Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Very deeply engrained computer virus


  • Please log in to reply
13 replies to this topic

#1 helplalaman1

helplalaman1

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:08:21 PM

Posted 18 September 2012 - 12:22 AM

Hi, I was off on a trip for 2 weeks during which 2 of my family members were on my computer, one of them decided to "update" my virus security by removing all my anti-spyware and anti-virus programs and downloading microsoft security essentials instead. Since the time I got back I've had a pop-up from ad.xertive randomly pop up, I scanned my computer finding multiple registry changing viruses and a trojan. I got an adblocker so that may have stopped ad.xertive, but my computer is very slow and there is still some sort of virus on it. Whenever I do a scan with avast or spybot every couple of days, many threats are found which I then remove. A few days later new threats occur.

I know this isn't too specific so if anyone is willing to help me they can direct me to any scans I should do to provide more information.

Please help me, I've never had a virus this bad and I do not know where to turn. Even if you can recommend a program to buy that is top-class and would definately get rid of this I would be thankful. I've always gotten by with free anti-virus programs but at this point I would'nt mind spending a few bucks to save the mess my computer is in.

Thanks.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 18 September 2012 - 12:25 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 helplalaman1

helplalaman1
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:08:21 PM

Posted 18 September 2012 - 01:32 PM

Thanks a lot for your help, first I'd like to say that my computer was not opening the pages when I was pressing them in normal mode, so I did all the scans in safe mode. If there is a problem with this I can probably do it in normal mode.

This is the kaspersky log:


10:30:43.0065 2448 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
10:30:43.0358 2448 ============================================================
10:30:43.0358 2448 Current date / time: 2012/09/18 10:30:43.0358
10:30:43.0358 2448 SystemInfo:
10:30:43.0358 2448
10:30:43.0358 2448 OS Version: 6.0.6002 ServicePack: 2.0
10:30:43.0358 2448 Product type: Workstation
10:30:43.0359 2448 ComputerName: PAT-PC
10:30:43.0359 2448 UserName: Pat
10:30:43.0359 2448 Windows directory: C:\Windows
10:30:43.0359 2448 System windows directory: C:\Windows
10:30:43.0359 2448 Processor architecture: Intel x86
10:30:43.0359 2448 Number of processors: 2
10:30:43.0359 2448 Page size: 0x1000
10:30:43.0359 2448 Boot type: Safe boot with network
10:30:43.0359 2448 ============================================================
10:30:44.0041 2448 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:30:44.0043 2448 ============================================================
10:30:44.0043 2448 \Device\Harddisk0\DR0:
10:30:44.0043 2448 MBR partitions:
10:30:44.0043 2448 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x12A14C00
10:30:44.0062 2448 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x141859B9, BlocksNum 0x112A7D08
10:30:44.0062 2448 ============================================================
10:30:44.0113 2448 C: <-> \Device\Harddisk0\DR0\Partition1
10:30:44.0146 2448 D: <-> \Device\Harddisk0\DR0\Partition2
10:30:44.0146 2448 ============================================================
10:30:44.0146 2448 Initialize success
10:30:44.0146 2448 ============================================================
10:30:59.0970 2580 ============================================================
10:30:59.0970 2580 Scan started
10:30:59.0970 2580 Mode: Manual; TDLFS;
10:30:59.0970 2580 ============================================================
10:31:00.0929 2580 ================ Scan system memory ========================
10:31:00.0929 2580 System memory - ok
10:31:00.0929 2580 ================ Scan services =============================
10:31:01.0128 2580 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
10:31:01.0151 2580 !SASCORE - ok
10:31:01.0442 2580 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
10:31:01.0486 2580 ACPI - ok
10:31:01.0880 2580 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
10:31:01.0912 2580 Ad-Aware Service - ok
10:31:02.0022 2580 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
10:31:02.0026 2580 AdobeARMservice - ok
10:31:02.0081 2580 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:31:02.0089 2580 adp94xx - ok
10:31:02.0108 2580 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:31:02.0114 2580 adpahci - ok
10:31:02.0125 2580 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
10:31:02.0128 2580 adpu160m - ok
10:31:02.0138 2580 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:31:02.0142 2580 adpu320 - ok
10:31:02.0240 2580 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
10:31:02.0262 2580 ADSMService - ok
10:31:02.0288 2580 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:31:02.0344 2580 AeLookupSvc - ok
10:31:02.0409 2580 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
10:31:02.0427 2580 AFD - ok
10:31:02.0469 2580 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:31:02.0471 2580 agp440 - ok
10:31:02.0482 2580 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
10:31:02.0485 2580 aic78xx - ok
10:31:02.0515 2580 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
10:31:02.0517 2580 ALG - ok
10:31:02.0533 2580 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
10:31:02.0536 2580 aliide - ok
10:31:02.0546 2580 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
10:31:02.0548 2580 amdagp - ok
10:31:02.0557 2580 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
10:31:02.0559 2580 amdide - ok
10:31:02.0568 2580 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
10:31:02.0570 2580 AmdK7 - ok
10:31:02.0584 2580 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
10:31:02.0587 2580 AmdK8 - ok
10:31:02.0638 2580 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
10:31:02.0641 2580 Appinfo - ok
10:31:02.0723 2580 [ 70D7BE78061126DD0C3ACCDB7E129017 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:31:02.0910 2580 Apple Mobile Device - ok
10:31:02.0938 2580 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
10:31:02.0941 2580 arc - ok
10:31:02.0970 2580 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:31:02.0973 2580 arcsas - ok
10:31:02.0995 2580 [ 104DB777372411C55850C4A2AE6877EF ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
10:31:02.0997 2580 AsDsm - ok
10:31:03.0054 2580 [ EB1807795CD3EEAA3288B4A30DE254E8 ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
10:31:03.0058 2580 ASLDRService - ok
10:31:03.0095 2580 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
10:31:03.0098 2580 ASMMAP - ok
10:31:03.0135 2580 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
10:31:03.0136 2580 aswFsBlk - ok
10:31:03.0191 2580 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
10:31:03.0193 2580 aswMonFlt - ok
10:31:03.0211 2580 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
10:31:03.0212 2580 AswRdr - ok
10:31:03.0255 2580 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
10:31:03.0288 2580 aswSnx - ok
10:31:03.0314 2580 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
10:31:03.0321 2580 aswSP - ok
10:31:03.0360 2580 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
10:31:03.0361 2580 aswTdi - ok
10:31:03.0374 2580 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:31:03.0376 2580 AsyncMac - ok
10:31:03.0395 2580 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
10:31:03.0396 2580 atapi - ok
10:31:03.0487 2580 [ 8309BF4D39DAA99E5035B58C7B1533D9 ] athr C:\Windows\system32\DRIVERS\athr.sys
10:31:03.0552 2580 athr - ok
10:31:03.0601 2580 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
10:31:03.0604 2580 ATKGFNEXSrv - ok
10:31:03.0660 2580 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:31:03.0666 2580 AudioEndpointBuilder - ok
10:31:03.0671 2580 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
10:31:03.0673 2580 Audiosrv - ok
10:31:03.0748 2580 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:31:03.0829 2580 avast! Antivirus - ok
10:31:03.0902 2580 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
10:31:03.0945 2580 BBSvc - ok
10:31:03.0968 2580 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
10:31:03.0969 2580 Beep - ok
10:31:04.0013 2580 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
10:31:04.0032 2580 BFE - ok
10:31:04.0078 2580 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
10:31:04.0763 2580 BITS - ok
10:31:04.0809 2580 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
10:31:04.0812 2580 blbdrive - ok
10:31:04.0989 2580 [ 1C87705CCB2F60172B0FC86B5D82F00D ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:31:05.0040 2580 Bonjour Service - ok
10:31:05.0083 2580 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:31:05.0087 2580 bowser - ok
10:31:05.0153 2580 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
10:31:05.0159 2580 BrFiltLo - ok
10:31:05.0202 2580 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
10:31:05.0205 2580 BrFiltUp - ok
10:31:05.0232 2580 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
10:31:05.0241 2580 Browser - ok
10:31:05.0659 2580 [ 7EFFCCD7B6EA4D3428F5B3ACE8DE8F5A ] Browser Defender Update Service C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
10:31:05.0898 2580 Browser Defender Update Service - ok
10:31:05.0961 2580 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
10:31:05.0971 2580 Brserid - ok
10:31:06.0008 2580 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
10:31:06.0011 2580 BrSerWdm - ok
10:31:06.0033 2580 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
10:31:06.0038 2580 BrUsbMdm - ok
10:31:06.0052 2580 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
10:31:06.0057 2580 BrUsbSer - ok
10:31:06.0180 2580 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc C:\Program Files\Browny02\BrYNSvc.exe
10:31:06.0198 2580 BrYNSvc - ok
10:31:06.0240 2580 [ DA7B195275BDA7F8FCF79B40E0F45DDE ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
10:31:06.0242 2580 BthEnum - ok
10:31:06.0265 2580 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:31:06.0267 2580 BTHMODEM - ok
10:31:06.0294 2580 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
10:31:06.0298 2580 BthPan - ok
10:31:06.0312 2580 [ 671134053D59E23704F08DB19F11E10B ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
10:31:06.0317 2580 BTHPORT - ok
10:31:06.0342 2580 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
10:31:06.0345 2580 BthServ - ok
10:31:06.0359 2580 [ 93D7007E2C660DFCCA6AE72622740B14 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
10:31:06.0361 2580 BTHUSB - ok
10:31:06.0379 2580 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:31:06.0383 2580 cdfs - ok
10:31:06.0438 2580 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:31:06.0440 2580 cdrom - ok
10:31:06.0470 2580 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
10:31:06.0472 2580 CertPropSvc - ok
10:31:06.0490 2580 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
10:31:06.0493 2580 circlass - ok
10:31:06.0514 2580 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
10:31:06.0520 2580 CLFS - ok
10:31:06.0571 2580 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:31:06.0627 2580 clr_optimization_v2.0.50727_32 - ok
10:31:06.0689 2580 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:31:06.0810 2580 clr_optimization_v4.0.30319_32 - ok
10:31:06.0854 2580 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:31:06.0856 2580 CmBatt - ok
10:31:06.0869 2580 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:31:06.0872 2580 cmdide - ok
10:31:06.0881 2580 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:31:06.0883 2580 Compbatt - ok
10:31:06.0886 2580 COMSysApp - ok
10:31:06.0889 2580 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:31:06.0890 2580 crcdisk - ok
10:31:06.0923 2580 [ D18893845AE1C5833B5B2EA9B7F5C670 ] CRFILTER C:\Windows\system32\DRIVERS\CRFILTER.sys
10:31:06.0926 2580 CRFILTER - ok
10:31:06.0940 2580 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
10:31:06.0942 2580 Crusoe - ok
10:31:06.0977 2580 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:31:06.0982 2580 CryptSvc - ok
10:31:07.0026 2580 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:31:07.0092 2580 DcomLaunch - ok
10:31:07.0112 2580 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:31:07.0115 2580 DfsC - ok
10:31:07.0209 2580 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
10:31:07.0274 2580 DFSR - ok
10:31:07.0318 2580 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
10:31:07.0324 2580 Dhcp - ok
10:31:07.0360 2580 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
10:31:07.0362 2580 disk - ok
10:31:07.0395 2580 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:31:07.0405 2580 Dnscache - ok
10:31:07.0446 2580 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:31:07.0467 2580 dot3svc - ok
10:31:07.0513 2580 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:31:07.0518 2580 Dot4 - ok
10:31:07.0541 2580 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:31:07.0544 2580 Dot4Print - ok
10:31:07.0576 2580 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:31:07.0579 2580 dot4usb - ok
10:31:07.0621 2580 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
10:31:07.0625 2580 DPS - ok
10:31:07.0659 2580 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:31:07.0662 2580 drmkaud - ok
10:31:07.0708 2580 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:31:07.0722 2580 DXGKrnl - ok
10:31:07.0847 2580 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
10:31:07.0851 2580 E1G60 - ok
10:31:07.0872 2580 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
10:31:07.0876 2580 EapHost - ok
10:31:07.0914 2580 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
10:31:07.0918 2580 Ecache - ok
10:31:07.0974 2580 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:31:07.0989 2580 ehRecvr - ok
10:31:07.0997 2580 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
10:31:08.0001 2580 ehSched - ok
10:31:08.0010 2580 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
10:31:08.0012 2580 ehstart - ok
10:31:08.0074 2580 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:31:08.0081 2580 elxstor - ok
10:31:08.0115 2580 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
10:31:08.0126 2580 EMDMgmt - ok
10:31:08.0146 2580 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:31:08.0148 2580 ErrDev - ok
10:31:08.0204 2580 esgiguard - ok
10:31:08.0244 2580 [ A3C6F71F387BBB25C9E50390B4E4606E ] ETD C:\Windows\system32\DRIVERS\ETD.sys
10:31:08.0248 2580 ETD - ok
10:31:08.0284 2580 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
10:31:08.0291 2580 EventSystem - ok
10:31:08.0337 2580 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
10:31:08.0342 2580 exfat - ok
10:31:08.0379 2580 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:31:08.0388 2580 fastfat - ok
10:31:08.0438 2580 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:31:08.0443 2580 fdc - ok
10:31:08.0464 2580 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
10:31:08.0467 2580 fdPHost - ok
10:31:08.0478 2580 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
10:31:08.0481 2580 FDResPub - ok
10:31:08.0497 2580 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:31:08.0500 2580 FileInfo - ok
10:31:08.0515 2580 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:31:08.0517 2580 Filetrace - ok
10:31:08.0535 2580 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:31:08.0537 2580 flpydisk - ok
10:31:08.0574 2580 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:31:08.0578 2580 FltMgr - ok
10:31:08.0654 2580 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
10:31:08.0680 2580 FontCache - ok
10:31:08.0738 2580 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:31:08.0743 2580 FontCache3.0.0.0 - ok
10:31:08.0769 2580 [ B0082808A6856A252F7CDD939892CE50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:31:08.0772 2580 fssfltr - ok
10:31:08.0847 2580 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
10:31:08.0901 2580 fsssvc - ok
10:31:08.0925 2580 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:31:08.0927 2580 Fs_Rec - ok
10:31:08.0959 2580 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:31:08.0962 2580 gagp30kx - ok
10:31:08.0991 2580 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:31:08.0992 2580 GEARAspiWDM - ok
10:31:09.0035 2580 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
10:31:09.0057 2580 gpsvc - ok
10:31:09.0137 2580 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
10:31:09.0165 2580 gupdate - ok
10:31:09.0185 2580 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
10:31:09.0186 2580 gupdatem - ok
10:31:09.0234 2580 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
10:31:09.0239 2580 gusvc - ok
10:31:09.0265 2580 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:31:09.0271 2580 HdAudAddService - ok
10:31:09.0302 2580 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:31:09.0312 2580 HDAudBus - ok
10:31:09.0321 2580 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:31:09.0323 2580 HidBth - ok
10:31:09.0341 2580 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
10:31:09.0343 2580 HidIr - ok
10:31:09.0362 2580 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
10:31:09.0365 2580 hidserv - ok
10:31:09.0378 2580 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:31:09.0390 2580 HidUsb - ok
10:31:09.0520 2580 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:31:09.0525 2580 hkmsvc - ok
10:31:09.0554 2580 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
10:31:09.0557 2580 HpCISSs - ok
10:31:09.0652 2580 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
10:31:09.0709 2580 hpqcxs08 - ok
10:31:09.0726 2580 [ DF446BA625CC441617843E87798CE048 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
10:31:09.0730 2580 hpqddsvc - ok
10:31:09.0767 2580 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:31:09.0775 2580 HTTP - ok
10:31:09.0799 2580 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
10:31:09.0802 2580 i2omp - ok
10:31:09.0835 2580 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:31:09.0837 2580 i8042prt - ok
10:31:09.0856 2580 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
10:31:09.0862 2580 iaStorV - ok
10:31:09.0914 2580 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:31:09.0980 2580 idsvc - ok
10:31:09.0991 2580 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:31:09.0993 2580 iirsp - ok
10:31:10.0021 2580 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
10:31:10.0030 2580 IKEEXT - ok
10:31:10.0109 2580 [ 9ED3CF7322A49DAC3ECA62BB9928CA54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
10:31:10.0195 2580 IntcAzAudAddService - ok
10:31:10.0231 2580 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
10:31:10.0234 2580 intelide - ok
10:31:10.0251 2580 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:31:10.0253 2580 intelppm - ok
10:31:10.0277 2580 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:31:10.0282 2580 IPBusEnum - ok
10:31:10.0291 2580 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:31:10.0294 2580 IpFilterDriver - ok
10:31:10.0317 2580 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:31:10.0324 2580 iphlpsvc - ok
10:31:10.0327 2580 IpInIp - ok
10:31:10.0343 2580 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
10:31:10.0346 2580 IPMIDRV - ok
10:31:10.0357 2580 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
10:31:10.0360 2580 IPNAT - ok
10:31:10.0396 2580 [ DCB3796E0169419618C72F0CE34C68ED ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:31:10.0440 2580 iPod Service - ok
10:31:10.0452 2580 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:31:10.0455 2580 IRENUM - ok
10:31:10.0472 2580 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:31:10.0475 2580 isapnp - ok
10:31:10.0507 2580 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:31:10.0509 2580 iScsiPrt - ok
10:31:10.0527 2580 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
10:31:10.0530 2580 iteatapi - ok
10:31:10.0544 2580 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
10:31:10.0546 2580 iteraid - ok
10:31:10.0557 2580 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:31:10.0557 2580 kbdclass - ok
10:31:10.0568 2580 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:31:10.0571 2580 kbdhid - ok
10:31:10.0590 2580 [ 7F2B8D0B31FB4A797E5786EF124C5A80 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
10:31:10.0591 2580 kbfiltr - ok
10:31:10.0616 2580 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
10:31:10.0620 2580 KeyIso - ok
10:31:10.0650 2580 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:31:10.0659 2580 KSecDD - ok
10:31:10.0700 2580 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
10:31:10.0710 2580 KtmRm - ok
10:31:10.0751 2580 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
10:31:10.0798 2580 LanmanServer - ok
10:31:10.0831 2580 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:31:10.0919 2580 LanmanWorkstation - ok
10:31:10.0959 2580 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
10:31:10.0986 2580 LightScribeService - ok
10:31:10.0999 2580 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:31:11.0002 2580 lltdio - ok
10:31:11.0032 2580 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:31:11.0039 2580 lltdsvc - ok
10:31:11.0055 2580 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:31:11.0062 2580 lmhosts - ok
10:31:11.0083 2580 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:31:11.0087 2580 LSI_FC - ok
10:31:11.0091 2580 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:31:11.0094 2580 LSI_SAS - ok
10:31:11.0107 2580 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:31:11.0110 2580 LSI_SCSI - ok
10:31:11.0121 2580 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
10:31:11.0125 2580 luafv - ok
10:31:11.0158 2580 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:31:11.0160 2580 MBAMProtector - ok
10:31:11.0231 2580 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:31:11.0250 2580 MBAMScheduler - ok
10:31:11.0289 2580 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
10:31:11.0301 2580 MBAMService - ok
10:31:11.0328 2580 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:31:11.0333 2580 Mcx2Svc - ok
10:31:11.0363 2580 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
10:31:11.0365 2580 megasas - ok
10:31:11.0392 2580 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
10:31:11.0399 2580 MegaSR - ok
10:31:11.0480 2580 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
10:31:11.0690 2580 Microsoft Office Groove Audit Service - ok
10:31:11.0715 2580 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
10:31:11.0719 2580 MMCSS - ok
10:31:11.0729 2580 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
10:31:11.0731 2580 Modem - ok
10:31:11.0767 2580 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:31:11.0769 2580 monitor - ok
10:31:11.0780 2580 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:31:11.0781 2580 mouclass - ok
10:31:11.0790 2580 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:31:11.0792 2580 mouhid - ok
10:31:11.0806 2580 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
10:31:11.0809 2580 MountMgr - ok
10:31:11.0836 2580 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
10:31:11.0839 2580 mpio - ok
10:31:11.0849 2580 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:31:11.0851 2580 mpsdrv - ok
10:31:11.0888 2580 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
10:31:11.0898 2580 MpsSvc - ok
10:31:11.0938 2580 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
10:31:11.0941 2580 Mraid35x - ok
10:31:11.0969 2580 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:31:11.0973 2580 MRxDAV - ok
10:31:12.0000 2580 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:31:12.0003 2580 mrxsmb - ok
10:31:12.0040 2580 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:31:12.0045 2580 mrxsmb10 - ok
10:31:12.0049 2580 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:31:12.0051 2580 mrxsmb20 - ok
10:31:12.0081 2580 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
10:31:12.0083 2580 msahci - ok
10:31:12.0095 2580 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:31:12.0099 2580 msdsm - ok
10:31:12.0110 2580 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
10:31:12.0115 2580 MSDTC - ok
10:31:12.0151 2580 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:31:12.0155 2580 Msfs - ok
10:31:12.0228 2580 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:31:12.0232 2580 msisadrv - ok
10:31:12.0297 2580 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:31:12.0303 2580 MSiSCSI - ok
10:31:12.0305 2580 msiserver - ok
10:31:12.0327 2580 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:31:12.0330 2580 MSKSSRV - ok
10:31:12.0350 2580 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:31:12.0353 2580 MSPCLOCK - ok
10:31:12.0364 2580 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:31:12.0367 2580 MSPQM - ok
10:31:12.0421 2580 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:31:12.0431 2580 MsRPC - ok
10:31:12.0547 2580 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:31:12.0548 2580 mssmbios - ok
10:31:12.0561 2580 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:31:12.0563 2580 MSTEE - ok
10:31:12.0586 2580 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
10:31:12.0587 2580 MTsensor - ok
10:31:12.0608 2580 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
10:31:12.0611 2580 Mup - ok
10:31:12.0650 2580 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
10:31:12.0660 2580 napagent - ok
10:31:12.0696 2580 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:31:12.0699 2580 NativeWifiP - ok
10:31:12.0743 2580 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:31:12.0753 2580 NDIS - ok
10:31:12.0776 2580 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:31:12.0778 2580 NdisTapi - ok
10:31:12.0788 2580 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:31:12.0790 2580 Ndisuio - ok
10:31:12.0825 2580 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:31:12.0828 2580 NdisWan - ok
10:31:12.0837 2580 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:31:12.0839 2580 NDProxy - ok
10:31:12.0860 2580 [ 19715A9A573DAD2521348ABC74266A48 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:31:12.0864 2580 Net Driver HPZ12 - ok
10:31:12.0878 2580 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:31:12.0880 2580 NetBIOS - ok
10:31:12.0903 2580 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
10:31:12.0907 2580 netbt - ok
10:31:12.0917 2580 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
10:31:12.0920 2580 Netlogon - ok
10:31:12.0947 2580 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
10:31:12.0956 2580 Netman - ok
10:31:12.0969 2580 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
10:31:12.0977 2580 netprofm - ok
10:31:13.0008 2580 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:31:13.0012 2580 NetTcpPortSharing - ok
10:31:13.0038 2580 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:31:13.0041 2580 nfrd960 - ok
10:31:13.0057 2580 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:31:13.0064 2580 NlaSvc - ok
10:31:13.0093 2580 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:31:13.0096 2580 Npfs - ok
10:31:13.0125 2580 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
10:31:13.0130 2580 nsi - ok
10:31:13.0142 2580 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:31:13.0144 2580 nsiproxy - ok
10:31:13.0199 2580 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:31:13.0232 2580 Ntfs - ok
10:31:13.0248 2580 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
10:31:13.0250 2580 ntrigdigi - ok
10:31:13.0284 2580 [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
10:31:13.0286 2580 NuidFltr - ok
10:31:13.0301 2580 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
10:31:13.0304 2580 Null - ok
10:31:13.0579 2580 [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:31:13.0805 2580 nvlddmkm - ok
10:31:13.0831 2580 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:31:13.0834 2580 nvraid - ok
10:31:13.0864 2580 [ AF1BD777AF00E96C45C77192D7453369 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
10:31:13.0866 2580 nvsmu - ok
10:31:13.0881 2580 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:31:13.0885 2580 nvstor - ok
10:31:13.0897 2580 [ BB4DD678706510D9249EED1DA0219900 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
10:31:13.0899 2580 nvstor32 - ok
10:31:13.0932 2580 [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc C:\Windows\system32\nvvsvc.exe
10:31:13.0941 2580 nvsvc - ok
10:31:13.0958 2580 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:31:13.0962 2580 nv_agp - ok
10:31:13.0964 2580 NwlnkFlt - ok
10:31:13.0967 2580 NwlnkFwd - ok
10:31:14.0042 2580 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:31:14.0117 2580 odserv - ok
10:31:14.0142 2580 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:31:14.0145 2580 ohci1394 - ok
10:31:14.0196 2580 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:31:14.0200 2580 ose - ok
10:31:14.0233 2580 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
10:31:14.0255 2580 p2pimsvc - ok
10:31:14.0277 2580 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
10:31:14.0285 2580 p2psvc - ok
10:31:14.0305 2580 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
10:31:14.0308 2580 Parport - ok
10:31:14.0331 2580 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:31:14.0333 2580 partmgr - ok
10:31:14.0341 2580 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
10:31:14.0343 2580 Parvdm - ok
10:31:14.0368 2580 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
10:31:14.0373 2580 PcaSvc - ok
10:31:14.0429 2580 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
10:31:14.0433 2580 pci - ok
10:31:14.0441 2580 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
10:31:14.0444 2580 pciide - ok
10:31:14.0459 2580 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:31:14.0464 2580 pcmcia - ok
10:31:14.0497 2580 [ 6C9E2F69D99C025FD5CAB2228E495FA1 ] PCTBD C:\Windows\system32\Drivers\PCTBD.sys
10:31:14.0501 2580 PCTBD - ok
10:31:14.0547 2580 [ F7DA28F2AB6CD32B2F76EE96EDAD8F20 ] PCTCore C:\Windows\system32\drivers\PCTCore.sys
10:31:14.0554 2580 PCTCore - ok
10:31:14.0592 2580 [ 3C9FD593E95B98C642B4486CD122C2FB ] pctDS C:\Windows\system32\drivers\pctDS.sys
10:31:14.0600 2580 pctDS - ok
10:31:14.0620 2580 [ 5E11C0C1BEE956DE9EAAC7ED086D8DB9 ] PCTSD C:\Windows\system32\Drivers\PCTSD.sys
10:31:14.0625 2580 PCTSD - ok
10:31:14.0674 2580 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:31:14.0698 2580 PEAUTH - ok
10:31:14.0756 2580 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
10:31:14.0800 2580 pla - ok
10:31:14.0826 2580 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:31:14.0835 2580 PlugPlay - ok
10:31:14.0872 2580 [ B36CD3F2ECA751C0CA8B8868BD1C5449 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:31:14.0876 2580 Pml Driver HPZ12 - ok
10:31:14.0904 2580 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
10:31:14.0912 2580 PNRPAutoReg - ok
10:31:14.0937 2580 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
10:31:14.0945 2580 PNRPsvc - ok
10:31:14.0962 2580 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:31:14.0971 2580 PolicyAgent - ok
10:31:14.0998 2580 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:31:15.0000 2580 PptpMiniport - ok
10:31:15.0009 2580 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
10:31:15.0011 2580 Processor - ok
10:31:15.0025 2580 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
10:31:15.0032 2580 ProfSvc - ok
10:31:15.0041 2580 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
10:31:15.0044 2580 ProtectedStorage - ok
10:31:15.0078 2580 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
10:31:15.0081 2580 PSched - ok
10:31:15.0136 2580 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:31:15.0169 2580 ql2300 - ok
10:31:15.0181 2580 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:31:15.0184 2580 ql40xx - ok
10:31:15.0213 2580 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
10:31:15.0221 2580 QWAVE - ok
10:31:15.0234 2580 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:31:15.0236 2580 QWAVEdrv - ok
10:31:15.0245 2580 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:31:15.0247 2580 RasAcd - ok
10:31:15.0265 2580 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
10:31:15.0272 2580 RasAuto - ok
10:31:15.0289 2580 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:31:15.0292 2580 Rasl2tp - ok
10:31:15.0325 2580 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
10:31:15.0333 2580 RasMan - ok
10:31:15.0369 2580 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:31:15.0371 2580 RasPppoe - ok
10:31:15.0400 2580 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:31:15.0404 2580 RasSstp - ok
10:31:15.0428 2580 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:31:15.0433 2580 rdbss - ok
10:31:15.0459 2580 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:31:15.0461 2580 RDPCDD - ok
10:31:15.0480 2580 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
10:31:15.0485 2580 rdpdr - ok
10:31:15.0494 2580 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:31:15.0496 2580 RDPENCDD - ok
10:31:15.0532 2580 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:31:15.0537 2580 RDPWD - ok
10:31:15.0565 2580 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:31:15.0570 2580 RemoteAccess - ok
10:31:15.0597 2580 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:31:15.0603 2580 RemoteRegistry - ok
10:31:15.0645 2580 [ 34CC78C06587718C2AD6D3AA83B1F072 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
10:31:15.0647 2580 RFCOMM - ok
10:31:15.0672 2580 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
10:31:15.0676 2580 RpcLocator - ok
10:31:15.0698 2580 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
10:31:15.0706 2580 RpcSs - ok
10:31:15.0723 2580 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:31:15.0726 2580 rspndr - ok
10:31:15.0767 2580 [ F875E277A79EF9D6F3AC89ABB557A689 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
10:31:15.0771 2580 RTL8169 - ok
10:31:15.0822 2580 SABProcEnum - ok
10:31:15.0833 2580 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
10:31:15.0836 2580 SamSs - ok
10:31:15.0914 2580 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
10:31:15.0916 2580 SASDIFSV - ok
10:31:15.0944 2580 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
10:31:15.0947 2580 SASKUTIL - ok
10:31:16.0076 2580 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
10:31:16.0162 2580 SBAMSvc - ok
10:31:16.0189 2580 [ 3FFF8CDA4D2F29CA06F1557E85163C30 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
10:31:16.0190 2580 sbapifs - ok
10:31:16.0236 2580 [ 1AFD7178AB9C4FCE2D332DA7AA474FA6 ] sbhips C:\Windows\system32\drivers\sbhips.sys
10:31:16.0240 2580 sbhips - ok
10:31:16.0265 2580 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:31:16.0269 2580 sbp2port - ok
10:31:16.0312 2580 [ 1FD538C4FEB36B793D2121F20BBDC16F ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
10:31:16.0313 2580 SBRE - ok
10:31:16.0346 2580 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:31:16.0353 2580 SCardSvr - ok
10:31:16.0394 2580 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
10:31:16.0416 2580 Schedule - ok
10:31:16.0441 2580 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
10:31:16.0442 2580 SCPolicySvc - ok
10:31:16.0583 2580 [ CFEB26A26452D5337C2F3AADD8218FC3 ] sdAuxService C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe
10:31:16.0631 2580 sdAuxService - ok
10:31:16.0661 2580 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
10:31:16.0665 2580 sdbus - ok
10:31:16.0717 2580 [ B906C04F469060F2DD7FCB84706B4493 ] sdCoreService C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe
10:31:16.0725 2580 sdCoreService - ok
10:31:16.0759 2580 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:31:16.0766 2580 SDRSVC - ok
10:31:16.0848 2580 [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
10:31:16.0891 2580 SDScannerService - ok
10:31:16.0953 2580 [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
10:31:16.0985 2580 SDUpdateService - ok
10:31:17.0001 2580 [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
10:31:17.0005 2580 SDWSCService - ok
10:31:17.0064 2580 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files\Microsoft\BingBar\SeaPort.EXE
10:31:17.0071 2580 SeaPort - ok
10:31:17.0089 2580 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:31:17.0091 2580 secdrv - ok
10:31:17.0135 2580 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
10:31:17.0142 2580 seclogon - ok
10:31:17.0182 2580 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
10:31:17.0189 2580 SENS - ok
10:31:17.0218 2580 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
10:31:17.0220 2580 Serenum - ok
10:31:17.0235 2580 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
10:31:17.0239 2580 Serial - ok
10:31:17.0256 2580 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:31:17.0258 2580 sermouse - ok
10:31:17.0277 2580 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
10:31:17.0284 2580 SessionEnv - ok
10:31:17.0292 2580 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:31:17.0295 2580 sffdisk - ok
10:31:17.0303 2580 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:31:17.0306 2580 sffp_mmc - ok
10:31:17.0317 2580 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:31:17.0320 2580 sffp_sd - ok
10:31:17.0335 2580 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:31:17.0338 2580 sfloppy - ok
10:31:17.0366 2580 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:31:17.0373 2580 SharedAccess - ok
10:31:17.0409 2580 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:31:17.0418 2580 ShellHWDetection - ok
10:31:17.0433 2580 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
10:31:17.0435 2580 sisagp - ok
10:31:17.0445 2580 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
10:31:17.0448 2580 SiSRaid2 - ok
10:31:17.0458 2580 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:31:17.0462 2580 SiSRaid4 - ok
10:31:17.0520 2580 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
10:31:17.0526 2580 SkypeUpdate - ok
10:31:17.0623 2580 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
10:31:17.0719 2580 slsvc - ok
10:31:17.0747 2580 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
10:31:17.0753 2580 SLUINotify - ok
10:31:17.0776 2580 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:31:17.0778 2580 Smb - ok
10:31:17.0839 2580 [ C8A58FC905C9184FA70E37F71060C64D ] smserial C:\Windows\system32\DRIVERS\smserial.sys
10:31:17.0871 2580 smserial - ok
10:31:17.0896 2580 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:31:17.0902 2580 SNMPTRAP - ok
10:31:17.0975 2580 [ 060F51141B20B8156804446A04AB8B2A ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
10:31:18.0051 2580 SNP2UVC - ok
10:31:18.0062 2580 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
10:31:18.0064 2580 spldr - ok
10:31:18.0089 2580 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
10:31:18.0097 2580 Spooler - ok
10:31:18.0150 2580 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\Windows\system32\Drivers\sptd.sys
10:31:18.0172 2580 sptd - ok
10:31:18.0201 2580 [ B747EA555A72070F258B3E31E1392D62 ] SRS_PremiumSound_Service C:\Windows\system32\drivers\srs_PremiumSound_i386.sys
10:31:18.0206 2580 SRS_PremiumSound_Service - ok
10:31:18.0238 2580 [ 543B82F5846CEF761EE98D727C15D539 ] SRS_VolSync_Service C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe
10:31:18.0255 2580 SRS_VolSync_Service - ok
10:31:18.0294 2580 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:31:18.0301 2580 srv - ok
10:31:18.0333 2580 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:31:18.0337 2580 srv2 - ok
10:31:18.0348 2580 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:31:18.0351 2580 srvnet - ok
10:31:18.0376 2580 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:31:18.0385 2580 SSDPSRV - ok
10:31:18.0398 2580 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:31:18.0405 2580 SstpSvc - ok
10:31:18.0452 2580 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
10:31:18.0474 2580 stisvc - ok
10:31:18.0490 2580 [ 2AA2D356CB735CD3CCA9F671BD75C9B5 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys
10:31:18.0492 2580 SWDUMon - ok
10:31:18.0510 2580 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:31:18.0511 2580 swenum - ok
10:31:18.0543 2580 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
10:31:18.0554 2580 swprv - ok
10:31:18.0567 2580 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
10:31:18.0570 2580 Symc8xx - ok
10:31:18.0584 2580 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
10:31:18.0587 2580 Sym_hi - ok
10:31:18.0599 2580 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
10:31:18.0602 2580 Sym_u3 - ok
10:31:18.0636 2580 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
10:31:18.0658 2580 SysMain - ok
10:31:18.0683 2580 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:31:18.0690 2580 TabletInputService - ok
10:31:18.0711 2580 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:31:18.0721 2580 TapiSrv - ok
10:31:18.0729 2580 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
10:31:18.0734 2580 TBS - ok
10:31:18.0779 2580 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:31:18.0804 2580 Tcpip - ok
10:31:18.0834 2580 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
10:31:18.0841 2580 Tcpip6 - ok
10:31:18.0852 2580 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:31:18.0855 2580 tcpipreg - ok
10:31:18.0866 2580 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:31:18.0878 2580 TDPIPE - ok
10:31:18.0897 2580 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:31:18.0900 2580 TDTCP - ok
10:31:18.0930 2580 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:31:18.0932 2580 tdx - ok
10:31:18.0940 2580 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:31:18.0941 2580 TermDD - ok
10:31:18.0974 2580 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
10:31:18.0986 2580 TermService - ok
10:31:19.0005 2580 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
10:31:19.0011 2580 Themes - ok
10:31:19.0023 2580 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
10:31:19.0026 2580 THREADORDER - ok
10:31:19.0061 2580 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
10:31:19.0069 2580 TrkWks - ok
10:31:19.0118 2580 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:31:19.0152 2580 TrustedInstaller - ok
10:31:19.0173 2580 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:31:19.0175 2580 tssecsrv - ok
10:31:19.0205 2580 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
10:31:19.0207 2580 tunmp - ok
10:31:19.0231 2580 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:31:19.0234 2580 tunnel - ok
10:31:19.0251 2580 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:31:19.0254 2580 uagp35 - ok
10:31:19.0282 2580 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:31:19.0288 2580 udfs - ok
10:31:19.0320 2580 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:31:19.0327 2580 UI0Detect - ok
10:31:19.0342 2580 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:31:19.0346 2580 uliagpkx - ok
10:31:19.0358 2580 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
10:31:19.0364 2580 uliahci - ok
10:31:19.0382 2580 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
10:31:19.0386 2580 UlSata - ok
10:31:19.0398 2580 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
10:31:19.0403 2580 ulsata2 - ok
10:31:19.0483 2580 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:31:19.0486 2580 umbus - ok
10:31:19.0514 2580 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
10:31:19.0524 2580 upnphost - ok
10:31:19.0550 2580 [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
10:31:19.0553 2580 USBAAPL - ok
10:31:19.0595 2580 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:31:19.0599 2580 usbaudio - ok
10:31:19.0625 2580 [ 9419FAAC6552A51542DBBA02971C841C ] usbbus C:\Windows\system32\DRIVERS\lgusbbus.sys
10:31:19.0627 2580 usbbus - ok
10:31:19.0644 2580 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:31:19.0647 2580 usbccgp - ok
10:31:19.0665 2580 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:31:19.0668 2580 usbcir - ok
10:31:19.0700 2580 [ C0A466FA4FFEC464320E159BC1BBDC0C ] UsbDiag C:\Windows\system32\DRIVERS\lgusbdiag.sys
10:31:19.0703 2580 UsbDiag - ok
10:31:19.0724 2580 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:31:19.0726 2580 usbehci - ok
10:31:19.0752 2580 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:31:19.0757 2580 usbhub - ok
10:31:19.0779 2580 [ F74A54774A9B0AFEB3C40ADEC68AA600 ] USBModem C:\Windows\system32\DRIVERS\lgusbmodem.sys
10:31:19.0782 2580 USBModem - ok
10:31:19.0798 2580 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:31:19.0800 2580 usbohci - ok
10:31:19.0832 2580 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:31:19.0834 2580 usbprint - ok
10:31:19.0842 2580 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:31:19.0845 2580 usbscan - ok
10:31:19.0855 2580 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:31:19.0858 2580 USBSTOR - ok
10:31:19.0877 2580 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:31:19.0879 2580 usbuhci - ok
10:31:19.0905 2580 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:31:19.0909 2580 usbvideo - ok
10:31:19.0933 2580 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
10:31:19.0940 2580 UxSms - ok
10:31:19.0973 2580 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
10:31:19.0984 2580 vds - ok
10:31:19.0999 2580 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:31:20.0002 2580 vga - ok
10:31:20.0012 2580 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
10:31:20.0014 2580 VgaSave - ok
10:31:20.0031 2580 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
10:31:20.0034 2580 viaagp - ok
10:31:20.0053 2580 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
10:31:20.0056 2580 ViaC7 - ok
10:31:20.0060 2580 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
10:31:20.0061 2580 viaide - ok
10:31:20.0079 2580 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:31:20.0082 2580 volmgr - ok
10:31:20.0106 2580 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:31:20.0113 2580 volmgrx - ok
10:31:20.0139 2580 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:31:20.0145 2580 volsnap - ok
10:31:20.0165 2580 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:31:20.0169 2580 vsmraid - ok
10:31:20.0203 2580 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
10:31:20.0236 2580 VSS - ok
10:31:20.0266 2580 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
10:31:20.0277 2580 W32Time - ok
10:31:20.0293 2580 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:31:20.0297 2580 WacomPen - ok
10:31:20.0313 2580 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
10:31:20.0315 2580 Wanarp - ok
10:31:20.0318 2580 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:31:20.0319 2580 Wanarpv6 - ok
10:31:20.0340 2580 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:31:20.0352 2580 wcncsvc - ok
10:31:20.0386 2580 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:31:20.0393 2580 WcsPlugInService - ok
10:31:20.0407 2580 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
10:31:20.0410 2580 Wd - ok
10:31:20.0436 2580 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:31:20.0445 2580 Wdf01000 - ok
10:31:20.0463 2580 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:31:20.0470 2580 WdiServiceHost - ok
10:31:20.0473 2580 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:31:20.0479 2580 WdiSystemHost - ok
10:31:20.0505 2580 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
10:31:20.0515 2580 WebClient - ok
10:31:20.0549 2580 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:31:20.0557 2580 Wecsvc - ok
10:31:20.0579 2580 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:31:20.0586 2580 wercplsupport - ok
10:31:20.0617 2580 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
10:31:20.0624 2580 WerSvc - ok
10:31:20.0676 2580 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
10:31:20.0682 2580 WinDefend - ok
10:31:20.0686 2580 WinHttpAutoProxySvc - ok
10:31:20.0718 2580 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:31:20.0795 2580 Winmgmt - ok
10:31:20.0842 2580 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
10:31:20.0886 2580 WinRM - ok
10:31:20.0918 2580 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:31:20.0940 2580 Wlansvc - ok
10:31:21.0036 2580 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:31:21.0040 2580 wlcrasvc - ok
10:31:21.0126 2580 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:31:21.0169 2580 wlidsvc - ok
10:31:21.0207 2580 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:31:21.0209 2580 WmiAcpi - ok
10:31:21.0235 2580 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:31:21.0238 2580 wmiApSrv - ok
10:31:21.0301 2580 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
10:31:21.0334 2580 WMPNetworkSvc - ok
10:31:21.0366 2580 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:31:21.0375 2580 WPCSvc - ok
10:31:21.0402 2580 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:31:21.0409 2580 WPDBusEnum - ok
10:31:21.0446 2580 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
10:31:21.0449 2580 WpdUsb - ok
10:31:21.0556 2580 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:31:21.0589 2580 WPFFontCache_v0400 - ok
10:31:21.0607 2580 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:31:21.0609 2580 ws2ifsl - ok
10:31:21.0633 2580 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
10:31:21.0640 2580 wscsvc - ok
10:31:21.0644 2580 WSearch - ok
10:31:21.0712 2580 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
10:31:21.0778 2580 wuauserv - ok
10:31:21.0804 2580 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:31:21.0807 2580 WUDFRd - ok
10:31:21.0832 2580 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:31:21.0892 2580 wudfsvc - ok
10:31:21.0911 2580 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
10:31:21.0917 2580 yukonwlh - ok
10:31:21.0926 2580 ================ Scan global ===============================
10:31:21.0953 2580 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
10:31:21.0994 2580 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
10:31:22.0013 2580 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
10:31:22.0055 2580 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
10:31:22.0065 2580 [Global] - ok
10:31:22.0066 2580 ================ Scan MBR ==================================
10:31:22.0081 2580 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
10:31:22.0536 2580 \Device\Harddisk0\DR0 - ok
10:31:22.0537 2580 ================ Scan VBR ==================================
10:31:22.0537 2580 [ CFC4432B51EE1577CD1E227FBB4710A0 ] \Device\Harddisk0\DR0\Partition1
10:31:22.0539 2580 \Device\Harddisk0\DR0\Partition1 - ok
10:31:22.0564 2580 [ D82A5498D6293BF3841F4B47A38F50EA ] \Device\Harddisk0\DR0\Partition2
10:31:22.0567 2580 \Device\Harddisk0\DR0\Partition2 - ok
10:31:22.0567 2580 ============================================================
10:31:22.0567 2580 Scan finished
10:31:22.0567 2580 ============================================================
10:31:22.0569 2572 Detected object count: 0
10:31:22.0569 2572 Actual detected object count: 0
10:37:47.0575 2280 ============================================================
10:37:47.0575 2280 Scan started
10:37:47.0575 2280 Mode: Manual; TDLFS;
10:37:47.0575 2280 ============================================================
10:37:50.0993 2280 ================ Scan system memory ========================
10:37:50.0993 2280 System memory - ok
10:37:50.0993 2280 ================ Scan services =============================
10:37:51.0115 2280 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
10:37:51.0116 2280 !SASCORE - ok
10:37:52.0079 2280 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
10:37:52.0082 2280 ACPI - ok
10:37:52.0294 2280 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
10:37:52.0304 2280 Ad-Aware Service - ok
10:37:52.0472 2280 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
10:37:52.0473 2280 AdobeARMservice - ok
10:37:52.0559 2280 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:37:52.0563 2280 adp94xx - ok
10:37:52.0590 2280 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:37:52.0593 2280 adpahci - ok
10:37:52.0608 2280 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
10:37:52.0609 2280 adpu160m - ok
10:37:52.0659 2280 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:37:52.0660 2280 adpu320 - ok
10:37:52.0746 2280 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
10:37:52.0748 2280 ADSMService - ok
10:37:52.0770 2280 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:37:52.0771 2280 AeLookupSvc - ok
10:37:52.0849 2280 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
10:37:52.0851 2280 AFD - ok
10:37:52.0940 2280 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:37:52.0941 2280 agp440 - ok
10:37:52.0986 2280 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
10:37:52.0995 2280 aic78xx - ok
10:37:53.0041 2280 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
10:37:53.0043 2280 ALG - ok
10:37:53.0070 2280 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
10:37:53.0071 2280 aliide - ok
10:37:53.0083 2280 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
10:37:53.0085 2280 amdagp - ok
10:37:53.0105 2280 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
10:37:53.0106 2280 amdide - ok
10:37:53.0128 2280 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
10:37:53.0129 2280 AmdK7 - ok
10:37:53.0143 2280 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
10:37:53.0144 2280 AmdK8 - ok
10:37:53.0197 2280 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
10:37:53.0199 2280 Appinfo - ok
10:37:53.0383 2280 [ 70D7BE78061126DD0C3ACCDB7E129017 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:37:53.0385 2280 Apple Mobile Device - ok
10:37:53.0442 2280 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
10:37:53.0444 2280 arc - ok
10:37:53.0464 2280 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:37:53.0465 2280 arcsas - ok
10:37:53.0477 2280 [ 104DB777372411C55850C4A2AE6877EF ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
10:37:53.0479 2280 AsDsm - ok
10:37:53.0559 2280 [ EB1807795CD3EEAA3288B4A30DE254E8 ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
10:37:53.0560 2280 ASLDRService - ok
10:37:53.0621 2280 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
10:37:53.0622 2280 ASMMAP - ok
10:37:53.0672 2280 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
10:37:53.0673 2280 aswFsBlk - ok
10:37:53.0695 2280 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
10:37:53.0696 2280 aswMonFlt - ok
10:37:53.0741 2280 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
10:37:53.0742 2280 AswRdr - ok
10:37:53.0894 2280 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
10:37:53.0900 2280 aswSnx - ok
10:37:53.0978 2280 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
10:37:53.0982 2280 aswSP - ok
10:37:53.0997 2280 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
10:37:53.0998 2280 aswTdi - ok
10:37:54.0010 2280 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:37:54.0011 2280 AsyncMac - ok
10:37:54.0054 2280 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
10:37:54.0055 2280 atapi - ok
10:37:54.0254 2280 [ 8309BF4D39DAA99E5035B58C7B1533D9 ] athr C:\Windows\system32\DRIVERS\athr.sys
10:37:54.0271 2280 athr - ok
10:37:54.0306 2280 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
10:37:54.0307 2280 ATKGFNEXSrv - ok
10:37:54.0376 2280 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:37:54.0379 2280 AudioEndpointBuilder - ok
10:37:54.0474 2280 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
10:37:54.0477 2280 Audiosrv - ok
10:37:57.0290 2280 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:37:57.0291 2280 avast! Antivirus - ok
10:37:57.0407 2280 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
10:37:57.0409 2280 BBSvc - ok
10:37:57.0477 2280 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
10:37:57.0478 2280 Beep - ok
10:37:57.0549 2280 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
10:37:57.0553 2280 BFE - ok
10:37:57.0704 2280 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
10:37:57.0714 2280 BITS - ok
10:37:57.0800 2280 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
10:37:57.0801 2280 blbdrive - ok
10:37:58.0374 2280 [ 1C87705CCB2F60172B0FC86B5D82F00D ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:37:58.0377 2280 Bonjour Service - ok
10:37:58.0526 2280 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:37:58.0527 2280 bowser - ok
10:37:58.0562 2280 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
10:37:58.0563 2280 BrFiltLo - ok
10:37:58.0758 2280 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
10:37:58.0759 2280 BrFiltUp - ok
10:37:58.0851 2280 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
10:37:58.0852 2280 Browser - ok
10:37:59.0451 2280 [ 7EFFCCD7B6EA4D3428F5B3ACE8DE8F5A ] Browser Defender Update Service C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
10:37:59.0456 2280 Browser Defender Update Service - ok
10:37:59.0514 2280 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
10:37:59.0515 2280 Brserid - ok
10:37:59.0583 2280 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
10:37:59.0584 2280 BrSerWdm - ok
10:37:59.0641 2280 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
10:37:59.0641 2280 BrUsbMdm - ok
10:37:59.0715 2280 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
10:37:59.0716 2280 BrUsbSer - ok
10:37:59.0787 2280 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc C:\Program Files\Browny02\BrYNSvc.exe
10:37:59.0789 2280 BrYNSvc - ok
10:37:59.0837 2280 [ DA7B195275BDA7F8FCF79B40E0F45DDE ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
10:37:59.0838 2280 BthEnum - ok
10:37:59.0884 2280 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:37:59.0885 2280 BTHMODEM - ok
10:37:59.0913 2280 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
10:37:59.0915 2280 BthPan - ok
10:37:59.0943 2280 [ 671134053D59E23704F08DB19F11E10B ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
10:37:59.0945 2280 BTHPORT - ok
10:37:59.0983 2280 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
10:37:59.0984 2280 BthServ - ok
10:38:00.0033 2280 [ 93D7007E2C660DFCCA6AE72622740B14 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
10:38:00.0034 2280 BTHUSB - ok
10:38:00.0075 2280 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:38:00.0077 2280 cdfs - ok
10:38:00.0111 2280 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:38:00.0113 2280 cdrom - ok
10:38:00.0177 2280 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
10:38:00.0178 2280 CertPropSvc - ok
10:38:00.0266 2280 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
10:38:00.0267 2280 circlass - ok
10:38:00.0319 2280 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
10:38:00.0322 2280 CLFS - ok
10:38:01.0423 2280 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:38:01.0424 2280 clr_optimization_v2.0.50727_32 - ok
10:38:01.0619 2280 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:38:01.0622 2280 clr_optimization_v4.0.30319_32 - ok
10:38:01.0705 2280 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:38:01.0706 2280 CmBatt - ok
10:38:01.0721 2280 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:38:01.0722 2280 cmdide - ok
10:38:01.0743 2280 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:38:01.0744 2280 Compbatt - ok
10:38:01.0751 2280 COMSysApp - ok
10:38:01.0763 2280 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:38:01.0765 2280 crcdisk - ok
10:38:01.0830 2280 [ D18893845AE1C5833B5B2EA9B7F5C670 ] CRFILTER C:\Windows\system32\DRIVERS\CRFILTER.sys
10:38:01.0831 2280 CRFILTER - ok
10:38:01.0861 2280 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
10:38:01.0862 2280 Crusoe - ok
10:38:01.0951 2280 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:38:01.0953 2280 CryptSvc - ok
10:38:02.0125 2280 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:38:02.0133 2280 DcomLaunch - ok
10:38:02.0194 2280 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:38:02.0195 2280 DfsC - ok
10:38:02.0574 2280 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
10:38:02.0590 2280 DFSR - ok
10:38:02.0687 2280 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
10:38:02.0690 2280 Dhcp - ok
10:38:02.0728 2280 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
10:38:02.0729 2280 disk - ok
10:38:02.0763 2280 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:38:02.0766 2280 Dnscache - ok
10:38:03.0482 2280 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:38:03.0485 2280 dot3svc - ok
10:38:03.0675 2280 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:38:03.0676 2280 Dot4 - ok
10:38:03.0780 2280 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:38:03.0781 2280 Dot4Print - ok
10:38:03.0856 2280 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:38:03.0857 2280 dot4usb - ok
10:38:03.0899 2280 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
10:38:03.0902 2280 DPS - ok
10:38:03.0986 2280 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:38:03.0986 2280 drmkaud - ok
10:38:04.0074 2280 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:38:04.0079 2280 DXGKrnl - ok
10:38:04.0129 2280 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
10:38:04.0131 2280 E1G60 - ok
10:38:04.0408 2280 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
10:38:04.0410 2280 EapHost - ok
10:38:04.0494 2280 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
10:38:04.0496 2280 Ecache - ok
10:38:04.0610 2280 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:38:04.0613 2280 ehRecvr - ok
10:38:04.0667 2280 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
10:38:04.0669 2280 ehSched - ok
10:38:04.0722 2280 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
10:38:04.0722 2280 ehstart - ok
10:38:04.0946 2280 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:38:04.0949 2280 elxstor - ok
10:38:05.0477 2280 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
10:38:05.0483 2280 EMDMgmt - ok
10:38:05.0551 2280 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:38:05.0552 2280 ErrDev - ok
10:38:05.0635 2280 esgiguard - ok
10:38:05.0685 2280 [ A3C6F71F387BBB25C9E50390B4E4606E ] ETD C:\Windows\system32\DRIVERS\ETD.sys
10:38:05.0686 2280 ETD - ok
10:38:06.0041 2280 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
10:38:06.0045 2280 EventSystem - ok
10:38:06.0161 2280 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
10:38:06.0163 2280 exfat - ok
10:38:06.0389 2280 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:38:06.0391 2280 fastfat - ok
10:38:06.0460 2280 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:38:06.0460 2280 fdc - ok
10:38:06.0540 2280 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
10:38:06.0542 2280 fdPHost - ok
10:38:06.0565 2280 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
10:38:06.0568 2280 FDResPub - ok
10:38:06.0585 2280 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:38:06.0586 2280 FileInfo - ok
10:38:06.0649 2280 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:38:06.0650 2280 Filetrace - ok
10:38:06.0666 2280 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:38:06.0667 2280 flpydisk - ok
10:38:06.0736 2280 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:38:06.0842 2280 FltMgr - ok
10:38:06.0985 2280 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
10:38:06.0992 2280 FontCache - ok
10:38:07.0298 2280 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:38:07.0300 2280 FontCache3.0.0.0 - ok
10:38:07.0330 2280 [ B0082808A6856A252F7CDD939892CE50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:38:07.0331 2280 fssfltr - ok
10:38:07.0464 2280 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
10:38:07.0475 2280 fsssvc - ok
10:38:07.0519 2280 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:38:07.0520 2280 Fs_Rec - ok
10:38:07.0565 2280 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:38:07.0566 2280 gagp30kx - ok
10:38:07.0639 2280 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:38:07.0640 2280 GEARAspiWDM - ok
10:38:07.0691 2280 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
10:38:07.0698 2280 gpsvc - ok
10:38:07.0844 2280 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
10:38:07.0846 2280 gupdate - ok
10:38:07.0853 2280 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
10:38:07.0855 2280 gupdatem - ok
10:38:07.0894 2280 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
10:38:07.0896 2280 gusvc - ok
10:38:07.0947 2280 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:38:07.0950 2280 HdAudAddService - ok
10:38:08.0467 2280 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:38:08.0471 2280 HDAudBus - ok
10:38:08.0522 2280 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:38:08.0523 2280 HidBth - ok
10:38:08.0584 2280 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
10:38:08.0584 2280 HidIr - ok
10:38:08.0671 2280 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
10:38:08.0673 2280 hidserv - ok
10:38:08.0731 2280 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:38:08.0735 2280 HidUsb - ok
10:38:08.0807 2280 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:38:08.0811 2280 hkmsvc - ok
10:38:08.0852 2280 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
10:38:08.0853 2280 HpCISSs - ok
10:38:09.0379 2280 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
10:38:09.0382 2280 hpqcxs08 - ok
10:38:09.0430 2280 [ DF446BA625CC441617843E87798CE048 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
10:38:09.0432 2280 hpqddsvc - ok
10:38:09.0534 2280 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:38:09.0538 2280 HTTP - ok
10:38:09.0563 2280 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
10:38:09.0564 2280 i2omp - ok
10:38:09.0584 2280 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:38:09.0585 2280 i8042prt - ok
10:38:09.0617 2280 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
10:38:09.0620 2280 iaStorV - ok
10:38:09.0762 2280 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:38:09.0769 2280 idsvc - ok
10:38:09.0817 2280 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:38:09.0819 2280 iirsp - ok
10:38:09.0902 2280 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
10:38:09.0908 2280 IKEEXT - ok
10:38:10.0013 2280 [ 9ED3CF7322A49DAC3ECA62BB9928CA54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
10:38:10.0030 2280 IntcAzAudAddService - ok
10:38:10.0069 2280 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
10:38:10.0070 2280 intelide - ok
10:38:10.0088 2280 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:38:10.0089 2280 intelppm - ok
10:38:10.0125 2280 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:38:10.0129 2280 IPBusEnum - ok
10:38:10.0151 2280 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:38:10.0152 2280 IpFilterDriver - ok
10:38:10.0187 2280 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:38:10.0192 2280 iphlpsvc - ok
10:38:10.0199 2280 IpInIp - ok
10:38:10.0235 2280 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
10:38:10.0237 2280 IPMIDRV - ok
10:38:10.0260 2280 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
10:38:10.0262 2280 IPNAT - ok
10:38:10.0311 2280 [ DCB3796E0169419618C72F0CE34C68ED ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:38:10.0317 2280 iPod Service - ok
10:38:10.0333 2280 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:38:10.0334 2280 IRENUM - ok
10:38:10.0356 2280 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:38:10.0357 2280 isapnp - ok
10:38:10.0388 2280 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:38:10.0390 2280 iScsiPrt - ok
10:38:10.0408 2280 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
10:38:10.0409 2280 iteatapi - ok
10:38:10.0436 2280 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
10:38:10.0437 2280 iteraid - ok
10:38:10.0460 2280 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:38:10.0461 2280 kbdclass - ok
10:38:10.0482 2280 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:38:10.0483 2280 kbdhid - ok
10:38:10.0504 2280 [ 7F2B8D0B31FB4A797E5786EF124C5A80 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
10:38:10.0505 2280 kbfiltr - ok
10:38:10.0542 2280 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
10:38:10.0546 2280 KeyIso - ok
10:38:10.0587 2280 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:38:10.0591 2280 KSecDD - ok
10:38:10.0636 2280 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
10:38:10.0642 2280 KtmRm - ok
10:38:10.0676 2280 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
10:38:10.0682 2280 LanmanServer - ok
10:38:10.0712 2280 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:38:10.0719 2280 LanmanWorkstation - ok
10:38:10.0758 2280 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
10:38:10.0759 2280 LightScribeService - ok
10:38:10.0781 2280 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:38:10.0783 2280 lltdio - ok
10:38:10.0825 2280 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:38:10.0830 2280 lltdsvc - ok
10:38:10.0854 2280 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:38:10.0858 2280 lmhosts - ok
10:38:10.0887 2280 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:38:10.0888 2280 LSI_FC - ok
10:38:10.0901 2280 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:38:10.0902 2280 LSI_SAS - ok
10:38:10.0922 2280 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:38:10.0924 2280 LSI_SCSI - ok
10:38:10.0947 2280 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
10:38:10.0949 2280 luafv - ok
10:38:10.0978 2280 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:38:10.0979 2280 MBAMProtector - ok
10:38:11.0047 2280 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:38:11.0051 2280 MBAMScheduler - ok
10:38:11.0093 2280 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
10:38:11.0098 2280 MBAMService - ok
10:38:11.0132 2280 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:38:11.0135 2280 Mcx2Svc - ok
10:38:11.0169 2280 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
10:38:11.0170 2280 megasas - ok
10:38:11.0193 2280 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
10:38:11.0197 2280 MegaSR - ok
10:38:11.0295 2280 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
10:38:11.0297 2280 Microsoft Office Groove Audit Service - ok
10:38:11.0376 2280 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
10:38:11.0379 2280 MMCSS - ok
10:38:11.0423 2280 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
10:38:11.0424 2280 Modem - ok
10:38:11.0461 2280 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:38:11.0462 2280 monitor - ok
10:38:11.0520 2280 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:38:11.0521 2280 mouclass - ok
10:38:11.0709 2280 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:38:11.0710 2280 mouhid - ok
10:38:11.0819 2280 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
10:38:11.0821 2280 MountMgr - ok
10:38:11.0897 2280 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
10:38:11.0899 2280 mpio - ok
10:38:11.0917 2280 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:38:11.0919 2280 mpsdrv - ok
10:38:12.0002 2280 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
10:38:12.0008 2280 MpsSvc - ok
10:38:12.0051 2280 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
10:38:12.0052 2280 Mraid35x - ok
10:38:12.0093 2280 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:38:12.0094 2280 MRxDAV - ok
10:38:12.0123 2280 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:38:12.0125 2280 mrxsmb - ok
10:38:12.0219 2280 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:38:12.0221 2280 mrxsmb10 - ok
10:38:12.0237 2280 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:38:12.0238 2280 mrxsmb20 - ok
10:38:12.0259 2280 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
10:38:12.0260 2280 msahci - ok
10:38:12.0285 2280 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:38:12.0287 2280 msdsm - ok
10:38:12.0311 2280 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
10:38:12.0315 2280 MSDTC - ok
10:38:12.0339 2280 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:38:12.0340 2280 Msfs - ok
10:38:12.0368 2280 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:38:12.0369 2280 msisadrv - ok
10:38:12.0398 2280 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:38:12.0402 2280 MSiSCSI - ok
10:38:12.0409 2280 msiserver - ok
10:38:12.0429 2280 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:38:12.0430 2280 MSKSSRV - ok
10:38:12.0441 2280 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:38:12.0442 2280 MSPCLOCK - ok
10:38:12.0456 2280 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:38:12.0457 2280 MSPQM - ok
10:38:12.0510 2280 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:38:12.0512 2280 MsRPC - ok
10:38:12.0582 2280 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:38:12.0584 2280 mssmbios - ok
10:38:12.0597 2280 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:38:12.0599 2280 MSTEE - ok
10:38:12.0636 2280 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
10:38:12.0637 2280 MTsensor - ok
10:38:12.0688 2280 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
10:38:12.0696 2280 Mup - ok
10:38:12.0747 2280 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
10:38:12.0761 2280 napagent - ok
10:38:12.0809 2280 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:38:12.0811 2280 NativeWifiP - ok
10:38:12.0891 2280 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:38:12.0895 2280 NDIS - ok
10:38:12.0921 2280 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:38:12.0922 2280 NdisTapi - ok
10:38:12.0945 2280 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:38:12.0946 2280 Ndisuio - ok
10:38:13.0011 2280 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:38:13.0012 2280 NdisWan - ok
10:38:13.0026 2280 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:38:13.0027 2280 NDProxy - ok
10:38:13.0083 2280 [ 19715A9A573DAD2521348ABC74266A48 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:38:13.0085 2280 Net Driver HPZ12 - ok
10:38:13.0100 2280 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:38:13.0102 2280 NetBIOS - ok
10:38:13.0148 2280 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
10:38:13.0149 2280 netbt - ok
10:38:13.0172 2280 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
10:38:13.0175 2280 Netlogon - ok
10:38:13.0273 2280 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
10:38:13.0278 2280 Netman - ok
10:38:13.0325 2280 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
10:38:13.0330 2280 netprofm - ok
10:38:13.0420 2280 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:38:13.0422 2280 NetTcpPortSharing - ok
10:38:13.0459 2280 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:38:13.0460 2280 nfrd960 - ok
10:38:13.0507 2280 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:38:13.0512 2280 NlaSvc - ok
10:38:13.0558 2280 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:38:13.0559 2280 Npfs - ok
10:38:13.0578 2280 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
10:38:13.0582 2280 nsi - ok
10:38:13.0625 2280 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:38:13.0626 2280 nsiproxy - ok
10:38:13.0721 2280 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:38:13.0729 2280 Ntfs - ok
10:38:13.0778 2280 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
10:38:13.0780 2280 ntrigdigi - ok
10:38:13.0820 2280 [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
10:38:13.0821 2280 NuidFltr - ok
10:38:13.0854 2280 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
10:38:13.0856 2280 Null - ok
10:38:14.0864 2280 [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:38:14.0939 2280 nvlddmkm - ok
10:38:15.0033 2280 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:38:15.0034 2280 nvraid - ok
10:38:15.0068 2280 [ AF1BD777AF00E96C45C77192D7453369 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
10:38:15.0070 2280 nvsmu - ok
10:38:15.0105 2280 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:38:15.0106 2280 nvstor - ok
10:38:15.0189 2280 [ BB4DD678706510D9249EED1DA0219900 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
10:38:15.0191 2280 nvstor32 - ok
10:38:15.0244 2280 [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc C:\Windows\system32\nvvsvc.exe
10:38:15.0257 2280 nvsvc - ok
10:38:15.0289 2280 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:38:15.0291 2280 nv_agp - ok
10:38:15.0300 2280 NwlnkFlt - ok
10:38:15.0331 2280 NwlnkFwd - ok
10:38:15.0421 2280 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:38:15.0425 2280 odserv - ok
10:38:15.0961 2280 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
10:38:15.0962 2280 ohci1394 - ok
10:38:16.0004 2280 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:38:16.0005 2280 ose - ok
10:38:16.0052 2280 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
10:38:16.0067 2280 p2pimsvc - ok
10:38:16.0099 2280 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
10:38:16.0107 2280 p2psvc - ok
10:38:16.0134 2280 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
10:38:16.0136 2280 Parport - ok
10:38:16.0171 2280 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:38:16.0172 2280 partmgr - ok
10:38:16.0192 2280 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
10:38:16.0193 2280 Parvdm - ok
10:38:16.0220 2280 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
10:38:16.0224 2280 PcaSvc - ok
10:38:16.0258 2280 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
10:38:16.0259 2280 pci - ok
10:38:16.0282 2280 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
10:38:16.0283 2280 pciide - ok
10:38:16.0317 2280 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:38:16.0319 2280 pcmcia - ok
10:38:16.0359 2280 [ 6C9E2F69D99C025FD5CAB2228E495FA1 ] PCTBD C:\Windows\system32\Drivers\PCTBD.sys
10:38:16.0360 2280 PCTBD - ok
10:38:16.0398 2280 [ F7DA28F2AB6CD32B2F76EE96EDAD8F20 ] PCTCore C:\Windows\system32\drivers\PCTCore.sys
10:38:16.0402 2280 PCTCore - ok
10:38:16.0445 2280 [ 3C9FD593E95B98C642B4486CD122C2FB ] pctDS C:\Windows\system32\drivers\pctDS.sys
10:38:16.0448 2280 pctDS - ok
10:38:16.0493 2280 [ 5E11C0C1BEE956DE9EAAC7ED086D8DB9 ] PCTSD C:\Windows\system32\Drivers\PCTSD.sys
10:38:16.0504 2280 PCTSD - ok
10:38:16.0566 2280 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:38:16.0573 2280 PEAUTH - ok
10:38:16.0675 2280 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
10:38:16.0696 2280 pla - ok
10:38:16.0732 2280 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:38:16.0739 2280 PlugPlay - ok
10:38:16.0756 2280 [ B36CD3F2ECA751C0CA8B8868BD1C5449 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:38:16.0759 2280 Pml Driver HPZ12 - ok
10:38:16.0789 2280 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
10:38:16.0797 2280 PNRPAutoReg - ok
10:38:16.0833 2280 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
10:38:16.0841 2280 PNRPsvc - ok
10:38:16.0869 2280 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:38:16.0881 2280 PolicyAgent - ok
10:38:16.0915 2280 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:38:16.0916 2280 PptpMiniport - ok
10:38:16.0940 2280 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
10:38:16.0941 2280 Processor - ok
10:38:16.0964 2280 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
10:38:16.0970 2280 ProfSvc - ok
10:38:16.0993 2280 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
10:38:16.0997 2280 ProtectedStorage - ok
10:38:17.0050 2280 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
10:38:17.0052 2280 PSched - ok
10:38:17.0149 2280 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:38:17.0158 2280 ql2300 - ok
10:38:17.0186 2280 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:38:17.0188 2280 ql40xx - ok
10:38:17.0229 2280 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
10:38:17.0235 2280 QWAVE - ok
10:38:17.0294 2280 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:38:17.0295 2280 QWAVEdrv - ok
10:38:17.0316 2280 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:38:17.0317 2280 RasAcd - ok
10:38:17.0337 2280 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
10:38:17.0342 2280 RasAuto - ok
10:38:17.0393 2280 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:38:17.0395 2280 Rasl2tp - ok
10:38:17.0452 2280 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
10:38:17.0458 2280 RasMan - ok
10:38:17.0495 2280 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:38:17.0497 2280 RasPppoe - ok
10:38:17.0527 2280 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:38:17.0529 2280 RasSstp - ok
10:38:17.0578 2280 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:38:17.0581 2280 rdbss - ok
10:38:17.0626 2280 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:38:17.0627 2280 RDPCDD - ok
10:38:17.0673 2280 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
10:38:17.0676 2280 rdpdr - ok
10:38:17.0691 2280 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:38:17.0692 2280 RDPENCDD - ok
10:38:17.0769 2280 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:38:17.0771 2280 RDPWD - ok
10:38:17.0813 2280 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:38:17.0817 2280 RemoteAccess - ok
10:38:17.0855 2280 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:38:17.0860 2280 RemoteRegistry - ok
10:38:17.0925 2280 [ 34CC78C06587718C2AD6D3AA83B1F072 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
10:38:17.0926 2280 RFCOMM - ok
10:38:17.0963 2280 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
10:38:17.0967 2280 RpcLocator - ok
10:38:18.0010 2280 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
10:38:18.0019 2280 RpcSs - ok
10:38:18.0048 2280 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:38:18.0050 2280 rspndr - ok
10:38:18.0148 2280 [ F875E277A79EF9D6F3AC89ABB557A689 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
10:38:18.0150 2280 RTL8169 - ok
10:38:18.0190 2280 SABProcEnum - ok
10:38:18.0213 2280 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
10:38:18.0216 2280 SamSs - ok
10:38:18.0327 2280 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
10:38:18.0328 2280 SASDIFSV - ok
10:38:18.0368 2280 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
10:38:18.0369 2280 SASKUTIL - ok
10:38:18.0766 2280 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
10:38:18.0788 2280 SBAMSvc - ok
10:38:18.0855 2280 [ 3FFF8CDA4D2F29CA06F1557E85163C30 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
10:38:18.0856 2280 sbapifs - ok
10:38:18.0902 2280 [ 1AFD7178AB9C4FCE2D332DA7AA474FA6 ] sbhips C:\Windows\system32\drivers\sbhips.sys
10:38:18.0904 2280 sbhips - ok
10:38:18.0953 2280 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:38:18.0955 2280 sbp2port - ok
10:38:18.0989 2280 [ 1FD538C4FEB36B793D2121F20BBDC16F ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
10:38:18.0990 2280 SBRE - ok
10:38:19.0034 2280 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:38:19.0040 2280 SCardSvr - ok
10:38:19.0096 2280 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
10:38:19.0105 2280 Schedule - ok
10:38:19.0140 2280 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
10:38:19.0141 2280 SCPolicySvc - ok
10:38:19.0473 2280 [ CFEB26A26452D5337C2F3AADD8218FC3 ] sdAuxService C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe
10:38:19.0477 2280 sdAuxService - ok
10:38:19.0551 2280 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
10:38:19.0552 2280 sdbus - ok
10:38:19.0858 2280 [ B906C04F469060F2DD7FCB84706B4493 ] sdCoreService C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe
10:38:19.0867 2280 sdCoreService - ok
10:38:19.0941 2280 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:38:19.0947 2280 SDRSVC - ok
10:38:20.0162 2280 [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
10:38:20.0171 2280 SDScannerService - ok
10:38:20.0540 2280 [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
10:38:20.0550 2280 SDUpdateService - ok
10:38:20.0637 2280 [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
10:38:20.0639 2280 SDWSCService - ok
10:38:20.0988 2280 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files\Microsoft\BingBar\SeaPort.EXE
10:38:20.0990 2280 SeaPort - ok
10:38:21.0020 2280 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:38:21.0022 2280 secdrv - ok
10:38:21.0088 2280 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
10:38:21.0093 2280 seclogon - ok
10:38:21.0136 2280 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
10:38:21.0141 2280 SENS - ok
10:38:21.0182 2280 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
10:38:21.0184 2280 Serenum - ok
10:38:21.0233 2280 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
10:38:21.0240 2280 Serial - ok
10:38:21.0287 2280 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:38:21.0288 2280 sermouse - ok
10:38:21.0418 2280 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
10:38:21.0423 2280 SessionEnv - ok
10:38:21.0488 2280 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:38:21.0489 2280 sffdisk - ok
10:38:21.0774 2280 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:38:21.0775 2280 sffp_mmc - ok
10:38:21.0832 2280 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:38:21.0834 2280 sffp_sd - ok
10:38:21.0872 2280 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:38:21.0873 2280 sfloppy - ok
10:38:21.0961 2280 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:38:21.0966 2280 SharedAccess - ok
10:38:22.0058 2280 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:38:22.0064 2280 ShellHWDetection - ok
10:38:22.0112 2280 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
10:38:22.0116 2280 sisagp - ok
10:38:22.0158 2280 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
10:38:22.0160 2280 SiSRaid2 - ok
10:38:22.0204 2280 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:38:22.0205 2280 SiSRaid4 - ok
10:38:22.0434 2280 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
10:38:22.0436 2280 SkypeUpdate - ok
10:38:22.0570 2280 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
10:38:22.0630 2280 slsvc - ok
10:38:22.0738 2280 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
10:38:22.0743 2280 SLUINotify - ok
10:38:22.0797 2280 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:38:22.0798 2280 Smb - ok
10:38:22.0971 2280 [ C8A58FC905C9184FA70E37F71060C64D ] smserial C:\Windows\system32\DRIVERS\smserial.sys
10:38:22.0979 2280 smserial - ok
10:38:23.0038 2280 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:38:23.0044 2280 SNMPTRAP - ok
10:38:23.0354 2280 [ 060F51141B20B8156804446A04AB8B2A ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
10:38:23.0366 2280 SNP2UVC - ok
10:38:23.0490 2280 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
10:38:23.0491 2280 spldr - ok
10:38:23.0540 2280 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
10:38:23.0546 2280 Spooler - ok
10:38:23.0745 2280 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\Windows\system32\Drivers\sptd.sys
10:38:23.0751 2280 sptd - ok
10:38:23.0807 2280 [ B747EA555A72070F258B3E31E1392D62 ] SRS_PremiumSound_Service C:\Windows\system32\drivers\srs_PremiumSound_i386.sys
10:38:23.0810 2280 SRS_PremiumSound_Service - ok
10:38:23.0931 2280 [ 543B82F5846CEF761EE98D727C15D539 ] SRS_VolSync_Service C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe
10:38:23.0933 2280 SRS_VolSync_Service - ok
10:38:24.0001 2280 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:38:24.0004 2280 srv - ok
10:38:24.0054 2280 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:38:24.0057 2280 srv2 - ok
10:38:24.0095 2280 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:38:24.0097 2280 srvnet - ok
10:38:24.0170 2280 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:38:24.0175 2280 SSDPSRV - ok
10:38:24.0211 2280 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:38:24.0218 2280 SstpSvc - ok
10:38:24.0288 2280 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
10:38:24.0296 2280 stisvc - ok
10:38:24.0381 2280 [ 2AA2D356CB735CD3CCA9F671BD75C9B5 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys
10:38:24.0382 2280 SWDUMon - ok
10:38:24.0412 2280 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:38:24.0413 2280 swenum - ok
10:38:24.0459 2280 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
10:38:24.0468 2280 swprv - ok
10:38:24.0502 2280 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
10:38:24.0503 2280 Symc8xx - ok
10:38:24.0540 2280 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
10:38:24.0542 2280 Sym_hi - ok
10:38:24.0600 2280 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
10:38:24.0601 2280 Sym_u3 - ok
10:38:24.0651 2280 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
10:38:24.0661 2280 SysMain - ok
10:38:24.0738 2280 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:38:24.0744 2280 TabletInputService - ok
10:38:24.0790 2280 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:38:24.0797 2280 TapiSrv - ok
10:38:24.0883 2280 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
10:38:24.0890 2280 TBS - ok
10:38:25.0048 2280 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:38:25.0055 2280 Tcpip - ok
10:38:25.0115 2280 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
10:38:25.0127 2280 Tcpip6 - ok
10:38:25.0161 2280 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:38:25.0162 2280 tcpipreg - ok
10:38:25.0186 2280 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:38:25.0187 2280 TDPIPE - ok
10:38:25.0227 2280 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:38:25.0228 2280 TDTCP - ok
10:38:25.0293 2280 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:38:25.0295 2280 tdx - ok
10:38:25.0315 2280 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:38:25.0316 2280 TermDD - ok
10:38:25.0394 2280 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
10:38:25.0402 2280 TermService - ok
10:38:25.0448 2280 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
10:38:25.0454 2280 Themes - ok
10:38:25.0496 2280 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
10:38:25.0500 2280 THREADORDER - ok
10:38:25.0535 2280 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
10:38:25.0541 2280 TrkWks - ok
10:38:25.0592 2280 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:38:25.0593 2280 TrustedInstaller - ok
10:38:25.0624 2280 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:38:25.0626 2280 tssecsrv - ok
10:38:25.0646 2280 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
10:38:25.0647 2280 tunmp - ok
10:38:25.0672 2280 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:38:25.0674 2280 tunnel - ok
10:38:25.0691 2280 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:38:25.0693 2280 uagp35 - ok
10:38:25.0723 2280 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:38:25.0726 2280 udfs - ok
10:38:25.0760 2280 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:38:25.0766 2280 UI0Detect - ok
10:38:25.0794 2280 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:38:25.0796 2280 uliagpkx - ok
10:38:25.0821 2280 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
10:38:25.0823 2280 uliahci - ok
10:38:25.0844 2280 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
10:38:25.0846 2280 UlSata - ok
10:38:25.0860 2280 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
10:38:25.0862 2280 ulsata2 - ok
10:38:25.0879 2280 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:38:25.0881 2280 umbus - ok
10:38:25.0911 2280 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
10:38:25.0918 2280 upnphost - ok
10:38:25.0947 2280 [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
10:38:25.0948 2280 USBAAPL - ok
10:38:25.0981 2280 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:38:25.0982 2280 usbaudio - ok
10:38:26.0010 2280 [ 9419FAAC6552A51542DBBA02971C841C ] usbbus C:\Windows\system32\DRIVERS\lgusbbus.sys
10:38:26.0011 2280 usbbus - ok
10:38:26.0041 2280 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:38:26.0042 2280 usbccgp - ok
10:38:26.0062 2280 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:38:26.0063 2280 usbcir - ok
10:38:26.0108 2280 [ C0A466FA4FFEC464320E159BC1BBDC0C ] UsbDiag C:\Windows\system32\DRIVERS\lgusbdiag.sys
10:38:26.0109 2280 UsbDiag - ok
10:38:26.0142 2280 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:38:26.0144 2280 usbehci - ok
10:38:26.0194 2280 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:38:26.0196 2280 usbhub - ok
10:38:26.0231 2280 [ F74A54774A9B0AFEB3C40ADEC68AA600 ] USBModem C:\Windows\system32\DRIVERS\lgusbmodem.sys
10:38:26.0232 2280 USBModem - ok
10:38:26.0272 2280 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:38:26.0273 2280 usbohci - ok
10:38:26.0306 2280 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:38:26.0307 2280 usbprint - ok
10:38:26.0349 2280 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:38:26.0350 2280 usbscan - ok
10:38:26.0406 2280 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:38:26.0407 2280 USBSTOR - ok
10:38:26.0515 2280 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:38:26.0517 2280 usbuhci - ok
10:38:26.0546 2280 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:38:26.0548 2280 usbvideo - ok
10:38:26.0649 2280 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
10:38:26.0655 2280 UxSms - ok
10:38:26.0819 2280 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
10:38:26.0827 2280 vds - ok
10:38:26.0902 2280 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:38:26.0903 2280 vga - ok
10:38:27.0036 2280 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
10:38:27.0037 2280 VgaSave - ok
10:38:27.0066 2280 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
10:38:27.0067 2280 viaagp - ok
10:38:27.0257 2280 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
10:38:27.0258 2280 ViaC7 - ok
10:38:27.0366 2280 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
10:38:27.0367 2280 viaide - ok
10:38:27.0400 2280 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:38:27.0402 2280 volmgr - ok
10:38:27.0527 2280 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:38:27.0530 2280 volmgrx - ok
10:38:27.0681 2280 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:38:27.0684 2280 volsnap - ok
10:38:27.0821 2280 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:38:27.0824 2280 vsmraid - ok
10:38:27.0954 2280 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
10:38:27.0966 2280 VSS - ok
10:38:28.0008 2280 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
10:38:28.0016 2280 W32Time - ok
10:38:28.0044 2280 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:38:28.0045 2280 WacomPen - ok
10:38:28.0074 2280 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
10:38:28.0076 2280 Wanarp - ok
10:38:28.0085 2280 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:38:28.0086 2280 Wanarpv6 - ok
10:38:28.0123 2280 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:38:28.0131 2280 wcncsvc - ok
10:38:28.0212 2280 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:38:28.0217 2280 WcsPlugInService - ok
10:38:28.0276 2280 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
10:38:28.0277 2280 Wd - ok
10:38:28.0379 2280 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:38:28.0384 2280 Wdf01000 - ok
10:38:28.0421 2280 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:38:28.0427 2280 WdiServiceHost - ok
10:38:28.0444 2280 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:38:28.0450 2280 WdiSystemHost - ok
10:38:28.0535 2280 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
10:38:28.0541 2280 WebClient - ok
10:38:28.0597 2280 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:38:28.0603 2280 Wecsvc - ok
10:38:28.0649 2280 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:38:28.0655 2280 wercplsupport - ok
10:38:28.0719 2280 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
10:38:28.0726 2280 WerSvc - ok
10:38:28.0803 2280 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
10:38:28.0805 2280 WinDefend - ok
10:38:28.0817 2280 WinHttpAutoProxySvc - ok
10:38:28.0943 2280 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:38:28.0946 2280 Winmgmt - ok
10:38:29.0071 2280 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
10:38:29.0084 2280 WinRM - ok
10:38:29.0257 2280 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:38:29.0268 2280 Wlansvc - ok
10:38:29.0591 2280 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:38:29.0592 2280 wlcrasvc - ok
10:38:29.0901 2280 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:38:29.0913 2280 wlidsvc - ok
10:38:29.0937 2280 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:38:29.0938 2280 WmiAcpi - ok
10:38:30.0021 2280 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:38:30.0023 2280 wmiApSrv - ok
10:38:30.0298 2280 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
10:38:30.0305 2280 WMPNetworkSvc - ok
10:38:30.0413 2280 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:38:30.0465 2280 WPCSvc - ok
10:38:30.0507 2280 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:38:30.0513 2280 WPDBusEnum - ok
10:38:30.0584 2280 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
10:38:30.0585 2280 WpdUsb - ok
10:38:30.0926 2280 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:38:30.0932 2280 WPFFontCache_v0400 - ok
10:38:30.0989 2280 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:38:30.0990 2280 ws2ifsl - ok
10:38:31.0056 2280 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
10:38:31.0062 2280 wscsvc - ok
10:38:31.0072 2280 WSearch - ok
10:38:31.0398 2280 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
10:38:31.0451 2280 wuauserv - ok
10:38:31.0526 2280 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:38:31.0528 2280 WUDFRd - ok
10:38:31.0586 2280 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:38:31.0592 2280 wudfsvc - ok
10:38:31.0672 2280 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
10:38:31.0675 2280 yukonwlh - ok
10:38:31.0691 2280 ================ Scan global ===============================
10:38:31.0728 2280 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
10:38:31.0795 2280 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
10:38:31.0886 2280 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
10:38:31.0962 2280 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
10:38:32.0001 2280 [Global] - ok
10:38:32.0004 2280 ================ Scan MBR ==================================
10:38:32.0040 2280 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
10:38:35.0371 2280 \Device\Harddisk0\DR0 - ok
10:38:35.0375 2280 ================ Scan VBR ==================================
10:38:35.0411 2280 [ CFC4432B51EE1577CD1E227FBB4710A0 ] \Device\Harddisk0\DR0\Partition1
10:38:35.0420 2280 \Device\Harddisk0\DR0\Partition1 - ok
10:38:35.0532 2280 [ D82A5498D6293BF3841F4B47A38F50EA ] \Device\Harddisk0\DR0\Partition2
10:38:35.0554 2280 \Device\Harddisk0\DR0\Partition2 - ok
10:38:35.0557 2280 ============================================================
10:38:35.0557 2280 Scan finished
10:38:35.0557 2280 ============================================================
10:38:35.0652 1768 Detected object count: 0
10:38:35.0652 1768 Actual detected object count: 0

aswMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-18 13:24:20
-----------------------------
13:24:20.203 OS Version: Windows 6.0.6002 Service Pack 2
13:24:20.203 Number of processors: 2 586 0x170A
13:24:20.204 ComputerName: PAT-PC UserName: Pat
13:24:23.830 Initialize success
13:24:24.389 AVAST engine defs: 12091801
13:24:39.312 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000068
13:24:39.315 Disk 0 Vendor: ST932032 0002 Size: 305245MB BusType: 3
13:24:39.492 Disk 0 MBR read successfully
13:24:39.496 Disk 0 MBR scan
13:24:39.500 Disk 0 unknown MBR code
13:24:39.528 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 12001 MB offset 63
13:24:39.555 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 152617 MB offset 24579450
13:24:39.560 Disk 0 Partition - 00 0F Extended LBA 140623 MB offset 337140090
13:24:39.630 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 140623 MB offset 337140153
13:24:39.740 Disk 0 scanning sectors +625137345
13:24:40.018 Disk 0 scanning C:\Windows\system32\drivers
13:25:29.498 Service scanning
13:25:50.449 Modules scanning
13:26:36.862 Disk 0 trace - called modules:
13:26:36.920 ntkrnlpa.exe CLASSPNP.SYS disk.sys PCTCore.sys acpi.sys hal.dll storport.sys nvstor32.sys tcpip.sys
13:26:36.921 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85c4b498]
13:26:36.921 3 CLASSPNP.SYS[8bfa98b3] -> nt!IofCallDriver -> [0x85c4bd60]
13:26:36.921 5 PCTCore.sys[8b87b82d] -> nt!IofCallDriver -> [0x85b19618]
13:26:36.921 7 acpi.sys[8b6096bc] -> nt!IofCallDriver -> \Device\00000068[0x856f9a30]
13:26:38.238 AVAST engine scan C:\Windows
13:27:28.074 AVAST engine scan C:\Windows\system32
13:39:58.778 AVAST engine scan C:\Windows\system32\drivers
13:41:41.796 AVAST engine scan C:\Users\Pat
14:18:20.150 AVAST engine scan C:\ProgramData
14:27:32.390 Scan finished successfully
14:29:42.904 Disk 0 MBR has been saved successfully to "C:\Users\Pat\Documents\MBR.dat"
14:29:42.910 The log file has been saved successfully to "C:\Users\Pat\Documents\aswMBR.txt"






ESET log:

C:\ProgramData\Spybot - Search & Destroy\Recovery\SweetIM43.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\SweetIM46.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv1.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv10.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv11.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv12.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv13.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv14.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv15.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv16.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv17.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv18.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv19.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv2.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv20.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv21.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv22.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv23.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv24.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv25.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv26.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv27.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv28.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv29.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv3.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv30.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv31.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv32.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv33.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv34.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv35.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv36.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv37.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv38.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv39.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv4.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv40.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv41.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv5.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv6.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv7.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv8.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WinBankerfgv9.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 18 September 2012 - 01:36 PM

Please do all these scans in normal mode

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 helplalaman1

helplalaman1
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:08:21 PM

Posted 19 September 2012 - 08:10 AM

Thanks again for all this, I redid the previous scans in normal mode, some scans took pretty long so sorry for the late response.

TDSSkiller:


15:12:07.0017 6528 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
15:12:08.0041 6528 ============================================================
15:12:08.0041 6528 Current date / time: 2012/09/18 15:12:08.0041
15:12:08.0041 6528 SystemInfo:
15:12:08.0041 6528
15:12:08.0042 6528 OS Version: 6.0.6002 ServicePack: 2.0
15:12:08.0042 6528 Product type: Workstation
15:12:08.0042 6528 ComputerName: PAT-PC
15:12:08.0042 6528 UserName: Pat
15:12:08.0042 6528 Windows directory: C:\Windows
15:12:08.0043 6528 System windows directory: C:\Windows
15:12:08.0043 6528 Processor architecture: Intel x86
15:12:08.0043 6528 Number of processors: 2
15:12:08.0043 6528 Page size: 0x1000
15:12:08.0043 6528 Boot type: Normal boot
15:12:08.0043 6528 ============================================================
15:12:09.0165 6528 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:12:09.0171 6528 ============================================================
15:12:09.0171 6528 \Device\Harddisk0\DR0:
15:12:09.0171 6528 MBR partitions:
15:12:09.0172 6528 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x12A14C00
15:12:09.0187 6528 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x141859B9, BlocksNum 0x112A7D08
15:12:09.0187 6528 ============================================================
15:12:09.0237 6528 C: <-> \Device\Harddisk0\DR0\Partition1
15:12:09.0271 6528 D: <-> \Device\Harddisk0\DR0\Partition2
15:12:09.0272 6528 ============================================================
15:12:09.0272 6528 Initialize success
15:12:09.0272 6528 ============================================================
15:12:17.0861 7156 ============================================================
15:12:17.0861 7156 Scan started
15:12:17.0861 7156 Mode: Manual; TDLFS;
15:12:17.0861 7156 ============================================================
15:12:18.0665 7156 ================ Scan system memory ========================
15:12:18.0665 7156 System memory - ok
15:12:18.0670 7156 ================ Scan services =============================
15:12:18.0787 7156 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:12:18.0792 7156 !SASCORE - ok
15:12:19.0024 7156 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
15:12:19.0065 7156 ACPI - ok
15:12:19.0225 7156 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
15:12:19.0343 7156 Ad-Aware Service - ok
15:12:19.0473 7156 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:12:19.0484 7156 AdobeARMservice - ok
15:12:19.0669 7156 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:12:19.0731 7156 adp94xx - ok
15:12:20.0034 7156 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:12:20.0151 7156 adpahci - ok
15:12:20.0203 7156 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:12:20.0271 7156 adpu160m - ok
15:12:20.0388 7156 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:12:20.0418 7156 adpu320 - ok
15:12:20.0561 7156 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
15:12:20.0594 7156 ADSMService - ok
15:12:20.0652 7156 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:12:20.0664 7156 AeLookupSvc - ok
15:12:20.0722 7156 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
15:12:20.0744 7156 AFD - ok
15:12:20.0788 7156 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:12:20.0801 7156 agp440 - ok
15:12:20.0823 7156 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:12:20.0833 7156 aic78xx - ok
15:12:20.0868 7156 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
15:12:20.0877 7156 ALG - ok
15:12:20.0902 7156 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
15:12:20.0909 7156 aliide - ok
15:12:20.0953 7156 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:12:20.0968 7156 amdagp - ok
15:12:21.0015 7156 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
15:12:21.0024 7156 amdide - ok
15:12:21.0097 7156 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:12:21.0111 7156 AmdK7 - ok
15:12:21.0161 7156 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:12:21.0170 7156 AmdK8 - ok
15:12:21.0266 7156 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
15:12:21.0280 7156 Appinfo - ok
15:12:21.0430 7156 [ 70D7BE78061126DD0C3ACCDB7E129017 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:12:21.0598 7156 Apple Mobile Device - ok
15:12:21.0666 7156 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
15:12:21.0680 7156 arc - ok
15:12:21.0712 7156 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:12:21.0729 7156 arcsas - ok
15:12:21.0801 7156 [ 104DB777372411C55850C4A2AE6877EF ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
15:12:21.0834 7156 AsDsm - ok
15:12:21.0946 7156 [ EB1807795CD3EEAA3288B4A30DE254E8 ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
15:12:21.0965 7156 ASLDRService - ok
15:12:22.0020 7156 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
15:12:22.0034 7156 ASMMAP - ok
15:12:22.0081 7156 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
15:12:22.0089 7156 aswFsBlk - ok
15:12:22.0159 7156 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
15:12:22.0170 7156 aswMonFlt - ok
15:12:22.0202 7156 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
15:12:22.0216 7156 AswRdr - ok
15:12:22.0270 7156 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
15:12:22.0387 7156 aswSnx - ok
15:12:22.0452 7156 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
15:12:22.0492 7156 aswSP - ok
15:12:22.0549 7156 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
15:12:22.0567 7156 aswTdi - ok
15:12:22.0596 7156 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:12:22.0608 7156 AsyncMac - ok
15:12:22.0684 7156 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
15:12:22.0690 7156 atapi - ok
15:12:22.0825 7156 [ 8309BF4D39DAA99E5035B58C7B1533D9 ] athr C:\Windows\system32\DRIVERS\athr.sys
15:12:24.0054 7156 athr - ok
15:12:24.0199 7156 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
15:12:25.0607 7156 ATKGFNEXSrv - ok
15:12:25.0689 7156 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:12:25.0701 7156 AudioEndpointBuilder - ok
15:12:25.0733 7156 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:12:25.0742 7156 Audiosrv - ok
15:12:25.0831 7156 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:12:25.0869 7156 avast! Antivirus - ok
15:12:26.0019 7156 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
15:12:26.0104 7156 BBSvc - ok
15:12:26.0162 7156 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
15:12:26.0230 7156 Beep - ok
15:12:26.0296 7156 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
15:12:26.0322 7156 BFE - ok
15:12:26.0395 7156 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
15:12:26.0441 7156 BITS - ok
15:12:26.0543 7156 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
15:12:26.0611 7156 blbdrive - ok
15:12:26.0684 7156 [ 1C87705CCB2F60172B0FC86B5D82F00D ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:12:26.0726 7156 Bonjour Service - ok
15:12:26.0770 7156 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:12:26.0782 7156 bowser - ok
15:12:26.0851 7156 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:12:26.0860 7156 BrFiltLo - ok
15:12:26.0889 7156 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:12:26.0899 7156 BrFiltUp - ok
15:12:26.0930 7156 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
15:12:26.0955 7156 Browser - ok
15:12:27.0249 7156 [ 7EFFCCD7B6EA4D3428F5B3ACE8DE8F5A ] Browser Defender Update Service C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
15:12:27.0350 7156 Browser Defender Update Service - ok
15:12:27.0428 7156 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:12:27.0440 7156 Brserid - ok
15:12:27.0475 7156 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:12:27.0486 7156 BrSerWdm - ok
15:12:27.0511 7156 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:12:27.0520 7156 BrUsbMdm - ok
15:12:27.0552 7156 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:12:27.0561 7156 BrUsbSer - ok
15:12:27.0690 7156 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc C:\Program Files\Browny02\BrYNSvc.exe
15:12:27.0695 7156 BrYNSvc - ok
15:12:27.0762 7156 [ DA7B195275BDA7F8FCF79B40E0F45DDE ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
15:12:27.0775 7156 BthEnum - ok
15:12:27.0908 7156 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:12:27.0929 7156 BTHMODEM - ok
15:12:28.0114 7156 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
15:12:28.0162 7156 BthPan - ok
15:12:28.0230 7156 [ 671134053D59E23704F08DB19F11E10B ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
15:12:28.0246 7156 BTHPORT - ok
15:12:28.0316 7156 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
15:12:28.0327 7156 BthServ - ok
15:12:28.0355 7156 [ 93D7007E2C660DFCCA6AE72622740B14 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
15:12:28.0364 7156 BTHUSB - ok
15:12:28.0397 7156 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:12:28.0407 7156 cdfs - ok
15:12:28.0455 7156 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:12:28.0469 7156 cdrom - ok
15:12:28.0520 7156 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
15:12:28.0533 7156 CertPropSvc - ok
15:12:28.0573 7156 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
15:12:28.0586 7156 circlass - ok
15:12:28.0631 7156 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
15:12:28.0654 7156 CLFS - ok
15:12:29.0934 7156 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:12:30.0290 7156 clr_optimization_v2.0.50727_32 - ok
15:12:31.0655 7156 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:12:32.0366 7156 clr_optimization_v4.0.30319_32 - ok
15:12:32.0513 7156 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:12:32.0567 7156 CmBatt - ok
15:12:32.0603 7156 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:12:32.0629 7156 cmdide - ok
15:12:32.0705 7156 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:12:32.0716 7156 Compbatt - ok
15:12:32.0732 7156 COMSysApp - ok
15:12:32.0746 7156 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:12:32.0762 7156 crcdisk - ok
15:12:32.0847 7156 [ D18893845AE1C5833B5B2EA9B7F5C670 ] CRFILTER C:\Windows\system32\DRIVERS\CRFILTER.sys
15:12:32.0858 7156 CRFILTER - ok
15:12:32.0886 7156 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:12:32.0899 7156 Crusoe - ok
15:12:32.0977 7156 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:12:33.0047 7156 CryptSvc - ok
15:12:33.0206 7156 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:12:33.0248 7156 DcomLaunch - ok
15:12:33.0278 7156 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:12:33.0292 7156 DfsC - ok
15:12:33.0460 7156 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
15:12:33.0717 7156 DFSR - ok
15:12:33.0771 7156 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:12:33.0799 7156 Dhcp - ok
15:12:33.0867 7156 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
15:12:34.0363 7156 disk - ok
15:12:34.0557 7156 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:12:34.0670 7156 Dnscache - ok
15:12:35.0047 7156 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:12:35.0122 7156 dot3svc - ok
15:12:35.0339 7156 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
15:12:35.0405 7156 Dot4 - ok
15:12:35.0701 7156 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:12:35.0734 7156 Dot4Print - ok
15:12:35.0768 7156 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
15:12:35.0778 7156 dot4usb - ok
15:12:35.0824 7156 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
15:12:35.0857 7156 DPS - ok
15:12:35.0910 7156 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:12:35.0958 7156 drmkaud - ok
15:12:36.0056 7156 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:12:36.0091 7156 DXGKrnl - ok
15:12:36.0153 7156 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:12:36.0166 7156 E1G60 - ok
15:12:36.0240 7156 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
15:12:36.0267 7156 EapHost - ok
15:12:36.0348 7156 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
15:12:36.0362 7156 Ecache - ok
15:12:36.0420 7156 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:12:36.0434 7156 ehRecvr - ok
15:12:36.0454 7156 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
15:12:36.0468 7156 ehSched - ok
15:12:36.0499 7156 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
15:12:36.0505 7156 ehstart - ok
15:12:36.0585 7156 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:12:36.0604 7156 elxstor - ok
15:12:36.0675 7156 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:12:36.0698 7156 EMDMgmt - ok
15:12:36.0745 7156 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:12:36.0762 7156 ErrDev - ok
15:12:36.0836 7156 esgiguard - ok
15:12:36.0887 7156 [ A3C6F71F387BBB25C9E50390B4E4606E ] ETD C:\Windows\system32\DRIVERS\ETD.sys
15:12:36.0900 7156 ETD - ok
15:12:36.0972 7156 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
15:12:37.0058 7156 EventSystem - ok
15:12:37.0125 7156 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
15:12:37.0138 7156 exfat - ok
15:12:37.0188 7156 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:12:37.0199 7156 fastfat - ok
15:12:37.0246 7156 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:12:37.0255 7156 fdc - ok
15:12:37.0293 7156 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
15:12:37.0351 7156 fdPHost - ok
15:12:37.0374 7156 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
15:12:37.0393 7156 FDResPub - ok
15:12:37.0426 7156 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:12:37.0436 7156 FileInfo - ok
15:12:37.0463 7156 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:12:37.0471 7156 Filetrace - ok
15:12:37.0519 7156 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:12:37.0530 7156 flpydisk - ok
15:12:37.0570 7156 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:12:37.0588 7156 FltMgr - ok
15:12:37.0728 7156 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
15:12:37.0756 7156 FontCache - ok
15:12:37.0854 7156 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:12:37.0870 7156 FontCache3.0.0.0 - ok
15:12:37.0896 7156 [ B0082808A6856A252F7CDD939892CE50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
15:12:38.0107 7156 fssfltr - ok
15:12:38.0356 7156 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
15:12:38.0507 7156 fsssvc - ok
15:12:38.0548 7156 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:12:38.0557 7156 Fs_Rec - ok
15:12:38.0593 7156 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:12:38.0627 7156 gagp30kx - ok
15:12:38.0679 7156 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:12:38.0692 7156 GEARAspiWDM - ok
15:12:38.0748 7156 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
15:12:38.0795 7156 gpsvc - ok
15:12:38.0926 7156 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:12:38.0935 7156 gupdate - ok
15:12:38.0969 7156 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:12:38.0974 7156 gupdatem - ok
15:12:39.0028 7156 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:12:39.0043 7156 gusvc - ok
15:12:39.0075 7156 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:12:39.0101 7156 HdAudAddService - ok
15:12:39.0191 7156 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:12:39.0208 7156 HDAudBus - ok
15:12:39.0252 7156 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:12:39.0297 7156 HidBth - ok
15:12:39.0403 7156 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
15:12:39.0417 7156 HidIr - ok
15:12:39.0468 7156 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
15:12:39.0486 7156 hidserv - ok
15:12:39.0529 7156 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:12:39.0540 7156 HidUsb - ok
15:12:39.0671 7156 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:12:39.0710 7156 hkmsvc - ok
15:12:39.0749 7156 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:12:39.0762 7156 HpCISSs - ok
15:12:39.0904 7156 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
15:12:39.0911 7156 hpqcxs08 - ok
15:12:39.0943 7156 [ DF446BA625CC441617843E87798CE048 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
15:12:39.0953 7156 hpqddsvc - ok
15:12:40.0022 7156 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:12:40.0046 7156 HTTP - ok
15:12:40.0104 7156 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:12:40.0122 7156 i2omp - ok
15:12:40.0184 7156 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:12:40.0195 7156 i8042prt - ok
15:12:40.0247 7156 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:12:40.0264 7156 iaStorV - ok
15:12:40.0370 7156 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:12:40.0468 7156 idsvc - ok
15:12:40.0505 7156 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:12:40.0520 7156 iirsp - ok
15:12:40.0701 7156 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
15:12:40.0728 7156 IKEEXT - ok
15:12:40.0884 7156 [ 9ED3CF7322A49DAC3ECA62BB9928CA54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
15:12:40.0962 7156 IntcAzAudAddService - ok
15:12:41.0064 7156 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
15:12:41.0077 7156 intelide - ok
15:12:41.0172 7156 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:12:41.0182 7156 intelppm - ok
15:12:41.0253 7156 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:12:41.0288 7156 IPBusEnum - ok
15:12:41.0312 7156 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:12:41.0323 7156 IpFilterDriver - ok
15:12:41.0377 7156 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:12:41.0456 7156 iphlpsvc - ok
15:12:41.0464 7156 IpInIp - ok
15:12:41.0506 7156 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:12:41.0518 7156 IPMIDRV - ok
15:12:41.0542 7156 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:12:41.0556 7156 IPNAT - ok
15:12:41.0672 7156 [ DCB3796E0169419618C72F0CE34C68ED ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:12:41.0715 7156 iPod Service - ok
15:12:41.0736 7156 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:12:41.0750 7156 IRENUM - ok
15:12:41.0800 7156 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:12:41.0811 7156 isapnp - ok
15:12:41.0868 7156 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:12:41.0878 7156 iScsiPrt - ok
15:12:41.0910 7156 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:12:41.0920 7156 iteatapi - ok
15:12:41.0949 7156 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:12:41.0965 7156 iteraid - ok
15:12:41.0995 7156 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:12:42.0006 7156 kbdclass - ok
15:12:42.0039 7156 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:12:42.0057 7156 kbdhid - ok
15:12:42.0128 7156 [ 7F2B8D0B31FB4A797E5786EF124C5A80 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
15:12:42.0142 7156 kbfiltr - ok
15:12:42.0275 7156 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
15:12:42.0302 7156 KeyIso - ok
15:12:42.0357 7156 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:12:42.0390 7156 KSecDD - ok
15:12:42.0447 7156 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:12:42.0481 7156 KtmRm - ok
15:12:42.0565 7156 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
15:12:42.0612 7156 LanmanServer - ok
15:12:42.0704 7156 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:12:42.0766 7156 LanmanWorkstation - ok
15:12:42.0827 7156 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:12:42.0862 7156 LightScribeService - ok
15:12:42.0922 7156 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:12:42.0937 7156 lltdio - ok
15:12:43.0032 7156 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:12:43.0099 7156 lltdsvc - ok
15:12:43.0204 7156 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:12:43.0250 7156 lmhosts - ok
15:12:43.0302 7156 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:12:43.0313 7156 LSI_FC - ok
15:12:43.0339 7156 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:12:43.0350 7156 LSI_SAS - ok
15:12:43.0382 7156 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:12:43.0393 7156 LSI_SCSI - ok
15:12:43.0429 7156 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
15:12:43.0451 7156 luafv - ok
15:12:43.0515 7156 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:12:43.0535 7156 MBAMProtector - ok
15:12:43.0644 7156 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:12:43.0655 7156 MBAMScheduler - ok
15:12:43.0763 7156 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:12:43.0777 7156 MBAMService - ok
15:12:43.0815 7156 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\Windows\system32\drivers\mbamswissarmy.sys
15:12:43.0819 7156 MBAMSwissArmy - ok
15:12:43.0867 7156 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:12:43.0904 7156 Mcx2Svc - ok
15:12:43.0951 7156 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
15:12:43.0979 7156 megasas - ok
15:12:44.0040 7156 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
15:12:44.0080 7156 MegaSR - ok
15:12:44.0218 7156 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:12:44.0246 7156 Microsoft Office Groove Audit Service - ok
15:12:44.0287 7156 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
15:12:44.0321 7156 MMCSS - ok
15:12:44.0357 7156 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
15:12:44.0369 7156 Modem - ok
15:12:44.0471 7156 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:12:44.0502 7156 monitor - ok
15:12:44.0583 7156 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:12:44.0659 7156 mouclass - ok
15:12:44.0706 7156 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:12:44.0726 7156 mouhid - ok
15:12:44.0873 7156 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:12:44.0889 7156 MountMgr - ok
15:12:44.0958 7156 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
15:12:44.0978 7156 mpio - ok
15:12:45.0029 7156 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:12:45.0127 7156 mpsdrv - ok
15:12:45.0251 7156 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
15:12:45.0314 7156 MpsSvc - ok
15:12:45.0369 7156 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:12:45.0379 7156 Mraid35x - ok
15:12:45.0433 7156 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:12:45.0445 7156 MRxDAV - ok
15:12:45.0474 7156 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:12:45.0497 7156 mrxsmb - ok
15:12:45.0559 7156 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:12:45.0597 7156 mrxsmb10 - ok
15:12:45.0617 7156 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:12:45.0629 7156 mrxsmb20 - ok
15:12:45.0676 7156 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
15:12:45.0688 7156 msahci - ok
15:12:45.0735 7156 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:12:45.0941 7156 msdsm - ok
15:12:45.0981 7156 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
15:12:51.0722 7156 MSDTC - ok
15:12:52.0883 7156 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:12:56.0585 7156 Msfs - ok
15:12:56.0638 7156 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:13:05.0559 7156 msisadrv - ok
15:13:05.0637 7156 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:13:05.0687 7156 MSiSCSI - ok
15:13:05.0699 7156 msiserver - ok
15:13:06.0167 7156 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:13:06.0177 7156 MSKSSRV - ok
15:13:06.0252 7156 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:13:06.0266 7156 MSPCLOCK - ok
15:13:06.0283 7156 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:13:06.0299 7156 MSPQM - ok
15:13:06.0355 7156 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:13:06.0384 7156 MsRPC - ok
15:13:06.0427 7156 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:13:06.0439 7156 mssmbios - ok
15:13:06.0463 7156 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:13:06.0475 7156 MSTEE - ok
15:13:06.0531 7156 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
15:13:06.0546 7156 MTsensor - ok
15:13:06.0620 7156 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
15:13:06.0633 7156 Mup - ok
15:13:06.0698 7156 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
15:13:06.0766 7156 napagent - ok
15:13:06.0918 7156 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:13:06.0937 7156 NativeWifiP - ok
15:13:07.0137 7156 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:13:07.0152 7156 NDIS - ok
15:13:07.0294 7156 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:13:07.0312 7156 NdisTapi - ok
15:13:07.0373 7156 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:13:07.0386 7156 Ndisuio - ok
15:13:07.0498 7156 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:13:07.0520 7156 NdisWan - ok
15:13:07.0564 7156 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:13:07.0578 7156 NDProxy - ok
15:13:07.0610 7156 [ 19715A9A573DAD2521348ABC74266A48 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:13:07.0690 7156 Net Driver HPZ12 - ok
15:13:07.0716 7156 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:13:07.0730 7156 NetBIOS - ok
15:13:07.0796 7156 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:13:07.0817 7156 netbt - ok
15:13:07.0864 7156 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
15:13:07.0890 7156 Netlogon - ok
15:13:07.0942 7156 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
15:13:07.0972 7156 Netman - ok
15:13:08.0063 7156 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
15:13:08.0114 7156 netprofm - ok
15:13:08.0175 7156 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:13:08.0193 7156 NetTcpPortSharing - ok
15:13:08.0250 7156 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:13:08.0263 7156 nfrd960 - ok
15:13:08.0291 7156 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:13:08.0339 7156 NlaSvc - ok
15:13:08.0382 7156 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:13:08.0398 7156 Npfs - ok
15:13:08.0413 7156 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
15:13:08.0506 7156 nsi - ok
15:13:08.0638 7156 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:13:08.0650 7156 nsiproxy - ok
15:13:08.0770 7156 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:13:09.0309 7156 Ntfs - ok
15:13:09.0406 7156 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:13:09.0423 7156 ntrigdigi - ok
15:13:09.0552 7156 [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
15:13:09.0561 7156 NuidFltr - ok
15:13:09.0602 7156 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
15:13:09.0613 7156 Null - ok
15:13:10.0173 7156 [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:13:12.0908 7156 nvlddmkm - ok
15:13:13.0022 7156 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:13:13.0108 7156 nvraid - ok
15:13:13.0225 7156 [ AF1BD777AF00E96C45C77192D7453369 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
15:13:13.0240 7156 nvsmu - ok
15:13:13.0291 7156 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:13:13.0302 7156 nvstor - ok
15:13:13.0324 7156 [ BB4DD678706510D9249EED1DA0219900 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
15:13:13.0335 7156 nvstor32 - ok
15:13:13.0405 7156 [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc C:\Windows\system32\nvvsvc.exe
15:13:13.0441 7156 nvsvc - ok
15:13:13.0517 7156 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:13:13.0534 7156 nv_agp - ok
15:13:13.0546 7156 NwlnkFlt - ok
15:13:13.0559 7156 NwlnkFwd - ok
15:13:13.0647 7156 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:13:13.0682 7156 odserv - ok
15:13:13.0724 7156 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:13:13.0738 7156 ohci1394 - ok
15:13:13.0921 7156 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:13:13.0994 7156 ose - ok
15:13:14.0046 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:13:14.0127 7156 p2pimsvc - ok
15:13:14.0168 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
15:13:14.0277 7156 p2psvc - ok
15:13:14.0414 7156 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
15:13:15.0270 7156 Parport - ok
15:13:15.0430 7156 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:13:15.0526 7156 partmgr - ok
15:13:15.0561 7156 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
15:13:15.0585 7156 Parvdm - ok
15:13:15.0702 7156 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
15:13:15.0736 7156 PcaSvc - ok
15:13:15.0923 7156 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
15:13:15.0938 7156 pci - ok
15:13:16.0003 7156 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
15:13:16.0013 7156 pciide - ok
15:13:16.0079 7156 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:13:16.0096 7156 pcmcia - ok
15:13:16.0191 7156 [ 6C9E2F69D99C025FD5CAB2228E495FA1 ] PCTBD C:\Windows\system32\Drivers\PCTBD.sys
15:13:16.0202 7156 PCTBD - ok
15:13:16.0365 7156 [ F7DA28F2AB6CD32B2F76EE96EDAD8F20 ] PCTCore C:\Windows\system32\drivers\PCTCore.sys
15:13:16.0449 7156 PCTCore - ok
15:13:16.0572 7156 [ 3C9FD593E95B98C642B4486CD122C2FB ] pctDS C:\Windows\system32\drivers\pctDS.sys
15:13:16.0814 7156 pctDS - ok
15:13:16.0905 7156 [ 5E11C0C1BEE956DE9EAAC7ED086D8DB9 ] PCTSD C:\Windows\system32\Drivers\PCTSD.sys
15:13:17.0131 7156 PCTSD - ok
15:13:17.0230 7156 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:13:17.0249 7156 PEAUTH - ok
15:13:18.0115 7156 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
15:13:18.0313 7156 pla - ok
15:13:18.0471 7156 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:13:18.0556 7156 PlugPlay - ok
15:13:18.0768 7156 [ B36CD3F2ECA751C0CA8B8868BD1C5449 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:13:18.0905 7156 Pml Driver HPZ12 - ok
15:13:19.0093 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:13:19.0132 7156 PNRPAutoReg - ok
15:13:19.0326 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:13:19.0369 7156 PNRPsvc - ok
15:13:19.0487 7156 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:13:19.0527 7156 PolicyAgent - ok
15:13:19.0630 7156 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:13:19.0645 7156 PptpMiniport - ok
15:13:19.0663 7156 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
15:13:19.0677 7156 Processor - ok
15:13:19.0768 7156 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
15:13:19.0814 7156 ProfSvc - ok
15:13:19.0849 7156 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
15:13:19.0885 7156 ProtectedStorage - ok
15:13:19.0941 7156 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:13:19.0961 7156 PSched - ok
15:13:20.0500 7156 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:13:20.0575 7156 ql2300 - ok
15:13:20.0617 7156 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:13:20.0630 7156 ql40xx - ok
15:13:20.0716 7156 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
15:13:20.0814 7156 QWAVE - ok
15:13:20.0845 7156 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:13:20.0863 7156 QWAVEdrv - ok
15:13:20.0901 7156 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:13:20.0910 7156 RasAcd - ok
15:13:20.0965 7156 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
15:13:21.0013 7156 RasAuto - ok
15:13:21.0060 7156 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:13:21.0081 7156 Rasl2tp - ok
15:13:21.0158 7156 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
15:13:21.0195 7156 RasMan - ok
15:13:21.0234 7156 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:13:21.0248 7156 RasPppoe - ok
15:13:21.0277 7156 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:13:21.0293 7156 RasSstp - ok
15:13:21.0326 7156 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:13:21.0342 7156 rdbss - ok
15:13:21.0401 7156 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:13:21.0410 7156 RDPCDD - ok
15:13:21.0445 7156 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:13:21.0468 7156 rdpdr - ok
15:13:21.0485 7156 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:13:21.0493 7156 RDPENCDD - ok
15:13:21.0576 7156 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:13:21.0591 7156 RDPWD - ok
15:13:21.0684 7156 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:13:21.0753 7156 RemoteAccess - ok
15:13:21.0792 7156 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:13:21.0844 7156 RemoteRegistry - ok
15:13:21.0906 7156 [ 34CC78C06587718C2AD6D3AA83B1F072 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
15:13:21.0917 7156 RFCOMM - ok
15:13:21.0944 7156 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
15:13:21.0980 7156 RpcLocator - ok
15:13:22.0016 7156 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
15:13:22.0086 7156 RpcSs - ok
15:13:22.0193 7156 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:13:22.0205 7156 rspndr - ok
15:13:22.0271 7156 [ F875E277A79EF9D6F3AC89ABB557A689 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
15:13:22.0283 7156 RTL8169 - ok
15:13:22.0336 7156 SABProcEnum - ok
15:13:22.0380 7156 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
15:13:22.0419 7156 SamSs - ok
15:13:22.0506 7156 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:13:22.0510 7156 SASDIFSV - ok
15:13:22.0572 7156 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:13:22.0577 7156 SASKUTIL - ok
15:13:22.0811 7156 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
15:13:22.0863 7156 SBAMSvc - ok
15:13:22.0954 7156 [ 3FFF8CDA4D2F29CA06F1557E85163C30 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
15:13:23.0014 7156 sbapifs - ok
15:13:23.0081 7156 [ 1AFD7178AB9C4FCE2D332DA7AA474FA6 ] sbhips C:\Windows\system32\drivers\sbhips.sys
15:13:23.0095 7156 sbhips - ok
15:13:23.0143 7156 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:13:23.0157 7156 sbp2port - ok
15:13:23.0223 7156 [ 1FD538C4FEB36B793D2121F20BBDC16F ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
15:13:23.0237 7156 SBRE - ok
15:13:23.0290 7156 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:13:23.0378 7156 SCardSvr - ok
15:13:23.0461 7156 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
15:13:23.0504 7156 Schedule - ok
15:13:23.0632 7156 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:13:23.0640 7156 SCPolicySvc - ok
15:13:23.0831 7156 [ CFEB26A26452D5337C2F3AADD8218FC3 ] sdAuxService C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe
15:13:23.0846 7156 sdAuxService - ok
15:13:23.0902 7156 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
15:13:23.0913 7156 sdbus - ok
15:13:24.0008 7156 [ B906C04F469060F2DD7FCB84706B4493 ] sdCoreService C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe
15:13:24.0026 7156 sdCoreService - ok
15:13:24.0186 7156 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:13:24.0352 7156 SDRSVC - ok
15:13:25.0133 7156 [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
15:13:25.0395 7156 SDScannerService - ok
15:13:25.0830 7156 [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
15:13:26.0101 7156 SDUpdateService - ok
15:13:26.0253 7156 [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
15:13:26.0263 7156 SDWSCService - ok
15:13:26.0424 7156 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files\Microsoft\BingBar\SeaPort.EXE
15:13:26.0499 7156 SeaPort - ok
15:13:26.0530 7156 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:13:26.0539 7156 secdrv - ok
15:13:26.0646 7156 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
15:13:26.0682 7156 seclogon - ok
15:13:26.0734 7156 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
15:13:26.0784 7156 SENS - ok
15:13:26.0836 7156 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
15:13:26.0869 7156 Serenum - ok
15:13:26.0908 7156 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
15:13:26.0919 7156 Serial - ok
15:13:26.0974 7156 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:13:27.0002 7156 sermouse - ok
15:13:27.0107 7156 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
15:13:27.0160 7156 SessionEnv - ok
15:13:27.0196 7156 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:13:27.0206 7156 sffdisk - ok
15:13:27.0241 7156 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:13:27.0275 7156 sffp_mmc - ok
15:13:27.0310 7156 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:13:27.0330 7156 sffp_sd - ok
15:13:27.0360 7156 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:13:27.0372 7156 sfloppy - ok
15:13:27.0494 7156 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:13:27.0614 7156 SharedAccess - ok
15:13:27.0700 7156 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:13:27.0747 7156 ShellHWDetection - ok
15:13:27.0810 7156 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:13:27.0821 7156 sisagp - ok
15:13:27.0878 7156 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:13:27.0887 7156 SiSRaid2 - ok
15:13:27.0935 7156 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:13:27.0972 7156 SiSRaid4 - ok
15:13:28.0179 7156 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
15:13:28.0193 7156 SkypeUpdate - ok
15:13:28.0660 7156 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
15:13:28.0745 7156 slsvc - ok
15:13:28.0829 7156 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:13:28.0945 7156 SLUINotify - ok
15:13:29.0003 7156 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:13:29.0040 7156 Smb - ok
15:13:29.0228 7156 [ C8A58FC905C9184FA70E37F71060C64D ] smserial C:\Windows\system32\DRIVERS\smserial.sys
15:13:29.0427 7156 smserial - ok
15:13:29.0517 7156 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:13:29.0564 7156 SNMPTRAP - ok
15:13:29.0753 7156 [ 060F51141B20B8156804446A04AB8B2A ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
15:13:30.0296 7156 SNP2UVC - ok
15:13:30.0333 7156 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
15:13:30.0342 7156 spldr - ok
15:13:30.0431 7156 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
15:13:30.0495 7156 Spooler - ok
15:13:30.0611 7156 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\Windows\system32\Drivers\sptd.sys
15:13:30.0753 7156 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505
15:13:30.0756 7156 sptd ( LockedFile.Multi.Generic ) - warning
15:13:30.0756 7156 sptd - detected LockedFile.Multi.Generic (1)
15:13:30.0882 7156 [ B747EA555A72070F258B3E31E1392D62 ] SRS_PremiumSound_Service C:\Windows\system32\drivers\srs_PremiumSound_i386.sys
15:13:31.0156 7156 SRS_PremiumSound_Service - ok
15:13:31.0268 7156 [ 543B82F5846CEF761EE98D727C15D539 ] SRS_VolSync_Service C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe
15:13:31.0348 7156 SRS_VolSync_Service - ok
15:13:31.0426 7156 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:13:31.0525 7156 srv - ok
15:13:31.0610 7156 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:13:31.0630 7156 srv2 - ok
15:13:31.0763 7156 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:13:31.0812 7156 srvnet - ok
15:13:31.0868 7156 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:13:31.0924 7156 SSDPSRV - ok
15:13:32.0000 7156 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:13:32.0050 7156 SstpSvc - ok
15:13:32.0232 7156 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
15:13:32.0318 7156 stisvc - ok
15:13:32.0348 7156 [ 2AA2D356CB735CD3CCA9F671BD75C9B5 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys
15:13:32.0358 7156 SWDUMon - ok
15:13:32.0387 7156 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:13:32.0403 7156 swenum - ok
15:13:32.0522 7156 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
15:13:32.0695 7156 swprv - ok
15:13:32.0724 7156 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:13:32.0753 7156 Symc8xx - ok
15:13:32.0791 7156 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:13:32.0827 7156 Sym_hi - ok
15:13:32.0851 7156 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:13:32.0875 7156 Sym_u3 - ok
15:13:33.0004 7156 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
15:13:33.0051 7156 SysMain - ok
15:13:33.0111 7156 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:13:33.0155 7156 TabletInputService - ok
15:13:33.0287 7156 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:13:33.0370 7156 TapiSrv - ok
15:13:33.0420 7156 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
15:13:33.0468 7156 TBS - ok
15:13:33.0557 7156 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:13:33.0670 7156 Tcpip - ok
15:13:33.0870 7156 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:13:33.0888 7156 Tcpip6 - ok
15:13:33.0962 7156 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:13:33.0987 7156 tcpipreg - ok
15:13:34.0003 7156 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:13:34.0025 7156 TDPIPE - ok
15:13:34.0095 7156 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:13:34.0114 7156 TDTCP - ok
15:13:34.0183 7156 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:13:34.0261 7156 tdx - ok
15:13:34.0292 7156 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:13:34.0307 7156 TermDD - ok
15:13:34.0351 7156 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
15:13:34.0408 7156 TermService - ok
15:13:34.0462 7156 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
15:13:34.0508 7156 Themes - ok
15:13:34.0529 7156 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
15:13:34.0619 7156 THREADORDER - ok
15:13:34.0733 7156 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
15:13:34.0789 7156 TrkWks - ok
15:13:34.0922 7156 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:13:35.0069 7156 TrustedInstaller - ok
15:13:35.0229 7156 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:13:35.0244 7156 tssecsrv - ok
15:13:35.0294 7156 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:13:35.0305 7156 tunmp - ok
15:13:35.0421 7156 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:13:35.0435 7156 tunnel - ok
15:13:35.0483 7156 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:13:35.0496 7156 uagp35 - ok
15:13:35.0571 7156 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:13:35.0619 7156 udfs - ok
15:13:35.0695 7156 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:13:35.0792 7156 UI0Detect - ok
15:13:35.0861 7156 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:13:35.0874 7156 uliagpkx - ok
15:13:35.0933 7156 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:13:36.0002 7156 uliahci - ok
15:13:36.0033 7156 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:13:36.0054 7156 UlSata - ok
15:13:36.0105 7156 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:13:36.0136 7156 ulsata2 - ok
15:13:36.0288 7156 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:13:36.0299 7156 umbus - ok
15:13:36.0355 7156 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
15:13:36.0407 7156 upnphost - ok
15:13:36.0621 7156 [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
15:13:36.0644 7156 USBAAPL - ok
15:13:36.0719 7156 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:13:36.0735 7156 usbaudio - ok
15:13:36.0793 7156 [ 9419FAAC6552A51542DBBA02971C841C ] usbbus C:\Windows\system32\DRIVERS\lgusbbus.sys
15:13:36.0809 7156 usbbus - ok
15:13:36.0856 7156 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:13:36.0897 7156 usbccgp - ok
15:13:36.0921 7156 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:13:36.0945 7156 usbcir - ok
15:13:36.0989 7156 [ C0A466FA4FFEC464320E159BC1BBDC0C ] UsbDiag C:\Windows\system32\DRIVERS\lgusbdiag.sys
15:13:37.0009 7156 UsbDiag - ok
15:13:37.0178 7156 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:13:37.0238 7156 usbehci - ok
15:13:37.0306 7156 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:13:37.0323 7156 usbhub - ok
15:13:37.0377 7156 [ F74A54774A9B0AFEB3C40ADEC68AA600 ] USBModem C:\Windows\system32\DRIVERS\lgusbmodem.sys
15:13:37.0391 7156 USBModem - ok
15:13:37.0440 7156 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:13:37.0460 7156 usbohci - ok
15:13:37.0517 7156 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:13:37.0529 7156 usbprint - ok
15:13:37.0572 7156 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:13:37.0584 7156 usbscan - ok
15:13:37.0617 7156 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:13:37.0632 7156 USBSTOR - ok
15:13:37.0694 7156 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:13:37.0714 7156 usbuhci - ok
15:13:37.0779 7156 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:13:37.0793 7156 usbvideo - ok
15:13:37.0839 7156 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
15:13:37.0894 7156 UxSms - ok
15:13:37.0958 7156 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
15:13:38.0142 7156 vds - ok
15:13:38.0245 7156 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:13:38.0323 7156 vga - ok
15:13:38.0357 7156 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
15:13:38.0375 7156 VgaSave - ok
15:13:38.0410 7156 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:13:38.0426 7156 viaagp - ok
15:13:38.0476 7156 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:13:38.0487 7156 ViaC7 - ok
15:13:38.0509 7156 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
15:13:38.0523 7156 viaide - ok
15:13:38.0579 7156 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:13:38.0590 7156 volmgr - ok
15:13:38.0662 7156 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:13:38.0694 7156 volmgrx - ok
15:13:38.0813 7156 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:13:38.0855 7156 volsnap - ok
15:13:39.0020 7156 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:13:39.0035 7156 vsmraid - ok
15:13:39.0434 7156 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
15:13:39.0659 7156 VSS - ok
15:13:39.0899 7156 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
15:13:39.0975 7156 W32Time - ok
15:13:40.0257 7156 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:13:40.0267 7156 WacomPen - ok
15:13:40.0388 7156 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:13:40.0473 7156 Wanarp - ok
15:13:40.0533 7156 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:13:40.0539 7156 Wanarpv6 - ok
15:13:40.0745 7156 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:13:40.0954 7156 wcncsvc - ok
15:13:41.0121 7156 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:13:41.0450 7156 WcsPlugInService - ok
15:13:41.0681 7156 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
15:13:41.0747 7156 Wd - ok
15:13:41.0821 7156 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:13:41.0846 7156 Wdf01000 - ok
15:13:41.0928 7156 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:13:42.0014 7156 WdiServiceHost - ok
15:13:42.0116 7156 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:13:42.0192 7156 WdiSystemHost - ok
15:13:42.0358 7156 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
15:13:42.0489 7156 WebClient - ok
15:13:42.0707 7156 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:13:42.0873 7156 Wecsvc - ok
15:13:42.0962 7156 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:13:43.0226 7156 wercplsupport - ok
15:13:43.0348 7156 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
15:13:43.0515 7156 WerSvc - ok
15:13:43.0686 7156 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:13:43.0715 7156 WinDefend - ok
15:13:43.0822 7156 WinHttpAutoProxySvc - ok
15:13:44.0407 7156 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:13:44.0833 7156 Winmgmt - ok
15:13:45.0303 7156 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
15:13:45.0807 7156 WinRM - ok
15:13:45.0962 7156 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:13:46.0056 7156 Wlansvc - ok
15:13:46.0634 7156 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:13:46.0680 7156 wlcrasvc - ok
15:13:46.0862 7156 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:13:47.0210 7156 wlidsvc - ok
15:13:47.0267 7156 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:13:47.0282 7156 WmiAcpi - ok
15:13:47.0419 7156 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:13:47.0445 7156 wmiApSrv - ok
15:13:47.0785 7156 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:13:47.0809 7156 WMPNetworkSvc - ok
15:13:47.0901 7156 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:13:48.0176 7156 WPCSvc - ok
15:13:48.0233 7156 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:13:48.0304 7156 WPDBusEnum - ok
15:13:48.0410 7156 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:13:48.0434 7156 WpdUsb - ok
15:13:48.0929 7156 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:13:49.0132 7156 WPFFontCache_v0400 - ok
15:13:49.0230 7156 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:13:49.0261 7156 ws2ifsl - ok
15:13:49.0355 7156 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
15:13:49.0422 7156 wscsvc - ok
15:13:49.0444 7156 WSearch - ok
15:13:49.0796 7156 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
15:13:49.0875 7156 wuauserv - ok
15:13:50.0010 7156 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:13:50.0024 7156 WUDFRd - ok
15:13:50.0105 7156 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:13:50.0163 7156 wudfsvc - ok
15:13:50.0270 7156 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
15:13:50.0371 7156 yukonwlh - ok
15:13:50.0423 7156 ================ Scan global ===============================
15:13:50.0490 7156 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
15:13:50.0665 7156 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
15:13:50.0816 7156 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
15:13:51.0252 7156 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
15:13:51.0407 7156 [Global] - ok
15:13:51.0416 7156 ================ Scan MBR ==================================
15:13:51.0520 7156 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
15:13:57.0412 7156 \Device\Harddisk0\DR0 - ok
15:13:57.0418 7156 ================ Scan VBR ==================================
15:13:57.0463 7156 [ CFC4432B51EE1577CD1E227FBB4710A0 ] \Device\Harddisk0\DR0\Partition1
15:13:57.0480 7156 \Device\Harddisk0\DR0\Partition1 - ok
15:13:57.0529 7156 [ D82A5498D6293BF3841F4B47A38F50EA ] \Device\Harddisk0\DR0\Partition2
15:13:57.0573 7156 \Device\Harddisk0\DR0\Partition2 - ok
15:13:57.0579 7156 ============================================================
15:13:57.0579 7156 Scan finished
15:13:57.0579 7156 ============================================================
15:13:57.0602 7184 Detected object count: 1
15:13:57.0603 7184 Actual detected object count: 1
15:14:56.0926 7184 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
15:14:57.0097 7184 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine







aswMBR:

15:12:07.0017 6528 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
15:12:08.0041 6528 ============================================================
15:12:08.0041 6528 Current date / time: 2012/09/18 15:12:08.0041
15:12:08.0041 6528 SystemInfo:
15:12:08.0041 6528
15:12:08.0042 6528 OS Version: 6.0.6002 ServicePack: 2.0
15:12:08.0042 6528 Product type: Workstation
15:12:08.0042 6528 ComputerName: PAT-PC
15:12:08.0042 6528 UserName: Pat
15:12:08.0042 6528 Windows directory: C:\Windows
15:12:08.0043 6528 System windows directory: C:\Windows
15:12:08.0043 6528 Processor architecture: Intel x86
15:12:08.0043 6528 Number of processors: 2
15:12:08.0043 6528 Page size: 0x1000
15:12:08.0043 6528 Boot type: Normal boot
15:12:08.0043 6528 ============================================================
15:12:09.0165 6528 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:12:09.0171 6528 ============================================================
15:12:09.0171 6528 \Device\Harddisk0\DR0:
15:12:09.0171 6528 MBR partitions:
15:12:09.0172 6528 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x12A14C00
15:12:09.0187 6528 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x141859B9, BlocksNum 0x112A7D08
15:12:09.0187 6528 ============================================================
15:12:09.0237 6528 C: <-> \Device\Harddisk0\DR0\Partition1
15:12:09.0271 6528 D: <-> \Device\Harddisk0\DR0\Partition2
15:12:09.0272 6528 ============================================================
15:12:09.0272 6528 Initialize success
15:12:09.0272 6528 ============================================================
15:12:17.0861 7156 ============================================================
15:12:17.0861 7156 Scan started
15:12:17.0861 7156 Mode: Manual; TDLFS;
15:12:17.0861 7156 ============================================================
15:12:18.0665 7156 ================ Scan system memory ========================
15:12:18.0665 7156 System memory - ok
15:12:18.0670 7156 ================ Scan services =============================
15:12:18.0787 7156 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:12:18.0792 7156 !SASCORE - ok
15:12:19.0024 7156 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
15:12:19.0065 7156 ACPI - ok
15:12:19.0225 7156 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
15:12:19.0343 7156 Ad-Aware Service - ok
15:12:19.0473 7156 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:12:19.0484 7156 AdobeARMservice - ok
15:12:19.0669 7156 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:12:19.0731 7156 adp94xx - ok
15:12:20.0034 7156 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:12:20.0151 7156 adpahci - ok
15:12:20.0203 7156 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:12:20.0271 7156 adpu160m - ok
15:12:20.0388 7156 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:12:20.0418 7156 adpu320 - ok
15:12:20.0561 7156 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
15:12:20.0594 7156 ADSMService - ok
15:12:20.0652 7156 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:12:20.0664 7156 AeLookupSvc - ok
15:12:20.0722 7156 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
15:12:20.0744 7156 AFD - ok
15:12:20.0788 7156 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:12:20.0801 7156 agp440 - ok
15:12:20.0823 7156 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:12:20.0833 7156 aic78xx - ok
15:12:20.0868 7156 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
15:12:20.0877 7156 ALG - ok
15:12:20.0902 7156 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
15:12:20.0909 7156 aliide - ok
15:12:20.0953 7156 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:12:20.0968 7156 amdagp - ok
15:12:21.0015 7156 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
15:12:21.0024 7156 amdide - ok
15:12:21.0097 7156 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:12:21.0111 7156 AmdK7 - ok
15:12:21.0161 7156 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:12:21.0170 7156 AmdK8 - ok
15:12:21.0266 7156 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
15:12:21.0280 7156 Appinfo - ok
15:12:21.0430 7156 [ 70D7BE78061126DD0C3ACCDB7E129017 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:12:21.0598 7156 Apple Mobile Device - ok
15:12:21.0666 7156 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
15:12:21.0680 7156 arc - ok
15:12:21.0712 7156 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:12:21.0729 7156 arcsas - ok
15:12:21.0801 7156 [ 104DB777372411C55850C4A2AE6877EF ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
15:12:21.0834 7156 AsDsm - ok
15:12:21.0946 7156 [ EB1807795CD3EEAA3288B4A30DE254E8 ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
15:12:21.0965 7156 ASLDRService - ok
15:12:22.0020 7156 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
15:12:22.0034 7156 ASMMAP - ok
15:12:22.0081 7156 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
15:12:22.0089 7156 aswFsBlk - ok
15:12:22.0159 7156 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
15:12:22.0170 7156 aswMonFlt - ok
15:12:22.0202 7156 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
15:12:22.0216 7156 AswRdr - ok
15:12:22.0270 7156 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
15:12:22.0387 7156 aswSnx - ok
15:12:22.0452 7156 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
15:12:22.0492 7156 aswSP - ok
15:12:22.0549 7156 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
15:12:22.0567 7156 aswTdi - ok
15:12:22.0596 7156 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:12:22.0608 7156 AsyncMac - ok
15:12:22.0684 7156 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
15:12:22.0690 7156 atapi - ok
15:12:22.0825 7156 [ 8309BF4D39DAA99E5035B58C7B1533D9 ] athr C:\Windows\system32\DRIVERS\athr.sys
15:12:24.0054 7156 athr - ok
15:12:24.0199 7156 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
15:12:25.0607 7156 ATKGFNEXSrv - ok
15:12:25.0689 7156 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:12:25.0701 7156 AudioEndpointBuilder - ok
15:12:25.0733 7156 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:12:25.0742 7156 Audiosrv - ok
15:12:25.0831 7156 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:12:25.0869 7156 avast! Antivirus - ok
15:12:26.0019 7156 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
15:12:26.0104 7156 BBSvc - ok
15:12:26.0162 7156 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
15:12:26.0230 7156 Beep - ok
15:12:26.0296 7156 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
15:12:26.0322 7156 BFE - ok
15:12:26.0395 7156 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
15:12:26.0441 7156 BITS - ok
15:12:26.0543 7156 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
15:12:26.0611 7156 blbdrive - ok
15:12:26.0684 7156 [ 1C87705CCB2F60172B0FC86B5D82F00D ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:12:26.0726 7156 Bonjour Service - ok
15:12:26.0770 7156 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:12:26.0782 7156 bowser - ok
15:12:26.0851 7156 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:12:26.0860 7156 BrFiltLo - ok
15:12:26.0889 7156 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:12:26.0899 7156 BrFiltUp - ok
15:12:26.0930 7156 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
15:12:26.0955 7156 Browser - ok
15:12:27.0249 7156 [ 7EFFCCD7B6EA4D3428F5B3ACE8DE8F5A ] Browser Defender Update Service C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
15:12:27.0350 7156 Browser Defender Update Service - ok
15:12:27.0428 7156 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:12:27.0440 7156 Brserid - ok
15:12:27.0475 7156 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:12:27.0486 7156 BrSerWdm - ok
15:12:27.0511 7156 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:12:27.0520 7156 BrUsbMdm - ok
15:12:27.0552 7156 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:12:27.0561 7156 BrUsbSer - ok
15:12:27.0690 7156 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc C:\Program Files\Browny02\BrYNSvc.exe
15:12:27.0695 7156 BrYNSvc - ok
15:12:27.0762 7156 [ DA7B195275BDA7F8FCF79B40E0F45DDE ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
15:12:27.0775 7156 BthEnum - ok
15:12:27.0908 7156 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:12:27.0929 7156 BTHMODEM - ok
15:12:28.0114 7156 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
15:12:28.0162 7156 BthPan - ok
15:12:28.0230 7156 [ 671134053D59E23704F08DB19F11E10B ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
15:12:28.0246 7156 BTHPORT - ok
15:12:28.0316 7156 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
15:12:28.0327 7156 BthServ - ok
15:12:28.0355 7156 [ 93D7007E2C660DFCCA6AE72622740B14 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
15:12:28.0364 7156 BTHUSB - ok
15:12:28.0397 7156 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:12:28.0407 7156 cdfs - ok
15:12:28.0455 7156 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:12:28.0469 7156 cdrom - ok
15:12:28.0520 7156 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
15:12:28.0533 7156 CertPropSvc - ok
15:12:28.0573 7156 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
15:12:28.0586 7156 circlass - ok
15:12:28.0631 7156 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
15:12:28.0654 7156 CLFS - ok
15:12:29.0934 7156 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:12:30.0290 7156 clr_optimization_v2.0.50727_32 - ok
15:12:31.0655 7156 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:12:32.0366 7156 clr_optimization_v4.0.30319_32 - ok
15:12:32.0513 7156 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:12:32.0567 7156 CmBatt - ok
15:12:32.0603 7156 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:12:32.0629 7156 cmdide - ok
15:12:32.0705 7156 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:12:32.0716 7156 Compbatt - ok
15:12:32.0732 7156 COMSysApp - ok
15:12:32.0746 7156 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:12:32.0762 7156 crcdisk - ok
15:12:32.0847 7156 [ D18893845AE1C5833B5B2EA9B7F5C670 ] CRFILTER C:\Windows\system32\DRIVERS\CRFILTER.sys
15:12:32.0858 7156 CRFILTER - ok
15:12:32.0886 7156 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:12:32.0899 7156 Crusoe - ok
15:12:32.0977 7156 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:12:33.0047 7156 CryptSvc - ok
15:12:33.0206 7156 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:12:33.0248 7156 DcomLaunch - ok
15:12:33.0278 7156 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:12:33.0292 7156 DfsC - ok
15:12:33.0460 7156 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
15:12:33.0717 7156 DFSR - ok
15:12:33.0771 7156 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:12:33.0799 7156 Dhcp - ok
15:12:33.0867 7156 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
15:12:34.0363 7156 disk - ok
15:12:34.0557 7156 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:12:34.0670 7156 Dnscache - ok
15:12:35.0047 7156 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:12:35.0122 7156 dot3svc - ok
15:12:35.0339 7156 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
15:12:35.0405 7156 Dot4 - ok
15:12:35.0701 7156 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:12:35.0734 7156 Dot4Print - ok
15:12:35.0768 7156 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
15:12:35.0778 7156 dot4usb - ok
15:12:35.0824 7156 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
15:12:35.0857 7156 DPS - ok
15:12:35.0910 7156 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:12:35.0958 7156 drmkaud - ok
15:12:36.0056 7156 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:12:36.0091 7156 DXGKrnl - ok
15:12:36.0153 7156 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:12:36.0166 7156 E1G60 - ok
15:12:36.0240 7156 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
15:12:36.0267 7156 EapHost - ok
15:12:36.0348 7156 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
15:12:36.0362 7156 Ecache - ok
15:12:36.0420 7156 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:12:36.0434 7156 ehRecvr - ok
15:12:36.0454 7156 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
15:12:36.0468 7156 ehSched - ok
15:12:36.0499 7156 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
15:12:36.0505 7156 ehstart - ok
15:12:36.0585 7156 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:12:36.0604 7156 elxstor - ok
15:12:36.0675 7156 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:12:36.0698 7156 EMDMgmt - ok
15:12:36.0745 7156 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:12:36.0762 7156 ErrDev - ok
15:12:36.0836 7156 esgiguard - ok
15:12:36.0887 7156 [ A3C6F71F387BBB25C9E50390B4E4606E ] ETD C:\Windows\system32\DRIVERS\ETD.sys
15:12:36.0900 7156 ETD - ok
15:12:36.0972 7156 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
15:12:37.0058 7156 EventSystem - ok
15:12:37.0125 7156 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
15:12:37.0138 7156 exfat - ok
15:12:37.0188 7156 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:12:37.0199 7156 fastfat - ok
15:12:37.0246 7156 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:12:37.0255 7156 fdc - ok
15:12:37.0293 7156 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
15:12:37.0351 7156 fdPHost - ok
15:12:37.0374 7156 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
15:12:37.0393 7156 FDResPub - ok
15:12:37.0426 7156 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:12:37.0436 7156 FileInfo - ok
15:12:37.0463 7156 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:12:37.0471 7156 Filetrace - ok
15:12:37.0519 7156 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:12:37.0530 7156 flpydisk - ok
15:12:37.0570 7156 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:12:37.0588 7156 FltMgr - ok
15:12:37.0728 7156 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
15:12:37.0756 7156 FontCache - ok
15:12:37.0854 7156 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:12:37.0870 7156 FontCache3.0.0.0 - ok
15:12:37.0896 7156 [ B0082808A6856A252F7CDD939892CE50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
15:12:38.0107 7156 fssfltr - ok
15:12:38.0356 7156 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
15:12:38.0507 7156 fsssvc - ok
15:12:38.0548 7156 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:12:38.0557 7156 Fs_Rec - ok
15:12:38.0593 7156 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:12:38.0627 7156 gagp30kx - ok
15:12:38.0679 7156 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:12:38.0692 7156 GEARAspiWDM - ok
15:12:38.0748 7156 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
15:12:38.0795 7156 gpsvc - ok
15:12:38.0926 7156 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:12:38.0935 7156 gupdate - ok
15:12:38.0969 7156 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:12:38.0974 7156 gupdatem - ok
15:12:39.0028 7156 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:12:39.0043 7156 gusvc - ok
15:12:39.0075 7156 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:12:39.0101 7156 HdAudAddService - ok
15:12:39.0191 7156 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:12:39.0208 7156 HDAudBus - ok
15:12:39.0252 7156 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:12:39.0297 7156 HidBth - ok
15:12:39.0403 7156 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
15:12:39.0417 7156 HidIr - ok
15:12:39.0468 7156 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
15:12:39.0486 7156 hidserv - ok
15:12:39.0529 7156 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:12:39.0540 7156 HidUsb - ok
15:12:39.0671 7156 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:12:39.0710 7156 hkmsvc - ok
15:12:39.0749 7156 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:12:39.0762 7156 HpCISSs - ok
15:12:39.0904 7156 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
15:12:39.0911 7156 hpqcxs08 - ok
15:12:39.0943 7156 [ DF446BA625CC441617843E87798CE048 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
15:12:39.0953 7156 hpqddsvc - ok
15:12:40.0022 7156 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:12:40.0046 7156 HTTP - ok
15:12:40.0104 7156 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:12:40.0122 7156 i2omp - ok
15:12:40.0184 7156 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:12:40.0195 7156 i8042prt - ok
15:12:40.0247 7156 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:12:40.0264 7156 iaStorV - ok
15:12:40.0370 7156 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:12:40.0468 7156 idsvc - ok
15:12:40.0505 7156 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:12:40.0520 7156 iirsp - ok
15:12:40.0701 7156 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
15:12:40.0728 7156 IKEEXT - ok
15:12:40.0884 7156 [ 9ED3CF7322A49DAC3ECA62BB9928CA54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
15:12:40.0962 7156 IntcAzAudAddService - ok
15:12:41.0064 7156 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
15:12:41.0077 7156 intelide - ok
15:12:41.0172 7156 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:12:41.0182 7156 intelppm - ok
15:12:41.0253 7156 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:12:41.0288 7156 IPBusEnum - ok
15:12:41.0312 7156 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:12:41.0323 7156 IpFilterDriver - ok
15:12:41.0377 7156 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:12:41.0456 7156 iphlpsvc - ok
15:12:41.0464 7156 IpInIp - ok
15:12:41.0506 7156 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:12:41.0518 7156 IPMIDRV - ok
15:12:41.0542 7156 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:12:41.0556 7156 IPNAT - ok
15:12:41.0672 7156 [ DCB3796E0169419618C72F0CE34C68ED ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:12:41.0715 7156 iPod Service - ok
15:12:41.0736 7156 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:12:41.0750 7156 IRENUM - ok
15:12:41.0800 7156 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:12:41.0811 7156 isapnp - ok
15:12:41.0868 7156 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:12:41.0878 7156 iScsiPrt - ok
15:12:41.0910 7156 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:12:41.0920 7156 iteatapi - ok
15:12:41.0949 7156 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:12:41.0965 7156 iteraid - ok
15:12:41.0995 7156 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:12:42.0006 7156 kbdclass - ok
15:12:42.0039 7156 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:12:42.0057 7156 kbdhid - ok
15:12:42.0128 7156 [ 7F2B8D0B31FB4A797E5786EF124C5A80 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
15:12:42.0142 7156 kbfiltr - ok
15:12:42.0275 7156 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
15:12:42.0302 7156 KeyIso - ok
15:12:42.0357 7156 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:12:42.0390 7156 KSecDD - ok
15:12:42.0447 7156 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:12:42.0481 7156 KtmRm - ok
15:12:42.0565 7156 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
15:12:42.0612 7156 LanmanServer - ok
15:12:42.0704 7156 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:12:42.0766 7156 LanmanWorkstation - ok
15:12:42.0827 7156 [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:12:42.0862 7156 LightScribeService - ok
15:12:42.0922 7156 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:12:42.0937 7156 lltdio - ok
15:12:43.0032 7156 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:12:43.0099 7156 lltdsvc - ok
15:12:43.0204 7156 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:12:43.0250 7156 lmhosts - ok
15:12:43.0302 7156 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:12:43.0313 7156 LSI_FC - ok
15:12:43.0339 7156 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:12:43.0350 7156 LSI_SAS - ok
15:12:43.0382 7156 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:12:43.0393 7156 LSI_SCSI - ok
15:12:43.0429 7156 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
15:12:43.0451 7156 luafv - ok
15:12:43.0515 7156 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:12:43.0535 7156 MBAMProtector - ok
15:12:43.0644 7156 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:12:43.0655 7156 MBAMScheduler - ok
15:12:43.0763 7156 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:12:43.0777 7156 MBAMService - ok
15:12:43.0815 7156 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\Windows\system32\drivers\mbamswissarmy.sys
15:12:43.0819 7156 MBAMSwissArmy - ok
15:12:43.0867 7156 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:12:43.0904 7156 Mcx2Svc - ok
15:12:43.0951 7156 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
15:12:43.0979 7156 megasas - ok
15:12:44.0040 7156 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
15:12:44.0080 7156 MegaSR - ok
15:12:44.0218 7156 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:12:44.0246 7156 Microsoft Office Groove Audit Service - ok
15:12:44.0287 7156 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
15:12:44.0321 7156 MMCSS - ok
15:12:44.0357 7156 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
15:12:44.0369 7156 Modem - ok
15:12:44.0471 7156 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:12:44.0502 7156 monitor - ok
15:12:44.0583 7156 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:12:44.0659 7156 mouclass - ok
15:12:44.0706 7156 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:12:44.0726 7156 mouhid - ok
15:12:44.0873 7156 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:12:44.0889 7156 MountMgr - ok
15:12:44.0958 7156 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
15:12:44.0978 7156 mpio - ok
15:12:45.0029 7156 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:12:45.0127 7156 mpsdrv - ok
15:12:45.0251 7156 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
15:12:45.0314 7156 MpsSvc - ok
15:12:45.0369 7156 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:12:45.0379 7156 Mraid35x - ok
15:12:45.0433 7156 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:12:45.0445 7156 MRxDAV - ok
15:12:45.0474 7156 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:12:45.0497 7156 mrxsmb - ok
15:12:45.0559 7156 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:12:45.0597 7156 mrxsmb10 - ok
15:12:45.0617 7156 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:12:45.0629 7156 mrxsmb20 - ok
15:12:45.0676 7156 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
15:12:45.0688 7156 msahci - ok
15:12:45.0735 7156 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:12:45.0941 7156 msdsm - ok
15:12:45.0981 7156 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
15:12:51.0722 7156 MSDTC - ok
15:12:52.0883 7156 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:12:56.0585 7156 Msfs - ok
15:12:56.0638 7156 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:13:05.0559 7156 msisadrv - ok
15:13:05.0637 7156 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:13:05.0687 7156 MSiSCSI - ok
15:13:05.0699 7156 msiserver - ok
15:13:06.0167 7156 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:13:06.0177 7156 MSKSSRV - ok
15:13:06.0252 7156 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:13:06.0266 7156 MSPCLOCK - ok
15:13:06.0283 7156 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:13:06.0299 7156 MSPQM - ok
15:13:06.0355 7156 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:13:06.0384 7156 MsRPC - ok
15:13:06.0427 7156 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:13:06.0439 7156 mssmbios - ok
15:13:06.0463 7156 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:13:06.0475 7156 MSTEE - ok
15:13:06.0531 7156 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
15:13:06.0546 7156 MTsensor - ok
15:13:06.0620 7156 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
15:13:06.0633 7156 Mup - ok
15:13:06.0698 7156 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
15:13:06.0766 7156 napagent - ok
15:13:06.0918 7156 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:13:06.0937 7156 NativeWifiP - ok
15:13:07.0137 7156 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:13:07.0152 7156 NDIS - ok
15:13:07.0294 7156 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:13:07.0312 7156 NdisTapi - ok
15:13:07.0373 7156 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:13:07.0386 7156 Ndisuio - ok
15:13:07.0498 7156 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:13:07.0520 7156 NdisWan - ok
15:13:07.0564 7156 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:13:07.0578 7156 NDProxy - ok
15:13:07.0610 7156 [ 19715A9A573DAD2521348ABC74266A48 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:13:07.0690 7156 Net Driver HPZ12 - ok
15:13:07.0716 7156 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:13:07.0730 7156 NetBIOS - ok
15:13:07.0796 7156 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:13:07.0817 7156 netbt - ok
15:13:07.0864 7156 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
15:13:07.0890 7156 Netlogon - ok
15:13:07.0942 7156 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
15:13:07.0972 7156 Netman - ok
15:13:08.0063 7156 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
15:13:08.0114 7156 netprofm - ok
15:13:08.0175 7156 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:13:08.0193 7156 NetTcpPortSharing - ok
15:13:08.0250 7156 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:13:08.0263 7156 nfrd960 - ok
15:13:08.0291 7156 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:13:08.0339 7156 NlaSvc - ok
15:13:08.0382 7156 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:13:08.0398 7156 Npfs - ok
15:13:08.0413 7156 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
15:13:08.0506 7156 nsi - ok
15:13:08.0638 7156 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:13:08.0650 7156 nsiproxy - ok
15:13:08.0770 7156 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:13:09.0309 7156 Ntfs - ok
15:13:09.0406 7156 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:13:09.0423 7156 ntrigdigi - ok
15:13:09.0552 7156 [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
15:13:09.0561 7156 NuidFltr - ok
15:13:09.0602 7156 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
15:13:09.0613 7156 Null - ok
15:13:10.0173 7156 [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:13:12.0908 7156 nvlddmkm - ok
15:13:13.0022 7156 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:13:13.0108 7156 nvraid - ok
15:13:13.0225 7156 [ AF1BD777AF00E96C45C77192D7453369 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
15:13:13.0240 7156 nvsmu - ok
15:13:13.0291 7156 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:13:13.0302 7156 nvstor - ok
15:13:13.0324 7156 [ BB4DD678706510D9249EED1DA0219900 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
15:13:13.0335 7156 nvstor32 - ok
15:13:13.0405 7156 [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc C:\Windows\system32\nvvsvc.exe
15:13:13.0441 7156 nvsvc - ok
15:13:13.0517 7156 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:13:13.0534 7156 nv_agp - ok
15:13:13.0546 7156 NwlnkFlt - ok
15:13:13.0559 7156 NwlnkFwd - ok
15:13:13.0647 7156 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:13:13.0682 7156 odserv - ok
15:13:13.0724 7156 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:13:13.0738 7156 ohci1394 - ok
15:13:13.0921 7156 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:13:13.0994 7156 ose - ok
15:13:14.0046 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:13:14.0127 7156 p2pimsvc - ok
15:13:14.0168 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
15:13:14.0277 7156 p2psvc - ok
15:13:14.0414 7156 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
15:13:15.0270 7156 Parport - ok
15:13:15.0430 7156 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:13:15.0526 7156 partmgr - ok
15:13:15.0561 7156 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
15:13:15.0585 7156 Parvdm - ok
15:13:15.0702 7156 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
15:13:15.0736 7156 PcaSvc - ok
15:13:15.0923 7156 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
15:13:15.0938 7156 pci - ok
15:13:16.0003 7156 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
15:13:16.0013 7156 pciide - ok
15:13:16.0079 7156 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:13:16.0096 7156 pcmcia - ok
15:13:16.0191 7156 [ 6C9E2F69D99C025FD5CAB2228E495FA1 ] PCTBD C:\Windows\system32\Drivers\PCTBD.sys
15:13:16.0202 7156 PCTBD - ok
15:13:16.0365 7156 [ F7DA28F2AB6CD32B2F76EE96EDAD8F20 ] PCTCore C:\Windows\system32\drivers\PCTCore.sys
15:13:16.0449 7156 PCTCore - ok
15:13:16.0572 7156 [ 3C9FD593E95B98C642B4486CD122C2FB ] pctDS C:\Windows\system32\drivers\pctDS.sys
15:13:16.0814 7156 pctDS - ok
15:13:16.0905 7156 [ 5E11C0C1BEE956DE9EAAC7ED086D8DB9 ] PCTSD C:\Windows\system32\Drivers\PCTSD.sys
15:13:17.0131 7156 PCTSD - ok
15:13:17.0230 7156 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:13:17.0249 7156 PEAUTH - ok
15:13:18.0115 7156 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
15:13:18.0313 7156 pla - ok
15:13:18.0471 7156 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:13:18.0556 7156 PlugPlay - ok
15:13:18.0768 7156 [ B36CD3F2ECA751C0CA8B8868BD1C5449 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:13:18.0905 7156 Pml Driver HPZ12 - ok
15:13:19.0093 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:13:19.0132 7156 PNRPAutoReg - ok
15:13:19.0326 7156 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:13:19.0369 7156 PNRPsvc - ok
15:13:19.0487 7156 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:13:19.0527 7156 PolicyAgent - ok
15:13:19.0630 7156 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:13:19.0645 7156 PptpMiniport - ok
15:13:19.0663 7156 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
15:13:19.0677 7156 Processor - ok
15:13:19.0768 7156 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
15:13:19.0814 7156 ProfSvc - ok
15:13:19.0849 7156 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
15:13:19.0885 7156 ProtectedStorage - ok
15:13:19.0941 7156 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:13:19.0961 7156 PSched - ok
15:13:20.0500 7156 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:13:20.0575 7156 ql2300 - ok
15:13:20.0617 7156 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:13:20.0630 7156 ql40xx - ok
15:13:20.0716 7156 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
15:13:20.0814 7156 QWAVE - ok
15:13:20.0845 7156 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:13:20.0863 7156 QWAVEdrv - ok
15:13:20.0901 7156 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:13:20.0910 7156 RasAcd - ok
15:13:20.0965 7156 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
15:13:21.0013 7156 RasAuto - ok
15:13:21.0060 7156 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:13:21.0081 7156 Rasl2tp - ok
15:13:21.0158 7156 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
15:13:21.0195 7156 RasMan - ok
15:13:21.0234 7156 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:13:21.0248 7156 RasPppoe - ok
15:13:21.0277 7156 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:13:21.0293 7156 RasSstp - ok
15:13:21.0326 7156 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:13:21.0342 7156 rdbss - ok
15:13:21.0401 7156 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:13:21.0410 7156 RDPCDD - ok
15:13:21.0445 7156 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:13:21.0468 7156 rdpdr - ok
15:13:21.0485 7156 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:13:21.0493 7156 RDPENCDD - ok
15:13:21.0576 7156 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:13:21.0591 7156 RDPWD - ok
15:13:21.0684 7156 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:13:21.0753 7156 RemoteAccess - ok
15:13:21.0792 7156 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:13:21.0844 7156 RemoteRegistry - ok
15:13:21.0906 7156 [ 34CC78C06587718C2AD6D3AA83B1F072 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
15:13:21.0917 7156 RFCOMM - ok
15:13:21.0944 7156 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
15:13:21.0980 7156 RpcLocator - ok
15:13:22.0016 7156 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
15:13:22.0086 7156 RpcSs - ok
15:13:22.0193 7156 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:13:22.0205 7156 rspndr - ok
15:13:22.0271 7156 [ F875E277A79EF9D6F3AC89ABB557A689 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
15:13:22.0283 7156 RTL8169 - ok
15:13:22.0336 7156 SABProcEnum - ok
15:13:22.0380 7156 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
15:13:22.0419 7156 SamSs - ok
15:13:22.0506 7156 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:13:22.0510 7156 SASDIFSV - ok
15:13:22.0572 7156 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:13:22.0577 7156 SASKUTIL - ok
15:13:22.0811 7156 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
15:13:22.0863 7156 SBAMSvc - ok
15:13:22.0954 7156 [ 3FFF8CDA4D2F29CA06F1557E85163C30 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
15:13:23.0014 7156 sbapifs - ok
15:13:23.0081 7156 [ 1AFD7178AB9C4FCE2D332DA7AA474FA6 ] sbhips C:\Windows\system32\drivers\sbhips.sys
15:13:23.0095 7156 sbhips - ok
15:13:23.0143 7156 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:13:23.0157 7156 sbp2port - ok
15:13:23.0223 7156 [ 1FD538C4FEB36B793D2121F20BBDC16F ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
15:13:23.0237 7156 SBRE - ok
15:13:23.0290 7156 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:13:23.0378 7156 SCardSvr - ok
15:13:23.0461 7156 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
15:13:23.0504 7156 Schedule - ok
15:13:23.0632 7156 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:13:23.0640 7156 SCPolicySvc - ok
15:13:23.0831 7156 [ CFEB26A26452D5337C2F3AADD8218FC3 ] sdAuxService C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe
15:13:23.0846 7156 sdAuxService - ok
15:13:23.0902 7156 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
15:13:23.0913 7156 sdbus - ok
15:13:24.0008 7156 [ B906C04F469060F2DD7FCB84706B4493 ] sdCoreService C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe
15:13:24.0026 7156 sdCoreService - ok
15:13:24.0186 7156 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:13:24.0352 7156 SDRSVC - ok
15:13:25.0133 7156 [ D98E936BDD4A6CFE39535F3696D0EC6F ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
15:13:25.0395 7156 SDScannerService - ok
15:13:25.0830 7156 [ 2D5088524613D1ED55D20195AF42DDC7 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
15:13:26.0101 7156 SDUpdateService - ok
15:13:26.0253 7156 [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
15:13:26.0263 7156 SDWSCService - ok
15:13:26.0424 7156 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files\Microsoft\BingBar\SeaPort.EXE
15:13:26.0499 7156 SeaPort - ok
15:13:26.0530 7156 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:13:26.0539 7156 secdrv - ok
15:13:26.0646 7156 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
15:13:26.0682 7156 seclogon - ok
15:13:26.0734 7156 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
15:13:26.0784 7156 SENS - ok
15:13:26.0836 7156 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
15:13:26.0869 7156 Serenum - ok
15:13:26.0908 7156 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
15:13:26.0919 7156 Serial - ok
15:13:26.0974 7156 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:13:27.0002 7156 sermouse - ok
15:13:27.0107 7156 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
15:13:27.0160 7156 SessionEnv - ok
15:13:27.0196 7156 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:13:27.0206 7156 sffdisk - ok
15:13:27.0241 7156 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:13:27.0275 7156 sffp_mmc - ok
15:13:27.0310 7156 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:13:27.0330 7156 sffp_sd - ok
15:13:27.0360 7156 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:13:27.0372 7156 sfloppy - ok
15:13:27.0494 7156 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:13:27.0614 7156 SharedAccess - ok
15:13:27.0700 7156 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:13:27.0747 7156 ShellHWDetection - ok
15:13:27.0810 7156 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:13:27.0821 7156 sisagp - ok
15:13:27.0878 7156 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:13:27.0887 7156 SiSRaid2 - ok
15:13:27.0935 7156 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:13:27.0972 7156 SiSRaid4 - ok
15:13:28.0179 7156 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
15:13:28.0193 7156 SkypeUpdate - ok
15:13:28.0660 7156 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
15:13:28.0745 7156 slsvc - ok
15:13:28.0829 7156 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:13:28.0945 7156 SLUINotify - ok
15:13:29.0003 7156 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:13:29.0040 7156 Smb - ok
15:13:29.0228 7156 [ C8A58FC905C9184FA70E37F71060C64D ] smserial C:\Windows\system32\DRIVERS\smserial.sys
15:13:29.0427 7156 smserial - ok
15:13:29.0517 7156 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:13:29.0564 7156 SNMPTRAP - ok
15:13:29.0753 7156 [ 060F51141B20B8156804446A04AB8B2A ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
15:13:30.0296 7156 SNP2UVC - ok
15:13:30.0333 7156 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
15:13:30.0342 7156 spldr - ok
15:13:30.0431 7156 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
15:13:30.0495 7156 Spooler - ok
15:13:30.0611 7156 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\Windows\system32\Drivers\sptd.sys
15:13:30.0753 7156 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505
15:13:30.0756 7156 sptd ( LockedFile.Multi.Generic ) - warning
15:13:30.0756 7156 sptd - detected LockedFile.Multi.Generic (1)
15:13:30.0882 7156 [ B747EA555A72070F258B3E31E1392D62 ] SRS_PremiumSound_Service C:\Windows\system32\drivers\srs_PremiumSound_i386.sys
15:13:31.0156 7156 SRS_PremiumSound_Service - ok
15:13:31.0268 7156 [ 543B82F5846CEF761EE98D727C15D539 ] SRS_VolSync_Service C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe
15:13:31.0348 7156 SRS_VolSync_Service - ok
15:13:31.0426 7156 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:13:31.0525 7156 srv - ok
15:13:31.0610 7156 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:13:31.0630 7156 srv2 - ok
15:13:31.0763 7156 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:13:31.0812 7156 srvnet - ok
15:13:31.0868 7156 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:13:31.0924 7156 SSDPSRV - ok
15:13:32.0000 7156 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:13:32.0050 7156 SstpSvc - ok
15:13:32.0232 7156 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
15:13:32.0318 7156 stisvc - ok
15:13:32.0348 7156 [ 2AA2D356CB735CD3CCA9F671BD75C9B5 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys
15:13:32.0358 7156 SWDUMon - ok
15:13:32.0387 7156 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:13:32.0403 7156 swenum - ok
15:13:32.0522 7156 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
15:13:32.0695 7156 swprv - ok
15:13:32.0724 7156 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:13:32.0753 7156 Symc8xx - ok
15:13:32.0791 7156 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:13:32.0827 7156 Sym_hi - ok
15:13:32.0851 7156 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:13:32.0875 7156 Sym_u3 - ok
15:13:33.0004 7156 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
15:13:33.0051 7156 SysMain - ok
15:13:33.0111 7156 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:13:33.0155 7156 TabletInputService - ok
15:13:33.0287 7156 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:13:33.0370 7156 TapiSrv - ok
15:13:33.0420 7156 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
15:13:33.0468 7156 TBS - ok
15:13:33.0557 7156 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:13:33.0670 7156 Tcpip - ok
15:13:33.0870 7156 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:13:33.0888 7156 Tcpip6 - ok
15:13:33.0962 7156 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:13:33.0987 7156 tcpipreg - ok
15:13:34.0003 7156 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:13:34.0025 7156 TDPIPE - ok
15:13:34.0095 7156 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:13:34.0114 7156 TDTCP - ok
15:13:34.0183 7156 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:13:34.0261 7156 tdx - ok
15:13:34.0292 7156 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:13:34.0307 7156 TermDD - ok
15:13:34.0351 7156 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
15:13:34.0408 7156 TermService - ok
15:13:34.0462 7156 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
15:13:34.0508 7156 Themes - ok
15:13:34.0529 7156 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
15:13:34.0619 7156 THREADORDER - ok
15:13:34.0733 7156 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
15:13:34.0789 7156 TrkWks - ok
15:13:34.0922 7156 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:13:35.0069 7156 TrustedInstaller - ok
15:13:35.0229 7156 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:13:35.0244 7156 tssecsrv - ok
15:13:35.0294 7156 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:13:35.0305 7156 tunmp - ok
15:13:35.0421 7156 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:13:35.0435 7156 tunnel - ok
15:13:35.0483 7156 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:13:35.0496 7156 uagp35 - ok
15:13:35.0571 7156 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:13:35.0619 7156 udfs - ok
15:13:35.0695 7156 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:13:35.0792 7156 UI0Detect - ok
15:13:35.0861 7156 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:13:35.0874 7156 uliagpkx - ok
15:13:35.0933 7156 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:13:36.0002 7156 uliahci - ok
15:13:36.0033 7156 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:13:36.0054 7156 UlSata - ok
15:13:36.0105 7156 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:13:36.0136 7156 ulsata2 - ok
15:13:36.0288 7156 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:13:36.0299 7156 umbus - ok
15:13:36.0355 7156 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
15:13:36.0407 7156 upnphost - ok
15:13:36.0621 7156 [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
15:13:36.0644 7156 USBAAPL - ok
15:13:36.0719 7156 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:13:36.0735 7156 usbaudio - ok
15:13:36.0793 7156 [ 9419FAAC6552A51542DBBA02971C841C ] usbbus C:\Windows\system32\DRIVERS\lgusbbus.sys
15:13:36.0809 7156 usbbus - ok
15:13:36.0856 7156 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:13:36.0897 7156 usbccgp - ok
15:13:36.0921 7156 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:13:36.0945 7156 usbcir - ok
15:13:36.0989 7156 [ C0A466FA4FFEC464320E159BC1BBDC0C ] UsbDiag C:\Windows\system32\DRIVERS\lgusbdiag.sys
15:13:37.0009 7156 UsbDiag - ok
15:13:37.0178 7156 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:13:37.0238 7156 usbehci - ok
15:13:37.0306 7156 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:13:37.0323 7156 usbhub - ok
15:13:37.0377 7156 [ F74A54774A9B0AFEB3C40ADEC68AA600 ] USBModem C:\Windows\system32\DRIVERS\lgusbmodem.sys
15:13:37.0391 7156 USBModem - ok
15:13:37.0440 7156 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:13:37.0460 7156 usbohci - ok
15:13:37.0517 7156 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:13:37.0529 7156 usbprint - ok
15:13:37.0572 7156 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:13:37.0584 7156 usbscan - ok
15:13:37.0617 7156 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:13:37.0632 7156 USBSTOR - ok
15:13:37.0694 7156 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:13:37.0714 7156 usbuhci - ok
15:13:37.0779 7156 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:13:37.0793 7156 usbvideo - ok
15:13:37.0839 7156 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
15:13:37.0894 7156 UxSms - ok
15:13:37.0958 7156 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
15:13:38.0142 7156 vds - ok
15:13:38.0245 7156 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:13:38.0323 7156 vga - ok
15:13:38.0357 7156 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
15:13:38.0375 7156 VgaSave - ok
15:13:38.0410 7156 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:13:38.0426 7156 viaagp - ok
15:13:38.0476 7156 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:13:38.0487 7156 ViaC7 - ok
15:13:38.0509 7156 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
15:13:38.0523 7156 viaide - ok
15:13:38.0579 7156 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:13:38.0590 7156 volmgr - ok
15:13:38.0662 7156 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:13:38.0694 7156 volmgrx - ok
15:13:38.0813 7156 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:13:38.0855 7156 volsnap - ok
15:13:39.0020 7156 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:13:39.0035 7156 vsmraid - ok
15:13:39.0434 7156 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
15:13:39.0659 7156 VSS - ok
15:13:39.0899 7156 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
15:13:39.0975 7156 W32Time - ok
15:13:40.0257 7156 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:13:40.0267 7156 WacomPen - ok
15:13:40.0388 7156 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:13:40.0473 7156 Wanarp - ok
15:13:40.0533 7156 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:13:40.0539 7156 Wanarpv6 - ok
15:13:40.0745 7156 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:13:40.0954 7156 wcncsvc - ok
15:13:41.0121 7156 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:13:41.0450 7156 WcsPlugInService - ok
15:13:41.0681 7156 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
15:13:41.0747 7156 Wd - ok
15:13:41.0821 7156 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:13:41.0846 7156 Wdf01000 - ok
15:13:41.0928 7156 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:13:42.0014 7156 WdiServiceHost - ok
15:13:42.0116 7156 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:13:42.0192 7156 WdiSystemHost - ok
15:13:42.0358 7156 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
15:13:42.0489 7156 WebClient - ok
15:13:42.0707 7156 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:13:42.0873 7156 Wecsvc - ok
15:13:42.0962 7156 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:13:43.0226 7156 wercplsupport - ok
15:13:43.0348 7156 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
15:13:43.0515 7156 WerSvc - ok
15:13:43.0686 7156 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:13:43.0715 7156 WinDefend - ok
15:13:43.0822 7156 WinHttpAutoProxySvc - ok
15:13:44.0407 7156 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:13:44.0833 7156 Winmgmt - ok
15:13:45.0303 7156 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
15:13:45.0807 7156 WinRM - ok
15:13:45.0962 7156 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:13:46.0056 7156 Wlansvc - ok
15:13:46.0634 7156 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:13:46.0680 7156 wlcrasvc - ok
15:13:46.0862 7156 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:13:47.0210 7156 wlidsvc - ok
15:13:47.0267 7156 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:13:47.0282 7156 WmiAcpi - ok
15:13:47.0419 7156 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:13:47.0445 7156 wmiApSrv - ok
15:13:47.0785 7156 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:13:47.0809 7156 WMPNetworkSvc - ok
15:13:47.0901 7156 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:13:48.0176 7156 WPCSvc - ok
15:13:48.0233 7156 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:13:48.0304 7156 WPDBusEnum - ok
15:13:48.0410 7156 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:13:48.0434 7156 WpdUsb - ok
15:13:48.0929 7156 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:13:49.0132 7156 WPFFontCache_v0400 - ok
15:13:49.0230 7156 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:13:49.0261 7156 ws2ifsl - ok
15:13:49.0355 7156 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
15:13:49.0422 7156 wscsvc - ok
15:13:49.0444 7156 WSearch - ok
15:13:49.0796 7156 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
15:13:49.0875 7156 wuauserv - ok
15:13:50.0010 7156 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:13:50.0024 7156 WUDFRd - ok
15:13:50.0105 7156 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:13:50.0163 7156 wudfsvc - ok
15:13:50.0270 7156 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
15:13:50.0371 7156 yukonwlh - ok
15:13:50.0423 7156 ================ Scan global ===============================
15:13:50.0490 7156 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
15:13:50.0665 7156 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
15:13:50.0816 7156 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
15:13:51.0252 7156 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
15:13:51.0407 7156 [Global] - ok
15:13:51.0416 7156 ================ Scan MBR ==================================
15:13:51.0520 7156 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
15:13:57.0412 7156 \Device\Harddisk0\DR0 - ok
15:13:57.0418 7156 ================ Scan VBR ==================================
15:13:57.0463 7156 [ CFC4432B51EE1577CD1E227FBB4710A0 ] \Device\Harddisk0\DR0\Partition1
15:13:57.0480 7156 \Device\Harddisk0\DR0\Partition1 - ok
15:13:57.0529 7156 [ D82A5498D6293BF3841F4B47A38F50EA ] \Device\Harddisk0\DR0\Partition2
15:13:57.0573 7156 \Device\Harddisk0\DR0\Partition2 - ok
15:13:57.0579 7156 ============================================================
15:13:57.0579 7156 Scan finished
15:13:57.0579 7156 ============================================================
15:13:57.0602 7184 Detected object count: 1
15:13:57.0603 7184 Actual detected object count: 1
15:14:56.0926 7184 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
15:14:57.0097 7184 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine

mbam log

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.18.07

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Pat :: PAT-PC [administrator]

Protection: Disabled

18/09/2012 3:11:07 PM
mbam-log-2012-09-18 (15-11-07).txt

Scan type: Full scan (C:\|D:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 374698
Time elapsed: 6 hour(s), 2 minute(s), 5 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)






minitoolbox

MiniToolBox by Farbar Version: 23-07-2012
Ran by Pat (administrator) on 19-09-2012 at 07:39:39
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 15260 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR928X Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek RTL8168B/8111B Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Pat-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : cgocable.net

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : cgocable.net
Description . . . . . . . . . . . : Atheros AR928X Wireless Network Adapter
Physical Address. . . . . . . . . : 00-25-D3-03-11-9C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c0c:e704:6285:abd4%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.105(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : September-18-12 3:03:43 PM
Lease Expires . . . . . . . . . . : September-20-12 3:03:43 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 268445139
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-D3-8D-5A-00-26-18-57-71-2D
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Realtek RTL8168B/8111B Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-26-18-57-71-2D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.gateway.2wire.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:384f:276a:3f57:ff96(Preferred)
Link-local IPv6 Address . . . . . : fe80::384f:276a:3f57:ff96%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Connection-specific DNS Suffix . : cgocable.net
Description . . . . . . . . . . . : isatap.cgocable.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.105%15(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: dlinkrouter
Address: 192.168.0.1

Name: google.com.cgocable.net
Address: 208.69.32.145



Pinging google.com [74.125.226.67] with 32 bytes of data:

Reply from 74.125.226.67: bytes=32 time=15ms TTL=57

Reply from 74.125.226.67: bytes=32 time=13ms TTL=57



Ping statistics for 74.125.226.67:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 13ms, Maximum = 15ms, Average = 14ms

Server: dlinkrouter
Address: 192.168.0.1

Name: yahoo.com.cgocable.net
Address: 208.69.32.145



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=983ms TTL=50

Reply from 72.30.38.140: bytes=32 time=1066ms TTL=50



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 983ms, Maximum = 1066ms, Average = 1024ms

Server: dlinkrouter
Address: 192.168.0.1

Name: bleepingcomputer.com.cgocable.net
Address: 208.69.32.145



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 25 d3 03 11 9c ...... Atheros AR928X Wireless Network Adapter
10 ...00 26 18 57 71 2d ...... Realtek RTL8168B/8111B Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
14 ...00 00 00 00 00 00 00 e0 isatap.gateway.2wire.net
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
13 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
15 ...00 00 00 00 00 00 00 e0 isatap.cgocable.net
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.105 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.105 281
192.168.0.105 255.255.255.255 On-link 192.168.0.105 281
192.168.0.255 255.255.255.255 On-link 192.168.0.105 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.105 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.105 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 18 ::/0 On-link
1 306 ::1/128 On-link
12 18 2001::/32 On-link
12 266 2001:0:9d38:953c:384f:276a:3f57:ff96/128
On-link
11 281 fe80::/64 On-link
12 266 fe80::/64 On-link
15 281 fe80::5efe:192.168.0.105/128
On-link
11 281 fe80::c0c:e704:6285:abd4/128
On-link
12 266 fe80::384f:276a:3f57:ff96/128
On-link
1 306 ff00::/8 On-link
12 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 02 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 03 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 04 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 05 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 06 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Program Files\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/18/2012 03:04:43 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/18/2012 00:21:19 PM) (Source: Application Error) (User: )
Description: Faulting application aswMBR.exe, version 0.9.9.1665, time stamp 0x4f5f9c86, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc0000005, fault offset 0x00066626,
process id 0xa54, application start time 0xaswMBR.exe0.

Error: (09/18/2012 10:28:47 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/18/2012 10:28:19 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (09/18/2012 10:11:26 AM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
Not enough storage is available to complete this operation. (0x8007000e)

Error: (09/18/2012 10:11:26 AM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Not enough storage is available to complete this operation. (0x8007000e)

Error: (09/18/2012 10:11:26 AM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Not enough storage is available to complete this operation. (0x8007000e)

Error: (09/18/2012 10:10:05 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/18/2012 00:35:52 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/17/2012 09:25:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/18/2012 03:09:47 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT AUTHORITY)
Description: 0x80070032

Error: (09/18/2012 03:07:17 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (09/18/2012 10:28:47 AM) (Source: Service Control Manager) (User: )
Description: aswSnx
aswSP
aswTdi
PCTSD
SASDIFSV
SASKUTIL
spldr
sptd
Wanarpv6

Error: (09/18/2012 10:28:47 AM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (09/18/2012 10:28:25 AM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (09/18/2012 10:28:21 AM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (09/18/2012 10:28:19 AM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (09/18/2012 10:28:08 AM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (09/18/2012 10:27:53 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: C:\Windows\system32\athihvs.dll21

Error: (09/18/2012 10:27:28 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:25:53 AM on 18/09/2012 was unexpected.


Microsoft Office Sessions:
=========================
Error: (11/30/2011 06:12:14 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.

Error: (11/02/2011 10:35:16 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 28 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/17/2011 10:52:19 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:38:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 395 seconds with 60 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:31:58 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 342 seconds with 60 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:26:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 400 seconds with 120 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:18:56 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1940 seconds with 600 seconds of active time. This session ended with a crash.

Error: (03/17/2011 02:19:33 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 17143 seconds with 6180 seconds of active time. This session ended with a crash.

Error: (02/22/2011 00:13:32 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1919 seconds with 780 seconds of active time. This session ended with a crash.

Error: (02/16/2011 04:41:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 336 seconds with 60 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office system (Version: 12.0.6612.1000)
32 Bit HP CIO Components Installer (Version: 2.1.0)
3DSSPP 6.0.4 (Version: 1.0.6)
Acrobat.com (Version: 1.7.258)
Ad-Aware Antivirus (Version: 10.2.21.3698)
Ad-Aware Browsing Protection (Version: 0.9.0.2)
Ad-Aware Security Toolbar (Version: 2.1.0.20)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 Plugin (Version: 10.0.32.18)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
AIO_Scan (Version: 100.0.206.000)
AmIcoSingLun (Version: 1.1.104.1)
Apple Application Support (Version: 2.0.1)
Apple Mobile Device Support (Version: 3.2.0.47)
Apple Software Update (Version: 2.1.3.127)
ASUS Data Security Manager (Version: 1.00.0011)
ASUS FancyStart (Version: 1.0.4)
ASUS LifeFrame3 (Version: 3.0.19)
ASUS Live Update (Version: 2.5.7)
ASUS MultiFrame (Version: 1.0.0018)
ASUS Power4Gear Hybrid (Version: 1.1.13)
ASUS SmartLogon (Version: 1.0.0006)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0025)
ASUS Virtual Camera (Version: 1.0.14)
Asus_Camera_ScreenSaver (Version: 2.0.0008)
Atheros Client Installation Program (Version: 7.0)
Atheros Driver Installation Program (Version: 9.2)
ATK Generic Function Service (Version: 1.00.0008)
ATK Hotkey (Version: 1.0.0049)
ATK Media (Version: 2.0.0004)
ATKOSD2 (Version: 7.0.0003)
µTorrent (Version: 1.8.5)
avast! Free Antivirus (Version: 7.0.1466.0)
Bing Bar (Version: 7.0.619.0)
Bonjour (Version: 3.0.0.2)
Browser Guard 4.0 (Version: 4.0.0.1606)
BufferChm (Version: 100.0.170.000)
C7200 (Version: 100.0.206.000)
C7200_Help (Version: 100.0.206.000)
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000)
Cisco EAP-FAST Module (Version: 2.2.9)
Cisco LEAP Module (Version: 1.0.15)
Cisco PEAP Module (Version: 1.1.2)
Copy (Version: 100.0.170.000)
CustomerResearchQFolder (Version: 1.00.0000)
CyberLink LabelPrint (Version: 2.0.2908)
CyberLink Power2Go (Version: 6.0.1924)
D3DX10 (Version: 15.4.2368.0902)
Destination Component (Version: 100.0.0.0)
DeviceDiscovery (Version: 100.0.190.000)
DeviceManagementQFolder (Version: 1.00.0000)
DocProc (Version: 10.0.0.0)
DocProcQFolder (Version: 1.00.0000)
DriverUpdate (Version: 2.2.22862)
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
ETDWare PS/2-x86 7.0.5.2 WHQL
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
Fax (Version: 100.0.187.000)
GameSpy Arcade
Google Chrome (Version: 21.0.1180.89)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
GPBaseService (Version: 100.0.187.000)
GPBaseService2 (Version: 130.0.371.000)
Grand Theft Auto Vice City (Version: 1.00.000)
HL-2270DW (Version: 1.0.6.0)
HP Customer Participation Program 10.0 (Version: 10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP Photosmart All-In-One Driver Software 10.0 Rel .2 (Version: 10.0)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HP Photosmart Essential 2.5 (Version: 2.5)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.002.005.003)
HPPhotoSmartDiscLabel_PaperLabel (Version: 2.02.0000)
HPPhotoSmartDiscLabel_PrintOnDisc (Version: 2.02.0000)
HPPhotoSmartDiscLabelContent1 (Version: 2.02.0000)
hpphotosmartdisclabelplugin (Version: 2.02.0000)
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 100.0.170.000)
iTunes (Version: 10.0.0.68)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 31 (Version: 6.0.310)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
K-Lite Codec Pack 7.1.0 (Full) (Version: 7.1.0)
LG USB Modem driver
LightScribe System Software 1.14.17.1 (Version: 1.14.17.1)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
MarketResearch (Version: 100.0.170.000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Halo Trial
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access MUI (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access MUI (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel 2007 Help ¸üР(KB963678)
Microsoft Office Excel 2007 Help Actualización (KB963678)
Microsoft Office Excel 2007 Help §ó·sµ{¦¡ (KB963678)
Microsoft Office Excel MUI (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office IME (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office IME (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook 2007 Help ¸üР(KB963677)
Microsoft Office Outlook 2007 Help Actualización (KB963677)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Powerpoint 2007 Help ¸üР(KB963669)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669)
Microsoft Office Powerpoint 2007 Help §ó·sµ{¦¡ (KB963669)
Microsoft Office PowerPoint MUI (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Arabic) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Basque) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Catalan) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Dutch) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Galician) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Portuguese (Brazil)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (Chinese (Simplified)) 2007 (Version: 12.0.4518.1016)
Microsoft Office Proofing (Chinese (Traditional)) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000)
Microsoft Office Ultimate 2007 Subscription (Version: 12.0.6612.1000)
Microsoft Office Word 2007 Help ¸üР(KB963665)
Microsoft Office Word 2007 Help Actualización (KB963665)
Microsoft Office Word 2007 Help §ó·sµ{¦¡ (KB963665)
Microsoft Office Word MUI (Chinese (Simplified)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (Chinese (Traditional)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mise à jour Microsoft Office Excel 2007 Help (KB963678)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)
Mise à jour Microsoft Office Word 2007 Help (KB963665)
MobileMe Control Panel (Version: 3.1.6.0)
Mozilla Firefox (3.6.25) (Version: 3.6.25 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSVCSetup (Version: 1.00.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Multimedia Card Reader (Version: 1.01.0000.00)
NVIDIA Drivers (Version: 1.4)
OCR Software by I.R.I.S. 10.0 (Version: 10.0)
Octoshape add-in for Adobe Flash Player
OpenOffice.org 3.1 (Version: 3.1.9420)
PanoStandAlone (Version: 100.0.170.000)
PC Tools Spyware Doctor with AntiVirus 9.0 (Version: 9.0)
Picasa 3 (Version: 3.1)
PS_AIO_02_ProductContext (Version: 100.0.206.000)
PS_AIO_02_Software (Version: 100.0.206.000)
PS_AIO_02_Software_Min (Version: 100.0.206.000)
PSSWCORE (Version: 2.02.0000)
QuickTime (Version: 7.70.80.34)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5817)
Return to Castle Wolfenstein (Version: 1.0)
Rockstar Games Social Club (Version: 1.00.0000)
Safari (Version: 5.33.17.8)
Satsuki Decoder Pack (Version: 4305)
Scan (Version: 10.1.0.0)
Segoe UI (Version: 15.4.2271.0615)
Shop for HP Supplies (Version: 10.0)
Skype Toolbars (Version: 5.0.4137)
Skype™ 5.10 (Version: 5.10.116)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 130.0.373.000)
Spybot - Search & Destroy (Version: 2.0.10)
SRS Premium Sound (Version: 1.09.0300)
Status (Version: 100.0.175.000)
SUPERAntiSpyware (Version: 5.5.1016)
swMSM (Version: 12.0.0.1)
Toolbox (Version: 100.0.170.000)
TrayApp (Version: 100.0.170.000)
UnloadSupport (Version: 10.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
USB 2.0 1.3M UVC WebCam
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Veetle TV 0.9.18 (Version: 0.9.18)
VideoToolkit01 (Version: 100.0.128.000)
VLC media player 1.1.10 (Version: 1.1.10)
vShare Plugin
WebReg (Version: 100.0.170.000)
WhiteCap (Version: 5.7.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinFlash (Version: 2.29.0)
WinRAR 4.11 (32-bit) (Version: 4.11.0)

========================= Memory info: ===================================

Percentage of memory in use: 61%
Total physical RAM: 3582.32 MB
Available physical RAM: 1368.62 MB
Total Pagefile: 7350.38 MB
Available Pagefile: 4611.43 MB
Total Virtual: 2047.88 MB
Available Virtual: 1945.13 MB

========================= Partitions: =====================================

1 Drive c: (VistaOS) (Fixed) (Total:149.04 GB) (Free:29.31 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:137.33 GB) (Free:137.05 GB) NTFS

========================= Users: ========================================

User accounts for \\PAT-PC

Administrator Guest Pat


**** End of log ****



FSS

Farbar Service Scanner Version: 06-08-2012
Ran by Pat (administrator) on 19-09-2012 at 07:40:36
Running from "C:\Users\Pat\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****





adware cleaner log

# AdwCleaner v2.002 - Logfile created 09/19/2012 at 08:50:06
# Updated 16/09/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Pat - PAT-PC
# Boot Mode : Normal
# Running from : C:\Users\Pat\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v3.6.25 (en-US)

Profile name : default
File : C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\4i8zr0xs.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Pat\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.60] : icon_url = "hxxps://isearch.avg.com/favicon.ico",
Deleted [l.63] : keyword = "isearch.avg.com",
Deleted [l.66] : search_url = "hxxps://isearch.avg.com/search?cid={E5EE2E1B-EB2E-4B05-A269-81F12E929CC8}&mid=&lang=&ds=&pr=&d=&v=&sap=dsp&q={searchTerms}",

*************************

AdwCleaner[R1].txt - [9117 octets] - [19/09/2012 07:53:45]
AdwCleaner[S2].txt - [9228 octets] - [19/09/2012 08:00:31]
AdwCleaner[S3].txt - [1219 octets] - [19/09/2012 08:50:06]

########## EOF - C:\AdwCleaner[S3].txt - [1279 octets] ##########

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 19 September 2012 - 08:12 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#7 helplalaman1

helplalaman1
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:08:21 PM

Posted 19 September 2012 - 09:27 AM

Rkill

Rkill 2.3.15 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/19/2012 10:19:17 AM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\System32\ACEngSvr.exe (PID: 2988) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\exefile\shell\open\command\\IsolatedCommand was changed. It was reset to "%1" %*!

* HKLM\Software\Classes\exefile\shell\runas\command\\IsolatedCommand was changed. It was reset to "%1" %*!


Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/19/2012 10:19:41 AM
Execution time: 0 hours(s), 0 minute(s), and 24 seconds(s)





Autoruns:

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ACMON" "ACMON " "ATK" "c:\program files\asus\splendid\acmon.exe"
+ "Ad-Aware Antivirus" "Ad-Aware Antivirus Launcher" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawarelauncher.exe"
+ "Ad-Aware Browsing Protection" "Ad-Aware Browsing Protection" "Lavasoft" "c:\programdata\ad-aware browsing protection\adawarebp.exe"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "ADSMTray" "ADSMTray" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\adsmtray.exe"
+ "AmIcoSinglun" "Single LUN Icon Utility for VID 058F PID 6366" "AlcorMicro Co., Ltd." "c:\program files\amicosinglun\amicosinglun.exe"
+ "AppleSyncNotifier" "AppleSyncNotifier" "Apple Inc." "c:\program files\common files\apple\mobile device support\applesyncnotifier.exe"
+ "ASUS Camera ScreenSaver" "" "" "c:\windows\asscrprolog.exe"
+ "ATKMEDIA" "ATK Media" "ASUS" "c:\program files\asus\atk media\dmedia.exe"
+ "ATKOSD2" "ATKOSD2" "ASUS" "c:\program files\asus\atkosd2\atkosd2.exe"
+ "avast" "avast! Antivirus" "AVAST Software" "c:\program files\avast software\avast\avastui.exe"
+ "BrStsMon00" "Brother Status Monitor Application" "Brother Industries, Ltd." "c:\program files\browny02\brother\brstmonw.exe"
+ "CLMLServer" "CyberLink MediaLibray Service" "CyberLink" "c:\program files\cyberlink\power2go\clmlsvc.exe"
+ "DisableS3S4" "" "" "File not found: c:\DisableS3S4.cmd"
+ "ETDWare" "ETD Ware TSR Enhancements" "ELAN Microelectronic Corp." "c:\program files\elantech\etdctrl.exe"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovemonitor.exe"
+ "HControlUser" "HControlUser" "ASUS" "c:\program files\asus\atk hotkey\hcontroluser.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "Microsoft Pinyin IME Migration" "Microsoft Pinyin IME 2007" "Microsoft Corporation" "c:\program files\common files\microsoft shared\ime12\imesc\imscmig.exe"
+ "NvCplDaemon" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
+ "P2Go_Menu" "StartMen Application" "CyberLink Corp." "c:\program files\cyberlink\power2go\muitransfer\muistartmenu.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "RtHDVCpl" "HD Audio Control Panel" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rthdvcpl.exe"
+ "Skytel" "Realtek Voice Manager" "Realtek Semiconductor Corp." "c:\program files\realtek\audio\hda\skytel.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "FancyStart daemon.lnk" "" "" "c:\windows\installer\{a9feb6d7-9c52-49fc-b956-7ab275b78890}\_5598ce641c54b66a23693f.exe"
+ "HP Digital Imaging Monitor.lnk" "HP Digital Imaging Monitor" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqtra08.exe"
"C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "OneNote 2007 Screen Clipper and Launcher.lnk" "Microsoft Office OneNote Quick Launcher" "Microsoft Corporation" "c:\program files\microsoft office\office12\onenotem.exe"
+ "OpenOffice.org 3.1.lnk" "" "" "c:\program files\openoffice.org 3\program\quickstart.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "LightScribe Control Panel" "" "Hewlett-Packard Company" "c:\program files\common files\lightscribe\lsrunonce.exe"
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "DAEMON Tools Pro Agent" "DAEMON Tools Pro Agent" "DT Soft Ltd" "c:\program files\daemon tools pro\dtproagent.exe"
+ "Facebook Update" "" "" "File not found: C:\Users\Pat\AppData\Local\Facebook\Update\FacebookUpdate.exe"
+ "LightScribe Control Panel" "" "Hewlett-Packard Company" "c:\program files\common files\lightscribe\lightscribecontrolpanel.exe"
+ "RGSC" "" "" "File not found: C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent"
+ "Sidebar" "Windows Sidebar" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "Spybot-S&D Cleaning" "Search results cleaner" "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdcleaner.exe"
+ "SUPERAntiSpyware" "SUPERAntiSpyware Application" "SUPERAntiSpyware.com" "c:\program files\superantispyware\superantispyware.exe"
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe"
+ "WMPNSCFG" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "grooveLocalGWS" "GrooveSystemServices Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovesystemservices.dll"
+ "livecall" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.dll"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "msnim" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.dll"
+ "skype-ie-addon-data" "Skype add-on for IE" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll"
+ "wlmailhtml" "Windows Live Mail" "Microsoft Corporation" "c:\program files\windows live\mail\mailcomm.dll"
+ "wlpg" "Windows Live Album Download Protocol Handler" "Microsoft Corporation" "c:\program files\windows live\photo gallery\albumdownloadprotocolhandler.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "SABShellExecuteHook Class" "ShellExecuteHook" "SuperAdBlocker.com" "c:\program files\superantispyware\sasseh.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "ADSMEnDecExt" "" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\shlext\x86\adsmendecext.dll"
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files\magiciso\misosh.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
+ "SDECon32" "Windows Explorer context menu integration" "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdecon32.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "AdAwareContextMenu" "Ad-Aware Antivirus Shell Extension" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawareshellextension.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "ADSMEnDecExt" "" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\shlext\x86\adsmendecext.dll"
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files\magiciso\misosh.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "NvContextMenu" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "Sun Microsystems, Inc." "c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "MagicISO" "MagicISO Shell Extension Module" "MagicISO, Inc." "c:\program files\magiciso\misosh.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "SDECon32" "Windows Explorer context menu integration" "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdecon32.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "00avast" "avast! Shell Extension" "AVAST Software" "c:\program files\avast software\avast\ashshell.dll"
+ "ADSMOverlayIcon" "OverlayIconShlExt" "" "c:\program files\asus\asus data security manager\shlext\x86\overlayiconshlext.dll"
+ "ADSMOverlayIcon1" "" "" "c:\program files\asus\asus data security manager\shlext\x86\overlayiconshlext1.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Ad-Aware Security Toolbar" "Ad-Aware Security Toolbar Link Library" "" "c:\program files\adawaretb\adawaredx.dll"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
+ "Bing Bar Helper" "Bing Client Extensions" "Microsoft Corporation." "c:\program files\microsoft\bingbar\bingext.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "PC Tools Browser Guard BHO" "Browser Defender Toolbar" "Threat Expert Ltd." "c:\program files\pc tools\pc tools security\bdt\pctbrowserdefender.dll"
+ "Skype Plug-In" "Skype add-on for IE" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Spybot-S&D IE Protection" "Blocks URLs that could install spyware, malware etc." "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdhelper.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files\windows live\companion\companioncore.dll"
"HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks" "" "" ""
+ "PC Tools Browser Guard" "Browser Defender Toolbar" "Threat Expert Ltd." "c:\program files\pc tools\pc tools security\bdt\pctbrowserdefender.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Ad-Aware Security Toolbar" "Ad-Aware Security Toolbar Link Library" "" "c:\program files\adawaretb\adawaredx.dll"
+ "avast! WebRep" "avast! WebRep Plugin" "AVAST Software" "c:\program files\avast software\avast\aswwebrepie.dll"
+ "Bing" "Bing Client Extensions" "Microsoft Corporation." "c:\program files\microsoft\bingbar\bingext.dll"
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "PC Tools Browser Guard" "Browser Defender Toolbar" "Threat Expert Ltd." "c:\program files\pc tools\pc tools security\bdt\pctbrowserdefender.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files\windows live\writer\writerbrowserextension.dll"
+ "Messenger Companion (Ctrl+Shift+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files\windows live\companion\companioncore.dll"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office12\onbttnie.dll"
+ "Show or hide HP Smart Web Printing" "HP Smart Web Printing add-on for Internet Explorer" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Skype Plug-In" "Skype add-on for IE" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Spybot - Search && Destroy Configuration" "Blocks URLs that could install spyware, malware etc." "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdhelper.dll"
"Task Scheduler" "" "" ""
+ "\0" "Internet Explorer" "Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe"
+ "\4474" "" "" "File not found: C:\Users\Pat\AppData\Local\Temp\launchie.vbs"
+ "\Ad-Aware Antivirus Scheduled Scan" "Ad-Aware Antivirus Launcher" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawarelauncher.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "\DriverUpdate Startup" "DriverUpdate" "SlimWare Utilities, Inc." "c:\program files\driverupdate\driverupdate.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-3458617314-4277988172-478689650-1000Core" "" "" "File not found: C:\Users\Pat\AppData\Local\Facebook\Update\FacebookUpdate.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-3458617314-4277988172-478689650-1000UA" "" "" "File not found: C:\Users\Pat\AppData\Local\Facebook\Update\FacebookUpdate.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\WindowsCalendar\Reminders - Pat" "Windows Calendar" "Microsoft Corporation" "c:\program files\windows calendar\wincal.exe"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
+ "\SUPERAntiSpyware Scheduled Task 03760ffb-0ee2-4d3c-9413-a6553f7a3073" "SUPERAntiSpyware Task Dispatcher" "SUPERAdBlocker.com" "c:\program files\superantispyware\sastask.exe"
+ "\SUPERAntiSpyware Scheduled Task 08885477-7436-4a10-820f-0a8ac055dd20" "SUPERAntiSpyware Task Dispatcher" "SUPERAdBlocker.com" "c:\program files\superantispyware\sastask.exe"
+ "\Your File Updater" "" "" "File not found: C:\Program Files\YourFileDownloader\YourFileUpdater.exe"
+ "\{B1917D9E-25D3-4FEA-9868-A4B34C90A667}" "Internet Explorer" "Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe"
+ "\{F94B3FA9-3835-45D1-9157-DD9453441C1C}" "Skype " "Skype Technologies S.A." "c:\program files\skype\phone\skype.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore.exe"
+ "Ad-Aware Service" "Ad-Aware Service" "Lavasoft Limited" "c:\program files\ad-aware antivirus\adawareservice.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe"
+ "ADSMService" "ADSMSrv" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\adsmsrv.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "ASLDRService" "ASLDR Service" "" "c:\program files\asus\atk hotkey\asldrsrv.exe"
+ "ATKGFNEXSrv" "GFNEXSrv" "" "c:\program files\atkgfnex\gfnexsrv.exe"
+ "avast! Antivirus" "Manages and implements avast! antivirus services for this computer. This includes the resident protection, the virus chest and the scheduler." "AVAST Software" "c:\program files\avast software\avast\avastsvc.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files\microsoft\bingbar\bbsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "Browser Defender Update Service" "Browser Defender Update Service" "Threat Expert Ltd." "c:\program files\pc tools\pc tools security\bdt\bdtupdateservice.exe"
+ "BrYNSvc" "BrYNCSvc" "Brother Industries, Ltd." "c:\program files\browny02\brynsvc.exe"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files\windows live\family safety\fsssvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "hpqcxs08" "HP CUE Context Manager Objects" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc" "This service detects and monitors CUE devices on the system." "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqddsvc.dll"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files\common files\lightscribe\lssrvc.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveauditservice.exe"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "SBAMSvc" "Manages your antispyware and antivirus application" "GFI Software" "c:\program files\ad-aware antivirus\sbamsvc.exe"
+ "sdAuxService" "Provides auxiliary PC Tools Security services. If this service is disabled spyware protection will be reduced." "PC Tools" "c:\program files\pc tools\pc tools security\pctsauxs.exe"
+ "sdCoreService" "Provides spyware and malware protection for the system. If this service is disabled spyware protection will be disabled." "PC Tools" "c:\program files\pc tools\pc tools security\pctssvc.exe"
+ "SDScannerService" "Offers malware scanning services to Spybot-S&D modules." "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdfssvc.exe"
+ "SDUpdateService" "Downloads Spybot updates and installs them." "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdupdsvc.exe"
+ "SDWSCService" "Integrates Spybot into the Windows Security Center." "Safer-Networking Ltd." "c:\program files\spybot - search & destroy 2\sdwscsvc.exe"
+ "SeaPort" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation" "c:\program files\microsoft\bingbar\seaport.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe"
+ "SRS_VolSync_Service" "Handles synchronization of the SRS volume with Realtek codecs." "SRS Labs, Inc." "c:\program files\srs labs\srs premium sound\srs_volsync.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AsDsm" "Data Security Manager Driver" "ASUSTek Computer Inc" "c:\windows\system32\drivers\asdsm.sys"
+ "ASMMAP" "" "" "c:\program files\atkgfnex\asmmap.sys"
+ "aswFsBlk" "avast! mini-filter driver (aswFsBlk)" "AVAST Software" "c:\windows\system32\drivers\aswfsblk.sys"
+ "aswMonFlt" "avast! mini-filter driver (aswMonFlt)" "AVAST Software" "c:\windows\system32\drivers\aswmonflt.sys"
+ "AswRdr" "avast! TDI Redirect driver" "AVAST Software" "c:\windows\system32\drivers\aswrdr.sys"
+ "aswSnx" "avast! virtualization driver (aswSnx)" "AVAST Software" "c:\windows\system32\drivers\aswsnx.sys"
+ "aswSP" "avast! Self Protection" "AVAST Software" "c:\windows\system32\drivers\aswsp.sys"
+ "aswTdi" "avast! Network Shield TDI driver" "AVAST Software" "c:\windows\system32\drivers\aswtdi.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athr.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "CRFILTER" "USB Mass Storage Filter Driver" "Generic" "c:\windows\system32\drivers\crfilter.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys"
+ "esgiguard" "" "" "File not found: C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys"
+ "ETD" "ETD Ware TSR Enhancements" "ELAN Microelectronic Corp." "c:\windows\system32\drivers\etd.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhda.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "kbfiltr" "Keyboard Filter Driver" " " "c:\windows\system32\drivers\kbfiltr.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "MTsensor" "ATK0100 ACPI Utility" "ATK0100" "c:\windows\system32\drivers\atkacpi.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 186.31 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvsmu" "NVIDIA nForce™ SMU Microcontroller Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvsmu.sys"
+ "nvstor32" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor32.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "PCTBD" "PC Tools BD Driver" "PC Tools" "c:\windows\system32\drivers\pctbd.sys"
+ "PCTCore" "PC Tools KDS Core Driver" "PC Tools" "c:\windows\system32\drivers\pctcore.sys"
+ "pctDS" "PC Tools Data Store" "PC Tools" "c:\windows\system32\drivers\pctds.sys"
+ "PCTSD" "PC Tools SD Driver" "PC Tools" "c:\windows\system32\drivers\pctsd.sys"
+ "RTL8169" "Realtek 8101E/8168/8169 NDIS6 32-bit Driver " "Realtek Corporation " "c:\windows\system32\drivers\rtlh86.sys"
+ "SABProcEnum" "" "" "File not found: C:\Program Files\Internet Explorer\SABProcEnum.sys"
+ "SASDIFSV" "SASDIFSV.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv.sys"
+ "SASKUTIL" "SASKUTIL.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil.sys"
+ "sbapifs" "GFI Active Protection Filter Driver" "GFI Software" "c:\windows\system32\drivers\sbapifs.sys"
+ "sbhips" "GFI Firewall SDK Host Intrusion Prevention System Driver" "GFI Software" "c:\windows\system32\drivers\sbhips.sys"
+ "SBRE" "GFI Anti-Rootkit Driver" "GFI Software" "c:\windows\system32\drivers\sbredrv.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "smserial" "Motorola SM56 Modem WDM Driver" "Motorola Inc." "c:\windows\system32\drivers\smserial.sys"
+ "SNP2UVC" "UVC Camera Streaming Driver" "" "c:\windows\system32\drivers\snp2uvc.sys"
+ "sptd" "" "" "c:\windows\system32\drivers\sptd.sys"
+ "SRS_PremiumSound_Service" "SRS Premium Sound driver" "" "c:\windows\system32\drivers\srs_premiumsound_i386.sys"
+ "SWDUMon" "Driver Update Installer Monitor" "" "c:\windows\system32\drivers\swdumon.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "usbbus" "LG CDMA USB Multi function Driver" "LG Electronics Inc." "c:\windows\system32\drivers\lgusbbus.sys"
+ "UsbDiag" "LGE CDMA USB Serial Port" "LG Electronics Inc." "c:\windows\system32\drivers\lgusbdiag.sys"
+ "USBModem" "LGE CDMA Modem Support" "LG Electronics Inc." "c:\windows\system32\drivers\lgusbmodem.sys"
+ "yukonwlh" "NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller" "Marvell" "c:\windows\system32\drivers\yk60x86.sys"
"HKCU\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "vidc.ffds" "" "" "c:\windows\system32\ff_vfw.dll"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.ac3acm" "AC-3 ACM Codec" "fccHandler" "c:\windows\system32\ac3acm.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.l3codecp" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecp.acm"
+ "msacm.lameacm" "Lame MP3 codec engine" "http://www.mp3dev.org/" "c:\windows\system32\lameacm.acm"
+ "msacm.vorbis" "Ogg Vorbis CODEC for MSACM" "HMS http://hp.vector.co.jp/authors/VA012897/" "c:\windows\system32\vorbis.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.ffds" "" "" "c:\windows\system32\ff_vfw.dll"
+ "VIDC.XVID" "" "" "c:\windows\system32\xvidvfw.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "AC3File" "" "" "c:\program files\k-lite codec pack\filters\ac3file.ax"
+ "AC3Filter" "ac3filter" "" "c:\program files\satsuki decoder pack\filtres\ac3filter.ax"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ASUS Color Convert" "ASUS Color Preview Filter" "ASUSTek" "c:\program files\asus\splendid\rgbtran.ax"
+ "ASUS Color Preview Filter" "ASUS Color Preview Filter" "ASUSTek" "c:\program files\asus\splendid\rgbtran.ax"
+ "ASUS SplitVCam Renderer" "" "" "c:\program files\asus\virtualcamera\splitvcamrenderer.ax"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gvb.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaudiocd.ax"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gdump.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2greader.ax"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files\cyberlink\power2go\p2gvideostabilizer.ax"
+ "DC-Bass Source" "DirectShow™ Audio Decoder" "http://www.dsp-worx.de" "c:\program files\k-lite codec pack\filters\dcbasssource.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\program files\k-lite codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\program files\k-lite codec pack\filters\vsfilter.dll"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack\ffdshow\ffdshow.ax"
+ "File Source (Monkey Audio)" "" "" "c:\program files\k-lite codec pack\filters\monkeysource.ax"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Gargle" "Gargle Filter (Sample)" "Microsoft Corporation" "c:\program files\asus\asus lifeframe3\lifeframeaudio.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files\k-lite codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files\k-lite codec pack\filters\haali\splitter.ax"
+ "HP VTK Frame Grabber Filter" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK MPEG-1 Encoder" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Resize Filter" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "HP VTK Rotate Filter" "HP Video Toolkit" "Hewlett-Packard Co." "c:\program files\common files\hp\digital imaging\bin\hpqvtk01.dll"
+ "LifeFrame Image Effects" "Camera Filter" "ASUS" "c:\program files\asus\asus lifeframe3\camera_effect.ax"
+ "Logon Effects" "SmartLogon Filter" "ASUS" "c:\program files\asus\smartlogon\face_filter.ax"
+ "madFlac Decoder" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files\k-lite codec pack\filters\madflac.ax"
+ "madFlac Source" "DirectShow FLAC Decoder" "www.madshi.net" "c:\program files\k-lite codec pack\filters\madflac.ax"
+ "madVR" "madVR" "www.madshi.net" "c:\program files\satsuki decoder pack\filtres\madvr.ax"
+ "MONOGRAM AMR Decoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM AMR Encoder" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM AMR Mux" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM AMR Splitter" "AMR Filter Pack" "MONOGRAM Multimedia, s.r.o." "c:\program files\k-lite codec pack\filters\mmamr.ax"
+ "MONOGRAM Musepack Decoder" "mmmpcdec" "" "c:\program files\k-lite codec pack\filters\mmmpcdec.ax"
+ "MONOGRAM Musepack Splitter" "mmmpcdmx" "" "c:\program files\k-lite codec pack\filters\mmmpcdmx.ax"
+ "MotionDetect" "" "" "c:\program files\asus\asus lifeframe3\motiondetect.ax"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\flvsplitter.ax"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\flvsplitter.ax"
+ "MPC - MP4 Source" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "MPC - MP4 Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "MPC - Mpeg Source (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mpegsplitter.ax"
+ "MPC - Mpeg Splitter (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mpegsplitter.ax"
+ "MPC - MPEG-2 Video Decoder (Gabest)" "MPEG-2 Decoder Filter for DirectShow" "MPC-HC Team" "c:\program files\satsuki decoder pack\filtres\mpeg2decfilter.ax"
+ "MPC - MPEG4 Video Source" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "MPC - MPEG4 Video Splitter" "MP4 Splitter" "MPC-HC Team" "c:\program files\k-lite codec pack\filters\mp4splitter.ax"
+ "MPC - RealAudio Decoder" "RealMedia Splitter" "MPC-HC Team" "c:\program files\satsuki decoder pack\filtres\realmediasplitter.ax"
+ "MPC - RealMedia Source" "RealMedia Splitter" "MPC-HC Team" "c:\program files\satsuki decoder pack\filtres\realmediasplitter.ax"
+ "MPC - RealMedia Splitter" "RealMedia Splitter" "MPC-HC Team" "c:\program files\satsuki decoder pack\filtres\realmediasplitter.ax"
+ "MPC - RealVideo Decoder" "RealMedia Splitter" "MPC-HC Team" "c:\program files\satsuki decoder pack\filtres\realmediasplitter.ax"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files\cyberlink\power2go\p2gresample.ax"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "RadLight APE DirectShow Filter" "RLAPEDec" "RadLight" "c:\program files\satsuki decoder pack\filtres\rlapedec.ax"
+ "RadLight MPC DirectShow Filter" "RLMPCDec" "RadLight" "c:\program files\satsuki decoder pack\filtres\rlmpcdec.ax"
+ "RadLight OptimFROG DirectShow Filter" "RLOFRDec" "RadLight" "c:\program files\satsuki decoder pack\filtres\rlofrdec.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\program files\k-lite codec pack\filters\vp7dec.ax"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files\k-lite codec pack\filters\wavpackdsdecoder.ax"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files\k-lite codec pack\filters\wavpackdssplitter.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "AdsmCredentialProvider" "ADSM Credential Provider" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\shlext\x86\adsmcredentialprovider.dll"
+ "AdsmCredentialProvider" "ADSM Credential Provider" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\shlext\x86\adsmcredentialprovider.dll"
+ "FaceCredentialProvider" "SmartLogon Dynamic Link Library" "ASUS" "c:\windows\system32\facecredentialprovider.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters" "" "" ""
+ "AdsmCredentialProvider" "ADSM Credential Provider" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\shlext\x86\adsmcredentialprovider.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "SDWinLogon" "" "" "File not found: SDWinLogon.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries" "" "" ""
+ "PCTOOLS CONTENT FILTER PROVIDER" "PC Tools Layered Service Provider" "PC Tools Research Pty Ltd." "c:\program files\common files\pc tools\lsp\pctlsp.dll"
+ "PCTOOLS over [MSAFD Tcpip [RAW/IP]]" "PC Tools Layered Service Provider" "PC Tools Research Pty Ltd." "c:\program files\common files\pc tools\lsp\pctlsp.dll"
+ "PCTOOLS over [MSAFD Tcpip [RAW/IPv6]]" "PC Tools Layered Service Provider" "PC Tools Research Pty Ltd." "c:\program files\common files\pc tools\lsp\pctlsp.dll"
+ "PCTOOLS over [MSAFD Tcpip [TCP/IP]]" "PC Tools Layered Service Provider" "PC Tools Research Pty Ltd." "c:\program files\common files\pc tools\lsp\pctlsp.dll"
+ "PCTOOLS over [MSAFD Tcpip [TCP/IPv6]]" "PC Tools Layered Service Provider" "PC Tools Research Pty Ltd." "c:\program files\common files\pc tools\lsp\pctlsp.dll"
+ "PCTOOLS over [MSAFD Tcpip [UDP/IP]]" "PC Tools Layered Service Provider" "PC Tools Research Pty Ltd." "c:\program files\common files\pc tools\lsp\pctlsp.dll"
+ "PCTOOLS over [MSAFD Tcpip [UDP/IPv6]]" "PC Tools Layered Service Provider" "PC Tools Research Pty Ltd." "c:\program files\common files\pc tools\lsp\pctlsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PCL hpz3l5ha" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3l5ha.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages" "" "" ""
+ "C:\Program Files\ASUS\ASUS Data Security Manager\ASPWDFLT" "ASPWDFLT" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\aspwdflt.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "ASPWDFilter" "Login Filter" "ASUSTek Computer Inc." "c:\program files\asus\asus data security manager\aspwdflt.dll"
"C:\Users\Pat\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Avast! antivirus monitor" "Avast! antivirus sidebar gadget." "AVAST Software" "C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget\Gadget.xml"
+ "Calendar" "Browse the days of the calendar." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\en-us\Gadget.xml"
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\Clock.gadget\en-us\Gadget.xml"
+ "Notes" "Capture ideas, notes, and reminders in a quick and easy way." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Notes.Gadget\en-us\Gadget.xml"
+ "Weather" "See what the weather looks like around the world." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-us\Gadget.xml"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 19 September 2012 - 09:34 AM

Any current issues?

#9 helplalaman1

helplalaman1
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:08:21 PM

Posted 19 September 2012 - 10:12 AM

The system seems to be running normally, if anything comes up in any of my scans I'll post back in here, but I think whatever was the problem is fixed. Thanks a lot for your help and your patience!

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 19 September 2012 - 10:14 AM

Good :)

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vsta/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your flash player

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 helplalaman1

helplalaman1
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:08:21 PM

Posted 24 September 2012 - 10:19 AM

Hi again, after working well it seems like the virus or part of it has come back. What I think happened is that I used my regular browser, google chrome and had no problem. 2 days ago a friend of mine went on my computer, they didn't download anything but they were using mozilla firefox instead. Yesterday my computer became very slow after startup, but I didnt think much of it at the time since I wasnt on it long. Today it worked normally for 2 minutes when I started up, but then was very slow for the next 40 minutes, and when I tried to open the task manager it did not open, instead I got a message: Failure, security options are not working, or something along those lines. The speed was still very slow and was not improving, so I shut it off and when it started up again it seemed to freeze when microsoft was starting up. I didn't wait too long for it this time though, so it may have started up normally if I waited longer. Instead I shut it off again and went into safemode to do a few of your recommended scans from earlier.

I think this problem is due to my friend on mozilla because I did an AdwCleaner check and when it showed my browsers there was a file found for Mozilla that had something along the lines of "yontoo" in it, and it was some sort of extension. I deleted Mozilla and did not save that log which I should of thought to do, but here are some logs of a few scans I made.

Rkill:

Rkill 2.3.15 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/24/2012 10:49:13 AM in x86 mode.
Windows Version: Windows Vista ™ Home Premium Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Base Filtering Engine (BFE) is not Running.
Startup Type set to: Automatic

* DHCP Client (Dhcp) is not Running.
Startup Type set to: Automatic

* DNS Client (Dnscache) is not Running.
Startup Type set to: Automatic

* COM+ Event System (EventSystem) is not Running.
Startup Type set to: Automatic

* Windows Firewall (MpsSvc) is not Running.
Startup Type set to: Automatic

* Network Connections (Netman) is not Running.
Startup Type set to: Manual

* Network Store Interface Service (nsi) is not Running.
Startup Type set to: Automatic

* Security Center (wscsvc) is not Running.
Startup Type set to: Automatic (Delayed Start)

* Windows Update (wuauserv) is not Running.
Startup Type set to: Automatic (Delayed Start)

* Ancilliary Function Driver for Winsock (AFD) is not Running.
Startup Type set to: System

* Windows Firewall Authorization Driver (mpsdrv) is not Running.
Startup Type set to: Manual

* NETBT (NetBT) is not Running.
Startup Type set to: System

* NSI proxy service (nsiproxy) is not Running.
Startup Type set to: System

* NetIO Legacy TDI Support Driver (tdx) is not Running.
Startup Type set to: System

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/24/2012 10:49:44 AM
Execution time: 0 hours(s), 0 minute(s), and 31 seconds(s)


Minitoolbox:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Pat (administrator) on 24-09-2012 at 10:58:27
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/24/2012 10:55:52 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/24/2012 10:54:47 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (09/24/2012 10:48:05 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/24/2012 10:47:03 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (09/24/2012 10:07:44 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/23/2012 02:23:36 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/23/2012 01:34:00 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/23/2012 03:21:25 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/23/2012 03:17:14 AM) (Source: Bonjour Service) (User: )
Description: 532: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)

Error: (09/23/2012 03:17:14 AM) (Source: Bonjour Service) (User: )
Description: 520: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)


System errors:
=============
Error: (09/24/2012 10:55:52 AM) (Source: Service Control Manager) (User: )
Description: aswSnx
aswSP
aswTdi
PCTSD
SASDIFSV
SASKUTIL
spldr
sptd
Wanarpv6

Error: (09/24/2012 10:55:52 AM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (09/24/2012 10:54:53 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: C:\Windows\system32\athihvs.dll21

Error: (09/24/2012 10:54:55 AM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (09/24/2012 10:54:47 AM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (09/24/2012 10:54:40 AM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (09/24/2012 10:53:57 AM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (09/24/2012 10:48:05 AM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068

Error: (09/24/2012 10:48:05 AM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068

Error: (09/24/2012 10:48:05 AM) (Source: Service Control Manager) (User: )
Description: Network List ServiceNetwork Location Awareness%%1068


Microsoft Office Sessions:
=========================
Error: (11/30/2011 06:12:14 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.

Error: (11/02/2011 10:35:16 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 28 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/17/2011 10:52:19 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:38:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 395 seconds with 60 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:31:58 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 342 seconds with 60 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:26:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 400 seconds with 120 seconds of active time. This session ended with a crash.

Error: (04/17/2011 02:18:56 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1940 seconds with 600 seconds of active time. This session ended with a crash.

Error: (03/17/2011 02:19:33 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 17143 seconds with 6180 seconds of active time. This session ended with a crash.

Error: (02/22/2011 00:13:32 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1919 seconds with 780 seconds of active time. This session ended with a crash.

Error: (02/16/2011 04:41:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 336 seconds with 60 seconds of active time. This session ended with a crash.


========================= Devices: ================================


**** End of log ****


And this is the last adware cleaner log I did:
# AdwCleaner v2.002 - Logfile created 09/24/2012 at 11:08:03
# Updated 16/09/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Pat - PAT-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Pat\Downloads\adwcleaner (1).exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Found : HKCU\Software\DataMngr_Toolbar

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Pat\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.29] : icon_url = "hxxps://isearch.avg.com/favicon.ico",
Found [l.32] : keyword = "isearch.avg.com",
Found [l.35] : search_url = "hxxps://isearch.avg.com/search?cid={E5EE2E1B-EB2E-4B05-A269-81F12E929CC8}&mid=&lang=&ds=&pr=&d=&v=&sap=dsp&q={searchTerms}",

*************************

AdwCleaner[R1].txt - [9117 octets] - [19/09/2012 07:53:45]
AdwCleaner[S2].txt - [9228 octets] - [19/09/2012 08:00:31]
AdwCleaner[S3].txt - [1348 octets] - [19/09/2012 08:50:06]
AdwCleaner[R2].txt - [1565 octets] - [24/09/2012 10:50:46]
AdwCleaner[S4].txt - [1589 octets] - [24/09/2012 10:51:44]
AdwCleaner[R3].txt - [1408 octets] - [24/09/2012 11:06:13]
AdwCleaner[R4].txt - [1468 octets] - [24/09/2012 11:07:38]
AdwCleaner[R5].txt - [1403 octets] - [24/09/2012 11:08:03]

########## EOF - C:\AdwCleaner[R5].txt - [1463 octets] ##########



I must note that all of these scans were done in safe mode though. Should I just follow the same steps from earlier on? Thanks again

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 24 September 2012 - 10:43 AM

Please run ESET and malwarebytes scan in normal mode

Do you mean that your system is too slow?

#13 helplalaman1

helplalaman1
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:08:21 PM

Posted 25 September 2012 - 11:13 AM

I guess it's fine now, I did find a log of what the mozilla folder was called, it was: C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\4i8zr0xs.default\extensions\plugin@yontoo.com

I'll still run those scans though, thanks a bunch again! :)

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 25 September 2012 - 01:08 PM

:thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users