Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware Win32/sirefef infection and more......


  • Please log in to reply
18 replies to this topic

#1 Tythen

Tythen

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 20 August 2012 - 06:33 PM

Greetings, firstly, thank you for taking the time to look into my issues.

I am currently running Windows Vista 32bit standard edition on a Dell Inspiron 1400 laptop.

Up until last week I was running fine, but due to a stupid error on my part,(I clicked a link in an email I thought was legit.) but since I am experiencing several issues. It first began with (I assume) the google redirect virus. I use internet explorer and use safari as a backup. It seemed to be only in internet explorer. It would allow me to search any topic, for instance, Guild wars 2. When I would select it in the search bar, everything seemed normal, unless I clicked the sites webpage. I would be redirected to another site. However, if I clicked on a wiki page, it would act normal. Also, I had no popups that seem to go along with that virus. I ran, superantispyware, malwarebytes, and it showed nothings. A few days later I noticed that I would sometimes experience random commercials audio would play while I was not even using any search engines.

Recently, I reinstalled Microsoft Security Essentials, ran a full scan (took almost 14hours) but it found an issue (sorry, didnt log it) and apparenly "fixed" the issue. I was able to use ie without redirect. That didn't last long. A day after that, whenever I log on my laptop a few minutes will go by, ranging from 1 to 10 minutes, and I will recieve a window stating, "Windows has encountered a critical error and needs to restart. You have one minute, save your work". I am unable to boot up in normal or safe modes without getting this message now.

Please, tell me what I need to do to fix this. Or should I just buy a new hard drive, and transfer my wanting files from the infected to the new one. Thank you again

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:18 AM

Posted 20 August 2012 - 07:36 PM

Hello,lets see what we can get here...

Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.


>>>> Download this file and doubleclick on it to run it. Allow the information to be merged with the registry.

Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.

>>>

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.


>>>
Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 20 August 2012 - 09:00 PM

Boopme, thank you for the quick response. Sadly, I was unable to download due to constantly being shutdown/ restarted. Should I try to download to a flash drive?

Edited by Tythen, 20 August 2012 - 09:12 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:18 AM

Posted 20 August 2012 - 09:13 PM

First try using a restore point,if you have one. Restore to a point before the infection,.see if they will run.

Windows Vista System Restore Guide

Edited by boopme, 20 August 2012 - 09:14 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 20 August 2012 - 10:18 PM

I'm just all sorts of fail. I don't have any good restore points. D'oh!

#6 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 21 August 2012 - 01:27 AM

Okay, so far, if this actually works, I could kiss you! Lol.

Hear is what I did.

One by one, I loaded my flash drive with the programs you listed.

With rkill.exe, it stoped at "Searching for Missing Digital Signatures:" with the result of " C:\Windows\System32\svchost.exe [NoSig] " before the program restarted once again.

Next, I had to run the TDSSKiller about three times before it was able to finish completely.

02:01:47.0888 1456 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
02:01:47.0934 1456 ============================================================
02:01:47.0934 1456 Current date / time: 2012/08/21 02:01:47.0934
02:01:47.0934 1456 SystemInfo:
02:01:47.0934 1456
02:01:47.0934 1456 OS Version: 6.0.6002 ServicePack: 2.0
02:01:47.0934 1456 Product type: Workstation
02:01:47.0934 1456 ComputerName: OPTIMUSPRIME-PC
02:01:47.0934 1456 UserName: Optimus Prime
02:01:47.0934 1456 Windows directory: C:\Windows
02:01:47.0934 1456 System windows directory: C:\Windows
02:01:47.0934 1456 Processor architecture: Intel x86
02:01:47.0934 1456 Number of processors: 2
02:01:47.0934 1456 Page size: 0x1000
02:01:47.0934 1456 Boot type: Safe boot
02:01:47.0934 1456 ============================================================
02:01:50.0727 1456 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
02:01:50.0727 1456 Drive \Device\Harddisk1\DR1 - Size: 0x78000000 (1.88 Gb), SectorSize: 0x200, Cylinders: 0xF4, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
02:01:50.0727 1456 ============================================================
02:01:50.0727 1456 \Device\Harddisk0\DR0:
02:01:50.0727 1456 MBR partitions:
02:01:50.0727 1456 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23800, BlocksNum 0x1400000
02:01:50.0727 1456 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1423800, BlocksNum 0x110F5800
02:01:51.0320 1456 \Device\Harddisk1\DR1:
02:01:51.0320 1456 MBR partitions:
02:01:51.0320 1456 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x3BBFE0
02:01:51.0320 1456 ============================================================
02:01:51.0600 1456 C: <-> \Device\Harddisk0\DR0\Partition2
02:01:51.0663 1456 D: <-> \Device\Harddisk0\DR0\Partition1
02:01:51.0663 1456 ============================================================
02:01:51.0663 1456 Initialize success
02:01:51.0663 1456 ============================================================
02:02:01.0366 1632 ============================================================
02:02:01.0366 1632 Scan started
02:02:01.0366 1632 Mode: Manual; TDLFS;
02:02:01.0366 1632 ============================================================
02:02:03.0004 1632 ================ Scan system memory ========================
02:02:03.0004 1632 System memory - ok
02:02:03.0004 1632 ================ Scan services =============================
02:02:03.0300 1632 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
02:02:03.0300 1632 !SASCORE - ok
02:02:03.0316 1632 .cdrom - ok
02:02:03.0815 1632 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
02:02:03.0815 1632 ACPI - ok
02:02:04.0049 1632 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
02:02:04.0065 1632 AdobeFlashPlayerUpdateSvc - ok
02:02:04.0221 1632 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
02:02:04.0221 1632 adp94xx - ok
02:02:04.0595 1632 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
02:02:04.0658 1632 adpahci - ok
02:02:04.0751 1632 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
02:02:04.0751 1632 adpu160m - ok
02:02:05.0157 1632 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
02:02:05.0375 1632 adpu320 - ok
02:02:05.0469 1632 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:02:05.0562 1632 AeLookupSvc - ok
02:02:05.0625 1632 [ EF1142512BEC12F1C2C87735DA1755BE ] AESTFilters C:\Windows\system32\aestsrv.exe
02:02:05.0625 1632 AESTFilters - ok
02:02:06.0530 1632 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
02:02:06.0545 1632 AFD - ok
02:02:06.0654 1632 [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4 ] agp440 C:\Windows\system32\drivers\agp440.sys
02:02:06.0654 1632 agp440 - ok
02:02:06.0779 1632 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
02:02:06.0779 1632 aic78xx - ok
02:02:06.0888 1632 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
02:02:06.0888 1632 ALG - ok
02:02:06.0966 1632 [ DC67A153FDB8105B25D05334B5E1D8E2 ] aliide C:\Windows\system32\drivers\aliide.sys
02:02:06.0982 1632 aliide - ok
02:02:07.0076 1632 [ 848F27E5B27C1C253F6CEFDC1A5D8F21 ] amdagp C:\Windows\system32\drivers\amdagp.sys
02:02:07.0076 1632 amdagp - ok
02:02:07.0107 1632 [ 835C4C3355088298A5EBD818FA31430F ] amdide C:\Windows\system32\drivers\amdide.sys
02:02:07.0107 1632 amdide - ok
02:02:07.0185 1632 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
02:02:07.0185 1632 AmdK7 - ok
02:02:07.0216 1632 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
02:02:07.0216 1632 AmdK8 - ok
02:02:07.0247 1632 [ 36AB14BFE3DCF3C848ACD1E3810F9CDA ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
02:02:07.0247 1632 ApfiltrService - ok
02:02:07.0294 1632 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
02:02:07.0294 1632 Appinfo - ok
02:02:07.0606 1632 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:02:07.0622 1632 Apple Mobile Device - ok
02:02:07.0684 1632 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
02:02:07.0700 1632 arc - ok
02:02:07.0731 1632 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
02:02:07.0746 1632 arcsas - ok
02:02:07.0824 1632 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:02:07.0824 1632 AsyncMac - ok
02:02:07.0902 1632 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
02:02:07.0902 1632 atapi - ok
02:02:08.0043 1632 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:02:08.0043 1632 AudioEndpointBuilder - ok
02:02:08.0058 1632 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
02:02:08.0058 1632 Audiosrv - ok
02:02:08.0105 1632 [ 32795E299C3ABA589A5E04C83D531CDF ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
02:02:08.0121 1632 b57nd60x - ok
02:02:08.0199 1632 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
02:02:08.0199 1632 Beep - ok
02:02:08.0214 1632 blbdrive - ok
02:02:08.0324 1632 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:02:08.0339 1632 Bonjour Service - ok
02:02:08.0667 1632 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:02:08.0667 1632 bowser - ok
02:02:08.0745 1632 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
02:02:08.0745 1632 BrFiltLo - ok
02:02:08.0760 1632 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
02:02:08.0776 1632 BrFiltUp - ok
02:02:08.0854 1632 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
02:02:08.0916 1632 Browser - ok
02:02:08.0963 1632 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
02:02:08.0979 1632 Brserid - ok
02:02:09.0026 1632 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
02:02:09.0026 1632 BrSerWdm - ok
02:02:09.0072 1632 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
02:02:09.0072 1632 BrUsbMdm - ok
02:02:09.0088 1632 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
02:02:09.0088 1632 BrUsbSer - ok
02:02:09.0213 1632 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
02:02:09.0213 1632 BthEnum - ok
02:02:09.0275 1632 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
02:02:09.0306 1632 BTHMODEM - ok
02:02:09.0353 1632 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
02:02:09.0353 1632 BthPan - ok
02:02:09.0462 1632 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
02:02:09.0478 1632 BTHPORT - ok
02:02:09.0774 1632 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
02:02:09.0774 1632 BthServ - ok
02:02:09.0821 1632 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
02:02:09.0821 1632 BTHUSB - ok
02:02:09.0884 1632 [ 4A28E7BD365377D0512B7EF8C7596D2C ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
02:02:09.0884 1632 btwaudio - ok
02:02:09.0899 1632 [ 5FFDE57253D665067B0886612817EB11 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
02:02:09.0899 1632 btwavdt - ok
02:02:09.0962 1632 [ AB07DC8B05C31A4F95FC73019BE9DB15 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
02:02:09.0962 1632 btwrchid - ok
02:02:10.0008 1632 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\Windows\system32\drivers\BVRPMPR5.SYS
02:02:10.0008 1632 BVRPMPR5 - ok
02:02:10.0086 1632 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:02:10.0086 1632 cdfs - ok
02:02:10.0180 1632 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
02:02:10.0196 1632 cdrom - ok
02:02:10.0274 1632 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
02:02:10.0383 1632 CertPropSvc - ok
02:02:10.0476 1632 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
02:02:10.0476 1632 circlass - ok
02:02:10.0632 1632 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
02:02:10.0648 1632 CLFS - ok
02:02:10.0866 1632 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:02:10.0866 1632 clr_optimization_v2.0.50727_32 - ok
02:02:12.0192 1632 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:02:12.0208 1632 clr_optimization_v4.0.30319_32 - ok
02:02:12.0286 1632 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:02:12.0286 1632 CmBatt - ok
02:02:12.0333 1632 [ E79CBB2195E965F6E3256E2C1B23FD1C ] cmdide C:\Windows\system32\drivers\cmdide.sys
02:02:12.0348 1632 cmdide - ok
02:02:12.0411 1632 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
02:02:12.0411 1632 Compbatt - ok
02:02:12.0473 1632 COMSysApp - ok
02:02:12.0489 1632 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
02:02:12.0489 1632 crcdisk - ok
02:02:12.0536 1632 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
02:02:12.0536 1632 Crusoe - ok
02:02:12.0816 1632 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:02:12.0816 1632 CryptSvc - ok
02:02:13.0004 1632 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
02:02:13.0160 1632 DcomLaunch - ok
02:02:13.0378 1632 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:02:13.0378 1632 DfsC - ok
02:02:13.0784 1632 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
02:02:13.0986 1632 DFSR - ok
02:02:14.0127 1632 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
02:02:14.0127 1632 Dhcp - ok
02:02:14.0189 1632 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
02:02:14.0205 1632 disk - ok
02:02:14.0486 1632 [ 0659E6E0A95564F958D9DF7313F7701E ] DLABMFSM C:\Windows\system32\DLA\DLABMFSM.SYS
02:02:14.0486 1632 DLABMFSM - ok
02:02:14.0517 1632 [ 8691C78908F0BD66170669DB268369F2 ] DLABOIOM C:\Windows\system32\DLA\DLABOIOM.SYS
02:02:14.0517 1632 DLABOIOM - ok
02:02:14.0595 1632 [ 5230CDB7E715F3A3B4A882E254CDD35D ] DLACDBHM C:\Windows\system32\Drivers\DLACDBHM.SYS
02:02:14.0595 1632 DLACDBHM - ok
02:02:14.0688 1632 [ 5615744A1056933B90E6AC54FEB86F35 ] DLADResM C:\Windows\system32\DLA\DLADResM.SYS
02:02:14.0688 1632 DLADResM - ok
02:02:14.0907 1632 [ 1AECA2AFA5005CE4A550CF8EB55A8C88 ] DLAIFS_M C:\Windows\system32\DLA\DLAIFS_M.SYS
02:02:14.0907 1632 DLAIFS_M - ok
02:02:14.0938 1632 [ 840E7F6ABB885C72B9FFDDB022EF5B6D ] DLAOPIOM C:\Windows\system32\DLA\DLAOPIOM.SYS
02:02:14.0938 1632 DLAOPIOM - ok
02:02:15.0016 1632 [ 0294D18731AC05DA80132CE88F8A876B ] DLAPoolM C:\Windows\system32\DLA\DLAPoolM.SYS
02:02:15.0016 1632 DLAPoolM - ok
02:02:15.0094 1632 [ 91886FED52A3F9966207BCE46CFD794F ] DLARTL_M C:\Windows\system32\Drivers\DLARTL_M.SYS
02:02:15.0110 1632 DLARTL_M - ok
02:02:15.0219 1632 [ CCA4E121D599D7D1706A30F603731E59 ] DLAUDFAM C:\Windows\system32\DLA\DLAUDFAM.SYS
02:02:15.0219 1632 DLAUDFAM - ok
02:02:15.0234 1632 [ 7DAB85C33135DF24419951DA4E7D38E5 ] DLAUDF_M C:\Windows\system32\DLA\DLAUDF_M.SYS
02:02:15.0234 1632 DLAUDF_M - ok
02:02:15.0624 1632 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:02:15.0640 1632 Dnscache - ok
02:02:15.0718 1632 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
02:02:15.0734 1632 dot3svc - ok
02:02:15.0780 1632 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
02:02:15.0780 1632 DPS - ok
02:02:15.0827 1632 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:02:15.0827 1632 drmkaud - ok
02:02:15.0874 1632 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\Windows\system32\Drivers\DRVMCDB.SYS
02:02:15.0874 1632 DRVMCDB - ok
02:02:15.0921 1632 [ FFC371525AA55D1BAE18715EBCB8797C ] DRVNDDM C:\Windows\system32\Drivers\DRVNDDM.SYS
02:02:15.0921 1632 DRVNDDM - ok
02:02:16.0046 1632 [ 245F62A2AA67F4A61F10174BF1017327 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
02:02:16.0046 1632 DSBrokerService - ok
02:02:16.0264 1632 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
02:02:16.0264 1632 DSproct - ok
02:02:16.0342 1632 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\Windows\system32\DRIVERS\dsunidrv.sys
02:02:16.0342 1632 dsunidrv - ok
02:02:16.0872 1632 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:02:17.0044 1632 DXGKrnl - ok
02:02:17.0481 1632 [ 7505290504C8E2D172FA378CC0497BCC ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
02:02:17.0496 1632 e1express - ok
02:02:17.0590 1632 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
02:02:17.0606 1632 E1G60 - ok
02:02:17.0684 1632 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
02:02:17.0684 1632 EapHost - ok
02:02:17.0777 1632 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
02:02:17.0777 1632 Ecache - ok
02:02:17.0964 1632 [ DA8B28199B46B72502D5A3F75D446254 ] ElRawDisk C:\Windows\system32\drivers\ElRawDsk.sys
02:02:17.0964 1632 ElRawDisk - ok
02:02:18.0214 1632 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
02:02:18.0230 1632 elxstor - ok
02:02:18.0432 1632 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
02:02:18.0448 1632 EMDMgmt - ok
02:02:18.0698 1632 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
02:02:18.0713 1632 EventSystem - ok
02:02:18.0900 1632 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
02:02:18.0916 1632 EvtEng - ok
02:02:18.0963 1632 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
02:02:18.0963 1632 exfat - ok
02:02:18.0994 1632 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:02:18.0994 1632 fastfat - ok
02:02:19.0103 1632 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
02:02:19.0103 1632 fdc - ok
02:02:19.0150 1632 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
02:02:19.0150 1632 fdPHost - ok
02:02:19.0166 1632 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
02:02:19.0181 1632 FDResPub - ok
02:02:19.0400 1632 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:02:19.0400 1632 FileInfo - ok
02:02:19.0478 1632 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:02:19.0478 1632 Filetrace - ok
02:02:19.0524 1632 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
02:02:19.0524 1632 flpydisk - ok
02:02:19.0634 1632 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:02:19.0634 1632 FltMgr - ok
02:02:19.0961 1632 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
02:02:19.0977 1632 FontCache - ok
02:02:20.0117 1632 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
02:02:20.0133 1632 FontCache3.0.0.0 - ok
02:02:20.0211 1632 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:02:20.0211 1632 Fs_Rec - ok
02:02:20.0273 1632 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
02:02:20.0273 1632 gagp30kx - ok
02:02:20.0476 1632 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:02:20.0476 1632 GEARAspiWDM - ok
02:02:20.0585 1632 [ 35A1F815962F3552066C6BE4C969D297 ] getPlus® Helper C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
02:02:20.0585 1632 getPlus® Helper - ok
02:02:20.0788 1632 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
02:02:20.0788 1632 GoogleDesktopManager-051210-111108 - ok
02:02:20.0944 1632 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
02:02:20.0960 1632 gpsvc - ok
02:02:21.0225 1632 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
02:02:21.0225 1632 gupdate - ok
02:02:21.0240 1632 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
02:02:21.0240 1632 gupdatem - ok
02:02:21.0381 1632 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
02:02:21.0396 1632 gusvc - ok
02:02:21.0786 1632 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:02:21.0833 1632 HdAudAddService - ok
02:02:21.0974 1632 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
02:02:21.0989 1632 HDAudBus - ok
02:02:22.0020 1632 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
02:02:22.0020 1632 HidBth - ok
02:02:22.0052 1632 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
02:02:22.0052 1632 HidIr - ok
02:02:22.0145 1632 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
02:02:22.0145 1632 hidserv - ok
02:02:22.0208 1632 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:02:22.0208 1632 HidUsb - ok
02:02:22.0379 1632 [ 47EECE68857817F39C8C6F33A7E5E76C ] hitmanpro36 C:\Windows\system32\drivers\hitmanpro36.sys
02:02:22.0379 1632 hitmanpro36 - ok
02:02:22.0442 1632 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:02:22.0442 1632 hkmsvc - ok
02:02:22.0488 1632 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
02:02:22.0488 1632 HpCISSs - ok
02:02:22.0629 1632 [ E9E589C9AB799F52E18F057635A2B362 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
02:02:22.0644 1632 HSF_DPV - ok
02:02:22.0691 1632 [ 7845D2385F4DC7DFB3CCAF0C2FA4948E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
02:02:22.0707 1632 HSXHWAZL - ok
02:02:22.0816 1632 [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:02:22.0832 1632 HTTP - ok
02:02:22.0910 1632 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
02:02:22.0910 1632 i2omp - ok
02:02:23.0034 1632 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
02:02:23.0034 1632 i8042prt - ok
02:02:23.0128 1632 [ FD7F9D74C2B35DBDA400804A3F5ED5D8 ] iaStor C:\Windows\system32\drivers\iastor.sys
02:02:23.0144 1632 iaStor - ok
02:02:23.0222 1632 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
02:02:23.0237 1632 iaStorV - ok
02:02:23.0440 1632 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
02:02:23.0440 1632 IDriverT - ok
02:02:24.0033 1632 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
02:02:24.0267 1632 idsvc - ok
02:02:24.0376 1632 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
02:02:24.0376 1632 iirsp - ok
02:02:24.0532 1632 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
02:02:24.0548 1632 IKEEXT - ok
02:02:24.0579 1632 [ 0084046C084D68E494F8CF36BCF08186 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
02:02:24.0579 1632 intelide - ok
02:02:24.0641 1632 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:02:24.0641 1632 intelppm - ok
02:02:25.0109 1632 [ B5A662956977407C6B9B88A846FEF9BD ] ioloSystemService C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
02:02:25.0203 1632 ioloSystemService - ok
02:02:25.0265 1632 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:02:25.0265 1632 IPBusEnum - ok
02:02:25.0359 1632 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:02:25.0359 1632 IpFilterDriver - ok
02:02:25.0374 1632 IpInIp - ok
02:02:25.0437 1632 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
02:02:25.0437 1632 IPMIDRV - ok
02:02:25.0484 1632 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
02:02:25.0484 1632 IPNAT - ok
02:02:25.0811 1632 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
02:02:25.0874 1632 iPod Service - ok
02:02:25.0967 1632 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:02:25.0967 1632 IRENUM - ok
02:02:25.0998 1632 [ 2F8ECE2699E7E2070545E9B0960A8ED2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:02:25.0998 1632 isapnp - ok
02:02:26.0076 1632 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
02:02:26.0076 1632 iScsiPrt - ok
02:02:26.0108 1632 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
02:02:26.0108 1632 iteatapi - ok
02:02:26.0139 1632 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
02:02:26.0139 1632 iteraid - ok
02:02:26.0201 1632 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
02:02:26.0201 1632 kbdclass - ok
02:02:26.0248 1632 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
02:02:26.0248 1632 kbdhid - ok
02:02:26.0295 1632 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
02:02:26.0295 1632 KeyIso - ok
02:02:26.0482 1632 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:02:26.0498 1632 KSecDD - ok
02:02:26.0622 1632 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
02:02:26.0638 1632 KtmRm - ok
02:02:26.0716 1632 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
02:02:26.0732 1632 LanmanServer - ok
02:02:26.0763 1632 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:02:26.0810 1632 LanmanWorkstation - ok
02:02:26.0950 1632 [ 06DC2FDC6282F0D68910417B1150C848 ] LinksysUpdater C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe
02:02:26.0950 1632 LinksysUpdater - ok
02:02:27.0012 1632 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:02:27.0028 1632 lltdio - ok
02:02:27.0075 1632 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:02:27.0075 1632 lltdsvc - ok
02:02:27.0168 1632 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:02:27.0168 1632 lmhosts - ok
02:02:27.0262 1632 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
02:02:27.0262 1632 LSI_FC - ok
02:02:27.0340 1632 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
02:02:27.0340 1632 LSI_SAS - ok
02:02:27.0402 1632 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
02:02:27.0402 1632 LSI_SCSI - ok
02:02:27.0465 1632 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
02:02:27.0480 1632 luafv - ok
02:02:27.0558 1632 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
02:02:27.0558 1632 MBAMProtector - ok
02:02:27.0714 1632 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
02:02:27.0730 1632 MBAMService - ok
02:02:27.0855 1632 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
02:02:27.0855 1632 mdmxsdk - ok
02:02:27.0995 1632 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
02:02:27.0995 1632 megasas - ok
02:02:28.0167 1632 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
02:02:28.0167 1632 MMCSS - ok
02:02:28.0276 1632 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
02:02:28.0276 1632 Modem - ok
02:02:28.0354 1632 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:02:28.0354 1632 monitor - ok
02:02:28.0463 1632 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:02:28.0463 1632 mouclass - ok
02:02:28.0526 1632 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
02:02:28.0526 1632 mouhid - ok
02:02:28.0650 1632 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
02:02:28.0650 1632 MountMgr - ok
02:02:28.0775 1632 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
02:02:28.0775 1632 MpFilter - ok
02:02:28.0900 1632 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
02:02:28.0900 1632 mpio - ok
02:02:28.0947 1632 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:02:28.0947 1632 mpsdrv - ok
02:02:28.0994 1632 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
02:02:28.0994 1632 Mraid35x - ok
02:02:29.0056 1632 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:02:29.0072 1632 MRxDAV - ok
02:02:29.0181 1632 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:02:29.0181 1632 mrxsmb - ok
02:02:29.0259 1632 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:02:29.0259 1632 mrxsmb10 - ok
02:02:29.0321 1632 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:02:29.0321 1632 mrxsmb20 - ok
02:02:29.0384 1632 [ D420BC42A637AC3CC4F411220549C0DC ] msahci C:\Windows\system32\drivers\msahci.sys
02:02:29.0384 1632 msahci - ok
02:02:29.0415 1632 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
02:02:29.0415 1632 msdsm - ok
02:02:29.0462 1632 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
02:02:29.0462 1632 MSDTC - ok
02:02:29.0555 1632 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:02:29.0555 1632 Msfs - ok
02:02:29.0586 1632 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:02:29.0586 1632 msisadrv - ok
02:02:29.0618 1632 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:02:29.0618 1632 MSiSCSI - ok
02:02:29.0633 1632 msiserver - ok
02:02:29.0680 1632 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:02:29.0680 1632 MSKSSRV - ok
02:02:29.0789 1632 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
02:02:29.0789 1632 MsMpSvc - ok
02:02:29.0852 1632 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:02:29.0852 1632 MSPCLOCK - ok
02:02:29.0867 1632 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:02:29.0867 1632 MSPQM - ok
02:02:29.0914 1632 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:02:29.0914 1632 MsRPC - ok
02:02:29.0961 1632 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
02:02:29.0961 1632 mssmbios - ok
02:02:30.0008 1632 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:02:30.0008 1632 MSTEE - ok
02:02:30.0054 1632 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
02:02:30.0086 1632 Mup - ok
02:02:30.0132 1632 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
02:02:30.0148 1632 napagent - ok
02:02:30.0164 1632 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:02:30.0179 1632 NativeWifiP - ok
02:02:30.0304 1632 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
02:02:30.0320 1632 NDIS - ok
02:02:30.0351 1632 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:02:30.0351 1632 NdisTapi - ok
02:02:30.0429 1632 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:02:30.0429 1632 Ndisuio - ok
02:02:30.0507 1632 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:02:30.0507 1632 NdisWan - ok
02:02:30.0632 1632 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:02:30.0632 1632 NDProxy - ok
02:02:30.0647 1632 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:02:30.0647 1632 NetBIOS - ok
02:02:30.0710 1632 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
02:02:30.0710 1632 netbt - ok
02:02:30.0803 1632 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
02:02:30.0803 1632 Netlogon - ok
02:02:30.0866 1632 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
02:02:30.0881 1632 Netman - ok
02:02:30.0928 1632 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
02:02:30.0928 1632 netprofm - ok
02:02:30.0959 1632 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:02:30.0959 1632 NetTcpPortSharing - ok
02:02:31.0365 1632 [ 6522DD40A5F67CED020BD81B856613FB ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
02:02:32.0223 1632 NETw4v32 - ok
02:02:32.0301 1632 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
02:02:32.0301 1632 nfrd960 - ok
02:02:32.0348 1632 [ B52F26BADE7D7E4A79706E3FD91834CD ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
02:02:32.0348 1632 NisDrv - ok
02:02:32.0457 1632 [ 290C0D4C4889398797F8DF3BE00B9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
02:02:32.0457 1632 NisSrv - ok
02:02:32.0550 1632 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
02:02:32.0550 1632 NlaSvc - ok
02:02:32.0847 1632 [ CD2FE9C33CFD0FE0AF124E05907E5C3D ] nmservice C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
02:02:32.0862 1632 nmservice - ok
02:02:33.0034 1632 [ 431ADA51E9D032F533548688CE5A2A24 ] nosGetPlusHelper C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
02:02:33.0034 1632 nosGetPlusHelper - ok
02:02:33.0065 1632 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:02:33.0065 1632 Npfs - ok
02:02:33.0096 1632 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
02:02:33.0096 1632 nsi - ok
02:02:33.0143 1632 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:02:33.0143 1632 nsiproxy - ok
02:02:33.0315 1632 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:02:33.0346 1632 Ntfs - ok
02:02:33.0377 1632 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
02:02:33.0393 1632 ntrigdigi - ok
02:02:33.0455 1632 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
02:02:33.0471 1632 Null - ok
02:02:37.0667 1632 [ E891B3979F0CF2740C1B073F834221FE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
02:02:39.0102 1632 nvlddmkm - ok
02:02:39.0165 1632 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:02:39.0165 1632 nvraid - ok
02:02:39.0227 1632 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:02:39.0227 1632 nvstor - ok
02:02:39.0352 1632 [ AE2DE8E165DCB93A66B21748E6F913DF ] nvsvc C:\Windows\system32\nvvsvc.exe
02:02:39.0368 1632 nvsvc - ok
02:02:40.0241 1632 [ C78581C14699C46FE0F0817416383134 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
02:02:40.0709 1632 nvUpdatusService - ok
02:02:40.0756 1632 [ 055081FD5076401C1EE1BCAB08D81911 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:02:40.0756 1632 nv_agp - ok
02:02:40.0787 1632 NwlnkFlt - ok
02:02:40.0787 1632 NwlnkFwd - ok
02:02:40.0912 1632 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
02:02:40.0912 1632 ohci1394 - ok
02:02:41.0130 1632 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
02:02:41.0146 1632 p2pimsvc - ok
02:02:41.0162 1632 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
02:02:41.0177 1632 p2psvc - ok
02:02:41.0224 1632 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
02:02:41.0224 1632 Parport - ok
02:02:41.0302 1632 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:02:41.0302 1632 partmgr - ok
02:02:41.0333 1632 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
02:02:41.0349 1632 Parvdm - ok
02:02:41.0396 1632 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
02:02:41.0411 1632 PcaSvc - ok
02:02:41.0489 1632 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
02:02:41.0489 1632 pci - ok
02:02:41.0536 1632 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
02:02:41.0536 1632 pciide - ok
02:02:41.0598 1632 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
02:02:41.0598 1632 pcmcia - ok
02:02:41.0739 1632 [ 40C611622882C3FCAFEB845C1E12A10F ] PDFsFilter C:\Windows\system32\DRIVERS\PDFsFilter.sys
02:02:41.0739 1632 PDFsFilter - ok
02:02:41.0848 1632 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:02:41.0910 1632 PEAUTH - ok
02:02:42.0316 1632 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
02:02:42.0425 1632 pla - ok
02:02:42.0488 1632 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:02:42.0488 1632 PlugPlay - ok
02:02:42.0566 1632 [ 63200893C9D5934A7504D20F68276CC7 ] pnarp C:\Windows\system32\DRIVERS\pnarp.sys
02:02:42.0581 1632 pnarp - ok
02:02:42.0644 1632 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
02:02:42.0644 1632 PNRPAutoReg - ok
02:02:42.0659 1632 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
02:02:42.0675 1632 PNRPsvc - ok
02:02:42.0893 1632 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:02:42.0893 1632 PolicyAgent - ok
02:02:42.0940 1632 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:02:42.0940 1632 PptpMiniport - ok
02:02:42.0956 1632 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
02:02:42.0956 1632 Processor - ok
02:02:43.0018 1632 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
02:02:43.0034 1632 ProfSvc - ok
02:02:43.0049 1632 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:02:43.0049 1632 ProtectedStorage - ok
02:02:43.0112 1632 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
02:02:43.0112 1632 PSched - ok
02:02:43.0299 1632 [ 748BCAB4EFF5959ED347C05A1C1A0AF8 ] purendis C:\Windows\system32\DRIVERS\purendis.sys
02:02:43.0299 1632 purendis - ok
02:02:43.0346 1632 [ FEFFCFDC528764A04C8ED63D5FA6E711 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
02:02:43.0361 1632 PxHelp20 - ok
02:02:43.0658 1632 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
02:02:43.0689 1632 ql2300 - ok
02:02:43.0720 1632 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
02:02:43.0736 1632 ql40xx - ok
02:02:43.0860 1632 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
02:02:43.0860 1632 QWAVE - ok
02:02:43.0907 1632 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:02:43.0907 1632 QWAVEdrv - ok
02:02:44.0250 1632 [ E642B131FB74CAF4BB8A014F31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
02:02:44.0547 1632 R300 - ok
02:02:44.0640 1632 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:02:44.0656 1632 RasAcd - ok
02:02:44.0781 1632 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
02:02:44.0796 1632 RasAuto - ok
02:02:44.0952 1632 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:02:44.0952 1632 Rasl2tp - ok
02:02:45.0015 1632 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
02:02:45.0015 1632 RasMan - ok
02:02:45.0077 1632 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:02:45.0108 1632 RasPppoe - ok
02:02:45.0140 1632 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:02:45.0155 1632 RasSstp - ok
02:02:45.0218 1632 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:02:45.0233 1632 rdbss - ok
02:02:45.0264 1632 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:02:45.0264 1632 RDPCDD - ok
02:02:45.0483 1632 [ 0245418224CFA77BF4B41C2FE0622258 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
02:02:45.0498 1632 rdpdr - ok
02:02:45.0498 1632 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:02:45.0498 1632 RDPENCDD - ok
02:02:45.0608 1632 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:02:45.0608 1632 RDPWD - ok
02:02:45.0764 1632 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
02:02:45.0779 1632 RegSrvc - ok
02:02:45.0920 1632 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
02:02:45.0920 1632 RemoteAccess - ok
02:02:45.0982 1632 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:02:45.0982 1632 RemoteRegistry - ok
02:02:46.0044 1632 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
02:02:46.0044 1632 RFCOMM - ok
02:02:46.0154 1632 [ D85E3FA9F5B1F29BB4ED185C450D1470 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
02:02:46.0154 1632 rimmptsk - ok
02:02:46.0263 1632 [ DB8EB01C58C9FADA00C70B1775278AE0 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
02:02:46.0263 1632 rimsptsk - ok
02:02:46.0356 1632 [ 6C1F93C0760C9F79A1869D07233DF39D ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
02:02:46.0356 1632 rismxdp - ok
02:02:46.0746 1632 [ EBCDE8B48FADC6479D96A56D0A432160 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
02:02:46.0762 1632 RoxMediaDB9 - ok
02:02:46.0824 1632 [ AB2B1DE1C8F31EFCE2384B14B3DC4260 ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
02:02:46.0824 1632 RoxWatch9 - ok
02:02:46.0902 1632 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
02:02:46.0902 1632 RpcLocator - ok
02:02:47.0090 1632 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
02:02:47.0090 1632 RpcSs - ok
02:02:47.0121 1632 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:02:47.0121 1632 rspndr - ok
02:02:47.0136 1632 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
02:02:47.0152 1632 SamSs - ok
02:02:47.0339 1632 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
02:02:47.0339 1632 SASDIFSV - ok
02:02:47.0355 1632 [ 7CE61C25C159F50F9EAF6D77FC83FA35 ] SASENUM C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
02:02:47.0355 1632 SASENUM - ok
02:02:47.0448 1632 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys
02:02:47.0448 1632 SASKUTIL - ok
02:02:47.0526 1632 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:02:47.0526 1632 sbp2port - ok
02:02:47.0589 1632 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:02:47.0604 1632 SCardSvr - ok
02:02:47.0729 1632 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
02:02:47.0745 1632 Schedule - ok
02:02:47.0854 1632 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
02:02:47.0854 1632 SCPolicySvc - ok
02:02:47.0916 1632 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
02:02:47.0932 1632 sdbus - ok
02:02:47.0994 1632 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:02:47.0994 1632 SDRSVC - ok
02:02:48.0057 1632 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:02:48.0057 1632 secdrv - ok
02:02:48.0119 1632 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
02:02:48.0119 1632 seclogon - ok
02:02:48.0166 1632 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
02:02:48.0166 1632 SENS - ok
02:02:48.0228 1632 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
02:02:48.0228 1632 Serenum - ok
02:02:48.0260 1632 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
02:02:48.0260 1632 Serial - ok
02:02:48.0306 1632 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
02:02:48.0306 1632 sermouse - ok
02:02:48.0400 1632 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
02:02:48.0400 1632 SessionEnv - ok
02:02:48.0478 1632 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
02:02:48.0478 1632 sffdisk - ok
02:02:48.0556 1632 [ 96DED8B20C734AC41641CE275250E55D ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
02:02:48.0556 1632 sffp_mmc - ok
02:02:48.0665 1632 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
02:02:48.0665 1632 sffp_sd - ok
02:02:48.0681 1632 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
02:02:48.0681 1632 sfloppy - ok
02:02:48.0852 1632 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:02:48.0852 1632 ShellHWDetection - ok
02:02:48.0946 1632 [ 08072B2FB92477FC813271A84B3A8698 ] sisagp C:\Windows\system32\drivers\sisagp.sys
02:02:48.0946 1632 sisagp - ok
02:02:48.0977 1632 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
02:02:48.0993 1632 SiSRaid2 - ok
02:02:49.0071 1632 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
02:02:49.0071 1632 SiSRaid4 - ok
02:02:49.0664 1632 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
02:02:49.0851 1632 slsvc - ok
02:02:49.0929 1632 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
02:02:49.0929 1632 SLUINotify - ok
02:02:50.0022 1632 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:02:50.0022 1632 Smb - ok
02:02:50.0132 1632 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:02:50.0132 1632 SNMPTRAP - ok
02:02:50.0163 1632 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
02:02:50.0178 1632 spldr - ok
02:02:50.0319 1632 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
02:02:50.0319 1632 Spooler - ok
02:02:50.0444 1632 sprtsvc_dellsupportcenter - ok
02:02:50.0553 1632 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:02:50.0568 1632 srv - ok
02:02:50.0693 1632 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:02:50.0709 1632 srv2 - ok
02:02:50.0756 1632 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:02:50.0756 1632 srvnet - ok
02:02:50.0912 1632 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:02:50.0912 1632 SSDPSRV - ok
02:02:50.0990 1632 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:02:50.0990 1632 SstpSvc - ok
02:02:51.0099 1632 [ 799AA3E04879B3FED31ECEA02B1CAA9A ] STacSV C:\Windows\system32\STacSV.exe
02:02:51.0099 1632 STacSV - ok
02:02:51.0364 1632 [ FC0A58529A02B1EED55DDC58696B7908 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
02:02:51.0364 1632 Stereo Service - ok
02:02:51.0411 1632 [ 5AF135B2E2097D4494B9067CE84E2665 ] STHDA C:\Windows\system32\drivers\stwrt.sys
02:02:51.0426 1632 STHDA - ok
02:02:51.0504 1632 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
02:02:51.0520 1632 stisvc - ok
02:02:51.0598 1632 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
02:02:51.0598 1632 stllssvr - ok
02:02:51.0723 1632 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
02:02:51.0723 1632 swenum - ok
02:02:51.0801 1632 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
02:02:51.0816 1632 swprv - ok
02:02:51.0848 1632 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
02:02:51.0848 1632 Symc8xx - ok
02:02:51.0879 1632 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
02:02:51.0879 1632 Sym_hi - ok
02:02:51.0910 1632 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
02:02:51.0910 1632 Sym_u3 - ok
02:02:52.0144 1632 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
02:02:52.0160 1632 SysMain - ok
02:02:52.0222 1632 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:02:52.0238 1632 TabletInputService - ok
02:02:52.0284 1632 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
02:02:52.0300 1632 TapiSrv - ok
02:02:52.0362 1632 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
02:02:52.0362 1632 TBS - ok
02:02:52.0503 1632 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:02:52.0518 1632 Tcpip - ok
02:02:52.0550 1632 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
02:02:52.0550 1632 Tcpip6 - ok
02:02:52.0706 1632 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:02:52.0706 1632 tcpipreg - ok
02:02:52.0737 1632 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:02:52.0737 1632 TDPIPE - ok
02:02:52.0752 1632 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:02:52.0768 1632 TDTCP - ok
02:02:52.0830 1632 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:02:52.0830 1632 tdx - ok
02:02:52.0877 1632 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
02:02:52.0877 1632 TermDD - ok
02:02:52.0971 1632 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
02:02:52.0971 1632 TermService - ok
02:02:53.0018 1632 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
02:02:53.0033 1632 Themes - ok
02:02:53.0080 1632 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
02:02:53.0080 1632 THREADORDER - ok
02:02:53.0111 1632 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
02:02:53.0127 1632 TrkWks - ok
02:02:53.0220 1632 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:02:53.0220 1632 TrustedInstaller - ok
02:02:53.0267 1632 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:02:53.0267 1632 tssecsrv - ok
02:02:53.0330 1632 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
02:02:53.0330 1632 tunmp - ok
02:02:53.0392 1632 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:02:53.0392 1632 tunnel - ok
02:02:53.0454 1632 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
02:02:53.0454 1632 uagp35 - ok
02:02:53.0517 1632 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:02:53.0517 1632 udfs - ok
02:02:53.0564 1632 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:02:53.0564 1632 UI0Detect - ok
02:02:53.0579 1632 [ 6D72EF05921ABDF59FC45C7EBFE7E8DD ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:02:53.0579 1632 uliagpkx - ok
02:02:53.0688 1632 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
02:02:53.0688 1632 uliahci - ok
02:02:53.0720 1632 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
02:02:53.0720 1632 UlSata - ok
02:02:53.0751 1632 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
02:02:53.0751 1632 ulsata2 - ok
02:02:53.0829 1632 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:02:53.0829 1632 umbus - ok
02:02:53.0907 1632 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
02:02:53.0922 1632 upnphost - ok
02:02:53.0969 1632 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
02:02:53.0969 1632 USBAAPL - ok
02:02:54.0016 1632 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:02:54.0016 1632 usbccgp - ok
02:02:54.0078 1632 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
02:02:54.0078 1632 usbcir - ok
02:02:54.0156 1632 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
02:02:54.0172 1632 usbehci - ok
02:02:54.0281 1632 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:02:54.0281 1632 usbhub - ok
02:02:54.0390 1632 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
02:02:54.0390 1632 usbohci - ok
02:02:54.0422 1632 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
02:02:54.0422 1632 usbprint - ok
02:02:54.0484 1632 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:02:54.0500 1632 USBSTOR - ok
02:02:54.0531 1632 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
02:02:54.0531 1632 usbuhci - ok
02:02:54.0578 1632 [ DF8BB0E93518F74D943046A1162BBCDD ] uts_bus C:\Windows\system32\DRIVERS\uts_bus.sys
02:02:54.0578 1632 uts_bus - ok
02:02:54.0624 1632 [ 3427FE9A31E50D0DAC3E062F8DD3BE41 ] uts_mdfl C:\Windows\system32\DRIVERS\uts_mdfl.sys
02:02:54.0624 1632 uts_mdfl - ok
02:02:54.0687 1632 [ 8FA13CD6A1CF2612DDBC056D23C5C0AD ] uts_mdm C:\Windows\system32\DRIVERS\uts_mdm.sys
02:02:54.0687 1632 uts_mdm - ok
02:02:54.0702 1632 [ EDD4D6275289014457E84ECB60AD5C2D ] uts_serd C:\Windows\system32\DRIVERS\uts_serd.sys
02:02:54.0718 1632 uts_serd - ok
02:02:54.0749 1632 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
02:02:54.0749 1632 UxSms - ok
02:02:54.0843 1632 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
02:02:54.0843 1632 vds - ok
02:02:54.0874 1632 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:02:54.0890 1632 vga - ok
02:02:54.0952 1632 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
02:02:54.0952 1632 VgaSave - ok
02:02:55.0014 1632 [ D5929A28BDFF4367A12CAF06AF901971 ] viaagp C:\Windows\system32\drivers\viaagp.sys
02:02:55.0014 1632 viaagp - ok
02:02:55.0046 1632 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
02:02:55.0046 1632 ViaC7 - ok
02:02:55.0092 1632 [ F3B4762EB85A2AFF4999401F14C3262B ] viaide C:\Windows\system32\drivers\viaide.sys
02:02:55.0092 1632 viaide - ok
02:02:55.0139 1632 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:02:55.0139 1632 volmgr - ok
02:02:55.0217 1632 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:02:55.0217 1632 volmgrx - ok
02:02:55.0326 1632 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:02:55.0326 1632 volsnap - ok
02:02:55.0436 1632 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
02:02:55.0451 1632 vsmraid - ok
02:02:55.0545 1632 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
02:02:55.0576 1632 VSS - ok
02:02:55.0670 1632 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
02:02:55.0685 1632 W32Time - ok
02:02:55.0701 1632 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
02:02:55.0701 1632 WacomPen - ok
02:02:55.0748 1632 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
02:02:55.0748 1632 Wanarp - ok
02:02:55.0794 1632 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:02:55.0794 1632 Wanarpv6 - ok
02:02:55.0950 1632 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:02:55.0966 1632 wcncsvc - ok
02:02:55.0997 1632 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:02:55.0997 1632 WcsPlugInService - ok
02:02:56.0060 1632 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
02:02:56.0060 1632 Wd - ok
02:02:56.0231 1632 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:02:56.0278 1632 Wdf01000 - ok
02:02:56.0325 1632 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:02:56.0325 1632 WdiServiceHost - ok
02:02:56.0340 1632 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:02:56.0340 1632 WdiSystemHost - ok
02:02:56.0434 1632 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
02:02:56.0434 1632 WebClient - ok
02:02:56.0559 1632 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:02:56.0574 1632 Wecsvc - ok
02:02:56.0621 1632 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:02:56.0621 1632 wercplsupport - ok
02:02:56.0699 1632 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
02:02:56.0715 1632 WerSvc - ok
02:02:56.0840 1632 [ 4DACA8F07537D4D7E3534BB99294AA26 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
02:02:56.0855 1632 winachsf - ok
02:02:56.0871 1632 WinHttpAutoProxySvc - ok
02:02:56.0996 1632 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:02:57.0011 1632 Winmgmt - ok
02:02:57.0261 1632 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
02:02:57.0292 1632 WinRM - ok
02:02:57.0370 1632 [ 676F4B665BDD8053EAA53AC1695B8074 ] winusb C:\Windows\system32\DRIVERS\winusb.sys
02:02:57.0370 1632 winusb - ok
02:02:57.0542 1632 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
02:02:57.0557 1632 Wlansvc - ok
02:02:57.0604 1632 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
02:02:57.0604 1632 WmiAcpi - ok
02:02:57.0666 1632 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:02:57.0666 1632 wmiApSrv - ok
02:02:57.0869 1632 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
02:02:57.0885 1632 WMPNetworkSvc - ok
02:02:58.0259 1632 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm c:\Program Files\Zune\WMZuneComm.exe
02:02:58.0275 1632 WMZuneComm - ok
02:02:58.0353 1632 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
02:02:58.0368 1632 WPCSvc - ok
02:02:58.0415 1632 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:02:58.0415 1632 WPDBusEnum - ok
02:02:58.0493 1632 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
02:02:58.0509 1632 WpdUsb - ok
02:02:58.0852 1632 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
02:02:58.0868 1632 WPFFontCache_v0400 - ok
02:02:58.0914 1632 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:02:58.0914 1632 ws2ifsl - ok
02:02:58.0930 1632 WSearch - ok
02:02:59.0008 1632 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
02:02:59.0008 1632 WudfPf - ok
02:02:59.0148 1632 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:02:59.0148 1632 WUDFRd - ok
02:02:59.0195 1632 [ 2C0206FF8D2C75AC027D1096FA2FAFDA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:02:59.0195 1632 wudfsvc - ok
02:02:59.0258 1632 [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
02:02:59.0258 1632 XAudio - ok
02:02:59.0304 1632 [ 28DC5D626E036A75A572556F0A6EB1F6 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
02:02:59.0304 1632 XAudioService - ok
02:03:00.0989 1632 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc c:\Program Files\Zune\ZuneNss.exe
02:03:01.0644 1632 ZuneNetworkSvc - ok
02:03:01.0722 1632 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc c:\Program Files\Zune\ZuneWlanCfgSvc.exe
02:03:01.0738 1632 ZuneWlanCfgSvc - ok
02:03:01.0738 1632 ================ Scan global ===============================
02:03:01.0847 1632 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
02:03:01.0894 1632 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:03:01.0910 1632 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:03:01.0972 1632 [ A246A7052A70C2E1BE4F7E54DF31E4DF ] C:\Windows\system32\services.exe
02:03:01.0972 1632 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
02:03:01.0972 1632 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
02:03:01.0972 1632 ================ Scan MBR ==================================
02:03:02.0003 1632 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
02:03:02.0908 1632 \Device\Harddisk0\DR0 - ok
02:03:02.0908 1632 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
02:03:06.0324 1632 \Device\Harddisk1\DR1 - ok
02:03:06.0324 1632 ================ Scan VBR ==================================
02:03:06.0324 1632 [ 8E30591FF12A13540C6DFF7ACD82AB76 ] \Device\Harddisk0\DR0\Partition1
02:03:06.0324 1632 \Device\Harddisk0\DR0\Partition1 - ok
02:03:06.0340 1632 [ 8A4766986990174C08EADE33D662A8D7 ] \Device\Harddisk0\DR0\Partition2
02:03:06.0340 1632 \Device\Harddisk0\DR0\Partition2 - ok
02:03:06.0356 1632 [ BAAF3B5CA6D416D0830AC7434DA90230 ] \Device\Harddisk1\DR1\Partition1
02:03:06.0356 1632 \Device\Harddisk1\DR1\Partition1 - ok
02:03:06.0356 1632 ============================================================
02:03:06.0356 1632 Scan finished
02:03:06.0356 1632 ============================================================
02:03:06.0387 1624 Detected object count: 1
02:03:06.0387 1624 Actual detected object count: 1
02:03:11.0082 1624 C:\Windows\system32\services.exe - copied to quarantine
02:03:14.0249 1624 C:\Windows\assembly\GAC\desktop.ini - copied to quarantine
02:03:14.0780 1624 C:\Windows\installer\{8aad7d06-a2b9-d9b6-2b4e-6dbaccc9e76c}\@ - copied to quarantine
02:03:30.0660 1624 Backup copy found, using it..
02:03:30.0754 1624 C:\Windows\$NtUninstallKB56777$\565975383 - will be deleted on reboot
02:03:30.0754 1624 C:\Windows\assembly\GAC\desktop.ini - will be deleted on reboot
02:03:30.0770 1624 C:\Windows\installer\{8aad7d06-a2b9-d9b6-2b4e-6dbaccc9e76c}\@ - will be deleted on reboot
02:03:30.0770 1624 C:\Windows\system32\services.exe - will be cured on reboot
02:03:30.0770 1624 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Cure
02:03:36.0261 1452 Deinitialize success

After the successful scan, and the cure, I rebooted myself. Afterwards, no more shutdown notices! WOOT!

Figured I would rerun the rkill program so it could finish.

Rkill 2.2.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/21/2012 02:13:27 AM in x86 mode.
Windows Version: Windows Vista Service Pack 2

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Possibly Patched Files.

* C:\Windows\system32\winlogon.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\System32\svchost.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\System32\svchost.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\system32\svchost.exe

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* C:\Windows\System32\svchost.exe [NoSig]
+-> C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe : 22,016 : 11/02/2006 00:45 AM : 10da15933d582d2fedcf705efe394b09 [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe : 21,504 : 01/19/2008 00:33 AM : 3794b461c45882e06856f282eef025af [Pos Repl]

* C:\Windows\System32\winlogon.exe [NoSig]
+-> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe : 308,224 : 11/02/2006 00:45 AM : 9f75392b9128a91abafb044ea350baad [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe : 314,880 : 01/19/2008 00:33 AM : c2610b6bdbefc053bbdab4f1b965cb24 [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe : 314,368 : 04/11/2009 00:28 AM : 898e7c06a350d4a1a64a9ea264d55452 [Pos Repl]

* C:\Windows\explorer.exe [NoSig]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe : 2,923,520 : 11/02/2006 00:45 AM : fd8c53fb002217f6f888bcf6f5d7084d [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe : 2,923,520 : 10/29/2008 00:20 AM : 37440d09deae0b672a04dccf7abf06be [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe : 2,923,520 : 10/27/2008 10:15 PM : e7156b0b74762d9de0e66bdcde06e5fb [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe : 2,927,104 : 01/19/2008 10:33 AM : ffa764631cb70a30065c12ef8e174f9f [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe : 2,927,104 : 10/29/2008 10:29 AM : 4f554999d7d5f05daaebba7b5ba1089d [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe : 2,927,616 : 10/29/2008 11:59 PM : 50ba5850147410cde89c523ad3bc606e [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe : 2,926,592 : 04/11/2009 11:27 AM : d07d4c3038f3578ffce1c0237f2a1253 [Pos Repl]

Program finished at: 08/21/2012 02:19:13 AM
Execution time: 0 hours(s), 5 minute(s), and 46 seconds(s)


Then finally the aswMBR log,
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-21 02:10:09
-----------------------------
02:10:09.823 OS Version: Windows 6.0.6002 Service Pack 2
02:10:09.823 Number of processors: 2 586 0xF0D
02:10:09.823 ComputerName: OPTIMUSPRIME-PC UserName: Optimus Prime
02:10:49.182 Initialize success
02:10:49.291 write error "aswEngin.dll". The process cannot access the file because it is being used by another process.
02:11:03.128 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
02:11:03.128 Disk 0 Vendor: TOSHIBA_ DL04 Size: 152627MB BusType: 3
02:11:03.144 Disk 0 MBR read successfully
02:11:03.144 Disk 0 MBR scan
02:11:03.175 Disk 0 Windows VISTA default MBR code
02:11:03.175 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 70 MB offset 63
02:11:03.190 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10240 MB offset 145408
02:11:03.206 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 139755 MB offset 21116928
02:11:03.206 Disk 0 Partition - 00 0F Extended LBA 2560 MB offset 307335168
02:11:03.253 Disk 0 Partition 4 00 DD MSDOS5.0 2559 MB offset 307337216
02:11:03.253 Disk 0 scanning sectors +312578048
02:11:03.362 Disk 0 scanning C:\Windows\system32\drivers
02:11:13.876 Service scanning
02:11:15.031 Service .cdrom \* **LOCKED** 123
02:11:43.563 Modules scanning
02:11:51.301 Disk 0 trace - called modules:
02:11:51.332 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
02:11:51.332 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x850e2780]
02:11:51.332 3 CLASSPNP.SYS[8c1ac8b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x85efe030]
02:11:51.332 Scan finished successfully

I did not fix after the scan, thinking I should wait to see what your advice was.

Edited by Tythen, 21 August 2012 - 01:32 AM.


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:18 AM

Posted 21 August 2012 - 01:30 PM

Excellent~ sometimes you have to be persistant with malware.. Now rerun RKill and immediately run MBAM.

Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 21 August 2012 - 03:27 PM

Before I rerun rkill again, do you want me to aswMBR again and allow itto fix the problems? I didn't before becauses it gave a warning that it could damage the system. I wanted a go ahead first.

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:18 AM

Posted 21 August 2012 - 03:42 PM

My Bad yes,fix those first.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 21 August 2012 - 05:08 PM

From the aswMBR report

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-21 17:48:19
-----------------------------
17:48:19.414 OS Version: Windows 6.0.6002 Service Pack 2
17:48:19.414 Number of processors: 2 586 0xF0D
17:48:19.414 ComputerName: OPTIMUSPRIME-PC UserName: Optimus Prime
17:49:44.372 Initialize success
17:50:04.636 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
17:50:04.636 Disk 0 Vendor: TOSHIBA_ DL04 Size: 152627MB BusType: 3
17:50:04.652 Disk 0 MBR read successfully
17:50:04.667 Disk 0 MBR scan
17:50:04.667 Disk 0 Windows VISTA default MBR code
17:50:04.667 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 70 MB offset 63
17:50:04.683 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10240 MB offset 145408
17:50:04.698 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 139755 MB offset 21116928
17:50:04.698 Disk 0 Partition - 00 0F Extended LBA 2560 MB offset 307335168
17:50:04.745 Disk 0 Partition 4 00 DD MSDOS5.0 2559 MB offset 307337216
17:50:04.761 Disk 0 scanning sectors +312578048
17:50:04.870 Disk 0 scanning C:\Windows\system32\drivers
17:50:15.556 Service scanning
17:50:17.194 Service .cdrom \* **LOCKED** 123
17:50:43.948 Modules scanning
17:50:51.062 Disk 0 trace - called modules:
17:50:51.077 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
17:50:51.077 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8510a620]
17:50:51.093 3 CLASSPNP.SYS[8c1a88b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x85ea3030]
17:50:51.093 Scan finished successfully
17:51:05.273 Verifying
17:51:15.616 Disk 0 Windows 600 MBR fixed successfully
17:51:30.764 Disk 0 MBR has been saved successfully to "C:\MBR.dat"

From rkill
Rkill 2.2.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/21/2012 05:51:41 PM in x86 mode.
Windows Version: Windows Vista Service Pack 2

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Possibly Patched Files.

* C:\Windows\system32\winlogon.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\System32\svchost.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\System32\svchost.exe
* C:\Windows\system32\svchost.exe
* C:\Windows\system32\svchost.exe

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* C:\Windows\System32\svchost.exe [NoSig]
+-> C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe : 22,016 : 11/02/2006 00:45 AM : 10da15933d582d2fedcf705efe394b09 [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe : 21,504 : 01/19/2008 00:33 AM : 3794b461c45882e06856f282eef025af [Pos Repl]

* C:\Windows\System32\winlogon.exe [NoSig]
+-> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe : 308,224 : 11/02/2006 00:45 AM : 9f75392b9128a91abafb044ea350baad [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe : 314,880 : 01/19/2008 00:33 AM : c2610b6bdbefc053bbdab4f1b965cb24 [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe : 314,368 : 04/11/2009 00:28 AM : 898e7c06a350d4a1a64a9ea264d55452 [Pos Repl]

* C:\Windows\explorer.exe [NoSig]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe : 2,923,520 : 11/02/2006 00:45 AM : fd8c53fb002217f6f888bcf6f5d7084d [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe : 2,923,520 : 10/29/2008 00:20 AM : 37440d09deae0b672a04dccf7abf06be [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe : 2,923,520 : 10/27/2008 10:15 PM : e7156b0b74762d9de0e66bdcde06e5fb [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe : 2,927,104 : 01/19/2008 10:33 AM : ffa764631cb70a30065c12ef8e174f9f [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe : 2,927,104 : 10/29/2008 10:29 AM : 4f554999d7d5f05daaebba7b5ba1089d [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe : 2,927,616 : 10/29/2008 11:59 PM : 50ba5850147410cde89c523ad3bc606e [Pos Repl]
+-> C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe : 2,926,592 : 04/11/2009 11:27 AM : d07d4c3038f3578ffce1c0237f2a1253 [Pos Repl]

Program finished at: 08/21/2012 05:58:54 PM
Execution time: 0 hours(s), 7 minute(s), and 13 seconds(s)

and malwarebytes

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.21.12

Windows Vista Service Pack 2 x86 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Optimus Prime :: OPTIMUSPRIME-PC [administrator]

8/21/2012 6:02:42 PM
mbam-log-2012-08-21 (18-02-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 214741
Time elapsed: 4 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

However, I still have the redirect virus it seems. also, I can't seem to activate windows firewall.

Edited by Tythen, 21 August 2012 - 05:34 PM.


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:18 AM

Posted 21 August 2012 - 07:45 PM

Is it happenning with more than one browser?hich are you using?
Lets run these two they are quick.

Please download GooredFix from one of the locations below and save it to your Desktop
Download Mirror #1
Download Mirror #2
  • Ensure all Firefox windows are closed.
  • To run the tool, double-click it (XP), or right-click and select Run As Administrator (Vista).
  • When prompted to run the scan, click Yes.
  • GooredFix will check for infections, and then a log will appear. Please post the contents of that log in your next reply (it can also be found on your desktop, called GooredFix.txt).



Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 21 August 2012 - 10:32 PM

It was just internet explorer. Safari didnt seem to be effected at all.

GooredFix by jpshortstuff (03.07.10.1)
Log created at 23:32 on 21/08/2012 (Optimus Prime)
Firefox version [Unable to determine]

========== GooredScan ==========


========== GooredLog ==========

C:\Program Files\Mozilla Firefox\extensions\
(none)

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"paypalfirefoxplugin@orbiscom"="C:\Program Files\PayPal\PayPal Plug-In" [00:27 07/04/2008]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [16:18 04/02/2009]

---------- Old Logs ----------
GooredFix[03.24.40_22-08-2012].txt

-=E.O.F=-

MiniToolBox by Farbar Version: 23-07-2012
Ran by Optimus Prime (administrator) on 21-08-2012 at 23:26:58
Windows Vista ™ Home Basic Service Pack 2 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================



# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : OptimusPrime-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : campus.uky.edu

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection
Physical Address. . . . . . . . . : 00-1B-77-A7-DB-BB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : campus.uky.edu
Description . . . . . . . . . . . : Broadcom NetLink ™ Fast Ethernet
Physical Address. . . . . . . . . : 00-22-19-CF-44-10
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::1e0:89:97f0:4f6a%8(Preferred)
IPv4 Address. . . . . . . . . . . : 10.163.11.131(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, August 21, 2012 11:19:00 PM
Lease Expires . . . . . . . . . . : Wednesday, August 29, 2012 11:18:59 PM
Default Gateway . . . . . . . . . : 10.163.11.1
DHCP Server . . . . . . . . . . . : 128.163.48.6
DHCPv6 IAID . . . . . . . . . . . : 201333408
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0E-67-64-EE-00-1A-A0-FC-CA-3E
DNS Servers . . . . . . . . . . . : 128.163.37.132
128.163.1.11
Primary WINS Server . . . . . . . : 128.163.2.77
Secondary WINS Server . . . . . . : 128.163.1.77
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{D6C18314-02E9-4785-AB75-21B99255CC80}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{4AB51A51-7188-4277-AE54-1DD42C1AAE84}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 18:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 19:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.Belkin
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: sndca2.net.uky.edu
Address: 128.163.37.132

Name: google.com
Addresses: 2607:f8b0:4004:802::1007
74.125.228.69
74.125.228.70
74.125.228.71
74.125.228.72
74.125.228.73
74.125.228.78
74.125.228.64
74.125.228.65
74.125.228.66
74.125.228.67
74.125.228.68



Pinging google.com [74.125.228.68] with 32 bytes of data:

Reply from 74.125.228.68: bytes=32 time=52ms TTL=56

Reply from 74.125.228.68: bytes=32 time=52ms TTL=56



Ping statistics for 74.125.228.68:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 52ms, Maximum = 52ms, Average = 52ms

Server: sndca2.net.uky.edu
Address: 128.163.37.132

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

Reply from 98.139.183.24: bytes=32 time=78ms TTL=52

Reply from 98.139.183.24: bytes=32 time=99ms TTL=52



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 78ms, Maximum = 99ms, Average = 88ms

Server: sndca2.net.uky.edu
Address: 128.163.37.132

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
9 ...00 1b 77 a7 db bb ...... Intel® PRO/Wireless 3945ABG Network Connection
8 ...00 22 19 cf 44 10 ...... Broadcom NetLink ™ Fast Ethernet
1 ........................... Software Loopback Interface 1
21 ...00 00 00 00 00 00 00 e0 isatap.{D6C18314-02E9-4785-AB75-21B99255CC80}
11 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
20 ...00 00 00 00 00 00 00 e0 isatap.{4AB51A51-7188-4277-AE54-1DD42C1AAE84}
14 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
19 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
22 ...00 00 00 00 00 00 00 e0 isatap.Belkin
17 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.163.11.1 10.163.11.131 20
10.163.11.0 255.255.255.0 On-link 10.163.11.131 276
10.163.11.131 255.255.255.255 On-link 10.163.11.131 276
10.163.11.255 255.255.255.255 On-link 10.163.11.131 276
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.163.11.131 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.163.11.131 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
8 276 fe80::/64 On-link
8 276 fe80::1e0:89:97f0:4f6a/128
On-link
1 306 ff00::/8 On-link
8 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 mswsock.dll [File Not found] ()
Catalog9 28 mswsock.dll [File Not found] ()
Catalog9 29 mswsock.dll [File Not found] ()
Catalog9 30 mswsock.dll [File Not found] ()
Catalog9 31 mswsock.dll [File Not found] ()
Catalog9 32 mswsock.dll [File Not found] ()
Catalog9 33 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/21/2012 11:19:24 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 06:41:13 PM) (Source: MsiInstaller) (User: OptimusPrime-PC)OptimusPrime-PC
Description: Product: Roxio Update Manager -- Error 1706. An installation package for the product Roxio Update Manager cannot be found. Try the installation again using a valid copy of the installation package 'UM.MSI'.

Error: (08/21/2012 06:38:46 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16447, time stamp 0x4fc9cd53, faulting module ws2_32.dll, version 6.0.6001.18000, time stamp 0x4791a798, exception code 0xc0000005, fault offset 0x00003110,
process id 0x700, application start time 0xiexplore.exe0.

Error: (08/21/2012 06:29:57 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 06:02:59 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16447, time stamp 0x4fc9cd53, faulting module ws2_32.dll, version 6.0.6001.18000, time stamp 0x4791a798, exception code 0xc0000005, fault offset 0x00003130,
process id 0xd1c, application start time 0xiexplore.exe0.

Error: (08/21/2012 05:47:47 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 05:45:53 PM) (Source: MsiInstaller) (User: OptimusPrime-PC)OptimusPrime-PC
Description: Product: Roxio Update Manager -- Error 1706. An installation package for the product Roxio Update Manager cannot be found. Try the installation again using a valid copy of the installation package 'UM.MSI'.

Error: (08/21/2012 03:09:05 AM) (Source: MsiInstaller) (User: OptimusPrime-PC)OptimusPrime-PC
Description: Product: Roxio Update Manager -- Error 1706. An installation package for the product Roxio Update Manager cannot be found. Try the installation again using a valid copy of the installation package 'UM.MSI'.

Error: (08/21/2012 02:25:02 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 02:05:04 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


System errors:
=============
Error: (08/21/2012 11:26:58 PM) (Source: DCOM) (User: )
Description: C:\Windows\system32\wbem\wmiprvse.exe -Embedding50{73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}

Error: (08/21/2012 11:26:58 PM) (Source: DCOM) (User: )
Description: C:\Windows\system32\wbem\wmiprvse.exe -secured -Embedding50{1F87137D-0E7C-44D5-8C73-4EFFB68962F2}

Error: (08/21/2012 11:20:21 PM) (Source: Service Control Manager) (User: )
Description: ElRawDisk
MpFilter
SASDIFSV
SASKUTIL
spldr
Wanarpv6

Error: (08/21/2012 11:20:21 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (08/21/2012 11:20:21 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (08/21/2012 11:20:21 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (08/21/2012 11:19:33 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (08/21/2012 11:19:32 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (08/21/2012 11:19:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: C:\Windows\System32\IWMSSvc.dll21

Error: (08/21/2012 11:19:24 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}


Microsoft Office Sessions:
=========================
Error: (08/21/2012 11:19:24 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 06:41:13 PM) (Source: MsiInstaller)(User: OptimusPrime-PC)OptimusPrime-PC
Description: Product: Roxio Update Manager -- Error 1706. An installation package for the product Roxio Update Manager cannot be found. Try the installation again using a valid copy of the installation package 'UM.MSI'.(NULL)(NULL)(NULL)(NULL)

Error: (08/21/2012 06:38:46 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164474fc9cd53ws2_32.dll6.0.6001.180004791a798c00000050000311070001cd7fedb9cb8b27

Error: (08/21/2012 06:29:57 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 06:02:59 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164474fc9cd53ws2_32.dll6.0.6001.180004791a798c000000500003130d1c01cd7fe8b9ae3134

Error: (08/21/2012 05:47:47 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 05:45:53 PM) (Source: MsiInstaller)(User: OptimusPrime-PC)OptimusPrime-PC
Description: Product: Roxio Update Manager -- Error 1706. An installation package for the product Roxio Update Manager cannot be found. Try the installation again using a valid copy of the installation package 'UM.MSI'.(NULL)(NULL)(NULL)(NULL)

Error: (08/21/2012 03:09:05 AM) (Source: MsiInstaller)(User: OptimusPrime-PC)OptimusPrime-PC
Description: Product: Roxio Update Manager -- Error 1706. An installation package for the product Roxio Update Manager cannot be found. Try the installation again using a valid copy of the installation package 'UM.MSI'.(NULL)(NULL)(NULL)(NULL)

Error: (08/21/2012 02:25:02 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 02:05:04 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


=========================== Installed Programs ============================

Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Reader 9.4.4 (Version: 9.4.4)
Amazon Kindle
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Banctec Service Agreement (Version: 1.11.0000)
Bonjour (Version: 3.0.0.10)
Broadcom Management Programs (Version: 10.15.01)
CCleaner (Version: 3.21)
Conexant HDA D330 MDC V.92 Modem
Dell DataSafe Online (Version: 1.0.15)
Dell Support Center (Support Software) (Version: 2.2.08267)
Dell System Customization Wizard (Version: 1.00.0000)
Dell Touchpad (Version: 7.1.101.8)
DellSupport (Version: 6.0.3075)
Digital Line Detect (Version: 1.21)
Games, Music, & Photos Launcher (Version: 1.00.0000)
getPlus® for Adobe (Version: 1.5.2.35)
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 21.0.1180.79)
Google Desktop (Version: 5.9.1005.12335)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
iCloud (Version: 1.1.0.40)
Intel® PROSet/Wireless Software (Version: 11.01.0000)
iolo technologies' System Mechanic (Version: 11.0.5)
iTunes (Version: 10.6.3.25)
Java™ 6 Update 3 (Version: 1.6.0.30)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
Legacy of Kain: Soul Reaver
LEGO Digital Designer
Linksys EasyLink Advisor
Linksys EasyLink Advisor (Version: 3.11.9139.94)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
mCore (Version: 9.24.0000)
MediaDirect (Version: 4.7)
mHelp (Version: 9.24.0000)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 08.05.0818)
mMHouse (Version: 9.24.0000)
Modem Diagnostic Tool (Version: 1.0.20.0)
mPfMgr (Version: 9.24.0000)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
mWMI (Version: 9.24.0000)
NetWaiting (Version: 2.5.44)
NVIDIA 3D Vision Controller Driver (Version: 280.19)
NVIDIA 3D Vision Controller Driver 296.10 (Version: 296.10)
NVIDIA 3D Vision Driver 296.10 (Version: 296.10)
NVIDIA Control Panel 296.10 (Version: 296.10)
NVIDIA Graphics Driver 296.10 (Version: 296.10)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9610)
NVIDIA Update 1.7.11 (Version: 1.7.11)
NVIDIA Update Components (Version: 1.7.11)
OutlookAddinSetup (Version: 1.0.0)
PayPal Plug-In (Version: 2.0.45.0)
Product Documentation Launcher (Version: 1.00.0000)
Pure Networks Platform (Version: 11.1.9051.0)
QuickSet (Version: 8.2.14)
QuickTime (Version: 7.72.80.56)
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio Drag-to-Disc (Version: 9.0)
Roxio Express Labeler (Version: 2.1.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
Safari (Version: 5.34.57.2)
Siemens Subscriber Networks SpeedStream DSL
SigmaTel Audio (Version: 5.10.5207.0)
Sonic Activation Module (Version: 1.0)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Star Wars: The Old Republic (Version: 1.00)
SUPERAntiSpyware Free Edition (Version: 4.32.0.1000)
System Checkup 3.0 (Version: 3.0.5.1)
System Requirements Lab
TeamSpeak 3 Client (Version: 3.0.8.1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
User's Guides
UTStarcom USB Modem Software
Ventrilo Client (Version: 3.0.1)
WebEx Support Manager for Internet Explorer (Version: 6.5.47)
WIDCOMM Bluetooth Software 6.0.1.3100 (Version: 6.0.1.3100)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
World of Warcraft (Version: 4.3.4.15595)
Yahoo! Music Jukebox (Version: 2.0.1.041)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Memory info: ===================================

Percentage of memory in use: 20%
Total physical RAM: 3581.12 MB
Available physical RAM: 2834.45 MB
Total Pagefile: 7347.97 MB
Available Pagefile: 6737.84 MB
Total Virtual: 2047.88 MB
Available Virtual: 1960.85 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:136.48 GB) (Free:31.02 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:9.9 GB) NTFS

========================= Users: ========================================

User accounts for \\OPTIMUSPRIME-PC

Administrator Guest Optimus Prime
UpdatusUser


**** End of log ****

#13 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 22 August 2012 - 03:45 PM

So where do I go from here? Also, I noticed after being nosy in task manager that Internet explorer would open 5-7 processes without a single window popping up, but I would hear ads .

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:18 AM

Posted 22 August 2012 - 08:43 PM

Ok, lets look for a bootkit..
We may have to move to the Malware Removal forum.

Download Bootkit Remover to your Desktop.

  • Unzip downloaded file to your Desktop.
  • Double-click on boot_cleaner.exe to run the program (Vista/7 users,right click on boot_cleaner.exe and click Run As Administrator).
  • It will show a Black screen with some data on it.
  • Right click on the screen and click Select All.
  • Press CTRL+C
  • Open a Notepad and press CTRL+V
  • Post the output back here.


Rerun Tddskiller as posted above and post a new log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 Tythen

Tythen
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:10:18 AM

Posted 22 August 2012 - 10:55 PM

Bootkit Remover
© 2009 Esage Lab
www.esagelab.com

Program version: 1.2.0.1
OS Version: Microsoft Windows Vista Home Basic Edition Service Pack 2 (build 600
2), 32-bit

System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000002`84700000
Boot sector MD5 is: d026fa10f7a4253b255e05f63e8ef364

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown boot code

Unknown boot code has been found on some of your physical disks.
To inspect the boot code manually, dump the master boot sector:
remover.exe dump <device_name> [output_file]
To disinfect the master boot sector, use the following command:
remover.exe fix <device_name>


Done;
Press any key to quit...


23:53:12.0464 0684 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
23:53:12.0745 0684 ============================================================
23:53:12.0745 0684 Current date / time: 2012/08/22 23:53:12.0745
23:53:12.0745 0684 SystemInfo:
23:53:12.0745 0684
23:53:12.0745 0684 OS Version: 6.0.6002 ServicePack: 2.0
23:53:12.0745 0684 Product type: Workstation
23:53:12.0745 0684 ComputerName: OPTIMUSPRIME-PC
23:53:12.0745 0684 UserName: Optimus Prime
23:53:12.0745 0684 Windows directory: C:\Windows
23:53:12.0745 0684 System windows directory: C:\Windows
23:53:12.0745 0684 Processor architecture: Intel x86
23:53:12.0745 0684 Number of processors: 2
23:53:12.0745 0684 Page size: 0x1000
23:53:12.0745 0684 Boot type: Safe boot with network
23:53:12.0745 0684 ============================================================
23:53:14.0164 0684 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:53:14.0164 0684 ============================================================
23:53:14.0164 0684 \Device\Harddisk0\DR0:
23:53:14.0164 0684 MBR partitions:
23:53:14.0164 0684 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23800, BlocksNum 0x1400000
23:53:14.0164 0684 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1423800, BlocksNum 0x110F5800
23:53:14.0180 0684 ============================================================
23:53:14.0273 0684 C: <-> \Device\Harddisk0\DR0\Partition2
23:53:14.0383 0684 D: <-> \Device\Harddisk0\DR0\Partition1
23:53:14.0383 0684 ============================================================
23:53:14.0383 0684 Initialize success
23:53:14.0383 0684 ============================================================
23:53:24.0157 1912 ============================================================
23:53:24.0157 1912 Scan started
23:53:24.0157 1912 Mode: Manual; TDLFS;
23:53:24.0157 1912 ============================================================
23:53:26.0593 1912 ================ Scan system memory ========================
23:53:26.0593 1912 System memory - ok
23:53:26.0593 1912 ================ Scan services =============================
23:53:26.0702 1912 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
23:53:26.0702 1912 !SASCORE - ok
23:53:26.0702 1912 .cdrom - ok
23:53:27.0030 1912 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
23:53:27.0030 1912 ACPI - ok
23:53:27.0186 1912 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
23:53:27.0186 1912 AdobeFlashPlayerUpdateSvc - ok
23:53:27.0233 1912 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:53:27.0248 1912 adp94xx - ok
23:53:27.0326 1912 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:53:27.0326 1912 adpahci - ok
23:53:27.0357 1912 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
23:53:27.0357 1912 adpu160m - ok
23:53:27.0404 1912 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:53:27.0404 1912 adpu320 - ok
23:53:27.0451 1912 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:53:27.0482 1912 AeLookupSvc - ok
23:53:27.0513 1912 [ EF1142512BEC12F1C2C87735DA1755BE ] AESTFilters C:\Windows\system32\aestsrv.exe
23:53:27.0529 1912 AESTFilters - ok
23:53:27.0669 1912 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
23:53:27.0669 1912 AFD - ok
23:53:27.0701 1912 [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:53:27.0701 1912 agp440 - ok
23:53:27.0747 1912 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
23:53:27.0763 1912 aic78xx - ok
23:53:27.0825 1912 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
23:53:27.0825 1912 ALG - ok
23:53:27.0872 1912 [ DC67A153FDB8105B25D05334B5E1D8E2 ] aliide C:\Windows\system32\drivers\aliide.sys
23:53:27.0872 1912 aliide - ok
23:53:27.0888 1912 [ 848F27E5B27C1C253F6CEFDC1A5D8F21 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:53:27.0888 1912 amdagp - ok
23:53:27.0919 1912 [ 835C4C3355088298A5EBD818FA31430F ] amdide C:\Windows\system32\drivers\amdide.sys
23:53:27.0919 1912 amdide - ok
23:53:27.0950 1912 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
23:53:27.0950 1912 AmdK7 - ok
23:53:27.0966 1912 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:53:27.0966 1912 AmdK8 - ok
23:53:27.0997 1912 [ 36AB14BFE3DCF3C848ACD1E3810F9CDA ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
23:53:27.0997 1912 ApfiltrService - ok
23:53:28.0044 1912 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
23:53:28.0044 1912 Appinfo - ok
23:53:28.0200 1912 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:53:28.0215 1912 Apple Mobile Device - ok
23:53:28.0278 1912 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
23:53:28.0293 1912 arc - ok
23:53:28.0325 1912 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:53:28.0325 1912 arcsas - ok
23:53:28.0356 1912 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:53:28.0356 1912 AsyncMac - ok
23:53:28.0418 1912 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
23:53:28.0418 1912 atapi - ok
23:53:28.0465 1912 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:53:28.0481 1912 AudioEndpointBuilder - ok
23:53:28.0481 1912 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:53:28.0481 1912 Audiosrv - ok
23:53:28.0543 1912 [ 32795E299C3ABA589A5E04C83D531CDF ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
23:53:28.0559 1912 b57nd60x - ok
23:53:28.0621 1912 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
23:53:28.0621 1912 Beep - ok
23:53:28.0637 1912 blbdrive - ok
23:53:28.0761 1912 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:53:28.0777 1912 Bonjour Service - ok
23:53:28.0871 1912 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:53:28.0886 1912 bowser - ok
23:53:29.0198 1912 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
23:53:29.0198 1912 BrFiltLo - ok
23:53:29.0245 1912 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
23:53:29.0245 1912 BrFiltUp - ok
23:53:29.0276 1912 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
23:53:29.0323 1912 Browser - ok
23:53:29.0339 1912 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
23:53:29.0339 1912 Brserid - ok
23:53:29.0370 1912 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
23:53:29.0370 1912 BrSerWdm - ok
23:53:29.0417 1912 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
23:53:29.0417 1912 BrUsbMdm - ok
23:53:29.0463 1912 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
23:53:29.0463 1912 BrUsbSer - ok
23:53:29.0495 1912 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
23:53:29.0495 1912 BthEnum - ok
23:53:29.0526 1912 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:53:29.0526 1912 BTHMODEM - ok
23:53:29.0557 1912 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:53:29.0573 1912 BthPan - ok
23:53:29.0619 1912 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
23:53:29.0635 1912 BTHPORT - ok
23:53:29.0666 1912 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
23:53:29.0682 1912 BthServ - ok
23:53:29.0697 1912 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
23:53:29.0713 1912 BTHUSB - ok
23:53:29.0744 1912 [ 4A28E7BD365377D0512B7EF8C7596D2C ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
23:53:29.0760 1912 btwaudio - ok
23:53:29.0775 1912 [ 5FFDE57253D665067B0886612817EB11 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
23:53:29.0775 1912 btwavdt - ok
23:53:29.0807 1912 [ AB07DC8B05C31A4F95FC73019BE9DB15 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
23:53:29.0807 1912 btwrchid - ok
23:53:29.0900 1912 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\Windows\system32\drivers\BVRPMPR5.SYS
23:53:29.0900 1912 BVRPMPR5 - ok
23:53:29.0963 1912 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:53:29.0963 1912 cdfs - ok
23:53:30.0009 1912 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:53:30.0009 1912 cdrom - ok
23:53:30.0056 1912 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
23:53:30.0087 1912 CertPropSvc - ok
23:53:30.0119 1912 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
23:53:30.0119 1912 circlass - ok
23:53:30.0181 1912 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
23:53:30.0181 1912 CLFS - ok
23:53:30.0275 1912 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:53:30.0275 1912 clr_optimization_v2.0.50727_32 - ok
23:53:30.0368 1912 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:53:30.0384 1912 clr_optimization_v4.0.30319_32 - ok
23:53:30.0415 1912 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:53:30.0415 1912 CmBatt - ok
23:53:30.0462 1912 [ E79CBB2195E965F6E3256E2C1B23FD1C ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:53:30.0462 1912 cmdide - ok
23:53:30.0493 1912 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:53:30.0493 1912 Compbatt - ok
23:53:30.0509 1912 COMSysApp - ok
23:53:30.0509 1912 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:53:30.0509 1912 crcdisk - ok
23:53:30.0540 1912 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
23:53:30.0540 1912 Crusoe - ok
23:53:30.0587 1912 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:53:30.0602 1912 CryptSvc - ok
23:53:30.0665 1912 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:53:30.0696 1912 DcomLaunch - ok
23:53:30.0852 1912 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:53:30.0867 1912 DfsC - ok
23:53:30.0961 1912 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
23:53:31.0008 1912 DFSR - ok
23:53:31.0070 1912 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
23:53:31.0070 1912 Dhcp - ok
23:53:31.0101 1912 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
23:53:31.0101 1912 disk - ok
23:53:31.0164 1912 [ 0659E6E0A95564F958D9DF7313F7701E ] DLABMFSM C:\Windows\system32\DLA\DLABMFSM.SYS
23:53:31.0164 1912 DLABMFSM - ok
23:53:31.0179 1912 [ 8691C78908F0BD66170669DB268369F2 ] DLABOIOM C:\Windows\system32\DLA\DLABOIOM.SYS
23:53:31.0179 1912 DLABOIOM - ok
23:53:31.0226 1912 [ 5230CDB7E715F3A3B4A882E254CDD35D ] DLACDBHM C:\Windows\system32\Drivers\DLACDBHM.SYS
23:53:31.0226 1912 DLACDBHM - ok
23:53:31.0242 1912 [ 5615744A1056933B90E6AC54FEB86F35 ] DLADResM C:\Windows\system32\DLA\DLADResM.SYS
23:53:31.0242 1912 DLADResM - ok
23:53:31.0289 1912 [ 1AECA2AFA5005CE4A550CF8EB55A8C88 ] DLAIFS_M C:\Windows\system32\DLA\DLAIFS_M.SYS
23:53:31.0289 1912 DLAIFS_M - ok
23:53:31.0304 1912 [ 840E7F6ABB885C72B9FFDDB022EF5B6D ] DLAOPIOM C:\Windows\system32\DLA\DLAOPIOM.SYS
23:53:31.0304 1912 DLAOPIOM - ok
23:53:31.0320 1912 [ 0294D18731AC05DA80132CE88F8A876B ] DLAPoolM C:\Windows\system32\DLA\DLAPoolM.SYS
23:53:31.0320 1912 DLAPoolM - ok
23:53:31.0335 1912 [ 91886FED52A3F9966207BCE46CFD794F ] DLARTL_M C:\Windows\system32\Drivers\DLARTL_M.SYS
23:53:31.0335 1912 DLARTL_M - ok
23:53:31.0382 1912 [ CCA4E121D599D7D1706A30F603731E59 ] DLAUDFAM C:\Windows\system32\DLA\DLAUDFAM.SYS
23:53:31.0382 1912 DLAUDFAM - ok
23:53:31.0382 1912 [ 7DAB85C33135DF24419951DA4E7D38E5 ] DLAUDF_M C:\Windows\system32\DLA\DLAUDF_M.SYS
23:53:31.0398 1912 DLAUDF_M - ok
23:53:31.0460 1912 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:53:31.0460 1912 Dnscache - ok
23:53:31.0507 1912 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:53:31.0507 1912 dot3svc - ok
23:53:31.0569 1912 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
23:53:31.0569 1912 DPS - ok
23:53:31.0616 1912 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:53:31.0616 1912 drmkaud - ok
23:53:31.0647 1912 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\Windows\system32\Drivers\DRVMCDB.SYS
23:53:31.0663 1912 DRVMCDB - ok
23:53:31.0694 1912 [ FFC371525AA55D1BAE18715EBCB8797C ] DRVNDDM C:\Windows\system32\Drivers\DRVNDDM.SYS
23:53:31.0694 1912 DRVNDDM - ok
23:53:31.0757 1912 [ 245F62A2AA67F4A61F10174BF1017327 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
23:53:31.0757 1912 DSBrokerService - ok
23:53:31.0819 1912 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
23:53:31.0835 1912 DSproct - ok
23:53:31.0850 1912 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\Windows\system32\DRIVERS\dsunidrv.sys
23:53:31.0850 1912 dsunidrv - ok
23:53:31.0928 1912 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:53:31.0944 1912 DXGKrnl - ok
23:53:32.0022 1912 [ 7505290504C8E2D172FA378CC0497BCC ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
23:53:32.0037 1912 e1express - ok
23:53:32.0053 1912 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
23:53:32.0053 1912 E1G60 - ok
23:53:32.0100 1912 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
23:53:32.0100 1912 EapHost - ok
23:53:32.0147 1912 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
23:53:32.0147 1912 Ecache - ok
23:53:32.0193 1912 [ DA8B28199B46B72502D5A3F75D446254 ] ElRawDisk C:\Windows\system32\drivers\ElRawDsk.sys
23:53:32.0193 1912 ElRawDisk - ok
23:53:32.0240 1912 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:53:32.0271 1912 elxstor - ok
23:53:32.0349 1912 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
23:53:32.0349 1912 EMDMgmt - ok
23:53:32.0412 1912 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
23:53:32.0412 1912 EventSystem - ok
23:53:32.0474 1912 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
23:53:32.0490 1912 EvtEng - ok
23:53:32.0537 1912 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
23:53:32.0537 1912 exfat - ok
23:53:32.0583 1912 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:53:32.0583 1912 fastfat - ok
23:53:32.0615 1912 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:53:32.0615 1912 fdc - ok
23:53:32.0646 1912 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
23:53:32.0646 1912 fdPHost - ok
23:53:32.0693 1912 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
23:53:32.0693 1912 FDResPub - ok
23:53:32.0755 1912 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:53:32.0755 1912 FileInfo - ok
23:53:32.0771 1912 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:53:32.0786 1912 Filetrace - ok
23:53:32.0849 1912 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:53:32.0864 1912 flpydisk - ok
23:53:32.0911 1912 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:53:32.0927 1912 FltMgr - ok
23:53:33.0005 1912 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
23:53:33.0020 1912 FontCache - ok
23:53:33.0114 1912 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:53:33.0114 1912 FontCache3.0.0.0 - ok
23:53:33.0145 1912 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:53:33.0145 1912 Fs_Rec - ok
23:53:33.0285 1912 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:53:33.0285 1912 gagp30kx - ok
23:53:33.0395 1912 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:53:33.0395 1912 GEARAspiWDM - ok
23:53:33.0457 1912 [ 35A1F815962F3552066C6BE4C969D297 ] getPlus® Helper C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
23:53:33.0457 1912 getPlus® Helper - ok
23:53:33.0535 1912 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
23:53:33.0551 1912 GoogleDesktopManager-051210-111108 - ok
23:53:33.0613 1912 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
23:53:33.0629 1912 gpsvc - ok
23:53:33.0738 1912 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:53:33.0753 1912 gupdate - ok
23:53:33.0753 1912 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:53:33.0753 1912 gupdatem - ok
23:53:33.0956 1912 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:53:33.0972 1912 gusvc - ok
23:53:34.0019 1912 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:53:34.0019 1912 HdAudAddService - ok
23:53:34.0081 1912 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:53:34.0097 1912 HDAudBus - ok
23:53:34.0128 1912 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:53:34.0128 1912 HidBth - ok
23:53:34.0143 1912 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
23:53:34.0143 1912 HidIr - ok
23:53:34.0206 1912 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
23:53:34.0206 1912 hidserv - ok
23:53:34.0221 1912 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:53:34.0221 1912 HidUsb - ok
23:53:34.0299 1912 [ 47EECE68857817F39C8C6F33A7E5E76C ] hitmanpro36 C:\Windows\system32\drivers\hitmanpro36.sys
23:53:34.0299 1912 hitmanpro36 - ok
23:53:34.0331 1912 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:53:34.0331 1912 hkmsvc - ok
23:53:34.0377 1912 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
23:53:34.0377 1912 HpCISSs - ok
23:53:34.0440 1912 [ E9E589C9AB799F52E18F057635A2B362 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
23:53:34.0471 1912 HSF_DPV - ok
23:53:34.0487 1912 [ 7845D2385F4DC7DFB3CCAF0C2FA4948E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
23:53:34.0502 1912 HSXHWAZL - ok
23:53:34.0549 1912 [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:53:34.0549 1912 HTTP - ok
23:53:34.0580 1912 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
23:53:34.0596 1912 i2omp - ok
23:53:34.0658 1912 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:53:34.0658 1912 i8042prt - ok
23:53:34.0705 1912 [ FD7F9D74C2B35DBDA400804A3F5ED5D8 ] iaStor C:\Windows\system32\drivers\iastor.sys
23:53:34.0705 1912 iaStor - ok
23:53:34.0721 1912 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
23:53:34.0736 1912 iaStorV - ok
23:53:34.0814 1912 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
23:53:34.0861 1912 IDriverT - ok
23:53:34.0970 1912 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:53:34.0986 1912 idsvc - ok
23:53:35.0048 1912 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:53:35.0048 1912 iirsp - ok
23:53:35.0095 1912 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
23:53:35.0111 1912 IKEEXT - ok
23:53:35.0173 1912 [ 0084046C084D68E494F8CF36BCF08186 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
23:53:35.0173 1912 intelide - ok
23:53:35.0204 1912 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:53:35.0204 1912 intelppm - ok
23:53:35.0329 1912 [ B5A662956977407C6B9B88A846FEF9BD ] ioloSystemService C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
23:53:35.0345 1912 ioloSystemService - ok
23:53:35.0391 1912 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:53:35.0391 1912 IPBusEnum - ok
23:53:35.0469 1912 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:53:35.0469 1912 IpFilterDriver - ok
23:53:35.0469 1912 IpInIp - ok
23:53:35.0532 1912 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
23:53:35.0532 1912 IPMIDRV - ok
23:53:35.0579 1912 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
23:53:35.0579 1912 IPNAT - ok
23:53:35.0688 1912 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:53:35.0703 1912 iPod Service - ok
23:53:35.0750 1912 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:53:35.0750 1912 IRENUM - ok
23:53:35.0766 1912 [ 2F8ECE2699E7E2070545E9B0960A8ED2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:53:35.0781 1912 isapnp - ok
23:53:35.0813 1912 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:53:35.0813 1912 iScsiPrt - ok
23:53:35.0828 1912 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
23:53:35.0828 1912 iteatapi - ok
23:53:35.0875 1912 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
23:53:35.0875 1912 iteraid - ok
23:53:35.0906 1912 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:53:35.0906 1912 kbdclass - ok
23:53:36.0000 1912 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:53:36.0000 1912 kbdhid - ok
23:53:36.0047 1912 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
23:53:36.0047 1912 KeyIso - ok
23:53:36.0140 1912 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:53:36.0156 1912 KSecDD - ok
23:53:36.0203 1912 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
23:53:36.0218 1912 KtmRm - ok
23:53:36.0281 1912 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
23:53:36.0296 1912 LanmanServer - ok
23:53:36.0359 1912 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:53:36.0359 1912 LanmanWorkstation - ok
23:53:36.0421 1912 [ 06DC2FDC6282F0D68910417B1150C848 ] LinksysUpdater C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe
23:53:36.0437 1912 LinksysUpdater - ok
23:53:36.0499 1912 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:53:36.0499 1912 lltdio - ok
23:53:36.0546 1912 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:53:36.0546 1912 lltdsvc - ok
23:53:36.0577 1912 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:53:36.0577 1912 lmhosts - ok
23:53:36.0624 1912 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:53:36.0624 1912 LSI_FC - ok
23:53:36.0639 1912 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:53:36.0655 1912 LSI_SAS - ok
23:53:36.0671 1912 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:53:36.0671 1912 LSI_SCSI - ok
23:53:36.0717 1912 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
23:53:36.0717 1912 luafv - ok
23:53:36.0764 1912 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:53:36.0764 1912 MBAMProtector - ok
23:53:37.0045 1912 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
23:53:37.0061 1912 MBAMService - ok
23:53:37.0092 1912 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
23:53:37.0092 1912 mdmxsdk - ok
23:53:37.0154 1912 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
23:53:37.0154 1912 megasas - ok
23:53:37.0217 1912 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
23:53:37.0217 1912 MMCSS - ok
23:53:37.0248 1912 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
23:53:37.0248 1912 Modem - ok
23:53:37.0279 1912 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:53:37.0279 1912 monitor - ok
23:53:37.0326 1912 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:53:37.0326 1912 mouclass - ok
23:53:37.0341 1912 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:53:37.0341 1912 mouhid - ok
23:53:37.0404 1912 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
23:53:37.0404 1912 MountMgr - ok
23:53:37.0466 1912 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
23:53:37.0466 1912 MpFilter - ok
23:53:37.0513 1912 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
23:53:37.0513 1912 mpio - ok
23:53:37.0560 1912 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:53:37.0560 1912 mpsdrv - ok
23:53:37.0575 1912 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
23:53:37.0575 1912 Mraid35x - ok
23:53:37.0622 1912 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:53:37.0622 1912 MRxDAV - ok
23:53:37.0685 1912 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:53:37.0700 1912 mrxsmb - ok
23:53:37.0747 1912 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:53:37.0763 1912 mrxsmb10 - ok
23:53:37.0778 1912 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:53:37.0778 1912 mrxsmb20 - ok
23:53:37.0825 1912 [ D420BC42A637AC3CC4F411220549C0DC ] msahci C:\Windows\system32\drivers\msahci.sys
23:53:37.0825 1912 msahci - ok
23:53:37.0841 1912 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:53:37.0841 1912 msdsm - ok
23:53:37.0887 1912 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
23:53:37.0903 1912 MSDTC - ok
23:53:37.0934 1912 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:53:37.0934 1912 Msfs - ok
23:53:37.0950 1912 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:53:37.0950 1912 msisadrv - ok
23:53:37.0997 1912 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:53:37.0997 1912 MSiSCSI - ok
23:53:38.0012 1912 msiserver - ok
23:53:38.0043 1912 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:53:38.0043 1912 MSKSSRV - ok
23:53:38.0090 1912 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:53:38.0090 1912 MSPCLOCK - ok
23:53:38.0106 1912 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:53:38.0106 1912 MSPQM - ok
23:53:38.0153 1912 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:53:38.0153 1912 MsRPC - ok
23:53:38.0184 1912 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:53:38.0184 1912 mssmbios - ok
23:53:38.0199 1912 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:53:38.0199 1912 MSTEE - ok
23:53:38.0246 1912 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
23:53:38.0246 1912 Mup - ok
23:53:38.0293 1912 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
23:53:38.0293 1912 napagent - ok
23:53:38.0340 1912 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:53:38.0340 1912 NativeWifiP - ok
23:53:38.0387 1912 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:53:38.0387 1912 NDIS - ok
23:53:38.0433 1912 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:53:38.0433 1912 NdisTapi - ok
23:53:38.0496 1912 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:53:38.0496 1912 Ndisuio - ok
23:53:38.0543 1912 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:53:38.0543 1912 NdisWan - ok
23:53:38.0574 1912 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:53:38.0574 1912 NDProxy - ok
23:53:38.0605 1912 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:53:38.0605 1912 NetBIOS - ok
23:53:38.0667 1912 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
23:53:38.0667 1912 netbt - ok
23:53:38.0683 1912 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
23:53:38.0683 1912 Netlogon - ok
23:53:38.0745 1912 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
23:53:38.0745 1912 Netman - ok
23:53:38.0792 1912 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
23:53:38.0792 1912 netprofm - ok
23:53:38.0823 1912 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:53:38.0823 1912 NetTcpPortSharing - ok
23:53:39.0089 1912 [ 6522DD40A5F67CED020BD81B856613FB ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
23:53:39.0135 1912 NETw4v32 - ok
23:53:39.0213 1912 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:53:39.0213 1912 nfrd960 - ok
23:53:39.0229 1912 [ B52F26BADE7D7E4A79706E3FD91834CD ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
23:53:39.0229 1912 NisDrv - ok
23:53:39.0338 1912 [ 290C0D4C4889398797F8DF3BE00B9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
23:53:39.0338 1912 NisSrv - ok
23:53:39.0385 1912 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:53:39.0401 1912 NlaSvc - ok
23:53:39.0541 1912 [ CD2FE9C33CFD0FE0AF124E05907E5C3D ] nmservice C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
23:53:39.0557 1912 nmservice - ok
23:53:39.0603 1912 [ 431ADA51E9D032F533548688CE5A2A24 ] nosGetPlusHelper C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
23:53:39.0603 1912 nosGetPlusHelper - ok
23:53:39.0650 1912 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:53:39.0650 1912 Npfs - ok
23:53:39.0681 1912 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
23:53:39.0681 1912 nsi - ok
23:53:39.0728 1912 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:53:39.0728 1912 nsiproxy - ok
23:53:39.0806 1912 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:53:39.0822 1912 Ntfs - ok
23:53:39.0853 1912 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
23:53:39.0853 1912 ntrigdigi - ok
23:53:39.0884 1912 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
23:53:39.0884 1912 Null - ok
23:53:40.0555 1912 [ E891B3979F0CF2740C1B073F834221FE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:53:41.0101 1912 nvlddmkm - ok
23:53:41.0148 1912 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:53:41.0148 1912 nvraid - ok
23:53:41.0195 1912 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:53:41.0195 1912 nvstor - ok
23:53:41.0241 1912 [ AE2DE8E165DCB93A66B21748E6F913DF ] nvsvc C:\Windows\system32\nvvsvc.exe
23:53:41.0257 1912 nvsvc - ok
23:53:41.0429 1912 [ C78581C14699C46FE0F0817416383134 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
23:53:41.0475 1912 nvUpdatusService - ok
23:53:41.0522 1912 [ 055081FD5076401C1EE1BCAB08D81911 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:53:41.0538 1912 nv_agp - ok
23:53:41.0538 1912 NwlnkFlt - ok
23:53:41.0553 1912 NwlnkFwd - ok
23:53:41.0585 1912 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
23:53:41.0585 1912 ohci1394 - ok
23:53:41.0663 1912 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
23:53:41.0678 1912 p2pimsvc - ok
23:53:41.0709 1912 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
23:53:41.0709 1912 p2psvc - ok
23:53:41.0725 1912 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
23:53:41.0725 1912 Parport - ok
23:53:41.0787 1912 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:53:41.0787 1912 partmgr - ok
23:53:41.0803 1912 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
23:53:41.0819 1912 Parvdm - ok
23:53:41.0912 1912 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
23:53:41.0912 1912 PcaSvc - ok
23:53:41.0959 1912 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
23:53:41.0975 1912 pci - ok
23:53:42.0037 1912 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
23:53:42.0037 1912 pciide - ok
23:53:42.0084 1912 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:53:42.0084 1912 pcmcia - ok
23:53:42.0131 1912 [ 40C611622882C3FCAFEB845C1E12A10F ] PDFsFilter C:\Windows\system32\DRIVERS\PDFsFilter.sys
23:53:42.0131 1912 PDFsFilter - ok
23:53:42.0193 1912 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:53:42.0209 1912 PEAUTH - ok
23:53:42.0318 1912 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
23:53:42.0349 1912 pla - ok
23:53:42.0411 1912 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:53:42.0411 1912 PlugPlay - ok
23:53:42.0443 1912 [ 63200893C9D5934A7504D20F68276CC7 ] pnarp C:\Windows\system32\DRIVERS\pnarp.sys
23:53:42.0443 1912 pnarp - ok
23:53:42.0521 1912 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
23:53:42.0536 1912 PNRPAutoReg - ok
23:53:42.0552 1912 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
23:53:42.0552 1912 PNRPsvc - ok
23:53:42.0614 1912 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:53:42.0645 1912 PolicyAgent - ok
23:53:42.0677 1912 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:53:42.0677 1912 PptpMiniport - ok
23:53:42.0708 1912 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
23:53:42.0708 1912 Processor - ok
23:53:42.0739 1912 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
23:53:42.0739 1912 ProfSvc - ok
23:53:42.0801 1912 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
23:53:42.0801 1912 ProtectedStorage - ok
23:53:42.0848 1912 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
23:53:42.0848 1912 PSched - ok
23:53:42.0942 1912 [ 748BCAB4EFF5959ED347C05A1C1A0AF8 ] purendis C:\Windows\system32\DRIVERS\purendis.sys
23:53:42.0942 1912 purendis - ok
23:53:43.0082 1912 [ FEFFCFDC528764A04C8ED63D5FA6E711 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
23:53:43.0082 1912 PxHelp20 - ok
23:53:43.0410 1912 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:53:43.0425 1912 ql2300 - ok
23:53:43.0488 1912 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:53:43.0488 1912 ql40xx - ok
23:53:43.0566 1912 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
23:53:43.0566 1912 QWAVE - ok
23:53:43.0644 1912 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:53:43.0644 1912 QWAVEdrv - ok
23:53:43.0737 1912 [ E642B131FB74CAF4BB8A014F31113142 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
23:53:43.0784 1912 R300 - ok
23:53:43.0878 1912 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:53:43.0878 1912 RasAcd - ok
23:53:43.0956 1912 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
23:53:44.0096 1912 RasAuto - ok
23:53:44.0174 1912 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:53:44.0174 1912 Rasl2tp - ok
23:53:44.0299 1912 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
23:53:44.0299 1912 RasMan - ok
23:53:44.0393 1912 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:53:44.0393 1912 RasPppoe - ok
23:53:44.0486 1912 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:53:44.0486 1912 RasSstp - ok
23:53:44.0611 1912 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:53:44.0611 1912 rdbss - ok
23:53:44.0673 1912 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:53:44.0689 1912 RDPCDD - ok
23:53:44.0861 1912 [ 0245418224CFA77BF4B41C2FE0622258 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
23:53:44.0907 1912 rdpdr - ok
23:53:44.0923 1912 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:53:44.0923 1912 RDPENCDD - ok
23:53:45.0032 1912 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:53:45.0032 1912 RDPWD - ok
23:53:45.0157 1912 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
23:53:45.0157 1912 RegSrvc - ok
23:53:45.0204 1912 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:53:45.0204 1912 RemoteAccess - ok
23:53:45.0297 1912 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:53:45.0313 1912 RemoteRegistry - ok
23:53:45.0422 1912 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:53:45.0422 1912 RFCOMM - ok
23:53:45.0500 1912 [ D85E3FA9F5B1F29BB4ED185C450D1470 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
23:53:45.0500 1912 rimmptsk - ok
23:53:45.0563 1912 [ DB8EB01C58C9FADA00C70B1775278AE0 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
23:53:45.0563 1912 rimsptsk - ok
23:53:45.0594 1912 [ 6C1F93C0760C9F79A1869D07233DF39D ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
23:53:45.0594 1912 rismxdp - ok
23:53:45.0921 1912 [ EBCDE8B48FADC6479D96A56D0A432160 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
23:53:46.0343 1912 RoxMediaDB9 - ok
23:53:46.0436 1912 [ AB2B1DE1C8F31EFCE2384B14B3DC4260 ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
23:53:46.0436 1912 RoxWatch9 - ok
23:53:46.0452 1912 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
23:53:46.0452 1912 RpcLocator - ok
23:53:46.0499 1912 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
23:53:46.0514 1912 RpcSs - ok
23:53:46.0561 1912 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:53:46.0561 1912 rspndr - ok
23:53:46.0577 1912 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
23:53:46.0577 1912 SamSs - ok
23:53:46.0639 1912 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
23:53:46.0639 1912 SASDIFSV - ok
23:53:46.0686 1912 [ 7CE61C25C159F50F9EAF6D77FC83FA35 ] SASENUM C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
23:53:46.0686 1912 SASENUM - ok
23:53:46.0779 1912 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys
23:53:46.0779 1912 SASKUTIL - ok
23:53:46.0811 1912 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:53:46.0811 1912 sbp2port - ok
23:53:46.0873 1912 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:53:46.0873 1912 SCardSvr - ok
23:53:47.0107 1912 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
23:53:47.0123 1912 Schedule - ok
23:53:47.0247 1912 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:53:47.0247 1912 SCPolicySvc - ok
23:53:47.0310 1912 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
23:53:47.0310 1912 sdbus - ok
23:53:47.0372 1912 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:53:47.0372 1912 SDRSVC - ok
23:53:47.0419 1912 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:53:47.0419 1912 secdrv - ok
23:53:47.0466 1912 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
23:53:47.0466 1912 seclogon - ok
23:53:47.0513 1912 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
23:53:47.0513 1912 SENS - ok
23:53:47.0544 1912 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:53:47.0544 1912 Serenum - ok
23:53:47.0585 1912 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
23:53:47.0595 1912 Serial - ok
23:53:47.0685 1912 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:53:47.0685 1912 sermouse - ok
23:53:47.0815 1912 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
23:53:47.0815 1912 SessionEnv - ok
23:53:47.0875 1912 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
23:53:47.0875 1912 sffdisk - ok
23:53:47.0925 1912 [ 96DED8B20C734AC41641CE275250E55D ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:53:47.0925 1912 sffp_mmc - ok
23:53:48.0155 1912 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
23:53:48.0155 1912 sffp_sd - ok
23:53:48.0275 1912 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:53:48.0275 1912 sfloppy - ok
23:53:48.0435 1912 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:53:48.0445 1912 ShellHWDetection - ok
23:53:48.0495 1912 [ 08072B2FB92477FC813271A84B3A8698 ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:53:48.0495 1912 sisagp - ok
23:53:48.0555 1912 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
23:53:48.0565 1912 SiSRaid2 - ok
23:53:48.0595 1912 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:53:48.0605 1912 SiSRaid4 - ok
23:53:48.0765 1912 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
23:53:48.0835 1912 slsvc - ok
23:53:48.0975 1912 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
23:53:48.0985 1912 SLUINotify - ok
23:53:49.0255 1912 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:53:49.0355 1912 Smb - ok
23:53:49.0495 1912 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:53:49.0505 1912 SNMPTRAP - ok
23:53:49.0535 1912 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
23:53:49.0535 1912 spldr - ok
23:53:49.0585 1912 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
23:53:49.0595 1912 Spooler - ok
23:53:49.0625 1912 sprtsvc_dellsupportcenter - ok
23:53:49.0702 1912 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:53:49.0717 1912 srv - ok
23:53:49.0827 1912 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:53:49.0827 1912 srv2 - ok
23:53:49.0842 1912 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:53:49.0842 1912 srvnet - ok
23:53:49.0889 1912 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:53:49.0889 1912 SSDPSRV - ok
23:53:49.0936 1912 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:53:49.0936 1912 SstpSvc - ok
23:53:49.0967 1912 [ 799AA3E04879B3FED31ECEA02B1CAA9A ] STacSV C:\Windows\system32\STacSV.exe
23:53:49.0983 1912 STacSV - ok
23:53:50.0310 1912 [ FC0A58529A02B1EED55DDC58696B7908 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
23:53:50.0310 1912 Stereo Service - ok
23:53:50.0373 1912 [ 5AF135B2E2097D4494B9067CE84E2665 ] STHDA C:\Windows\system32\drivers\stwrt.sys
23:53:50.0373 1912 STHDA - ok
23:53:50.0435 1912 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
23:53:50.0435 1912 stisvc - ok
23:53:50.0513 1912 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
23:53:50.0513 1912 stllssvr - ok
23:53:50.0560 1912 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:53:50.0560 1912 swenum - ok
23:53:50.0591 1912 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
23:53:50.0607 1912 swprv - ok
23:53:50.0653 1912 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
23:53:50.0653 1912 Symc8xx - ok
23:53:50.0700 1912 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
23:53:50.0700 1912 Sym_hi - ok
23:53:50.0747 1912 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
23:53:50.0747 1912 Sym_u3 - ok
23:53:50.0809 1912 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
23:53:50.0825 1912 SysMain - ok
23:53:50.0887 1912 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:53:50.0887 1912 TabletInputService - ok
23:53:50.0919 1912 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:53:50.0934 1912 TapiSrv - ok
23:53:50.0965 1912 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
23:53:50.0981 1912 TBS - ok
23:53:51.0231 1912 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:53:51.0246 1912 Tcpip - ok
23:53:51.0262 1912 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
23:53:51.0277 1912 Tcpip6 - ok
23:53:51.0324 1912 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:53:51.0324 1912 tcpipreg - ok
23:53:51.0371 1912 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:53:51.0371 1912 TDPIPE - ok
23:53:51.0402 1912 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:53:51.0402 1912 TDTCP - ok
23:53:51.0433 1912 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:53:51.0433 1912 tdx - ok
23:53:51.0480 1912 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:53:51.0496 1912 TermDD - ok
23:53:51.0511 1912 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
23:53:51.0527 1912 TermService - ok
23:53:51.0558 1912 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
23:53:51.0574 1912 Themes - ok
23:53:51.0589 1912 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
23:53:51.0589 1912 THREADORDER - ok
23:53:51.0605 1912 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
23:53:51.0621 1912 TrkWks - ok
23:53:51.0683 1912 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:53:51.0683 1912 TrustedInstaller - ok
23:53:51.0714 1912 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:53:51.0730 1912 tssecsrv - ok
23:53:51.0761 1912 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
23:53:51.0761 1912 tunmp - ok
23:53:51.0808 1912 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:53:51.0808 1912 tunnel - ok
23:53:51.0839 1912 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:53:51.0855 1912 uagp35 - ok
23:53:51.0917 1912 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:53:51.0917 1912 udfs - ok
23:53:51.0979 1912 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:53:51.0979 1912 UI0Detect - ok
23:53:51.0995 1912 [ 6D72EF05921ABDF59FC45C7EBFE7E8DD ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:53:52.0011 1912 uliagpkx - ok
23:53:52.0026 1912 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
23:53:52.0104 1912 uliahci - ok
23:53:52.0135 1912 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
23:53:52.0135 1912 UlSata - ok
23:53:52.0167 1912 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
23:53:52.0167 1912 ulsata2 - ok
23:53:52.0229 1912 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:53:52.0229 1912 umbus - ok
23:53:52.0260 1912 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
23:53:52.0276 1912 upnphost - ok
23:53:52.0323 1912 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
23:53:52.0323 1912 USBAAPL - ok
23:53:52.0369 1912 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:53:52.0369 1912 usbccgp - ok
23:53:52.0416 1912 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:53:52.0416 1912 usbcir - ok
23:53:52.0447 1912 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:53:52.0447 1912 usbehci - ok
23:53:52.0510 1912 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:53:52.0510 1912 usbhub - ok
23:53:52.0541 1912 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:53:52.0541 1912 usbohci - ok
23:53:52.0557 1912 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
23:53:52.0572 1912 usbprint - ok
23:53:52.0635 1912 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:53:52.0635 1912 USBSTOR - ok
23:53:52.0666 1912 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:53:52.0666 1912 usbuhci - ok
23:53:52.0697 1912 [ DF8BB0E93518F74D943046A1162BBCDD ] uts_bus C:\Windows\system32\DRIVERS\uts_bus.sys
23:53:52.0713 1912 uts_bus - ok
23:53:52.0744 1912 [ 3427FE9A31E50D0DAC3E062F8DD3BE41 ] uts_mdfl C:\Windows\system32\DRIVERS\uts_mdfl.sys
23:53:52.0744 1912 uts_mdfl - ok
23:53:52.0791 1912 [ 8FA13CD6A1CF2612DDBC056D23C5C0AD ] uts_mdm C:\Windows\system32\DRIVERS\uts_mdm.sys
23:53:52.0791 1912 uts_mdm - ok
23:53:52.0822 1912 [ EDD4D6275289014457E84ECB60AD5C2D ] uts_serd C:\Windows\system32\DRIVERS\uts_serd.sys
23:53:52.0822 1912 uts_serd - ok
23:53:52.0853 1912 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
23:53:52.0853 1912 UxSms - ok
23:53:52.0900 1912 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
23:53:52.0915 1912 vds - ok
23:53:52.0947 1912 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:53:52.0947 1912 vga - ok
23:53:52.0962 1912 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
23:53:52.0978 1912 VgaSave - ok
23:53:53.0009 1912 [ D5929A28BDFF4367A12CAF06AF901971 ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:53:53.0009 1912 viaagp - ok
23:53:53.0040 1912 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
23:53:53.0040 1912 ViaC7 - ok
23:53:53.0118 1912 [ F3B4762EB85A2AFF4999401F14C3262B ] viaide C:\Windows\system32\drivers\viaide.sys
23:53:53.0290 1912 viaide - ok
23:53:53.0321 1912 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:53:53.0321 1912 volmgr - ok
23:53:53.0368 1912 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:53:53.0368 1912 volmgrx - ok
23:53:53.0415 1912 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:53:53.0415 1912 volsnap - ok
23:53:53.0477 1912 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:53:53.0477 1912 vsmraid - ok
23:53:53.0539 1912 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
23:53:53.0571 1912 VSS - ok
23:53:53.0602 1912 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
23:53:53.0617 1912 W32Time - ok
23:53:53.0633 1912 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:53:53.0633 1912 WacomPen - ok
23:53:53.0680 1912 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
23:53:53.0680 1912 Wanarp - ok
23:53:53.0695 1912 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:53:53.0695 1912 Wanarpv6 - ok
23:53:53.0758 1912 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:53:53.0758 1912 wcncsvc - ok
23:53:53.0789 1912 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:53:53.0789 1912 WcsPlugInService - ok
23:53:53.0836 1912 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
23:53:53.0836 1912 Wd - ok
23:53:53.0883 1912 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:53:53.0914 1912 Wdf01000 - ok
23:53:53.0961 1912 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:53:53.0961 1912 WdiServiceHost - ok
23:53:53.0961 1912 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:53:53.0961 1912 WdiSystemHost - ok
23:53:54.0023 1912 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
23:53:54.0023 1912 WebClient - ok
23:53:54.0101 1912 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:53:54.0101 1912 Wecsvc - ok
23:53:54.0241 1912 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:53:54.0257 1912 wercplsupport - ok
23:53:54.0304 1912 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
23:53:54.0304 1912 WerSvc - ok
23:53:54.0351 1912 [ 4DACA8F07537D4D7E3534BB99294AA26 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
23:53:54.0351 1912 winachsf - ok
23:53:54.0397 1912 WinHttpAutoProxySvc - ok
23:53:54.0507 1912 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:53:54.0507 1912 Winmgmt - ok
23:53:54.0631 1912 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
23:53:54.0647 1912 WinRM - ok
23:53:54.0694 1912 [ 676F4B665BDD8053EAA53AC1695B8074 ] winusb C:\Windows\system32\DRIVERS\winusb.sys
23:53:54.0694 1912 winusb - ok
23:53:54.0772 1912 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:53:54.0772 1912 Wlansvc - ok
23:53:54.0819 1912 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:53:54.0819 1912 WmiAcpi - ok
23:53:54.0865 1912 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:53:54.0865 1912 wmiApSrv - ok
23:53:54.0943 1912 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:53:54.0959 1912 WMPNetworkSvc - ok
23:53:55.0287 1912 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm c:\Program Files\Zune\WMZuneComm.exe
23:53:55.0302 1912 WMZuneComm - ok
23:53:55.0333 1912 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:53:55.0349 1912 WPCSvc - ok
23:53:55.0396 1912 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:53:55.0396 1912 WPDBusEnum - ok
23:53:55.0458 1912 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
23:53:55.0458 1912 WpdUsb - ok
23:53:55.0614 1912 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:53:55.0630 1912 WPFFontCache_v0400 - ok
23:53:55.0661 1912 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:53:55.0661 1912 ws2ifsl - ok
23:53:55.0661 1912 WSearch - ok
23:53:55.0723 1912 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:53:55.0723 1912 WudfPf - ok
23:53:55.0786 1912 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:53:55.0801 1912 WUDFRd - ok
23:53:55.0833 1912 [ 2C0206FF8D2C75AC027D1096FA2FAFDA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:53:55.0833 1912 wudfsvc - ok
23:53:55.0879 1912 [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
23:53:55.0879 1912 XAudio - ok
23:53:55.0911 1912 [ 28DC5D626E036A75A572556F0A6EB1F6 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
23:53:55.0926 1912 XAudioService - ok
23:53:56.0207 1912 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc c:\Program Files\Zune\ZuneNss.exe
23:53:56.0535 1912 ZuneNetworkSvc - ok
23:53:56.0613 1912 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc c:\Program Files\Zune\ZuneWlanCfgSvc.exe
23:53:56.0628 1912 ZuneWlanCfgSvc - ok
23:53:56.0628 1912 ================ Scan global ===============================
23:53:56.0737 1912 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
23:53:56.0784 1912 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:53:56.0800 1912 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:53:56.0862 1912 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
23:53:56.0862 1912 [Global] - ok
23:53:56.0878 1912 ================ Scan MBR ==================================
23:53:56.0893 1912 [ 239841E1AE8E4843C0676F3681A7D6BE ] \Device\Harddisk0\DR0
23:53:58.0095 1912 \Device\Harddisk0\DR0 - ok
23:53:58.0095 1912 ================ Scan VBR ==================================
23:53:58.0422 1912 [ 8E30591FF12A13540C6DFF7ACD82AB76 ] \Device\Harddisk0\DR0\Partition1
23:53:58.0422 1912 \Device\Harddisk0\DR0\Partition1 - ok
23:53:58.0438 1912 [ 8A4766986990174C08EADE33D662A8D7 ] \Device\Harddisk0\DR0\Partition2
23:53:58.0438 1912 \Device\Harddisk0\DR0\Partition2 - ok
23:53:58.0438 1912 ============================================================
23:53:58.0438 1912 Scan finished
23:53:58.0438 1912 ============================================================
23:53:58.0469 1816 Detected object count: 0
23:53:58.0469 1816 Actual detected object count: 0

Just wanted to thank you once again for all your help. I know this site is jumping, and are helping out several others, so I appreciate what your doing for me.

Edited by Tythen, 23 August 2012 - 05:10 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users