Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan:Win32/Alureon.EP


  • Please log in to reply
28 replies to this topic

#1 travelfool

travelfool

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 05 September 2012 - 08:49 PM

I have a TOSHIBA Satellite Pro laptop running Windows Vista. I recently ran 'Windows Malicious Software Removal Tool' and it found "Trojan:Win32/Alureon.EP". I am going to Upgrade windows vista to Windows 7. If I do this will any virus or other malicious software still be present and if so how can I fully clean my laptop. I want to transfer all my data onto my external HD before I upgrade but I am sure it also has some viruses and I am 100% sure my USB's and flash cards have some too =(. I would like everything 100% clean before I do anything else.

Cheers for any future help

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:24 PM

Posted 05 September 2012 - 08:50 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 05 September 2012 - 08:56 PM

02:53:06.0411 0584 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
02:53:06.0723 0584 ============================================================
02:53:06.0723 0584 Current date / time: 2012/09/06 02:53:06.0723
02:53:06.0723 0584 SystemInfo:
02:53:06.0723 0584
02:53:06.0723 0584 OS Version: 6.0.6002 ServicePack: 2.0
02:53:06.0723 0584 Product type: Workstation
02:53:06.0723 0584 ComputerName: USER-PC
02:53:06.0723 0584 UserName: user
02:53:06.0723 0584 Windows directory: C:\Windows
02:53:06.0723 0584 System windows directory: C:\Windows
02:53:06.0723 0584 Processor architecture: Intel x86
02:53:06.0723 0584 Number of processors: 2
02:53:06.0723 0584 Page size: 0x1000
02:53:06.0723 0584 Boot type: Normal boot
02:53:06.0723 0584 ============================================================
02:53:07.0706 0584 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
02:53:07.0722 0584 ============================================================
02:53:07.0722 0584 \Device\Harddisk0\DR0:
02:53:07.0737 0584 MBR partitions:
02:53:07.0737 0584 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x6F7A800
02:53:07.0737 0584 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x7269000, BlocksNum 0x6D2B3B0
02:53:07.0737 0584 ============================================================
02:53:07.0784 0584 C: <-> \Device\Harddisk0\DR0\Partition1
02:53:07.0831 0584 E: <-> \Device\Harddisk0\DR0\Partition2
02:53:07.0831 0584 ============================================================
02:53:07.0831 0584 Initialize success
02:53:07.0831 0584 ============================================================
02:53:13.0665 3412 ============================================================
02:53:13.0665 3412 Scan started
02:53:13.0665 3412 Mode: Manual;
02:53:13.0665 3412 ============================================================
02:53:14.0196 3412 ================ Scan system memory ========================
02:53:14.0196 3412 System memory - ok
02:53:14.0196 3412 ================ Scan services =============================
02:53:15.0022 3412 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
02:53:15.0038 3412 ACPI - ok
02:53:15.0147 3412 [ F19C98AD81D2C0E1BBFD8153D2C80EE8 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
02:53:15.0163 3412 AdobeFlashPlayerUpdateSvc - ok
02:53:15.0225 3412 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
02:53:15.0225 3412 adp94xx - ok
02:53:15.0272 3412 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
02:53:15.0272 3412 adpahci - ok
02:53:15.0303 3412 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
02:53:15.0303 3412 adpu160m - ok
02:53:15.0334 3412 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
02:53:15.0334 3412 adpu320 - ok
02:53:15.0381 3412 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:53:15.0381 3412 AeLookupSvc - ok
02:53:15.0459 3412 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
02:53:15.0475 3412 AFD - ok
02:53:15.0522 3412 [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
02:53:15.0522 3412 AgereModemAudio - ok
02:53:15.0615 3412 [ CE91B158FA490CF4C4D487A4130F4660 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
02:53:15.0631 3412 AgereSoftModem - ok
02:53:15.0678 3412 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
02:53:15.0678 3412 agp440 - ok
02:53:15.0709 3412 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
02:53:15.0724 3412 aic78xx - ok
02:53:15.0771 3412 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
02:53:15.0771 3412 ALG - ok
02:53:15.0787 3412 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
02:53:15.0787 3412 aliide - ok
02:53:15.0818 3412 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
02:53:15.0818 3412 amdagp - ok
02:53:15.0834 3412 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
02:53:15.0849 3412 amdide - ok
02:53:15.0880 3412 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
02:53:15.0880 3412 AmdK7 - ok
02:53:15.0896 3412 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
02:53:15.0896 3412 AmdK8 - ok
02:53:15.0958 3412 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
02:53:15.0958 3412 Appinfo - ok
02:53:16.0161 3412 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:53:16.0192 3412 Apple Mobile Device - ok
02:53:16.0302 3412 [ 0FE769CAE5855B53C90E23F85E7E89FF ] AppMgmt C:\Windows\System32\appmgmts.dll
02:53:16.0302 3412 AppMgmt - ok
02:53:16.0348 3412 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
02:53:16.0364 3412 arc - ok
02:53:16.0395 3412 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
02:53:16.0411 3412 arcsas - ok
02:53:16.0442 3412 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:53:16.0442 3412 AsyncMac - ok
02:53:16.0473 3412 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
02:53:16.0473 3412 atapi - ok
02:53:16.0504 3412 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:53:16.0504 3412 AudioEndpointBuilder - ok
02:53:16.0520 3412 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
02:53:16.0520 3412 Audiosrv - ok
02:53:16.0848 3412 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
02:53:16.0988 3412 AVGIDSAgent - ok
02:53:17.0035 3412 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
02:53:17.0050 3412 AVGIDSDriver - ok
02:53:17.0082 3412 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfilterx.sys
02:53:17.0082 3412 AVGIDSFilter - ok
02:53:17.0128 3412 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
02:53:17.0128 3412 AVGIDSHX - ok
02:53:17.0144 3412 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
02:53:17.0144 3412 AVGIDSShim - ok
02:53:17.0206 3412 [ DDA6A2A18841E4C9172BB85958B8D948 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
02:53:17.0206 3412 Avgldx86 - ok
02:53:17.0238 3412 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
02:53:17.0238 3412 Avgmfx86 - ok
02:53:17.0284 3412 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
02:53:17.0284 3412 Avgrkx86 - ok
02:53:17.0300 3412 [ 1263F2554ACE925C237A40B4C568D815 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
02:53:17.0316 3412 Avgtdix - ok
02:53:17.0378 3412 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
02:53:17.0378 3412 avgwd - ok
02:53:17.0440 3412 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
02:53:17.0440 3412 Beep - ok
02:53:17.0487 3412 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
02:53:17.0487 3412 BFE - ok
02:53:17.0550 3412 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
02:53:17.0565 3412 BITS - ok
02:53:17.0596 3412 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
02:53:17.0596 3412 blbdrive - ok
02:53:17.0706 3412 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:53:17.0721 3412 Bonjour Service - ok
02:53:17.0784 3412 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:53:17.0784 3412 bowser - ok
02:53:17.0830 3412 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
02:53:17.0830 3412 BrFiltLo - ok
02:53:17.0862 3412 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
02:53:17.0862 3412 BrFiltUp - ok
02:53:17.0924 3412 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
02:53:17.0924 3412 Browser - ok
02:53:17.0971 3412 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
02:53:17.0971 3412 Brserid - ok
02:53:17.0986 3412 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
02:53:18.0002 3412 BrSerWdm - ok
02:53:18.0018 3412 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
02:53:18.0018 3412 BrUsbMdm - ok
02:53:18.0033 3412 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
02:53:18.0033 3412 BrUsbSer - ok
02:53:18.0080 3412 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
02:53:18.0080 3412 BTHMODEM - ok
02:53:18.0189 3412 catchme - ok
02:53:18.0220 3412 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:53:18.0220 3412 cdfs - ok
02:53:18.0283 3412 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
02:53:18.0283 3412 cdrom - ok
02:53:18.0330 3412 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
02:53:18.0345 3412 CertPropSvc - ok
02:53:18.0376 3412 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
02:53:18.0376 3412 circlass - ok
02:53:18.0423 3412 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
02:53:18.0423 3412 CLFS - ok
02:53:18.0486 3412 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:53:18.0486 3412 clr_optimization_v2.0.50727_32 - ok
02:53:18.0595 3412 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:53:18.0595 3412 clr_optimization_v4.0.30319_32 - ok
02:53:18.0642 3412 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:53:18.0642 3412 CmBatt - ok
02:53:18.0657 3412 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
02:53:18.0657 3412 cmdide - ok
02:53:18.0673 3412 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
02:53:18.0688 3412 Compbatt - ok
02:53:18.0688 3412 COMSysApp - ok
02:53:18.0782 3412 [ 596E452B5152EC9AFE8153D296459D2B ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
02:53:18.0782 3412 ConfigFree Service - ok
02:53:18.0813 3412 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
02:53:18.0813 3412 crcdisk - ok
02:53:18.0829 3412 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
02:53:18.0829 3412 Crusoe - ok
02:53:18.0891 3412 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:53:18.0891 3412 CryptSvc - ok
02:53:18.0938 3412 [ 9BDB2E89BE8D0EF37B1F25C3D3FC192C ] CSC C:\Windows\system32\drivers\csc.sys
02:53:18.0938 3412 CSC - ok
02:53:18.0985 3412 [ 0A2095F92F6AE4FE6484D911B0C21E95 ] CscService C:\Windows\System32\cscsvc.dll
02:53:18.0985 3412 CscService - ok
02:53:19.0063 3412 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
02:53:19.0078 3412 DcomLaunch - ok
02:53:19.0110 3412 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:53:19.0110 3412 DfsC - ok
02:53:19.0172 3412 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
02:53:19.0203 3412 DFSR - ok
02:53:19.0281 3412 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
02:53:19.0281 3412 Dhcp - ok
02:53:19.0328 3412 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
02:53:19.0328 3412 disk - ok
02:53:19.0390 3412 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:53:19.0390 3412 Dnscache - ok
02:53:19.0422 3412 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
02:53:19.0422 3412 dot3svc - ok
02:53:19.0468 3412 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
02:53:19.0468 3412 DPS - ok
02:53:19.0531 3412 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:53:19.0531 3412 drmkaud - ok
02:53:19.0578 3412 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:53:19.0578 3412 DXGKrnl - ok
02:53:19.0624 3412 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
02:53:19.0624 3412 E1G60 - ok
02:53:19.0656 3412 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
02:53:19.0656 3412 EapHost - ok
02:53:19.0718 3412 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
02:53:19.0718 3412 Ecache - ok
02:53:19.0780 3412 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
02:53:19.0780 3412 elxstor - ok
02:53:19.0827 3412 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
02:53:19.0843 3412 EMDMgmt - ok
02:53:19.0890 3412 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
02:53:19.0890 3412 ErrDev - ok
02:53:19.0921 3412 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
02:53:19.0936 3412 EventSystem - ok
02:53:19.0968 3412 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
02:53:19.0983 3412 exfat - ok
02:53:20.0077 3412 [ 6C5B729C5934E2D8EC0BD6762AAE9251 ] ExpatShieldService C:\Program Files\Expat Shield\bin\openvpnas.exe
02:53:20.0092 3412 ExpatShieldService - ok
02:53:20.0139 3412 [ 2CFEA9C337B699ACA38487E8A7438F35 ] ExpatSrv C:\Program Files\Expat Shield\HssWPR\hsssrv.exe
02:53:20.0155 3412 ExpatSrv - ok
02:53:20.0186 3412 [ C73830C0AA60BD62CBD16B45DA7D87FD ] ExpatTrayService C:\Program Files\Expat Shield\bin\ExpatTrayService.EXE
02:53:20.0202 3412 ExpatTrayService - ok
02:53:20.0202 3412 ExpatWd - ok
02:53:20.0233 3412 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:53:20.0233 3412 fastfat - ok
02:53:20.0280 3412 [ DFBA0F60FA301E5B1BFB1403A93EE23E ] Fax C:\Windows\system32\fxssvc.exe
02:53:20.0295 3412 Fax - ok
02:53:20.0373 3412 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
02:53:20.0373 3412 fdc - ok
02:53:20.0404 3412 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
02:53:20.0404 3412 fdPHost - ok
02:53:20.0404 3412 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
02:53:20.0404 3412 FDResPub - ok
02:53:20.0451 3412 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:53:20.0451 3412 FileInfo - ok
02:53:20.0467 3412 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:53:20.0467 3412 Filetrace - ok
02:53:20.0498 3412 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
02:53:20.0498 3412 flpydisk - ok
02:53:20.0545 3412 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:53:20.0560 3412 FltMgr - ok
02:53:20.0607 3412 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
02:53:20.0607 3412 FontCache - ok
02:53:20.0654 3412 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
02:53:20.0654 3412 FontCache3.0.0.0 - ok
02:53:20.0685 3412 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:53:20.0685 3412 Fs_Rec - ok
02:53:20.0716 3412 [ CBC22823628544735625B280665E434E ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
02:53:20.0716 3412 FwLnk - ok
02:53:20.0763 3412 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
02:53:20.0763 3412 gagp30kx - ok
02:53:20.0779 3412 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:53:20.0779 3412 GEARAspiWDM - ok
02:53:20.0888 3412 [ 4EDBBA45BA5662945C7AC2C4CC80911F ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
02:53:20.0935 3412 GoogleDesktopManager - ok
02:53:20.0982 3412 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
02:53:20.0997 3412 gpsvc - ok
02:53:21.0075 3412 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
02:53:21.0075 3412 gupdate - ok
02:53:21.0106 3412 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
02:53:21.0106 3412 gupdatem - ok
02:53:21.0153 3412 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
02:53:21.0153 3412 gusvc - ok
02:53:21.0247 3412 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:53:21.0262 3412 HdAudAddService - ok
02:53:21.0340 3412 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
02:53:21.0340 3412 HDAudBus - ok
02:53:21.0387 3412 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
02:53:21.0387 3412 HidBth - ok
02:53:21.0403 3412 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
02:53:21.0403 3412 HidIr - ok
02:53:21.0434 3412 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
02:53:21.0434 3412 hidserv - ok
02:53:21.0465 3412 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:53:21.0465 3412 HidUsb - ok
02:53:21.0496 3412 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:53:21.0512 3412 hkmsvc - ok
02:53:21.0559 3412 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
02:53:21.0559 3412 HpCISSs - ok
02:53:21.0606 3412 [ 06C9C9DE9AB51DAA5A83A838C7A58ADF ] HssDrv C:\Windows\system32\DRIVERS\HssDrv.sys
02:53:21.0606 3412 HssDrv - ok
02:53:21.0637 3412 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:53:21.0637 3412 HTTP - ok
02:53:21.0668 3412 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
02:53:21.0668 3412 i2omp - ok
02:53:21.0730 3412 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
02:53:21.0730 3412 i8042prt - ok
02:53:21.0793 3412 [ E5A0034847537EAEE3C00349D5C34C5F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
02:53:21.0793 3412 iaStor - ok
02:53:21.0824 3412 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
02:53:21.0824 3412 iaStorV - ok
02:53:21.0902 3412 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
02:53:21.0918 3412 idsvc - ok
02:53:21.0996 3412 [ 038815297078D236D8CC064C295A74C6 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
02:53:22.0027 3412 igfx - ok
02:53:22.0058 3412 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
02:53:22.0058 3412 iirsp - ok
02:53:22.0089 3412 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
02:53:22.0105 3412 IKEEXT - ok
02:53:22.0183 3412 [ 8A4341616976E47712B60F18C7049DCC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
02:53:22.0214 3412 IntcAzAudAddService - ok
02:53:22.0230 3412 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
02:53:22.0230 3412 intelide - ok
02:53:22.0276 3412 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:53:22.0276 3412 intelppm - ok
02:53:22.0308 3412 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:53:22.0323 3412 IPBusEnum - ok
02:53:22.0354 3412 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:53:22.0354 3412 IpFilterDriver - ok
02:53:22.0386 3412 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:53:22.0386 3412 iphlpsvc - ok
02:53:22.0401 3412 IpInIp - ok
02:53:22.0432 3412 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
02:53:22.0432 3412 IPMIDRV - ok
02:53:22.0448 3412 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
02:53:22.0464 3412 IPNAT - ok
02:53:22.0495 3412 [ 49918803B661367023BF325CF602AFDC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
02:53:22.0510 3412 iPod Service - ok
02:53:22.0557 3412 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:53:22.0557 3412 IRENUM - ok
02:53:22.0573 3412 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:53:22.0573 3412 isapnp - ok
02:53:22.0604 3412 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
02:53:22.0604 3412 iScsiPrt - ok
02:53:22.0635 3412 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
02:53:22.0651 3412 iteatapi - ok
02:53:22.0666 3412 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
02:53:22.0666 3412 iteraid - ok
02:53:22.0682 3412 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
02:53:22.0682 3412 kbdclass - ok
02:53:22.0713 3412 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
02:53:22.0713 3412 kbdhid - ok
02:53:22.0744 3412 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
02:53:22.0744 3412 KeyIso - ok
02:53:22.0791 3412 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:53:22.0807 3412 KSecDD - ok
02:53:22.0869 3412 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
02:53:22.0885 3412 KtmRm - ok
02:53:22.0916 3412 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
02:53:22.0916 3412 LanmanServer - ok
02:53:22.0978 3412 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:53:22.0978 3412 LanmanWorkstation - ok
02:53:23.0072 3412 [ 3AF6B73A3AD1FC37C5933441F66CEB91 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
02:53:23.0072 3412 LBTServ - ok
02:53:23.0119 3412 [ 7F9C7B28CF1C859E1C42619EEA946DC8 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
02:53:23.0134 3412 LHidFilt - ok
02:53:23.0166 3412 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:53:23.0181 3412 lltdio - ok
02:53:23.0212 3412 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:53:23.0212 3412 lltdsvc - ok
02:53:23.0244 3412 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:53:23.0244 3412 lmhosts - ok
02:53:23.0259 3412 [ AB33792A87285344F43B5CE23421BAB0 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
02:53:23.0259 3412 LMouFilt - ok
02:53:23.0290 3412 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
02:53:23.0290 3412 LSI_FC - ok
02:53:23.0306 3412 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
02:53:23.0306 3412 LSI_SAS - ok
02:53:23.0368 3412 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
02:53:23.0368 3412 LSI_SCSI - ok
02:53:23.0384 3412 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
02:53:23.0384 3412 luafv - ok
02:53:23.0431 3412 [ D42AA9F3BAF17B2E7B0135C741F0BE36 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
02:53:23.0431 3412 LUsbFilt - ok
02:53:23.0478 3412 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
02:53:23.0478 3412 megasas - ok
02:53:23.0493 3412 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
02:53:23.0509 3412 MegaSR - ok
02:53:23.0540 3412 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
02:53:23.0540 3412 MMCSS - ok
02:53:23.0556 3412 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
02:53:23.0556 3412 Modem - ok
02:53:23.0618 3412 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:53:23.0618 3412 monitor - ok
02:53:23.0634 3412 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:53:23.0634 3412 mouclass - ok
02:53:23.0649 3412 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
02:53:23.0649 3412 mouhid - ok
02:53:23.0680 3412 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
02:53:23.0680 3412 MountMgr - ok
02:53:23.0727 3412 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
02:53:23.0727 3412 MozillaMaintenance - ok
02:53:23.0774 3412 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
02:53:23.0774 3412 mpio - ok
02:53:23.0790 3412 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:53:23.0805 3412 mpsdrv - ok
02:53:23.0836 3412 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
02:53:23.0852 3412 MpsSvc - ok
02:53:23.0899 3412 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
02:53:23.0899 3412 Mraid35x - ok
02:53:23.0930 3412 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:53:23.0930 3412 MRxDAV - ok
02:53:23.0946 3412 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:53:23.0946 3412 mrxsmb - ok
02:53:23.0977 3412 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:53:23.0992 3412 mrxsmb10 - ok
02:53:23.0992 3412 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:53:24.0008 3412 mrxsmb20 - ok
02:53:24.0024 3412 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
02:53:24.0024 3412 msahci - ok
02:53:24.0039 3412 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
02:53:24.0039 3412 msdsm - ok
02:53:24.0055 3412 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
02:53:24.0070 3412 MSDTC - ok
02:53:24.0086 3412 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:53:24.0086 3412 Msfs - ok
02:53:24.0133 3412 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:53:24.0133 3412 msisadrv - ok
02:53:24.0164 3412 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:53:24.0164 3412 MSiSCSI - ok
02:53:24.0180 3412 msiserver - ok
02:53:24.0211 3412 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:53:24.0211 3412 MSKSSRV - ok
02:53:24.0226 3412 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:53:24.0226 3412 MSPCLOCK - ok
02:53:24.0242 3412 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:53:24.0242 3412 MSPQM - ok
02:53:24.0273 3412 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:53:24.0273 3412 MsRPC - ok
02:53:24.0289 3412 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
02:53:24.0289 3412 mssmbios - ok
02:53:24.0304 3412 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:53:24.0304 3412 MSTEE - ok
02:53:24.0336 3412 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
02:53:24.0336 3412 Mup - ok
02:53:24.0367 3412 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
02:53:24.0367 3412 napagent - ok
02:53:24.0429 3412 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:53:24.0429 3412 NativeWifiP - ok
02:53:24.0492 3412 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
02:53:24.0507 3412 NDIS - ok
02:53:24.0523 3412 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:53:24.0523 3412 NdisTapi - ok
02:53:24.0538 3412 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:53:24.0538 3412 Ndisuio - ok
02:53:24.0585 3412 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:53:24.0585 3412 NdisWan - ok
02:53:24.0601 3412 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:53:24.0601 3412 NDProxy - ok
02:53:24.0616 3412 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:53:24.0616 3412 NetBIOS - ok
02:53:24.0648 3412 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
02:53:24.0663 3412 netbt - ok
02:53:24.0679 3412 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
02:53:24.0679 3412 Netlogon - ok
02:53:24.0694 3412 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
02:53:24.0710 3412 Netman - ok
02:53:24.0726 3412 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
02:53:24.0741 3412 netprofm - ok
02:53:24.0772 3412 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:53:24.0772 3412 NetTcpPortSharing - ok
02:53:24.0882 3412 [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
02:53:24.0944 3412 NETw3v32 - ok
02:53:25.0038 3412 [ 6522DD40A5F67CED020BD81B856613FB ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
02:53:25.0084 3412 NETw4v32 - ok
02:53:25.0116 3412 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
02:53:25.0131 3412 nfrd960 - ok
02:53:25.0162 3412 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
02:53:25.0162 3412 NlaSvc - ok
02:53:25.0209 3412 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:53:25.0209 3412 Npfs - ok
02:53:25.0225 3412 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
02:53:25.0225 3412 nsi - ok
02:53:25.0240 3412 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:53:25.0240 3412 nsiproxy - ok
02:53:25.0303 3412 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:53:25.0334 3412 Ntfs - ok
02:53:25.0365 3412 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
02:53:25.0365 3412 ntrigdigi - ok
02:53:25.0381 3412 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
02:53:25.0381 3412 Null - ok
02:53:25.0412 3412 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:53:25.0412 3412 nvraid - ok
02:53:25.0428 3412 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:53:25.0428 3412 nvstor - ok
02:53:25.0459 3412 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:53:25.0459 3412 nv_agp - ok
02:53:25.0474 3412 NwlnkFlt - ok
02:53:25.0474 3412 NwlnkFwd - ok
02:53:25.0568 3412 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:53:25.0584 3412 odserv - ok
02:53:25.0630 3412 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
02:53:25.0630 3412 ohci1394 - ok
02:53:25.0662 3412 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:53:25.0677 3412 ose - ok
02:53:25.0724 3412 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
02:53:25.0724 3412 p2pimsvc - ok
02:53:25.0740 3412 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
02:53:25.0755 3412 p2psvc - ok
02:53:25.0786 3412 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
02:53:25.0802 3412 Parport - ok
02:53:25.0833 3412 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:53:25.0833 3412 partmgr - ok
02:53:25.0864 3412 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
02:53:25.0864 3412 Parvdm - ok
02:53:25.0896 3412 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
02:53:25.0896 3412 PcaSvc - ok
02:53:25.0927 3412 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
02:53:25.0927 3412 pci - ok
02:53:25.0958 3412 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
02:53:25.0958 3412 pciide - ok
02:53:25.0989 3412 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
02:53:25.0989 3412 pcmcia - ok
02:53:26.0052 3412 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:53:26.0067 3412 PEAUTH - ok
02:53:26.0145 3412 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
02:53:26.0176 3412 pla - ok
02:53:26.0208 3412 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:53:26.0208 3412 PlugPlay - ok
02:53:26.0239 3412 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
02:53:26.0239 3412 PNRPAutoReg - ok
02:53:26.0254 3412 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
02:53:26.0270 3412 PNRPsvc - ok
02:53:26.0301 3412 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:53:26.0317 3412 PolicyAgent - ok
02:53:26.0379 3412 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:53:26.0379 3412 PptpMiniport - ok
02:53:26.0395 3412 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
02:53:26.0395 3412 Processor - ok
02:53:26.0426 3412 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
02:53:26.0442 3412 ProfSvc - ok
02:53:26.0457 3412 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:53:26.0457 3412 ProtectedStorage - ok
02:53:26.0488 3412 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
02:53:26.0488 3412 PSched - ok
02:53:26.0504 3412 [ F7BB4E7A7C02AB4A2672937E124E306E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
02:53:26.0520 3412 PxHelp20 - ok
02:53:26.0598 3412 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
02:53:26.0629 3412 ql2300 - ok
02:53:26.0676 3412 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
02:53:26.0676 3412 ql40xx - ok
02:53:26.0738 3412 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
02:53:26.0738 3412 QWAVE - ok
02:53:26.0754 3412 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:53:26.0754 3412 QWAVEdrv - ok
02:53:26.0894 3412 [ 9054C4B91761773F0EFA59BED70C54B6 ] RapportCerberus_42020 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_42020.sys
02:53:26.0894 3412 RapportCerberus_42020 - ok
02:53:26.0956 3412 [ 2986121F03420EE5EE808B92CAC0E4AF ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
02:53:26.0956 3412 RapportEI - ok
02:53:27.0019 3412 [ 35199EC35EDC7DCBA71FDA711DFB05C0 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso.sys
02:53:27.0019 3412 RapportIaso - ok
02:53:27.0050 3412 [ C27596B51039A1DC4A572796E681B534 ] RapportKELL C:\Windows\system32\Drivers\RapportKELL.sys
02:53:27.0050 3412 RapportKELL - ok
02:53:27.0097 3412 [ CED99B16C8C7ACB45BACE79B8B8E23AB ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
02:53:27.0112 3412 RapportMgmtService - ok
02:53:27.0190 3412 [ F7482C0AA64C2ADC3A96A643AA48E6D1 ] RapportPG C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
02:53:27.0190 3412 RapportPG - ok
02:53:27.0206 3412 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:53:27.0206 3412 RasAcd - ok
02:53:27.0237 3412 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
02:53:27.0237 3412 RasAuto - ok
02:53:27.0268 3412 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:53:27.0268 3412 Rasl2tp - ok
02:53:27.0300 3412 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
02:53:27.0315 3412 RasMan - ok
02:53:27.0346 3412 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:53:27.0346 3412 RasPppoe - ok
02:53:27.0378 3412 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:53:27.0378 3412 RasSstp - ok
02:53:27.0424 3412 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:53:27.0424 3412 rdbss - ok
02:53:27.0456 3412 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:53:27.0456 3412 RDPCDD - ok
02:53:27.0471 3412 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\DRIVERS\rdpdr.sys
02:53:27.0487 3412 rdpdr - ok
02:53:27.0487 3412 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:53:27.0487 3412 RDPENCDD - ok
02:53:27.0534 3412 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:53:27.0534 3412 RDPWD - ok
02:53:27.0580 3412 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
02:53:27.0580 3412 RemoteAccess - ok
02:53:27.0612 3412 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:53:27.0612 3412 RemoteRegistry - ok
02:53:27.0674 3412 [ C2EF513BBE069F0D4EE0938A76F975D3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
02:53:27.0674 3412 rimmptsk - ok
02:53:27.0690 3412 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
02:53:27.0690 3412 rimsptsk - ok
02:53:27.0690 3412 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
02:53:27.0705 3412 rismxdp - ok
02:53:27.0721 3412 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
02:53:27.0721 3412 RpcLocator - ok
02:53:27.0752 3412 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
02:53:27.0752 3412 RpcSs - ok
02:53:27.0768 3412 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:53:27.0768 3412 rspndr - ok
02:53:27.0799 3412 [ 8CCA591019216E9523E3CB385CE643E6 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
02:53:27.0799 3412 RTL8169 - ok
02:53:27.0846 3412 [ E1AB463B36A7EF31D8A73A97A9B57AFA ] s115bus C:\Windows\system32\DRIVERS\s115bus.sys
02:53:27.0846 3412 s115bus - ok
02:53:27.0877 3412 [ E24113FC13B8737C94CF4E3415488C76 ] s115mdfl C:\Windows\system32\DRIVERS\s115mdfl.sys
02:53:27.0877 3412 s115mdfl - ok
02:53:27.0892 3412 [ 4029E49E7C673AA0670BD206B0AF1B5B ] s115mdm C:\Windows\system32\DRIVERS\s115mdm.sys
02:53:27.0908 3412 s115mdm - ok
02:53:27.0924 3412 [ EB02AB4CA8BCCECFDE236CAD8FC6E135 ] s115mgmt C:\Windows\system32\DRIVERS\s115mgmt.sys
02:53:27.0924 3412 s115mgmt - ok
02:53:27.0939 3412 [ 089869DB9FFD2AC807FA87FE82AC7761 ] s115obex C:\Windows\system32\DRIVERS\s115obex.sys
02:53:27.0939 3412 s115obex - ok
02:53:27.0970 3412 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
02:53:27.0970 3412 SamSs - ok
02:53:28.0002 3412 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:53:28.0002 3412 sbp2port - ok
02:53:28.0033 3412 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:53:28.0033 3412 SCardSvr - ok
02:53:28.0080 3412 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
02:53:28.0095 3412 Schedule - ok
02:53:28.0111 3412 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
02:53:28.0111 3412 SCPolicySvc - ok
02:53:28.0173 3412 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
02:53:28.0173 3412 sdbus - ok
02:53:28.0204 3412 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:53:28.0204 3412 SDRSVC - ok
02:53:28.0236 3412 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:53:28.0236 3412 secdrv - ok
02:53:28.0236 3412 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
02:53:28.0251 3412 seclogon - ok
02:53:28.0267 3412 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
02:53:28.0267 3412 SENS - ok
02:53:28.0282 3412 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
02:53:28.0282 3412 Serenum - ok
02:53:28.0298 3412 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
02:53:28.0298 3412 Serial - ok
02:53:28.0329 3412 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
02:53:28.0329 3412 sermouse - ok
02:53:28.0376 3412 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
02:53:28.0376 3412 SessionEnv - ok
02:53:28.0407 3412 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
02:53:28.0407 3412 sffdisk - ok
02:53:28.0438 3412 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
02:53:28.0438 3412 sffp_mmc - ok
02:53:28.0470 3412 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
02:53:28.0470 3412 sffp_sd - ok
02:53:28.0485 3412 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
02:53:28.0485 3412 sfloppy - ok
02:53:28.0532 3412 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:53:28.0532 3412 SharedAccess - ok
02:53:28.0579 3412 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:53:28.0579 3412 ShellHWDetection - ok
02:53:28.0610 3412 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
02:53:28.0610 3412 sisagp - ok
02:53:28.0626 3412 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
02:53:28.0641 3412 SiSRaid2 - ok
02:53:28.0657 3412 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
02:53:28.0672 3412 SiSRaid4 - ok
02:53:28.0750 3412 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
02:53:28.0750 3412 SkypeUpdate - ok
02:53:28.0875 3412 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
02:53:28.0969 3412 slsvc - ok
02:53:29.0000 3412 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
02:53:29.0016 3412 SLUINotify - ok
02:53:29.0047 3412 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:53:29.0047 3412 Smb - ok
02:53:29.0078 3412 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:53:29.0078 3412 SNMPTRAP - ok
02:53:29.0125 3412 [ D08D19EE68CB88AB1BC5DA3081505847 ] snpstd C:\Windows\system32\DRIVERS\snpstd.sys
02:53:29.0140 3412 snpstd - ok
02:53:29.0172 3412 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
02:53:29.0187 3412 spldr - ok
02:53:29.0234 3412 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
02:53:29.0234 3412 Spooler - ok
02:53:29.0296 3412 [ 7F1B7C4D446CD3F926AF45B8C48BD593 ] sptd C:\Windows\system32\Drivers\sptd.sys
02:53:29.0296 3412 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 7F1B7C4D446CD3F926AF45B8C48BD593
02:53:29.0296 3412 sptd ( LockedFile.Multi.Generic ) - warning
02:53:29.0296 3412 sptd - detected LockedFile.Multi.Generic (1)
02:53:29.0343 3412 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:53:29.0343 3412 srv - ok
02:53:29.0374 3412 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:53:29.0390 3412 srv2 - ok
02:53:29.0406 3412 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:53:29.0406 3412 srvnet - ok
02:53:29.0484 3412 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:53:29.0499 3412 SSDPSRV - ok
02:53:29.0562 3412 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:53:29.0562 3412 SstpSvc - ok
02:53:29.0593 3412 [ BD15182E9D2D3FABC1D1313BADBD2415 ] ss_bus C:\Windows\system32\DRIVERS\ss_bus.sys
02:53:29.0593 3412 ss_bus - ok
02:53:29.0624 3412 [ 67D1144F249A3C5E03EBD7A2304DEE11 ] ss_mdfl C:\Windows\system32\DRIVERS\ss_mdfl.sys
02:53:29.0624 3412 ss_mdfl - ok
02:53:29.0671 3412 [ 954B7CE2D54C703D6A8471D6B05A5E13 ] ss_mdm C:\Windows\system32\DRIVERS\ss_mdm.sys
02:53:29.0671 3412 ss_mdm - ok
02:53:29.0733 3412 [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
02:53:29.0733 3412 StarWindServiceAE - ok
02:53:29.0796 3412 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
02:53:29.0796 3412 stisvc - ok
02:53:29.0842 3412 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
02:53:29.0842 3412 swenum - ok
02:53:29.0889 3412 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
02:53:29.0889 3412 swprv - ok
02:53:29.0920 3412 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
02:53:29.0920 3412 Symc8xx - ok
02:53:29.0952 3412 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
02:53:29.0952 3412 Sym_hi - ok
02:53:29.0967 3412 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
02:53:29.0967 3412 Sym_u3 - ok
02:53:30.0030 3412 [ 70534D1E4F9AC990536D5FB5B550B3DE ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
02:53:30.0030 3412 SynTP - ok
02:53:30.0092 3412 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
02:53:30.0108 3412 SysMain - ok
02:53:30.0139 3412 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:53:30.0139 3412 TabletInputService - ok
02:53:30.0186 3412 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
02:53:30.0201 3412 TapiSrv - ok
02:53:30.0201 3412 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
02:53:30.0217 3412 TBS - ok
02:53:30.0264 3412 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:53:30.0279 3412 Tcpip - ok
02:53:30.0310 3412 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
02:53:30.0310 3412 Tcpip6 - ok
02:53:30.0357 3412 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:53:30.0357 3412 tcpipreg - ok
02:53:30.0388 3412 [ 1825BCEB47BF41C5A9F0E44DE82FC27A ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
02:53:30.0388 3412 tdcmdpst - ok
02:53:30.0420 3412 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:53:30.0420 3412 TDPIPE - ok
02:53:30.0451 3412 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:53:30.0451 3412 TDTCP - ok
02:53:30.0482 3412 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:53:30.0482 3412 tdx - ok
02:53:30.0498 3412 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
02:53:30.0498 3412 TermDD - ok
02:53:30.0513 3412 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
02:53:30.0529 3412 TermService - ok
02:53:30.0560 3412 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
02:53:30.0560 3412 Themes - ok
02:53:30.0576 3412 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
02:53:30.0576 3412 THREADORDER - ok
02:53:30.0622 3412 [ E47F35A87FF0DA38DEF37A0EB0C2D2DF ] TNaviSrv C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
02:53:30.0622 3412 TNaviSrv - ok
02:53:30.0638 3412 [ C5AC715B65B01788ABC22D10749DDDD8 ] TODDSrv C:\Windows\system32\TODDSrv.exe
02:53:30.0638 3412 TODDSrv - ok
02:53:30.0700 3412 [ DA6903958CBDC091FFCBBCA70CCFF34C ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
02:53:30.0700 3412 TosCoSrv - ok
02:53:30.0732 3412 TOSHIBA Bluetooth Service - ok
02:53:30.0763 3412 [ 22690DFFC7F2A18279A7A0489AA02BAC ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
02:53:30.0763 3412 TOSHIBA SMART Log Service - ok
02:53:30.0794 3412 Tosrfcom - ok
02:53:30.0841 3412 [ 1EA5F27C29405BF49799FECA77186DA9 ] tos_sps32 C:\Windows\system32\DRIVERS\tos_sps32.sys
02:53:30.0841 3412 tos_sps32 - ok
02:53:30.0872 3412 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
02:53:30.0888 3412 TrkWks - ok
02:53:30.0934 3412 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:53:30.0934 3412 TrustedInstaller - ok
02:53:30.0966 3412 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:53:30.0966 3412 tssecsrv - ok
02:53:31.0012 3412 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
02:53:31.0012 3412 tunmp - ok
02:53:31.0059 3412 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:53:31.0059 3412 tunnel - ok
02:53:31.0090 3412 [ 792A8B80F8188ABA4B2BE271583F3E46 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
02:53:31.0090 3412 TVALZ - ok
02:53:31.0122 3412 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
02:53:31.0122 3412 uagp35 - ok
02:53:31.0153 3412 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:53:31.0153 3412 udfs - ok
02:53:31.0200 3412 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:53:31.0200 3412 UI0Detect - ok
02:53:31.0231 3412 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:53:31.0231 3412 uliagpkx - ok
02:53:31.0278 3412 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
02:53:31.0278 3412 uliahci - ok
02:53:31.0293 3412 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
02:53:31.0293 3412 UlSata - ok
02:53:31.0324 3412 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
02:53:31.0324 3412 ulsata2 - ok
02:53:31.0340 3412 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:53:31.0340 3412 umbus - ok
02:53:31.0387 3412 [ 8A66360F38F81E960E2367B428CBD5D9 ] UmRdpService C:\Windows\System32\umrdp.dll
02:53:31.0402 3412 UmRdpService - ok
02:53:31.0418 3412 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
02:53:31.0434 3412 upnphost - ok
02:53:31.0496 3412 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
02:53:31.0496 3412 USBAAPL - ok
02:53:31.0543 3412 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:53:31.0543 3412 usbccgp - ok
02:53:31.0558 3412 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
02:53:31.0574 3412 usbcir - ok
02:53:31.0621 3412 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
02:53:31.0636 3412 usbehci - ok
02:53:31.0668 3412 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:53:31.0668 3412 usbhub - ok
02:53:31.0699 3412 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
02:53:31.0699 3412 usbohci - ok
02:53:31.0730 3412 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
02:53:31.0730 3412 usbprint - ok
02:53:31.0777 3412 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
02:53:31.0777 3412 usbscan - ok
02:53:31.0792 3412 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:53:31.0792 3412 USBSTOR - ok
02:53:31.0824 3412 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
02:53:31.0824 3412 usbuhci - ok
02:53:31.0855 3412 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
02:53:31.0855 3412 usbvideo - ok
02:53:31.0886 3412 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
02:53:31.0886 3412 UxSms - ok
02:53:31.0933 3412 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
02:53:31.0948 3412 vds - ok
02:53:31.0964 3412 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:53:31.0980 3412 vga - ok
02:53:31.0995 3412 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
02:53:31.0995 3412 VgaSave - ok
02:53:32.0011 3412 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
02:53:32.0026 3412 viaagp - ok
02:53:32.0042 3412 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
02:53:32.0042 3412 ViaC7 - ok
02:53:32.0073 3412 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
02:53:32.0073 3412 viaide - ok
02:53:32.0073 3412 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:53:32.0089 3412 volmgr - ok
02:53:32.0120 3412 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:53:32.0120 3412 volmgrx - ok
02:53:32.0167 3412 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:53:32.0182 3412 volsnap - ok
02:53:32.0245 3412 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
02:53:32.0245 3412 vsmraid - ok
02:53:32.0292 3412 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
02:53:32.0323 3412 VSS - ok
02:53:32.0354 3412 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
02:53:32.0370 3412 W32Time - ok
02:53:32.0401 3412 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
02:53:32.0401 3412 WacomPen - ok
02:53:32.0448 3412 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
02:53:32.0448 3412 Wanarp - ok
02:53:32.0448 3412 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:53:32.0448 3412 Wanarpv6 - ok
02:53:32.0494 3412 [ 20B23332885DFB93FE0185362EE811E9 ] wbengine C:\Windows\system32\wbengine.exe
02:53:32.0510 3412 wbengine - ok
02:53:32.0557 3412 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:53:32.0572 3412 wcncsvc - ok
02:53:32.0604 3412 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:53:32.0604 3412 WcsPlugInService - ok
02:53:32.0635 3412 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
02:53:32.0635 3412 Wd - ok
02:53:32.0666 3412 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
02:53:32.0666 3412 WDC_SAM - ok
02:53:32.0682 3412 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:53:32.0697 3412 Wdf01000 - ok
02:53:32.0728 3412 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:53:32.0728 3412 WdiServiceHost - ok
02:53:32.0728 3412 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:53:32.0744 3412 WdiSystemHost - ok
02:53:32.0760 3412 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
02:53:32.0760 3412 WebClient - ok
02:53:32.0806 3412 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:53:32.0806 3412 Wecsvc - ok
02:53:32.0822 3412 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:53:32.0838 3412 wercplsupport - ok
02:53:32.0853 3412 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
02:53:32.0853 3412 WerSvc - ok
02:53:32.0916 3412 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
02:53:32.0931 3412 WinDefend - ok
02:53:32.0931 3412 WinHttpAutoProxySvc - ok
02:53:33.0009 3412 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:53:33.0025 3412 Winmgmt - ok
02:53:33.0087 3412 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
02:53:33.0118 3412 WinRM - ok
02:53:33.0165 3412 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
02:53:33.0181 3412 Wlansvc - ok
02:53:33.0212 3412 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
02:53:33.0212 3412 WmiAcpi - ok
02:53:33.0259 3412 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:53:33.0259 3412 wmiApSrv - ok
02:53:33.0337 3412 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
02:53:33.0352 3412 WMPNetworkSvc - ok
02:53:33.0384 3412 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:53:33.0384 3412 WPDBusEnum - ok
02:53:33.0446 3412 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
02:53:33.0446 3412 WpdUsb - ok
02:53:33.0540 3412 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
02:53:33.0555 3412 WPFFontCache_v0400 - ok
02:53:33.0571 3412 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:53:33.0571 3412 ws2ifsl - ok
02:53:33.0602 3412 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
02:53:33.0602 3412 wscsvc - ok
02:53:33.0602 3412 WSearch - ok
02:53:33.0711 3412 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
02:53:33.0758 3412 wuauserv - ok
02:53:33.0805 3412 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:53:33.0820 3412 WUDFRd - ok
02:53:33.0836 3412 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:53:33.0852 3412 wudfsvc - ok
02:53:33.0883 3412 ================ Scan global ===============================
02:53:33.0930 3412 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
02:53:33.0976 3412 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:53:33.0992 3412 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:53:34.0023 3412 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
02:53:34.0023 3412 [Global] - ok
02:53:34.0023 3412 ================ Scan MBR ==================================
02:53:34.0039 3412 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
02:53:34.0460 3412 \Device\Harddisk0\DR0 - ok
02:53:34.0460 3412 ================ Scan VBR ==================================
02:53:34.0476 3412 [ 959A92525E118D97AC21087BCFBCE658 ] \Device\Harddisk0\DR0\Partition1
02:53:34.0476 3412 \Device\Harddisk0\DR0\Partition1 - ok
02:53:34.0491 3412 [ 72AB763443B1AD8ACF59B186F96DD1D6 ] \Device\Harddisk0\DR0\Partition2
02:53:34.0491 3412 \Device\Harddisk0\DR0\Partition2 - ok
02:53:34.0491 3412 ============================================================
02:53:34.0491 3412 Scan finished
02:53:34.0491 3412 ============================================================
02:53:34.0507 3404 Detected object count: 1
02:53:34.0507 3404 Actual detected object count: 1
02:54:34.0910 3404 sptd ( LockedFile.Multi.Generic ) - skipped by user
02:54:34.0910 3404 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
02:54:56.0110 2992 ============================================================
02:54:56.0110 2992 Scan started
02:54:56.0110 2992 Mode: Manual; TDLFS;
02:54:56.0110 2992 ============================================================
02:54:56.0360 2992 ================ Scan system memory ========================
02:54:56.0360 2992 System memory - ok
02:54:56.0360 2992 ================ Scan services =============================
02:54:56.0547 2992 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
02:54:56.0547 2992 ACPI - ok
02:54:56.0610 2992 [ F19C98AD81D2C0E1BBFD8153D2C80EE8 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
02:54:56.0610 2992 AdobeFlashPlayerUpdateSvc - ok
02:54:56.0641 2992 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
02:54:56.0641 2992 adp94xx - ok
02:54:56.0688 2992 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
02:54:56.0688 2992 adpahci - ok
02:54:56.0703 2992 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
02:54:56.0703 2992 adpu160m - ok
02:54:56.0734 2992 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
02:54:56.0734 2992 adpu320 - ok
02:54:56.0750 2992 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:54:56.0750 2992 AeLookupSvc - ok
02:54:56.0797 2992 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
02:54:56.0812 2992 AFD - ok
02:54:56.0828 2992 [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
02:54:56.0828 2992 AgereModemAudio - ok
02:54:56.0906 2992 [ CE91B158FA490CF4C4D487A4130F4660 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
02:54:56.0906 2992 AgereSoftModem - ok
02:54:56.0937 2992 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
02:54:56.0937 2992 agp440 - ok
02:54:56.0968 2992 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
02:54:56.0968 2992 aic78xx - ok
02:54:57.0000 2992 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
02:54:57.0000 2992 ALG - ok
02:54:57.0015 2992 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
02:54:57.0015 2992 aliide - ok
02:54:57.0046 2992 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
02:54:57.0046 2992 amdagp - ok
02:54:57.0078 2992 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
02:54:57.0078 2992 amdide - ok
02:54:57.0109 2992 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
02:54:57.0109 2992 AmdK7 - ok
02:54:57.0124 2992 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
02:54:57.0124 2992 AmdK8 - ok
02:54:57.0156 2992 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
02:54:57.0156 2992 Appinfo - ok
02:54:57.0249 2992 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:54:57.0249 2992 Apple Mobile Device - ok
02:54:57.0280 2992 [ 0FE769CAE5855B53C90E23F85E7E89FF ] AppMgmt C:\Windows\System32\appmgmts.dll
02:54:57.0280 2992 AppMgmt - ok
02:54:57.0312 2992 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
02:54:57.0312 2992 arc - ok
02:54:57.0343 2992 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
02:54:57.0343 2992 arcsas - ok
02:54:57.0358 2992 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:54:57.0358 2992 AsyncMac - ok
02:54:57.0390 2992 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
02:54:57.0390 2992 atapi - ok
02:54:57.0421 2992 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:54:57.0436 2992 AudioEndpointBuilder - ok
02:54:57.0436 2992 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
02:54:57.0452 2992 Audiosrv - ok
02:54:57.0639 2992 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
02:54:57.0670 2992 AVGIDSAgent - ok
02:54:57.0717 2992 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
02:54:57.0733 2992 AVGIDSDriver - ok
02:54:57.0748 2992 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfilterx.sys
02:54:57.0748 2992 AVGIDSFilter - ok
02:54:57.0764 2992 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
02:54:57.0780 2992 AVGIDSHX - ok
02:54:57.0795 2992 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
02:54:57.0795 2992 AVGIDSShim - ok
02:54:57.0811 2992 [ DDA6A2A18841E4C9172BB85958B8D948 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
02:54:57.0811 2992 Avgldx86 - ok
02:54:57.0826 2992 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
02:54:57.0826 2992 Avgmfx86 - ok
02:54:57.0842 2992 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
02:54:57.0842 2992 Avgrkx86 - ok
02:54:57.0873 2992 [ 1263F2554ACE925C237A40B4C568D815 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
02:54:57.0873 2992 Avgtdix - ok
02:54:57.0904 2992 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
02:54:57.0904 2992 avgwd - ok
02:54:57.0936 2992 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
02:54:57.0936 2992 Beep - ok
02:54:57.0982 2992 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
02:54:57.0982 2992 BFE - ok
02:54:58.0029 2992 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
02:54:58.0045 2992 BITS - ok
02:54:58.0060 2992 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
02:54:58.0060 2992 blbdrive - ok
02:54:58.0123 2992 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:54:58.0123 2992 Bonjour Service - ok
02:54:58.0154 2992 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:54:58.0154 2992 bowser - ok
02:54:58.0170 2992 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
02:54:58.0170 2992 BrFiltLo - ok
02:54:58.0185 2992 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
02:54:58.0185 2992 BrFiltUp - ok
02:54:58.0216 2992 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
02:54:58.0216 2992 Browser - ok
02:54:58.0263 2992 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
02:54:58.0279 2992 Brserid - ok
02:54:58.0294 2992 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
02:54:58.0294 2992 BrSerWdm - ok
02:54:58.0310 2992 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
02:54:58.0326 2992 BrUsbMdm - ok
02:54:58.0326 2992 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
02:54:58.0326 2992 BrUsbSer - ok
02:54:58.0357 2992 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
02:54:58.0357 2992 BTHMODEM - ok
02:54:58.0435 2992 catchme - ok
02:54:58.0450 2992 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:54:58.0450 2992 cdfs - ok
02:54:58.0497 2992 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
02:54:58.0497 2992 cdrom - ok
02:54:58.0528 2992 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
02:54:58.0528 2992 CertPropSvc - ok
02:54:58.0575 2992 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
02:54:58.0575 2992 circlass - ok
02:54:58.0622 2992 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
02:54:58.0622 2992 CLFS - ok
02:54:58.0669 2992 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:54:58.0669 2992 clr_optimization_v2.0.50727_32 - ok
02:54:58.0716 2992 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:54:58.0716 2992 clr_optimization_v4.0.30319_32 - ok
02:54:58.0731 2992 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:54:58.0731 2992 CmBatt - ok
02:54:58.0762 2992 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
02:54:58.0762 2992 cmdide - ok
02:54:58.0794 2992 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
02:54:58.0794 2992 Compbatt - ok
02:54:58.0794 2992 COMSysApp - ok
02:54:58.0856 2992 [ 596E452B5152EC9AFE8153D296459D2B ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
02:54:58.0856 2992 ConfigFree Service - ok
02:54:58.0872 2992 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
02:54:58.0872 2992 crcdisk - ok
02:54:58.0887 2992 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
02:54:58.0887 2992 Crusoe - ok
02:54:58.0934 2992 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:54:58.0934 2992 CryptSvc - ok
02:54:58.0981 2992 [ 9BDB2E89BE8D0EF37B1F25C3D3FC192C ] CSC C:\Windows\system32\drivers\csc.sys
02:54:58.0981 2992 CSC - ok
02:54:59.0028 2992 [ 0A2095F92F6AE4FE6484D911B0C21E95 ] CscService C:\Windows\System32\cscsvc.dll
02:54:59.0028 2992 CscService - ok
02:54:59.0059 2992 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
02:54:59.0059 2992 DcomLaunch - ok
02:54:59.0090 2992 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:54:59.0090 2992 DfsC - ok
02:54:59.0168 2992 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
02:54:59.0184 2992 DFSR - ok
02:54:59.0230 2992 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
02:54:59.0230 2992 Dhcp - ok
02:54:59.0262 2992 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
02:54:59.0262 2992 disk - ok
02:54:59.0293 2992 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:54:59.0293 2992 Dnscache - ok
02:54:59.0324 2992 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
02:54:59.0324 2992 dot3svc - ok
02:54:59.0355 2992 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
02:54:59.0355 2992 DPS - ok
02:54:59.0386 2992 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:54:59.0386 2992 drmkaud - ok
02:54:59.0418 2992 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:54:59.0433 2992 DXGKrnl - ok
02:54:59.0449 2992 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
02:54:59.0449 2992 E1G60 - ok
02:54:59.0480 2992 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
02:54:59.0480 2992 EapHost - ok
02:54:59.0527 2992 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
02:54:59.0527 2992 Ecache - ok
02:54:59.0558 2992 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
02:54:59.0574 2992 elxstor - ok
02:54:59.0620 2992 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
02:54:59.0636 2992 EMDMgmt - ok
02:54:59.0652 2992 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
02:54:59.0652 2992 ErrDev - ok
02:54:59.0683 2992 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
02:54:59.0698 2992 EventSystem - ok
02:54:59.0730 2992 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
02:54:59.0745 2992 exfat - ok
02:54:59.0823 2992 [ 6C5B729C5934E2D8EC0BD6762AAE9251 ] ExpatShieldService C:\Program Files\Expat Shield\bin\openvpnas.exe
02:54:59.0839 2992 ExpatShieldService - ok
02:54:59.0870 2992 [ 2CFEA9C337B699ACA38487E8A7438F35 ] ExpatSrv C:\Program Files\Expat Shield\HssWPR\hsssrv.exe
02:54:59.0886 2992 ExpatSrv - ok
02:54:59.0917 2992 [ C73830C0AA60BD62CBD16B45DA7D87FD ] ExpatTrayService C:\Program Files\Expat Shield\bin\ExpatTrayService.EXE
02:54:59.0917 2992 ExpatTrayService - ok
02:54:59.0917 2992 ExpatWd - ok
02:54:59.0948 2992 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:54:59.0948 2992 fastfat - ok
02:55:00.0010 2992 [ DFBA0F60FA301E5B1BFB1403A93EE23E ] Fax C:\Windows\system32\fxssvc.exe
02:55:00.0010 2992 Fax - ok
02:55:00.0042 2992 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
02:55:00.0042 2992 fdc - ok
02:55:00.0057 2992 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
02:55:00.0057 2992 fdPHost - ok
02:55:00.0088 2992 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
02:55:00.0088 2992 FDResPub - ok
02:55:00.0088 2992 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:55:00.0104 2992 FileInfo - ok
02:55:00.0120 2992 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:55:00.0120 2992 Filetrace - ok
02:55:00.0135 2992 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
02:55:00.0135 2992 flpydisk - ok
02:55:00.0166 2992 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:55:00.0182 2992 FltMgr - ok
02:55:00.0229 2992 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
02:55:00.0244 2992 FontCache - ok
02:55:00.0276 2992 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
02:55:00.0276 2992 FontCache3.0.0.0 - ok
02:55:00.0322 2992 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:55:00.0322 2992 Fs_Rec - ok
02:55:00.0354 2992 [ CBC22823628544735625B280665E434E ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
02:55:00.0354 2992 FwLnk - ok
02:55:00.0385 2992 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
02:55:00.0385 2992 gagp30kx - ok
02:55:00.0416 2992 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:55:00.0416 2992 GEARAspiWDM - ok
02:55:00.0525 2992 [ 4EDBBA45BA5662945C7AC2C4CC80911F ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
02:55:00.0556 2992 GoogleDesktopManager - ok
02:55:00.0588 2992 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
02:55:00.0603 2992 gpsvc - ok
02:55:00.0666 2992 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
02:55:00.0666 2992 gupdate - ok
02:55:00.0666 2992 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
02:55:00.0666 2992 gupdatem - ok
02:55:00.0697 2992 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
02:55:00.0697 2992 gusvc - ok
02:55:00.0744 2992 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:55:00.0744 2992 HdAudAddService - ok
02:55:00.0790 2992 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
02:55:00.0790 2992 HDAudBus - ok
02:55:00.0806 2992 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
02:55:00.0806 2992 HidBth - ok
02:55:00.0822 2992 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
02:55:00.0837 2992 HidIr - ok
02:55:00.0868 2992 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
02:55:00.0868 2992 hidserv - ok
02:55:00.0900 2992 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:55:00.0900 2992 HidUsb - ok
02:55:00.0915 2992 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:55:00.0915 2992 hkmsvc - ok
02:55:00.0962 2992 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
02:55:00.0962 2992 HpCISSs - ok
02:55:00.0993 2992 [ 06C9C9DE9AB51DAA5A83A838C7A58ADF ] HssDrv C:\Windows\system32\DRIVERS\HssDrv.sys
02:55:00.0993 2992 HssDrv - ok
02:55:01.0024 2992 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:55:01.0024 2992 HTTP - ok
02:55:01.0040 2992 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
02:55:01.0056 2992 i2omp - ok
02:55:01.0071 2992 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
02:55:01.0071 2992 i8042prt - ok
02:55:01.0118 2992 [ E5A0034847537EAEE3C00349D5C34C5F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
02:55:01.0134 2992 iaStor - ok
02:55:01.0165 2992 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
02:55:01.0165 2992 iaStorV - ok
02:55:01.0227 2992 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
02:55:01.0227 2992 idsvc - ok
02:55:01.0321 2992 [ 038815297078D236D8CC064C295A74C6 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
02:55:01.0352 2992 igfx - ok
02:55:01.0368 2992 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
02:55:01.0383 2992 iirsp - ok
02:55:01.0430 2992 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
02:55:01.0430 2992 IKEEXT - ok
02:55:01.0524 2992 [ 8A4341616976E47712B60F18C7049DCC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
02:55:01.0555 2992 IntcAzAudAddService - ok
02:55:01.0586 2992 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
02:55:01.0586 2992 intelide - ok
02:55:01.0602 2992 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:55:01.0602 2992 intelppm - ok
02:55:01.0648 2992 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:55:01.0648 2992 IPBusEnum - ok
02:55:01.0664 2992 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:55:01.0664 2992 IpFilterDriver - ok
02:55:01.0695 2992 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:55:01.0711 2992 iphlpsvc - ok
02:55:01.0711 2992 IpInIp - ok
02:55:01.0742 2992 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
02:55:01.0742 2992 IPMIDRV - ok
02:55:01.0758 2992 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
02:55:01.0758 2992 IPNAT - ok
02:55:01.0804 2992 [ 49918803B661367023BF325CF602AFDC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
02:55:01.0820 2992 iPod Service - ok
02:55:01.0867 2992 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:55:01.0867 2992 IRENUM - ok
02:55:01.0882 2992 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:55:01.0882 2992 isapnp - ok
02:55:01.0914 2992 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
02:55:01.0914 2992 iScsiPrt - ok
02:55:01.0929 2992 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
02:55:01.0929 2992 iteatapi - ok
02:55:01.0945 2992 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
02:55:01.0945 2992 iteraid - ok
02:55:01.0960 2992 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
02:55:01.0960 2992 kbdclass - ok
02:55:02.0007 2992 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
02:55:02.0007 2992 kbdhid - ok
02:55:02.0038 2992 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
02:55:02.0054 2992 KeyIso - ok
02:55:02.0085 2992 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:55:02.0101 2992 KSecDD - ok
02:55:02.0132 2992 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
02:55:02.0148 2992 KtmRm - ok
02:55:02.0179 2992 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
02:55:02.0179 2992 LanmanServer - ok
02:55:02.0210 2992 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:55:02.0226 2992 LanmanWorkstation - ok
02:55:02.0304 2992 [ 3AF6B73A3AD1FC37C5933441F66CEB91 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
02:55:02.0304 2992 LBTServ - ok
02:55:02.0350 2992 [ 7F9C7B28CF1C859E1C42619EEA946DC8 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
02:55:02.0350 2992 LHidFilt - ok
02:55:02.0382 2992 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:55:02.0382 2992 lltdio - ok
02:55:02.0413 2992 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:55:02.0428 2992 lltdsvc - ok
02:55:02.0444 2992 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:55:02.0444 2992 lmhosts - ok
02:55:02.0460 2992 [ AB33792A87285344F43B5CE23421BAB0 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
02:55:02.0460 2992 LMouFilt - ok
02:55:02.0491 2992 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
02:55:02.0491 2992 LSI_FC - ok
02:55:02.0522 2992 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
02:55:02.0522 2992 LSI_SAS - ok
02:55:02.0538 2992 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
02:55:02.0538 2992 LSI_SCSI - ok
02:55:02.0553 2992 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
02:55:02.0553 2992 luafv - ok
02:55:02.0584 2992 [ D42AA9F3BAF17B2E7B0135C741F0BE36 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
02:55:02.0584 2992 LUsbFilt - ok
02:55:02.0616 2992 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
02:55:02.0631 2992 megasas - ok
02:55:02.0647 2992 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
02:55:02.0662 2992 MegaSR - ok
02:55:02.0694 2992 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
02:55:02.0694 2992 MMCSS - ok
02:55:02.0709 2992 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
02:55:02.0709 2992 Modem - ok
02:55:02.0756 2992 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:55:02.0756 2992 monitor - ok
02:55:02.0772 2992 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:55:02.0772 2992 mouclass - ok
02:55:02.0787 2992 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
02:55:02.0787 2992 mouhid - ok
02:55:02.0818 2992 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
02:55:02.0818 2992 MountMgr - ok
02:55:02.0865 2992 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
02:55:02.0865 2992 MozillaMaintenance - ok
02:55:02.0912 2992 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
02:55:02.0912 2992 mpio - ok
02:55:02.0943 2992 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:55:02.0943 2992 mpsdrv - ok
02:55:02.0974 2992 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
02:55:02.0990 2992 MpsSvc - ok
02:55:03.0021 2992 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
02:55:03.0021 2992 Mraid35x - ok
02:55:03.0052 2992 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:55:03.0052 2992 MRxDAV - ok
02:55:03.0068 2992 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:55:03.0068 2992 mrxsmb - ok
02:55:03.0084 2992 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:55:03.0084 2992 mrxsmb10 - ok
02:55:03.0099 2992 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:55:03.0115 2992 mrxsmb20 - ok
02:55:03.0130 2992 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
02:55:03.0130 2992 msahci - ok
02:55:03.0146 2992 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
02:55:03.0146 2992 msdsm - ok
02:55:03.0162 2992 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
02:55:03.0177 2992 MSDTC - ok
02:55:03.0208 2992 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:55:03.0208 2992 Msfs - ok
02:55:03.0240 2992 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:55:03.0240 2992 msisadrv - ok
02:55:03.0255 2992 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:55:03.0271 2992 MSiSCSI - ok
02:55:03.0271 2992 msiserver - ok
02:55:03.0286 2992 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:55:03.0286 2992 MSKSSRV - ok
02:55:03.0302 2992 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:55:03.0302 2992 MSPCLOCK - ok
02:55:03.0318 2992 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:55:03.0318 2992 MSPQM - ok
02:55:03.0349 2992 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:55:03.0364 2992 MsRPC - ok
02:55:03.0364 2992 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
02:55:03.0380 2992 mssmbios - ok
02:55:03.0396 2992 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:55:03.0396 2992 MSTEE - ok
02:55:03.0411 2992 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
02:55:03.0411 2992 Mup - ok
02:55:03.0458 2992 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
02:55:03.0458 2992 napagent - ok
02:55:03.0489 2992 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:55:03.0489 2992 NativeWifiP - ok
02:55:03.0536 2992 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
02:55:03.0536 2992 NDIS - ok
02:55:03.0567 2992 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:55:03.0567 2992 NdisTapi - ok
02:55:03.0583 2992 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:55:03.0583 2992 Ndisuio - ok
02:55:03.0614 2992 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:55:03.0630 2992 NdisWan - ok
02:55:03.0645 2992 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:55:03.0645 2992 NDProxy - ok
02:55:03.0661 2992 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:55:03.0661 2992 NetBIOS - ok
02:55:03.0692 2992 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
02:55:03.0692 2992 netbt - ok
02:55:03.0708 2992 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
02:55:03.0708 2992 Netlogon - ok
02:55:03.0754 2992 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
02:55:03.0754 2992 Netman - ok
02:55:03.0770 2992 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
02:55:03.0770 2992 netprofm - ok
02:55:03.0801 2992 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:55:03.0801 2992 NetTcpPortSharing - ok
02:55:03.0895 2992 [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
02:55:03.0942 2992 NETw3v32 - ok
02:55:04.0035 2992 [ 6522DD40A5F67CED020BD81B856613FB ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
02:55:04.0082 2992 NETw4v32 - ok
02:55:04.0113 2992 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
02:55:04.0113 2992 nfrd960 - ok
02:55:04.0160 2992 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
02:55:04.0160 2992 NlaSvc - ok
02:55:04.0207 2992 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:55:04.0207 2992 Npfs - ok
02:55:04.0207 2992 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
02:55:04.0222 2992 nsi - ok
02:55:04.0238 2992 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:55:04.0254 2992 nsiproxy - ok
02:55:04.0316 2992 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:55:04.0316 2992 Ntfs - ok
02:55:04.0347 2992 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
02:55:04.0347 2992 ntrigdigi - ok
02:55:04.0363 2992 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
02:55:04.0363 2992 Null - ok
02:55:04.0394 2992 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:55:04.0394 2992 nvraid - ok
02:55:04.0425 2992 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:55:04.0425 2992 nvstor - ok
02:55:04.0441 2992 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:55:04.0441 2992 nv_agp - ok
02:55:04.0456 2992 NwlnkFlt - ok
02:55:04.0456 2992 NwlnkFwd - ok
02:55:04.0534 2992 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:55:04.0550 2992 odserv - ok
02:55:04.0581 2992 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
02:55:04.0581 2992 ohci1394 - ok
02:55:04.0612 2992 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:55:04.0612 2992 ose - ok
02:55:04.0675 2992 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
02:55:04.0675 2992 p2pimsvc - ok
02:55:04.0706 2992 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
02:55:04.0706 2992 p2psvc - ok
02:55:04.0753 2992 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
02:55:04.0753 2992 Parport - ok
02:55:04.0784 2992 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:55:04.0784 2992 partmgr - ok
02:55:04.0815 2992 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
02:55:04.0815 2992 Parvdm - ok
02:55:04.0846 2992 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
02:55:04.0846 2992 PcaSvc - ok
02:55:04.0878 2992 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
02:55:04.0878 2992 pci - ok
02:55:04.0893 2992 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
02:55:04.0893 2992 pciide - ok
02:55:04.0924 2992 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
02:55:04.0924 2992 pcmcia - ok
02:55:04.0971 2992 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:55:04.0971 2992 PEAUTH - ok
02:55:05.0065 2992 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
02:55:05.0096 2992 pla - ok
02:55:05.0127 2992 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:55:05.0127 2992 PlugPlay - ok
02:55:05.0158 2992 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
02:55:05.0158 2992 PNRPAutoReg - ok
02:55:05.0174 2992 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
02:55:05.0190 2992 PNRPsvc - ok
02:55:05.0236 2992 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:55:05.0252 2992 PolicyAgent - ok
02:55:05.0283 2992 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:55:05.0283 2992 PptpMiniport - ok
02:55:05.0299 2992 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
02:55:05.0314 2992 Processor - ok
02:55:05.0330 2992 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
02:55:05.0330 2992 ProfSvc - ok
02:55:05.0361 2992 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:55:05.0361 2992 ProtectedStorage - ok
02:55:05.0392 2992 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
02:55:05.0392 2992 PSched - ok
02:55:05.0408 2992 [ F7BB4E7A7C02AB4A2672937E124E306E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
02:55:05.0408 2992 PxHelp20 - ok
02:55:05.0455 2992 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
02:55:05.0470 2992 ql2300 - ok
02:55:05.0517 2992 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
02:55:05.0517 2992 ql40xx - ok
02:55:05.0564 2992 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
02:55:05.0564 2992 QWAVE - ok
02:55:05.0580 2992 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:55:05.0580 2992 QWAVEdrv - ok
02:55:05.0689 2992 [ 9054C4B91761773F0EFA59BED70C54B6 ] RapportCerberus_42020 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_42020.sys
02:55:05.0689 2992 RapportCerberus_42020 - ok
02:55:05.0736 2992 [ 2986121F03420EE5EE808B92CAC0E4AF ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
02:55:05.0751 2992 RapportEI - ok
02:55:05.0767 2992 [ 35199EC35EDC7DCBA71FDA711DFB05C0 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso.sys
02:55:05.0767 2992 RapportIaso - ok
02:55:05.0814 2992 [ C27596B51039A1DC4A572796E681B534 ] RapportKELL C:\Windows\system32\Drivers\RapportKELL.sys
02:55:05.0814 2992 RapportKELL - ok
02:55:05.0860 2992 [ CED99B16C8C7ACB45BACE79B8B8E23AB ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
02:55:05.0876 2992 RapportMgmtService - ok
02:55:05.0907 2992 [ F7482C0AA64C2ADC3A96A643AA48E6D1 ] RapportPG C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
02:55:05.0923 2992 RapportPG - ok
02:55:05.0938 2992 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:55:05.0938 2992 RasAcd - ok
02:55:05.0970 2992 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
02:55:05.0970 2992 RasAuto - ok
02:55:06.0001 2992 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:55:06.0001 2992 Rasl2tp - ok
02:55:06.0032 2992 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
02:55:06.0048 2992 RasMan - ok
02:55:06.0063 2992 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:55:06.0079 2992 RasPppoe - ok
02:55:06.0110 2992 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:55:06.0110 2992 RasSstp - ok
02:55:06.0141 2992 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:55:06.0141 2992 rdbss - ok
02:55:06.0188 2992 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:55:06.0188 2992 RDPCDD - ok
02:55:06.0235 2992 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\DRIVERS\rdpdr.sys
02:55:06.0235 2992 rdpdr - ok
02:55:06.0235 2992 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:55:06.0235 2992 RDPENCDD - ok
02:55:06.0282 2992 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:55:06.0282 2992 RDPWD - ok
02:55:06.0328 2992 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
02:55:06.0328 2992 RemoteAccess - ok
02:55:06.0344 2992 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:55:06.0344 2992 RemoteRegistry - ok
02:55:06.0391 2992 [ C2EF513BBE069F0D4EE0938A76F975D3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
02:55:06.0391 2992 rimmptsk - ok
02:55:06.0406 2992 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
02:55:06.0406 2992 rimsptsk - ok
02:55:06.0438 2992 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
02:55:06.0438 2992 rismxdp - ok
02:55:06.0469 2992 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
02:55:06.0469 2992 RpcLocator - ok
02:55:06.0500 2992 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
02:55:06.0516 2992 RpcSs - ok
02:55:06.0531 2992 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:55:06.0531 2992 rspndr - ok
02:55:06.0562 2992 [ 8CCA591019216E9523E3CB385CE643E6 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
02:55:06.0562 2992 RTL8169 - ok
02:55:06.0609 2992 [ E1AB463B36A7EF31D8A73A97A9B57AFA ] s115bus C:\Windows\system32\DRIVERS\s115bus.sys
02:55:06.0609 2992 s115bus - ok
02:55:06.0625 2992 [ E24113FC13B8737C94CF4E3415488C76 ] s115mdfl C:\Windows\system32\DRIVERS\s115mdfl.sys
02:55:06.0625 2992 s115mdfl - ok
02:55:06.0656 2992 [ 4029E49E7C673AA0670BD206B0AF1B5B ] s115mdm C:\Windows\system32\DRIVERS\s115mdm.sys
02:55:06.0656 2992 s115mdm - ok
02:55:06.0672 2992 [ EB02AB4CA8BCCECFDE236CAD8FC6E135 ] s115mgmt C:\Windows\system32\DRIVERS\s115mgmt.sys
02:55:06.0672 2992 s115mgmt - ok
02:55:06.0687 2992 [ 089869DB9FFD2AC807FA87FE82AC7761 ] s115obex C:\Windows\system32\DRIVERS\s115obex.sys
02:55:06.0687 2992 s115obex - ok
02:55:06.0718 2992 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
02:55:06.0718 2992 SamSs - ok
02:55:06.0750 2992 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:55:06.0750 2992 sbp2port - ok
02:55:06.0781 2992 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:55:06.0781 2992 SCardSvr - ok
02:55:06.0828 2992 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
02:55:06.0828 2992 Schedule - ok
02:55:06.0843 2992 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
02:55:06.0843 2992 SCPolicySvc - ok
02:55:06.0874 2992 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
02:55:06.0874 2992 sdbus - ok
02:55:06.0906 2992 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:55:06.0906 2992 SDRSVC - ok
02:55:06.0937 2992 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:55:06.0937 2992 secdrv - ok
02:55:06.0952 2992 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
02:55:06.0968 2992 seclogon - ok
02:55:06.0984 2992 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
02:55:06.0984 2992 SENS - ok
02:55:06.0999 2992 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
02:55:06.0999 2992 Serenum - ok
02:55:07.0015 2992 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
02:55:07.0015 2992 Serial - ok
02:55:07.0046 2992 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
02:55:07.0046 2992 sermouse - ok
02:55:07.0093 2992 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
02:55:07.0093 2992 SessionEnv - ok
02:55:07.0124 2992 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
02:55:07.0140 2992 sffdisk - ok
02:55:07.0140 2992 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
02:55:07.0140 2992 sffp_mmc - ok
02:55:07.0171 2992 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
02:55:07.0186 2992 sffp_sd - ok
02:55:07.0202 2992 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
02:55:07.0202 2992 sfloppy - ok
02:55:07.0233 2992 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:55:07.0233 2992 SharedAccess - ok
02:55:07.0280 2992 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:55:07.0280 2992 ShellHWDetection - ok
02:55:07.0327 2992 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
02:55:07.0327 2992 sisagp - ok
02:55:07.0358 2992 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
02:55:07.0358 2992 SiSRaid2 - ok
02:55:07.0374 2992 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
02:55:07.0374 2992 SiSRaid4 - ok
02:55:07.0420 2992 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
02:55:07.0420 2992 SkypeUpdate - ok
02:55:07.0545 2992 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
02:55:07.0623 2992 slsvc - ok
02:55:07.0670 2992 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
02:55:07.0670 2992 SLUINotify - ok
02:55:07.0701 2992 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:55:07.0701 2992 Smb - ok
02:55:07.0732 2992 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:55:07.0748 2992 SNMPTRAP - ok
02:55:07.0779 2992 [ D08D19EE68CB88AB1BC5DA3081505847 ] snpstd C:\Windows\system32\DRIVERS\snpstd.sys
02:55:07.0779 2992 snpstd - ok
02:55:07.0826 2992 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
02:55:07.0826 2992 spldr - ok
02:55:07.0857 2992 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
02:55:07.0857 2992 Spooler - ok
02:55:07.0904 2992 [ 7F1B7C4D446CD3F926AF45B8C48BD593 ] sptd C:\Windows\system32\Drivers\sptd.sys
02:55:07.0904 2992 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 7F1B7C4D446CD3F926AF45B8C48BD593
02:55:07.0904 2992 sptd ( LockedFile.Multi.Generic ) - warning
02:55:07.0904 2992 sptd - detected LockedFile.Multi.Generic (1)
02:55:07.0951 2992 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:55:07.0951 2992 srv - ok
02:55:07.0982 2992 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:55:07.0998 2992 srv2 - ok
02:55:08.0013 2992 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:55:08.0013 2992 srvnet - ok
02:55:08.0044 2992 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:55:08.0044 2992 SSDPSRV - ok
02:55:08.0060 2992 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:55:08.0060 2992 SstpSvc - ok
02:55:08.0091 2992 [ BD15182E9D2D3FABC1D1313BADBD2415 ] ss_bus C:\Windows\system32\DRIVERS\ss_bus.sys
02:55:08.0091 2992 ss_bus - ok
02:55:08.0122 2992 [ 67D1144F249A3C5E03EBD7A2304DEE11 ] ss_mdfl C:\Windows\system32\DRIVERS\ss_mdfl.sys
02:55:08.0122 2992 ss_mdfl - ok
02:55:08.0154 2992 [ 954B7CE2D54C703D6A8471D6B05A5E13 ] ss_mdm C:\Windows\system32\DRIVERS\ss_mdm.sys
02:55:08.0154 2992 ss_mdm - ok
02:55:08.0200 2992 [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
02:55:08.0216 2992 StarWindServiceAE - ok
02:55:08.0263 2992 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
02:55:08.0263 2992 stisvc - ok
02:55:08.0294 2992 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
02:55:08.0294 2992 swenum - ok
02:55:08.0356 2992 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
02:55:08.0356 2992 swprv - ok
02:55:08.0403 2992 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
02:55:08.0403 2992 Symc8xx - ok
02:55:08.0434 2992 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
02:55:08.0434 2992 Sym_hi - ok
02:55:08.0450 2992 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
02:55:08.0450 2992 Sym_u3 - ok
02:55:08.0497 2992 [ 70534D1E4F9AC990536D5FB5B550B3DE ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
02:55:08.0497 2992 SynTP - ok
02:55:08.0559 2992 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
02:55:08.0575 2992 SysMain - ok
02:55:08.0606 2992 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:55:08.0606 2992 TabletInputService - ok
02:55:08.0653 2992 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
02:55:08.0653 2992 TapiSrv - ok
02:55:08.0668 2992 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
02:55:08.0668 2992 TBS - ok
02:55:08.0731 2992 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:55:08.0731 2992 Tcpip - ok
02:55:08.0762 2992 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
02:55:08.0778 2992 Tcpip6 - ok
02:55:08.0809 2992 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:55:08.0809 2992 tcpipreg - ok
02:55:08.0840 2992 [ 1825BCEB47BF41C5A9F0E44DE82FC27A ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
02:55:08.0840 2992 tdcmdpst - ok
02:55:08.0871 2992 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:55:08.0871 2992 TDPIPE - ok
02:55:08.0887 2992 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:55:08.0887 2992 TDTCP - ok
02:55:08.0918 2992 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:55:08.0918 2992 tdx - ok
02:55:08.0934 2992 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
02:55:08.0934 2992 TermDD - ok
02:55:08.0965 2992 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
02:55:08.0980 2992 TermService - ok
02:55:08.0996 2992 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
02:55:08.0996 2992 Themes - ok
02:55:09.0012 2992 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
02:55:09.0012 2992 THREADORDER - ok
02:55:09.0058 2992 [ E47F35A87FF0DA38DEF37A0EB0C2D2DF ] TNaviSrv C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
02:55:09.0058 2992 TNaviSrv - ok
02:55:09.0074 2992 [ C5AC715B65B01788ABC22D10749DDDD8 ] TODDSrv C:\Windows\system32\TODDSrv.exe
02:55:09.0090 2992 TODDSrv - ok
02:55:09.0136 2992 [ DA6903958CBDC091FFCBBCA70CCFF34C ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
02:55:09.0152 2992 TosCoSrv - ok
02:55:09.0152 2992 TOSHIBA Bluetooth Service - ok
02:55:09.0183 2992 [ 22690DFFC7F2A18279A7A0489AA02BAC ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
02:55:09.0183 2992 TOSHIBA SMART Log Service - ok
02:55:09.0183 2992 Tosrfcom - ok
02:55:09.0230 2992 [ 1EA5F27C29405BF49799FECA77186DA9 ] tos_sps32 C:\Windows\system32\DRIVERS\tos_sps32.sys
02:55:09.0246 2992 tos_sps32 - ok
02:55:09.0277 2992 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
02:55:09.0277 2992 TrkWks - ok
02:55:09.0324 2992 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:55:09.0324 2992 TrustedInstaller - ok
02:55:09.0339 2992 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:55:09.0355 2992 tssecsrv - ok
02:55:09.0370 2992 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
02:55:09.0370 2992 tunmp - ok
02:55:09.0386 2992 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:55:09.0402 2992 tunnel - ok
02:55:09.0417 2992 [ 792A8B80F8188ABA4B2BE271583F3E46 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
02:55:09.0417 2992 TVALZ - ok
02:55:09.0448 2992 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
02:55:09.0448 2992 uagp35 - ok
02:55:09.0480 2992 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:55:09.0480 2992 udfs - ok
02:55:09.0526 2992 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:55:09.0542 2992 UI0Detect - ok
02:55:09.0573 2992 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:55:09.0573 2992 uliagpkx - ok
02:55:09.0589 2992 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
02:55:09.0589 2992 uliahci - ok
02:55:09.0620 2992 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
02:55:09.0620 2992 UlSata - ok
02:55:09.0636 2992 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
02:55:09.0636 2992 ulsata2 - ok
02:55:09.0667 2992 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:55:09.0667 2992 umbus - ok
02:55:09.0714 2992 [ 8A66360F38F81E960E2367B428CBD5D9 ] UmRdpService C:\Windows\System32\umrdp.dll
02:55:09.0714 2992 UmRdpService - ok
02:55:09.0745 2992 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
02:55:09.0745 2992 upnphost - ok
02:55:09.0776 2992 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
02:55:09.0776 2992 USBAAPL - ok
02:55:09.0823 2992 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:55:09.0823 2992 usbccgp - ok
02:55:09.0854 2992 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
02:55:09.0854 2992 usbcir - ok
02:55:09.0885 2992 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
02:55:09.0885 2992 usbehci - ok
02:55:09.0932 2992 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:55:09.0932 2992 usbhub - ok
02:55:09.0963 2992 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
02:55:09.0963 2992 usbohci - ok
02:55:09.0994 2992 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
02:55:09.0994 2992 usbprint - ok
02:55:10.0026 2992 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
02:55:10.0026 2992 usbscan - ok
02:55:10.0041 2992 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:55:10.0041 2992 USBSTOR - ok
02:55:10.0072 2992 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
02:55:10.0072 2992 usbuhci - ok
02:55:10.0104 2992 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
02:55:10.0119 2992 usbvideo - ok
02:55:10.0150 2992 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
02:55:10.0150 2992 UxSms - ok
02:55:10.0197 2992 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
02:55:10.0197 2992 vds - ok
02:55:10.0228 2992 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:55:10.0228 2992 vga - ok
02:55:10.0228 2992 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
02:55:10.0228 2992 VgaSave - ok
02:55:10.0260 2992 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
02:55:10.0260 2992 viaagp - ok
02:55:10.0291 2992 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
02:55:10.0291 2992 ViaC7 - ok
02:55:10.0322 2992 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
02:55:10.0322 2992 viaide - ok
02:55:10.0338 2992 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:55:10.0353 2992 volmgr - ok
02:55:10.0400 2992 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:55:10.0400 2992 volmgrx - ok
02:55:10.0431 2992 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:55:10.0431 2992 volsnap - ok
02:55:10.0462 2992 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
02:55:10.0462 2992 vsmraid - ok
02:55:10.0509 2992 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
02:55:10.0525 2992 VSS - ok
02:55:10.0572 2992 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
02:55:10.0572 2992 W32Time - ok
02:55:10.0603 2992 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
02:55:10.0603 2992 WacomPen - ok
02:55:10.0634 2992 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
02:55:10.0634 2992 Wanarp - ok
02:55:10.0634 2992 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:55:10.0634 2992 Wanarpv6 - ok
02:55:10.0696 2992 [ 20B23332885DFB93FE0185362EE811E9 ] wbengine C:\Windows\system32\wbengine.exe
02:55:10.0712 2992 wbengine - ok
02:55:10.0759 2992 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:55:10.0774 2992 wcncsvc - ok
02:55:10.0806 2992 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:55:10.0806 2992 WcsPlugInService - ok
02:55:10.0837 2992 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
02:55:10.0837 2992 Wd - ok
02:55:10.0852 2992 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
02:55:10.0852 2992 WDC_SAM - ok
02:55:10.0899 2992 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:55:10.0899 2992 Wdf01000 - ok
02:55:10.0915 2992 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:55:10.0915 2992 WdiServiceHost - ok
02:55:10.0915 2992 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:55:10.0930 2992 WdiSystemHost - ok
02:55:10.0946 2992 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
02:55:10.0946 2992 WebClient - ok
02:55:10.0977 2992 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:55:10.0993 2992 Wecsvc - ok
02:55:11.0008 2992 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:55:11.0008 2992 wercplsupport - ok
02:55:11.0040 2992 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
02:55:11.0040 2992 WerSvc - ok
02:55:11.0102 2992 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
02:55:11.0102 2992 WinDefend - ok
02:55:11.0118 2992 WinHttpAutoProxySvc - ok
02:55:11.0196 2992 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:55:11.0196 2992 Winmgmt - ok
02:55:11.0258 2992 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
02:55:11.0289 2992 WinRM - ok
02:55:11.0336 2992 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
02:55:11.0352 2992 Wlansvc - ok
02:55:11.0383 2992 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
02:55:11.0383 2992 WmiAcpi - ok
02:55:11.0430 2992 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:55:11.0430 2992 wmiApSrv - ok
02:55:11.0508 2992 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
02:55:11.0523 2992 WMPNetworkSvc - ok
02:55:11.0554 2992 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:55:11.0554 2992 WPDBusEnum - ok
02:55:11.0601 2992 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
02:55:11.0601 2992 WpdUsb - ok
02:55:11.0679 2992 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
02:55:11.0695 2992 WPFFontCache_v0400 - ok
02:55:11.0726 2992 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:55:11.0726 2992 ws2ifsl - ok
02:55:11.0757 2992 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
02:55:11.0757 2992 wscsvc - ok
02:55:11.0757 2992 WSearch - ok
02:55:11.0851 2992 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
02:55:11.0898 2992 wuauserv - ok
02:55:11.0913 2992 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:55:11.0913 2992 WUDFRd - ok
02:55:11.0944 2992 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:55:11.0960 2992 wudfsvc - ok
02:55:11.0976 2992 ================ Scan global ===============================
02:55:11.0991 2992 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
02:55:12.0038 2992 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:55:12.0054 2992 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
02:55:12.0100 2992 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
02:55:12.0100 2992 [Global] - ok
02:55:12.0100 2992 ================ Scan MBR ==================================
02:55:12.0116 2992 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
02:55:12.0724 2992 \Device\Harddisk0\DR0 - ok
02:55:12.0724 2992 ================ Scan VBR ==================================
02:55:12.0724 2992 [ 959A92525E118D97AC21087BCFBCE658 ] \Device\Harddisk0\DR0\Partition1
02:55:12.0724 2992 \Device\Harddisk0\DR0\Partition1 - ok
02:55:12.0740 2992 [ 72AB763443B1AD8ACF59B186F96DD1D6 ] \Device\Harddisk0\DR0\Partition2
02:55:12.0756 2992 \Device\Harddisk0\DR0\Partition2 - ok
02:55:12.0756 2992 ============================================================
02:55:12.0756 2992 Scan finished
02:55:12.0756 2992 ============================================================
02:55:12.0756 3764 Detected object count: 1
02:55:12.0756 3764 Actual detected object count: 1
02:55:37.0123 3764 sptd ( LockedFile.Multi.Generic ) - skipped by user
02:55:37.0123 3764 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

#4 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 05 September 2012 - 09:07 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-06 02:57:05
-----------------------------
02:57:05.512 OS Version: Windows 6.0.6002 Service Pack 2
02:57:05.512 Number of processors: 2 586 0xF0D
02:57:05.512 ComputerName: USER-PC UserName: user
02:57:06.854 Initialize success
02:59:11.342 AVAST engine defs: 12090502
02:59:17.988 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
02:59:17.988 Disk 0 Vendor: Hitachi_ BB2O Size: 114473MB BusType: 3
02:59:18.003 Disk 0 MBR read successfully
02:59:18.003 Disk 0 MBR scan
02:59:18.019 Disk 0 Windows VISTA default MBR code
02:59:18.019 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
02:59:18.050 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 57077 MB offset 3074048
02:59:18.081 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 55894 MB offset 119967744
02:59:18.081 Disk 0 scanning sectors +234439600
02:59:18.222 Disk 0 scanning C:\Windows\system32\drivers
02:59:33.135 Service scanning
03:00:00.622 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
03:00:09.483 Modules scanning
03:00:36.487 Disk 0 trace - called modules:
03:00:36.502 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys spav.sys hal.dll >>UNKNOWN [0x891c5938]<<
03:00:36.502 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a3c99f8]
03:00:36.518 3 CLASSPNP.SYS[8c5148b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x89289028]
03:00:37.641 AVAST engine scan C:\Windows
03:00:44.614 AVAST engine scan C:\Windows\system32
03:04:08.881 AVAST engine scan C:\Windows\system32\drivers
03:04:23.935 AVAST engine scan C:\Users\user
03:05:48.778 Disk 0 MBR has been saved successfully to "C:\Users\user\Desktop\MBR.dat"
03:05:48.778 The log file has been saved successfully to "C:\Users\user\Desktop\aswMBR.txt"

#5 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 05 September 2012 - 09:52 PM

I am currently running the 'ESET Online Scanner'. I have noticed that all the scans I have done so far have only scanned my C:\ hard drive but my computer has a partition and I also have a second E:\ drive. does this matter?

thank you narenxp for your help =)

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:24 PM

Posted 05 September 2012 - 09:57 PM

Not needed.

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:24 PM

Posted 05 September 2012 - 10:38 PM

After posting the ESET log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Create a restore point before trying this

Download

adware cleaner

Launch it click on Delete

post the generated log

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#8 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 05 September 2012 - 10:47 PM

C:\Program Files\Mozilla Firefox\extensions\{B922D405-6D13-4A2B-AE89-08A030DA4402}\components\pdfforgeToolbarFF.dll probably a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Program Files\pdfforge Toolbar\pdFForgetoolbarie.dll.vir probably a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\user\Desktop\Anouk\Documents\TO SORT OUT\Downloads\FinalTorrent2011Setup.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
E:\Keiran\Programs\Eset Anti Virus\marsupilami_fix_2.1\marsupilami fix 2.1\Marsufix.exe Win32/RiskWare.HackAV.EO application cleaned by deleting - quarantined

#9 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 05 September 2012 - 11:21 PM

what is 'scan MBAM'?

cheers

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:24 PM

Posted 05 September 2012 - 11:23 PM

malwarebytes

#11 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 05 September 2012 - 11:29 PM

thank you :thumbup2:

#12 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 06 September 2012 - 11:13 AM

the MBAM quick scan came up clean

Mini toolbox result:

MiniToolBox by Farbar Version: 23-07-2012
Ran by user (administrator) on 06-09-2012 at 17:08:41
Microsoft® Windows Vista™ Business Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Connected)
Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : user-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection
Physical Address. . . . . . . . . : 00-1F-3C-AE-D8-56
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::552f:38da:5007:c03f%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.10.107(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 06 September 2012 16:48:30
Lease Expires . . . . . . . . . . : 13 September 2012 16:48:30
Default Gateway . . . . . . . . . : 192.168.10.1
DHCP Server . . . . . . . . . . . : 192.168.10.1
DHCPv6 IAID . . . . . . . . . . . : 268443452
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-C9-A8-F0-00-1E-33-5F-E8-33
DNS Servers . . . . . . . . . . . : 192.168.10.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-1E-33-5F-E8-33
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{A3669A3F-8490-42DE-A0EF-1D7285BB0D05}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1098:3533:3f57:f594(Preferred)
Link-local IPv6 Address . . . . . : fe80::1098:3533:3f57:f594%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0931C51A-B6BD-4099-9369-EA80421745ED}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.10.1

Name: google.com
Addresses: 2607:f8b0:4004:801::1009
74.125.228.41
74.125.228.39
74.125.228.32
74.125.228.40
74.125.228.37
74.125.228.34
74.125.228.38
74.125.228.36
74.125.228.33
74.125.228.35
74.125.228.46



Pinging google.com [74.125.228.46] with 32 bytes of data:

Reply from 74.125.228.46: bytes=32 time=42ms TTL=55

Reply from 74.125.228.46: bytes=32 time=40ms TTL=55



Ping statistics for 74.125.228.46:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 40ms, Maximum = 42ms, Average = 41ms

Server: UnKnown
Address: 192.168.10.1

Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=1148ms TTL=53

Reply from 72.30.38.140: bytes=32 time=479ms TTL=53



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 479ms, Maximum = 1148ms, Average = 813ms

Server: UnKnown
Address: 192.168.10.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=8ms TTL=128

Reply from 127.0.0.1: bytes=32 time=2ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 2ms, Maximum = 8ms, Average = 5ms

===========================================================================
Interface List
11 ...00 1f 3c ae d8 56 ...... Intel® PRO/Wireless 3945ABG Network Connection
10 ...00 1e 33 5f e8 33 ...... Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
20 ...00 00 00 00 00 00 00 e0 isatap.{A3669A3F-8490-42DE-A0EF-1D7285BB0D05}
13 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
19 ...00 00 00 00 00 00 00 e0 isatap.{0931C51A-B6BD-4099-9369-EA80421745ED}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.10.1 192.168.10.107 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.10.0 255.255.255.0 On-link 192.168.10.107 281
192.168.10.107 255.255.255.255 On-link 192.168.10.107 281
192.168.10.255 255.255.255.255 On-link 192.168.10.107 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.10.107 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.10.107 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 38 ::/0 On-link
1 306 ::1/128 On-link
12 38 2001::/32 On-link
12 286 2001:0:4137:9e76:1098:3533:3f57:f594/128
On-link
11 281 fe80::/64 On-link
12 286 fe80::/64 On-link
12 286 fe80::1098:3533:3f57:f594/128
On-link
11 281 fe80::552f:38da:5007:c03f/128
On-link
1 306 ff00::/8 On-link
12 286 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/06/2012 04:49:31 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2012 04:12:45 PM) (Source: Application Hang) (User: )
Description: The program setup.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 13f4
Start Time: 01cd8c415cb61207
Termination Time: 0

Error: (09/06/2012 04:07:05 PM) (Source: Application Hang) (User: )
Description: The program setup.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 112c
Start Time: 01cd8c40e4e21357
Termination Time: 390

Error: (09/06/2012 04:02:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2012 07:38:31 AM) (Source: Application Hang) (User: )
Description: The program setup.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1310
Start Time: 01cd8bfa1cc527df
Termination Time: 0

Error: (09/06/2012 07:19:12 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2012 01:42:32 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2012 00:18:22 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/05/2012 10:36:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/05/2012 09:55:09 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 15.0.0.4619 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 6f0
Start Time: 01cd8ba454428c72
Termination Time: 0


System errors:
=============
Error: (09/06/2012 04:49:34 PM) (Source: Service Control Manager) (User: )
Description: TOSHIBA Bluetooth Service%%2

Error: (09/06/2012 04:49:34 PM) (Source: Service Control Manager) (User: )
Description: Expat Shield Servicetaphss

Error: (09/06/2012 04:02:34 PM) (Source: Service Control Manager) (User: )
Description: TOSHIBA Bluetooth Service%%2

Error: (09/06/2012 04:02:34 PM) (Source: Service Control Manager) (User: )
Description: Expat Shield Servicetaphss

Error: (09/06/2012 07:19:14 AM) (Source: Service Control Manager) (User: )
Description: TOSHIBA Bluetooth Service%%2

Error: (09/06/2012 07:19:14 AM) (Source: Service Control Manager) (User: )
Description: Expat Shield Servicetaphss

Error: (09/06/2012 01:42:32 AM) (Source: Service Control Manager) (User: )
Description: TOSHIBA Bluetooth Service%%2

Error: (09/06/2012 01:42:32 AM) (Source: Service Control Manager) (User: )
Description: Expat Shield Servicetaphss

Error: (09/06/2012 01:27:23 AM) (Source: Service Control Manager) (User: )
Description: PEVSystemStart

Error: (09/06/2012 01:22:16 AM) (Source: Service Control Manager) (User: )
Description: PEVSystemStart


Microsoft Office Sessions:
=========================
Error: (09/17/2009 11:41:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 11444 seconds with 7140 seconds of active time. This session ended with a crash.

Error: (05/26/2009 08:44:13 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 34 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/26/2009 08:43:29 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 26994 seconds with 6840 seconds of active time. This session ended with a crash.

Error: (04/15/2009 06:59:44 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 8078 seconds with 120 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office system (Version: 12.0.6612.1000)
ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Flash Player 11 Plugin (Version: 11.3.300.270)
Adobe Reader 8.1.3 (Version: 8.1.3)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
µTorrent (Version: 3.2.0)
AutoUpdate (Version: 1.1)
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
Bluetooth Stack for Windows by Toshiba (Version: v6.10.01(T))
Bonjour (Version: 3.0.0.10)
Camera RAW Plug-In for EPSON Creativity Suite (Version: 2.3.0.0)
CD/DVD Drive Acoustic Silencer (Version: 2.02.01)
CDDRV_Installer (Version: 4.60)
Citrix Presentation Server Client - Web Only (Version: 10.200.2650)
Desktop SMS (Version: 1.2.0)
DivX Codec (Version: 6.8.5)
DivX Converter (Version: 6.6.1)
DivX Player (Version: 6.8.2)
DivX Web Player (Version: 1.5.0)
Dragon NaturallySpeaking 10 (Version: 10.0.0)
EPSON Attach To Email (Version: 1.01.0000)
EPSON Easy Photo Print (Version: 1.5.1.0)
EPSON File Manager (Version: 1.3.1.0)
EPSON Scan
EPSON Scan Assistant (Version: 1.10.00)
EPSON Stylus SX200_SX400_TX200_TX400 Manual
EPSON Stylus SX400 Series Printer Uninstall
erLT (Version: 0.72.105)
ESET Online Scanner v3
Expat Shield 2.25 (Version: 2.25)
Foxit PDF Editor
Google Chrome (Version: 21.0.1180.89)
Google Desktop (Version: -)
Google Earth (Version: 4.0.2737)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
Haali Media Splitter
Inspiration 8 IE
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 10.5.3.3)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 3 (Version: 1.6.0.30)
Java™ 6 Update 31 (Version: 6.0.310)
KhalInstallWrapper (Version: 2.00.0000)
Logitech SetPoint (Version: 4.80)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Marsu-Fix (Version: 2.11)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MKVtoolnix 2.5.3 (Version: 2.5.3)
Mosaic Creator 3.1
Movavi Video Converter 8 (Version: 8.02.002)
Mozilla Firefox 15.0 (x86 en-GB) (Version: 15.0)
Mozilla Maintenance Service (Version: 15.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
PDFCreator (Version: 0.9.8)
pdfforge Toolbar v1.1.1 (Version: 1.1.1)
Picasa 2 (Version: 2.0)
QuickTime (Version: 7.71.80.42)
Rapport (Version: 3.5.1205.4)
Read And Write 8.1 Gold (Version: 8.1.7)
Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5559)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.54.02 (Version: 3.54.02)
SAMSUNG CDMA Modem Driver Set
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung PC Studio (Version: 3.0.0.60610)
Samsung PC Studio (Version: 3.2.3.90502)
Samsung PC Studio 3 USB Driver Installer (Version: 1.00.0000)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.116)
Sony Ericsson Device Data (Version: 1.0.32)
Sony Ericsson Drivers (Version: 1.0.28)
Sony Ericsson PC Suite (Version: 2.10.37)
SopCast 3.2.9 (Version: 3.2.9)
Spelling Dictionaries Support For Adobe Reader 8 (Version: 8.0.0)
Spotify (Version: 0.4.8)
Synaptics Pointing Device Driver (Version: 11.2.4.0)
TOSHIBA Assist (Version: 2.01.04)
TOSHIBA ConfigFree (Version: 7.1.27)
TOSHIBA Disc Creator (Version: 2.0.1.1.a)
TOSHIBA DVD PLAYER (Version: 1.20.10)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Hardware Setup (Version: 2.00.06)
TOSHIBA Manuals (Version: 7.36)
Toshiba Online Product Information (Version: 1.00.0012)
TOSHIBA Recovery Disc Creator (Version: 2.0.0.1b)
TOSHIBA SD Memory Utilities (Version: 1.8.1.1)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TOSHIBA Supervisor Password (Version: 2.00.03)
TOSHIBA Value Added Package (Version: 1.1.14)
TRDCReminder (Version: 1.00.0015)
TRORDCLauncher (Version: 1.0.0.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687400) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0)
Visual C++ Runtime for Dragon NaturallySpeaking (Version: 10.00.000.038)
VLC media player 0.9.6 (Version: 0.9.6)
Vodafone WCDMA Composite Device Drive Software
Windows 7 Upgrade Advisor (Version: 2.0.5000.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 2037.22 MB
Available physical RAM: 1014.42 MB
Total Pagefile: 4321.58 MB
Available Pagefile: 3078.5 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.21 MB

========================= Partitions: =====================================

1 Drive c: (Vista) (Fixed) (Total:55.74 GB) (Free:7.83 GB) NTFS
2 Drive e: (Data) (Fixed) (Total:54.58 GB) (Free:14.95 GB) NTFS

========================= Users: ========================================

User accounts for \\USER-PC

Administrator Guest user


**** End of log ****

#13 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 06 September 2012 - 11:23 AM

FSS:

Farbar Service Scanner Version: 06-08-2012
Ran by user (administrator) on 06-09-2012 at 17:21:50
Running from "C:\Users\user\Downloads"
Microsoft® Windows Vista™ Business Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-21 03:24] - [2008-01-21 03:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#14 travelfool

travelfool
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:06:24 PM

Posted 06 September 2012 - 11:31 AM

adware cleaner:

# AdwCleaner v2.000 - Logfile created 09/06/2012 at 17:24:31
# Updated 30/08/2012 by Xplode
# Operating system : Windows Vista ™ Business Service Pack 2 (32 bits)
# User : user - USER-PC
# Boot Mode : Normal
# Running from : C:\Users\user\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files\Mozilla Firefox\Extensions\search@searchsettings.com
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Deleted : C:\Program Files\Mozilla Firefox\Extensions\afurladvisor@anchorfree.com
Folder Deleted : C:\Program Files\pdfforge Toolbar

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\pdfforge
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4EF8BE6A-899C-4196-94E7-297C5F7A203E}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\a6eb8fe4c9986914497e92c7f5a702e3
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\a6eb8fe4c9986914497e92c7f5a702e3
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4EF8BE6A-899C-4196-94E7-297C5F7A203E}
Key Deleted : HKLM\Software\pdfforge
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Software

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0 (en-GB)

-\\ Google Chrome v21.0.1180.89

*************************

AdwCleaner[S1].txt - [2415 octets] - [06/09/2012 17:24:31]

########## EOF - C:\AdwCleaner[S1].txt - [2475 octets] ##########

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:24 PM

Posted 06 September 2012 - 11:38 AM

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users