Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I've got a trojan horse in my services.exe system 32 file


  • Please log in to reply
21 replies to this topic

#1 DavidBlunden

DavidBlunden

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 06:01 AM

I was just wondering how i can get rid of this as i have a threat message popping up every ten-fifteen minutes and there is only an ignore threat option as it is a critical file or something.

Help would be much appreciated.
Thanks David


*Moderator Edit: Moved topic from Windows 7 to the more appropriate forum. ~ Queen-Evie*

Edited by Queen-Evie, 25 August 2012 - 06:59 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 25 August 2012 - 06:10 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 06:42 AM

23:25:28.0618 5048 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
23:25:29.0285 5048 ============================================================
23:25:29.0285 5048 Current date / time: 2012/08/25 23:25:29.0285
23:25:29.0285 5048 SystemInfo:
23:25:29.0285 5048
23:25:29.0285 5048 OS Version: 6.1.7601 ServicePack: 1.0
23:25:29.0285 5048 Product type: Workstation
23:25:29.0285 5048 ComputerName: DAVIDSCOMPUTER
23:25:29.0286 5048 UserName: USER
23:25:29.0286 5048 Windows directory: C:\Windows
23:25:29.0286 5048 System windows directory: C:\Windows
23:25:29.0286 5048 Processor architecture: Intel x86
23:25:29.0286 5048 Number of processors: 2
23:25:29.0286 5048 Page size: 0x1000
23:25:29.0286 5048 Boot type: Normal boot
23:25:29.0286 5048 ============================================================
23:25:30.0801 5048 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:25:30.0803 5048 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:25:34.0131 5048 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:25:34.0132 5048 ============================================================
23:25:34.0132 5048 \Device\Harddisk0\DR0:
23:25:34.0142 5048 MBR partitions:
23:25:34.0142 5048 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:25:34.0142 5048 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000
23:25:34.0142 5048 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x10E74800
23:25:34.0142 5048 \Device\Harddisk1\DR1:
23:25:34.0152 5048 MBR partitions:
23:25:34.0152 5048 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385030
23:25:34.0152 5048 \Device\Harddisk1\DR1:
23:25:34.0152 5048 MBR partitions:
23:25:34.0152 5048 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385030
23:25:34.0152 5048 ============================================================
23:25:34.0186 5048 C: <-> \Device\Harddisk0\DR0\Partition2
23:25:34.0384 5048 D: <-> \Device\Harddisk0\DR0\Partition3
23:25:34.0451 5048 H: <-> \Device\Harddisk1\DR1\Partition1
23:25:34.0451 5048 ============================================================
23:25:34.0452 5048 Initialize success
23:25:34.0452 5048 ============================================================
23:25:57.0443 0416 ============================================================
23:25:57.0443 0416 Scan started
23:25:57.0443 0416 Mode: Manual;
23:25:57.0443 0416 ============================================================
23:25:59.0019 0416 ================ Scan system memory ========================
23:25:59.0019 0416 System memory - ok
23:25:59.0020 0416 ================ Scan services =============================
23:25:59.0782 0416 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
23:25:59.0795 0416 1394ohci - ok
23:25:59.0838 0416 [ 24EEAFEF2F3031FFE8E4E01B37EAA0B5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
23:25:59.0839 0416 Accelerometer - ok
23:25:59.0901 0416 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:25:59.0909 0416 ACPI - ok
23:25:59.0937 0416 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:25:59.0938 0416 AcpiPmi - ok
23:26:00.0119 0416 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:26:00.0127 0416 AdobeARMservice - ok
23:26:00.0213 0416 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
23:26:00.0219 0416 AdobeFlashPlayerUpdateSvc - ok
23:26:00.0293 0416 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:26:00.0307 0416 adp94xx - ok
23:26:00.0357 0416 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:26:00.0362 0416 adpahci - ok
23:26:00.0408 0416 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:26:00.0424 0416 adpu320 - ok
23:26:00.0468 0416 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:26:00.0469 0416 AeLookupSvc - ok
23:26:00.0748 0416 [ 827DBC22C96EECF6D36A13162FABAFD3 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9691412ff1876250\aestsrv.exe
23:26:00.0766 0416 AESTFilters - ok
23:26:00.0827 0416 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
23:26:00.0835 0416 AFD - ok
23:26:00.0946 0416 [ 7E10E3BB9B258AD8A9300F91214D67B9 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
23:26:00.0965 0416 AgereSoftModem - ok
23:26:01.0012 0416 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
23:26:01.0013 0416 agp440 - ok
23:26:01.0071 0416 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
23:26:01.0074 0416 aic78xx - ok
23:26:01.0130 0416 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
23:26:01.0135 0416 ALG - ok
23:26:01.0156 0416 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
23:26:01.0157 0416 aliide - ok
23:26:01.0201 0416 [ B19505648F033393E907E2E419FDE8B3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:26:01.0208 0416 AMD External Events Utility - ok
23:26:01.0306 0416 AMD FUEL Service - ok
23:26:01.0343 0416 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:26:01.0345 0416 amdagp - ok
23:26:01.0414 0416 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
23:26:01.0416 0416 amdide - ok
23:26:01.0542 0416 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
23:26:01.0545 0416 amdiox86 - ok
23:26:01.0596 0416 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:26:01.0598 0416 AmdK8 - ok
23:26:01.0633 0416 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:26:01.0634 0416 AmdPPM - ok
23:26:01.0668 0416 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:26:01.0671 0416 amdsata - ok
23:26:01.0697 0416 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:26:01.0713 0416 amdsbs - ok
23:26:01.0758 0416 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:26:01.0760 0416 amdxata - ok
23:26:01.0818 0416 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
23:26:01.0819 0416 AppID - ok
23:26:01.0873 0416 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:26:01.0875 0416 AppIDSvc - ok
23:26:01.0936 0416 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
23:26:01.0944 0416 Appinfo - ok
23:26:02.0067 0416 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:26:02.0073 0416 Apple Mobile Device - ok
23:26:02.0125 0416 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:26:02.0126 0416 arc - ok
23:26:02.0159 0416 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:26:02.0161 0416 arcsas - ok
23:26:02.0364 0416 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
23:26:02.0375 0416 aspnet_state - ok
23:26:02.0424 0416 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:26:02.0425 0416 AsyncMac - ok
23:26:02.0445 0416 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
23:26:02.0446 0416 atapi - ok
23:26:02.0555 0416 [ 8A6F60BAA4660BCFA1919E29E89ACF89 ] athr C:\Windows\system32\DRIVERS\athr.sys
23:26:02.0589 0416 athr - ok
23:26:02.0927 0416 [ 04F09923A393E4E0E8453A8F78361E73 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:26:03.0085 0416 atikmdag - ok
23:26:03.0163 0416 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:26:03.0191 0416 AudioEndpointBuilder - ok
23:26:03.0222 0416 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:26:03.0227 0416 Audiosrv - ok
23:26:03.0696 0416 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
23:26:03.0776 0416 AVGIDSAgent - ok
23:26:03.0877 0416 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
23:26:03.0883 0416 AVGIDSDriver - ok
23:26:03.0980 0416 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfilterx.sys
23:26:03.0981 0416 AVGIDSFilter - ok
23:26:04.0157 0416 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
23:26:04.0158 0416 AVGIDSHX - ok
23:26:04.0228 0416 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
23:26:04.0229 0416 AVGIDSShim - ok
23:26:04.0276 0416 [ DDA6A2A18841E4C9172BB85958B8D948 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
23:26:04.0294 0416 Avgldx86 - ok
23:26:04.0328 0416 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
23:26:04.0329 0416 Avgmfx86 - ok
23:26:04.0391 0416 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
23:26:04.0392 0416 Avgrkx86 - ok
23:26:04.0453 0416 [ 1263F2554ACE925C237A40B4C568D815 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
23:26:04.0459 0416 Avgtdix - ok
23:26:04.0501 0416 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
23:26:04.0520 0416 avgwd - ok
23:26:04.0601 0416 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:26:04.0611 0416 AxInstSV - ok
23:26:04.0682 0416 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
23:26:04.0696 0416 b06bdrv - ok
23:26:04.0756 0416 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
23:26:04.0775 0416 b57nd60x - ok
23:26:04.0850 0416 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
23:26:04.0858 0416 BDESVC - ok
23:26:04.0877 0416 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
23:26:04.0878 0416 Beep - ok
23:26:04.0897 0416 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:26:04.0899 0416 blbdrive - ok
23:26:05.0032 0416 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:26:05.0044 0416 Bonjour Service - ok
23:26:05.0101 0416 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:26:05.0103 0416 bowser - ok
23:26:05.0132 0416 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:26:05.0133 0416 BrFiltLo - ok
23:26:05.0150 0416 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:26:05.0151 0416 BrFiltUp - ok
23:26:05.0207 0416 [ 77361D72A04F18809D0EFB6CCEB74D4B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
23:26:05.0208 0416 Bridge - ok
23:26:05.0252 0416 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:26:05.0254 0416 BridgeMP - ok
23:26:05.0305 0416 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
23:26:05.0312 0416 Browser - ok
23:26:05.0377 0416 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\system32\DRIVERS\BrSerId.sys
23:26:05.0399 0416 Brserid - ok
23:26:05.0426 0416 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:26:05.0427 0416 BrSerWdm - ok
23:26:05.0451 0416 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:26:05.0453 0416 BrUsbMdm - ok
23:26:05.0483 0416 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\DRIVERS\BrUsbSer.sys
23:26:05.0484 0416 BrUsbSer - ok
23:26:05.0522 0416 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:26:05.0524 0416 BTHMODEM - ok
23:26:05.0563 0416 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
23:26:05.0574 0416 bthserv - ok
23:26:05.0593 0416 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:26:05.0595 0416 cdfs - ok
23:26:05.0682 0416 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:26:05.0686 0416 cdrom - ok
23:26:05.0749 0416 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
23:26:05.0767 0416 CertPropSvc - ok
23:26:05.0814 0416 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:26:05.0815 0416 circlass - ok
23:26:05.0841 0416 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
23:26:05.0856 0416 CLFS - ok
23:26:05.0949 0416 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:26:05.0967 0416 clr_optimization_v2.0.50727_32 - ok
23:26:06.0058 0416 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:26:06.0071 0416 clr_optimization_v4.0.30319_32 - ok
23:26:06.0094 0416 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:26:06.0095 0416 CmBatt - ok
23:26:06.0134 0416 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:26:06.0135 0416 cmdide - ok
23:26:06.0204 0416 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
23:26:06.0223 0416 CNG - ok
23:26:06.0254 0416 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:26:06.0256 0416 Compbatt - ok
23:26:06.0274 0416 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:26:06.0275 0416 CompositeBus - ok
23:26:06.0290 0416 COMSysApp - ok
23:26:06.0314 0416 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:26:06.0316 0416 crcdisk - ok
23:26:06.0361 0416 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:26:06.0371 0416 CryptSvc - ok
23:26:06.0458 0416 [ 7CAAF4AF453EF3582FEF65DD72CAA0AA ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
23:26:06.0461 0416 dc3d - ok
23:26:06.0515 0416 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
23:26:06.0525 0416 DcomLaunch - ok
23:26:06.0602 0416 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
23:26:06.0620 0416 defragsvc - ok
23:26:06.0680 0416 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:26:06.0695 0416 DfsC - ok
23:26:06.0802 0416 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:26:06.0817 0416 Dhcp - ok
23:26:06.0863 0416 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
23:26:06.0866 0416 discache - ok
23:26:06.0928 0416 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:26:06.0931 0416 Disk - ok
23:26:06.0976 0416 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:26:06.0996 0416 Dnscache - ok
23:26:07.0025 0416 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
23:26:07.0039 0416 dot3svc - ok
23:26:07.0052 0416 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
23:26:07.0057 0416 DPS - ok
23:26:07.0106 0416 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:26:07.0107 0416 drmkaud - ok
23:26:07.0186 0416 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:26:07.0202 0416 DXGKrnl - ok
23:26:07.0232 0416 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
23:26:07.0245 0416 EapHost - ok
23:26:07.0566 0416 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
23:26:07.0610 0416 ebdrv - ok
23:26:07.0658 0416 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
23:26:07.0680 0416 EFS - ok
23:26:07.0792 0416 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:26:07.0811 0416 elxstor - ok
23:26:07.0848 0416 [ F13C945115B8A8C7C4427D5925F88F23 ] enecir C:\Windows\system32\DRIVERS\enecir.sys
23:26:07.0850 0416 enecir - ok
23:26:07.0867 0416 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:26:07.0868 0416 ErrDev - ok
23:26:07.0972 0416 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
23:26:07.0978 0416 EventSystem - ok
23:26:08.0005 0416 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
23:26:08.0008 0416 exfat - ok
23:26:08.0033 0416 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:26:08.0050 0416 fastfat - ok
23:26:08.0114 0416 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
23:26:08.0127 0416 Fax - ok
23:26:08.0174 0416 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:26:08.0176 0416 fdc - ok
23:26:08.0193 0416 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
23:26:08.0201 0416 fdPHost - ok
23:26:08.0223 0416 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
23:26:08.0243 0416 FDResPub - ok
23:26:08.0264 0416 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:26:08.0265 0416 FileInfo - ok
23:26:08.0285 0416 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:26:08.0286 0416 Filetrace - ok
23:26:08.0305 0416 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:26:08.0307 0416 flpydisk - ok
23:26:08.0341 0416 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:26:08.0364 0416 FltMgr - ok
23:26:08.0424 0416 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
23:26:08.0451 0416 FontCache - ok
23:26:08.0516 0416 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:26:08.0537 0416 FontCache3.0.0.0 - ok
23:26:08.0572 0416 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:26:08.0576 0416 FsDepends - ok
23:26:08.0627 0416 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:26:08.0628 0416 Fs_Rec - ok
23:26:08.0700 0416 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:26:08.0706 0416 fvevol - ok
23:26:08.0741 0416 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:26:08.0742 0416 gagp30kx - ok
23:26:09.0005 0416 GarenaPEngine - ok
23:26:09.0072 0416 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:26:09.0075 0416 GEARAspiWDM - ok
23:26:09.0155 0416 GGSAFERDriver - ok
23:26:09.0226 0416 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
23:26:09.0258 0416 gpsvc - ok
23:26:09.0365 0416 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:26:09.0380 0416 gupdate - ok
23:26:09.0410 0416 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:26:09.0412 0416 gupdatem - ok
23:26:09.0427 0416 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:26:09.0429 0416 hcw85cir - ok
23:26:09.0513 0416 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:26:09.0519 0416 HdAudAddService - ok
23:26:09.0569 0416 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:26:09.0578 0416 HDAudBus - ok
23:26:09.0589 0416 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:26:09.0590 0416 HidBatt - ok
23:26:09.0610 0416 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:26:09.0612 0416 HidBth - ok
23:26:09.0636 0416 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:26:09.0638 0416 HidIr - ok
23:26:09.0662 0416 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
23:26:09.0671 0416 hidserv - ok
23:26:09.0710 0416 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:26:09.0712 0416 HidUsb - ok
23:26:09.0760 0416 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:26:09.0767 0416 hkmsvc - ok
23:26:09.0842 0416 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:26:09.0853 0416 HomeGroupListener - ok
23:26:09.0904 0416 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:26:09.0927 0416 HomeGroupProvider - ok
23:26:09.0957 0416 [ 548E6D7D723829998408A9A18A11AA8B ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
23:26:09.0958 0416 hpdskflt - ok
23:26:10.0043 0416 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:26:10.0045 0416 HpSAMD - ok
23:26:10.0069 0416 [ 53639B0AD214690F3AA6DB11DAB07D88 ] hpsrv C:\Windows\system32\Hpservice.exe
23:26:10.0077 0416 hpsrv - ok
23:26:10.0134 0416 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:26:10.0146 0416 HTTP - ok
23:26:10.0192 0416 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:26:10.0195 0416 hwpolicy - ok
23:26:10.0224 0416 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:26:10.0227 0416 i8042prt - ok
23:26:10.0279 0416 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:26:10.0295 0416 iaStorV - ok
23:26:10.0453 0416 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:26:10.0466 0416 IDriverT - ok
23:26:10.0553 0416 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:26:10.0583 0416 idsvc - ok
23:26:10.0637 0416 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:26:10.0639 0416 iirsp - ok
23:26:10.0717 0416 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
23:26:10.0734 0416 IKEEXT - ok
23:26:10.0761 0416 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
23:26:10.0763 0416 intelide - ok
23:26:10.0799 0416 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:26:10.0801 0416 intelppm - ok
23:26:10.0828 0416 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:26:10.0833 0416 IPBusEnum - ok
23:26:10.0853 0416 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:26:10.0855 0416 IpFilterDriver - ok
23:26:10.0915 0416 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:26:10.0918 0416 IPMIDRV - ok
23:26:10.0946 0416 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:26:10.0949 0416 IPNAT - ok
23:26:11.0066 0416 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:26:11.0081 0416 iPod Service - ok
23:26:11.0102 0416 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:26:11.0103 0416 IRENUM - ok
23:26:11.0143 0416 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:26:11.0145 0416 isapnp - ok
23:26:11.0197 0416 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:26:11.0204 0416 iScsiPrt - ok
23:26:11.0247 0416 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:26:11.0249 0416 kbdclass - ok
23:26:11.0276 0416 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:26:11.0279 0416 kbdhid - ok
23:26:11.0299 0416 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
23:26:11.0302 0416 KeyIso - ok
23:26:11.0336 0416 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:26:11.0345 0416 KSecDD - ok
23:26:11.0400 0416 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:26:11.0412 0416 KSecPkg - ok
23:26:11.0449 0416 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
23:26:11.0463 0416 KtmRm - ok
23:26:11.0523 0416 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
23:26:11.0530 0416 LanmanServer - ok
23:26:11.0586 0416 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:26:11.0596 0416 LanmanWorkstation - ok
23:26:11.0637 0416 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:26:11.0639 0416 lltdio - ok
23:26:11.0681 0416 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:26:11.0694 0416 lltdsvc - ok
23:26:11.0710 0416 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
23:26:11.0718 0416 lmhosts - ok
23:26:11.0754 0416 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:26:11.0756 0416 LSI_FC - ok
23:26:11.0799 0416 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:26:11.0800 0416 LSI_SAS - ok
23:26:11.0816 0416 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:26:11.0817 0416 LSI_SAS2 - ok
23:26:11.0826 0416 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:26:11.0828 0416 LSI_SCSI - ok
23:26:11.0867 0416 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
23:26:11.0869 0416 luafv - ok
23:26:11.0917 0416 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:26:11.0919 0416 megasas - ok
23:26:11.0935 0416 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:26:11.0939 0416 MegaSR - ok
23:26:11.0989 0416 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
23:26:12.0011 0416 MMCSS - ok
23:26:12.0027 0416 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
23:26:12.0029 0416 Modem - ok
23:26:12.0078 0416 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:26:12.0080 0416 monitor - ok
23:26:12.0130 0416 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:26:12.0132 0416 mouclass - ok
23:26:12.0162 0416 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:26:12.0163 0416 mouhid - ok
23:26:12.0206 0416 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:26:12.0221 0416 mountmgr - ok
23:26:12.0273 0416 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
23:26:12.0275 0416 mpio - ok
23:26:12.0295 0416 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:26:12.0296 0416 mpsdrv - ok
23:26:12.0341 0416 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:26:12.0343 0416 MRxDAV - ok
23:26:12.0393 0416 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:26:12.0401 0416 mrxsmb - ok
23:26:12.0449 0416 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:26:12.0461 0416 mrxsmb10 - ok
23:26:12.0493 0416 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:26:12.0501 0416 mrxsmb20 - ok
23:26:12.0545 0416 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
23:26:12.0547 0416 msahci - ok
23:26:12.0581 0416 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:26:12.0583 0416 msdsm - ok
23:26:12.0612 0416 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
23:26:12.0628 0416 MSDTC - ok
23:26:12.0653 0416 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:26:12.0654 0416 Msfs - ok
23:26:12.0673 0416 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:26:12.0675 0416 mshidkmdf - ok
23:26:12.0698 0416 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:26:12.0699 0416 msisadrv - ok
23:26:12.0751 0416 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:26:12.0756 0416 MSiSCSI - ok
23:26:12.0764 0416 msiserver - ok
23:26:12.0791 0416 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:26:12.0793 0416 MSKSSRV - ok
23:26:12.0806 0416 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:26:12.0808 0416 MSPCLOCK - ok
23:26:12.0825 0416 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:26:12.0827 0416 MSPQM - ok
23:26:12.0853 0416 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:26:12.0872 0416 MsRPC - ok
23:26:12.0902 0416 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:26:12.0903 0416 mssmbios - ok
23:26:12.0916 0416 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:26:12.0917 0416 MSTEE - ok
23:26:12.0932 0416 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:26:12.0934 0416 MTConfig - ok
23:26:12.0958 0416 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
23:26:12.0959 0416 Mup - ok
23:26:13.0012 0416 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
23:26:13.0026 0416 napagent - ok
23:26:13.0084 0416 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:26:13.0097 0416 NativeWifiP - ok
23:26:13.0168 0416 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:26:13.0198 0416 NDIS - ok
23:26:13.0224 0416 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:26:13.0225 0416 NdisCap - ok
23:26:13.0242 0416 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:26:13.0243 0416 NdisTapi - ok
23:26:13.0324 0416 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:26:13.0325 0416 Ndisuio - ok
23:26:13.0374 0416 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:26:13.0377 0416 NdisWan - ok
23:26:13.0418 0416 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:26:13.0420 0416 NDProxy - ok
23:26:13.0450 0416 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:26:13.0451 0416 NetBIOS - ok
23:26:13.0499 0416 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:26:13.0509 0416 NetBT - ok
23:26:13.0541 0416 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
23:26:13.0543 0416 Netlogon - ok
23:26:13.0637 0416 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
23:26:13.0656 0416 Netman - ok
23:26:13.0853 0416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
23:26:13.0874 0416 NetMsmqActivator - ok
23:26:13.0938 0416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
23:26:13.0940 0416 NetPipeActivator - ok
23:26:13.0965 0416 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
23:26:13.0984 0416 netprofm - ok
23:26:14.0029 0416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
23:26:14.0031 0416 NetTcpActivator - ok
23:26:14.0042 0416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
23:26:14.0044 0416 NetTcpPortSharing - ok
23:26:14.0068 0416 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:26:14.0070 0416 nfrd960 - ok
23:26:14.0145 0416 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:26:14.0155 0416 NlaSvc - ok
23:26:14.0200 0416 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:26:14.0204 0416 Npfs - ok
23:26:14.0238 0416 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
23:26:14.0249 0416 nsi - ok
23:26:14.0268 0416 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:26:14.0281 0416 nsiproxy - ok
23:26:14.0424 0416 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:26:14.0445 0416 Ntfs - ok
23:26:14.0473 0416 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
23:26:14.0474 0416 Null - ok
23:26:14.0557 0416 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:26:14.0577 0416 nvraid - ok
23:26:14.0609 0416 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:26:14.0627 0416 nvstor - ok
23:26:14.0672 0416 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:26:14.0674 0416 nv_agp - ok
23:26:14.0785 0416 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:26:14.0799 0416 odserv - ok
23:26:14.0856 0416 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:26:14.0859 0416 ohci1394 - ok
23:26:14.0956 0416 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:26:14.0969 0416 ose - ok
23:26:15.0012 0416 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:26:15.0019 0416 p2pimsvc - ok
23:26:15.0049 0416 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
23:26:15.0058 0416 p2psvc - ok
23:26:15.0079 0416 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:26:15.0081 0416 Parport - ok
23:26:15.0143 0416 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:26:15.0146 0416 partmgr - ok
23:26:15.0190 0416 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
23:26:15.0192 0416 Parvdm - ok
23:26:15.0232 0416 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:26:15.0246 0416 PcaSvc - ok
23:26:15.0304 0416 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
23:26:15.0312 0416 pci - ok
23:26:15.0348 0416 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
23:26:15.0350 0416 pciide - ok
23:26:15.0391 0416 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:26:15.0402 0416 pcmcia - ok
23:26:15.0427 0416 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
23:26:15.0439 0416 pcw - ok
23:26:15.0471 0416 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:26:15.0486 0416 PEAUTH - ok
23:26:15.0623 0416 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
23:26:15.0670 0416 pla - ok
23:26:15.0715 0416 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:26:15.0728 0416 PlugPlay - ok
23:26:15.0779 0416 [ 3A2BDD76E7D2A5F40A7174793D1BA794 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
23:26:15.0792 0416 PnkBstrA - ok
23:26:15.0822 0416 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:26:15.0827 0416 PNRPAutoReg - ok
23:26:15.0847 0416 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:26:15.0852 0416 PNRPsvc - ok
23:26:15.0907 0416 [ 420336F91EB745811CF130C80EDE0653 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
23:26:15.0910 0416 Point32 - ok
23:26:15.0977 0416 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:26:15.0992 0416 PolicyAgent - ok
23:26:16.0041 0416 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
23:26:16.0056 0416 Power - ok
23:26:16.0081 0416 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:26:16.0083 0416 PptpMiniport - ok
23:26:16.0125 0416 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:26:16.0128 0416 Processor - ok
23:26:16.0182 0416 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
23:26:16.0197 0416 ProfSvc - ok
23:26:16.0216 0416 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:26:16.0219 0416 ProtectedStorage - ok
23:26:16.0254 0416 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:26:16.0257 0416 Psched - ok
23:26:16.0349 0416 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:26:16.0374 0416 ql2300 - ok
23:26:16.0426 0416 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:26:16.0428 0416 ql40xx - ok
23:26:16.0471 0416 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
23:26:16.0480 0416 QWAVE - ok
23:26:16.0495 0416 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:26:16.0496 0416 QWAVEdrv - ok
23:26:16.0592 0416 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
23:26:16.0623 0416 RapiMgr - ok
23:26:16.0649 0416 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:26:16.0650 0416 RasAcd - ok
23:26:16.0718 0416 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:26:16.0721 0416 RasAgileVpn - ok
23:26:16.0740 0416 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
23:26:16.0746 0416 RasAuto - ok
23:26:16.0776 0416 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:26:16.0778 0416 Rasl2tp - ok
23:26:16.0865 0416 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
23:26:16.0878 0416 RasMan - ok
23:26:16.0910 0416 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:26:16.0911 0416 RasPppoe - ok
23:26:16.0959 0416 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:26:16.0961 0416 RasSstp - ok
23:26:16.0984 0416 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:26:16.0989 0416 rdbss - ok
23:26:17.0027 0416 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:26:17.0029 0416 rdpbus - ok
23:26:17.0086 0416 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:26:17.0088 0416 RDPCDD - ok
23:26:17.0154 0416 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:26:17.0156 0416 RDPENCDD - ok
23:26:17.0179 0416 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:26:17.0181 0416 RDPREFMP - ok
23:26:17.0226 0416 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:26:17.0241 0416 RDPWD - ok
23:26:17.0322 0416 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:26:17.0329 0416 rdyboost - ok
23:26:17.0355 0416 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
23:26:17.0361 0416 RemoteAccess - ok
23:26:17.0414 0416 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:26:17.0426 0416 RemoteRegistry - ok
23:26:17.0460 0416 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:26:17.0476 0416 RpcEptMapper - ok
23:26:17.0501 0416 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
23:26:17.0519 0416 RpcLocator - ok
23:26:17.0573 0416 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
23:26:17.0584 0416 RpcSs - ok
23:26:17.0623 0416 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:26:17.0624 0416 rspndr - ok
23:26:17.0687 0416 [ 3983CEA05BB855351D75F5482B6C42CE ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
23:26:17.0695 0416 RTL8167 - ok
23:26:17.0831 0416 [ 1C5C2CB892553D2CF3F45A4BB323FCD6 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
23:26:17.0833 0416 s1018bus - ok
23:26:17.0877 0416 [ 38F5EA219593F19B6B3A1B9C169E3B61 ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
23:26:17.0879 0416 s1018mdfl - ok
23:26:17.0934 0416 [ 666AF6B64FC7DF92D3CA4819EA91631D ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
23:26:17.0936 0416 s1018mdm - ok
23:26:18.0040 0416 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0 ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
23:26:18.0061 0416 s1018mgmt - ok
23:26:18.0124 0416 [ 3622D9FF2253DCBE885B10736609A4CA ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
23:26:18.0135 0416 s1018nd5 - ok
23:26:18.0189 0416 [ 49431EFDA842B474531C29FFAE9F5D09 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
23:26:18.0191 0416 s1018obex - ok
23:26:18.0223 0416 [ AC6B514CB4474F4C867D7CDC9CD54F05 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
23:26:18.0225 0416 s1018unic - ok
23:26:18.0274 0416 [ 1F561844318914E7EB6E54673A4CC54C ] s117bus C:\Windows\system32\DRIVERS\s117bus.sys
23:26:18.0277 0416 s117bus - ok
23:26:18.0346 0416 [ BA93EEC3CDF6A63B77AE66221AA4F902 ] s117mdfl C:\Windows\system32\DRIVERS\s117mdfl.sys
23:26:18.0347 0416 s117mdfl - ok
23:26:18.0381 0416 [ CBA12FD8A8EE5B5CDFBBAE2381CD6703 ] s117mdm C:\Windows\system32\DRIVERS\s117mdm.sys
23:26:18.0389 0416 s117mdm - ok
23:26:18.0426 0416 [ BD6483E64B1DA17E812B34BCDEFD9459 ] s117mgmt C:\Windows\system32\DRIVERS\s117mgmt.sys
23:26:18.0430 0416 s117mgmt - ok
23:26:18.0469 0416 [ C7CA36C3054B4CD47A1F6611B046E2F9 ] s117nd5 C:\Windows\system32\DRIVERS\s117nd5.sys
23:26:18.0470 0416 s117nd5 - ok
23:26:18.0503 0416 [ E290B3A6B58FB72CA97DD48D64E4FC1C ] s117obex C:\Windows\system32\DRIVERS\s117obex.sys
23:26:18.0505 0416 s117obex - ok
23:26:18.0541 0416 [ 5C4D1BA23C7511AC880E8BA7BAA80DBA ] s117unic C:\Windows\system32\DRIVERS\s117unic.sys
23:26:18.0543 0416 s117unic - ok
23:26:18.0558 0416 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
23:26:18.0560 0416 SamSs - ok
23:26:18.0635 0416 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:26:18.0646 0416 sbp2port - ok
23:26:18.0670 0416 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:26:18.0690 0416 SCardSvr - ok
23:26:18.0714 0416 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:26:18.0716 0416 scfilter - ok
23:26:18.0779 0416 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
23:26:18.0807 0416 Schedule - ok
23:26:18.0858 0416 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:26:18.0860 0416 SCPolicySvc - ok
23:26:18.0931 0416 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
23:26:18.0933 0416 sdbus - ok
23:26:18.0959 0416 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:26:18.0972 0416 SDRSVC - ok
23:26:19.0010 0416 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:26:19.0011 0416 secdrv - ok
23:26:19.0057 0416 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
23:26:19.0069 0416 seclogon - ok
23:26:19.0107 0416 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
23:26:19.0119 0416 SENS - ok
23:26:19.0155 0416 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:26:19.0172 0416 SensrSvc - ok
23:26:19.0190 0416 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:26:19.0192 0416 Serenum - ok
23:26:19.0232 0416 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:26:19.0234 0416 Serial - ok
23:26:19.0262 0416 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:26:19.0263 0416 sermouse - ok
23:26:19.0314 0416 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
23:26:19.0326 0416 SessionEnv - ok
23:26:19.0368 0416 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
23:26:19.0369 0416 sffdisk - ok
23:26:19.0394 0416 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:26:19.0396 0416 sffp_mmc - ok
23:26:19.0405 0416 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
23:26:19.0407 0416 sffp_sd - ok
23:26:19.0441 0416 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:26:19.0442 0416 sfloppy - ok
23:26:19.0481 0416 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:26:19.0492 0416 ShellHWDetection - ok
23:26:19.0501 0416 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:26:19.0504 0416 sisagp - ok
23:26:19.0536 0416 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:26:19.0538 0416 SiSRaid2 - ok
23:26:19.0553 0416 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:26:19.0555 0416 SiSRaid4 - ok
23:26:19.0591 0416 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
23:26:19.0595 0416 SkypeUpdate - ok
23:26:19.0627 0416 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:26:19.0629 0416 Smb - ok
23:26:19.0661 0416 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:26:19.0679 0416 SNMPTRAP - ok
23:26:19.0697 0416 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
23:26:19.0698 0416 spldr - ok
23:26:19.0711 0416 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
23:26:19.0734 0416 Spooler - ok
23:26:19.0924 0416 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
23:26:19.0978 0416 sppsvc - ok
23:26:20.0001 0416 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:26:20.0007 0416 sppuinotify - ok
23:26:20.0044 0416 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:26:20.0057 0416 srv - ok
23:26:20.0080 0416 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:26:20.0093 0416 srv2 - ok
23:26:20.0103 0416 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:26:20.0108 0416 srvnet - ok
23:26:20.0131 0416 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:26:20.0151 0416 SSDPSRV - ok
23:26:20.0168 0416 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:26:20.0174 0416 SstpSvc - ok
23:26:20.0375 0416 [ FE7F776F2590C8331123BDA3A3A21DE6 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9691412ff1876250\STacSV.exe
23:26:20.0396 0416 STacSV - ok
23:26:20.0416 0416 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:26:20.0417 0416 stexstor - ok
23:26:20.0483 0416 [ DADB74BF26766757DBBA9C5912969EBF ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
23:26:20.0492 0416 STHDA - ok
23:26:20.0534 0416 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
23:26:20.0546 0416 StiSvc - ok
23:26:20.0558 0416 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
23:26:20.0560 0416 swenum - ok
23:26:20.0612 0416 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
23:26:20.0622 0416 swprv - ok
23:26:20.0668 0416 [ 067CB9D745407A8C1B26E89A6A2CE152 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
23:26:20.0678 0416 SynTP - ok
23:26:20.0768 0416 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
23:26:20.0811 0416 SysMain - ok
23:26:20.0849 0416 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:26:20.0856 0416 TabletInputService - ok
23:26:20.0867 0416 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
23:26:20.0882 0416 TapiSrv - ok
23:26:20.0895 0416 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
23:26:20.0900 0416 TBS - ok
23:26:20.0973 0416 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:26:20.0996 0416 Tcpip - ok
23:26:21.0025 0416 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:26:21.0036 0416 TCPIP6 - ok
23:26:21.0060 0416 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:26:21.0062 0416 tcpipreg - ok
23:26:21.0084 0416 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:26:21.0086 0416 TDPIPE - ok
23:26:21.0111 0416 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:26:21.0114 0416 TDTCP - ok
23:26:21.0144 0416 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:26:21.0146 0416 tdx - ok
23:26:21.0168 0416 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
23:26:21.0172 0416 TermDD - ok
23:26:21.0205 0416 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
23:26:21.0225 0416 TermService - ok
23:26:21.0243 0416 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
23:26:21.0260 0416 Themes - ok
23:26:21.0272 0416 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
23:26:21.0276 0416 THREADORDER - ok
23:26:21.0302 0416 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
23:26:21.0313 0416 TrkWks - ok
23:26:21.0325 0416 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:26:21.0348 0416 TrustedInstaller - ok
23:26:21.0365 0416 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:26:21.0367 0416 tssecsrv - ok
23:26:21.0390 0416 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:26:21.0392 0416 TsUsbFlt - ok
23:26:21.0446 0416 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:26:21.0448 0416 tunnel - ok
23:26:21.0470 0416 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:26:21.0476 0416 uagp35 - ok
23:26:21.0524 0416 [ E0529F7B6E1ACE01EBB58E5642582C92 ] UCharger C:\Windows\system32\Drivers\UCharger.sys
23:26:21.0526 0416 UCharger - ok
23:26:21.0552 0416 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:26:21.0567 0416 udfs - ok
23:26:21.0602 0416 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:26:21.0608 0416 UI0Detect - ok
23:26:21.0648 0416 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:26:21.0650 0416 uliagpkx - ok
23:26:21.0712 0416 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
23:26:21.0714 0416 umbus - ok
23:26:21.0733 0416 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:26:21.0734 0416 UmPass - ok
23:26:21.0761 0416 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
23:26:21.0769 0416 upnphost - ok
23:26:21.0799 0416 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
23:26:21.0801 0416 USBAAPL - ok
23:26:21.0844 0416 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:26:21.0846 0416 usbccgp - ok
23:26:21.0871 0416 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:26:21.0873 0416 usbcir - ok
23:26:21.0909 0416 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:26:21.0911 0416 usbehci - ok
23:26:21.0938 0416 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:26:21.0943 0416 usbhub - ok
23:26:21.0963 0416 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
23:26:21.0964 0416 usbohci - ok
23:26:22.0002 0416 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:26:22.0003 0416 usbprint - ok
23:26:22.0037 0416 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
23:26:22.0038 0416 usbscan - ok
23:26:22.0097 0416 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:26:22.0099 0416 USBSTOR - ok
23:26:22.0121 0416 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:26:22.0122 0416 usbuhci - ok
23:26:22.0196 0416 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:26:22.0199 0416 usbvideo - ok
23:26:22.0244 0416 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
23:26:22.0245 0416 usb_rndisx - ok
23:26:22.0274 0416 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
23:26:22.0285 0416 UxSms - ok
23:26:22.0299 0416 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
23:26:22.0302 0416 VaultSvc - ok
23:26:22.0334 0416 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:26:22.0337 0416 vdrvroot - ok
23:26:22.0401 0416 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
23:26:22.0412 0416 vds - ok
23:26:22.0480 0416 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:26:22.0493 0416 vga - ok
23:26:22.0513 0416 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:26:22.0515 0416 VgaSave - ok
23:26:22.0538 0416 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:26:22.0551 0416 vhdmp - ok
23:26:22.0592 0416 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:26:22.0594 0416 viaagp - ok
23:26:22.0616 0416 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
23:26:22.0618 0416 ViaC7 - ok
23:26:22.0661 0416 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
23:26:22.0662 0416 viaide - ok
23:26:22.0680 0416 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:26:22.0682 0416 volmgr - ok
23:26:22.0717 0416 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:26:22.0724 0416 volmgrx - ok
23:26:22.0782 0416 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:26:22.0790 0416 volsnap - ok
23:26:22.0852 0416 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:26:22.0856 0416 vsmraid - ok
23:26:22.0936 0416 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
23:26:22.0959 0416 VSS - ok
23:26:23.0226 0416 [ 8ED347BAD8D1FB7C40B593BFB01786D2 ] vToolbarUpdater11.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
23:26:23.0241 0416 vToolbarUpdater11.2.0 - ok
23:26:23.0279 0416 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:26:23.0281 0416 vwifibus - ok
23:26:23.0315 0416 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:26:23.0317 0416 vwififlt - ok
23:26:23.0351 0416 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
23:26:23.0352 0416 vwifimp - ok
23:26:23.0375 0416 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
23:26:23.0396 0416 W32Time - ok
23:26:23.0433 0416 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:26:23.0435 0416 WacomPen - ok
23:26:23.0478 0416 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:26:23.0481 0416 WANARP - ok
23:26:23.0490 0416 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:26:23.0492 0416 Wanarpv6 - ok
23:26:23.0628 0416 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:26:23.0665 0416 WatAdminSvc - ok
23:26:23.0792 0416 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
23:26:23.0826 0416 wbengine - ok
23:26:23.0854 0416 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:26:23.0865 0416 WbioSrvc - ok
23:26:23.0942 0416 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
23:26:23.0959 0416 WcesComm - ok
23:26:24.0017 0416 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:26:24.0041 0416 wcncsvc - ok
23:26:24.0103 0416 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:26:24.0131 0416 WcsPlugInService - ok
23:26:24.0172 0416 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:26:24.0173 0416 Wd - ok
23:26:24.0259 0416 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:26:24.0294 0416 Wdf01000 - ok
23:26:24.0330 0416 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:26:24.0336 0416 WdiServiceHost - ok
23:26:24.0347 0416 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:26:24.0351 0416 WdiSystemHost - ok
23:26:24.0402 0416 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
23:26:24.0412 0416 WebClient - ok
23:26:24.0434 0416 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:26:24.0450 0416 Wecsvc - ok
23:26:24.0478 0416 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:26:24.0484 0416 wercplsupport - ok
23:26:24.0543 0416 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
23:26:24.0551 0416 WerSvc - ok
23:26:24.0587 0416 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:26:24.0588 0416 WfpLwf - ok
23:26:24.0605 0416 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:26:24.0607 0416 WIMMount - ok
23:26:24.0619 0416 WinHttpAutoProxySvc - ok
23:26:24.0789 0416 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:26:24.0803 0416 Winmgmt - ok
23:26:24.0932 0416 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
23:26:24.0954 0416 WinRM - ok
23:26:25.0046 0416 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:26:25.0049 0416 WinUsb - ok
23:26:25.0131 0416 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:26:25.0150 0416 Wlansvc - ok
23:26:25.0283 0416 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:26:25.0309 0416 wlidsvc - ok
23:26:25.0354 0416 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:26:25.0355 0416 WmiAcpi - ok
23:26:25.0390 0416 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:26:25.0394 0416 wmiApSrv - ok
23:26:25.0522 0416 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:26:25.0544 0416 WMPNetworkSvc - ok
23:26:25.0578 0416 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:26:25.0584 0416 WPCSvc - ok
23:26:25.0643 0416 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:26:25.0659 0416 WPDBusEnum - ok
23:26:25.0679 0416 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:26:25.0680 0416 ws2ifsl - ok
23:26:25.0687 0416 WSearch - ok
23:26:25.0765 0416 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:26:25.0780 0416 WudfPf - ok
23:26:25.0846 0416 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:26:25.0851 0416 WUDFRd - ok
23:26:25.0924 0416 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:26:25.0931 0416 wudfsvc - ok
23:26:25.0976 0416 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
23:26:25.0984 0416 WwanSvc - ok
23:26:26.0132 0416 ================ Scan global ===============================
23:26:26.0188 0416 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
23:26:26.0248 0416 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
23:26:26.0276 0416 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
23:26:26.0330 0416 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
23:26:26.0422 0416 [ A302BBFF2A7278C0E239EE5D471D86A9 ] C:\Windows\system32\services.exe
23:26:26.0440 0416 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
23:26:26.0440 0416 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
23:26:26.0441 0416 ================ Scan MBR ==================================
23:26:26.0452 0416 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:26:26.0934 0416 \Device\Harddisk0\DR0 - ok
23:26:27.0304 0416 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
23:26:27.0321 0416 \Device\Harddisk1\DR1 - ok
23:26:27.0328 0416 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
23:26:27.0334 0416 \Device\Harddisk1\DR1 - ok
23:26:27.0338 0416 ================ Scan VBR ==================================
23:26:27.0345 0416 [ CC8EA12B0E232B56861F4B7EA9DCC01D ] \Device\Harddisk0\DR0\Partition1
23:26:27.0348 0416 \Device\Harddisk0\DR0\Partition1 - ok
23:26:27.0361 0416 [ 8C06FB8102600E466B0B11D8A0B7E57F ] \Device\Harddisk0\DR0\Partition2
23:26:27.0379 0416 \Device\Harddisk0\DR0\Partition2 - ok
23:26:27.0404 0416 [ B83315B443D6BFF809643923B0813E86 ] \Device\Harddisk0\DR0\Partition3
23:26:27.0406 0416 \Device\Harddisk0\DR0\Partition3 - ok
23:26:27.0415 0416 [ DDA53B54D87D0479E9B351DC910616AD ] \Device\Harddisk1\DR1\Partition1
23:26:27.0418 0416 \Device\Harddisk1\DR1\Partition1 - ok
23:26:27.0423 0416 [ DDA53B54D87D0479E9B351DC910616AD ] \Device\Harddisk1\DR1\Partition1
23:26:27.0425 0416 \Device\Harddisk1\DR1\Partition1 - ok
23:26:27.0429 0416 ============================================================
23:26:27.0429 0416 Scan finished
23:26:27.0429 0416 ============================================================
23:26:27.0448 2652 Detected object count: 1
23:26:27.0449 2652 Actual detected object count: 1
23:28:56.0740 2652 C:\Windows\system32\services.exe - copied to quarantine
23:28:58.0067 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\@ - copied to quarantine
23:28:58.0096 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\L\00000004.@ - copied to quarantine
23:28:58.0099 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\00000004.@ - copied to quarantine
23:28:58.0103 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\00000008.@ - copied to quarantine
23:28:58.0105 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\000000cb.@ - copied to quarantine
23:28:58.0107 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\80000000.@ - copied to quarantine
23:28:58.0109 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\80000032.@ - copied to quarantine
23:28:58.0410 2652 C:\Users\USER\AppData\Local\{652d041e-2364-44a2-695c-5716fced4bed}\@ - copied to quarantine
23:29:00.0783 2652 Backup copy found, using it..
23:29:00.0863 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\@ - will be deleted on reboot
23:29:00.0865 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\00000004.@ - will be deleted on reboot
23:29:00.0865 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\00000008.@ - will be deleted on reboot
23:29:00.0865 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\000000cb.@ - will be deleted on reboot
23:29:00.0865 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\80000000.@ - will be deleted on reboot
23:29:00.0866 2652 C:\Windows\installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\80000032.@ - will be deleted on reboot
23:29:00.0941 2652 C:\Users\USER\AppData\Local\{652d041e-2364-44a2-695c-5716fced4bed}\@ - will be deleted on reboot
23:29:01.0052 2652 C:\Windows\system32\services.exe - will be cured on reboot
23:29:01.0052 2652 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Cure




aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-25 23:25:31
-----------------------------
23:25:31.496 OS Version: Windows 6.1.7601 Service Pack 1
23:25:31.496 Number of processors: 2 586 0x301
23:25:31.498 ComputerName: DAVIDSCOMPUTER UserName: USER
23:25:33.731 Initialize success
23:25:47.746 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4
23:25:47.751 Disk 0 Vendor: Hitachi_HTS723225L9A360 FCDOC60D Size: 238475MB BusType: 11
23:25:47.755 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000086
23:25:47.758 Disk 1 Vendor: Size: 238475MB BusType: 0
23:25:47.763 Disk 0 MBR read successfully
23:25:47.767 Disk 0 MBR scan
23:25:47.771 Disk 0 Windows 7 default MBR code
23:25:47.781 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
23:25:47.786 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 99900 MB offset 206848
23:25:47.791 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 138473 MB offset 204802048
23:25:47.798 Disk 0 scanning sectors +488394752
23:25:47.858 Disk 0 scanning C:\Windows\system32\drivers
23:25:55.907 Service scanning
23:26:21.649 Service uliagpkx C:\Windows\system32\drivers\uliagpkx.sys **LOCKED** 32
23:26:27.270 Modules scanning
23:26:33.988 Disk 0 trace - called modules:
23:26:34.009 ntkrnlpa.exe CLASSPNP.SYS disk.sys hpdskflt.sys halmacpi.dll ataport.SYS PCIIDEX.SYS msahci.sys
23:26:34.018 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x867b8ac8]
23:26:34.025 3 CLASSPNP.SYS[8bb8f59e] -> nt!IofCallDriver -> [0x867b8020]
23:26:34.033 5 hpdskflt.sys[8bdf2f8a] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-4[0x86306030]
23:26:34.041 Scan finished successfully
23:26:47.675 Disk 0 MBR has been saved successfully to "C:\Users\USER\Documents\MBR.dat"
23:26:47.687 The log file has been saved successfully to "C:\Users\USER\Documents\aswMBR.txt"


And the third one is still going :)

#4 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 06:30 PM

C:\TDSSKiller_Quarantine\25.08.2012_23.25.29\zasubsys0000\file0000\tsk0000.dta Win32/Sirefef.FC trojan deleted - quarantined
C:\TDSSKiller_Quarantine\25.08.2012_23.25.29\zasubsys0000\zafs0000\tsk0002.dta Win32/Conedex.D trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.08.2012_23.25.29\zasubsys0000\zafs0000\tsk0004.dta Win32/Conedex.E trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.08.2012_23.25.29\zasubsys0000\zafs0000\tsk0005.dta a variant of Win32/Sirefef.FA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.08.2012_23.25.29\zasubsys0000\zafs0000\tsk0006.dta a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Users\USER\Music\iTunes\iTunes Media\Music\Unknown Artist\Unknown Album\Willy Nelson Poker(2).wma a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Windows\Installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\00000004.@ Win32/Conedex.D trojan cleaned by deleting - quarantined
C:\Windows\Installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\000000cb.@ Win32/Conedex.E trojan cleaned by deleting - quarantined
C:\Windows\Installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\80000000.@ a variant of Win32/Sirefef.FA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{652d041e-2364-44a2-695c-5716fced4bed}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\System32\services.exe Win32/Sirefef.FC trojan unable to clean
Operating memory a variant of Win32/Sirefef.EZ trojan

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 25 August 2012 - 06:45 PM

Restart the PC,run TDSSkiller once again and post the clean log


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#6 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 07:46 PM

12:44:01.0081 5196 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
12:44:01.0983 5196 ============================================================
12:44:01.0984 5196 Current date / time: 2012/08/26 12:44:01.0983
12:44:01.0984 5196 SystemInfo:
12:44:01.0984 5196
12:44:01.0984 5196 OS Version: 6.1.7601 ServicePack: 1.0
12:44:01.0984 5196 Product type: Workstation
12:44:01.0984 5196 ComputerName: DAVIDSCOMPUTER
12:44:01.0985 5196 UserName: USER
12:44:01.0985 5196 Windows directory: C:\Windows
12:44:01.0985 5196 System windows directory: C:\Windows
12:44:01.0985 5196 Processor architecture: Intel x86
12:44:01.0985 5196 Number of processors: 2
12:44:01.0985 5196 Page size: 0x1000
12:44:01.0985 5196 Boot type: Normal boot
12:44:01.0985 5196 ============================================================
12:44:02.0933 5196 BG loaded
12:44:03.0325 5196 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:44:03.0328 5196 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:44:03.0679 5196 ============================================================
12:44:03.0679 5196 \Device\Harddisk0\DR0:
12:44:03.0679 5196 MBR partitions:
12:44:03.0679 5196 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:44:03.0679 5196 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000
12:44:03.0679 5196 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x10E74800
12:44:03.0679 5196 \Device\Harddisk1\DR1:
12:44:03.0681 5196 MBR partitions:
12:44:03.0681 5196 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385030
12:44:03.0681 5196 ============================================================
12:44:03.0722 5196 C: <-> \Device\Harddisk0\DR0\Partition2
12:44:03.0828 5196 D: <-> \Device\Harddisk0\DR0\Partition3
12:44:03.0934 5196 H: <-> \Device\Harddisk1\DR1\Partition1
12:44:03.0934 5196 ============================================================
12:44:03.0934 5196 Initialize success
12:44:03.0934 5196 ============================================================
12:44:05.0901 5308 ============================================================
12:44:05.0901 5308 Scan started
12:44:05.0901 5308 Mode: Manual;
12:44:05.0902 5308 ============================================================
12:44:07.0185 5308 ================ Scan system memory ========================
12:44:07.0185 5308 System memory - ok
12:44:07.0186 5308 ================ Scan services =============================
12:44:07.0373 5308 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
12:44:07.0381 5308 1394ohci - ok
12:44:07.0412 5308 [ 24EEAFEF2F3031FFE8E4E01B37EAA0B5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
12:44:07.0415 5308 Accelerometer - ok
12:44:07.0467 5308 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:44:07.0470 5308 ACPI - ok
12:44:07.0495 5308 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:44:07.0498 5308 AcpiPmi - ok
12:44:07.0686 5308 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:44:07.0689 5308 AdobeARMservice - ok
12:44:07.0747 5308 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:44:07.0755 5308 AdobeFlashPlayerUpdateSvc - ok
12:44:07.0793 5308 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:44:07.0805 5308 adp94xx - ok
12:44:07.0831 5308 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:44:07.0837 5308 adpahci - ok
12:44:07.0858 5308 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:44:07.0862 5308 adpu320 - ok
12:44:07.0891 5308 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:44:07.0893 5308 AeLookupSvc - ok
12:44:07.0998 5308 [ 827DBC22C96EECF6D36A13162FABAFD3 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9691412ff1876250\aestsrv.exe
12:44:08.0004 5308 AESTFilters - ok
12:44:08.0062 5308 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
12:44:08.0062 5308 AFD - ok
12:44:08.0124 5308 [ 7E10E3BB9B258AD8A9300F91214D67B9 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
12:44:08.0140 5308 AgereSoftModem - ok
12:44:08.0186 5308 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
12:44:08.0186 5308 agp440 - ok
12:44:08.0218 5308 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
12:44:08.0218 5308 aic78xx - ok
12:44:08.0249 5308 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
12:44:08.0264 5308 ALG - ok
12:44:08.0280 5308 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
12:44:08.0280 5308 aliide - ok
12:44:08.0311 5308 [ B19505648F033393E907E2E419FDE8B3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:44:08.0327 5308 AMD External Events Utility - ok
12:44:08.0405 5308 AMD FUEL Service - ok
12:44:08.0420 5308 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
12:44:08.0436 5308 amdagp - ok
12:44:08.0452 5308 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
12:44:08.0452 5308 amdide - ok
12:44:08.0483 5308 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
12:44:08.0483 5308 amdiox86 - ok
12:44:08.0514 5308 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:44:08.0514 5308 AmdK8 - ok
12:44:08.0545 5308 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:44:08.0545 5308 AmdPPM - ok
12:44:08.0670 5308 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:44:08.0686 5308 amdsata - ok
12:44:08.0717 5308 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:44:08.0732 5308 amdsbs - ok
12:44:08.0764 5308 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:44:08.0764 5308 amdxata - ok
12:44:08.0810 5308 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
12:44:08.0810 5308 AppID - ok
12:44:08.0842 5308 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:44:08.0857 5308 AppIDSvc - ok
12:44:08.0904 5308 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
12:44:08.0904 5308 Appinfo - ok
12:44:08.0982 5308 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:44:08.0982 5308 Apple Mobile Device - ok
12:44:09.0032 5308 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
12:44:09.0035 5308 arc - ok
12:44:09.0058 5308 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:44:09.0061 5308 arcsas - ok
12:44:09.0196 5308 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:44:09.0199 5308 aspnet_state - ok
12:44:09.0223 5308 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:44:09.0224 5308 AsyncMac - ok
12:44:09.0260 5308 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
12:44:09.0262 5308 atapi - ok
12:44:09.0312 5308 [ 8A6F60BAA4660BCFA1919E29E89ACF89 ] athr C:\Windows\system32\DRIVERS\athr.sys
12:44:09.0323 5308 athr - ok
12:44:09.0459 5308 [ 04F09923A393E4E0E8453A8F78361E73 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:44:09.0495 5308 atikmdag - ok
12:44:09.0546 5308 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:44:09.0551 5308 AudioEndpointBuilder - ok
12:44:09.0566 5308 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:44:09.0571 5308 Audiosrv - ok
12:44:09.0819 5308 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
12:44:09.0856 5308 AVGIDSAgent - ok
12:44:09.0918 5308 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:44:09.0922 5308 AVGIDSDriver - ok
12:44:09.0954 5308 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfilterx.sys
12:44:09.0955 5308 AVGIDSFilter - ok
12:44:09.0988 5308 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
12:44:09.0990 5308 AVGIDSHX - ok
12:44:10.0027 5308 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:44:10.0028 5308 AVGIDSShim - ok
12:44:10.0068 5308 [ DDA6A2A18841E4C9172BB85958B8D948 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
12:44:10.0071 5308 Avgldx86 - ok
12:44:10.0086 5308 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
12:44:10.0088 5308 Avgmfx86 - ok
12:44:10.0115 5308 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
12:44:10.0116 5308 Avgrkx86 - ok
12:44:10.0136 5308 [ 1263F2554ACE925C237A40B4C568D815 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
12:44:10.0139 5308 Avgtdix - ok
12:44:10.0176 5308 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
12:44:10.0181 5308 avgwd - ok
12:44:10.0226 5308 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:44:10.0232 5308 AxInstSV - ok
12:44:10.0269 5308 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
12:44:10.0285 5308 b06bdrv - ok
12:44:10.0300 5308 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
12:44:10.0316 5308 b57nd60x - ok
12:44:10.0347 5308 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
12:44:10.0347 5308 BDESVC - ok
12:44:10.0363 5308 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
12:44:10.0378 5308 Beep - ok
12:44:10.0378 5308 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:44:10.0378 5308 blbdrive - ok
12:44:10.0472 5308 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:44:10.0472 5308 Bonjour Service - ok
12:44:10.0519 5308 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:44:10.0534 5308 bowser - ok
12:44:10.0534 5308 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:44:10.0550 5308 BrFiltLo - ok
12:44:10.0566 5308 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:44:10.0566 5308 BrFiltUp - ok
12:44:10.0597 5308 [ 77361D72A04F18809D0EFB6CCEB74D4B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
12:44:10.0597 5308 Bridge - ok
12:44:10.0706 5308 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
12:44:10.0706 5308 BridgeMP - ok
12:44:10.0753 5308 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
12:44:10.0753 5308 Browser - ok
12:44:10.0784 5308 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\system32\DRIVERS\BrSerId.sys
12:44:10.0784 5308 Brserid - ok
12:44:10.0800 5308 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:44:10.0800 5308 BrSerWdm - ok
12:44:10.0815 5308 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:44:10.0815 5308 BrUsbMdm - ok
12:44:10.0831 5308 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\DRIVERS\BrUsbSer.sys
12:44:10.0831 5308 BrUsbSer - ok
12:44:10.0846 5308 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:44:10.0846 5308 BTHMODEM - ok
12:44:10.0878 5308 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
12:44:10.0878 5308 bthserv - ok
12:44:10.0909 5308 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:44:10.0909 5308 cdfs - ok
12:44:10.0956 5308 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:44:10.0956 5308 cdrom - ok
12:44:11.0057 5308 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
12:44:11.0060 5308 CertPropSvc - ok
12:44:11.0096 5308 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:44:11.0098 5308 circlass - ok
12:44:11.0116 5308 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
12:44:11.0119 5308 CLFS - ok
12:44:11.0181 5308 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:44:11.0185 5308 clr_optimization_v2.0.50727_32 - ok
12:44:11.0240 5308 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:44:11.0245 5308 clr_optimization_v4.0.30319_32 - ok
12:44:11.0268 5308 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:44:11.0271 5308 CmBatt - ok
12:44:11.0289 5308 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:44:11.0291 5308 cmdide - ok
12:44:11.0337 5308 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
12:44:11.0344 5308 CNG - ok
12:44:11.0370 5308 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:44:11.0372 5308 Compbatt - ok
12:44:11.0390 5308 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:44:11.0392 5308 CompositeBus - ok
12:44:11.0399 5308 COMSysApp - ok
12:44:11.0414 5308 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:44:11.0416 5308 crcdisk - ok
12:44:11.0469 5308 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:44:11.0473 5308 CryptSvc - ok
12:44:11.0532 5308 [ 7CAAF4AF453EF3582FEF65DD72CAA0AA ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
12:44:11.0535 5308 dc3d - ok
12:44:11.0578 5308 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
12:44:11.0586 5308 DcomLaunch - ok
12:44:11.0658 5308 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
12:44:11.0667 5308 defragsvc - ok
12:44:11.0712 5308 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:44:11.0716 5308 DfsC - ok
12:44:11.0768 5308 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:44:11.0774 5308 Dhcp - ok
12:44:11.0803 5308 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
12:44:11.0805 5308 discache - ok
12:44:11.0869 5308 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:44:11.0872 5308 Disk - ok
12:44:11.0917 5308 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:44:11.0922 5308 Dnscache - ok
12:44:11.0973 5308 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
12:44:11.0980 5308 dot3svc - ok
12:44:11.0992 5308 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
12:44:11.0992 5308 DPS - ok
12:44:12.0023 5308 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:44:12.0039 5308 drmkaud - ok
12:44:12.0086 5308 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:44:12.0101 5308 DXGKrnl - ok
12:44:12.0132 5308 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
12:44:12.0132 5308 EapHost - ok
12:44:12.0226 5308 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
12:44:12.0288 5308 ebdrv - ok
12:44:12.0320 5308 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
12:44:12.0320 5308 EFS - ok
12:44:12.0366 5308 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:44:12.0382 5308 elxstor - ok
12:44:12.0413 5308 [ F13C945115B8A8C7C4427D5925F88F23 ] enecir C:\Windows\system32\DRIVERS\enecir.sys
12:44:12.0413 5308 enecir - ok
12:44:12.0429 5308 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:44:12.0429 5308 ErrDev - ok
12:44:12.0476 5308 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
12:44:12.0491 5308 EventSystem - ok
12:44:12.0507 5308 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
12:44:12.0507 5308 exfat - ok
12:44:12.0522 5308 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:44:12.0522 5308 fastfat - ok
12:44:12.0569 5308 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
12:44:12.0569 5308 Fax - ok
12:44:12.0647 5308 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:44:12.0647 5308 fdc - ok
12:44:12.0663 5308 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
12:44:12.0663 5308 fdPHost - ok
12:44:12.0694 5308 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
12:44:12.0694 5308 FDResPub - ok
12:44:12.0710 5308 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:44:12.0710 5308 FileInfo - ok
12:44:12.0741 5308 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:44:12.0741 5308 Filetrace - ok
12:44:12.0772 5308 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:44:12.0772 5308 flpydisk - ok
12:44:12.0819 5308 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:44:12.0819 5308 FltMgr - ok
12:44:12.0866 5308 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
12:44:12.0881 5308 FontCache - ok
12:44:12.0928 5308 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:44:12.0944 5308 FontCache3.0.0.0 - ok
12:44:12.0959 5308 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:44:12.0959 5308 FsDepends - ok
12:44:13.0006 5308 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:44:13.0006 5308 Fs_Rec - ok
12:44:13.0074 5308 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:44:13.0079 5308 fvevol - ok
12:44:13.0106 5308 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:44:13.0109 5308 gagp30kx - ok
12:44:13.0189 5308 GarenaPEngine - ok
12:44:13.0221 5308 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:44:13.0224 5308 GEARAspiWDM - ok
12:44:13.0262 5308 GGSAFERDriver - ok
12:44:13.0323 5308 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
12:44:13.0330 5308 gpsvc - ok
12:44:13.0464 5308 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
12:44:13.0467 5308 gupdate - ok
12:44:13.0480 5308 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
12:44:13.0482 5308 gupdatem - ok
12:44:13.0509 5308 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:44:13.0512 5308 hcw85cir - ok
12:44:13.0571 5308 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:44:13.0578 5308 HdAudAddService - ok
12:44:13.0635 5308 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:44:13.0638 5308 HDAudBus - ok
12:44:13.0660 5308 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:44:13.0663 5308 HidBatt - ok
12:44:13.0683 5308 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:44:13.0687 5308 HidBth - ok
12:44:13.0710 5308 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:44:13.0712 5308 HidIr - ok
12:44:13.0736 5308 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
12:44:13.0738 5308 hidserv - ok
12:44:13.0776 5308 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:44:13.0778 5308 HidUsb - ok
12:44:13.0825 5308 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:44:13.0832 5308 hkmsvc - ok
12:44:13.0873 5308 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:44:13.0880 5308 HomeGroupListener - ok
12:44:13.0920 5308 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:44:13.0928 5308 HomeGroupProvider - ok
12:44:13.0956 5308 [ 548E6D7D723829998408A9A18A11AA8B ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
12:44:13.0958 5308 hpdskflt - ok
12:44:13.0984 5308 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:44:13.0987 5308 HpSAMD - ok
12:44:13.0995 5308 [ 53639B0AD214690F3AA6DB11DAB07D88 ] hpsrv C:\Windows\system32\Hpservice.exe
12:44:14.0010 5308 hpsrv - ok
12:44:14.0057 5308 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:44:14.0073 5308 HTTP - ok
12:44:14.0119 5308 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:44:14.0119 5308 hwpolicy - ok
12:44:14.0166 5308 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:44:14.0166 5308 i8042prt - ok
12:44:14.0229 5308 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:44:14.0229 5308 iaStorV - ok
12:44:14.0322 5308 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
12:44:14.0338 5308 IDriverT - ok
12:44:14.0400 5308 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:44:14.0431 5308 idsvc - ok
12:44:14.0447 5308 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:44:14.0463 5308 iirsp - ok
12:44:14.0526 5308 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
12:44:14.0542 5308 IKEEXT - ok
12:44:14.0588 5308 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
12:44:14.0604 5308 intelide - ok
12:44:14.0666 5308 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:44:14.0682 5308 intelppm - ok
12:44:14.0713 5308 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:44:14.0713 5308 IPBusEnum - ok
12:44:14.0744 5308 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:44:14.0744 5308 IpFilterDriver - ok
12:44:14.0760 5308 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:44:14.0760 5308 IPMIDRV - ok
12:44:14.0776 5308 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:44:14.0776 5308 IPNAT - ok
12:44:14.0854 5308 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:44:14.0869 5308 iPod Service - ok
12:44:14.0900 5308 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:44:14.0900 5308 IRENUM - ok
12:44:14.0916 5308 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:44:14.0916 5308 isapnp - ok
12:44:14.0932 5308 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:44:14.0947 5308 iScsiPrt - ok
12:44:14.0963 5308 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:44:14.0963 5308 kbdclass - ok
12:44:14.0978 5308 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:44:14.0994 5308 kbdhid - ok
12:44:15.0010 5308 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
12:44:15.0010 5308 KeyIso - ok
12:44:15.0059 5308 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:44:15.0061 5308 KSecDD - ok
12:44:15.0106 5308 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:44:15.0108 5308 KSecPkg - ok
12:44:15.0139 5308 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
12:44:15.0147 5308 KtmRm - ok
12:44:15.0205 5308 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
12:44:15.0213 5308 LanmanServer - ok
12:44:15.0263 5308 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:44:15.0267 5308 LanmanWorkstation - ok
12:44:15.0302 5308 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:44:15.0304 5308 lltdio - ok
12:44:15.0338 5308 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:44:15.0347 5308 lltdsvc - ok
12:44:15.0358 5308 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
12:44:15.0361 5308 lmhosts - ok
12:44:15.0394 5308 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:44:15.0397 5308 LSI_FC - ok
12:44:15.0413 5308 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:44:15.0416 5308 LSI_SAS - ok
12:44:15.0431 5308 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:44:15.0433 5308 LSI_SAS2 - ok
12:44:15.0441 5308 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:44:15.0444 5308 LSI_SCSI - ok
12:44:15.0457 5308 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
12:44:15.0459 5308 luafv - ok
12:44:15.0474 5308 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:44:15.0477 5308 megasas - ok
12:44:15.0491 5308 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:44:15.0497 5308 MegaSR - ok
12:44:15.0512 5308 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
12:44:15.0515 5308 MMCSS - ok
12:44:15.0523 5308 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
12:44:15.0525 5308 Modem - ok
12:44:15.0567 5308 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:44:15.0569 5308 monitor - ok
12:44:15.0645 5308 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:44:15.0647 5308 mouclass - ok
12:44:15.0677 5308 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:44:15.0679 5308 mouhid - ok
12:44:15.0720 5308 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:44:15.0723 5308 mountmgr - ok
12:44:15.0738 5308 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
12:44:15.0742 5308 mpio - ok
12:44:15.0759 5308 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:44:15.0762 5308 mpsdrv - ok
12:44:15.0810 5308 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:44:15.0814 5308 MRxDAV - ok
12:44:15.0858 5308 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:44:15.0863 5308 mrxsmb - ok
12:44:15.0913 5308 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:44:15.0916 5308 mrxsmb10 - ok
12:44:15.0941 5308 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:44:15.0943 5308 mrxsmb20 - ok
12:44:15.0960 5308 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
12:44:15.0962 5308 msahci - ok
12:44:15.0979 5308 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:44:15.0983 5308 msdsm - ok
12:44:16.0001 5308 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
12:44:16.0007 5308 MSDTC - ok
12:44:16.0034 5308 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:44:16.0036 5308 Msfs - ok
12:44:16.0055 5308 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:44:16.0057 5308 mshidkmdf - ok
12:44:16.0064 5308 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:44:16.0066 5308 msisadrv - ok
12:44:16.0091 5308 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:44:16.0097 5308 MSiSCSI - ok
12:44:16.0104 5308 msiserver - ok
12:44:16.0131 5308 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:44:16.0133 5308 MSKSSRV - ok
12:44:16.0146 5308 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:44:16.0149 5308 MSPCLOCK - ok
12:44:16.0165 5308 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:44:16.0168 5308 MSPQM - ok
12:44:16.0185 5308 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:44:16.0187 5308 MsRPC - ok
12:44:16.0225 5308 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:44:16.0227 5308 mssmbios - ok
12:44:16.0239 5308 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:44:16.0241 5308 MSTEE - ok
12:44:16.0256 5308 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:44:16.0258 5308 MTConfig - ok
12:44:16.0281 5308 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
12:44:16.0283 5308 Mup - ok
12:44:16.0329 5308 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
12:44:16.0336 5308 napagent - ok
12:44:16.0359 5308 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:44:16.0359 5308 NativeWifiP - ok
12:44:16.0391 5308 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:44:16.0406 5308 NDIS - ok
12:44:16.0437 5308 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:44:16.0453 5308 NdisCap - ok
12:44:16.0491 5308 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:44:16.0493 5308 NdisTapi - ok
12:44:16.0548 5308 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:44:16.0552 5308 Ndisuio - ok
12:44:16.0599 5308 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:44:16.0602 5308 NdisWan - ok
12:44:16.0742 5308 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:44:16.0745 5308 NDProxy - ok
12:44:16.0774 5308 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:44:16.0776 5308 NetBIOS - ok
12:44:16.0833 5308 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:44:16.0863 5308 NetBT - ok
12:44:16.0890 5308 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
12:44:16.0892 5308 Netlogon - ok
12:44:16.0995 5308 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
12:44:17.0001 5308 Netman - ok
12:44:17.0160 5308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:44:17.0182 5308 NetMsmqActivator - ok
12:44:17.0202 5308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:44:17.0206 5308 NetPipeActivator - ok
12:44:17.0265 5308 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
12:44:17.0272 5308 netprofm - ok
12:44:17.0312 5308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:44:17.0315 5308 NetTcpActivator - ok
12:44:17.0324 5308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:44:17.0327 5308 NetTcpPortSharing - ok
12:44:17.0376 5308 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:44:17.0381 5308 nfrd960 - ok
12:44:17.0436 5308 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:44:17.0444 5308 NlaSvc - ok
12:44:17.0466 5308 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:44:17.0468 5308 Npfs - ok
12:44:17.0523 5308 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
12:44:17.0527 5308 nsi - ok
12:44:17.0551 5308 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:44:17.0552 5308 nsiproxy - ok
12:44:17.0712 5308 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:44:17.0724 5308 Ntfs - ok
12:44:17.0772 5308 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
12:44:17.0776 5308 Null - ok
12:44:17.0815 5308 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:44:17.0819 5308 nvraid - ok
12:44:17.0863 5308 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:44:17.0873 5308 nvstor - ok
12:44:17.0923 5308 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:44:17.0940 5308 nv_agp - ok
12:44:18.0066 5308 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:44:18.0083 5308 odserv - ok
12:44:18.0113 5308 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:44:18.0116 5308 ohci1394 - ok
12:44:18.0193 5308 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:44:18.0216 5308 ose - ok
12:44:18.0271 5308 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:44:18.0289 5308 p2pimsvc - ok
12:44:18.0327 5308 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
12:44:18.0340 5308 p2psvc - ok
12:44:18.0395 5308 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:44:18.0397 5308 Parport - ok
12:44:18.0450 5308 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:44:18.0462 5308 partmgr - ok
12:44:18.0489 5308 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
12:44:18.0558 5308 Parvdm - ok
12:44:18.0706 5308 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:44:18.0710 5308 PcaSvc - ok
12:44:18.0776 5308 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
12:44:18.0780 5308 pci - ok
12:44:18.0801 5308 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
12:44:18.0828 5308 pciide - ok
12:44:18.0865 5308 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:44:18.0899 5308 pcmcia - ok
12:44:18.0935 5308 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
12:44:18.0943 5308 pcw - ok
12:44:18.0986 5308 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:44:18.0992 5308 PEAUTH - ok
12:44:19.0123 5308 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
12:44:19.0155 5308 pla - ok
12:44:19.0239 5308 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:44:19.0273 5308 PlugPlay - ok
12:44:19.0387 5308 [ 3A2BDD76E7D2A5F40A7174793D1BA794 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
12:44:19.0390 5308 PnkBstrA - ok
12:44:19.0423 5308 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:44:19.0430 5308 PNRPAutoReg - ok
12:44:19.0468 5308 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:44:19.0473 5308 PNRPsvc - ok
12:44:19.0523 5308 [ 420336F91EB745811CF130C80EDE0653 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
12:44:19.0542 5308 Point32 - ok
12:44:19.0686 5308 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:44:19.0724 5308 PolicyAgent - ok
12:44:19.0756 5308 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
12:44:19.0761 5308 Power - ok
12:44:19.0788 5308 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:44:19.0791 5308 PptpMiniport - ok
12:44:19.0807 5308 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:44:19.0817 5308 Processor - ok
12:44:19.0855 5308 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
12:44:19.0859 5308 ProfSvc - ok
12:44:19.0881 5308 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:44:19.0884 5308 ProtectedStorage - ok
12:44:19.0936 5308 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:44:19.0980 5308 Psched - ok
12:44:20.0024 5308 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:44:20.0049 5308 ql2300 - ok
12:44:20.0074 5308 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:44:20.0078 5308 ql40xx - ok
12:44:20.0127 5308 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
12:44:20.0141 5308 QWAVE - ok
12:44:20.0160 5308 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:44:20.0163 5308 QWAVEdrv - ok
12:44:20.0215 5308 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
12:44:20.0217 5308 RapiMgr - ok
12:44:20.0247 5308 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:44:20.0277 5308 RasAcd - ok
12:44:20.0325 5308 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:44:20.0328 5308 RasAgileVpn - ok
12:44:20.0389 5308 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
12:44:20.0404 5308 RasAuto - ok
12:44:20.0516 5308 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:44:20.0529 5308 Rasl2tp - ok
12:44:20.0590 5308 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
12:44:20.0605 5308 RasMan - ok
12:44:20.0624 5308 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:44:20.0643 5308 RasPppoe - ok
12:44:20.0658 5308 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:44:20.0682 5308 RasSstp - ok
12:44:20.0749 5308 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:44:20.0760 5308 rdbss - ok
12:44:20.0942 5308 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:44:21.0001 5308 rdpbus - ok
12:44:21.0042 5308 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:44:21.0091 5308 RDPCDD - ok
12:44:21.0118 5308 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:44:21.0145 5308 RDPENCDD - ok
12:44:21.0161 5308 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:44:21.0192 5308 RDPREFMP - ok
12:44:21.0232 5308 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:44:21.0244 5308 RDPWD - ok
12:44:21.0278 5308 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:44:21.0289 5308 rdyboost - ok
12:44:21.0319 5308 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
12:44:21.0339 5308 RemoteAccess - ok
12:44:21.0370 5308 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:44:21.0376 5308 RemoteRegistry - ok
12:44:21.0409 5308 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:44:21.0414 5308 RpcEptMapper - ok
12:44:21.0440 5308 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
12:44:21.0453 5308 RpcLocator - ok
12:44:21.0479 5308 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
12:44:21.0486 5308 RpcSs - ok
12:44:21.0521 5308 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:44:21.0527 5308 rspndr - ok
12:44:21.0568 5308 [ 3983CEA05BB855351D75F5482B6C42CE ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
12:44:21.0593 5308 RTL8167 - ok
12:44:21.0638 5308 [ 1C5C2CB892553D2CF3F45A4BB323FCD6 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
12:44:21.0676 5308 s1018bus - ok
12:44:21.0729 5308 [ 38F5EA219593F19B6B3A1B9C169E3B61 ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
12:44:21.0731 5308 s1018mdfl - ok
12:44:21.0751 5308 [ 666AF6B64FC7DF92D3CA4819EA91631D ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
12:44:21.0755 5308 s1018mdm - ok
12:44:21.0813 5308 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0 ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
12:44:21.0869 5308 s1018mgmt - ok
12:44:21.0913 5308 [ 3622D9FF2253DCBE885B10736609A4CA ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
12:44:21.0950 5308 s1018nd5 - ok
12:44:21.0974 5308 [ 49431EFDA842B474531C29FFAE9F5D09 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
12:44:22.0012 5308 s1018obex - ok
12:44:22.0038 5308 [ AC6B514CB4474F4C867D7CDC9CD54F05 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
12:44:22.0048 5308 s1018unic - ok
12:44:22.0081 5308 [ 1F561844318914E7EB6E54673A4CC54C ] s117bus C:\Windows\system32\DRIVERS\s117bus.sys
12:44:22.0086 5308 s117bus - ok
12:44:22.0127 5308 [ BA93EEC3CDF6A63B77AE66221AA4F902 ] s117mdfl C:\Windows\system32\DRIVERS\s117mdfl.sys
12:44:22.0135 5308 s117mdfl - ok
12:44:22.0164 5308 [ CBA12FD8A8EE5B5CDFBBAE2381CD6703 ] s117mdm C:\Windows\system32\DRIVERS\s117mdm.sys
12:44:22.0169 5308 s117mdm - ok
12:44:22.0192 5308 [ BD6483E64B1DA17E812B34BCDEFD9459 ] s117mgmt C:\Windows\system32\DRIVERS\s117mgmt.sys
12:44:22.0195 5308 s117mgmt - ok
12:44:22.0218 5308 [ C7CA36C3054B4CD47A1F6611B046E2F9 ] s117nd5 C:\Windows\system32\DRIVERS\s117nd5.sys
12:44:22.0220 5308 s117nd5 - ok
12:44:22.0252 5308 [ E290B3A6B58FB72CA97DD48D64E4FC1C ] s117obex C:\Windows\system32\DRIVERS\s117obex.sys
12:44:22.0256 5308 s117obex - ok
12:44:22.0282 5308 [ 5C4D1BA23C7511AC880E8BA7BAA80DBA ] s117unic C:\Windows\system32\DRIVERS\s117unic.sys
12:44:22.0285 5308 s117unic - ok
12:44:22.0307 5308 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
12:44:22.0309 5308 SamSs - ok
12:44:22.0350 5308 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:44:22.0354 5308 sbp2port - ok
12:44:22.0384 5308 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:44:22.0392 5308 SCardSvr - ok
12:44:22.0414 5308 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:44:22.0417 5308 scfilter - ok
12:44:22.0472 5308 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
12:44:22.0480 5308 Schedule - ok
12:44:22.0524 5308 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:44:22.0526 5308 SCPolicySvc - ok
12:44:22.0572 5308 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
12:44:22.0576 5308 sdbus - ok
12:44:22.0603 5308 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:44:22.0610 5308 SDRSVC - ok
12:44:22.0651 5308 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:44:22.0652 5308 secdrv - ok
12:44:22.0682 5308 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
12:44:22.0689 5308 seclogon - ok
12:44:22.0715 5308 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
12:44:22.0719 5308 SENS - ok
12:44:22.0738 5308 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:44:22.0748 5308 SensrSvc - ok
12:44:22.0777 5308 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:44:22.0789 5308 Serenum - ok
12:44:22.0815 5308 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:44:22.0833 5308 Serial - ok
12:44:22.0860 5308 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:44:22.0867 5308 sermouse - ok
12:44:22.0922 5308 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
12:44:22.0927 5308 SessionEnv - ok
12:44:22.0973 5308 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
12:44:22.0975 5308 sffdisk - ok
12:44:23.0009 5308 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:44:23.0015 5308 sffp_mmc - ok
12:44:23.0039 5308 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
12:44:23.0041 5308 sffp_sd - ok
12:44:23.0064 5308 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:44:23.0066 5308 sfloppy - ok
12:44:23.0103 5308 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:44:23.0109 5308 ShellHWDetection - ok
12:44:23.0138 5308 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
12:44:23.0141 5308 sisagp - ok
12:44:23.0184 5308 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:44:23.0187 5308 SiSRaid2 - ok
12:44:23.0207 5308 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:44:23.0211 5308 SiSRaid4 - ok
12:44:23.0320 5308 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
12:44:23.0322 5308 SkypeUpdate - ok
12:44:23.0351 5308 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:44:23.0354 5308 Smb - ok
12:44:23.0402 5308 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:44:23.0406 5308 SNMPTRAP - ok
12:44:23.0426 5308 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
12:44:23.0429 5308 spldr - ok
12:44:23.0481 5308 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
12:44:23.0486 5308 Spooler - ok
12:44:23.0741 5308 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
12:44:23.0768 5308 sppsvc - ok
12:44:23.0816 5308 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:44:23.0821 5308 sppuinotify - ok
12:44:23.0868 5308 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:44:23.0872 5308 srv - ok
12:44:23.0926 5308 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:44:23.0929 5308 srv2 - ok
12:44:23.0950 5308 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:44:23.0952 5308 srvnet - ok
12:44:23.0983 5308 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:44:23.0983 5308 SSDPSRV - ok
12:44:24.0014 5308 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:44:24.0046 5308 SstpSvc - ok
12:44:24.0124 5308 [ FE7F776F2590C8331123BDA3A3A21DE6 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9691412ff1876250\STacSV.exe
12:44:24.0139 5308 STacSV - ok
12:44:24.0186 5308 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:44:24.0186 5308 stexstor - ok
12:44:24.0233 5308 [ DADB74BF26766757DBBA9C5912969EBF ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
12:44:24.0233 5308 STHDA - ok
12:44:24.0295 5308 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
12:44:24.0311 5308 StiSvc - ok
12:44:24.0342 5308 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
12:44:24.0358 5308 swenum - ok
12:44:24.0389 5308 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
12:44:24.0404 5308 swprv - ok
12:44:24.0482 5308 [ 067CB9D745407A8C1B26E89A6A2CE152 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
12:44:24.0486 5308 SynTP - ok
12:44:24.0637 5308 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
12:44:24.0648 5308 SysMain - ok
12:44:24.0670 5308 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:44:24.0686 5308 TabletInputService - ok
12:44:24.0753 5308 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
12:44:24.0776 5308 TapiSrv - ok
12:44:24.0796 5308 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
12:44:24.0801 5308 TBS - ok
12:44:24.0881 5308 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:44:24.0893 5308 Tcpip - ok
12:44:24.0929 5308 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:44:24.0939 5308 TCPIP6 - ok
12:44:24.0980 5308 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:44:24.0982 5308 tcpipreg - ok
12:44:25.0025 5308 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:44:25.0027 5308 TDPIPE - ok
12:44:25.0059 5308 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:44:25.0075 5308 TDTCP - ok
12:44:25.0126 5308 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:44:25.0130 5308 tdx - ok
12:44:25.0140 5308 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:44:25.0142 5308 TermDD - ok
12:44:25.0193 5308 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
12:44:25.0205 5308 TermService - ok
12:44:25.0233 5308 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
12:44:25.0237 5308 Themes - ok
12:44:25.0247 5308 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
12:44:25.0249 5308 THREADORDER - ok
12:44:25.0267 5308 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
12:44:25.0271 5308 TrkWks - ok
12:44:25.0334 5308 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:44:25.0345 5308 TrustedInstaller - ok
12:44:25.0362 5308 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:44:25.0373 5308 tssecsrv - ok
12:44:25.0430 5308 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:44:25.0430 5308 TsUsbFlt - ok
12:44:25.0476 5308 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:44:25.0492 5308 tunnel - ok
12:44:25.0519 5308 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:44:25.0522 5308 uagp35 - ok
12:44:25.0672 5308 [ E0529F7B6E1ACE01EBB58E5642582C92 ] UCharger C:\Windows\system32\Drivers\UCharger.sys
12:44:25.0675 5308 UCharger - ok
12:44:25.0702 5308 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:44:25.0711 5308 udfs - ok
12:44:25.0768 5308 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:44:25.0778 5308 UI0Detect - ok
12:44:25.0821 5308 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:44:25.0842 5308 uliagpkx - ok
12:44:25.0869 5308 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
12:44:25.0872 5308 umbus - ok
12:44:25.0898 5308 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:44:25.0913 5308 UmPass - ok
12:44:25.0934 5308 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
12:44:25.0939 5308 upnphost - ok
12:44:25.0973 5308 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
12:44:25.0976 5308 USBAAPL - ok
12:44:26.0001 5308 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:44:26.0003 5308 usbccgp - ok
12:44:26.0024 5308 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:44:26.0027 5308 usbcir - ok
12:44:26.0058 5308 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:44:26.0064 5308 usbehci - ok
12:44:26.0086 5308 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:44:26.0094 5308 usbhub - ok
12:44:26.0112 5308 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
12:44:26.0115 5308 usbohci - ok
12:44:26.0148 5308 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:44:26.0151 5308 usbprint - ok
12:44:26.0187 5308 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
12:44:26.0190 5308 usbscan - ok
12:44:26.0223 5308 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:44:26.0225 5308 USBSTOR - ok
12:44:26.0245 5308 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:44:26.0247 5308 usbuhci - ok
12:44:26.0322 5308 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:44:26.0326 5308 usbvideo - ok
12:44:26.0351 5308 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
12:44:26.0354 5308 usb_rndisx - ok
12:44:26.0390 5308 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
12:44:26.0398 5308 UxSms - ok
12:44:26.0415 5308 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
12:44:26.0417 5308 VaultSvc - ok
12:44:26.0464 5308 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:44:26.0464 5308 vdrvroot - ok
12:44:26.0526 5308 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
12:44:26.0526 5308 vds - ok
12:44:26.0558 5308 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:44:26.0558 5308 vga - ok
12:44:26.0573 5308 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:44:26.0589 5308 VgaSave - ok
12:44:26.0651 5308 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:44:26.0651 5308 vhdmp - ok
12:44:26.0682 5308 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
12:44:26.0682 5308 viaagp - ok
12:44:26.0698 5308 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
12:44:26.0698 5308 ViaC7 - ok
12:44:26.0730 5308 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
12:44:26.0855 5308 viaide - ok
12:44:26.0888 5308 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:44:26.0890 5308 volmgr - ok
12:44:26.0917 5308 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:44:26.0923 5308 volmgrx - ok
12:44:26.0972 5308 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:44:26.0975 5308 volsnap - ok
12:44:27.0169 5308 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:44:27.0188 5308 vsmraid - ok
12:44:27.0269 5308 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
12:44:27.0297 5308 VSS - ok
12:44:27.0432 5308 [ 8ED347BAD8D1FB7C40B593BFB01786D2 ] vToolbarUpdater11.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
12:44:27.0440 5308 vToolbarUpdater11.2.0 - ok
12:44:27.0453 5308 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:44:27.0458 5308 vwifibus - ok
12:44:27.0481 5308 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:44:27.0484 5308 vwififlt - ok
12:44:27.0525 5308 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
12:44:27.0527 5308 vwifimp - ok
12:44:27.0574 5308 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
12:44:27.0581 5308 W32Time - ok
12:44:27.0649 5308 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:44:27.0664 5308 WacomPen - ok
12:44:27.0745 5308 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:44:27.0755 5308 WANARP - ok
12:44:27.0766 5308 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:44:27.0782 5308 Wanarpv6 - ok
12:44:27.0855 5308 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:44:27.0928 5308 WatAdminSvc - ok
12:44:28.0030 5308 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
12:44:28.0056 5308 wbengine - ok
12:44:28.0087 5308 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:44:28.0094 5308 WbioSrvc - ok
12:44:28.0132 5308 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
12:44:28.0136 5308 WcesComm - ok
12:44:28.0187 5308 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:44:28.0192 5308 wcncsvc - ok
12:44:28.0203 5308 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:44:28.0210 5308 WcsPlugInService - ok
12:44:28.0238 5308 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:44:28.0242 5308 Wd - ok
12:44:28.0269 5308 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:44:28.0274 5308 Wdf01000 - ok
12:44:28.0288 5308 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:44:28.0291 5308 WdiServiceHost - ok
12:44:28.0297 5308 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:44:28.0300 5308 WdiSystemHost - ok
12:44:28.0345 5308 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
12:44:28.0353 5308 WebClient - ok
12:44:28.0366 5308 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:44:28.0395 5308 Wecsvc - ok
12:44:28.0428 5308 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:44:28.0478 5308 wercplsupport - ok
12:44:28.0551 5308 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
12:44:28.0604 5308 WerSvc - ok
12:44:28.0661 5308 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:44:28.0664 5308 WfpLwf - ok
12:44:28.0871 5308 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:44:28.0875 5308 WIMMount - ok
12:44:28.0890 5308 WinHttpAutoProxySvc - ok
12:44:29.0138 5308 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:44:29.0143 5308 Winmgmt - ok
12:44:29.0322 5308 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
12:44:29.0353 5308 WinRM - ok
12:44:29.0416 5308 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:44:29.0431 5308 WinUsb - ok
12:44:29.0484 5308 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:44:29.0493 5308 Wlansvc - ok
12:44:29.0574 5308 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:44:29.0591 5308 wlidsvc - ok
12:44:29.0710 5308 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:44:29.0712 5308 WmiAcpi - ok
12:44:29.0748 5308 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:44:29.0752 5308 wmiApSrv - ok
12:44:29.0835 5308 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
12:44:29.0845 5308 WMPNetworkSvc - ok
12:44:29.0869 5308 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:44:29.0874 5308 WPCSvc - ok
12:44:29.0917 5308 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:44:29.0921 5308 WPDBusEnum - ok
12:44:29.0938 5308 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:44:29.0940 5308 ws2ifsl - ok
12:44:29.0953 5308 WSearch - ok
12:44:30.0006 5308 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:44:30.0008 5308 WudfPf - ok
12:44:30.0062 5308 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:44:30.0066 5308 WUDFRd - ok
12:44:30.0106 5308 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:44:30.0110 5308 wudfsvc - ok
12:44:30.0131 5308 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
12:44:30.0139 5308 WwanSvc - ok
12:44:30.0209 5308 ================ Scan global ===============================
12:44:30.0253 5308 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
12:44:30.0304 5308 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
12:44:30.0317 5308 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
12:44:30.0346 5308 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
12:44:30.0394 5308 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
12:44:30.0400 5308 [Global] - ok
12:44:30.0401 5308 ================ Scan MBR ==================================
12:44:30.0409 5308 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:44:31.0770 5308 \Device\Harddisk0\DR0 - ok
12:44:31.0785 5308 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
12:44:31.0785 5308 \Device\Harddisk1\DR1 - ok
12:44:31.0785 5308 ================ Scan VBR ==================================
12:44:31.0801 5308 [ CC8EA12B0E232B56861F4B7EA9DCC01D ] \Device\Harddisk0\DR0\Partition1
12:44:31.0801 5308 \Device\Harddisk0\DR0\Partition1 - ok
12:44:31.0816 5308 [ 8C06FB8102600E466B0B11D8A0B7E57F ] \Device\Harddisk0\DR0\Partition2
12:44:31.0816 5308 \Device\Harddisk0\DR0\Partition2 - ok
12:44:31.0848 5308 [ B83315B443D6BFF809643923B0813E86 ] \Device\Harddisk0\DR0\Partition3
12:44:31.0863 5308 \Device\Harddisk0\DR0\Partition3 - ok
12:44:31.0879 5308 [ DDA53B54D87D0479E9B351DC910616AD ] \Device\Harddisk1\DR1\Partition1
12:44:31.0879 5308 \Device\Harddisk1\DR1\Partition1 - ok
12:44:31.0879 5308 ============================================================
12:44:31.0879 5308 Scan finished
12:44:31.0879 5308 ============================================================
12:44:31.0894 5300 Detected object count: 0
12:44:31.0894 5300 Actual detected object count: 0

#7 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 10:26 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by USER (administrator) on 26-08-2012 at 15:21:08
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9285 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)
MAC Bridge Miniport = Network Bridge (Hardware not present)
Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet NIC (NDIS 6.20) = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : DavidsComputer
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 96-4C-E5-47-3E-B5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Atheros AR9285 802.11b/g/n WiFi Adapter
Physical Address. . . . . . . . . : 90-4C-E5-47-3E-B5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::945a:46b:57cf:d427%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, 26 August 2012 3:16:31 p.m.
Lease Expires . . . . . . . . . . : Monday, 27 August 2012 3:16:31 p.m.
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 227560677
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-5F-B9-E0-00-26-9E-3B-69-F0
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 00-26-9E-3B-69-F0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6E3F78DE-1D4A-48C8-892B-01711552C9DC}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: RTA1025W.home
Address: 192.168.1.1

Name: google.com
Addresses: 2404:6800:4006:802::1005
74.125.237.69
74.125.237.70
74.125.237.71
74.125.237.72
74.125.237.73
74.125.237.78
74.125.237.64
74.125.237.65
74.125.237.66
74.125.237.67
74.125.237.68


Pinging google.com [74.125.237.69] with 32 bytes of data:
Reply from 74.125.237.69: bytes=32 time=151ms TTL=56
Reply from 74.125.237.69: bytes=32 time=180ms TTL=56

Ping statistics for 74.125.237.69:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 151ms, Maximum = 180ms, Average = 165ms
Server: RTA1025W.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=325ms TTL=51
Request timed out.

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 325ms, Maximum = 325ms, Average = 325ms
Server: RTA1025W.home
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...96 4c e5 47 3e b5 ......Microsoft Virtual WiFi Miniport Adapter
11...90 4c e5 47 3e b5 ......Atheros AR9285 802.11b/g/n WiFi Adapter
10...00 26 9e 3b 69 f0 ......Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
22...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.6 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.6 281
192.168.1.6 255.255.255.255 On-link 192.168.1.6 281
192.168.1.255 255.255.255.255 On-link 192.168.1.6 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.6 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.6 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::945a:46b:57cf:d427/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 mswsock.dll [File Not found] ()
Catalog9 28 mswsock.dll [File Not found] ()
Catalog9 29 mswsock.dll [File Not found] ()
Catalog9 30 mswsock.dll [File Not found] ()
Catalog9 31 mswsock.dll [File Not found] ()
Catalog9 32 mswsock.dll [File Not found] ()
Catalog9 33 mswsock.dll [File Not found] ()
Catalog9 34 mswsock.dll [File Not found] ()
Catalog9 35 mswsock.dll [File Not found] ()
Catalog9 36 mswsock.dll [File Not found] ()
Catalog9 37 mswsock.dll [File Not found] ()
Catalog9 38 mswsock.dll [File Not found] ()
Catalog9 39 mswsock.dll [File Not found] ()
Catalog9 40 mswsock.dll [File Not found] ()
Catalog9 41 mswsock.dll [File Not found] ()
Catalog9 42 mswsock.dll [File Not found] ()
Catalog9 43 mswsock.dll [File Not found] ()
Catalog9 44 mswsock.dll [File Not found] ()
Catalog9 45 mswsock.dll [File Not found] ()
Catalog9 46 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/26/2012 01:50:02 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/26/2012 01:50:01 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/26/2012 01:50:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/26/2012 01:50:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/26/2012 01:50:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/25/2012 09:31:32 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/25/2012 09:31:32 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/25/2012 09:31:30 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (08/25/2012 09:31:30 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "x64" of attribute "processorArchitecture" in element "assemblyIdentity" is invalid.

Error: (08/25/2012 09:31:30 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (08/26/2012 03:17:47 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (08/26/2012 03:17:45 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (08/26/2012 03:17:45 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/26/2012 03:16:18 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (08/26/2012 03:16:18 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (08/26/2012 03:16:18 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (08/26/2012 03:16:15 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (08/26/2012 03:16:15 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (08/26/2012 03:02:17 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (08/26/2012 03:02:17 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (08/18/2012 11:57:18 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 9257 seconds with 480 seconds of active time. This session ended with a crash.

Error: (08/15/2012 11:14:04 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10376 seconds with 780 seconds of active time. This session ended with a crash.

Error: (04/27/2012 00:11:15 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 3675 seconds with 1200 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.265)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AMD APP SDK Runtime (Version: 10.0.831.4)
AMD Catalyst Install Manager (Version: 3.0.855.0)
AMD Fuel (Version: 2011.1109.2212.39826)
AMD VISION Engine Control Center (Version: 2011.1109.2212.39826)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
µTorrent (Version: 3.1.3)
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.1109.2212.39826)
Catalyst Control Center InstallProxy (Version: 2011.1109.2212.39826)
ccc-utility (Version: 2011.1109.2212.39826)
CCC Help English (Version: 2011.1109.2211.39826)
D3DX10 (Version: 15.4.2368.0902)
DivX Setup (Version: 2.6.1.8)
EndNote X5 (Version: 15.0.1.5774)
ENE CIR Receiver Driver (Version: 2.7.4.0)
ESET Online Scanner v3
F.lux
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
Google Chrome (Version: 21.0.1180.83)
Google Talk Plugin (Version: 3.5.1.8982)
Google Update Helper (Version: 1.3.21.115)
iCloud (Version: 1.1.0.40)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 18 (Version: 6.0.180)
Java™ 6 Update 22 (Version: 6.0.220)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MathType 6 (Version: 6.7)
MATLAB R2009a (Version: 7.8)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft IntelliPoint 8.0 (Version: 8.01.249.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MobileMe Control Panel (Version: 3.1.8.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Pro/ENGINEER Schools Edition Release Wildfire 5.0 Datecode M040 (Version: Wildfire 5.0)
Pro/ENGINEER Thumbnail Viewer 1.0 (Version: 28.10.100)
ProductView Express 9.1 (Version: 9.1.40.14)
PunkBuster Services (Version: 0.991)
QuickTime (Version: 7.72.80.56)
R for Windows 2.15.0 (Version: 2.15.0)
ResearchSoft Direct Export Helper
Rome - Total War - Gold Edition (Version: 1.6)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.115)
Synaptics Pointing Device Driver (Version: 15.0.17.4)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
uTorrentBar Toolbar (Version: 6.8.2.0)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
ViewSonic Monitor Drivers
VLC media player 1.1.11 (Version: 1.1.11)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.00 beta 7 (32-bit) (Version: 4.00.7)

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 3069.84 MB
Available physical RAM: 1741.52 MB
Total Pagefile: 6137.96 MB
Available Pagefile: 4364.12 MB
Total Virtual: 2047.88 MB
Available Virtual: 1941.82 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:97.56 GB) (Free:9.49 GB) NTFS
2 Drive d: () (Fixed) (Total:135.23 GB) (Free:94.32 GB) NTFS
4 Drive h: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:18.7 GB) NTFS

========================= Users: ========================================

User accounts for \\DAVIDSCOMPUTER

Administrator Guest USER


**** End of log ****


Farbar Service Scanner Version: 06-08-2012
Ran by USER (administrator) on 26-08-2012 at 15:24:59
Running from "C:\Users\USER\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#8 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 10:35 PM

# AdwCleaner v1.801 - Logfile created 08/26/2012 at 15:32:20
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (32 bits)
# User : USER - DAVIDSCOMPUTER
# Boot Mode : Normal
# Running from : C:\Users\USER\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Google Chrome v21.0.1180.83

*************************

AdwCleaner[S1].txt - [7131 octets] - [26/08/2012 15:26:38]
AdwCleaner[S2].txt - [651 octets] - [26/08/2012 15:32:20]

########## EOF - C:\AdwCleaner[S2].txt - [778 octets] ##########

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 25 August 2012 - 10:38 PM

Malwarebytes log?

Download

defender
wuauserv
BITS


Launch them ,click YES when you get UAC prompt

restart the PC


Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
reset file permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache
Repair windows updates


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the new FSS log

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

Edited by narenxp, 25 August 2012 - 10:39 PM.


#10 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 11:19 PM

Farbar Service Scanner Version: 06-08-2012
Ran by USER (administrator) on 26-08-2012 at 16:18:51
Running from "C:\Users\USER\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#11 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 11:21 PM

Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/26/2012 04:20:37 PM in x86 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* C:\Users\USER\Local Settings\Apps\F.lux\flux.exe (PID: 3856) [UP-HEUR]
* C:\Users\USER\Downloads\FSS.exe (PID: 4832) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

* AppMgmt [Missing Service]
* CscService [Missing Service]
* iphlpsvc [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 08/26/2012 04:20:58 PM
Execution time: 0 hours(s), 0 minute(s), and 21 seconds(s)

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 25 August 2012 - 11:26 PM

Malwarebytes log?

#13 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 11:28 PM

Where do i find it?

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:18 AM

Posted 25 August 2012 - 11:30 PM

Launch malwarebytes,click on LOGS tab

Open the latest log and post it here

#15 DavidBlunden

DavidBlunden
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:06:18 PM

Posted 25 August 2012 - 11:31 PM

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.25.07

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
USER :: DAVIDSCOMPUTER [administrator]

Protection: Enabled

26/08/2012 3:17:59 p.m.
mbam-log-2012-08-26 (15-17-59).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 197938
Time elapsed: 8 minute(s), 47 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.25.07

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
USER :: DAVIDSCOMPUTER [administrator]

Protection: Enabled

26/08/2012 3:17:59 p.m.
mbam-log-2012-08-26 (15-17-59).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 197938
Time elapsed: 8 minute(s), 47 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users