub - ok
16:06:51.0827 1340 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:06:51.0829 1340 FileInfo - ok
16:06:51.0863 1340 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:06:51.0865 1340 Filetrace - ok
16:06:51.0975 1340 [ 1f63900e2eb00101b9aca2b7a870704e ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:06:51.0986 1340 FLEXnet Licensing Service - ok
16:06:52.0027 1340 [ 85b7cf99d532820495d68d747fda9ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:06:52.0028 1340 flpydisk - ok
16:06:52.0083 1340 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:06:52.0085 1340 FltMgr - ok
16:06:52.0164 1340 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
16:06:52.0173 1340 FontCache - ok
16:06:52.0285 1340 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:06:52.0286 1340 FontCache3.0.0.0 - ok
16:06:52.0328 1340 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:06:52.0329 1340 Fs_Rec - ok
16:06:52.0367 1340 [ 34582a6e6573d54a07ece5fe24a126b5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:06:52.0368 1340 gagp30kx - ok
16:06:52.0399 1340 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:06:52.0400 1340 GEARAspiWDM - ok
16:06:52.0474 1340 [ 9f5f2f0fb0a7f5aa9f16b9a7b6dad89f ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
16:06:52.0475 1340 GoogleDesktopManager-051210-111108 - ok
16:06:52.0526 1340 [ d3316f6e3c011435f36e3d6e49b3196c ] GoToAssist C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
16:06:52.0527 1340 GoToAssist - ok
16:06:52.0664 1340 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
16:06:52.0672 1340 gpsvc - ok
16:06:52.0785 1340 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
16:06:52.0787 1340 gupdate - ok
16:06:52.0795 1340 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
16:06:52.0797 1340 gupdatem - ok
16:06:52.0874 1340 [ 5d4bc124faae6730ac002cdb67bf1a1c ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:06:52.0877 1340 gusvc - ok
16:06:53.0234 1340 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:06:53.0244 1340 HDAudBus - ok
16:06:53.0303 1340 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:06:53.0306 1340 HidBth - ok
16:06:53.0333 1340 [ d8df3722d5e961baa1292aa2f12827e2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:06:53.0334 1340 HidIr - ok
16:06:53.0381 1340 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\system32\hidserv.dll
16:06:53.0383 1340 hidserv - ok
16:06:53.0421 1340 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:06:53.0422 1340 HidUsb - ok
16:06:53.0450 1340 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:06:53.0452 1340 hkmsvc - ok
16:06:53.0488 1340 [ 16ee7b23a009e00d835cdb79574a91a6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
16:06:53.0489 1340 HpCISSs - ok
16:06:53.0549 1340 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:06:53.0554 1340 HTTP - ok
16:06:53.0652 1340 [ c6b032d69650985468160fc9937cf5b4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
16:06:53.0653 1340 i2omp - ok
16:06:53.0682 1340 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:06:53.0683 1340 i8042prt - ok
16:06:53.0751 1340 [ 54155ea1b0df185878e0fc9ec3ac3a14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
16:06:53.0754 1340 iaStorV - ok
16:06:53.0904 1340 [ 1cf03c69b49acb70c722df92755c0c8c ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:06:53.0906 1340 IDriverT - ok
16:06:53.0999 1340 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:06:54.0009 1340 idsvc - ok
16:06:54.0389 1340 [ dce0b53570703cce580d066f89ef58cd ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
16:06:54.0463 1340 igfx - ok
16:06:54.0519 1340 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:06:54.0520 1340 iirsp - ok
16:06:54.0578 1340 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
16:06:54.0584 1340 IKEEXT - ok
16:06:54.0653 1340 [ ab8b0206bcdff0ed03cec500fa03a32a ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
16:06:54.0654 1340 IntcHdmiAddService - ok
16:06:54.0691 1340 [ 83aa759f3189e6370c30de5dc5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
16:06:54.0692 1340 intelide - ok
16:06:54.0724 1340 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:06:54.0725 1340 intelppm - ok
16:06:54.0750 1340 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:06:54.0753 1340 IPBusEnum - ok
16:06:54.0805 1340 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:06:54.0806 1340 IpFilterDriver - ok
16:06:54.0877 1340 [ 1998bd97f950680bb55f55a7244679c2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:06:54.0882 1340 iphlpsvc - ok
16:06:54.0888 1340 IpInIp - ok
16:06:54.0930 1340 [ b25aaf203552b7b3491139d582b39ad1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
16:06:54.0931 1340 IPMIDRV - ok
16:06:54.0948 1340 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
16:06:54.0949 1340 IPNAT - ok
16:06:55.0031 1340 [ f62c69376a95795fe7cdb1c778edaca4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:06:55.0039 1340 iPod Service - ok
16:06:55.0061 1340 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:06:55.0062 1340 IRENUM - ok
16:06:55.0132 1340 [ 6c70698a3e5c4376c6ab5c7c17fb0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:06:55.0133 1340 isapnp - ok
16:06:55.0168 1340 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:06:55.0171 1340 iScsiPrt - ok
16:06:55.0199 1340 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
16:06:55.0200 1340 iteatapi - ok
16:06:55.0243 1340 [ 20425664e2e196d339ca877e0387c023 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
16:06:55.0244 1340 itecir - ok
16:06:55.0275 1340 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
16:06:55.0276 1340 iteraid - ok
16:06:55.0324 1340 [ a67e8cfcad7d4f8b35643d6c79ba64c3 ] k57nd60x C:\Windows\system32\DRIVERS\k57nd60x.sys
16:06:55.0327 1340 k57nd60x - ok
16:06:55.0357 1340 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:06:55.0358 1340 kbdclass - ok
16:06:55.0402 1340 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:06:55.0402 1340 kbdhid - ok
16:06:55.0437 1340 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
16:06:55.0439 1340 KeyIso - ok
16:06:55.0521 1340 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:06:55.0525 1340 KSecDD - ok
16:06:55.0601 1340 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:06:55.0606 1340 KtmRm - ok
16:06:55.0655 1340 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\system32\srvsvc.dll
16:06:55.0661 1340 LanmanServer - ok
16:06:55.0716 1340 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:06:55.0721 1340 LanmanWorkstation - ok
16:06:55.0764 1340 [ b716d4d759663bc4174fd0a379da8e50 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
16:06:55.0765 1340 libusb0 - ok
16:06:55.0877 1340 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:06:55.0878 1340 lltdio - ok
16:06:55.0940 1340 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:06:55.0944 1340 lltdsvc - ok
16:06:55.0991 1340 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:06:55.0993 1340 lmhosts - ok
16:06:56.0192 1340 [ c7e15e82879bf3235b559563d4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:06:56.0193 1340 LSI_FC - ok
16:06:56.0209 1340 [ ee01ebae8c9bf0fa072e0ff68718920a ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:06:56.0210 1340 LSI_SAS - ok
16:06:56.0250 1340 [ 912a04696e9ca30146a62afa1463dd5c ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:06:56.0252 1340 LSI_SCSI - ok
16:06:56.0296 1340 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
16:06:56.0298 1340 luafv - ok
16:06:56.0345 1340 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:06:56.0348 1340 Mcx2Svc - ok
16:06:56.0404 1340 [ 0001ce609d66632fa17b84705f658879 ] megasas C:\Windows\system32\drivers\megasas.sys
16:06:56.0405 1340 megasas - ok
16:06:56.0477 1340 [ c252f32cd9a49dbfc25ecf26ebd51a99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
16:06:56.0482 1340 MegaSR - ok
16:06:56.0543 1340 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
16:06:56.0546 1340 MMCSS - ok
16:06:56.0596 1340 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
16:06:56.0597 1340 Modem - ok
16:06:56.0650 1340 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:06:56.0653 1340 monitor - ok
16:06:56.0694 1340 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:06:56.0696 1340 mouclass - ok
16:06:56.0761 1340 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:06:56.0762 1340 mouhid - ok
16:06:56.0820 1340 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
16:06:56.0822 1340 MountMgr - ok
16:06:57.0136 1340 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:06:57.0138 1340 MozillaMaintenance - ok
16:06:57.0237 1340 [ 511d011289755dd9f9a7579fb0b064e6 ] mpio C:\Windows\system32\drivers\mpio.sys
16:06:57.0239 1340 mpio - ok
16:06:57.0314 1340 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:06:57.0316 1340 mpsdrv - ok
16:06:57.0499 1340 [ 5de62c6e9108f14f6794060a9bdecaec ] MpsSvc C:\Windows\system32\mpssvc.dll
16:06:57.0508 1340 MpsSvc - ok
16:06:57.0596 1340 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
16:06:57.0597 1340 Mraid35x - ok
16:06:57.0644 1340 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:06:57.0647 1340 MRxDAV - ok
16:06:57.0713 1340 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:06:57.0716 1340 mrxsmb - ok
16:06:57.0757 1340 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:06:57.0761 1340 mrxsmb10 - ok
16:06:57.0831 1340 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:06:57.0833 1340 mrxsmb20 - ok
16:06:57.0911 1340 [ 5457dcfa7c0da43522f4d9d4049c1472 ] msahci C:\Windows\system32\drivers\msahci.sys
16:06:57.0912 1340 msahci - ok
16:06:58.0010 1340 [ 4468b0f385a86ecddaf8d3ca662ec0e7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:06:58.0013 1340 msdsm - ok
16:06:58.0065 1340 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
16:06:58.0070 1340 MSDTC - ok
16:06:58.0090 1340 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:06:58.0092 1340 Msfs - ok
16:06:58.0148 1340 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:06:58.0150 1340 msisadrv - ok
16:06:58.0218 1340 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:06:58.0224 1340 MSiSCSI - ok
16:06:58.0234 1340 msiserver - ok
16:06:58.0296 1340 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:06:58.0298 1340 MSKSSRV - ok
16:06:58.0357 1340 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:06:58.0358 1340 MSPCLOCK - ok
16:06:58.0384 1340 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:06:58.0385 1340 MSPQM - ok
16:06:58.0444 1340 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:06:58.0446 1340 MsRPC - ok
16:06:58.0527 1340 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:06:58.0528 1340 mssmbios - ok
16:06:58.0554 1340 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:06:58.0555 1340 MSTEE - ok
16:06:58.0634 1340 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
16:06:58.0636 1340 Mup - ok
16:06:58.0700 1340 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
16:06:58.0706 1340 napagent - ok
16:06:58.0783 1340 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:06:58.0786 1340 NativeWifiP - ok
16:06:58.0951 1340 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:06:58.0958 1340 NDIS - ok
16:06:59.0002 1340 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:06:59.0003 1340 NdisTapi - ok
16:06:59.0024 1340 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:06:59.0025 1340 Ndisuio - ok
16:06:59.0100 1340 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:06:59.0102 1340 NdisWan - ok
16:06:59.0171 1340 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:06:59.0173 1340 NDProxy - ok
16:06:59.0199 1340 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:06:59.0201 1340 NetBIOS - ok
16:06:59.0259 1340 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
16:06:59.0263 1340 netbt - ok
16:06:59.0337 1340 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
16:06:59.0339 1340 Netlogon - ok
16:06:59.0395 1340 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
16:06:59.0400 1340 Netman - ok
16:06:59.0467 1340 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
16:06:59.0472 1340 netprofm - ok
16:06:59.0523 1340 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:06:59.0524 1340 NetTcpPortSharing - ok
16:06:59.0577 1340 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:06:59.0578 1340 nfrd960 - ok
16:06:59.0613 1340 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:06:59.0617 1340 NlaSvc - ok
16:06:59.0687 1340 [ b48dc6abcd3aeff8618350ccbdc6b09a ] NPF C:\Windows\system32\drivers\npf.sys
16:06:59.0688 1340 NPF - ok
16:06:59.0749 1340 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:06:59.0750 1340 Npfs - ok
16:06:59.0780 1340 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
16:06:59.0783 1340 nsi - ok
16:06:59.0834 1340 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:06:59.0835 1340 nsiproxy - ok
16:07:00.0061 1340 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:07:00.0076 1340 Ntfs - ok
16:07:00.0118 1340 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
16:07:00.0120 1340 ntrigdigi - ok
16:07:00.0264 1340 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
16:07:00.0265 1340 Null - ok
16:07:00.0313 1340 [ 2edf9e7751554b42cbb60116de727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:07:00.0316 1340 nvraid - ok
16:07:00.0418 1340 [ abed0c09758d1d97db0042dbb2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:07:00.0420 1340 nvstor - ok
16:07:00.0509 1340 [ 18bbdf913916b71bd54575bdb6eeac0b ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:07:00.0512 1340 nv_agp - ok
16:07:00.0520 1340 NwlnkFlt - ok
16:07:00.0536 1340 NwlnkFwd - ok
16:07:00.0620 1340 [ 2cf21d5f8f1b74bb1922135ac2b12ddb ] OA001Ufd C:\Windows\system32\DRIVERS\OA001Ufd.sys
16:07:00.0623 1340 OA001Ufd - ok
16:07:00.0689 1340 [ 4075063d25af9da64101769854b83787 ] OA001Vid C:\Windows\system32\DRIVERS\OA001Vid.sys
16:07:00.0693 1340 OA001Vid - ok
16:07:00.0782 1340 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:07:00.0790 1340 odserv - ok
16:07:00.0860 1340 [ 6f310e890d46e246e0e261a63d9b36b4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:07:00.0861 1340 ohci1394 - ok
16:07:00.0916 1340 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:07:00.0919 1340 ose - ok
16:07:01.0106 1340 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
16:07:01.0123 1340 p2pimsvc - ok
16:07:01.0232 1340 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
16:07:01.0246 1340 p2psvc - ok
16:07:01.0292 1340 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
16:07:01.0294 1340 Parport - ok
16:07:01.0347 1340 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:07:01.0350 1340 partmgr - ok
16:07:01.0414 1340 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
16:07:01.0415 1340 Parvdm - ok
16:07:01.0443 1340 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
16:07:01.0449 1340 PcaSvc - ok
16:07:01.0491 1340 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
16:07:01.0495 1340 pci - ok
16:07:01.0555 1340 [ fc175f5ddab666d7f4d17449a547626f ] pciide C:\Windows\system32\drivers\pciide.sys
16:07:01.0556 1340 pciide - ok
16:07:01.0609 1340 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:07:01.0613 1340 pcmcia - ok
16:07:01.0687 1340 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:07:01.0701 1340 PEAUTH - ok
16:07:02.0100 1340 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
16:07:02.0127 1340 pla - ok
16:07:02.0275 1340 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:07:02.0287 1340 PlugPlay - ok
16:07:02.0344 1340 [ 088335b06f75adbcbb81575c7cae6c43 ] pneteth C:\Windows\system32\DRIVERS\pneteth.sys
16:07:02.0346 1340 pneteth - ok
16:07:02.0398 1340 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
16:07:02.0413 1340 PNRPAutoReg - ok
16:07:02.0436 1340 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
16:07:02.0451 1340 PNRPsvc - ok
16:07:02.0530 1340 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:07:02.0535 1340 PolicyAgent - ok
16:07:02.0580 1340 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:07:02.0581 1340 PptpMiniport - ok
16:07:02.0713 1340 [ 2027293619dd0f047c584cf2e7df4ffd ] Processor C:\Windows\system32\drivers\processr.sys
16:07:02.0715 1340 Processor - ok
16:07:02.0764 1340 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
16:07:02.0767 1340 ProfSvc - ok
16:07:02.0826 1340 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
16:07:02.0828 1340 ProtectedStorage - ok
16:07:02.0910 1340 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
16:07:02.0912 1340 PSched - ok
16:07:02.0957 1340 [ e42e3433dbb4cffe8fdd91eab29aea8e ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
16:07:02.0959 1340 PxHelp20 - ok
16:07:03.0039 1340 [ 0a6db55afb7820c99aa1f3a1d270f4f6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:07:03.0050 1340 ql2300 - ok
16:07:03.0078 1340 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:07:03.0080 1340 ql40xx - ok
16:07:03.0131 1340 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
16:07:03.0137 1340 QWAVE - ok
16:07:03.0186 1340 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:07:03.0187 1340 QWAVEdrv - ok
16:07:03.0741 1340 [ e642b131fb74caf4bb8a014f31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
16:07:03.0771 1340 R300 - ok
16:07:03.0834 1340 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:07:03.0836 1340 RasAcd - ok
16:07:03.0880 1340 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
16:07:03.0886 1340 RasAuto - ok
16:07:03.0953 1340 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:07:03.0956 1340 Rasl2tp - ok
16:07:04.0026 1340 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
16:07:04.0037 1340 RasMan - ok
16:07:04.0080 1340 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:07:04.0082 1340 RasPppoe - ok
16:07:04.0149 1340 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:07:04.0151 1340 RasSstp - ok
16:07:04.0222 1340 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:07:04.0227 1340 rdbss - ok
16:07:04.0286 1340 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:07:04.0287 1340 RDPCDD - ok
16:07:04.0337 1340 [ fbc0bacd9c3d7f6956853f64a66e252d ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
16:07:04.0341 1340 rdpdr - ok
16:07:04.0350 1340 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:07:04.0352 1340 RDPENCDD - ok
16:07:04.0421 1340 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:07:04.0426 1340 RDPWD - ok
16:07:04.0479 1340 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:07:04.0482 1340 RemoteAccess - ok
16:07:04.0554 1340 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:07:04.0558 1340 RemoteRegistry - ok
16:07:04.0655 1340 [ c2ef513bbe069f0d4ee0938a76f975d3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
16:07:04.0656 1340 rimmptsk - ok
16:07:04.0723 1340 [ c398bca91216755b098679a8da8a2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
16:07:04.0725 1340 rimsptsk - ok
16:07:04.0777 1340 [ 2a2554cb24506e0a0508fc395c4a1b42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
16:07:04.0778 1340 rismxdp - ok
16:07:04.0805 1340 [ b60f58f175de20a6739194e85b035178 ] rpcapd C:\Program Files\WinPcap\rpcapd.exe
16:07:04.0807 1340 rpcapd - ok
16:07:04.0837 1340 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
16:07:04.0840 1340 RpcLocator - ok
16:07:04.0891 1340 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
16:07:04.0899 1340 RpcSs - ok
16:07:04.0940 1340 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:07:04.0941 1340 rspndr - ok
16:07:05.0001 1340 [ 4b36f90ef3515b986944aa223871e12e ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
16:07:05.0007 1340 RTL8192su - ok
16:07:05.0014 1340 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
16:07:05.0016 1340 SamSs - ok
16:07:05.0093 1340 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:07:05.0095 1340 sbp2port - ok
16:07:05.0122 1340 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:07:05.0126 1340 SCardSvr - ok
16:07:05.0176 1340 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
16:07:05.0187 1340 Schedule - ok
16:07:05.0215 1340 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:07:05.0217 1340 SCPolicySvc - ok
16:07:05.0260 1340 [ 8f36b54688c31eed4580129040c6a3d3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
16:07:05.0262 1340 sdbus - ok
16:07:05.0291 1340 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:07:05.0296 1340 SDRSVC - ok
16:07:05.0342 1340 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:07:05.0343 1340 secdrv - ok
16:07:05.0360 1340 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
16:07:05.0364 1340 seclogon - ok
16:07:05.0415 1340 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\System32\sens.dll
16:07:05.0420 1340 SENS - ok
16:07:05.0490 1340 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
16:07:05.0491 1340 Serenum - ok
16:07:05.0510 1340 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
16:07:05.0512 1340 Serial - ok
16:07:05.0548 1340 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:07:05.0549 1340 sermouse - ok
16:07:05.0691 1340 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
16:07:05.0696 1340 SessionEnv - ok
16:07:05.0755 1340 [ 3efa810bdca87f6ecc24f9832243fe86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:07:05.0757 1340 sffdisk - ok
16:07:05.0783 1340 [ e95d451f7ea3e583aec75f3b3ee42dc5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:07:05.0785 1340 sffp_mmc - ok
16:07:05.0816 1340 [ 3d0ea348784b7ac9ea9bd9f317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:07:05.0818 1340 sffp_sd - ok
16:07:05.0883 1340 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:07:05.0884 1340 sfloppy - ok
16:07:05.0965 1340 [ e1499bd0ff76b1b2fbbf1af339d91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:07:05.0971 1340 SharedAccess - ok
16:07:06.0019 1340 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:07:06.0028 1340 ShellHWDetection - ok
16:07:06.0098 1340 [ 1d76624a09a054f682d746b924e2dbc3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
16:07:06.0100 1340 sisagp - ok
16:07:06.0111 1340 [ 43cb7aa756c7db280d01da9b676cfde2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
16:07:06.0116 1340 SiSRaid2 - ok
16:07:06.0174 1340 [ a99c6c8b0baa970d8aa59ddc50b57f94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:07:06.0177 1340 SiSRaid4 - ok
16:07:06.0425 1340 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
16:07:06.0483 1340 slsvc - ok
16:07:06.0535 1340 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
16:07:06.0544 1340 SLUINotify - ok
16:07:06.0604 1340 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:07:06.0606 1340 Smb - ok
16:07:06.0668 1340 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:07:06.0673 1340 SNMPTRAP - ok
16:07:06.0713 1340 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
16:07:06.0715 1340 spldr - ok
16:07:06.0763 1340 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
16:07:06.0769 1340 Spooler - ok
16:07:06.0827 1340 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:07:06.0832 1340 srv - ok
16:07:06.0866 1340 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:07:06.0870 1340 srv2 - ok
16:07:06.0924 1340 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:07:06.0926 1340 srvnet - ok
16:07:06.0986 1340 [ ffe42941e0326c322f40b0b79a46493c ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
16:07:06.0989 1340 sscdbus - ok
16:07:07.0036 1340 [ a68e7d87adfbb8c50d88cd58230c6819 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
16:07:07.0037 1340 sscdmdfl - ok
16:07:07.0123 1340 [ b534b24151281856ec2f69ed3d6d60dd ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
16:07:07.0126 1340 sscdmdm - ok
16:07:07.0164 1340 [ d04bd59f28c78e2e66632092cafc0a2b ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
16:07:07.0166 1340 sscdserd - ok
16:07:07.0215 1340 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:07:07.0223 1340 SSDPSRV - ok
16:07:07.0299 1340 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:07:07.0307 1340 SstpSvc - ok
16:07:07.0398 1340 [ 6c0cc5868f99064516fb9f82563a02ea ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
16:07:07.0401 1340 ssudmdm - ok
16:07:07.0561 1340 [ ddeb942850278d67edc108d57f774bf8 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe
16:07:07.0564 1340 STacSV - ok
16:07:07.0649 1340 [ c4be9c3af8af6f2e4cdd22fcabf77a1b ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
16:07:07.0653 1340 STHDA - ok
16:07:07.0846 1340 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
16:07:07.0854 1340 stisvc - ok
16:07:08.0085 1340 [ 1d0063597c3666404fcf97698abeb019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
16:07:08.0086 1340 stllssvr - ok
16:07:08.0201 1340 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:07:08.0202 1340 swenum - ok
16:07:08.0498 1340 [ f577910a133a592234ebaad3f3afa258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:07:08.0507 1340 SwitchBoard - ok
16:07:08.0594 1340 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
16:07:08.0604 1340 swprv - ok
16:07:08.0635 1340 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
16:07:08.0637 1340 Symc8xx - ok
16:07:08.0686 1340 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
16:07:08.0687 1340 Sym_hi - ok
16:07:08.0731 1340 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
16:07:08.0733 1340 Sym_u3 - ok
16:07:08.0789 1340 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
16:07:08.0803 1340 SysMain - ok
16:07:08.0848 1340 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:07:08.0852 1340 TabletInputService - ok
16:07:08.0916 1340 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:07:08.0921 1340 TapiSrv - ok
16:07:08.0959 1340 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
16:07:08.0962 1340 TBS - ok
16:07:09.0041 1340 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:07:09.0050 1340 Tcpip - ok
16:07:09.0075 1340 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
16:07:09.0084 1340 Tcpip6 - ok
16:07:09.0119 1340 [ 608c345a255d82a6289c2d468eb41fd7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:07:09.0120 1340 tcpipreg - ok
16:07:09.0150 1340 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:07:09.0151 1340 TDPIPE - ok
16:07:09.0184 1340 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:07:09.0185 1340 TDTCP - ok
16:07:09.0237 1340 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:07:09.0238 1340 tdx - ok
16:07:09.0278 1340 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:07:09.0281 1340 TermDD - ok
16:07:09.0357 1340 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
16:07:09.0366 1340 TermService - ok
16:07:09.0418 1340 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
16:07:09.0424 1340 Themes - ok
16:07:09.0455 1340 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
16:07:09.0457 1340 THREADORDER - ok
16:07:09.0528 1340 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
16:07:09.0532 1340 TrkWks - ok
16:07:09.0616 1340 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:07:09.0617 1340 TrustedInstaller - ok
16:07:09.0672 1340 [ 2c8fc39cce0b166240929ad88fed2861 ] TsLwWfF C:\Windows\system32\DRIVERS\TsLwWfF.sys
16:07:09.0674 1340 TsLwWfF - ok
16:07:09.0705 1340 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:07:09.0707 1340 tssecsrv - ok
16:07:09.0760 1340 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
16:07:09.0762 1340 tunmp - ok
16:07:09.0818 1340 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:07:09.0819 1340 tunnel - ok
16:07:09.0871 1340 [ 7d33c4db2ce363c8518d2dfcf533941f ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:07:09.0872 1340 uagp35 - ok
16:07:09.0929 1340 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:07:09.0932 1340 udfs - ok
16:07:09.0990 1340 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:07:09.0996 1340 UI0Detect - ok
16:07:10.0041 1340 [ b0acfdc9e4af279e9116c03e014b2b27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:07:10.0043 1340 uliagpkx - ok
16:07:10.0202 1340 [ 9224bb254f591de4ca8d572a5f0d635c ] uliahci C:\Windows\system32\drivers\uliahci.sys
16:07:10.0206 1340 uliahci - ok
16:07:10.0261 1340 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
16:07:10.0264 1340 UlSata - ok
16:07:10.0318 1340 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
16:07:10.0321 1340 ulsata2 - ok
16:07:10.0439 1340 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:07:10.0441 1340 umbus - ok
16:07:10.0515 1340 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
16:07:10.0525 1340 upnphost - ok
16:07:10.0614 1340 [ 83cafcb53201bbac04d822f32438e244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
16:07:10.0616 1340 USBAAPL - ok
16:07:10.0701 1340 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:07:10.0703 1340 usbccgp - ok
16:07:10.0800 1340 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:07:10.0803 1340 usbcir - ok
16:07:10.0851 1340 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:07:10.0853 1340 usbehci - ok
16:07:10.0888 1340 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:07:10.0893 1340 usbhub - ok
16:07:10.0926 1340 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:07:10.0927 1340 usbohci - ok
16:07:10.0962 1340 [ b51e52acf758be00ef3a58ea452fe360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
16:07:10.0964 1340 usbprint - ok
16:07:11.0044 1340 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:07:11.0046 1340 USBSTOR - ok
16:07:11.0099 1340 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:07:11.0101 1340 usbuhci - ok
16:07:11.0181 1340 [ 35c9095fa7076466afbfc5b9ec4b779e ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
16:07:11.0183 1340 usb_rndisx - ok
16:07:11.0253 1340 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
16:07:11.0259 1340 UxSms - ok
16:07:11.0334 1340 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
16:07:11.0345 1340 vds - ok
16:07:11.0407 1340 [ 87b06e1f30b749a114f74622d013f8d4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:07:11.0408 1340 vga - ok
16:07:11.0571 1340 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
16:07:11.0573 1340 VgaSave - ok
16:07:11.0610 1340 [ 5d7159def58a800d5781ba3a879627bc ] viaagp C:\Windows\system32\drivers\viaagp.sys
16:07:11.0612 1340 viaagp - ok
16:07:11.0683 1340 [ c4f3a691b5bad343e6249bd8c2d45dee ] ViaC7 C:\Windows\system32\drivers\viac7.sys
16:07:11.0685 1340 ViaC7 - ok
16:07:11.0729 1340 [ aadf5587a4063f52c2c3fed7887426fc ] viaide C:\Windows\system32\drivers\viaide.sys
16:07:11.0731 1340 viaide - ok
16:07:11.0769 1340 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:07:11.0772 1340 volmgr - ok
16:07:11.0843 1340 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:07:11.0848 1340 volmgrx - ok
16:07:11.0909 1340 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:07:11.0913 1340 volsnap - ok
16:07:11.0974 1340 [ 587253e09325e6bf226b299774b728a9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:07:11.0976 1340 vsmraid - ok
16:07:12.0075 1340 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
16:07:12.0099 1340 VSS - ok
16:07:12.0175 1340 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
16:07:12.0185 1340 W32Time - ok
16:07:12.0245 1340 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:07:12.0248 1340 WacomPen - ok
16:07:12.0299 1340 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
16:07:12.0301 1340 Wanarp - ok
16:07:12.0308 1340 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:07:12.0314 1340 Wanarpv6 - ok
16:07:12.0373 1340 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:07:12.0385 1340 wcncsvc - ok
16:07:12.0428 1340 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:07:12.0435 1340 WcsPlugInService - ok
16:07:12.0478 1340 [ 78fe9542363f297b18c027b2d7e7c07f ] Wd C:\Windows\system32\drivers\wd.sys
16:07:12.0481 1340 Wd - ok
16:07:12.0550 1340 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:07:12.0558 1340 Wdf01000 - ok
16:07:12.0599 1340 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:07:12.0607 1340 WdiServiceHost - ok
16:07:12.0623 1340 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:07:12.0630 1340 WdiSystemHost - ok
16:07:12.0709 1340 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
16:07:12.0713 1340 WebClient - ok
16:07:12.0765 1340 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:07:12.0771 1340 Wecsvc - ok
16:07:12.0835 1340 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:07:12.0839 1340 wercplsupport - ok
16:07:12.0899 1340 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
16:07:12.0904 1340 WerSvc - ok
16:07:12.0967 1340 [ 4575aa12561c5648483403541d0d7f2b ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
16:07:12.0969 1340 WinDefend - ok
16:07:12.0977 1340 WinHttpAutoProxySvc - ok
16:07:13.0072 1340 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:07:13.0074 1340 Winmgmt - ok
16:07:13.0179 1340 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
16:07:13.0196 1340 WinRM - ok
16:07:13.0243 1340 [ 676f4b665bdd8053eaa53ac1695b8074 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
16:07:13.0244 1340 WinUSB - ok
16:07:13.0620 1340 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:07:13.0629 1340 Wlansvc - ok
16:07:13.0635 1340 wltrysvc - ok
16:07:13.0681 1340 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:07:13.0683 1340 WmiAcpi - ok
16:07:13.0787 1340 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:07:13.0789 1340 wmiApSrv - ok
16:07:13.0872 1340 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
16:07:13.0881 1340 WMPNetworkSvc - ok
16:07:13.0940 1340 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:07:13.0945 1340 WPCSvc - ok
16:07:14.0015 1340 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:07:14.0018 1340 WPDBusEnum - ok
16:07:14.0051 1340 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
16:07:14.0052 1340 WpdUsb - ok
16:07:14.0171 1340 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:07:14.0181 1340 WPFFontCache_v0400 - ok
16:07:14.0202 1340 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:07:14.0204 1340 ws2ifsl - ok
16:07:14.0259 1340 [ 1ca6c40261ddc0425987980d0cd2aaab ] wscsvc C:\Windows\System32\wscsvc.dll
16:07:14.0263 1340 wscsvc - ok
16:07:14.0271 1340 WSearch - ok
16:07:14.0771 1340 [ fc3ec24fce372c89423e015a2ac1a31e ] wuauserv C:\Windows\system32\wuaueng.dll
16:07:14.0797 1340 wuauserv - ok
16:07:15.0084 1340 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:07:15.0085 1340 WUDFRd - ok
16:07:15.0317 1340 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:07:15.0321 1340 wudfsvc - ok
16:07:15.0349 1340 ================ Scan global ===============================
16:07:15.0375 1340 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
16:07:15.0458 1340 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
16:07:15.0476 1340 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
16:07:15.0538 1340 (d4e6d91c1349b7bfb3599a6ada56851b) C:\Windows\system32\services.exe
16:07:15.0544 1340 [Global] - ok
16:07:15.0546 1340 ================ Scan MBR ==================================
16:07:15.0692 1340 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
16:07:16.0160 1340 \Device\Harddisk0\DR0 - ok
16:07:16.0160 1340 ================ Scan VBR ==================================
16:07:16.0173 1340 Boot (0x1200) (a431838945ca4aead0b42711b8ca0e9b) \Device\Harddisk0\DR0\Partition1
16:07:16.0177 1340 \Device\Harddisk0\DR0\Partition1 - ok
16:07:16.0183 1340 Boot (0x1200) (25ecac526feeabbaed81c5132d1e93c5) \Device\Harddisk0\DR0\Partition2
16:07:16.0191 1340 \Device\Harddisk0\DR0\Partition2 - ok
16:07:16.0192 1340 ============================================================
16:07:16.0192 1340 Scan finished
16:07:16.0192 1340 ============================================================
16:07:16.0211 6120 Detected object count: 0
16:07:16.0211 6120 Actual detected object count: 0
16:07:19.0555 4708 Deinitialize success



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-17 16:22:18
-----------------------------
16:22:18.299 OS Version: Windows 6.0.6002 Service Pack 2
16:22:18.299 Number of processors: 2 586 0xF0D
16:22:18.303 ComputerName: BRIDGETTE-PC UserName: Bridgette
16:22:21.890 Initialize success
16:22:30.984 AVAST engine defs: 12081600
16:29:48.554 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:29:48.560 Disk 0 Vendor: Hitachi_HTS543232L9A300 FB4OC40C Size: 305245MB BusType: 3
16:29:48.648 Disk 0 MBR read successfully
16:29:48.655 Disk 0 MBR scan
16:29:48.663 Disk 0 Windows VISTA default MBR code
16:29:48.707 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
16:29:48.728 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10000 MB offset 80325
16:29:48.755 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 295205 MB offset 20560325
16:29:48.769 Disk 0 scanning sectors +625140400
16:29:48.851 Disk 0 scanning C:\Windows\system32\drivers
16:30:05.694 Service scanning
16:30:44.857 Modules scanning
16:30:53.962 Disk 0 trace - called modules:
16:30:54.343 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys ndis.sys bcmwl6.sys dxgkrnl.sys igdkmd32.sys
16:30:54.351 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85b7d308]
16:30:54.359 3 CLASSPNP.SYS[8a9a98b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85902b98]
16:30:56.842 AVAST engine scan C:\Windows
16:31:02.020 AVAST engine scan C:\Windows\system32
16:35:53.931 AVAST engine scan C:\Windows\system32\drivers
16:36:19.198 AVAST engine scan C:\Users\Bridgette
16:48:29.502 File: C:\Users\Bridgette\AppData\Local\Temp\msimg32.dll **INFECTED** Win32:Sirefef-AHJ [Trj]
16:48:45.364 File: C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170}\U\80000000.@ **INFECTED** Win64:Sirefef-A [Trj]
16:48:45.463 File: C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170}\U\80000032.@ **INFECTED** Win32:Sirefef-AHF [Trj]
18:16:25.214 AVAST engine scan C:\ProgramData
18:22:22.664 Scan finished successfully
18:23:38.349 Disk 0 MBR has been saved successfully to "C:\Users\Bridgette\Downloads\MBR.dat"
18:23:38.358 The log file has been saved successfully to "C:\Users\Bridgette\Downloads\aswMBR.txt"

Eset Log:
C:\Users\Bridgette\AppData\Local\Temp\msimg32.dll a variant of Win32/Kryptik.AKBG trojan cleaned by deleting - quarantined
C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170}\U\80000000.@ a variant of Win32/Sirefef.FA trojan cleaned by deleting - quarantined
C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Users\Bridgette\Downloads\Graphic Design\Website Templates\StylishDesign WordPressThemes ThemeForest\Zagetti_v1.0\Zagetti wp theme - unzip please\Zagetti\header.php PHP/Obfuscated.F application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 17 August 2012 - 08:48 PM

Download TDSSkiller once again and scan,post the new log

#5 DaKlown

DaKlown
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 17 August 2012 - 10:34 PM

23:32:11.0612 3092 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
23:32:12.0148 3092 ============================================================
23:32:12.0148 3092 Current date / time: 2012/08/17 23:32:12.0148
23:32:12.0148 3092 SystemInfo:
23:32:12.0148 3092
23:32:12.0149 3092 OS Version: 6.0.6002 ServicePack: 2.0
23:32:12.0149 3092 Product type: Workstation
23:32:12.0149 3092 ComputerName: BRIDGETTE-PC
23:32:12.0149 3092 UserName: Bridgette
23:32:12.0149 3092 Windows directory: C:\Windows
23:32:12.0149 3092 System windows directory: C:\Windows
23:32:12.0149 3092 Processor architecture: Intel x86
23:32:12.0149 3092 Number of processors: 2
23:32:12.0149 3092 Page size: 0x1000
23:32:12.0149 3092 Boot type: Normal boot
23:32:12.0149 3092 ============================================================
23:32:13.0630 3092 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:32:13.0734 3092 ============================================================
23:32:13.0735 3092 \Device\Harddisk0\DR0:
23:32:13.0735 3092 MBR partitions:
23:32:13.0735 3092 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1388000
23:32:13.0735 3092 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x139B9C5, BlocksNum 0x240928EB
23:32:13.0735 3092 ============================================================
23:32:13.0790 3092 C: <-> \Device\Harddisk0\DR0\Partition2
23:32:13.0824 3092 D: <-> \Device\Harddisk0\DR0\Partition1
23:32:13.0824 3092 ============================================================
23:32:13.0824 3092 Initialize success
23:32:13.0824 3092 ============================================================
23:32:15.0658 0700 ============================================================
23:32:15.0658 0700 Scan started
23:32:15.0658 0700 Mode: Manual;
23:32:15.0658 0700 ============================================================
23:32:17.0440 0700 ================ Scan services =============================
23:32:17.0447 0700 Scan interrupted by user!
23:32:17.0447 0700 ================ Scan global ===============================
23:32:17.0447 0700 Scan interrupted by user!
23:32:17.0447 0700 ================ Scan MBR ==================================
23:32:17.0447 0700 Scan interrupted by user!
23:32:17.0447 0700 ================ Scan VBR ==================================
23:32:17.0447 0700 Scan interrupted by user!
23:32:17.0447 0700 ============================================================
23:32:17.0447 0700 Scan finished
23:32:17.0447 0700 ============================================================
23:32:17.0467 5068 Detected object count: 0
23:32:17.0467 5068 Actual detected object count: 0
23:32:23.0368 3188 ============================================================
23:32:23.0368 3188 Scan started
23:32:23.0368 3188 Mode: Manual; TDLFS;
23:32:23.0368 3188 ============================================================
23:32:23.0678 3188 ================ Scan services =============================
23:32:23.0883 3188 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
23:32:23.0890 3188 ACPI - ok
23:32:23.0936 3188 [ 04f0fcac69c7c71a3ac4eb97fafc8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:32:23.0946 3188 adp94xx - ok
23:32:23.0981 3188 [ 60505e0041f7751bdbb80f88bf45c2ce ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:32:23.0988 3188 adpahci - ok
23:32:24.0030 3188 [ 8a42779b02aec986eab64ecfc98f8bd7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
23:32:24.0033 3188 adpu160m - ok
23:32:24.0064 3188 [ 241c9e37f8ce45ef51c3de27515ca4e5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:32:24.0068 3188 adpu320 - ok
23:32:24.0112 3188 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:32:24.0113 3188 AeLookupSvc - ok
23:32:24.0224 3188 [ 827dbc22c96eecf6d36a13162fabafd3 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe
23:32:24.0227 3188 AESTFilters - ok
23:32:24.0297 3188 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
23:32:24.0304 3188 AFD - ok
23:32:24.0344 3188 [ 13f9e33747e6b41a3ff305c37db0d360 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:32:24.0346 3188 agp440 - ok
23:32:24.0377 3188 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
23:32:24.0380 3188 aic78xx - ok
23:32:24.0429 3188 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
23:32:24.0431 3188 ALG - ok
23:32:24.0468 3188 [ 9eaef5fc9b8e351afa7e78a6fae91f91 ] aliide C:\Windows\system32\drivers\aliide.sys
23:32:24.0469 3188 aliide - ok
23:32:24.0503 3188 [ c47344bc706e5f0b9dce369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:32:24.0505 3188 amdagp - ok
23:32:24.0534 3188 [ 9b78a39a4c173fdbc1321e0dd659b34c ] amdide C:\Windows\system32\drivers\amdide.sys
23:32:24.0535 3188 amdide - ok
23:32:24.0574 3188 [ 18f29b49ad23ecee3d2a826c725c8d48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
23:32:24.0576 3188 AmdK7 - ok
23:32:24.0627 3188 [ 93ae7f7dd54ab986a6f1a1b37be7442d ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:32:24.0628 3188 AmdK8 - ok
23:32:24.0667 3188 [ 1de27858a431a5749e0f3df54ba935b9 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
23:32:24.0672 3188 ApfiltrService - ok
23:32:24.0716 3188 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
23:32:24.0717 3188 Appinfo - ok
23:32:24.0822 3188 [ 20f6f19fe9e753f2780dc2fa083ad597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:32:24.0827 3188 Apple Mobile Device - ok
23:32:24.0893 3188 [ 66faa704724f42cfb8ef7c24c66f9591 ] AR5211 C:\Windows\system32\DRIVERS\ar5211.sys
23:32:24.0907 3188 AR5211 - ok
23:32:24.0964 3188 [ 5d2888182fb46632511acee92fdad522 ] arc C:\Windows\system32\drivers\arc.sys
23:32:24.0967 3188 arc - ok
23:32:24.0995 3188 [ 5e2a321bd7c8b3624e41fdec3e244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:32:24.0998 3188 arcsas - ok
23:32:25.0045 3188 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:32:25.0046 3188 AsyncMac - ok
23:32:25.0076 3188 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
23:32:25.0077 3188 atapi - ok
23:32:25.0163 3188 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:32:25.0172 3188 AudioEndpointBuilder - ok
23:32:25.0189 3188 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:32:25.0193 3188 Audiosrv - ok
23:32:25.0247 3188 [ 423c7b87e886ac93d22936ea82665f83 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
23:32:25.0249 3188 BCM42RLY - ok
23:32:25.0330 3188 [ 41a70777e892c3dea606758366566a77 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
23:32:25.0363 3188 BCM43XX - ok
23:32:25.0440 3188 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
23:32:25.0441 3188 Beep - ok
23:32:25.0519 3188 [ c789af0f724fda5852fb9a7d3a432381 ] BFE C:\Windows\System32\bfe.dll
23:32:25.0529 3188 BFE - ok
23:32:25.0683 3188 [ 93952506c6d67330367f7e7934b6a02f ] BITS C:\Windows\System32\qmgr.dll
23:32:25.0704 3188 BITS - ok
23:32:25.0741 3188 [ d4df28447741fd3d953526e33a617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
23:32:25.0768 3188 blbdrive - ok
23:32:25.0872 3188 [ 1c87705ccb2f60172b0fc86b5d82f00d ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:32:25.0881 3188 Bonjour Service - ok
23:32:25.0925 3188 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:32:25.0928 3188 bowser - ok
23:32:25.0965 3188 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
23:32:25.0966 3188 BrFiltLo - ok
23:32:25.0999 3188 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
23:32:26.0014 3188 BrFiltUp - ok
23:32:26.0037 3188 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
23:32:26.0040 3188 Browser - ok
23:32:26.0077 3188 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
23:32:26.0080 3188 Brserid - ok
23:32:26.0115 3188 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
23:32:26.0134 3188 BrSerWdm - ok
23:32:26.0152 3188 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
23:32:26.0154 3188 BrUsbMdm - ok
23:32:26.0183 3188 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
23:32:26.0184 3188 BrUsbSer - ok
23:32:26.0232 3188 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:32:26.0233 3188 BTHMODEM - ok
23:32:26.0275 3188 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:32:26.0277 3188 cdfs - ok
23:32:26.0319 3188 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:32:26.0322 3188 cdrom - ok
23:32:26.0376 3188 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
23:32:26.0398 3188 CertPropSvc - ok
23:32:26.0442 3188 [ e5d4133f37219dbcfe102bc61072589d ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:32:26.0444 3188 circlass - ok
23:32:26.0518 3188 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
23:32:26.0524 3188 CLFS - ok
23:32:26.0665 3188 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:32:26.0687 3188 clr_optimization_v2.0.50727_32 - ok
23:32:26.0823 3188 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:32:26.0831 3188 clr_optimization_v4.0.30319_32 - ok
23:32:26.0892 3188 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:32:26.0894 3188 CmBatt - ok
23:32:26.0956 3188 [ 0ca25e686a4928484e9fdabd168ab629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:32:26.0957 3188 cmdide - ok
23:32:26.0999 3188 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:32:27.0011 3188 Compbatt - ok
23:32:27.0020 3188 COMSysApp - ok
23:32:27.0061 3188 [ 741e9dff4f42d2d8477d0fc1dc0df871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:32:27.0063 3188 crcdisk - ok
23:32:27.0108 3188 [ 1f07becdca750766a96cda811ba86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
23:32:27.0110 3188 Crusoe - ok
23:32:27.0177 3188 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:32:27.0190 3188 CryptSvc - ok
23:32:27.0466 3188 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:32:27.0500 3188 DcomLaunch - ok
23:32:27.0555 3188 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:32:27.0558 3188 DfsC - ok
23:32:27.0877 3188 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
23:32:27.0999 3188 DFSR - ok
23:32:28.0061 3188 [ aeb179b855161ec9c88172abc75ad0ef ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
23:32:28.0065 3188 dg_ssudbus - ok
23:32:28.0166 3188 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
23:32:28.0194 3188 Dhcp - ok
23:32:28.0246 3188 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
23:32:28.0249 3188 disk - ok
23:32:28.0370 3188 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:32:28.0404 3188 Dnscache - ok
23:32:28.0472 3188 [ db29915209770d8b59654345ec2d943a ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
23:32:28.0478 3188 DockLoginService - ok
23:32:28.0571 3188 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:32:28.0578 3188 dot3svc - ok
23:32:28.0623 3188 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
23:32:28.0631 3188 DPS - ok
23:32:28.0681 3188 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:32:28.0683 3188 drmkaud - ok
23:32:28.0795 3188 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:32:28.0814 3188 DXGKrnl - ok
23:32:28.0860 3188 [ 908ed85b7806e8af3af5e9b74f7809d4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
23:32:28.0870 3188 e1express - ok
23:32:28.0904 3188 [ 5425f74ac0c1dbd96a1e04f17d63f94c ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
23:32:28.0909 3188 E1G60 - ok
23:32:28.0988 3188 [ 8a45015e85a4dce0086b9973f0fd9a20 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
23:32:28.0994 3188 eamonm - ok
23:32:29.0034 3188 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
23:32:29.0038 3188 EapHost - ok
23:32:29.0151 3188 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
23:32:29.0163 3188 Ecache - ok
23:32:29.0248 3188 [ 5412ed24fffca64e2f0168399b86c952 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
23:32:29.0258 3188 ehdrv - ok
23:32:29.0339 3188 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:32:29.0358 3188 ehRecvr - ok
23:32:29.0381 3188 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
23:32:29.0387 3188 ehSched - ok
23:32:29.0408 3188 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
23:32:29.0411 3188 ehstart - ok
23:32:29.0562 3188 [ ad4faade819e0da9933bea7c01d2c763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
23:32:29.0590 3188 ekrn - ok
23:32:29.0739 3188 [ 23b62471681a124889978f6295b3f4c6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:32:29.0764 3188 elxstor - ok
23:32:29.0863 3188 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
23:32:29.0881 3188 EMDMgmt - ok
23:32:29.0908 3188 [ 774babcb1144513dc86992003740b774 ] epfw C:\Windows\system32\DRIVERS\epfw.sys
23:32:29.0916 3188 epfw - ok
23:32:29.0957 3188 [ 2c22cc39309ee06ae870c183bf2a769d ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
23:32:29.0960 3188 EpfwLWF - ok
23:32:29.0990 3188 [ 2b4e5f01a4e786b422f4d617b51fa7d9 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
23:32:29.0994 3188 epfwwfp - ok
23:32:30.0032 3188 [ 3db974f3935483555d7148663f726c61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:32:30.0033 3188 ErrDev - ok
23:32:30.0109 3188 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
23:32:30.0116 3188 EventSystem - ok
23:32:30.0187 3188 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
23:32:30.0206 3188 exfat - ok
23:32:30.0260 3188 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:32:30.0271 3188 fastfat - ok
23:32:30.0314 3188 [ afe1e8b9782a0dd7fb46bbd88e43f89a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:32:30.0316 3188 fdc - ok
23:32:30.0345 3188 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
23:32:30.0357 3188 fdPHost - ok
23:32:30.0379 3188 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
23:32:30.0381 3188 FDResPub - ok
23:32:30.0411 3188 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:32:30.0413 3188 FileInfo - ok
23:32:30.0436 3188 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:32:30.0438 3188 Filetrace - ok
23:32:30.0512 3188 [ 1f63900e2eb00101b9aca2b7a870704e ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
23:32:30.0527 3188 FLEXnet Licensing Service - ok
23:32:30.0567 3188 [ 85b7cf99d532820495d68d747fda9ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:32:30.0582 3188 flpydisk - ok
23:32:30.0645 3188 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:32:30.0663 3188 FltMgr - ok
23:32:30.0984 3188 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
23:32:31.0007 3188 FontCache - ok
23:32:31.0125 3188 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:32:31.0143 3188 FontCache3.0.0.0 - ok
23:32:31.0179 3188 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:32:31.0181 3188 Fs_Rec - ok
23:32:31.0218 3188 [ 34582a6e6573d54a07ece5fe24a126b5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:32:31.0221 3188 gagp30kx - ok
23:32:31.0251 3188 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:32:31.0254 3188 GEARAspiWDM - ok
23:32:31.0347 3188 [ 9f5f2f0fb0a7f5aa9f16b9a7b6dad89f ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
23:32:31.0351 3188 GoogleDesktopManager-051210-111108 - ok
23:32:31.0400 3188 [ d3316f6e3c011435f36e3d6e49b3196c ] GoToAssist C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
23:32:31.0403 3188 GoToAssist - ok
23:32:31.0484 3188 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
23:32:31.0501 3188 gpsvc - ok
23:32:31.0582 3188 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:32:31.0586 3188 gupdate - ok
23:32:31.0609 3188 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:32:31.0612 3188 gupdatem - ok
23:32:31.0670 3188 [ 5d4bc124faae6730ac002cdb67bf1a1c ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:32:31.0676 3188 gusvc - ok
23:32:31.0735 3188 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:32:31.0750 3188 HDAudBus - ok
23:32:31.0810 3188 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:32:31.0812 3188 HidBth - ok
23:32:31.0840 3188 [ d8df3722d5e961baa1292aa2f12827e2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:32:31.0841 3188 HidIr - ok
23:32:31.0910 3188 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\system32\hidserv.dll
23:32:31.0917 3188 hidserv - ok
23:32:31.0973 3188 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:32:32.0034 3188 HidUsb - ok
23:32:32.0112 3188 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:32:32.0167 3188 hkmsvc - ok
23:32:32.0239 3188 [ 16ee7b23a009e00d835cdb79574a91a6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
23:32:32.0241 3188 HpCISSs - ok
23:32:32.0338 3188 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:32:32.0350 3188 HTTP - ok
23:32:32.0392 3188 [ c6b032d69650985468160fc9937cf5b4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
23:32:32.0422 3188 i2omp - ok
23:32:32.0467 3188 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:32:32.0470 3188 i8042prt - ok
23:32:32.0580 3188 [ 54155ea1b0df185878e0fc9ec3ac3a14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
23:32:32.0610 3188 iaStorV - ok
23:32:32.0745 3188 [ 1cf03c69b49acb70c722df92755c0c8c ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:32:32.0769 3188 IDriverT - ok
23:32:32.0886 3188 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:32:32.0911 3188 idsvc - ok
23:32:33.0316 3188 [ dce0b53570703cce580d066f89ef58cd ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
23:32:33.0551 3188 igfx - ok
23:32:33.0613 3188 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:32:33.0615 3188 iirsp - ok
23:32:33.0673 3188 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
23:32:33.0684 3188 IKEEXT - ok
23:32:33.0736 3188 [ ab8b0206bcdff0ed03cec500fa03a32a ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
23:32:33.0740 3188 IntcHdmiAddService - ok
23:32:33.0775 3188 [ 83aa759f3189e6370c30de5dc5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
23:32:33.0776 3188 intelide - ok
23:32:33.0818 3188 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:32:33.0820 3188 intelppm - ok
23:32:33.0856 3188 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:32:33.0860 3188 IPBusEnum - ok
23:32:33.0900 3188 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:32:33.0902 3188 IpFilterDriver - ok
23:32:33.0961 3188 [ 1998bd97f950680bb55f55a7244679c2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:32:33.0969 3188 iphlpsvc - ok
23:32:33.0976 3188 IpInIp - ok
23:32:34.0024 3188 [ b25aaf203552b7b3491139d582b39ad1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
23:32:34.0027 3188 IPMIDRV - ok
23:32:34.0042 3188 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
23:32:34.0051 3188 IPNAT - ok
23:32:34.0114 3188 [ f62c69376a95795fe7cdb1c778edaca4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:32:34.0132 3188 iPod Service - ok
23:32:34.0155 3188 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:32:34.0160 3188 IRENUM - ok
23:32:34.0193 3188 [ 6c70698a3e5c4376c6ab5c7c17fb0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:32:34.0195 3188 isapnp - ok
23:32:34.0263 3188 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:32:34.0273 3188 iScsiPrt - ok
23:32:34.0304 3188 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
23:32:34.0306 3188 iteatapi - ok
23:32:34.0338 3188 [ 20425664e2e196d339ca877e0387c023 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
23:32:34.0340 3188 itecir - ok
23:32:34.0381 3188 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
23:32:34.0383 3188 iteraid - ok
23:32:34.0441 3188 [ a67e8cfcad7d4f8b35643d6c79ba64c3 ] k57nd60x C:\Windows\system32\DRIVERS\k57nd60x.sys
23:32:34.0447 3188 k57nd60x - ok
23:32:34.0474 3188 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:32:34.0476 3188 kbdclass - ok
23:32:34.0519 3188 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:32:34.0520 3188 kbdhid - ok
23:32:34.0576 3188 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
23:32:34.0582 3188 KeyIso - ok
23:32:34.0664 3188 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:32:34.0681 3188 KSecDD - ok
23:32:34.0818 3188 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
23:32:34.0829 3188 KtmRm - ok
23:32:34.0917 3188 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\system32\srvsvc.dll
23:32:34.0970 3188 LanmanServer - ok
23:32:35.0033 3188 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:32:35.0041 3188 LanmanWorkstation - ok
23:32:35.0103 3188 [ b716d4d759663bc4174fd0a379da8e50 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
23:32:35.0106 3188 libusb0 - ok
23:32:35.0139 3188 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:32:35.0142 3188 lltdio - ok
23:32:35.0191 3188 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:32:35.0199 3188 lltdsvc - ok
23:32:35.0230 3188 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:32:35.0233 3188 lmhosts - ok
23:32:35.0264 3188 [ c7e15e82879bf3235b559563d4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:32:35.0267 3188 LSI_FC - ok
23:32:35.0281 3188 [ ee01ebae8c9bf0fa072e0ff68718920a ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:32:35.0284 3188 LSI_SAS - ok
23:32:35.0301 3188 [ 912a04696e9ca30146a62afa1463dd5c ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:32:35.0304 3188 LSI_SCSI - ok
23:32:35.0335 3188 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
23:32:35.0338 3188 luafv - ok
23:32:35.0384 3188 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:32:35.0387 3188 Mcx2Svc - ok
23:32:35.0421 3188 [ 0001ce609d66632fa17b84705f658879 ] megasas C:\Windows\system32\drivers\megasas.sys
23:32:35.0423 3188 megasas - ok
23:32:35.0482 3188 [ c252f32cd9a49dbfc25ecf26ebd51a99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
23:32:35.0491 3188 MegaSR - ok
23:32:35.0538 3188 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
23:32:35.0541 3188 MMCSS - ok
23:32:35.0580 3188 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
23:32:35.0581 3188 Modem - ok
23:32:35.0622 3188 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:32:35.0624 3188 monitor - ok
23:32:35.0645 3188 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:32:35.0646 3188 mouclass - ok
23:32:35.0700 3188 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:32:35.0701 3188 mouhid - ok
23:32:35.0737 3188 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
23:32:35.0739 3188 MountMgr - ok
23:32:35.0830 3188 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
23:32:35.0834 3188 MozillaMaintenance - ok
23:32:35.0886 3188 [ 511d011289755dd9f9a7579fb0b064e6 ] mpio C:\Windows\system32\drivers\mpio.sys
23:32:35.0889 3188 mpio - ok
23:32:35.0919 3188 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:32:35.0922 3188 mpsdrv - ok
23:32:35.0996 3188 [ 5de62c6e9108f14f6794060a9bdecaec ] MpsSvc C:\Windows\system32\mpssvc.dll
23:32:36.0007 3188 MpsSvc - ok
23:32:36.0045 3188 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
23:32:36.0047 3188 Mraid35x - ok
23:32:36.0094 3188 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:32:36.0099 3188 MRxDAV - ok
23:32:36.0141 3188 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:32:36.0145 3188 mrxsmb - ok
23:32:36.0173 3188 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:32:36.0180 3188 mrxsmb10 - ok
23:32:36.0203 3188 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:32:36.0207 3188 mrxsmb20 - ok
23:32:36.0250 3188 [ 5457dcfa7c0da43522f4d9d4049c1472 ] msahci C:\Windows\system32\drivers\msahci.sys
23:32:36.0253 3188 msahci - ok
23:32:36.0305 3188 [ 4468b0f385a86ecddaf8d3ca662ec0e7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:32:36.0309 3188 msdsm - ok
23:32:36.0337 3188 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
23:32:36.0344 3188 MSDTC - ok
23:32:36.0382 3188 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:32:36.0385 3188 Msfs - ok
23:32:36.0409 3188 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:32:36.0412 3188 msisadrv - ok
23:32:36.0457 3188 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:32:36.0463 3188 MSiSCSI - ok
23:32:36.0478 3188 msiserver - ok
23:32:36.0513 3188 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:32:36.0515 3188 MSKSSRV - ok
23:32:36.0552 3188 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:32:36.0554 3188 MSPCLOCK - ok
23:32:36.0590 3188 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:32:36.0592 3188 MSPQM - ok
23:32:36.0651 3188 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:32:36.0657 3188 MsRPC - ok
23:32:36.0689 3188 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:32:36.0691 3188 mssmbios - ok
23:32:36.0727 3188 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:32:36.0729 3188 MSTEE - ok
23:32:36.0785 3188 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
23:32:36.0788 3188 Mup - ok
23:32:36.0861 3188 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
23:32:36.0870 3188 napagent - ok
23:32:36.0918 3188 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:32:36.0923 3188 NativeWifiP - ok
23:32:36.0979 3188 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:32:36.0992 3188 NDIS - ok
23:32:37.0019 3188 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:32:37.0021 3188 NdisTapi - ok
23:32:37.0041 3188 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:32:37.0042 3188 Ndisuio - ok
23:32:37.0117 3188 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:32:37.0120 3188 NdisWan - ok
23:32:37.0133 3188 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:32:37.0135 3188 NDProxy - ok
23:32:37.0149 3188 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:32:37.0151 3188 NetBIOS - ok
23:32:37.0209 3188 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
23:32:37.0248 3188 netbt - ok
23:32:37.0265 3188 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
23:32:37.0267 3188 Netlogon - ok
23:32:37.0305 3188 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
23:32:37.0314 3188 Netman - ok
23:32:37.0340 3188 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
23:32:37.0347 3188 netprofm - ok
23:32:37.0395 3188 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:32:37.0398 3188 NetTcpPortSharing - ok
23:32:37.0461 3188 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:32:37.0463 3188 nfrd960 - ok
23:32:37.0508 3188 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:32:37.0514 3188 NlaSvc - ok
23:32:37.0570 3188 [ b48dc6abcd3aeff8618350ccbdc6b09a ] NPF C:\Windows\system32\drivers\npf.sys
23:32:37.0573 3188 NPF - ok
23:32:37.0621 3188 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:32:37.0623 3188 Npfs - ok
23:32:37.0642 3188 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
23:32:37.0646 3188 nsi - ok
23:32:37.0662 3188 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:32:37.0664 3188 nsiproxy - ok
23:32:37.0753 3188 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:32:37.0778 3188 Ntfs - ok
23:32:37.0813 3188 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
23:32:37.0815 3188 ntrigdigi - ok
23:32:37.0837 3188 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
23:32:37.0838 3188 Null - ok
23:32:37.0874 3188 [ 2edf9e7751554b42cbb60116de727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:32:37.0877 3188 nvraid - ok
23:32:37.0935 3188 [ abed0c09758d1d97db0042dbb2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:32:37.0937 3188 nvstor - ok
23:32:37.0946 3188 [ 18bbdf913916b71bd54575bdb6eeac0b ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:32:37.0949 3188 nv_agp - ok
23:32:37.0959 3188 NwlnkFlt - ok
23:32:37.0967 3188 NwlnkFwd - ok
23:32:38.0028 3188 [ 2cf21d5f8f1b74bb1922135ac2b12ddb ] OA001Ufd C:\Windows\system32\DRIVERS\OA001Ufd.sys
23:32:38.0031 3188 OA001Ufd - ok
23:32:38.0049 3188 [ 4075063d25af9da64101769854b83787 ] OA001Vid C:\Windows\system32\DRIVERS\OA001Vid.sys
23:32:38.0057 3188 OA001Vid - ok
23:32:38.0142 3188 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:32:38.0153 3188 odserv - ok
23:32:38.0221 3188 [ 6f310e890d46e246e0e261a63d9b36b4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
23:32:38.0223 3188 ohci1394 - ok
23:32:38.0260 3188 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:32:38.0264 3188 ose - ok
23:32:38.0358 3188 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
23:32:38.0376 3188 p2pimsvc - ok
23:32:38.0394 3188 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
23:32:38.0403 3188 p2psvc - ok
23:32:38.0431 3188 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
23:32:38.0433 3188 Parport - ok
23:32:38.0486 3188 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:32:38.0488 3188 partmgr - ok
23:32:38.0509 3188 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
23:32:38.0532 3188 Parvdm - ok
23:32:38.0571 3188 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
23:32:38.0576 3188 PcaSvc - ok
23:32:38.0630 3188 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
23:32:38.0635 3188 pci - ok
23:32:38.0661 3188 [ fc175f5ddab666d7f4d17449a547626f ] pciide C:\Windows\system32\drivers\pciide.sys
23:32:38.0664 3188 pciide - ok
23:32:38.0704 3188 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:32:38.0709 3188 pcmcia - ok
23:32:38.0780 3188 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:32:38.0803 3188 PEAUTH - ok
23:32:38.0917 3188 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
23:32:38.0963 3188 pla - ok
23:32:39.0025 3188 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:32:39.0037 3188 PlugPlay - ok
23:32:39.0105 3188 [ 088335b06f75adbcbb81575c7cae6c43 ] pneteth C:\Windows\system32\DRIVERS\pneteth.sys
23:32:39.0107 3188 pneteth - ok
23:32:39.0149 3188 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
23:32:39.0162 3188 PNRPAutoReg - ok
23:32:39.0185 3188 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
23:32:39.0198 3188 PNRPsvc - ok
23:32:39.0269 3188 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:32:39.0282 3188 PolicyAgent - ok
23:32:39.0319 3188 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:32:39.0322 3188 PptpMiniport - ok
23:32:39.0353 3188 [ 2027293619dd0f047c584cf2e7df4ffd ] Processor C:\Windows\system32\drivers\processr.sys
23:32:39.0354 3188 Processor - ok
23:32:39.0403 3188 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
23:32:39.0410 3188 ProfSvc - ok
23:32:39.0431 3188 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
23:32:39.0433 3188 ProtectedStorage - ok
23:32:39.0494 3188 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
23:32:39.0497 3188 PSched - ok
23:32:39.0518 3188 [ e42e3433dbb4cffe8fdd91eab29aea8e ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
23:32:39.0520 3188 PxHelp20 - ok
23:32:39.0600 3188 [ 0a6db55afb7820c99aa1f3a1d270f4f6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:32:39.0625 3188 ql2300 - ok
23:32:39.0662 3188 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:32:39.0665 3188 ql40xx - ok
23:32:39.0715 3188 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
23:32:39.0723 3188 QWAVE - ok
23:32:39.0769 3188 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:32:39.0771 3188 QWAVEdrv - ok
23:32:39.0884 3188 [ e642b131fb74caf4bb8a014f31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
23:32:39.0928 3188 R300 - ok
23:32:39.0951 3188 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:32:39.0953 3188 RasAcd - ok
23:32:39.0985 3188 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
23:32:39.0991 3188 RasAuto - ok
23:32:40.0015 3188 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:32:40.0018 3188 Rasl2tp - ok
23:32:40.0076 3188 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
23:32:40.0085 3188 RasMan - ok
23:32:40.0142 3188 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:32:40.0144 3188 RasPppoe - ok
23:32:40.0199 3188 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:32:40.0203 3188 RasSstp - ok
23:32:40.0271 3188 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:32:40.0278 3188 rdbss - ok
23:32:40.0312 3188 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:32:40.0314 3188 RDPCDD - ok
23:32:40.0353 3188 [ fbc0bacd9c3d7f6956853f64a66e252d ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
23:32:40.0359 3188 rdpdr - ok
23:32:40.0371 3188 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:32:40.0373 3188 RDPENCDD - ok
23:32:40.0426 3188 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:32:40.0432 3188 RDPWD - ok
23:32:40.0484 3188 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:32:40.0491 3188 RemoteAccess - ok
23:32:40.0560 3188 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:32:40.0568 3188 RemoteRegistry - ok
23:32:40.0604 3188 [ c2ef513bbe069f0d4ee0938a76f975d3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
23:32:40.0608 3188 rimmptsk - ok
23:32:40.0628 3188 [ c398bca91216755b098679a8da8a2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
23:32:40.0632 3188 rimsptsk - ok
23:32:40.0660 3188 [ 2a2554cb24506e0a0508fc395c4a1b42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
23:32:40.0664 3188 rismxdp - ok
23:32:40.0699 3188 [ b60f58f175de20a6739194e85b035178 ] rpcapd C:\Program Files\WinPcap\rpcapd.exe
23:32:40.0703 3188 rpcapd - ok
23:32:40.0742 3188 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
23:32:40.0747 3188 RpcLocator - ok
23:32:40.0787 3188 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
23:32:40.0799 3188 RpcSs - ok
23:32:40.0834 3188 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:32:40.0837 3188 rspndr - ok
23:32:40.0908 3188 [ 4b36f90ef3515b986944aa223871e12e ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
23:32:40.0924 3188 RTL8192su - ok
23:32:40.0954 3188 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
23:32:40.0958 3188 SamSs - ok
23:32:40.0998 3188 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:32:41.0002 3188 sbp2port - ok
23:32:41.0055 3188 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:32:41.0059 3188 SCardSvr - ok
23:32:41.0102 3188 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
23:32:41.0117 3188 Schedule - ok
23:32:41.0131 3188 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:32:41.0132 3188 SCPolicySvc - ok
23:32:41.0176 3188 [ 8f36b54688c31eed4580129040c6a3d3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
23:32:41.0179 3188 sdbus - ok
23:32:41.0207 3188 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:32:41.0213 3188 SDRSVC - ok
23:32:41.0247 3188 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:32:41.0248 3188 secdrv - ok
23:32:41.0265 3188 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
23:32:41.0269 3188 seclogon - ok
23:32:41.0287 3188 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\System32\sens.dll
23:32:41.0291 3188 SENS - ok
23:32:41.0317 3188 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:32:41.0319 3188 Serenum - ok
23:32:41.0338 3188 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
23:32:41.0340 3188 Serial - ok
23:32:41.0376 3188 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:32:41.0377 3188 sermouse - ok
23:32:41.0407 3188 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
23:32:41.0412 3188 SessionEnv - ok
23:32:41.0449 3188 [ 3efa810bdca87f6ecc24f9832243fe86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:32:41.0450 3188 sffdisk - ok
23:32:41.0466 3188 [ e95d451f7ea3e583aec75f3b3ee42dc5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:32:41.0467 3188 sffp_mmc - ok
23:32:41.0487 3188 [ 3d0ea348784b7ac9ea9bd9f317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:32:41.0489 3188 sffp_sd - ok
23:32:41.0532 3188 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:32:41.0534 3188 sfloppy - ok
23:32:41.0579 3188 [ e1499bd0ff76b1b2fbbf1af339d91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:32:41.0587 3188 SharedAccess - ok
23:32:41.0635 3188 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:32:41.0644 3188 ShellHWDetection - ok
23:32:41.0692 3188 [ 1d76624a09a054f682d746b924e2dbc3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:32:41.0694 3188 sisagp - ok
23:32:41.0706 3188 [ 43cb7aa756c7db280d01da9b676cfde2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
23:32:41.0708 3188 SiSRaid2 - ok
23:32:41.0734 3188 [ a99c6c8b0baa970d8aa59ddc50b57f94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:32:41.0738 3188 SiSRaid4 - ok
23:32:41.0888 3188 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
23:32:41.0990 3188 slsvc - ok
23:32:42.0062 3188 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
23:32:42.0067 3188 SLUINotify - ok
23:32:42.0119 3188 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:32:42.0122 3188 Smb - ok
23:32:42.0161 3188 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:32:42.0165 3188 SNMPTRAP - ok
23:32:42.0185 3188 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
23:32:42.0188 3188 spldr - ok
23:32:42.0234 3188 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
23:32:42.0239 3188 Spooler - ok
23:32:42.0287 3188 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:32:42.0294 3188 srv - ok
23:32:42.0315 3188 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:32:42.0319 3188 srv2 - ok
23:32:42.0339 3188 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:32:42.0343 3188 srvnet - ok
23:32:42.0401 3188 [ ffe42941e0326c322f40b0b79a46493c ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
23:32:42.0404 3188 sscdbus - ok
23:32:42.0440 3188 [ a68e7d87adfbb8c50d88cd58230c6819 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
23:32:42.0442 3188 sscdmdfl - ok
23:32:42.0505 3188 [ b534b24151281856ec2f69ed3d6d60dd ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
23:32:42.0513 3188 sscdmdm - ok
23:32:42.0546 3188 [ d04bd59f28c78e2e66632092cafc0a2b ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
23:32:42.0549 3188 sscdserd - ok
23:32:42.0597 3188 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:32:42.0603 3188 SSDPSRV - ok
23:32:42.0637 3188 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:32:42.0643 3188 SstpSvc - ok
23:32:42.0711 3188 [ 6c0cc5868f99064516fb9f82563a02ea ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
23:32:42.0717 3188 ssudmdm - ok
23:32:42.0866 3188 [ ddeb942850278d67edc108d57f774bf8 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe
23:32:42.0873 3188 STacSV - ok
23:32:42.0910 3188 [ c4be9c3af8af6f2e4cdd22fcabf77a1b ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
23:32:42.0920 3188 STHDA - ok
23:32:42.0995 3188 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
23:32:43.0008 3188 stisvc - ok
23:32:43.0067 3188 [ 1d0063597c3666404fcf97698abeb019 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
23:32:43.0071 3188 stllssvr - ok
23:32:43.0117 3188 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:32:43.0119 3188 swenum - ok
23:32:43.0214 3188 [ f577910a133a592234ebaad3f3afa258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
23:32:43.0231 3188 SwitchBoard - ok
23:32:43.0299 3188 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
23:32:43.0313 3188 swprv - ok
23:32:43.0351 3188 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
23:32:43.0354 3188 Symc8xx - ok
23:32:43.0391 3188 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
23:32:43.0393 3188 Sym_hi - ok
23:32:43.0425 3188 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
23:32:43.0428 3188 Sym_u3 - ok
23:32:43.0495 3188 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
23:32:43.0516 3188 SysMain - ok
23:32:43.0553 3188 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:32:43.0560 3188 TabletInputService - ok
23:32:43.0622 3188 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:32:43.0634 3188 TapiSrv - ok
23:32:43.0664 3188 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
23:32:43.0671 3188 TBS - ok
23:32:43.0757 3188 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:32:43.0777 3188 Tcpip - ok
23:32:43.0802 3188 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
23:32:43.0811 3188 Tcpip6 - ok
23:32:43.0847 3188 [ 608c345a255d82a6289c2d468eb41fd7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:32:43.0848 3188 tcpipreg - ok
23:32:43.0877 3188 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:32:43.0879 3188 TDPIPE - ok
23:32:43.0911 3188 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:32:43.0913 3188 TDTCP - ok
23:32:43.0964 3188 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:32:43.0966 3188 tdx - ok
23:32:43.0993 3188 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:32:43.0995 3188 TermDD - ok
23:32:44.0062 3188 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
23:32:44.0075 3188 TermService - ok
23:32:44.0101 3188 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
23:32:44.0106 3188 Themes - ok
23:32:44.0126 3188 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
23:32:44.0130 3188 THREADORDER - ok
23:32:44.0166 3188 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
23:32:44.0171 3188 TrkWks - ok
23:32:44.0243 3188 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:32:44.0245 3188 TrustedInstaller - ok
23:32:44.0288 3188 [ 2c8fc39cce0b166240929ad88fed2861 ] TsLwWfF C:\Windows\system32\DRIVERS\TsLwWfF.sys
23:32:44.0290 3188 TsLwWfF - ok
23:32:44.0321 3188 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:32:44.0323 3188 tssecsrv - ok
23:32:44.0354 3188 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
23:32:44.0356 3188 tunmp - ok
23:32:44.0389 3188 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:32:44.0391 3188 tunnel - ok
23:32:44.0420 3188 [ 7d33c4db2ce363c8518d2dfcf533941f ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:32:44.0423 3188 uagp35 - ok
23:32:44.0477 3188 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:32:44.0483 3188 udfs - ok
23:32:44.0550 3188 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:32:44.0556 3188 UI0Detect - ok
23:32:44.0601 3188 [ b0acfdc9e4af279e9116c03e014b2b27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:32:44.0604 3188 uliagpkx - ok
23:32:44.0628 3188 [ 9224bb254f591de4ca8d572a5f0d635c ] uliahci C:\Windows\system32\drivers\uliahci.sys
23:32:44.0635 3188 uliahci - ok
23:32:44.0654 3188 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
23:32:44.0658 3188 UlSata - ok
23:32:44.0678 3188 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
23:32:44.0682 3188 ulsata2 - ok
23:32:44.0710 3188 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:32:44.0712 3188 umbus - ok
23:32:44.0741 3188 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
23:32:44.0749 3188 upnphost - ok
23:32:44.0808 3188 [ 83cafcb53201bbac04d822f32438e244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
23:32:44.0810 3188 USBAAPL - ok
23:32:44.0883 3188 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:32:44.0886 3188 usbccgp - ok
23:32:44.0927 3188 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:32:44.0930 3188 usbcir - ok
23:32:44.0989 3188 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:32:44.0991 3188 usbehci - ok
23:32:45.0014 3188 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:32:45.0020 3188 usbhub - ok
23:32:45.0042 3188 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:32:45.0044 3188 usbohci - ok
23:32:45.0056 3188 [ b51e52acf758be00ef3a58ea452fe360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
23:32:45.0057 3188 usbprint - ok
23:32:45.0093 3188 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:32:45.0096 3188 USBSTOR - ok
23:32:45.0115 3188 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:32:45.0117 3188 usbuhci - ok
23:32:45.0197 3188 [ 35c9095fa7076466afbfc5b9ec4b779e ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
23:32:45.0198 3188 usb_rndisx - ok
23:32:45.0257 3188 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
23:32:45.0262 3188 UxSms - ok
23:32:45.0327 3188 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
23:32:45.0339 3188 vds - ok
23:32:45.0367 3188 [ 87b06e1f30b749a114f74622d013f8d4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:32:45.0369 3188 vga - ok
23:32:45.0398 3188 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
23:32:45.0400 3188 VgaSave - ok
23:32:45.0426 3188 [ 5d7159def58a800d5781ba3a879627bc ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:32:45.0428 3188 viaagp - ok
23:32:45.0443 3188 [ c4f3a691b5bad343e6249bd8c2d45dee ] ViaC7 C:\Windows\system32\drivers\viac7.sys
23:32:45.0446 3188 ViaC7 - ok
23:32:45.0489 3188 [ aadf5587a4063f52c2c3fed7887426fc ] viaide C:\Windows\system32\drivers\viaide.sys
23:32:45.0491 3188 viaide - ok
23:32:45.0519 3188 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:32:45.0521 3188 volmgr - ok
23:32:45.0591 3188 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:32:45.0599 3188 volmgrx - ok
23:32:45.0628 3188 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:32:45.0634 3188 volsnap - ok
23:32:45.0679 3188 [ 587253e09325e6bf226b299774b728a9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:32:45.0683 3188 vsmraid - ok
23:32:45.0766 3188 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
23:32:45.0797 3188 VSS - ok
23:32:45.0868 3188 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
23:32:45.0878 3188 W32Time - ok
23:32:45.0916 3188 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:32:45.0918 3188 WacomPen - ok
23:32:45.0937 3188 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
23:32:45.0939 3188 Wanarp - ok
23:32:45.0946 3188 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:32:45.0948 3188 Wanarpv6 - ok
23:32:45.0977 3188 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:32:45.0993 3188 wcncsvc - ok
23:32:46.0022 3188 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:32:46.0027 3188 WcsPlugInService - ok
23:32:46.0061 3188 [ 78fe9542363f297b18c027b2d7e7c07f ] Wd C:\Windows\system32\drivers\wd.sys
23:32:46.0063 3188 Wd - ok
23:32:46.0096 3188 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:32:46.0107 3188 Wdf01000 - ok
23:32:46.0126 3188 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:32:46.0131 3188 WdiServiceHost - ok
23:32:46.0137 3188 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:32:46.0141 3188 WdiSystemHost - ok
23:32:46.0203 3188 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
23:32:46.0210 3188 WebClient - ok
23:32:46.0257 3188 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:32:46.0304 3188 Wecsvc - ok
23:32:46.0340 3188 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:32:46.0345 3188 wercplsupport - ok
23:32:46.0393 3188 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
23:32:46.0398 3188 WerSvc - ok
23:32:46.0449 3188 [ 4575aa12561c5648483403541d0d7f2b ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
23:32:46.0455 3188 WinDefend - ok
23:32:46.0463 3188 WinHttpAutoProxySvc - ok
23:32:46.0566 3188 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:32:46.0568 3188 Winmgmt - ok
23:32:46.0761 3188 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
23:32:46.0804 3188 WinRM - ok
23:32:46.0848 3188 [ 676f4b665bdd8053eaa53ac1695b8074 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
23:32:46.0850 3188 WinUSB - ok
23:32:46.0954 3188 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:32:46.0976 3188 Wlansvc - ok
23:32:46.0991 3188 wltrysvc - ok
23:32:47.0020 3188 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:32:47.0036 3188 WmiAcpi - ok
23:32:47.0104 3188 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:32:47.0108 3188 wmiApSrv - ok
23:32:47.0248 3188 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:32:47.0279 3188 WMPNetworkSvc - ok
23:32:47.0368 3188 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:32:47.0378 3188 WPCSvc - ok
23:32:47.0442 3188 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:32:47.0449 3188 WPDBusEnum - ok
23:32:47.0489 3188 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
23:32:47.0492 3188 WpdUsb - ok
23:32:47.0620 3188 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:32:47.0636 3188 WPFFontCache_v0400 - ok
23:32:47.0662 3188 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:32:47.0664 3188 ws2ifsl - ok
23:32:47.0719 3188 [ 1ca6c40261ddc0425987980d0cd2aaab ] wscsvc C:\Windows\System32\wscsvc.dll
23:32:47.0723 3188 wscsvc - ok
23:32:47.0730 3188 WSearch - ok
23:32:47.0836 3188 [ fc3ec24fce372c89423e015a2ac1a31e ] wuauserv C:\Windows\system32\wuaueng.dll
23:32:47.0865 3188 wuauserv - ok
23:32:47.0888 3188 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:32:47.0890 3188 WUDFRd - ok
23:32:47.0932 3188 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:32:47.0936 3188 wudfsvc - ok
23:32:47.0979 3188 ================ Scan global ===============================
23:32:48.0012 3188 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
23:32:48.0084 3188 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
23:32:48.0100 3188 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
23:32:48.0164 3188 (d4e6d91c1349b7bfb3599a6ada56851b) C:\Windows\system32\services.exe
23:32:48.0172 3188 [Global] - ok
23:32:48.0173 3188 ================ Scan MBR ==================================
23:32:48.0185 3188 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
23:32:48.0738 3188 \Device\Harddisk0\DR0 - ok
23:32:48.0738 3188 ================ Scan VBR ==================================
23:32:48.0777 3188 Boot (0x1200) (a431838945ca4aead0b42711b8ca0e9b) \Device\Harddisk0\DR0\Partition1
23:32:48.0779 3188 \Device\Harddisk0\DR0\Partition1 - ok
23:32:48.0784 3188 Boot (0x1200) (25ecac526feeabbaed81c5132d1e93c5) \Device\Harddisk0\DR0\Partition2
23:32:48.0787 3188 \Device\Harddisk0\DR0\Partition2 - ok
23:32:48.0787 3188 ============================================================
23:32:48.0787 3188 Scan finished
23:32:48.0787 3188 ============================================================
23:32:48.0806 4824 Detected object count: 0
23:32:48.0806 4824 Actual detected object count: 0
23:33:04.0747 5872 Deinitialize success

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 17 August 2012 - 10:39 PM

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{1b2fec0c-409a-ed27-95be-fc2c81414170}

Click on LOOK,post the generated log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

post the generated log

#7 DaKlown

DaKlown
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 19 August 2012 - 06:35 PM

SystemLook 30.07.11 by jpshortstuff
Log created at 23:41 on 17/08/2012 by Bridgette
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\System32\services.exe --a---- 279552 bytes [02:17 08/09/2011] [06:27 11/04/2009] D4E6D91C1349B7BFB3599A6ADA56851B
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe --a---- 279040 bytes [02:24 21/01/2008] [02:24 21/01/2008] 2B336AB6286D6C81FA02CBAB914E3C6C
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe --a---- 279552 bytes [02:17 08/09/2011] [06:27 11/04/2009] D4E6D91C1349B7BFB3599A6ADA56851B

========== folderfind ==========

Searching for "{1b2fec0c-409a-ed27-95be-fc2c81414170}"
C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170} d--hs-- [01:37 11/01/2012]

-= EOF =-

MiniToolBox by Farbar Version: 23-07-2012
Ran by Bridgette (administrator) on 19-08-2012 at 10:14:12
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: 201.49.113.72:8080

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.ftp", "192.168.2.254"
"network.proxy.ftp_port", 8000
"network.proxy.http", "192.168.2.254"
"network.proxy.http_port", 8000
"network.proxy.no_proxies_on", "*.local"
"network.proxy.share_proxy_settings", true
"network.proxy.socks", "192.168.2.254"
"network.proxy.socks_port", 8000
"network.proxy.ssl", "192.168.2.254"
"network.proxy.ssl_port", 8000
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
PdaNet Broadband Adapter = PdaNet Broadband Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Bridgette-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : PdaNet Broadband Adapter
Physical Address. . . . . . . . . : 00-26-37-BD-39-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
Physical Address. . . . . . . . . : 1A-2B-3C-4D-5E-6F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::881:5b61:5b9a:91d3%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.15.32(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, August 18, 2012 8:06:30 PM
Lease Expires . . . . . . . . . . : Monday, August 20, 2012 9:24:16 AM
Default Gateway . . . . . . . . . : 192.168.15.1
DHCP Server . . . . . . . . . . . : 192.168.15.1
DHCPv6 IAID . . . . . . . . . . . : 201335391
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-DC-AA-8F-00-22-19-DC-9E-3C
DNS Servers . . . . . . . . . . . : 192.168.15.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 00-22-19-DC-9E-3C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{94ABB522-656B-49C1-952A-7B970D7E8F8D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{2171ABFC-6F1A-420C-81B9-26E6CEFFA4A7}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:83f:16a8:3f57:f0df(Preferred)
Link-local IPv6 Address . . . . . : fe80::83f:16a8:3f57:f0df%12(Preferred)
Default Gateway . . . . . . . . . : ::
DHCPv6 IAID . . . . . . . . . . . : 251789396
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-DC-AA-8F-00-22-19-DC-9E-3C
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{A957C282-0565-4DCC-BE07-4F4F67C47A8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: WiMaxCPE
Address: 192.168.15.1

Name: google.com
Addresses: 2607:f8b0:4002:802::100e
173.194.37.70
173.194.37.71
173.194.37.73
173.194.37.64
173.194.37.78
173.194.37.68
173.194.37.67
173.194.37.66
173.194.37.72
173.194.37.69
173.194.37.65



Pinging google.com [173.194.37.65] with 32 bytes of data:

Reply from 173.194.37.65: bytes=32 time=52ms TTL=57

Reply from 173.194.37.65: bytes=32 time=66ms TTL=57



Ping statistics for 173.194.37.65:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 52ms, Maximum = 66ms, Average = 59ms

Server: WiMaxCPE
Address: 192.168.15.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

Reply from 98.139.183.24: bytes=32 time=153ms TTL=53

Reply from 98.139.183.24: bytes=32 time=152ms TTL=53



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 152ms, Maximum = 153ms, Average = 152ms

Server: WiMaxCPE
Address: 192.168.15.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
14 ...00 26 37 bd 39 42 ...... PdaNet Broadband Adapter
11 ...1a 2b 3c 4d 5e 6f ...... Dell Wireless 1397 WLAN Mini-Card
10 ...00 22 19 dc 9e 3c ...... Broadcom NetLink ™ Gigabit Ethernet
1 ........................... Software Loopback Interface 1
18 ...00 00 00 00 00 00 00 e0 isatap.{94ABB522-656B-49C1-952A-7B970D7E8F8D}
17 ...00 00 00 00 00 00 00 e0 isatap.{2171ABFC-6F1A-420C-81B9-26E6CEFFA4A7}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
15 ...00 00 00 00 00 00 00 e0 isatap.{A957C282-0565-4DCC-BE07-4F4F67C47A8F}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.15.1 192.168.15.32 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.15.0 255.255.255.0 On-link 192.168.15.32 281
192.168.15.32 255.255.255.255 On-link 192.168.15.32 281
192.168.15.255 255.255.255.255 On-link 192.168.15.32 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.15.32 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.15.32 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 18 ::/0 On-link
1 306 ::1/128 On-link
12 18 2001::/32 On-link
12 266 2001:0:9d38:953c:83f:16a8:3f57:f0df/128
On-link
11 281 fe80::/64 On-link
12 266 fe80::/64 On-link
12 266 fe80::83f:16a8:3f57:f0df/128
On-link
11 281 fe80::881:5b61:5b9a:91d3/128
On-link
1 306 ff00::/8 On-link
12 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/18/2012 08:07:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/17/2012 08:36:34 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\DOWNLOADS\GRAPHIC DESIGN\CLIENTS\SPITTY\CHUBBIE BABY\CHUBBIE LOGO WHITE.JPG> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/17/2012 04:17:19 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XFD1I06A.DEFAULT\CACHE\0> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/17/2012 04:17:12 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\DOWNLOADS\FONTS\FEDERAL\OTF\FEDERALTWELVE\FEDERALTWELVE-HSHADOW.OTF> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/17/2012 04:17:12 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\DOWNLOADS\FONTS\FEDERAL\OTF\FEDERALTWELVE\FEDERALTWELVE-HORIZONTAL.OTF> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/17/2012 04:17:12 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\DOWNLOADS\FONTS\FEDERAL\OTF\FEDERALTWELVE\FEDERALTWELVE-DSHADOW.OTF> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/17/2012 04:17:12 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\DOWNLOADS\FONTS\FEDERAL\OTF\FEDERALTWELVE\FEDERALTWELVE-DIAGONAL.OTF> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/17/2012 04:17:11 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\DOWNLOADS\FONTS\FEDERAL\OTF\FEDERALTWELVE\FEDERALTWELVE-BEVEL.OTF> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/17/2012 04:12:58 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/17/2012 04:07:14 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\BRIDGETTE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\XFD1I06A.DEFAULT\CACHE\1\C2> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (08/18/2012 08:15:48 PM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053

Error: (08/18/2012 08:15:48 PM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search

Error: (08/18/2012 08:15:48 PM) (Source: DCOM) (User: )
Description: 1053WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (08/18/2012 06:40:03 PM) (Source: ACPI) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (08/18/2012 06:39:58 PM) (Source: ACPI) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (08/18/2012 06:39:53 PM) (Source: ACPI) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (08/17/2012 04:11:37 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 4:09:58 PM on 8/17/2012 was unexpected.

Error: (08/17/2012 03:45:11 PM) (Source: DCOM) (User: )
Description: 1084MSIServer{000C101C-0000-0000-C000-000000000046}

Error: (08/17/2012 03:42:09 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (08/17/2012 03:42:05 PM) (Source: Service Control Manager) (User: )
Description: eamonm
ehdrv
spldr
Wanarpv6


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe After Effects CS4 (Version: 9)
Adobe After Effects CS4 Presets (Version: 9)
Adobe After Effects CS4 Third Party Content (Version: 9)
Adobe AIR (Version: 1.5.3.9120)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color Video Profiles AE CS4 (Version: 2.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Default Language CS4 (Version: 2.0)
Adobe Dreamweaver CS5 (Version: 11.0)
Adobe Dynamiclink Support (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Fonts All (Version: 2.0)
Adobe Illustrator CS5 (Version: 15.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Additional Exporter (Version: 1.0)
Adobe Media Encoder CS4 Exporter (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Media Player (Version: 1.8)
Adobe MotionPicture Color Files CS4 (Version: 2.0)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader 9.5.2 (Version: 9.5.2)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Advanced Audio FX Engine
Age of Empires III (Version: 1.00.0000)
Apple Application Support (Version: 1.5.2)
Apple Mobile Device Support (Version: 3.4.1.2)
Apple Software Update (Version: 2.1.3.127)
Banctec Service Agreement (Version: 2.0.0)
BlackBerry Email and MDS Services Simulators 4.1.2 (Version: 4.1.2)
Bonjour (Version: 3.0.0.2)
Browser Address Error Redirector (Version: 1.00.0000)
CDMA Workshop 2.7
Cisco EAP-FAST Module (Version: 2.1.6)
Cisco LEAP Module (Version: 1.0.12)
Cisco PEAP Module (Version: 1.0.13)
CoffeeCup Visual Site Designer Software (Version: Software)
CommView for WiFi (Version: 6.3)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Dell DataSafe Online (Version: 1.1.0019)
Dell Dock (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Touchpad (Version: 7.2.101.209)
Dell Video Chat (remove only) (Version: 6.0 (6551))
Dell Webcam Central
Dell Wireless WLAN Card Utility (Version: 5.10.38.30)
DivX Setup (Version: 2.6.1.8)
ESET Online Scanner v3
ESET Smart Security (Version: 5.2.9.1)
Extensis Suitcase Fusion 3 (Version: 14.0.5)
Filter Forge 3.006
Google Chrome (Version: 21.0.1180.79)
Google Desktop (Version: 5.9.1005.12335)
Google Drive (Version: 1.3.3209.2688)
Google Talk (remove only)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
GoToAssist 8.0.0.514
HP USB Disk Storage Format Tool
IDT Audio (Version: 1.0.6162.3)
Integrated Webcam Driver (1.06.03.0309) (Version: 1.06.03.0309)
Intel PROSet Wireless
Intel® Graphics Media Accelerator Driver
Intel® PROSet/Wireless WiFi Driver (Version: 12.00.4000)
ITECIR Driver (Version: 1.00.000)
iTunes (Version: 10.4.1.10)
J2SE Development Kit 5.0 Update 22 (Version: 1.5.0.220)
J2SE Runtime Environment 5.0 Update 22 (Version: 1.5.0.220)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
Java™ 6 Update 7 (Version: 1.6.0.70)
Live! Cam Avatar Creator (Version: 4.6.1419.1)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MediaDirect (Version: 4.0)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.0.61118.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 1.00.0000)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Pando Media Booster (Version: 2.3.6.0)
PdaNet for Android 3.00
PDF Settings CS5 (Version: 10.0)
Photoshop Camera Raw (Version: 5.0)
Pixel Bender Toolkit (Version: 1.0)
QuickSet (Version: 9.2.6)
QuickTime (Version: 7.70.80.34)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.5)
RealUpgrade 1.1 (Version: 1.1.0)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.54.05 (Version: 3.54.05)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator DE (Version: 10.1)
Roxio Creator DE (Version: 3.7.0)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio Update Manager (Version: 6.0.0)
Samsung Kies (Version: 2.0.2.11071_128)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.450.0)
SixaxisPairTool 0.2.3 (Version: 0.2.3)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Suite Shared Configuration CS4 (Version: 1.0)
Topaz Adjust 4 (Version: 4.1.0)
Topaz Clean 3 (Version: 3.0.2)
Topaz DeJpeg 4 (Version: 4.0.2)
Topaz DeNoise 5 (Version: 5.0.1)
Topaz Detail 2 (Version: 2.0.5)
Topaz Fusion Express 2 (Version: 2.0.1)
Topaz ReMask 2 (Version: 2.0.5)
Topaz Simplify 3 (Version: 3.0.2)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687400) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VLC media player 2.0.3 (Version: 2.0.3)
WinAVI All in One Converter (Version: 1.6.0.4147)
Windows 7 Upgrade Advisor (Version: 2.0.5000.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Password Unlocker Enterprise 5.0.0.0
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
Xvid Video Codec (Version: 1.3.2)

========================= Memory info: ===================================

Percentage of memory in use: 57%
Total physical RAM: 3032.13 MB
Available physical RAM: 1286.25 MB
Total Pagefile: 6286.53 MB
Available Pagefile: 4078.43 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.21 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:288.29 GB) (Free:8.95 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:9.77 GB) (Free:4.61 GB) NTFS

========================= Users: ========================================

User accounts for \\BRIDGETTE-PC

Administrator Bridgette Guest


**** End of log ****


Farbar Service Scanner Version: 06-08-2012
Ran by Bridgette (administrator) on 19-08-2012 at 10:15:46
Running from "C:\Users\Bridgette\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

# AdwCleaner v1.801 - Logfile created 08/19/2012 at 18:25:39
# Updated 14/08/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Bridgette - BRIDGETTE-PC
# Boot Mode : Normal
# Running from : C:\Users\Bridgette\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\Bridgette\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Bridgette\Documents\DealRunner

***** [Registry] *****


***** [Registre - GUID] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Bridgette\AppData\Roaming\Mozilla\Firefox\Profiles\xfd1i06a.default\prefs.js

C:\Users\Bridgette\AppData\Roaming\Mozilla\Firefox\Profiles\xfd1i06a.default\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v21.0.1180.79

File : C:\Users\Bridgette\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted : "path": "C:\\Users\\Bridgette\\AppData\\LocalLow\\Unity\\WebPlayer\\loader\\npUnity3D32.dll[...]

*************************

AdwCleaner[S1].txt - [313 octets] - [19/08/2012 10:16:24]
AdwCleaner[S2].txt - [1398 octets] - [19/08/2012 18:25:39]

########## EOF - C:\AdwCleaner[S2].txt - [1526 octets] ##########

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 19 August 2012 - 10:03 PM

Open your C drive

On top,click on Organize-folder and search options

Click on View tab and scroll down

Check mark Show hidden files
Uncheck Hide operating system files


Click ok,now go to

C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170}

delete the folder

Download RKILL from here

http://www.bleepingcomputer.com/download/rkill/

Run it and post the contents of log generated on the desktop here

#9 DaKlown

DaKlown
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 19 August 2012 - 11:49 PM

Rkill 2.2.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/20/2012 12:47:36 AM in x86 mode.
Windows Version: Windows Vista

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* C:\Windows\System32\WLTRYSVC.EXE (PID: 1796) [WD-HEUR]
* C:\Windows\System32\bcmwltry.exe (PID: 1812) [WD-HEUR]
* C:\Windows\System32\WLTRAY.EXE (PID: 1184) [WD-HEUR]
* C:\Users\Bridgette\AppData\Roaming\Google\Google Talk\googletalk.exe (PID: 3196) [UP-HEUR]

4 proccesses terminated!

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\.exe\shell found and deleted!


Performing miscellaneous checks.

* No issues found.

Checking Windows Service Integrity:

* AppMgmt [Missing Service]
* CscService [Missing Service]
* Fax [Missing Service]
* UmRdpService [Missing Service]
* wbengine [Missing Service]
* gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]

Searching for Missing Digital Signatures:
* No issues found.

Program finished at: 08/20/2012 12:47:51 AM
Execution time: 0 hours(s), 0 minute(s), and 14 seconds(s)

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 19 August 2012 - 11:54 PM

Still need malwarebytes log

#11 DaKlown

DaKlown
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 19 August 2012 - 11:56 PM

is it in c:/?

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 19 August 2012 - 11:57 PM

Launch malwarebytes,click ON LOGS tab

Post the content of latest log you ran

Let me know if you have any current issues

#13 DaKlown

DaKlown
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 20 August 2012 - 12:04 AM

you said run it until i got a clean log. This is the clean log:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.18.01

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Bridgette :: BRIDGETTE-PC [administrator]

Protection: Enabled

8/18/2012 8:54:44 PM
mbam-log-2012-08-18 (20-54-44).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 484331
Time elapsed: 4 hour(s), 42 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

and ths is the scan before a restart that found things:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.18.01

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Bridgette :: BRIDGETTE-PC [administrator]

8/18/2012 12:24:20 AM
mbam-log-2012-08-18 (00-24-20).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 487882
Time elapsed: 4 hour(s), 11 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCU\SOFTWARE\CLASSES\CLSID\{42AEDC87-2188-41FD-B9A3-0C966FEABEC1}\INPROCSERVER32 (Trojan.Zaccess) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKCU\SOFTWARE\CLASSES\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32| (Trojan.Zaccess) -> Data: C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170}\n. -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\Bridgette\AppData\Local\{1b2fec0c-409a-ed27-95be-fc2c81414170}\U\00000008.@ (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.

(end)

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:03 PM

Posted 20 August 2012 - 12:26 AM

That looks good

Download

TFC If tfc locks up the system,run it in safemode

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vista/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#15 DaKlown

DaKlown
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:12:03 AM

Posted 20 August 2012 - 01:43 AM

I was able to complete all the steps except the tfc file. It freezes my pc in regular windows and safe mode. Tried multiple times.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users