Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help me remove TR/ATRAPS.gen2 please


  • Please log in to reply
12 replies to this topic

#1 mlhaynes4

mlhaynes4

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 27 September 2012 - 07:56 PM

Hey guys,

I tried removing the virus by my own, but I'm a computer novice when it comes to actual programming and such.. so I was unable to do so. I've done a little research on the virus though and I see it is a big threat, so any help would be greatly appreciated.

Thanks in advance



Mod Edit: Moved from WIN7 to Am I Infected ~~~ boopme

Edited by boopme, 27 September 2012 - 08:47 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:01 PM

Posted 27 September 2012 - 08:39 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 mlhaynes4

mlhaynes4
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 27 September 2012 - 11:37 PM

23:04:22.0086 3028 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
23:04:22.0456 3028 ============================================================
23:04:22.0456 3028 Current date / time: 2012/09/27 23:04:22.0456
23:04:22.0456 3028 SystemInfo:
23:04:22.0456 3028
23:04:22.0456 3028 OS Version: 6.1.7601 ServicePack: 1.0
23:04:22.0456 3028 Product type: Workstation
23:04:22.0456 3028 ComputerName: JASON-PC
23:04:22.0456 3028 UserName: Jason
23:04:22.0456 3028 Windows directory: C:\Windows
23:04:22.0456 3028 System windows directory: C:\Windows
23:04:22.0456 3028 Processor architecture: Intel x86
23:04:22.0456 3028 Number of processors: 4
23:04:22.0456 3028 Page size: 0x1000
23:04:22.0456 3028 Boot type: Normal boot
23:04:22.0456 3028 ============================================================
23:04:31.0656 3028 Drive \Device\Harddisk1\DR1 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
23:04:31.0706 3028 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:04:31.0726 3028 ============================================================
23:04:31.0726 3028 \Device\Harddisk1\DR1:
23:04:31.0726 3028 MBR partitions:
23:04:31.0726 3028 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:04:31.0726 3028 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A352000
23:04:31.0726 3028 \Device\Harddisk0\DR0:
23:04:31.0726 3028 MBR partitions:
23:04:31.0726 3028 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384000
23:04:31.0726 3028 ============================================================
23:04:31.0766 3028 C: <-> \Device\Harddisk0\DR0\Partition1
23:04:31.0786 3028 D: <-> \Device\Harddisk1\DR1\Partition2
23:04:31.0786 3028 ============================================================
23:04:31.0786 3028 Initialize success
23:04:31.0786 3028 ============================================================
23:04:35.0256 6104 ============================================================
23:04:35.0256 6104 Scan started
23:04:35.0256 6104 Mode: Manual;
23:04:35.0256 6104 ============================================================
23:04:37.0546 6104 ================ Scan system memory ========================
23:04:37.0546 6104 System memory - ok
23:04:37.0546 6104 ================ Scan services =============================
23:04:37.0696 6104 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:04:37.0726 6104 1394ohci - ok
23:04:37.0776 6104 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:04:37.0776 6104 ACPI - ok
23:04:37.0816 6104 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:04:37.0836 6104 AcpiPmi - ok
23:04:37.0916 6104 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:04:37.0916 6104 AdobeARMservice - ok
23:04:37.0986 6104 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
23:04:37.0986 6104 AdobeFlashPlayerUpdateSvc - ok
23:04:38.0026 6104 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:04:38.0076 6104 adp94xx - ok
23:04:38.0106 6104 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:04:38.0126 6104 adpahci - ok
23:04:38.0156 6104 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:04:38.0176 6104 adpu320 - ok
23:04:38.0216 6104 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:04:38.0236 6104 AeLookupSvc - ok
23:04:38.0296 6104 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
23:04:38.0296 6104 AFD - ok
23:04:38.0326 6104 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
23:04:38.0356 6104 agp440 - ok
23:04:38.0386 6104 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
23:04:38.0406 6104 aic78xx - ok
23:04:38.0426 6104 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
23:04:38.0446 6104 ALG - ok
23:04:38.0466 6104 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
23:04:38.0486 6104 aliide - ok
23:04:38.0516 6104 [ 50EBBB86E493BD9AB7DDF914A90EEF8E ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:04:38.0516 6104 AMD External Events Utility - ok
23:04:38.0616 6104 AMD FUEL Service - ok
23:04:38.0626 6104 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:04:38.0636 6104 amdagp - ok
23:04:38.0666 6104 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
23:04:38.0686 6104 amdide - ok
23:04:38.0716 6104 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
23:04:38.0736 6104 amdiox86 - ok
23:04:38.0766 6104 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:04:38.0786 6104 AmdK8 - ok
23:04:38.0996 6104 [ 70EB74785AB7FC603FEF19D87B7A7946 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:04:39.0326 6104 amdkmdag - ok
23:04:39.0356 6104 [ BA99833BBDE9C4FF389FC8114FB14843 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:04:39.0376 6104 amdkmdap - ok
23:04:39.0396 6104 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:04:39.0396 6104 AmdPPM - ok
23:04:39.0426 6104 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:04:39.0446 6104 amdsata - ok
23:04:39.0486 6104 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:04:39.0496 6104 amdsbs - ok
23:04:39.0516 6104 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:04:39.0516 6104 amdxata - ok
23:04:39.0586 6104 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
23:04:39.0586 6104 AMD_RAIDXpert - ok
23:04:39.0636 6104 [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
23:04:39.0636 6104 AntiVirSchedulerService - ok
23:04:39.0676 6104 [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
23:04:39.0676 6104 AntiVirService - ok
23:04:39.0706 6104 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
23:04:39.0736 6104 AODDriver4.01 - ok
23:04:39.0746 6104 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
23:04:39.0746 6104 AODDriver4.1 - ok
23:04:39.0776 6104 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
23:04:39.0796 6104 AppID - ok
23:04:39.0836 6104 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:04:39.0856 6104 AppIDSvc - ok
23:04:39.0876 6104 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
23:04:39.0896 6104 Appinfo - ok
23:04:39.0916 6104 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
23:04:39.0946 6104 AppMgmt - ok
23:04:39.0986 6104 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:04:40.0006 6104 arc - ok
23:04:40.0026 6104 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:04:40.0056 6104 arcsas - ok
23:04:40.0076 6104 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:04:40.0096 6104 AsyncMac - ok
23:04:40.0126 6104 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
23:04:40.0126 6104 atapi - ok
23:04:40.0156 6104 [ 6ADC42CF4A6AB84975CA63DCCFAAF5D8 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
23:04:40.0176 6104 AtiHDAudioService - ok
23:04:40.0376 6104 [ 70EB74785AB7FC603FEF19D87B7A7946 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:04:40.0436 6104 atikmdag - ok
23:04:40.0466 6104 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:04:40.0476 6104 AudioEndpointBuilder - ok
23:04:40.0486 6104 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:04:40.0486 6104 Audiosrv - ok
23:04:40.0516 6104 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
23:04:40.0516 6104 avgntflt - ok
23:04:40.0536 6104 [ 3001E24F340D400BFF85935E5777FC5B ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
23:04:40.0556 6104 avgtp - ok
23:04:40.0586 6104 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
23:04:40.0616 6104 avipbb - ok
23:04:40.0626 6104 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
23:04:40.0656 6104 avkmgr - ok
23:04:40.0686 6104 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:04:40.0716 6104 AxInstSV - ok
23:04:40.0756 6104 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
23:04:40.0786 6104 b06bdrv - ok
23:04:40.0816 6104 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
23:04:40.0846 6104 b57nd60x - ok
23:04:40.0886 6104 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
23:04:40.0906 6104 BDESVC - ok
23:04:40.0926 6104 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
23:04:40.0936 6104 Beep - ok
23:04:40.0956 6104 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:04:40.0976 6104 blbdrive - ok
23:04:41.0006 6104 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:04:41.0006 6104 bowser - ok
23:04:41.0026 6104 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:04:41.0036 6104 BrFiltLo - ok
23:04:41.0046 6104 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:04:41.0066 6104 BrFiltUp - ok
23:04:41.0096 6104 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
23:04:41.0096 6104 Browser - ok
23:04:41.0106 6104 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:04:41.0146 6104 Brserid - ok
23:04:41.0166 6104 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:04:41.0176 6104 BrSerWdm - ok
23:04:41.0196 6104 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:04:41.0216 6104 BrUsbMdm - ok
23:04:41.0226 6104 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:04:41.0246 6104 BrUsbSer - ok
23:04:41.0266 6104 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:04:41.0296 6104 BTHMODEM - ok
23:04:41.0326 6104 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
23:04:41.0346 6104 bthserv - ok
23:04:41.0356 6104 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:04:41.0386 6104 cdfs - ok
23:04:41.0436 6104 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:04:41.0456 6104 cdrom - ok
23:04:41.0496 6104 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
23:04:41.0526 6104 CertPropSvc - ok
23:04:41.0556 6104 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:04:41.0586 6104 circlass - ok
23:04:41.0606 6104 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
23:04:41.0606 6104 CLFS - ok
23:04:41.0666 6104 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:04:41.0696 6104 clr_optimization_v2.0.50727_32 - ok
23:04:41.0766 6104 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:04:41.0766 6104 clr_optimization_v4.0.30319_32 - ok
23:04:41.0786 6104 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:04:41.0816 6104 CmBatt - ok
23:04:41.0826 6104 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:04:41.0846 6104 cmdide - ok
23:04:41.0886 6104 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
23:04:41.0886 6104 CNG - ok
23:04:41.0896 6104 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:04:41.0926 6104 Compbatt - ok
23:04:41.0946 6104 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:04:41.0966 6104 CompositeBus - ok
23:04:41.0986 6104 COMSysApp - ok
23:04:41.0996 6104 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:04:42.0026 6104 crcdisk - ok
23:04:42.0086 6104 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
23:04:42.0106 6104 Creative ALchemy AL6 Licensing Service - ok
23:04:42.0126 6104 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
23:04:42.0136 6104 Creative Audio Engine Licensing Service - ok
23:04:42.0176 6104 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:04:42.0176 6104 CryptSvc - ok
23:04:42.0206 6104 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
23:04:42.0236 6104 CSC - ok
23:04:42.0266 6104 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
23:04:42.0276 6104 CscService - ok
23:04:42.0286 6104 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
23:04:42.0316 6104 CT20XUT - ok
23:04:42.0336 6104 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
23:04:42.0336 6104 CT20XUT.SYS - ok
23:04:42.0376 6104 [ 7991921095C3D966EA36071A11B05AFB ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
23:04:42.0406 6104 ctac32k - ok
23:04:42.0446 6104 [ EE5B6899FD0910A147A39787210D847D ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
23:04:42.0476 6104 ctaud2k - ok
23:04:42.0526 6104 [ 7D564A71907B389C62191E7D7B9069D8 ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
23:04:42.0526 6104 CTAudSvcService - ok
23:04:42.0566 6104 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
23:04:42.0606 6104 CTEXFIFX - ok
23:04:42.0626 6104 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
23:04:42.0636 6104 CTEXFIFX.SYS - ok
23:04:42.0656 6104 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
23:04:42.0686 6104 CTHWIUT - ok
23:04:42.0696 6104 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
23:04:42.0696 6104 CTHWIUT.SYS - ok
23:04:42.0706 6104 [ 526F4A48A7E33F9FE6C9297DF060F695 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
23:04:42.0726 6104 ctprxy2k - ok
23:04:42.0746 6104 [ DACD54EFAB4D5F42693077FFC36B18E1 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
23:04:42.0766 6104 ctsfm2k - ok
23:04:42.0806 6104 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
23:04:42.0816 6104 DcomLaunch - ok
23:04:42.0846 6104 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
23:04:42.0856 6104 defragsvc - ok
23:04:42.0886 6104 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:04:42.0886 6104 DfsC - ok
23:04:42.0926 6104 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:04:42.0926 6104 Dhcp - ok
23:04:42.0956 6104 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
23:04:42.0956 6104 discache - ok
23:04:42.0976 6104 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:04:42.0976 6104 Disk - ok
23:04:43.0006 6104 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:04:43.0006 6104 Dnscache - ok
23:04:43.0026 6104 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
23:04:43.0056 6104 dot3svc - ok
23:04:43.0076 6104 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
23:04:43.0076 6104 DPS - ok
23:04:43.0106 6104 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:04:43.0126 6104 drmkaud - ok
23:04:43.0156 6104 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:04:43.0186 6104 DXGKrnl - ok
23:04:43.0216 6104 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
23:04:43.0216 6104 EapHost - ok
23:04:43.0306 6104 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
23:04:43.0366 6104 ebdrv - ok
23:04:43.0396 6104 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
23:04:43.0396 6104 EFS - ok
23:04:43.0446 6104 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:04:43.0496 6104 ehRecvr - ok
23:04:43.0526 6104 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
23:04:43.0556 6104 ehSched - ok
23:04:43.0586 6104 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:04:43.0616 6104 elxstor - ok
23:04:43.0636 6104 [ 8013545EB6A4C3A7F4FCB397F37643DF ] emupia C:\Windows\system32\drivers\emupia2k.sys
23:04:43.0666 6104 emupia - ok
23:04:43.0686 6104 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:04:43.0696 6104 ErrDev - ok
23:04:43.0756 6104 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
23:04:43.0756 6104 EventSystem - ok
23:04:43.0776 6104 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
23:04:43.0786 6104 exfat - ok
23:04:43.0806 6104 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:04:43.0826 6104 fastfat - ok
23:04:43.0876 6104 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
23:04:43.0886 6104 Fax - ok
23:04:43.0896 6104 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:04:43.0916 6104 fdc - ok
23:04:43.0936 6104 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
23:04:43.0936 6104 fdPHost - ok
23:04:43.0946 6104 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
23:04:43.0966 6104 FDResPub - ok
23:04:43.0986 6104 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:04:43.0986 6104 FileInfo - ok
23:04:43.0996 6104 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:04:44.0026 6104 Filetrace - ok
23:04:44.0036 6104 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:04:44.0056 6104 flpydisk - ok
23:04:44.0076 6104 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:04:44.0086 6104 FltMgr - ok
23:04:44.0106 6104 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
23:04:44.0126 6104 FontCache - ok
23:04:44.0166 6104 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:04:44.0166 6104 FontCache3.0.0.0 - ok
23:04:44.0186 6104 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:04:44.0186 6104 FsDepends - ok
23:04:44.0216 6104 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:04:44.0236 6104 Fs_Rec - ok
23:04:44.0266 6104 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:04:44.0266 6104 fvevol - ok
23:04:44.0296 6104 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:04:44.0316 6104 gagp30kx - ok
23:04:44.0346 6104 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
23:04:44.0356 6104 gpsvc - ok
23:04:44.0416 6104 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:04:44.0416 6104 gupdate - ok
23:04:44.0426 6104 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:04:44.0426 6104 gupdatem - ok
23:04:44.0446 6104 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:04:44.0466 6104 gusvc - ok
23:04:44.0516 6104 [ 753B37BEA4F7E4BEF6C51905A4D61B86 ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
23:04:44.0556 6104 ha20x22k - ok
23:04:44.0606 6104 [ C717456440A449036077BFB5F6A0DB27 ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
23:04:44.0656 6104 ha20x2k - ok
23:04:44.0676 6104 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:04:44.0696 6104 hcw85cir - ok
23:04:44.0756 6104 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:04:44.0786 6104 HdAudAddService - ok
23:04:44.0806 6104 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:04:44.0806 6104 HDAudBus - ok
23:04:44.0816 6104 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:04:44.0826 6104 HidBatt - ok
23:04:44.0846 6104 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:04:44.0866 6104 HidBth - ok
23:04:44.0906 6104 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:04:44.0916 6104 HidIr - ok
23:04:44.0956 6104 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
23:04:44.0956 6104 hidserv - ok
23:04:44.0986 6104 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:04:45.0006 6104 HidUsb - ok
23:04:45.0036 6104 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:04:45.0066 6104 hkmsvc - ok
23:04:45.0096 6104 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:04:45.0126 6104 HomeGroupListener - ok
23:04:45.0156 6104 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:04:45.0156 6104 HomeGroupProvider - ok
23:04:45.0176 6104 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:04:45.0206 6104 HpSAMD - ok
23:04:45.0246 6104 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:04:45.0256 6104 HTTP - ok
23:04:45.0276 6104 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:04:45.0286 6104 hwpolicy - ok
23:04:45.0316 6104 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:04:45.0336 6104 i8042prt - ok
23:04:45.0366 6104 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:04:45.0386 6104 iaStorV - ok
23:04:45.0466 6104 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:04:45.0526 6104 idsvc - ok
23:04:45.0546 6104 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:04:45.0566 6104 iirsp - ok
23:04:45.0616 6104 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
23:04:45.0656 6104 IKEEXT - ok
23:04:45.0676 6104 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
23:04:45.0696 6104 intelide - ok
23:04:45.0726 6104 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:04:45.0746 6104 intelppm - ok
23:04:45.0786 6104 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:04:45.0796 6104 IPBusEnum - ok
23:04:45.0816 6104 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:04:45.0836 6104 IpFilterDriver - ok
23:04:45.0866 6104 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:04:45.0886 6104 IPMIDRV - ok
23:04:45.0896 6104 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:04:45.0926 6104 IPNAT - ok
23:04:45.0946 6104 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:04:45.0956 6104 IRENUM - ok
23:04:45.0976 6104 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:04:45.0986 6104 isapnp - ok
23:04:46.0006 6104 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:04:46.0046 6104 iScsiPrt - ok
23:04:46.0076 6104 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:04:46.0096 6104 kbdclass - ok
23:04:46.0116 6104 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:04:46.0136 6104 kbdhid - ok
23:04:46.0156 6104 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
23:04:46.0156 6104 KeyIso - ok
23:04:46.0186 6104 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:04:46.0186 6104 KSecDD - ok
23:04:46.0216 6104 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:04:46.0216 6104 KSecPkg - ok
23:04:46.0246 6104 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
23:04:46.0276 6104 KtmRm - ok
23:04:46.0296 6104 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
23:04:46.0306 6104 LanmanServer - ok
23:04:46.0316 6104 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:04:46.0316 6104 LanmanWorkstation - ok
23:04:46.0346 6104 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:04:46.0356 6104 lltdio - ok
23:04:46.0376 6104 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:04:46.0406 6104 lltdsvc - ok
23:04:46.0426 6104 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
23:04:46.0426 6104 lmhosts - ok
23:04:46.0456 6104 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:04:46.0476 6104 LSI_FC - ok
23:04:46.0486 6104 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:04:46.0506 6104 LSI_SAS - ok
23:04:46.0526 6104 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:04:46.0546 6104 LSI_SAS2 - ok
23:04:46.0566 6104 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:04:46.0596 6104 LSI_SCSI - ok
23:04:46.0606 6104 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
23:04:46.0616 6104 luafv - ok
23:04:46.0686 6104 [ 485405DE203E88B3FE4294A2EA48D7EE ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.271\McCHSvc.exe
23:04:46.0686 6104 McComponentHostService - ok
23:04:46.0716 6104 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:04:46.0736 6104 Mcx2Svc - ok
23:04:46.0746 6104 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:04:46.0766 6104 megasas - ok
23:04:46.0776 6104 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:04:46.0806 6104 MegaSR - ok
23:04:46.0816 6104 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
23:04:46.0826 6104 MMCSS - ok
23:04:46.0836 6104 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
23:04:46.0856 6104 Modem - ok
23:04:46.0886 6104 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:04:46.0886 6104 monitor - ok
23:04:46.0916 6104 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:04:46.0946 6104 mouclass - ok
23:04:46.0976 6104 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:04:46.0996 6104 mouhid - ok
23:04:47.0026 6104 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:04:47.0026 6104 mountmgr - ok
23:04:47.0036 6104 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
23:04:47.0066 6104 mpio - ok
23:04:47.0086 6104 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:04:47.0106 6104 mpsdrv - ok
23:04:47.0136 6104 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:04:47.0156 6104 MRxDAV - ok
23:04:47.0196 6104 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:04:47.0196 6104 mrxsmb - ok
23:04:47.0226 6104 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:04:47.0226 6104 mrxsmb10 - ok
23:04:47.0246 6104 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:04:47.0246 6104 mrxsmb20 - ok
23:04:47.0256 6104 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
23:04:47.0256 6104 msahci - ok
23:04:47.0276 6104 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:04:47.0296 6104 msdsm - ok
23:04:47.0336 6104 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
23:04:47.0346 6104 MSDTC - ok
23:04:47.0386 6104 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:04:47.0396 6104 Msfs - ok
23:04:47.0396 6104 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:04:47.0416 6104 mshidkmdf - ok
23:04:47.0436 6104 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:04:47.0436 6104 msisadrv - ok
23:04:47.0466 6104 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:04:47.0476 6104 MSiSCSI - ok
23:04:47.0486 6104 msiserver - ok
23:04:47.0496 6104 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:04:47.0526 6104 MSKSSRV - ok
23:04:47.0536 6104 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:04:47.0556 6104 MSPCLOCK - ok
23:04:47.0576 6104 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:04:47.0586 6104 MSPQM - ok
23:04:47.0606 6104 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:04:47.0606 6104 MsRPC - ok
23:04:47.0626 6104 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:04:47.0626 6104 mssmbios - ok
23:04:47.0636 6104 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:04:47.0656 6104 MSTEE - ok
23:04:47.0676 6104 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:04:47.0686 6104 MTConfig - ok
23:04:47.0696 6104 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
23:04:47.0696 6104 Mup - ok
23:04:47.0716 6104 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
23:04:47.0726 6104 napagent - ok
23:04:47.0756 6104 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:04:47.0766 6104 NativeWifiP - ok
23:04:47.0796 6104 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:04:47.0806 6104 NDIS - ok
23:04:47.0826 6104 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:04:47.0846 6104 NdisCap - ok
23:04:47.0866 6104 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:04:47.0876 6104 NdisTapi - ok
23:04:47.0896 6104 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:04:47.0926 6104 Ndisuio - ok
23:04:47.0946 6104 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:04:47.0976 6104 NdisWan - ok
23:04:48.0006 6104 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:04:48.0036 6104 NDProxy - ok
23:04:48.0056 6104 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:04:48.0066 6104 NetBIOS - ok
23:04:48.0086 6104 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:04:48.0086 6104 NetBT - ok
23:04:48.0106 6104 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
23:04:48.0106 6104 Netlogon - ok
23:04:48.0146 6104 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
23:04:48.0156 6104 Netman - ok
23:04:48.0176 6104 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
23:04:48.0186 6104 netprofm - ok
23:04:48.0246 6104 [ 27EE4B406E2F26F6117A9A420BD4CB65 ] netr28u C:\Windows\system32\DRIVERS\netr28u.sys
23:04:48.0286 6104 netr28u - ok
23:04:48.0306 6104 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:04:48.0336 6104 NetTcpPortSharing - ok
23:04:48.0356 6104 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:04:48.0376 6104 nfrd960 - ok
23:04:48.0406 6104 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:04:48.0406 6104 NlaSvc - ok
23:04:48.0426 6104 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:04:48.0426 6104 Npfs - ok
23:04:48.0446 6104 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
23:04:48.0446 6104 nsi - ok
23:04:48.0456 6104 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:04:48.0456 6104 nsiproxy - ok
23:04:48.0506 6104 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:04:48.0516 6104 Ntfs - ok
23:04:48.0526 6104 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
23:04:48.0546 6104 Null - ok
23:04:48.0576 6104 [ A66E12F8896FE65E7D4D9FEAB24092A8 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
23:04:48.0606 6104 NVHDA - ok
23:04:48.0866 6104 [ 8EBAFF3A7618799A1E5AC2CC1F8EBFA1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:04:48.0986 6104 nvlddmkm - ok
23:04:49.0016 6104 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:04:49.0036 6104 nvraid - ok
23:04:49.0066 6104 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:04:49.0096 6104 nvstor - ok
23:04:49.0126 6104 [ 3BDE48948EEB458CEF0DA75DAFCD0485 ] nvsvc C:\Windows\system32\nvvsvc.exe
23:04:49.0136 6104 nvsvc - ok
23:04:49.0216 6104 [ 2D5E79BC7517FDC241A5403279B75B4B ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
23:04:49.0226 6104 nvUpdatusService - ok
23:04:49.0256 6104 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:04:49.0286 6104 nv_agp - ok
23:04:49.0316 6104 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:04:49.0326 6104 ohci1394 - ok
23:04:49.0356 6104 [ 784825C9BEDE1E4B2384F628AF0AC316 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
23:04:49.0386 6104 ossrv - ok
23:04:49.0416 6104 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:04:49.0416 6104 p2pimsvc - ok
23:04:49.0446 6104 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
23:04:49.0466 6104 p2psvc - ok
23:04:49.0486 6104 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:04:49.0516 6104 Parport - ok
23:04:49.0546 6104 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:04:49.0546 6104 partmgr - ok
23:04:49.0566 6104 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
23:04:49.0566 6104 Parvdm - ok
23:04:49.0586 6104 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:04:49.0596 6104 PcaSvc - ok
23:04:49.0606 6104 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
23:04:49.0606 6104 pci - ok
23:04:49.0616 6104 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
23:04:49.0616 6104 pciide - ok
23:04:49.0636 6104 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:04:49.0646 6104 pcmcia - ok
23:04:49.0656 6104 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
23:04:49.0666 6104 pcw - ok
23:04:49.0686 6104 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:04:49.0736 6104 PEAUTH - ok
23:04:49.0786 6104 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
23:04:49.0796 6104 PeerDistSvc - ok
23:04:49.0856 6104 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
23:04:49.0906 6104 pla - ok
23:04:49.0936 6104 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:04:49.0936 6104 PlugPlay - ok
23:04:49.0966 6104 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:04:49.0976 6104 PNRPAutoReg - ok
23:04:49.0996 6104 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:04:49.0996 6104 PNRPsvc - ok
23:04:50.0026 6104 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:04:50.0046 6104 PolicyAgent - ok
23:04:50.0066 6104 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
23:04:50.0076 6104 Power - ok
23:04:50.0106 6104 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:04:50.0146 6104 PptpMiniport - ok
23:04:50.0156 6104 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:04:50.0196 6104 Processor - ok
23:04:50.0246 6104 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
23:04:50.0246 6104 ProfSvc - ok
23:04:50.0316 6104 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:04:50.0316 6104 ProtectedStorage - ok
23:04:50.0336 6104 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:04:50.0346 6104 Psched - ok
23:04:50.0396 6104 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:04:50.0436 6104 ql2300 - ok
23:04:50.0466 6104 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:04:50.0486 6104 ql40xx - ok
23:04:50.0526 6104 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
23:04:50.0556 6104 QWAVE - ok
23:04:50.0566 6104 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:04:50.0586 6104 QWAVEdrv - ok
23:04:50.0606 6104 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:04:50.0616 6104 RasAcd - ok
23:04:50.0646 6104 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:04:50.0656 6104 RasAgileVpn - ok
23:04:50.0666 6104 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
23:04:50.0696 6104 RasAuto - ok
23:04:50.0726 6104 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:04:50.0746 6104 Rasl2tp - ok
23:04:50.0786 6104 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
23:04:50.0816 6104 RasMan - ok
23:04:50.0836 6104 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:04:50.0846 6104 RasPppoe - ok
23:04:50.0856 6104 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:04:50.0876 6104 RasSstp - ok
23:04:50.0906 6104 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:04:50.0906 6104 rdbss - ok
23:04:50.0926 6104 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:04:50.0946 6104 rdpbus - ok
23:04:50.0996 6104 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:04:50.0996 6104 RDPCDD - ok
23:04:51.0026 6104 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
23:04:51.0046 6104 RDPDR - ok
23:04:51.0066 6104 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:04:51.0076 6104 RDPENCDD - ok
23:04:51.0086 6104 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:04:51.0086 6104 RDPREFMP - ok
23:04:51.0146 6104 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:04:51.0156 6104 RdpVideoMiniport - ok
23:04:51.0196 6104 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:04:51.0206 6104 RDPWD - ok
23:04:51.0226 6104 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:04:51.0236 6104 rdyboost - ok
23:04:51.0266 6104 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
23:04:51.0286 6104 RemoteAccess - ok
23:04:51.0306 6104 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:04:51.0336 6104 RemoteRegistry - ok
23:04:51.0366 6104 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:04:51.0366 6104 RpcEptMapper - ok
23:04:51.0376 6104 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
23:04:51.0386 6104 RpcLocator - ok
23:04:51.0406 6104 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
23:04:51.0416 6104 RpcSs - ok
23:04:51.0436 6104 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:04:51.0446 6104 rspndr - ok
23:04:51.0486 6104 [ 3849D5D73BDD9B7BC4E3305DDC345B2C ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
23:04:51.0506 6104 RTL8167 - ok
23:04:51.0536 6104 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
23:04:51.0546 6104 s3cap - ok
23:04:51.0556 6104 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
23:04:51.0556 6104 SamSs - ok
23:04:51.0586 6104 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:04:51.0616 6104 sbp2port - ok
23:04:51.0646 6104 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:04:51.0666 6104 SCardSvr - ok
23:04:51.0696 6104 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:04:51.0726 6104 scfilter - ok
23:04:51.0766 6104 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
23:04:51.0776 6104 Schedule - ok
23:04:51.0786 6104 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:04:51.0786 6104 SCPolicySvc - ok
23:04:51.0816 6104 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:04:51.0846 6104 SDRSVC - ok
23:04:51.0866 6104 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:04:51.0886 6104 secdrv - ok
23:04:51.0896 6104 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
23:04:51.0906 6104 seclogon - ok
23:04:51.0926 6104 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
23:04:51.0926 6104 SENS - ok
23:04:51.0956 6104 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:04:51.0976 6104 SensrSvc - ok
23:04:51.0996 6104 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:04:52.0016 6104 Serenum - ok
23:04:52.0046 6104 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:04:52.0066 6104 Serial - ok
23:04:52.0076 6104 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:04:52.0096 6104 sermouse - ok
23:04:52.0126 6104 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
23:04:52.0146 6104 SessionEnv - ok
23:04:52.0176 6104 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:04:52.0186 6104 sffdisk - ok
23:04:52.0196 6104 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:04:52.0226 6104 sffp_mmc - ok
23:04:52.0246 6104 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:04:52.0266 6104 sffp_sd - ok
23:04:52.0286 6104 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:04:52.0306 6104 sfloppy - ok
23:04:52.0326 6104 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:04:52.0336 6104 ShellHWDetection - ok
23:04:52.0346 6104 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:04:52.0356 6104 sisagp - ok
23:04:52.0386 6104 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:04:52.0406 6104 SiSRaid2 - ok
23:04:52.0426 6104 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:04:52.0446 6104 SiSRaid4 - ok
23:04:52.0466 6104 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:04:52.0486 6104 Smb - ok
23:04:52.0526 6104 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:04:52.0536 6104 SNMPTRAP - ok
23:04:52.0546 6104 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
23:04:52.0546 6104 spldr - ok
23:04:52.0576 6104 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
23:04:52.0576 6104 Spooler - ok
23:04:52.0656 6104 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
23:04:52.0686 6104 sppsvc - ok
23:04:52.0706 6104 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:04:52.0716 6104 sppuinotify - ok
23:04:52.0746 6104 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:04:52.0746 6104 srv - ok
23:04:52.0766 6104 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:04:52.0766 6104 srv2 - ok
23:04:52.0776 6104 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:04:52.0776 6104 srvnet - ok
23:04:52.0806 6104 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:04:52.0806 6104 SSDPSRV - ok
23:04:52.0826 6104 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
23:04:52.0846 6104 ssmdrv - ok
23:04:52.0876 6104 [ E98C0EEE2AAA630FC2D814B37AD16C29 ] SSMO3v2Filter C:\Windows\system32\drivers\MO3v2Driver.sys
23:04:52.0896 6104 SSMO3v2Filter - ok
23:04:52.0906 6104 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:04:52.0936 6104 SstpSvc - ok
23:04:52.0946 6104 Steam Client Service - ok
23:04:53.0026 6104 [ 2C25A72B53B28034BE260D81C4EA4955 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
23:04:53.0026 6104 Stereo Service - ok
23:04:53.0046 6104 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:04:53.0066 6104 stexstor - ok
23:04:53.0106 6104 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
23:04:53.0136 6104 StiSvc - ok
23:04:53.0156 6104 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
23:04:53.0156 6104 storflt - ok
23:04:53.0186 6104 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
23:04:53.0196 6104 storvsc - ok
23:04:53.0216 6104 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
23:04:53.0236 6104 swenum - ok
23:04:53.0266 6104 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
23:04:53.0266 6104 swprv - ok
23:04:53.0286 6104 Synth3dVsc - ok
23:04:53.0326 6104 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
23:04:53.0336 6104 SysMain - ok
23:04:53.0356 6104 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:04:53.0376 6104 TabletInputService - ok
23:04:53.0396 6104 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
23:04:53.0426 6104 TapiSrv - ok
23:04:53.0456 6104 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
23:04:53.0456 6104 TBS - ok
23:04:53.0496 6104 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:04:53.0516 6104 Tcpip - ok
23:04:53.0546 6104 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:04:53.0556 6104 TCPIP6 - ok
23:04:53.0576 6104 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:04:53.0606 6104 tcpipreg - ok
23:04:53.0636 6104 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:04:53.0656 6104 TDPIPE - ok
23:04:53.0686 6104 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:04:53.0706 6104 TDTCP - ok
23:04:53.0736 6104 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:04:53.0756 6104 tdx - ok
23:04:53.0776 6104 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
23:04:53.0796 6104 TermDD - ok
23:04:53.0836 6104 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
23:04:53.0866 6104 TermService - ok
23:04:53.0896 6104 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
23:04:53.0896 6104 Themes - ok
23:04:53.0906 6104 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
23:04:53.0916 6104 THREADORDER - ok
23:04:53.0926 6104 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
23:04:53.0936 6104 TrkWks - ok
23:04:53.0966 6104 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:04:53.0986 6104 TrustedInstaller - ok
23:04:54.0006 6104 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:04:54.0026 6104 tssecsrv - ok
23:04:54.0076 6104 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:04:54.0096 6104 TsUsbFlt - ok
23:04:54.0096 6104 tsusbhub - ok
23:04:54.0146 6104 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:04:54.0166 6104 tunnel - ok
23:04:54.0196 6104 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:04:54.0226 6104 uagp35 - ok
23:04:54.0246 6104 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:04:54.0256 6104 udfs - ok
23:04:54.0276 6104 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:04:54.0296 6104 UI0Detect - ok
23:04:54.0326 6104 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:04:54.0346 6104 uliagpkx - ok
23:04:54.0376 6104 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
23:04:54.0396 6104 umbus - ok
23:04:54.0406 6104 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:04:54.0426 6104 UmPass - ok
23:04:54.0456 6104 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
23:04:54.0486 6104 UmRdpService - ok
23:04:54.0506 6104 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
23:04:54.0516 6104 upnphost - ok
23:04:54.0556 6104 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:04:54.0576 6104 usbaudio - ok
23:04:54.0606 6104 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:04:54.0616 6104 usbccgp - ok
23:04:54.0636 6104 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:04:54.0646 6104 usbcir - ok
23:04:54.0666 6104 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:04:54.0686 6104 usbehci - ok
23:04:54.0696 6104 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:04:54.0716 6104 usbhub - ok
23:04:54.0726 6104 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
23:04:54.0746 6104 usbohci - ok
23:04:54.0766 6104 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:04:54.0786 6104 usbprint - ok
23:04:54.0806 6104 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:04:54.0836 6104 USBSTOR - ok
23:04:54.0846 6104 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:04:54.0856 6104 usbuhci - ok
23:04:54.0886 6104 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
23:04:54.0886 6104 UxSms - ok
23:04:54.0896 6104 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
23:04:54.0896 6104 VaultSvc - ok
23:04:54.0926 6104 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:04:54.0926 6104 vdrvroot - ok
23:04:54.0976 6104 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
23:04:55.0066 6104 vds - ok
23:04:55.0106 6104 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:04:55.0116 6104 vga - ok
23:04:55.0146 6104 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:04:55.0166 6104 VgaSave - ok
23:04:55.0196 6104 VGPU - ok
23:04:55.0226 6104 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:04:55.0236 6104 vhdmp - ok
23:04:55.0246 6104 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:04:55.0256 6104 viaagp - ok
23:04:55.0266 6104 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
23:04:55.0286 6104 ViaC7 - ok
23:04:55.0306 6104 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
23:04:55.0316 6104 viaide - ok
23:04:55.0346 6104 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
23:04:55.0346 6104 vmbus - ok
23:04:55.0356 6104 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
23:04:55.0376 6104 VMBusHID - ok
23:04:55.0386 6104 vmci - ok
23:04:55.0396 6104 VMnetAdapter - ok
23:04:55.0416 6104 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:04:55.0416 6104 volmgr - ok
23:04:55.0446 6104 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:04:55.0446 6104 volmgrx - ok
23:04:55.0466 6104 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:04:55.0466 6104 volsnap - ok
23:04:55.0486 6104 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:04:55.0516 6104 vsmraid - ok
23:04:55.0566 6104 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
23:04:55.0576 6104 VSS - ok
23:04:55.0646 6104 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
23:04:55.0656 6104 vToolbarUpdater12.2.6 - ok
23:04:55.0666 6104 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:04:55.0676 6104 vwifibus - ok
23:04:55.0686 6104 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:04:55.0696 6104 vwififlt - ok
23:04:55.0736 6104 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
23:04:55.0746 6104 W32Time - ok
23:04:55.0756 6104 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:04:55.0786 6104 WacomPen - ok
23:04:55.0806 6104 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:04:55.0836 6104 WANARP - ok
23:04:55.0836 6104 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:04:55.0836 6104 Wanarpv6 - ok
23:04:55.0906 6104 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:04:56.0076 6104 WatAdminSvc - ok
23:04:56.0136 6104 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
23:04:56.0176 6104 wbengine - ok
23:04:56.0206 6104 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:04:56.0226 6104 WbioSrvc - ok
23:04:56.0256 6104 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:04:56.0286 6104 wcncsvc - ok
23:04:56.0306 6104 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:04:56.0316 6104 WcsPlugInService - ok
23:04:56.0346 6104 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:04:56.0366 6104 Wd - ok
23:04:56.0386 6104 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:04:56.0396 6104 Wdf01000 - ok
23:04:56.0406 6104 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:04:56.0416 6104 WdiServiceHost - ok
23:04:56.0416 6104 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:04:56.0426 6104 WdiSystemHost - ok
23:04:56.0436 6104 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
23:04:56.0466 6104 WebClient - ok
23:04:56.0486 6104 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:04:56.0516 6104 Wecsvc - ok
23:04:56.0526 6104 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:04:56.0556 6104 wercplsupport - ok
23:04:56.0576 6104 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
23:04:56.0576 6104 WerSvc - ok
23:04:56.0596 6104 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:04:56.0616 6104 WfpLwf - ok
23:04:56.0636 6104 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:04:56.0646 6104 WIMMount - ok
23:04:56.0646 6104 WinHttpAutoProxySvc - ok
23:04:56.0696 6104 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:04:56.0706 6104 Winmgmt - ok
23:04:56.0736 6104 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
23:04:56.0776 6104 WinRM - ok
23:04:56.0816 6104 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:04:56.0826 6104 Wlansvc - ok
23:04:56.0866 6104 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:04:56.0866 6104 WmiAcpi - ok
23:04:56.0876 6104 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:04:56.0896 6104 wmiApSrv - ok
23:04:56.0956 6104 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:04:56.0966 6104 WMPNetworkSvc - ok
23:04:56.0976 6104 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:04:57.0006 6104 WPCSvc - ok
23:04:57.0036 6104 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:04:57.0036 6104 WPDBusEnum - ok
23:04:57.0056 6104 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:04:57.0076 6104 ws2ifsl - ok
23:04:57.0076 6104 WSearch - ok
23:04:57.0096 6104 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:04:57.0116 6104 WudfPf - ok
23:04:57.0156 6104 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:04:57.0186 6104 WUDFRd - ok
23:04:57.0206 6104 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:04:57.0216 6104 wudfsvc - ok
23:04:57.0226 6104 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
23:04:57.0236 6104 WwanSvc - ok
23:04:57.0266 6104 ================ Scan global ===============================
23:04:57.0286 6104 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
23:04:57.0306 6104 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
23:04:57.0316 6104 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
23:04:57.0356 6104 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
23:04:57.0376 6104 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
23:04:57.0376 6104 [Global] - ok
23:04:57.0376 6104 ================ Scan MBR ==================================
23:04:57.0376 6104 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
23:04:57.0516 6104 \Device\Harddisk1\DR1 - ok
23:04:57.0576 6104 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:04:57.0596 6104 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
23:04:57.0596 6104 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
23:04:57.0596 6104 ================ Scan VBR ==================================
23:04:57.0596 6104 [ 00C7DDA82E4FA32E0420237AABD7696E ] \Device\Harddisk1\DR1\Partition1
23:04:57.0596 6104 \Device\Harddisk1\DR1\Partition1 - ok
23:04:57.0606 6104 [ 2DBDB3836BBBED47CC6D30D135BBF830 ] \Device\Harddisk1\DR1\Partition2
23:04:57.0606 6104 \Device\Harddisk1\DR1\Partition2 - ok
23:04:57.0636 6104 [ 6979ED8AE70DA74791C7CC42CD592720 ] \Device\Harddisk0\DR0\Partition1
23:04:57.0636 6104 \Device\Harddisk0\DR0\Partition1 - ok
23:04:57.0636 6104 ============================================================
23:04:57.0636 6104 Scan finished
23:04:57.0636 6104 ============================================================
23:04:57.0646 5632 Detected object count: 1
23:04:57.0646 5632 Actual detected object count: 1
23:05:08.0416 5632 \Device\Harddisk0\DR0\# - copied to quarantine
23:05:08.0416 5632 \Device\Harddisk0\DR0 - copied to quarantine
23:05:08.0456 5632 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
23:05:08.0466 5632 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
23:05:08.0466 5632 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
23:05:08.0476 5632 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
23:05:08.0486 5632 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
23:05:08.0496 5632 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
23:05:08.0506 5632 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
23:05:08.0506 5632 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
23:05:08.0516 5632 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
23:05:08.0516 5632 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
23:05:08.0516 5632 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
23:05:08.0526 5632 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
23:05:08.0526 5632 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
23:05:08.0526 5632 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
23:05:08.0526 5632 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
23:05:08.0536 5632 \Device\Harddisk0\DR0 - ok
23:05:08.0836 5632 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
23:06:00.0886 2684 Deinitialize success

==============================================================================================================================
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-27 23:06:34
-----------------------------
23:06:34.141 OS Version: Windows 6.1.7601 Service Pack 1
23:06:34.141 Number of processors: 4 586 0x202
23:06:34.141 ComputerName: JASON-PC UserName: Jason
23:06:51.081 Initialize success
23:08:56.341 AVAST engine defs: 12092701
23:10:07.592 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP7T0L0-9
23:10:07.602 Disk 0 Vendor: SAMSUNG_HD501LJ CR100-12 Size: 476938MB BusType: 11
23:10:07.602 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP5T0L0-7
23:10:07.602 Disk 1 Vendor: SAMSUNG_HD501LJ CR100-12 Size: 476938MB BusType: 11
23:10:07.622 Disk 0 MBR read successfully
23:10:07.622 Disk 0 MBR scan
23:10:07.642 Disk 0 Windows 7 default MBR code
23:10:07.652 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 476936 MB offset 2048
23:10:07.662 Disk 0 scanning sectors +976766976
23:10:07.742 Disk 0 scanning C:\Windows\system32\drivers
23:10:21.262 Service scanning
23:10:54.722 Modules scanning
23:11:01.872 Disk 0 trace - called modules:
23:11:02.212 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x87c47e98]<<
23:11:02.222 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86b31790]
23:11:02.222 3 CLASSPNP.SYS[8c19a59e] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP7T0L0-9[0x865e9030]
23:11:02.232 \Driver\atapi[0x86598608] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0x87c47e98
23:11:03.392 AVAST engine scan C:\Windows
23:11:06.212 AVAST engine scan C:\Windows\system32
23:15:48.932 AVAST engine scan C:\Windows\system32\drivers
23:16:11.122 AVAST engine scan C:\Users\Jason
23:26:27.143 AVAST engine scan C:\ProgramData
23:27:10.533 Scan finished successfully
23:28:20.963 Disk 0 MBR has been saved successfully to "C:\Users\Jason\Documents\MBR.dat"
23:28:20.963 The log file has been saved successfully to "C:\Users\Jason\Documents\aswMBR.txt"

==========================================================================================================================================
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0001.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0002.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0003.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0004.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0005.dta a variant of Win32/Rootkit.Kryptik.NP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0006.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0010.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.09.2012_23.04.22\mbr0000\tdlfs0000\tsk0011.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Default\aaggdjdedcdcgddbgedfdfdjdedhdjgb\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Jason\AppData\Roaming\wmsev.dll a variant of Win32/Medfos.DX trojan cleaned by deleting - quarantined
C:\Users\Jason\Downloads\WinZip165Multi-language.exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined
Operating memory a variant of Win32/Sirefef.EZ trojan

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:01 PM

Posted 28 September 2012 - 03:51 AM

Please run TDSSkiller once again and post the new log

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Launch it ,for vista and windows 7-Right click on it and run as administrator

After scan gets completed,post the generated log here.

#5 mlhaynes4

mlhaynes4
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 28 September 2012 - 08:54 PM

20:28:20.0614 5184 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
20:28:20.0934 5184 ============================================================
20:28:20.0934 5184 Current date / time: 2012/09/28 20:28:20.0934
20:28:20.0934 5184 SystemInfo:
20:28:20.0934 5184
20:28:20.0934 5184 OS Version: 6.1.7601 ServicePack: 1.0
20:28:20.0934 5184 Product type: Workstation
20:28:20.0934 5184 ComputerName: JASON-PC
20:28:20.0934 5184 UserName: Jason
20:28:20.0934 5184 Windows directory: C:\Windows
20:28:20.0934 5184 System windows directory: C:\Windows
20:28:20.0944 5184 Processor architecture: Intel x86
20:28:20.0944 5184 Number of processors: 4
20:28:20.0944 5184 Page size: 0x1000
20:28:20.0944 5184 Boot type: Normal boot
20:28:20.0944 5184 ============================================================
20:28:21.0267 5184 BG loaded
20:28:21.0702 5184 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
20:28:21.0712 5184 Drive \Device\Harddisk1\DR1 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:28:21.0722 5184 ============================================================
20:28:21.0722 5184 \Device\Harddisk0\DR0:
20:28:21.0722 5184 MBR partitions:
20:28:21.0722 5184 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:28:21.0722 5184 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A352000
20:28:21.0722 5184 \Device\Harddisk1\DR1:
20:28:21.0722 5184 MBR partitions:
20:28:21.0722 5184 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384000
20:28:21.0722 5184 ============================================================
20:28:21.0772 5184 C: <-> \Device\Harddisk1\DR1\Partition1
20:28:21.0792 5184 D: <-> \Device\Harddisk0\DR0\Partition2
20:28:21.0792 5184 ============================================================
20:28:21.0792 5184 Initialize success
20:28:21.0792 5184 ============================================================
20:28:23.0554 5232 ============================================================
20:28:23.0554 5232 Scan started
20:28:23.0554 5232 Mode: Manual;
20:28:23.0554 5232 ============================================================
20:28:25.0149 5232 ================ Scan system memory ========================
20:28:25.0149 5232 System memory - ok
20:28:25.0149 5232 ================ Scan services =============================
20:28:25.0334 5232 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:28:25.0344 5232 1394ohci - ok
20:28:25.0384 5232 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:28:25.0384 5232 ACPI - ok
20:28:25.0407 5232 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:28:25.0407 5232 AcpiPmi - ok
20:28:25.0489 5232 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:28:25.0499 5232 AdobeARMservice - ok
20:28:25.0569 5232 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:28:25.0572 5232 AdobeFlashPlayerUpdateSvc - ok
20:28:25.0604 5232 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:28:25.0614 5232 adp94xx - ok
20:28:25.0634 5232 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:28:25.0644 5232 adpahci - ok
20:28:25.0664 5232 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:28:25.0674 5232 adpu320 - ok
20:28:25.0707 5232 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:28:25.0717 5232 AeLookupSvc - ok
20:28:25.0767 5232 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
20:28:25.0767 5232 AFD - ok
20:28:25.0787 5232 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:28:25.0799 5232 agp440 - ok
20:28:25.0819 5232 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:28:25.0829 5232 aic78xx - ok
20:28:25.0839 5232 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:28:25.0849 5232 ALG - ok
20:28:25.0869 5232 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
20:28:25.0869 5232 aliide - ok
20:28:25.0904 5232 [ 50EBBB86E493BD9AB7DDF914A90EEF8E ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:28:25.0914 5232 AMD External Events Utility - ok
20:28:26.0007 5232 AMD FUEL Service - ok
20:28:26.0027 5232 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:28:26.0037 5232 amdagp - ok
20:28:26.0067 5232 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
20:28:26.0079 5232 amdide - ok
20:28:26.0099 5232 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
20:28:26.0099 5232 amdiox86 - ok
20:28:26.0129 5232 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:28:26.0139 5232 AmdK8 - ok
20:28:26.0364 5232 [ 70EB74785AB7FC603FEF19D87B7A7946 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:28:26.0674 5232 amdkmdag - ok
20:28:26.0707 5232 [ BA99833BBDE9C4FF389FC8114FB14843 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:28:26.0717 5232 amdkmdap - ok
20:28:26.0767 5232 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:28:26.0767 5232 AmdPPM - ok
20:28:26.0799 5232 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:28:26.0809 5232 amdsata - ok
20:28:26.0839 5232 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:28:26.0849 5232 amdsbs - ok
20:28:26.0869 5232 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:28:26.0869 5232 amdxata - ok
20:28:26.0934 5232 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
20:28:26.0944 5232 AMD_RAIDXpert - ok
20:28:26.0997 5232 [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
20:28:27.0007 5232 AntiVirSchedulerService - ok
20:28:27.0047 5232 [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
20:28:27.0057 5232 AntiVirService - ok
20:28:27.0089 5232 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:28:27.0099 5232 AODDriver4.01 - ok
20:28:27.0129 5232 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:28:27.0129 5232 AODDriver4.1 - ok
20:28:27.0149 5232 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
20:28:27.0159 5232 AppID - ok
20:28:27.0194 5232 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:28:27.0194 5232 AppIDSvc - ok
20:28:27.0214 5232 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
20:28:27.0224 5232 Appinfo - ok
20:28:27.0244 5232 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:28:27.0254 5232 AppMgmt - ok
20:28:27.0289 5232 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:28:27.0299 5232 arc - ok
20:28:27.0319 5232 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:28:27.0329 5232 arcsas - ok
20:28:27.0349 5232 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:28:27.0359 5232 AsyncMac - ok
20:28:27.0379 5232 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
20:28:27.0379 5232 atapi - ok
20:28:27.0424 5232 [ 6ADC42CF4A6AB84975CA63DCCFAAF5D8 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
20:28:27.0434 5232 AtiHDAudioService - ok
20:28:27.0632 5232 [ 70EB74785AB7FC603FEF19D87B7A7946 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:28:27.0692 5232 atikmdag - ok
20:28:27.0757 5232 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:28:27.0777 5232 AudioEndpointBuilder - ok
20:28:27.0792 5232 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:28:27.0794 5232 Audiosrv - ok
20:28:27.0824 5232 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:28:27.0824 5232 avgntflt - ok
20:28:27.0854 5232 [ 3001E24F340D400BFF85935E5777FC5B ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
20:28:27.0864 5232 avgtp - ok
20:28:27.0894 5232 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:28:27.0907 5232 avipbb - ok
20:28:27.0927 5232 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:28:27.0927 5232 avkmgr - ok
20:28:27.0957 5232 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:28:27.0967 5232 AxInstSV - ok
20:28:28.0009 5232 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:28:28.0019 5232 b06bdrv - ok
20:28:28.0049 5232 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:28:28.0059 5232 b57nd60x - ok
20:28:28.0094 5232 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:28:28.0104 5232 BDESVC - ok
20:28:28.0114 5232 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:28:28.0114 5232 Beep - ok
20:28:28.0124 5232 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:28:28.0134 5232 blbdrive - ok
20:28:28.0144 5232 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:28:28.0144 5232 bowser - ok
20:28:28.0164 5232 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:28:28.0164 5232 BrFiltLo - ok
20:28:28.0174 5232 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:28:28.0184 5232 BrFiltUp - ok
20:28:28.0207 5232 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
20:28:28.0217 5232 Browser - ok
20:28:28.0237 5232 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:28:28.0247 5232 Brserid - ok
20:28:28.0267 5232 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:28:28.0267 5232 BrSerWdm - ok
20:28:28.0287 5232 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:28:28.0287 5232 BrUsbMdm - ok
20:28:28.0299 5232 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:28:28.0299 5232 BrUsbSer - ok
20:28:28.0309 5232 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:28:28.0319 5232 BTHMODEM - ok
20:28:28.0339 5232 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:28:28.0349 5232 bthserv - ok
20:28:28.0359 5232 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:28:28.0369 5232 cdfs - ok
20:28:28.0399 5232 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:28:28.0404 5232 cdrom - ok
20:28:28.0434 5232 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
20:28:28.0444 5232 CertPropSvc - ok
20:28:28.0464 5232 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:28:28.0464 5232 circlass - ok
20:28:28.0487 5232 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:28:28.0497 5232 CLFS - ok
20:28:28.0547 5232 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:28:28.0557 5232 clr_optimization_v2.0.50727_32 - ok
20:28:28.0629 5232 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:28:28.0629 5232 clr_optimization_v4.0.30319_32 - ok
20:28:28.0649 5232 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:28:28.0649 5232 CmBatt - ok
20:28:28.0669 5232 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:28:28.0669 5232 cmdide - ok
20:28:28.0702 5232 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
20:28:28.0702 5232 CNG - ok
20:28:28.0722 5232 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:28:28.0722 5232 Compbatt - ok
20:28:28.0752 5232 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:28:28.0752 5232 CompositeBus - ok
20:28:28.0762 5232 COMSysApp - ok
20:28:28.0782 5232 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:28:28.0782 5232 crcdisk - ok
20:28:28.0854 5232 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
20:28:28.0864 5232 Creative ALchemy AL6 Licensing Service - ok
20:28:28.0887 5232 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
20:28:28.0897 5232 Creative Audio Engine Licensing Service - ok
20:28:28.0937 5232 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:28:28.0947 5232 CryptSvc - ok
20:28:28.0977 5232 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
20:28:28.0989 5232 CSC - ok
20:28:29.0009 5232 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
20:28:29.0009 5232 CscService - ok
20:28:29.0029 5232 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
20:28:29.0049 5232 CT20XUT - ok
20:28:29.0059 5232 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
20:28:29.0059 5232 CT20XUT.SYS - ok
20:28:29.0094 5232 [ 7991921095C3D966EA36071A11B05AFB ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
20:28:29.0114 5232 ctac32k - ok
20:28:29.0134 5232 [ EE5B6899FD0910A147A39787210D847D ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
20:28:29.0154 5232 ctaud2k - ok
20:28:29.0207 5232 [ 7D564A71907B389C62191E7D7B9069D8 ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
20:28:29.0217 5232 CTAudSvcService - ok
20:28:29.0277 5232 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
20:28:29.0309 5232 CTEXFIFX - ok
20:28:29.0329 5232 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
20:28:29.0339 5232 CTEXFIFX.SYS - ok
20:28:29.0349 5232 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
20:28:29.0359 5232 CTHWIUT - ok
20:28:29.0369 5232 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
20:28:29.0369 5232 CTHWIUT.SYS - ok
20:28:29.0379 5232 [ 526F4A48A7E33F9FE6C9297DF060F695 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
20:28:29.0379 5232 ctprxy2k - ok
20:28:29.0404 5232 [ DACD54EFAB4D5F42693077FFC36B18E1 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
20:28:29.0414 5232 ctsfm2k - ok
20:28:29.0434 5232 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
20:28:29.0444 5232 DcomLaunch - ok
20:28:29.0474 5232 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:28:29.0487 5232 defragsvc - ok
20:28:29.0517 5232 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:28:29.0517 5232 DfsC - ok
20:28:29.0557 5232 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:28:29.0567 5232 Dhcp - ok
20:28:29.0589 5232 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:28:29.0589 5232 discache - ok
20:28:29.0609 5232 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:28:29.0619 5232 Disk - ok
20:28:29.0639 5232 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:28:29.0649 5232 Dnscache - ok
20:28:29.0679 5232 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
20:28:29.0692 5232 dot3svc - ok
20:28:29.0702 5232 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
20:28:29.0712 5232 DPS - ok
20:28:29.0742 5232 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:28:29.0752 5232 drmkaud - ok
20:28:29.0782 5232 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:28:29.0794 5232 DXGKrnl - ok
20:28:29.0844 5232 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:28:29.0854 5232 EapHost - ok
20:28:29.0927 5232 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:28:29.0967 5232 ebdrv - ok
20:28:29.0999 5232 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
20:28:30.0009 5232 EFS - ok
20:28:30.0049 5232 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:28:30.0069 5232 ehRecvr - ok
20:28:30.0104 5232 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:28:30.0114 5232 ehSched - ok
20:28:30.0134 5232 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:28:30.0154 5232 elxstor - ok
20:28:30.0174 5232 [ 8013545EB6A4C3A7F4FCB397F37643DF ] emupia C:\Windows\system32\drivers\emupia2k.sys
20:28:30.0184 5232 emupia - ok
20:28:30.0204 5232 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:28:30.0204 5232 ErrDev - ok
20:28:30.0267 5232 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:28:30.0267 5232 EventSystem - ok
20:28:30.0307 5232 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:28:30.0319 5232 exfat - ok
20:28:30.0379 5232 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:28:30.0389 5232 fastfat - ok
20:28:30.0432 5232 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
20:28:30.0432 5232 Fax - ok
20:28:30.0442 5232 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:28:30.0452 5232 fdc - ok
20:28:30.0472 5232 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:28:30.0472 5232 fdPHost - ok
20:28:30.0492 5232 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:28:30.0492 5232 FDResPub - ok
20:28:30.0512 5232 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:28:30.0512 5232 FileInfo - ok
20:28:30.0524 5232 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:28:30.0524 5232 Filetrace - ok
20:28:30.0554 5232 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:28:30.0554 5232 flpydisk - ok
20:28:30.0574 5232 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:28:30.0574 5232 FltMgr - ok
20:28:30.0594 5232 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
20:28:30.0617 5232 FontCache - ok
20:28:30.0659 5232 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:28:30.0659 5232 FontCache3.0.0.0 - ok
20:28:30.0689 5232 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:28:30.0689 5232 FsDepends - ok
20:28:30.0722 5232 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:28:30.0724 5232 Fs_Rec - ok
20:28:30.0764 5232 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:28:30.0764 5232 fvevol - ok
20:28:30.0804 5232 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:28:30.0804 5232 gagp30kx - ok
20:28:30.0837 5232 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
20:28:30.0847 5232 gpsvc - ok
20:28:30.0952 5232 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:28:30.0952 5232 gupdate - ok
20:28:30.0962 5232 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:28:30.0962 5232 gupdatem - ok
20:28:30.0982 5232 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
20:28:30.0992 5232 gusvc - ok
20:28:31.0034 5232 [ 753B37BEA4F7E4BEF6C51905A4D61B86 ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
20:28:31.0064 5232 ha20x22k - ok
20:28:31.0104 5232 [ C717456440A449036077BFB5F6A0DB27 ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
20:28:31.0129 5232 ha20x2k - ok
20:28:31.0149 5232 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:28:31.0159 5232 hcw85cir - ok
20:28:31.0222 5232 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:28:31.0232 5232 HdAudAddService - ok
20:28:31.0252 5232 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:28:31.0252 5232 HDAudBus - ok
20:28:31.0262 5232 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:28:31.0262 5232 HidBatt - ok
20:28:31.0282 5232 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:28:31.0292 5232 HidBth - ok
20:28:31.0317 5232 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:28:31.0317 5232 HidIr - ok
20:28:31.0347 5232 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:28:31.0357 5232 hidserv - ok
20:28:31.0387 5232 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:28:31.0387 5232 HidUsb - ok
20:28:31.0417 5232 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:28:31.0429 5232 hkmsvc - ok
20:28:31.0449 5232 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:28:31.0469 5232 HomeGroupListener - ok
20:28:31.0489 5232 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:28:31.0509 5232 HomeGroupProvider - ok
20:28:31.0519 5232 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:28:31.0532 5232 HpSAMD - ok
20:28:31.0562 5232 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:28:31.0572 5232 HTTP - ok
20:28:31.0592 5232 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:28:31.0592 5232 hwpolicy - ok
20:28:31.0632 5232 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:28:31.0637 5232 i8042prt - ok
20:28:31.0667 5232 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:28:31.0687 5232 iaStorV - ok
20:28:31.0737 5232 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:28:31.0769 5232 idsvc - ok
20:28:31.0789 5232 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:28:31.0799 5232 iirsp - ok
20:28:31.0829 5232 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
20:28:31.0852 5232 IKEEXT - ok
20:28:31.0882 5232 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
20:28:31.0892 5232 intelide - ok
20:28:31.0912 5232 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:28:31.0922 5232 intelppm - ok
20:28:31.0954 5232 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:28:31.0964 5232 IPBusEnum - ok
20:28:31.0974 5232 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:28:31.0984 5232 IpFilterDriver - ok
20:28:32.0014 5232 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:28:32.0024 5232 IPMIDRV - ok
20:28:32.0034 5232 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:28:32.0044 5232 IPNAT - ok
20:28:32.0067 5232 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:28:32.0067 5232 IRENUM - ok
20:28:32.0087 5232 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:28:32.0097 5232 isapnp - ok
20:28:32.0107 5232 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:28:32.0117 5232 iScsiPrt - ok
20:28:32.0149 5232 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:28:32.0159 5232 kbdclass - ok
20:28:32.0179 5232 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:28:32.0179 5232 kbdhid - ok
20:28:32.0199 5232 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
20:28:32.0199 5232 KeyIso - ok
20:28:32.0229 5232 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:28:32.0239 5232 KSecDD - ok
20:28:32.0272 5232 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:28:32.0272 5232 KSecPkg - ok
20:28:32.0302 5232 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:28:32.0322 5232 KtmRm - ok
20:28:32.0337 5232 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
20:28:32.0357 5232 LanmanServer - ok
20:28:32.0377 5232 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:28:32.0387 5232 LanmanWorkstation - ok
20:28:32.0417 5232 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:28:32.0417 5232 lltdio - ok
20:28:32.0437 5232 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:28:32.0447 5232 lltdsvc - ok
20:28:32.0469 5232 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:28:32.0469 5232 lmhosts - ok
20:28:32.0489 5232 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:28:32.0499 5232 LSI_FC - ok
20:28:32.0509 5232 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:28:32.0519 5232 LSI_SAS - ok
20:28:32.0539 5232 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:28:32.0539 5232 LSI_SAS2 - ok
20:28:32.0562 5232 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:28:32.0572 5232 LSI_SCSI - ok
20:28:32.0582 5232 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:28:32.0582 5232 luafv - ok
20:28:32.0664 5232 [ 485405DE203E88B3FE4294A2EA48D7EE ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.271\McCHSvc.exe
20:28:32.0674 5232 McComponentHostService - ok
20:28:32.0704 5232 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:28:32.0714 5232 Mcx2Svc - ok
20:28:32.0754 5232 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:28:32.0757 5232 megasas - ok
20:28:32.0777 5232 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:28:32.0787 5232 MegaSR - ok
20:28:32.0807 5232 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:28:32.0807 5232 MMCSS - ok
20:28:32.0827 5232 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:28:32.0837 5232 Modem - ok
20:28:32.0859 5232 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:28:32.0859 5232 monitor - ok
20:28:32.0879 5232 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:28:32.0889 5232 mouclass - ok
20:28:32.0909 5232 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:28:32.0919 5232 mouhid - ok
20:28:32.0939 5232 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:28:32.0939 5232 mountmgr - ok
20:28:32.0952 5232 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
20:28:32.0972 5232 mpio - ok
20:28:32.0992 5232 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:28:32.0992 5232 mpsdrv - ok
20:28:33.0022 5232 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:28:33.0032 5232 MRxDAV - ok
20:28:33.0062 5232 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:28:33.0062 5232 mrxsmb - ok
20:28:33.0072 5232 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:28:33.0072 5232 mrxsmb10 - ok
20:28:33.0092 5232 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:28:33.0092 5232 mrxsmb20 - ok
20:28:33.0102 5232 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
20:28:33.0102 5232 msahci - ok
20:28:33.0122 5232 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:28:33.0142 5232 msdsm - ok
20:28:33.0152 5232 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:28:33.0164 5232 MSDTC - ok
20:28:33.0194 5232 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:28:33.0194 5232 Msfs - ok
20:28:33.0194 5232 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:28:33.0204 5232 mshidkmdf - ok
20:28:33.0214 5232 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:28:33.0214 5232 msisadrv - ok
20:28:33.0244 5232 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:28:33.0257 5232 MSiSCSI - ok
20:28:33.0257 5232 msiserver - ok
20:28:33.0287 5232 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:28:33.0297 5232 MSKSSRV - ok
20:28:33.0317 5232 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:28:33.0317 5232 MSPCLOCK - ok
20:28:33.0327 5232 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:28:33.0337 5232 MSPQM - ok
20:28:33.0342 5232 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:28:33.0352 5232 MsRPC - ok
20:28:33.0362 5232 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:28:33.0372 5232 mssmbios - ok
20:28:33.0382 5232 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:28:33.0382 5232 MSTEE - ok
20:28:33.0392 5232 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:28:33.0402 5232 MTConfig - ok
20:28:33.0422 5232 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:28:33.0422 5232 Mup - ok
20:28:33.0442 5232 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
20:28:33.0452 5232 napagent - ok
20:28:33.0474 5232 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:28:33.0484 5232 NativeWifiP - ok
20:28:33.0514 5232 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:28:33.0524 5232 NDIS - ok
20:28:33.0547 5232 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:28:33.0557 5232 NdisCap - ok
20:28:33.0577 5232 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:28:33.0577 5232 NdisTapi - ok
20:28:33.0607 5232 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:28:33.0617 5232 Ndisuio - ok
20:28:33.0637 5232 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:28:33.0637 5232 NdisWan - ok
20:28:33.0659 5232 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:28:33.0669 5232 NDProxy - ok
20:28:33.0679 5232 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:28:33.0679 5232 NetBIOS - ok
20:28:33.0689 5232 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:28:33.0699 5232 NetBT - ok
20:28:33.0709 5232 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
20:28:33.0709 5232 Netlogon - ok
20:28:33.0749 5232 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:28:33.0759 5232 Netman - ok
20:28:33.0772 5232 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:28:33.0782 5232 netprofm - ok
20:28:33.0844 5232 [ 27EE4B406E2F26F6117A9A420BD4CB65 ] netr28u C:\Windows\system32\DRIVERS\netr28u.sys
20:28:33.0854 5232 netr28u - ok
20:28:33.0884 5232 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:28:33.0894 5232 NetTcpPortSharing - ok
20:28:33.0914 5232 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:28:33.0924 5232 nfrd960 - ok
20:28:33.0957 5232 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:28:33.0967 5232 NlaSvc - ok
20:28:33.0977 5232 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:28:33.0977 5232 Npfs - ok
20:28:33.0997 5232 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:28:34.0007 5232 nsi - ok
20:28:34.0017 5232 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:28:34.0017 5232 nsiproxy - ok
20:28:34.0059 5232 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:28:34.0069 5232 Ntfs - ok
20:28:34.0089 5232 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:28:34.0089 5232 Null - ok
20:28:34.0119 5232 [ A66E12F8896FE65E7D4D9FEAB24092A8 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
20:28:34.0139 5232 NVHDA - ok
20:28:34.0397 5232 [ 8EBAFF3A7618799A1E5AC2CC1F8EBFA1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:28:34.0489 5232 nvlddmkm - ok
20:28:34.0562 5232 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:28:34.0572 5232 nvraid - ok
20:28:34.0602 5232 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:28:34.0612 5232 nvstor - ok
20:28:34.0652 5232 [ 3BDE48948EEB458CEF0DA75DAFCD0485 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:28:34.0664 5232 nvsvc - ok
20:28:34.0734 5232 [ 2D5E79BC7517FDC241A5403279B75B4B ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:28:34.0744 5232 nvUpdatusService - ok
20:28:34.0767 5232 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:28:34.0777 5232 nv_agp - ok
20:28:34.0807 5232 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:28:34.0817 5232 ohci1394 - ok
20:28:34.0839 5232 [ 784825C9BEDE1E4B2384F628AF0AC316 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
20:28:34.0849 5232 ossrv - ok
20:28:34.0879 5232 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:28:34.0899 5232 p2pimsvc - ok
20:28:34.0909 5232 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:28:34.0919 5232 p2psvc - ok
20:28:34.0939 5232 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:28:34.0952 5232 Parport - ok
20:28:34.0982 5232 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:28:34.0982 5232 partmgr - ok
20:28:35.0002 5232 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:28:35.0002 5232 Parvdm - ok
20:28:35.0022 5232 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:28:35.0022 5232 PcaSvc - ok
20:28:35.0042 5232 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
20:28:35.0042 5232 pci - ok
20:28:35.0052 5232 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
20:28:35.0052 5232 pciide - ok
20:28:35.0072 5232 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:28:35.0082 5232 pcmcia - ok
20:28:35.0092 5232 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:28:35.0092 5232 pcw - ok
20:28:35.0132 5232 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:28:35.0152 5232 PEAUTH - ok
20:28:35.0194 5232 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:28:35.0214 5232 PeerDistSvc - ok
20:28:35.0267 5232 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
20:28:35.0307 5232 pla - ok
20:28:35.0339 5232 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:28:35.0352 5232 PlugPlay - ok
20:28:35.0362 5232 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:28:35.0372 5232 PNRPAutoReg - ok
20:28:35.0392 5232 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:28:35.0392 5232 PNRPsvc - ok
20:28:35.0412 5232 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:28:35.0432 5232 PolicyAgent - ok
20:28:35.0464 5232 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
20:28:35.0474 5232 Power - ok
20:28:35.0504 5232 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:28:35.0514 5232 PptpMiniport - ok
20:28:35.0524 5232 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:28:35.0534 5232 Processor - ok
20:28:35.0567 5232 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
20:28:35.0577 5232 ProfSvc - ok
20:28:35.0587 5232 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:28:35.0587 5232 ProtectedStorage - ok
20:28:35.0607 5232 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:28:35.0607 5232 Psched - ok
20:28:35.0647 5232 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:28:35.0679 5232 ql2300 - ok
20:28:35.0689 5232 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:28:35.0699 5232 ql40xx - ok
20:28:35.0719 5232 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:28:35.0739 5232 QWAVE - ok
20:28:35.0749 5232 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:28:35.0749 5232 QWAVEdrv - ok
20:28:35.0772 5232 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:28:35.0772 5232 RasAcd - ok
20:28:35.0822 5232 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:28:35.0822 5232 RasAgileVpn - ok
20:28:35.0847 5232 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:28:35.0857 5232 RasAuto - ok
20:28:35.0877 5232 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:28:35.0877 5232 Rasl2tp - ok
20:28:35.0897 5232 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
20:28:35.0917 5232 RasMan - ok
20:28:35.0937 5232 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:28:35.0937 5232 RasPppoe - ok
20:28:35.0957 5232 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:28:35.0959 5232 RasSstp - ok
20:28:35.0979 5232 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:28:35.0989 5232 rdbss - ok
20:28:35.0999 5232 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:28:35.0999 5232 rdpbus - ok
20:28:36.0029 5232 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:28:36.0029 5232 RDPCDD - ok
20:28:36.0049 5232 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:28:36.0062 5232 RDPDR - ok
20:28:36.0072 5232 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:28:36.0072 5232 RDPENCDD - ok
20:28:36.0092 5232 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:28:36.0092 5232 RDPREFMP - ok
20:28:36.0142 5232 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:28:36.0154 5232 RdpVideoMiniport - ok
20:28:36.0184 5232 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:28:36.0194 5232 RDPWD - ok
20:28:36.0224 5232 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:28:36.0224 5232 rdyboost - ok
20:28:36.0244 5232 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:28:36.0257 5232 RemoteAccess - ok
20:28:36.0277 5232 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:28:36.0297 5232 RemoteRegistry - ok
20:28:36.0317 5232 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:28:36.0327 5232 RpcEptMapper - ok
20:28:36.0339 5232 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:28:36.0349 5232 RpcLocator - ok
20:28:36.0369 5232 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
20:28:36.0379 5232 RpcSs - ok
20:28:36.0399 5232 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:28:36.0409 5232 rspndr - ok
20:28:36.0452 5232 [ 3849D5D73BDD9B7BC4E3305DDC345B2C ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
20:28:36.0462 5232 RTL8167 - ok
20:28:36.0502 5232 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:28:36.0502 5232 s3cap - ok
20:28:36.0512 5232 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
20:28:36.0522 5232 SamSs - ok
20:28:36.0552 5232 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:28:36.0562 5232 sbp2port - ok
20:28:36.0582 5232 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:28:36.0592 5232 SCardSvr - ok
20:28:36.0622 5232 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:28:36.0632 5232 scfilter - ok
20:28:36.0664 5232 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
20:28:36.0684 5232 Schedule - ok
20:28:36.0704 5232 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:28:36.0704 5232 SCPolicySvc - ok
20:28:36.0734 5232 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:28:36.0747 5232 SDRSVC - ok
20:28:36.0777 5232 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:28:36.0777 5232 secdrv - ok
20:28:36.0807 5232 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:28:36.0807 5232 seclogon - ok
20:28:36.0827 5232 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:28:36.0827 5232 SENS - ok
20:28:36.0827 5232 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:28:36.0842 5232 SensrSvc - ok
20:28:36.0852 5232 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:28:36.0862 5232 Serenum - ok
20:28:36.0872 5232 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:28:36.0882 5232 Serial - ok
20:28:36.0912 5232 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:28:36.0912 5232 sermouse - ok
20:28:36.0942 5232 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
20:28:36.0964 5232 SessionEnv - ok
20:28:36.0974 5232 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:28:36.0984 5232 sffdisk - ok
20:28:36.0994 5232 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:28:37.0004 5232 sffp_mmc - ok
20:28:37.0014 5232 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:28:37.0014 5232 sffp_sd - ok
20:28:37.0024 5232 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:28:37.0034 5232 sfloppy - ok
20:28:37.0057 5232 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:28:37.0067 5232 ShellHWDetection - ok
20:28:37.0087 5232 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:28:37.0087 5232 sisagp - ok
20:28:37.0117 5232 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:28:37.0127 5232 SiSRaid2 - ok
20:28:37.0147 5232 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:28:37.0159 5232 SiSRaid4 - ok
20:28:37.0169 5232 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:28:37.0179 5232 Smb - ok
20:28:37.0219 5232 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:28:37.0219 5232 SNMPTRAP - ok
20:28:37.0229 5232 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:28:37.0229 5232 spldr - ok
20:28:37.0249 5232 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
20:28:37.0272 5232 Spooler - ok
20:28:37.0347 5232 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
20:28:37.0387 5232 sppsvc - ok
20:28:37.0417 5232 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:28:37.0417 5232 sppuinotify - ok
20:28:37.0447 5232 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:28:37.0447 5232 srv - ok
20:28:37.0469 5232 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:28:37.0469 5232 srv2 - ok
20:28:37.0479 5232 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:28:37.0479 5232 srvnet - ok
20:28:37.0572 5232 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:28:37.0592 5232 SSDPSRV - ok
20:28:37.0622 5232 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
20:28:37.0622 5232 ssmdrv - ok
20:28:37.0647 5232 [ E98C0EEE2AAA630FC2D814B37AD16C29 ] SSMO3v2Filter C:\Windows\system32\drivers\MO3v2Driver.sys
20:28:37.0647 5232 SSMO3v2Filter - ok
20:28:37.0667 5232 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:28:37.0677 5232 SstpSvc - ok
20:28:37.0687 5232 Steam Client Service - ok
20:28:37.0759 5232 [ 2C25A72B53B28034BE260D81C4EA4955 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:28:37.0779 5232 Stereo Service - ok
20:28:37.0819 5232 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:28:37.0829 5232 stexstor - ok
20:28:37.0862 5232 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
20:28:37.0882 5232 StiSvc - ok
20:28:37.0902 5232 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:28:37.0902 5232 storflt - ok
20:28:37.0932 5232 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:28:37.0942 5232 storvsc - ok
20:28:37.0952 5232 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
20:28:37.0954 5232 swenum - ok
20:28:37.0974 5232 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:28:37.0984 5232 swprv - ok
20:28:37.0994 5232 Synth3dVsc - ok
20:28:38.0034 5232 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
20:28:38.0044 5232 SysMain - ok
20:28:38.0067 5232 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:28:38.0077 5232 TabletInputService - ok
20:28:38.0097 5232 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
20:28:38.0117 5232 TapiSrv - ok
20:28:38.0137 5232 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:28:38.0147 5232 TBS - ok
20:28:38.0199 5232 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:28:38.0219 5232 Tcpip - ok
20:28:38.0239 5232 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:28:38.0249 5232 TCPIP6 - ok
20:28:38.0272 5232 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:28:38.0282 5232 tcpipreg - ok
20:28:38.0302 5232 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:28:38.0312 5232 TDPIPE - ok
20:28:38.0342 5232 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:28:38.0342 5232 TDTCP - ok
20:28:38.0364 5232 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:28:38.0374 5232 tdx - ok
20:28:38.0384 5232 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:28:38.0394 5232 TermDD - ok
20:28:38.0414 5232 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
20:28:38.0434 5232 TermService - ok
20:28:38.0444 5232 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:28:38.0457 5232 Themes - ok
20:28:38.0477 5232 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:28:38.0477 5232 THREADORDER - ok
20:28:38.0497 5232 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:28:38.0507 5232 TrkWks - ok
20:28:38.0537 5232 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:28:38.0547 5232 TrustedInstaller - ok
20:28:38.0559 5232 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:28:38.0569 5232 tssecsrv - ok
20:28:38.0599 5232 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:28:38.0609 5232 TsUsbFlt - ok
20:28:38.0609 5232 tsusbhub - ok
20:28:38.0654 5232 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:28:38.0664 5232 tunnel - ok
20:28:38.0694 5232 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:28:38.0694 5232 uagp35 - ok
20:28:38.0714 5232 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:28:38.0734 5232 udfs - ok
20:28:38.0757 5232 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:28:38.0767 5232 UI0Detect - ok
20:28:38.0797 5232 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:28:38.0807 5232 uliagpkx - ok
20:28:38.0827 5232 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
20:28:38.0837 5232 umbus - ok
20:28:38.0849 5232 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:28:38.0849 5232 UmPass - ok
20:28:38.0879 5232 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
20:28:38.0899 5232 UmRdpService - ok
20:28:38.0919 5232 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:28:38.0929 5232 upnphost - ok
20:28:38.0972 5232 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:28:38.0982 5232 usbaudio - ok
20:28:39.0002 5232 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:28:39.0012 5232 usbccgp - ok
20:28:39.0022 5232 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:28:39.0042 5232 usbcir - ok
20:28:39.0052 5232 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:28:39.0062 5232 usbehci - ok
20:28:39.0072 5232 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:28:39.0082 5232 usbhub - ok
20:28:39.0132 5232 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:28:39.0132 5232 usbohci - ok
20:28:39.0142 5232 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:28:39.0152 5232 usbprint - ok
20:28:39.0174 5232 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:28:39.0184 5232 USBSTOR - ok
20:28:39.0184 5232 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:28:39.0194 5232 usbuhci - ok
20:28:39.0204 5232 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:28:39.0214 5232 UxSms - ok
20:28:39.0224 5232 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
20:28:39.0234 5232 VaultSvc - ok
20:28:39.0244 5232 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:28:39.0244 5232 vdrvroot - ok
20:28:39.0284 5232 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
20:28:39.0304 5232 vds - ok
20:28:39.0314 5232 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:28:39.0324 5232 vga - ok
20:28:39.0344 5232 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:28:39.0344 5232 VgaSave - ok
20:28:39.0354 5232 VGPU - ok
20:28:39.0364 5232 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:28:39.0374 5232 vhdmp - ok
20:28:39.0394 5232 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:28:39.0404 5232 viaagp - ok
20:28:39.0404 5232 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:28:39.0414 5232 ViaC7 - ok
20:28:39.0424 5232 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
20:28:39.0434 5232 viaide - ok
20:28:39.0454 5232 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:28:39.0454 5232 vmbus - ok
20:28:39.0464 5232 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:28:39.0474 5232 VMBusHID - ok
20:28:39.0484 5232 vmci - ok
20:28:39.0484 5232 VMnetAdapter - ok
20:28:39.0504 5232 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:28:39.0504 5232 volmgr - ok
20:28:39.0534 5232 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:28:39.0534 5232 volmgrx - ok
20:28:39.0554 5232 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:28:39.0554 5232 volsnap - ok
20:28:39.0584 5232 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:28:39.0594 5232 vsmraid - ok
20:28:39.0624 5232 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
20:28:39.0634 5232 VSS - ok
20:28:39.0694 5232 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
20:28:39.0714 5232 vToolbarUpdater12.2.6 - ok
20:28:39.0754 5232 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:28:39.0754 5232 vwifibus - ok
20:28:39.0764 5232 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:28:39.0774 5232 vwififlt - ok
20:28:39.0804 5232 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:28:39.0814 5232 W32Time - ok
20:28:39.0834 5232 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:28:39.0844 5232 WacomPen - ok
20:28:39.0864 5232 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:28:39.0874 5232 WANARP - ok
20:28:39.0874 5232 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:28:39.0874 5232 Wanarpv6 - ok
20:28:39.0944 5232 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:28:39.0994 5232 WatAdminSvc - ok
20:28:40.0034 5232 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
20:28:40.0064 5232 wbengine - ok
20:28:40.0084 5232 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:28:40.0094 5232 WbioSrvc - ok
20:28:40.0124 5232 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:28:40.0144 5232 wcncsvc - ok
20:28:40.0154 5232 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:28:40.0164 5232 WcsPlugInService - ok
20:28:40.0174 5232 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:28:40.0174 5232 Wd - ok
20:28:40.0194 5232 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:28:40.0204 5232 Wdf01000 - ok
20:28:40.0214 5232 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:28:40.0234 5232 WdiServiceHost - ok
20:28:40.0234 5232 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:28:40.0234 5232 WdiSystemHost - ok
20:28:40.0264 5232 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
20:28:40.0284 5232 WebClient - ok
20:28:40.0294 5232 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:28:40.0314 5232 Wecsvc - ok
20:28:40.0324 5232 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:28:40.0334 5232 wercplsupport - ok
20:28:40.0354 5232 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:28:40.0374 5232 WerSvc - ok
20:28:40.0394 5232 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:28:40.0394 5232 WfpLwf - ok
20:28:40.0404 5232 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:28:40.0404 5232 WIMMount - ok
20:28:40.0414 5232 WinHttpAutoProxySvc - ok
20:28:40.0464 5232 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:28:40.0474 5232 Winmgmt - ok
20:28:40.0524 5232 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
20:28:40.0554 5232 WinRM - ok
20:28:40.0594 5232 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:28:40.0614 5232 Wlansvc - ok
20:28:40.0644 5232 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:28:40.0644 5232 WmiAcpi - ok
20:28:40.0654 5232 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:28:40.0654 5232 wmiApSrv - ok
20:28:40.0724 5232 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:28:40.0734 5232 WMPNetworkSvc - ok
20:28:40.0744 5232 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:28:40.0754 5232 WPCSvc - ok
20:28:40.0774 5232 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:28:40.0784 5232 WPDBusEnum - ok
20:28:40.0824 5232 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:28:40.0834 5232 ws2ifsl - ok
20:28:40.0834 5232 WSearch - ok
20:28:40.0844 5232 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:28:40.0854 5232 WudfPf - ok
20:28:40.0894 5232 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:28:40.0904 5232 WUDFRd - ok
20:28:40.0924 5232 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:28:40.0934 5232 wudfsvc - ok
20:28:40.0954 5232 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:28:40.0964 5232 WwanSvc - ok
20:28:40.0984 5232 ================ Scan global ===============================
20:28:41.0014 5232 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
20:28:41.0044 5232 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
20:28:41.0064 5232 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
20:28:41.0084 5232 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:28:41.0104 5232 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:28:41.0114 5232 [Global] - ok
20:28:41.0114 5232 ================ Scan MBR ==================================
20:28:41.0114 5232 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:28:41.0254 5232 \Device\Harddisk0\DR0 - ok
20:28:41.0274 5232 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:28:41.0284 5232 \Device\Harddisk1\DR1 - ok
20:28:41.0284 5232 ================ Scan VBR ==================================
20:28:41.0284 5232 [ 00C7DDA82E4FA32E0420237AABD7696E ] \Device\Harddisk0\DR0\Partition1
20:28:41.0284 5232 \Device\Harddisk0\DR0\Partition1 - ok
20:28:41.0294 5232 [ 2DBDB3836BBBED47CC6D30D135BBF830 ] \Device\Harddisk0\DR0\Partition2
20:28:41.0294 5232 \Device\Harddisk0\DR0\Partition2 - ok
20:28:41.0304 5232 [ 6979ED8AE70DA74791C7CC42CD592720 ] \Device\Harddisk1\DR1\Partition1
20:28:41.0304 5232 \Device\Harddisk1\DR1\Partition1 - ok
20:28:41.0304 5232 ============================================================
20:28:41.0304 5232 Scan finished
20:28:41.0304 5232 ============================================================
20:28:41.0314 5224 Detected object count: 0
20:28:41.0314 5224 Actual detected object count: 0
20:29:20.0124 5340 ============================================================
20:29:20.0124 5340 Scan started
20:29:20.0124 5340 Mode: Manual;
20:29:20.0124 5340 ============================================================
20:29:20.0354 5340 ================ Scan system memory ========================
20:29:20.0354 5340 System memory - ok
20:29:20.0354 5340 ================ Scan services =============================
20:29:20.0484 5340 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:29:20.0484 5340 1394ohci - ok
20:29:20.0524 5340 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:29:20.0524 5340 ACPI - ok
20:29:20.0534 5340 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:29:20.0534 5340 AcpiPmi - ok
20:29:20.0594 5340 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:29:20.0594 5340 AdobeARMservice - ok
20:29:20.0644 5340 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:29:20.0644 5340 AdobeFlashPlayerUpdateSvc - ok
20:29:20.0674 5340 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:29:20.0684 5340 adp94xx - ok
20:29:20.0704 5340 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:29:20.0704 5340 adpahci - ok
20:29:20.0714 5340 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:29:20.0714 5340 adpu320 - ok
20:29:20.0754 5340 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:29:20.0754 5340 AeLookupSvc - ok
20:29:20.0804 5340 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
20:29:20.0804 5340 AFD - ok
20:29:20.0864 5340 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:29:20.0864 5340 agp440 - ok
20:29:20.0874 5340 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:29:20.0874 5340 aic78xx - ok
20:29:20.0894 5340 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:29:20.0894 5340 ALG - ok
20:29:20.0914 5340 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
20:29:20.0914 5340 aliide - ok
20:29:20.0944 5340 [ 50EBBB86E493BD9AB7DDF914A90EEF8E ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:29:20.0944 5340 AMD External Events Utility - ok
20:29:20.0974 5340 AMD FUEL Service - ok
20:29:20.0994 5340 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:29:20.0994 5340 amdagp - ok
20:29:21.0014 5340 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
20:29:21.0014 5340 amdide - ok
20:29:21.0034 5340 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
20:29:21.0034 5340 amdiox86 - ok
20:29:21.0054 5340 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:29:21.0054 5340 AmdK8 - ok
20:29:21.0254 5340 [ 70EB74785AB7FC603FEF19D87B7A7946 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:29:21.0304 5340 amdkmdag - ok
20:29:21.0334 5340 [ BA99833BBDE9C4FF389FC8114FB14843 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:29:21.0334 5340 amdkmdap - ok
20:29:21.0354 5340 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:29:21.0354 5340 AmdPPM - ok
20:29:21.0384 5340 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:29:21.0384 5340 amdsata - ok
20:29:21.0394 5340 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:29:21.0394 5340 amdsbs - ok
20:29:21.0414 5340 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:29:21.0414 5340 amdxata - ok
20:29:21.0474 5340 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
20:29:21.0474 5340 AMD_RAIDXpert - ok
20:29:21.0514 5340 [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
20:29:21.0514 5340 AntiVirSchedulerService - ok
20:29:21.0544 5340 [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
20:29:21.0544 5340 AntiVirService - ok
20:29:21.0564 5340 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:29:21.0574 5340 AODDriver4.01 - ok
20:29:21.0574 5340 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:29:21.0574 5340 AODDriver4.1 - ok
20:29:21.0604 5340 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
20:29:21.0604 5340 AppID - ok
20:29:21.0624 5340 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:29:21.0624 5340 AppIDSvc - ok
20:29:21.0644 5340 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
20:29:21.0644 5340 Appinfo - ok
20:29:21.0664 5340 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:29:21.0664 5340 AppMgmt - ok
20:29:21.0684 5340 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:29:21.0684 5340 arc - ok
20:29:21.0704 5340 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:29:21.0704 5340 arcsas - ok
20:29:21.0714 5340 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:29:21.0724 5340 AsyncMac - ok
20:29:21.0764 5340 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
20:29:21.0764 5340 atapi - ok
20:29:21.0794 5340 [ 6ADC42CF4A6AB84975CA63DCCFAAF5D8 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
20:29:21.0794 5340 AtiHDAudioService - ok
20:29:21.0984 5340 [ 70EB74785AB7FC603FEF19D87B7A7946 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:29:22.0044 5340 atikmdag - ok
20:29:22.0104 5340 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:29:22.0104 5340 AudioEndpointBuilder - ok
20:29:22.0114 5340 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:29:22.0114 5340 Audiosrv - ok
20:29:22.0134 5340 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:29:22.0144 5340 avgntflt - ok
20:29:22.0154 5340 [ 3001E24F340D400BFF85935E5777FC5B ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
20:29:22.0154 5340 avgtp - ok
20:29:22.0174 5340 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:29:22.0174 5340 avipbb - ok
20:29:22.0194 5340 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:29:22.0194 5340 avkmgr - ok
20:29:22.0214 5340 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:29:22.0214 5340 AxInstSV - ok
20:29:22.0254 5340 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:29:22.0254 5340 b06bdrv - ok
20:29:22.0274 5340 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:29:22.0274 5340 b57nd60x - ok
20:29:22.0304 5340 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:29:22.0304 5340 BDESVC - ok
20:29:22.0314 5340 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:29:22.0314 5340 Beep - ok
20:29:22.0324 5340 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:29:22.0324 5340 blbdrive - ok
20:29:22.0344 5340 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:29:22.0354 5340 bowser - ok
20:29:22.0364 5340 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:29:22.0364 5340 BrFiltLo - ok
20:29:22.0384 5340 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:29:22.0384 5340 BrFiltUp - ok
20:29:22.0414 5340 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
20:29:22.0414 5340 Browser - ok
20:29:22.0434 5340 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:29:22.0434 5340 Brserid - ok
20:29:22.0444 5340 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:29:22.0454 5340 BrSerWdm - ok
20:29:22.0464 5340 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:29:22.0464 5340 BrUsbMdm - ok
20:29:22.0474 5340 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:29:22.0474 5340 BrUsbSer - ok
20:29:22.0484 5340 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:29:22.0494 5340 BTHMODEM - ok
20:29:22.0504 5340 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:29:22.0504 5340 bthserv - ok
20:29:22.0524 5340 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:29:22.0524 5340 cdfs - ok
20:29:22.0544 5340 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:29:22.0554 5340 cdrom - ok
20:29:22.0574 5340 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
20:29:22.0574 5340 CertPropSvc - ok
20:29:22.0584 5340 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:29:22.0594 5340 circlass - ok
20:29:22.0614 5340 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:29:22.0614 5340 CLFS - ok
20:29:22.0664 5340 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:29:22.0664 5340 clr_optimization_v2.0.50727_32 - ok
20:29:22.0724 5340 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:29:22.0724 5340 clr_optimization_v4.0.30319_32 - ok
20:29:22.0744 5340 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:29:22.0744 5340 CmBatt - ok
20:29:22.0754 5340 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:29:22.0764 5340 cmdide - ok
20:29:22.0784 5340 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
20:29:22.0794 5340 CNG - ok
20:29:22.0804 5340 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:29:22.0804 5340 Compbatt - ok
20:29:22.0824 5340 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:29:22.0824 5340 CompositeBus - ok
20:29:22.0824 5340 COMSysApp - ok
20:29:22.0874 5340 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:29:22.0874 5340 crcdisk - ok
20:29:22.0904 5340 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
20:29:22.0904 5340 Creative ALchemy AL6 Licensing Service - ok
20:29:22.0914 5340 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
20:29:22.0914 5340 Creative Audio Engine Licensing Service - ok
20:29:22.0944 5340 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:29:22.0944 5340 CryptSvc - ok
20:29:22.0974 5340 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
20:29:22.0984 5340 CSC - ok
20:29:23.0004 5340 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
20:29:23.0004 5340 CscService - ok
20:29:23.0024 5340 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
20:29:23.0034 5340 CT20XUT - ok
20:29:23.0034 5340 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
20:29:23.0034 5340 CT20XUT.SYS - ok
20:29:23.0064 5340 [ 7991921095C3D966EA36071A11B05AFB ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
20:29:23.0064 5340 ctac32k - ok
20:29:23.0094 5340 [ EE5B6899FD0910A147A39787210D847D ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
20:29:23.0094 5340 ctaud2k - ok
20:29:23.0124 5340 [ 7D564A71907B389C62191E7D7B9069D8 ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
20:29:23.0124 5340 CTAudSvcService - ok
20:29:23.0164 5340 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
20:29:23.0174 5340 CTEXFIFX - ok
20:29:23.0194 5340 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
20:29:23.0204 5340 CTEXFIFX.SYS - ok
20:29:23.0224 5340 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
20:29:23.0224 5340 CTHWIUT - ok
20:29:23.0234 5340 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
20:29:23.0234 5340 CTHWIUT.SYS - ok
20:29:23.0244 5340 [ 526F4A48A7E33F9FE6C9297DF060F695 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
20:29:23.0244 5340 ctprxy2k - ok
20:29:23.0264 5340 [ DACD54EFAB4D5F42693077FFC36B18E1 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
20:29:23.0264 5340 ctsfm2k - ok
20:29:23.0294 5340 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
20:29:23.0294 5340 DcomLaunch - ok
20:29:23.0324 5340 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:29:23.0334 5340 defragsvc - ok
20:29:23.0354 5340 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:29:23.0354 5340 DfsC - ok
20:29:23.0384 5340 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:29:23.0384 5340 Dhcp - ok
20:29:23.0414 5340 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:29:23.0414 5340 discache - ok
20:29:23.0424 5340 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:29:23.0424 5340 Disk - ok
20:29:23.0454 5340 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:29:23.0454 5340 Dnscache - ok
20:29:23.0484 5340 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
20:29:23.0484 5340 dot3svc - ok
20:29:23.0494 5340 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
20:29:23.0494 5340 DPS - ok
20:29:23.0524 5340 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:29:23.0524 5340 drmkaud - ok
20:29:23.0554 5340 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:29:23.0564 5340 DXGKrnl - ok
20:29:23.0584 5340 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:29:23.0594 5340 EapHost - ok
20:29:23.0664 5340 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:29:23.0684 5340 ebdrv - ok
20:29:23.0714 5340 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
20:29:23.0714 5340 EFS - ok
20:29:23.0764 5340 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:29:23.0764 5340 ehRecvr - ok
20:29:23.0784 5340 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:29:23.0794 5340 ehSched - ok
20:29:23.0804 5340 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:29:23.0814 5340 elxstor - ok
20:29:23.0834 5340 [ 8013545EB6A4C3A7F4FCB397F37643DF ] emupia C:\Windows\system32\drivers\emupia2k.sys
20:29:23.0834 5340 emupia - ok
20:29:23.0874 5340 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:29:23.0874 5340 ErrDev - ok
20:29:23.0904 5340 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:29:23.0904 5340 EventSystem - ok
20:29:23.0924 5340 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:29:23.0924 5340 exfat - ok
20:29:23.0944 5340 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:29:23.0944 5340 fastfat - ok
20:29:23.0974 5340 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
20:29:23.0984 5340 Fax - ok
20:29:23.0994 5340 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:29:23.0994 5340 fdc - ok
20:29:24.0014 5340 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:29:24.0014 5340 fdPHost - ok
20:29:24.0024 5340 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:29:24.0024 5340 FDResPub - ok
20:29:24.0034 5340 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:29:24.0034 5340 FileInfo - ok
20:29:24.0044 5340 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:29:24.0044 5340 Filetrace - ok
20:29:24.0064 5340 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:29:24.0064 5340 flpydisk - ok
20:29:24.0074 5340 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:29:24.0084 5340 FltMgr - ok
20:29:24.0104 5340 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
20:29:24.0114 5340 FontCache - ok
20:29:24.0154 5340 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:29:24.0154 5340 FontCache3.0.0.0 - ok
20:29:24.0164 5340 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:29:24.0164 5340 FsDepends - ok
20:29:24.0194 5340 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:29:24.0194 5340 Fs_Rec - ok
20:29:24.0204 5340 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:29:24.0204 5340 fvevol - ok
20:29:24.0224 5340 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:29:24.0224 5340 gagp30kx - ok
20:29:24.0254 5340 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
20:29:24.0264 5340 gpsvc - ok
20:29:24.0314 5340 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:29:24.0314 5340 gupdate - ok
20:29:24.0324 5340 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:29:24.0324 5340 gupdatem - ok
20:29:24.0344 5340 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
20:29:24.0344 5340 gusvc - ok
20:29:24.0384 5340 [ 753B37BEA4F7E4BEF6C51905A4D61B86 ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
20:29:24.0394 5340 ha20x22k - ok
20:29:24.0434 5340 [ C717456440A449036077BFB5F6A0DB27 ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
20:29:24.0444 5340 ha20x2k - ok
20:29:24.0454 5340 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:29:24.0454 5340 hcw85cir - ok
20:29:24.0494 5340 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:29:24.0494 5340 HdAudAddService - ok
20:29:24.0504 5340 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:29:24.0504 5340 HDAudBus - ok
20:29:24.0514 5340 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:29:24.0514 5340 HidBatt - ok
20:29:24.0534 5340 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:29:24.0534 5340 HidBth - ok
20:29:24.0564 5340 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:29:24.0564 5340 HidIr - ok
20:29:24.0594 5340 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:29:24.0594 5340 hidserv - ok
20:29:24.0614 5340 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:29:24.0614 5340 HidUsb - ok
20:29:24.0644 5340 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:29:24.0654 5340 hkmsvc - ok
20:29:24.0674 5340 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:29:24.0674 5340 HomeGroupListener - ok
20:29:24.0694 5340 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:29:24.0704 5340 HomeGroupProvider - ok
20:29:24.0724 5340 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:29:24.0724 5340 HpSAMD - ok
20:29:24.0774 5340 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:29:24.0774 5340 HTTP - ok
20:29:24.0804 5340 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:29:24.0804 5340 hwpolicy - ok
20:29:24.0824 5340 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:29:24.0824 5340 i8042prt - ok
20:29:24.0854 5340 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:29:24.0864 5340 iaStorV - ok
20:29:24.0914 5340 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:29:24.0924 5340 idsvc - ok
20:29:24.0944 5340 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:29:24.0944 5340 iirsp - ok
20:29:24.0974 5340 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
20:29:24.0974 5340 IKEEXT - ok
20:29:24.0994 5340 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
20:29:24.0994 5340 intelide - ok
20:29:25.0014 5340 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:29:25.0014 5340 intelppm - ok
20:29:25.0044 5340 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:29:25.0044 5340 IPBusEnum - ok
20:29:25.0054 5340 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:29:25.0054 5340 IpFilterDriver - ok
20:29:25.0064 5340 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:29:25.0064 5340 IPMIDRV - ok
20:29:25.0084 5340 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:29:25.0084 5340 IPNAT - ok
20:29:25.0094 5340 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:29:25.0094 5340 IRENUM - ok
20:29:25.0114 5340 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:29:25.0114 5340 isapnp - ok
20:29:25.0134 5340 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:29:25.0134 5340 iScsiPrt - ok
20:29:25.0154 5340 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:29:25.0154 5340 kbdclass - ok
20:29:25.0164 5340 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:29:25.0164 5340 kbdhid - ok

20:29:25.0174 5340 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
20:29:25.0184 5340 KeyIso - ok
20:29:25.0204 5340 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:29:25.0214 5340 KSecDD - ok
20:29:25.0234 5340 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:29:25.0234 5340 KSecPkg - ok
20:29:25.0274 5340 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:29:25.0274 5340 KtmRm - ok
20:29:25.0294 5340 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
20:29:25.0294 5340 LanmanServer - ok
20:29:25.0304 5340 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:29:25.0314 5340 LanmanWorkstation - ok
20:29:25.0324 5340 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:29:25.0324 5340 lltdio - ok
20:29:25.0344 5340 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:29:25.0344 5340 lltdsvc - ok
20:29:25.0354 5340 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:29:25.0354 5340 lmhosts - ok
20:29:25.0374 5340 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:29:25.0374 5340 LSI_FC - ok
20:29:25.0384 5340 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:29:25.0384 5340 LSI_SAS - ok
20:29:25.0404 5340 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:29:25.0404 5340 LSI_SAS2 - ok
20:29:25.0424 5340 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:29:25.0424 5340 LSI_SCSI - ok
20:29:25.0444 5340 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:29:25.0444 5340 luafv - ok
20:29:25.0494 5340 [ 485405DE203E88B3FE4294A2EA48D7EE ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.271\McCHSvc.exe
20:29:25.0494 5340 McComponentHostService - ok
20:29:25.0524 5340 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:29:25.0534 5340 Mcx2Svc - ok
20:29:25.0554 5340 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:29:25.0554 5340 megasas - ok
20:29:25.0574 5340 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:29:25.0574 5340 MegaSR - ok
20:29:25.0584 5340 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:29:25.0584 5340 MMCSS - ok
20:29:25.0604 5340 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:29:25.0604 5340 Modem - ok
20:29:25.0634 5340 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:29:25.0634 5340 monitor - ok
20:29:25.0654 5340 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:29:25.0654 5340 mouclass - ok
20:29:25.0664 5340 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:29:25.0674 5340 mouhid - ok
20:29:25.0684 5340 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:29:25.0684 5340 mountmgr - ok
20:29:25.0704 5340 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
20:29:25.0704 5340 mpio - ok
20:29:25.0734 5340 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:29:25.0734 5340 mpsdrv - ok
20:29:25.0754 5340 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:29:25.0754 5340 MRxDAV - ok
20:29:25.0774 5340 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:29:25.0784 5340 mrxsmb - ok
20:29:25.0804 5340 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:29:25.0804 5340 mrxsmb10 - ok
20:29:25.0814 5340 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:29:25.0814 5340 mrxsmb20 - ok
20:29:25.0824 5340 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
20:29:25.0834 5340 msahci - ok
20:29:25.0874 5340 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:29:25.0874 5340 msdsm - ok
20:29:25.0894 5340 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:29:25.0894 5340 MSDTC - ok
20:29:25.0914 5340 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:29:25.0914 5340 Msfs - ok
20:29:25.0924 5340 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:29:25.0924 5340 mshidkmdf - ok
20:29:25.0934 5340 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:29:25.0934 5340 msisadrv - ok
20:29:25.0954 5340 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:29:25.0964 5340 MSiSCSI - ok
20:29:25.0964 5340 msiserver - ok
20:29:25.0984 5340 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:29:25.0984 5340 MSKSSRV - ok
20:29:25.0994 5340 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:29:25.0994 5340 MSPCLOCK - ok
20:29:26.0014 5340 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:29:26.0014 5340 MSPQM - ok
20:29:26.0034 5340 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:29:26.0034 5340 MsRPC - ok
20:29:26.0054 5340 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:29:26.0054 5340 mssmbios - ok
20:29:26.0064 5340 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:29:26.0064 5340 MSTEE - ok
20:29:26.0084 5340 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:29:26.0084 5340 MTConfig - ok
20:29:26.0094 5340 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:29:26.0094 5340 Mup - ok
20:29:26.0124 5340 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
20:29:26.0124 5340 napagent - ok
20:29:26.0144 5340 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:29:26.0154 5340 NativeWifiP - ok
20:29:26.0174 5340 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:29:26.0184 5340 NDIS - ok
20:29:26.0194 5340 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:29:26.0204 5340 NdisCap - ok
20:29:26.0204 5340 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:29:26.0204 5340 NdisTapi - ok
20:29:26.0234 5340 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:29:26.0234 5340 Ndisuio - ok
20:29:26.0254 5340 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:29:26.0254 5340 NdisWan - ok
20:29:26.0274 5340 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:29:26.0274 5340 NDProxy - ok
20:29:26.0284 5340 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:29:26.0284 5340 NetBIOS - ok
20:29:26.0304 5340 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:29:26.0304 5340 NetBT - ok
20:29:26.0324 5340 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
20:29:26.0324 5340 Netlogon - ok
20:29:26.0354 5340 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:29:26.0354 5340 Netman - ok
20:29:26.0374 5340 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:29:26.0384 5340 netprofm - ok
20:29:26.0404 5340 [ 27EE4B406E2F26F6117A9A420BD4CB65 ] netr28u C:\Windows\system32\DRIVERS\netr28u.sys
20:29:26.0414 5340 netr28u - ok
20:29:26.0434 5340 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:29:26.0434 5340 NetTcpPortSharing - ok
20:29:26.0454 5340 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:29:26.0454 5340 nfrd960 - ok
20:29:26.0484 5340 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:29:26.0484 5340 NlaSvc - ok
20:29:26.0504 5340 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:29:26.0504 5340 Npfs - ok
20:29:26.0524 5340 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:29:26.0524 5340 nsi - ok
20:29:26.0534 5340 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:29:26.0534 5340 nsiproxy - ok
20:29:26.0574 5340 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:29:26.0584 5340 Ntfs - ok
20:29:26.0594 5340 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:29:26.0594 5340 Null - ok
20:29:26.0624 5340 [ A66E12F8896FE65E7D4D9FEAB24092A8 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
20:29:26.0624 5340 NVHDA - ok
20:29:26.0844 5340 [ 8EBAFF3A7618799A1E5AC2CC1F8EBFA1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:29:26.0914 5340 nvlddmkm - ok
20:29:26.0964 5340 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:29:26.0974 5340 nvraid - ok
20:29:26.0994 5340 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:29:26.0994 5340 nvstor - ok
20:29:27.0024 5340 [ 3BDE48948EEB458CEF0DA75DAFCD0485 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:29:27.0034 5340 nvsvc - ok
20:29:27.0094 5340 [ 2D5E79BC7517FDC241A5403279B75B4B ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:29:27.0104 5340 nvUpdatusService - ok
20:29:27.0124 5340 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:29:27.0124 5340 nv_agp - ok
20:29:27.0154 5340 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:29:27.0154 5340 ohci1394 - ok
20:29:27.0184 5340 [ 784825C9BEDE1E4B2384F628AF0AC316 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
20:29:27.0184 5340 ossrv - ok
20:29:27.0214 5340 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:29:27.0214 5340 p2pimsvc - ok
20:29:27.0234 5340 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:29:27.0234 5340 p2psvc - ok
20:29:27.0264 5340 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:29:27.0264 5340 Parport - ok
20:29:27.0294 5340 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:29:27.0294 5340 partmgr - ok
20:29:27.0314 5340 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:29:27.0314 5340 Parvdm - ok
20:29:27.0324 5340 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:29:27.0334 5340 PcaSvc - ok
20:29:27.0354 5340 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
20:29:27.0354 5340 pci - ok
20:29:27.0364 5340 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
20:29:27.0364 5340 pciide - ok
20:29:27.0384 5340 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:29:27.0384 5340 pcmcia - ok
20:29:27.0394 5340 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:29:27.0404 5340 pcw - ok
20:29:27.0424 5340 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:29:27.0424 5340 PEAUTH - ok
20:29:27.0454 5340 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:29:27.0464 5340 PeerDistSvc - ok
20:29:27.0514 5340 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
20:29:27.0524 5340 pla - ok
20:29:27.0554 5340 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:29:27.0564 5340 PlugPlay - ok
20:29:27.0574 5340 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:29:27.0574 5340 PNRPAutoReg - ok
20:29:27.0594 5340 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:29:27.0594 5340 PNRPsvc - ok
20:29:27.0624 5340 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:29:27.0624 5340 PolicyAgent - ok
20:29:27.0644 5340 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
20:29:27.0654 5340 Power - ok
20:29:27.0664 5340 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:29:27.0664 5340 PptpMiniport - ok
20:29:27.0684 5340 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:29:27.0684 5340 Processor - ok
20:29:27.0704 5340 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
20:29:27.0714 5340 ProfSvc - ok
20:29:27.0724 5340 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:29:27.0724 5340 ProtectedStorage - ok
20:29:27.0744 5340 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:29:27.0744 5340 Psched - ok
20:29:27.0784 5340 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:29:27.0794 5340 ql2300 - ok
20:29:27.0814 5340 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:29:27.0814 5340 ql40xx - ok
20:29:27.0844 5340 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:29:27.0844 5340 QWAVE - ok
20:29:27.0854 5340 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:29:27.0864 5340 QWAVEdrv - ok
20:29:27.0874 5340 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:29:27.0874 5340 RasAcd - ok
20:29:27.0904 5340 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:29:27.0904 5340 RasAgileVpn - ok
20:29:27.0944 5340 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:29:27.0944 5340 RasAuto - ok
20:29:27.0964 5340 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:29:27.0964 5340 Rasl2tp - ok
20:29:27.0984 5340 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
20:29:27.0984 5340 RasMan - ok
20:29:27.0994 5340 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:29:27.0994 5340 RasPppoe - ok
20:29:28.0004 5340 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:29:28.0004 5340 RasSstp - ok
20:29:28.0034 5340 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:29:28.0044 5340 rdbss - ok
20:29:28.0054 5340 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:29:28.0054 5340 rdpbus - ok
20:29:28.0074 5340 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:29:28.0074 5340 RDPCDD - ok
20:29:28.0094 5340 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:29:28.0094 5340 RDPDR - ok
20:29:28.0104 5340 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:29:28.0104 5340 RDPENCDD - ok
20:29:28.0124 5340 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:29:28.0124 5340 RDPREFMP - ok
20:29:28.0164 5340 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:29:28.0164 5340 RdpVideoMiniport - ok
20:29:28.0194 5340 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:29:28.0194 5340 RDPWD - ok
20:29:28.0224 5340 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:29:28.0224 5340 rdyboost - ok
20:29:28.0244 5340 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:29:28.0244 5340 RemoteAccess - ok
20:29:28.0264 5340 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:29:28.0264 5340 RemoteRegistry - ok
20:29:28.0284 5340 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:29:28.0284 5340 RpcEptMapper - ok
20:29:28.0294 5340 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:29:28.0304 5340 RpcLocator - ok
20:29:28.0314 5340 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
20:29:28.0324 5340 RpcSs - ok
20:29:28.0334 5340 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:29:28.0334 5340 rspndr - ok
20:29:28.0364 5340 [ 3849D5D73BDD9B7BC4E3305DDC345B2C ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
20:29:28.0374 5340 RTL8167 - ok
20:29:28.0394 5340 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:29:28.0394 5340 s3cap - ok
20:29:28.0414 5340 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
20:29:28.0414 5340 SamSs - ok
20:29:28.0454 5340 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:29:28.0454 5340 sbp2port - ok
20:29:28.0474 5340 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:29:28.0474 5340 SCardSvr - ok
20:29:28.0504 5340 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:29:28.0504 5340 scfilter - ok
20:29:28.0534 5340 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
20:29:28.0534 5340 Schedule - ok
20:29:28.0554 5340 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:29:28.0554 5340 SCPolicySvc - ok
20:29:28.0584 5340 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:29:28.0584 5340 SDRSVC - ok
20:29:28.0594 5340 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:29:28.0594 5340 secdrv - ok
20:29:28.0614 5340 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:29:28.0614 5340 seclogon - ok
20:29:28.0634 5340 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:29:28.0644 5340 SENS - ok
20:29:28.0644 5340 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:29:28.0644 5340 SensrSvc - ok
20:29:28.0664 5340 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:29:28.0664 5340 Serenum - ok
20:29:28.0684 5340 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:29:28.0684 5340 Serial - ok
20:29:28.0694 5340 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:29:28.0694 5340 sermouse - ok
20:29:28.0734 5340 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
20:29:28.0734 5340 SessionEnv - ok
20:29:28.0754 5340 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:29:28.0754 5340 sffdisk - ok
20:29:28.0764 5340 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:29:28.0764 5340 sffp_mmc - ok
20:29:28.0814 5340 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:29:28.0814 5340 sffp_sd - ok
20:29:28.0834 5340 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:29:28.0834 5340 sfloppy - ok
20:29:28.0854 5340 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:29:28.0854 5340 ShellHWDetection - ok
20:29:28.0874 5340 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:29:28.0874 5340 sisagp - ok
20:29:28.0884 5340 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:29:28.0884 5340 SiSRaid2 - ok
20:29:28.0904 5340 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:29:28.0904 5340 SiSRaid4 - ok
20:29:28.0914 5340 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:29:28.0914 5340 Smb - ok
20:29:28.0934 5340 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:29:28.0944 5340 SNMPTRAP - ok
20:29:28.0954 5340 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:29:28.0954 5340 spldr - ok
20:29:28.0974 5340 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
20:29:28.0984 5340 Spooler - ok
20:29:29.0054 5340 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
20:29:29.0074 5340 sppsvc - ok
20:29:29.0104 5340 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:29:29.0104 5340 sppuinotify - ok
20:29:29.0134 5340 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:29:29.0144 5340 srv - ok
20:29:29.0164 5340 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:29:29.0164 5340 srv2 - ok
20:29:29.0184 5340 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:29:29.0184 5340 srvnet - ok
20:29:29.0204 5340 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:29:29.0204 5340 SSDPSRV - ok
20:29:29.0234 5340 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
20:29:29.0234 5340 ssmdrv - ok
20:29:29.0254 5340 [ E98C0EEE2AAA630FC2D814B37AD16C29 ] SSMO3v2Filter C:\Windows\system32\drivers\MO3v2Driver.sys
20:29:29.0254 5340 SSMO3v2Filter - ok
20:29:29.0274 5340 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:29:29.0274 5340 SstpSvc - ok
20:29:29.0294 5340 Steam Client Service - ok
20:29:29.0344 5340 [ 2C25A72B53B28034BE260D81C4EA4955 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:29:29.0344 5340 Stereo Service - ok
20:29:29.0364 5340 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:29:29.0364 5340 stexstor - ok
20:29:29.0404 5340 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
20:29:29.0404 5340 StiSvc - ok
20:29:29.0424 5340 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:29:29.0424 5340 storflt - ok
20:29:29.0454 5340 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:29:29.0454 5340 storvsc - ok
20:29:29.0454 5340 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
20:29:29.0454 5340 swenum - ok
20:29:29.0484 5340 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:29:29.0484 5340 swprv - ok
20:29:29.0494 5340 Synth3dVsc - ok
20:29:29.0534 5340 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
20:29:29.0544 5340 SysMain - ok
20:29:29.0564 5340 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:29:29.0564 5340 TabletInputService - ok
20:29:29.0584 5340 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
20:29:29.0584 5340 TapiSrv - ok
20:29:29.0594 5340 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:29:29.0604 5340 TBS - ok
20:29:29.0644 5340 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:29:29.0654 5340 Tcpip - ok
20:29:29.0674 5340 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:29:29.0684 5340 TCPIP6 - ok
20:29:29.0704 5340 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:29:29.0704 5340 tcpipreg - ok
20:29:29.0774 5340 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:29:29.0774 5340 TDPIPE - ok
20:29:29.0794 5340 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:29:29.0794 5340 TDTCP - ok
20:29:29.0824 5340 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:29:29.0824 5340 tdx - ok
20:29:29.0834 5340 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:29:29.0834 5340 TermDD - ok
20:29:29.0854 5340 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
20:29:29.0864 5340 TermService - ok
20:29:29.0864 5340 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:29:29.0864 5340 Themes - ok
20:29:29.0884 5340 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:29:29.0884 5340 THREADORDER - ok
20:29:29.0904 5340 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:29:29.0904 5340 TrkWks - ok
20:29:29.0934 5340 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:29:29.0934 5340 TrustedInstaller - ok
20:29:29.0954 5340 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:29:29.0954 5340 tssecsrv - ok
20:29:29.0974 5340 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:29:29.0974 5340 TsUsbFlt - ok
20:29:29.0974 5340 tsusbhub - ok
20:29:30.0004 5340 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:29:30.0014 5340 tunnel - ok
20:29:30.0034 5340 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:29:30.0034 5340 uagp35 - ok
20:29:30.0054 5340 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:29:30.0054 5340 udfs - ok
20:29:30.0074 5340 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:29:30.0074 5340 UI0Detect - ok
20:29:30.0094 5340 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:29:30.0104 5340 uliagpkx - ok
20:29:30.0114 5340 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
20:29:30.0124 5340 umbus - ok
20:29:30.0134 5340 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:29:30.0134 5340 UmPass - ok
20:29:30.0164 5340 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
20:29:30.0164 5340 UmRdpService - ok
20:29:30.0184 5340 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:29:30.0184 5340 upnphost - ok
20:29:30.0204 5340 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:29:30.0204 5340 usbaudio - ok
20:29:30.0234 5340 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:29:30.0234 5340 usbccgp - ok
20:29:30.0254 5340 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:29:30.0254 5340 usbcir - ok
20:29:30.0264 5340 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:29:30.0274 5340 usbehci - ok
20:29:30.0284 5340 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:29:30.0284 5340 usbhub - ok
20:29:30.0294 5340 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:29:30.0294 5340 usbohci - ok
20:29:30.0314 5340 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:29:30.0314 5340 usbprint - ok
20:29:30.0334 5340 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:29:30.0334 5340 USBSTOR - ok
20:29:30.0334 5340 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:29:30.0344 5340 usbuhci - ok
20:29:30.0354 5340 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:29:30.0354 5340 UxSms - ok
20:29:30.0374 5340 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
20:29:30.0374 5340 VaultSvc - ok
20:29:30.0374 5340 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:29:30.0384 5340 vdrvroot - ok
20:29:30.0404 5340 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
20:29:30.0414 5340 vds - ok
20:29:30.0424 5340 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:29:30.0424 5340 vga - ok
20:29:30.0444 5340 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:29:30.0444 5340 VgaSave - ok
20:29:30.0444 5340 VGPU - ok
20:29:30.0454 5340 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:29:30.0464 5340 vhdmp - ok
20:29:30.0474 5340 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:29:30.0474 5340 viaagp - ok
20:29:30.0484 5340 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:29:30.0484 5340 ViaC7 - ok
20:29:30.0504 5340 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
20:29:30.0504 5340 viaide - ok
20:29:30.0524 5340 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:29:30.0524 5340 vmbus - ok
20:29:30.0534 5340 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:29:30.0534 5340 VMBusHID - ok
20:29:30.0544 5340 vmci - ok
20:29:30.0544 5340 VMnetAdapter - ok
20:29:30.0564 5340 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:29:30.0564 5340 volmgr - ok
20:29:30.0574 5340 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:29:30.0584 5340 volmgrx - ok
20:29:30.0604 5340 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:29:30.0604 5340 volsnap - ok
20:29:30.0624 5340 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:29:30.0624 5340 vsmraid - ok
20:29:30.0654 5340 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
20:29:30.0664 5340 VSS - ok
20:29:30.0714 5340 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
20:29:30.0714 5340 vToolbarUpdater12.2.6 - ok
20:29:30.0724 5340 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:29:30.0724 5340 vwifibus - ok
20:29:30.0744 5340 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:29:30.0744 5340 vwififlt - ok
20:29:30.0774 5340 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:29:30.0774 5340 W32Time - ok
20:29:30.0814 5340 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:29:30.0814 5340 WacomPen - ok
20:29:30.0834 5340 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:29:30.0834 5340 WANARP - ok
20:29:30.0834 5340 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:29:30.0844 5340 Wanarpv6 - ok
20:29:30.0894 5340 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:29:30.0904 5340 WatAdminSvc - ok
20:29:30.0944 5340 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
20:29:30.0954 5340 wbengine - ok
20:29:30.0964 5340 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:29:30.0974 5340 WbioSrvc - ok
20:29:30.0994 5340 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:29:31.0004 5340 wcncsvc - ok
20:29:31.0014 5340 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:29:31.0024 5340 WcsPlugInService - ok
20:29:31.0024 5340 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:29:31.0024 5340 Wd - ok
20:29:31.0054 5340 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:29:31.0054 5340 Wdf01000 - ok
20:29:31.0064 5340 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:29:31.0064 5340 WdiServiceHost - ok
20:29:31.0074 5340 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:29:31.0074 5340 WdiSystemHost - ok
20:29:31.0094 5340 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
20:29:31.0104 5340 WebClient - ok
20:29:31.0114 5340 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:29:31.0124 5340 Wecsvc - ok
20:29:31.0134 5340 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:29:31.0134 5340 wercplsupport - ok
20:29:31.0144 5340 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:29:31.0144 5340 WerSvc - ok
20:29:31.0164 5340 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:29:31.0174 5340 WfpLwf - ok
20:29:31.0184 5340 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:29:31.0184 5340 WIMMount - ok
20:29:31.0184 5340 WinHttpAutoProxySvc - ok
20:29:31.0234 5340 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:29:31.0234 5340 Winmgmt - ok
20:29:31.0274 5340 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
20:29:31.0284 5340 WinRM - ok
20:29:31.0334 5340 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:29:31.0334 5340 Wlansvc - ok
20:29:31.0354 5340 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:29:31.0364 5340 WmiAcpi - ok
20:29:31.0364 5340 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:29:31.0374 5340 wmiApSrv - ok
20:29:31.0424 5340 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:29:31.0434 5340 WMPNetworkSvc - ok
20:29:31.0444 5340 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:29:31.0454 5340 WPCSvc - ok
20:29:31.0474 5340 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:29:31.0484 5340 WPDBusEnum - ok
20:29:31.0504 5340 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:29:31.0504 5340 ws2ifsl - ok
20:29:31.0504 5340 WSearch - ok
20:29:31.0524 5340 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:29:31.0524 5340 WudfPf - ok
20:29:31.0554 5340 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:29:31.0554 5340 WUDFRd - ok
20:29:31.0574 5340 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:29:31.0574 5340 wudfsvc - ok
20:29:31.0584 5340 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:29:31.0594 5340 WwanSvc - ok
20:29:31.0604 5340 ================ Scan global ===============================
20:29:31.0624 5340 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
20:29:31.0644 5340 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
20:29:31.0654 5340 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
20:29:31.0684 5340 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:29:31.0704 5340 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:29:31.0704 5340 [Global] - ok
20:29:31.0704 5340 ================ Scan MBR ==================================
20:29:31.0714 5340 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:29:31.0784 5340 \Device\Harddisk0\DR0 - ok
20:29:31.0814 5340 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:29:31.0814 5340 \Device\Harddisk1\DR1 - ok
20:29:31.0814 5340 ================ Scan VBR ==================================
20:29:31.0814 5340 [ 00C7DDA82E4FA32E0420237AABD7696E ] \Device\Harddisk0\DR0\Partition1
20:29:31.0814 5340 \Device\Harddisk0\DR0\Partition1 - ok
20:29:31.0824 5340 [ 2DBDB3836BBBED47CC6D30D135BBF830 ] \Device\Harddisk0\DR0\Partition2
20:29:31.0824 5340 \Device\Harddisk0\DR0\Partition2 - ok
20:29:31.0834 5340 [ 6979ED8AE70DA74791C7CC42CD592720 ] \Device\Harddisk1\DR1\Partition1
20:29:31.0844 5340 \Device\Harddisk1\DR1\Partition1 - ok
20:29:31.0844 5340 ============================================================
20:29:31.0844 5340 Scan finished
20:29:31.0844 5340 ============================================================
20:29:31.0854 5332 Detected object count: 0
20:29:31.0854 5332 Actual detected object count: 0
20:30:20.0144 5440 ============================================================
20:30:20.0144 5440 Scan started
20:30:20.0144 5440 Mode: Manual; TDLFS;
20:30:20.0144 5440 ============================================================
20:30:20.0284 5440 ================ Scan system memory ========================
20:30:20.0284 5440 System memory - ok
20:30:20.0284 5440 ================ Scan services =============================
20:30:20.0414 5440 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:30:20.0414 5440 1394ohci - ok
20:30:20.0444 5440 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:30:20.0444 5440 ACPI - ok
20:30:20.0474 5440 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:30:20.0474 5440 AcpiPmi - ok
20:30:20.0534 5440 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:30:20.0534 5440 AdobeARMservice - ok
20:30:20.0574 5440 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:30:20.0574 5440 AdobeFlashPlayerUpdateSvc - ok
20:30:20.0614 5440 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:30:20.0614 5440 adp94xx - ok
20:30:20.0634 5440 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:30:20.0634 5440 adpahci - ok
20:30:20.0654 5440 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:30:20.0654 5440 adpu320 - ok
20:30:20.0684 5440 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:30:20.0694 5440 AeLookupSvc - ok
20:30:20.0714 5440 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
20:30:20.0714 5440 AFD - ok
20:30:20.0734 5440 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:30:20.0734 5440 agp440 - ok
20:30:20.0744 5440 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:30:20.0754 5440 aic78xx - ok
20:30:20.0764 5440 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:30:20.0764 5440 ALG - ok
20:30:20.0784 5440 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
20:30:20.0784 5440 aliide - ok
20:30:20.0804 5440 [ 50EBBB86E493BD9AB7DDF914A90EEF8E ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:30:20.0804 5440 AMD External Events Utility - ok
20:30:20.0844 5440 AMD FUEL Service - ok
20:30:20.0854 5440 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:30:20.0854 5440 amdagp - ok
20:30:20.0874 5440 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
20:30:20.0874 5440 amdide - ok
20:30:20.0904 5440 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
20:30:20.0904 5440 amdiox86 - ok
20:30:20.0924 5440 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:30:20.0924 5440 AmdK8 - ok
20:30:21.0114 5440 [ 70EB74785AB7FC603FEF19D87B7A7946 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:30:21.0174 5440 amdkmdag - ok
20:30:21.0204 5440 [ BA99833BBDE9C4FF389FC8114FB14843 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:30:21.0204 5440 amdkmdap - ok
20:30:21.0224 5440 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:30:21.0224 5440 AmdPPM - ok
20:30:21.0244 5440 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:30:21.0244 5440 amdsata - ok
20:30:21.0264 5440 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:30:21.0264 5440 amdsbs - ok
20:30:21.0284 5440 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:30:21.0284 5440 amdxata - ok
20:30:21.0344 5440 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
20:30:21.0344 5440 AMD_RAIDXpert - ok
20:30:21.0384 5440 [ 0A1CC583E8147004E4AD4625D7FBF88C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
20:30:21.0384 5440 AntiVirSchedulerService - ok
20:30:21.0414 5440 [ C9A36EF935ACED86AEDF93E97E606911 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
20:30:21.0414 5440 AntiVirService - ok
20:30:21.0434 5440 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.01 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:30:21.0434 5440 AODDriver4.01 - ok
20:30:21.0444 5440 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:30:21.0444 5440 AODDriver4.1 - ok
20:30:21.0464 5440 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
20:30:21.0464 5440 AppID - ok
20:30:21.0494 5440 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:30:21.0494 5440 AppIDSvc - ok
20:30:21.0514 5440 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
20:30:21.0514 5440 Appinfo - ok
20:30:21.0534 5440 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:30:21.0534 5440 AppMgmt - ok
20:30:21.0554 5440 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:30:21.0554 5440 arc - ok
20:30:21.0564 5440 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:30:21.0564 5440 arcsas - ok
20:30:21.0584 5440 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:30:21.0584 5440 AsyncMac - ok
20:30:21.0604 5440 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
20:30:21.0604 5440 atapi - ok
20:30:21.0624 5440 [ 6ADC42CF4A6AB84975CA63DCCFAAF5D8 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
20:30:21.0624 5440 AtiHDAudioService - ok
20:30:21.0824 5440 [ 70EB74785AB7FC603FEF19D87B7A7946 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:30:21.0884 5440 atikmdag - ok
20:30:21.0974 5440 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:30:21.0974 5440 AudioEndpointBuilder - ok
20:30:21.0984 5440 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:30:21.0984 5440 Audiosrv - ok
20:30:22.0004 5440 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:30:22.0004 5440 avgntflt - ok
20:30:22.0024 5440 [ 3001E24F340D400BFF85935E5777FC5B ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
20:30:22.0024 5440 avgtp - ok
20:30:22.0044 5440 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:30:22.0044 5440 avipbb - ok
20:30:22.0054 5440 [ 271CFD1A989209B1964E24D969552BF7 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:30:22.0054 5440 avkmgr - ok
20:30:22.0084 5440 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:30:22.0084 5440 AxInstSV - ok
20:30:22.0114 5440 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:30:22.0124 5440 b06bdrv - ok
20:30:22.0144 5440 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:30:22.0144 5440 b57nd60x - ok
20:30:22.0164 5440 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:30:22.0174 5440 BDESVC - ok
20:30:22.0184 5440 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:30:22.0184 5440 Beep - ok
20:30:22.0194 5440 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:30:22.0194 5440 blbdrive - ok
20:30:22.0204 5440 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:30:22.0204 5440 bowser - ok
20:30:22.0224 5440 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:30:22.0224 5440 BrFiltLo - ok
20:30:22.0244 5440 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:30:22.0244 5440 BrFiltUp - ok
20:30:22.0274 5440 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
20:30:22.0274 5440 Browser - ok
20:30:22.0284 5440 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:30:22.0294 5440 Brserid - ok
20:30:22.0304 5440 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:30:22.0304 5440 BrSerWdm - ok
20:30:22.0324 5440 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:30:22.0324 5440 BrUsbMdm - ok
20:30:22.0334 5440 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:30:22.0334 5440 BrUsbSer - ok
20:30:22.0344 5440 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:30:22.0344 5440 BTHMODEM - ok
20:30:22.0364 5440 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:30:22.0364 5440 bthserv - ok
20:30:22.0384 5440 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:30:22.0384 5440 cdfs - ok
20:30:22.0404 5440 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:30:22.0404 5440 cdrom - ok
20:30:22.0434 5440 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
20:30:22.0434 5440 CertPropSvc - ok
20:30:22.0444 5440 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:30:22.0444 5440 circlass - ok
20:30:22.0464 5440 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:30:22.0474 5440 CLFS - ok
20:30:22.0524 5440 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:30:22.0524 5440 clr_optimization_v2.0.50727_32 - ok
20:30:22.0574 5440 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:30:22.0574 5440 clr_optimization_v4.0.30319_32 - ok
20:30:22.0594 5440 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:30:22.0594 5440 CmBatt - ok
20:30:22.0604 5440 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:30:22.0614 5440 cmdide - ok
20:30:22.0644 5440 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
20:30:22.0644 5440 CNG - ok
20:30:22.0664 5440 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:30:22.0664 5440 Compbatt - ok
20:30:22.0674 5440 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:30:22.0684 5440 CompositeBus - ok
20:30:22.0684 5440 COMSysApp - ok
20:30:22.0694 5440 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:30:22.0694 5440 crcdisk - ok
20:30:22.0734 5440 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
20:30:22.0734 5440 Creative ALchemy AL6 Licensing Service - ok
20:30:22.0744 5440 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
20:30:22.0744 5440 Creative Audio Engine Licensing Service - ok
20:30:22.0774 5440 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:30:22.0774 5440 CryptSvc - ok
20:30:22.0804 5440 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
20:30:22.0804 5440 CSC - ok
20:30:22.0834 5440 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
20:30:22.0834 5440 CscService - ok
20:30:22.0854 5440 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
20:30:22.0854 5440 CT20XUT - ok
20:30:22.0864 5440 [ C6FCA1EE53E496906C90BB8BAF72008F ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
20:30:22.0864 5440 CT20XUT.SYS - ok
20:30:22.0894 5440 [ 7991921095C3D966EA36071A11B05AFB ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
20:30:22.0894 5440 ctac32k - ok
20:30:22.0914 5440 [ EE5B6899FD0910A147A39787210D847D ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
20:30:22.0914 5440 ctaud2k - ok
20:30:22.0954 5440 [ 7D564A71907B389C62191E7D7B9069D8 ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
20:30:22.0954 5440 CTAudSvcService - ok
20:30:22.0994 5440 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
20:30:22.0994 5440 CTEXFIFX - ok
20:30:23.0024 5440 [ 4D3E340B4D2BDAA506251F4969D4A5A4 ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
20:30:23.0034 5440 CTEXFIFX.SYS - ok
20:30:23.0054 5440 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
20:30:23.0054 5440 CTHWIUT - ok
20:30:23.0054 5440 [ 76C2A76CADB53DF368B081A25F3F0EE3 ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
20:30:23.0054 5440 CTHWIUT.SYS - ok
20:30:23.0064 5440 [ 526F4A48A7E33F9FE6C9297DF060F695 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
20:30:23.0064 5440 ctprxy2k - ok
20:30:23.0084 5440 [ DACD54EFAB4D5F42693077FFC36B18E1 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
20:30:23.0084 5440 ctsfm2k - ok
20:30:23.0114 5440 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
20:30:23.0124 5440 DcomLaunch - ok
20:30:23.0154 5440 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:30:23.0154 5440 defragsvc - ok
20:30:23.0174 5440 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:30:23.0174 5440 DfsC - ok
20:30:23.0204 5440 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:30:23.0214 5440 Dhcp - ok
20:30:23.0234 5440 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:30:23.0234 5440 discache - ok
20:30:23.0254 5440 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:30:23.0254 5440 Disk - ok
20:30:23.0284 5440 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:30:23.0284 5440 Dnscache - ok
20:30:23.0304 5440 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
20:30:23.0304 5440 dot3svc - ok
20:30:23.0314 5440 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
20:30:23.0324 5440 DPS - ok
20:30:23.0354 5440 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:30:23.0354 5440 drmkaud - ok
20:30:23.0384 5440 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:30:23.0394 5440 DXGKrnl - ok
20:30:23.0414 5440 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:30:23.0414 5440 EapHost - ok
20:30:23.0494 5440 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:30:23.0514 5440 ebdrv - ok
20:30:23.0534 5440 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
20:30:23.0534 5440 EFS - ok
20:30:23.0584 5440 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:30:23.0594 5440 ehRecvr - ok
20:30:23.0614 5440 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:30:23.0614 5440 ehSched - ok
20:30:23.0634 5440 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:30:23.0634 5440 elxstor - ok
20:30:23.0654 5440 [ 8013545EB6A4C3A7F4FCB397F37643DF ] emupia C:\Windows\system32\drivers\emupia2k.sys
20:30:23.0654 5440 emupia - ok
20:30:23.0674 5440 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:30:23.0674 5440 ErrDev - ok
20:30:23.0704 5440 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:30:23.0704 5440 EventSystem - ok
20:30:23.0724 5440 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:30:23.0724 5440 exfat - ok
20:30:23.0744 5440 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:30:23.0744 5440 fastfat - ok
20:30:23.0774 5440 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
20:30:23.0784 5440 Fax - ok
20:30:23.0794 5440 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:30:23.0794 5440 fdc - ok
20:30:23.0814 5440 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:30:23.0814 5440 fdPHost - ok
20:30:23.0824 5440 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:30:23.0824 5440 FDResPub - ok
20:30:23.0874 5440 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:30:23.0874 5440 FileInfo - ok
20:30:23.0874 5440 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:30:23.0874 5440 Filetrace - ok
20:30:23.0894 5440 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:30:23.0894 5440 flpydisk - ok
20:30:23.0914 5440 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:30:23.0914 5440 FltMgr - ok
20:30:23.0934 5440 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
20:30:23.0944 5440 FontCache - ok
20:30:23.0984 5440 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:30:23.0984 5440 FontCache3.0.0.0 - ok
20:30:24.0004 5440 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:30:24.0004 5440 FsDepends - ok
20:30:24.0024 5440 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:30:24.0024 5440 Fs_Rec - ok
20:30:24.0034 5440 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:30:24.0034 5440 fvevol - ok
20:30:24.0054 5440 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:30:24.0054 5440 gagp30kx - ok
20:30:24.0084 5440 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
20:30:24.0094 5440 gpsvc - ok
20:30:24.0154 5440 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:30:24.0154 5440 gupdate - ok
20:30:24.0154 5440 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:30:24.0154 5440 gupdatem - ok
20:30:24.0174 5440 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
20:30:24.0184 5440 gusvc - ok
20:30:24.0214 5440 [ 753B37BEA4F7E4BEF6C51905A4D61B86 ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
20:30:24.0224 5440 ha20x22k - ok
20:30:24.0254 5440 [ C717456440A449036077BFB5F6A0DB27 ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
20:30:24.0264 5440 ha20x2k - ok
20:30:24.0284 5440 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:30:24.0284 5440 hcw85cir - ok
20:30:24.0314 5440 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:30:24.0324 5440 HdAudAddService - ok
20:30:24.0334 5440 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:30:24.0334 5440 HDAudBus - ok
20:30:24.0334 5440 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:30:24.0344 5440 HidBatt - ok
20:30:24.0364 5440 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:30:24.0364 5440 HidBth - ok
20:30:24.0384 5440 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:30:24.0394 5440 HidIr - ok
20:30:24.0414 5440 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:30:24.0414 5440 hidserv - ok
20:30:24.0444 5440 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:30:24.0444 5440 HidUsb - ok
20:30:24.0464 5440 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:30:24.0464 5440 hkmsvc - ok
20:30:24.0484 5440 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:30:24.0494 5440 HomeGroupListener - ok
20:30:24.0514 5440 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:30:24.0514 5440 HomeGroupProvider - ok
20:30:24.0534 5440 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:30:24.0544 5440 HpSAMD - ok
20:30:24.0564 5440 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:30:24.0564 5440 HTTP - ok
20:30:24.0594 5440 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:30:24.0594 5440 hwpolicy - ok
20:30:24.0614 5440 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:30:24.0624 5440 i8042prt - ok
20:30:24.0654 5440 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:30:24.0654 5440 iaStorV - ok
20:30:24.0704 5440 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:30:24.0714 5440 idsvc - ok
20:30:24.0734 5440 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:30:24.0734 5440 iirsp - ok
20:30:24.0764 5440 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
20:30:24.0764 5440 IKEEXT - ok
20:30:24.0804 5440 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
20:30:24.0804 5440 intelide - ok
20:30:24.0824 5440 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:30:24.0824 5440 intelppm - ok
20:30:24.0854 5440 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:30:24.0854 5440 IPBusEnum - ok
20:30:24.0864 5440 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:30:24.0864 5440 IpFilterDriver - ok
20:30:24.0874 5440 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:30:24.0874 5440 IPMIDRV - ok
20:30:24.0894 5440 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:30:24.0894 5440 IPNAT - ok
20:30:24.0914 5440 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:30:24.0914 5440 IRENUM - ok
20:30:24.0924 5440 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:30:24.0934 5440 isapnp - ok
20:30:24.0954 5440 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:30:24.0954 5440 iScsiPrt - ok
20:30:24.0964 5440 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:30:24.0964 5440 kbdclass - ok
20:30:24.0984 5440 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:30:24.0984 5440 kbdhid - ok
20:30:24.0994 5440 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
20:30:24.0994 5440 KeyIso - ok
20:30:25.0024 5440 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:30:25.0024 5440 KSecDD - ok
20:30:25.0054 5440 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:30:25.0054 5440 KSecPkg - ok
20:30:25.0094 5440 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:30:25.0094 5440 KtmRm - ok
20:30:25.0104 5440 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
20:30:25.0114 5440 LanmanServer - ok
20:30:25.0124 5440 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:30:25.0124 5440 LanmanWorkstation - ok
20:30:25.0144 5440 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:30:25.0144 5440 lltdio - ok
20:30:25.0164 5440 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:30:25.0164 5440 lltdsvc - ok
20:30:25.0174 5440 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:30:25.0174 5440 lmhosts - ok
20:30:25.0194 5440 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:30:25.0194 5440 LSI_FC - ok
20:30:25.0204 5440 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:30:25.0204 5440 LSI_SAS - ok
20:30:25.0214 5440 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:30:25.0224 5440 LSI_SAS2 - ok
20:30:25.0234 5440 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:30:25.0234 5440 LSI_SCSI - ok
20:30:25.0254 5440 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:30:25.0254 5440 luafv - ok
20:30:25.0304 5440 [ 485405DE203E88B3FE4294A2EA48D7EE ] McComponentHostService C:\Program Files\McAfee Security Scan\3.0.271\McCHSvc.exe
20:30:25.0304 5440 McComponentHostService - ok
20:30:25.0334 5440 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:30:25.0334 5440 Mcx2Svc - ok
20:30:25.0354 5440 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:30:25.0354 5440 megasas - ok
20:30:25.0374 5440 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:30:25.0374 5440 MegaSR - ok
20:30:25.0384 5440 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:30:25.0384 5440 MMCSS - ok
20:30:25.0404 5440 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:30:25.0404 5440 Modem - ok
20:30:25.0434 5440 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:30:25.0434 5440 monitor - ok
20:30:25.0454 5440 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:30:25.0454 5440 mouclass - ok
20:30:25.0464 5440 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:30:25.0474 5440 mouhid - ok
20:30:25.0484 5440 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:30:25.0484 5440 mountmgr - ok
20:30:25.0504 5440 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
20:30:25.0504 5440 mpio - ok
20:30:25.0524 5440 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:30:25.0524 5440 mpsdrv - ok
20:30:25.0544 5440 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:30:25.0554 5440 MRxDAV - ok
20:30:25.0574 5440 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:30:25.0574 5440 mrxsmb - ok
20:30:25.0584 5440 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:30:25.0584 5440 mrxsmb10 - ok
20:30:25.0604 5440 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:30:25.0604 5440 mrxsmb20 - ok
20:30:25.0614 5440 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
20:30:25.0614 5440 msahci - ok
20:30:25.0634 5440 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:30:25.0634 5440 msdsm - ok
20:30:25.0654 5440 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:30:25.0654 5440 MSDTC - ok
20:30:25.0674 5440 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:30:25.0674 5440 Msfs - ok
20:30:25.0684 5440 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:30:25.0684 5440 mshidkmdf - ok
20:30:25.0704 5440 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:30:25.0704 5440 msisadrv - ok
20:30:25.0724 5440 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:30:25.0724 5440 MSiSCSI - ok
20:30:25.0734 5440 msiserver - ok
20:30:25.0754 5440 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:30:25.0754 5440 MSKSSRV - ok
20:30:25.0764 5440 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:30:25.0764 5440 MSPCLOCK - ok
20:30:25.0784 5440 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:30:25.0784 5440 MSPQM - ok
20:30:25.0794 5440 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:30:25.0804 5440 MsRPC - ok
20:30:25.0814 5440 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:30:25.0824 5440 mssmbios - ok
20:30:25.0834 5440 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:30:25.0834 5440 MSTEE - ok
20:30:25.0844 5440 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:30:25.0844 5440 MTConfig - ok
20:30:25.0864 5440 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:30:25.0864 5440 Mup - ok
20:30:25.0884 5440 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
20:30:25.0894 5440 napagent - ok
20:30:25.0904 5440 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:30:25.0904 5440 NativeWifiP - ok
20:30:25.0934 5440 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:30:25.0944 5440 NDIS - ok
20:30:25.0954 5440 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:30:25.0954 5440 NdisCap - ok
20:30:25.0964 5440 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:30:25.0964 5440 NdisTapi - ok
20:30:25.0994 5440 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:30:25.0994 5440 Ndisuio - ok
20:30:26.0014 5440 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:30:26.0014 5440 NdisWan - ok
20:30:26.0034 5440 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:30:26.0034 5440 NDProxy - ok
20:30:26.0044 5440 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:30:26.0044 5440 NetBIOS - ok
20:30:26.0064 5440 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:30:26.0064 5440 NetBT - ok
20:30:26.0074 5440 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
20:30:26.0074 5440 Netlogon - ok
20:30:26.0104 5440 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:30:26.0104 5440 Netman - ok
20:30:26.0124 5440 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:30:26.0134 5440 netprofm - ok
20:30:26.0164 5440 [ 27EE4B406E2F26F6117A9A420BD4CB65 ] netr28u C:\Windows\system32\DRIVERS\netr28u.sys
20:30:26.0164 5440 netr28u - ok
20:30:26.0184 5440 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:30:26.0184 5440 NetTcpPortSharing - ok
20:30:26.0204 5440 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:30:26.0204 5440 nfrd960 - ok
20:30:26.0234 5440 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:30:26.0234 5440 NlaSvc - ok
20:30:26.0254 5440 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:30:26.0254 5440 Npfs - ok
20:30:26.0274 5440 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:30:26.0274 5440 nsi - ok
20:30:26.0284 5440 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:30:26.0284 5440 nsiproxy - ok
20:30:26.0334 5440 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:30:26.0344 5440 Ntfs - ok
20:30:26.0354 5440 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:30:26.0354 5440 Null - ok
20:30:26.0384 5440 [ A66E12F8896FE65E7D4D9FEAB24092A8 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
20:30:26.0384 5440 NVHDA - ok
20:30:26.0604 5440 [ 8EBAFF3A7618799A1E5AC2CC1F8EBFA1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:30:26.0674 5440 nvlddmkm - ok
20:30:26.0704 5440 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:30:26.0704 5440 nvraid - ok
20:30:26.0724 5440 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:30:26.0734 5440 nvstor - ok
20:30:26.0754 5440 [ 3BDE48948EEB458CEF0DA75DAFCD0485 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:30:26.0764 5440 nvsvc - ok
20:30:26.0834 5440 [ 2D5E79BC7517FDC241A5403279B75B4B ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:30:26.0844 5440 nvUpdatusService - ok
20:30:26.0874 5440 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:30:26.0874 5440 nv_agp - ok
20:30:26.0904 5440 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:30:26.0904 5440 ohci1394 - ok
20:30:26.0924 5440 [ 784825C9BEDE1E4B2384F628AF0AC316 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
20:30:26.0924 5440 ossrv - ok
20:30:26.0954 5440 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:30:26.0954 5440 p2pimsvc - ok
20:30:26.0974 5440 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:30:26.0974 5440 p2psvc - ok
20:30:27.0004 5440 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:30:27.0004 5440 Parport - ok
20:30:27.0034 5440 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:30:27.0034 5440 partmgr - ok
20:30:27.0054 5440 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:30:27.0054 5440 Parvdm - ok
20:30:27.0064 5440 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:30:27.0074 5440 PcaSvc - ok
20:30:27.0084 5440 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
20:30:27.0084 5440 pci - ok
20:30:27.0094 5440 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
20:30:27.0094 5440 pciide - ok
20:30:27.0114 5440 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:30:27.0114 5440 pcmcia - ok
20:30:27.0134 5440 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:30:27.0134 5440 pcw - ok
20:30:27.0174 5440 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:30:27.0174 5440 PEAUTH - ok
20:30:27.0214 5440 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:30:27.0224 5440 PeerDistSvc - ok
20:30:27.0274 5440 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
20:30:27.0284 5440 pla - ok
20:30:27.0304 5440 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:30:27.0314 5440 PlugPlay - ok
20:30:27.0324 5440 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:30:27.0324 5440 PNRPAutoReg - ok
20:30:27.0344 5440 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:30:27.0344 5440 PNRPsvc - ok
20:30:27.0374 5440 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:30:27.0374 5440 PolicyAgent - ok
20:30:27.0404 5440 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
20:30:27.0404 5440 Power - ok
20:30:27.0414 5440 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:30:27.0414 5440 PptpMiniport - ok
20:30:27.0434 5440 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:30:27.0434 5440 Processor - ok
20:30:27.0454 5440 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
20:30:27.0464 5440 ProfSvc - ok
20:30:27.0474 5440 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:30:27.0474 5440 ProtectedStorage - ok
20:30:27.0494 5440 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:30:27.0494 5440 Psched - ok
20:30:27.0534 5440 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:30:27.0544 5440 ql2300 - ok
20:30:27.0564 5440 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:30:27.0564 5440 ql40xx - ok
20:30:27.0594 5440 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:30:27.0594 5440 QWAVE - ok
20:30:27.0614 5440 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:30:27.0614 5440 QWAVEdrv - ok
20:30:27.0624 5440 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:30:27.0624 5440 RasAcd - ok
20:30:27.0654 5440 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:30:27.0654 5440 RasAgileVpn - ok
20:30:27.0664 5440 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:30:27.0674 5440 RasAuto - ok
20:30:27.0684 5440 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:30:27.0684 5440 Rasl2tp - ok
20:30:27.0714 5440 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
20:30:27.0714 5440 RasMan - ok
20:30:27.0734 5440 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:30:27.0734 5440 RasPppoe - ok
20:30:27.0744 5440 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:30:27.0744 5440 RasSstp - ok
20:30:27.0764 5440 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:30:27.0764 5440 rdbss - ok
20:30:27.0774 5440 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:30:27.0784 5440 rdpbus - ok
20:30:27.0804 5440 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:30:27.0804 5440 RDPCDD - ok
20:30:27.0824 5440 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:30:27.0824 5440 RDPDR - ok
20:30:27.0824 5440 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:30:27.0824 5440 RDPENCDD - ok
20:30:27.0844 5440 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:30:27.0844 5440 RDPREFMP - ok
20:30:27.0884 5440 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:30:27.0884 5440 RdpVideoMiniport - ok
20:30:27.0904 5440 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:30:27.0914 5440 RDPWD - ok
20:30:27.0934 5440 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:30:27.0934 5440 rdyboost - ok
20:30:27.0964 5440 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:30:27.0964 5440 RemoteAccess - ok
20:30:27.0974 5440 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:30:27.0984 5440 RemoteRegistry - ok
20:30:28.0004 5440 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:30:28.0004 5440 RpcEptMapper - ok
20:30:28.0014 5440 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:30:28.0014 5440 RpcLocator - ok
20:30:28.0034 5440 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
20:30:28.0044 5440 RpcSs - ok
20:30:28.0054 5440 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:30:28.0054 5440 rspndr - ok
20:30:28.0084 5440 [ 3849D5D73BDD9B7BC4E3305DDC345B2C ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
20:30:28.0084 5440 RTL8167 - ok
20:30:28.0114 5440 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:30:28.0114 5440 s3cap - ok
20:30:28.0134 5440 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
20:30:28.0134 5440 SamSs - ok
20:30:28.0144 5440 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:30:28.0144 5440 sbp2port - ok
20:30:28.0164 5440 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:30:28.0164 5440 SCardSvr - ok
20:30:28.0184 5440 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:30:28.0184 5440 scfilter - ok
20:30:28.0224 5440 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
20:30:28.0224 5440 Schedule - ok
20:30:28.0244 5440 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:30:28.0244 5440 SCPolicySvc - ok
20:30:28.0274 5440 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:30:28.0274 5440 SDRSVC - ok
20:30:28.0284 5440 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:30:28.0284 5440 secdrv - ok
20:30:28.0304 5440 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:30:28.0304 5440 seclogon - ok
20:30:28.0324 5440 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:30:28.0324 5440 SENS - ok
20:30:28.0334 5440 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:30:28.0334 5440 SensrSvc - ok
20:30:28.0354 5440 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:30:28.0354 5440 Serenum - ok
20:30:28.0364 5440 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:30:28.0374 5440 Serial - ok
20:30:28.0384 5440 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:30:28.0384 5440 sermouse - ok
20:30:28.0414 5440 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
20:30:28.0414 5440 SessionEnv - ok
20:30:28.0434 5440 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:30:28.0434 5440 sffdisk - ok
20:30:28.0454 5440 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:30:28.0454 5440 sffp_mmc - ok
20:30:28.0464 5440 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:30:28.0464 5440 sffp_sd - ok
20:30:28.0484 5440 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:30:28.0484 5440 sfloppy - ok
20:30:28.0504 5440 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:30:28.0514 5440 ShellHWDetection - ok
20:30:28.0524 5440 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:30:28.0524 5440 sisagp - ok
20:30:28.0534 5440 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:30:28.0534 5440 SiSRaid2 - ok
20:30:28.0554 5440 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:30:28.0554 5440 SiSRaid4 - ok
20:30:28.0564 5440 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:30:28.0564 5440 Smb - ok
20:30:28.0584 5440 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:30:28.0594 5440 SNMPTRAP - ok
20:30:28.0604 5440 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:30:28.0604 5440 spldr - ok
20:30:28.0624 5440 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
20:30:28.0634 5440 Spooler - ok
20:30:28.0704 5440 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
20:30:28.0734 5440 sppsvc - ok
20:30:28.0754 5440 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:30:28.0754 5440 sppuinotify - ok
20:30:28.0784 5440 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:30:28.0794 5440 srv - ok
20:30:28.0804 5440 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:30:28.0814 5440 srv2 - ok
20:30:28.0824 5440 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:30:28.0824 5440 srvnet - ok
20:30:28.0844 5440 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:30:28.0844 5440 SSDPSRV - ok
20:30:28.0864 5440 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
20:30:28.0864 5440 ssmdrv - ok
20:30:28.0884 5440 [ E98C0EEE2AAA630FC2D814B37AD16C29 ] SSMO3v2Filter C:\Windows\system32\drivers\MO3v2Driver.sys
20:30:28.0884 5440 SSMO3v2Filter - ok
20:30:28.0904 5440 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:30:28.0904 5440 SstpSvc - ok
20:30:28.0924 5440 Steam Client Service - ok
20:30:28.0964 5440 [ 2C25A72B53B28034BE260D81C4EA4955 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:30:28.0974 5440 Stereo Service - ok
20:30:28.0994 5440 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:30:28.0994 5440 stexstor - ok
20:30:29.0024 5440 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
20:30:29.0034 5440 StiSvc - ok
20:30:29.0044 5440 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:30:29.0044 5440 storflt - ok
20:30:29.0074 5440 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:30:29.0074 5440 storvsc - ok
20:30:29.0084 5440 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
20:30:29.0084 5440 swenum - ok
20:30:29.0104 5440 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:30:29.0104 5440 swprv - ok
20:30:29.0114 5440 Synth3dVsc - ok
20:30:29.0154 5440 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
20:30:29.0164 5440 SysMain - ok
20:30:29.0174 5440 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:30:29.0174 5440 TabletInputService - ok
20:30:29.0194 5440 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
20:30:29.0194 5440 TapiSrv - ok
20:30:29.0214 5440 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:30:29.0214 5440 TBS - ok
20:30:29.0264 5440 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:30:29.0274 5440 Tcpip - ok
20:30:29.0294 5440 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:30:29.0304 5440 TCPIP6 - ok
20:30:29.0324 5440 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:30:29.0324 5440 tcpipreg - ok
20:30:29.0354 5440 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:30:29.0354 5440 TDPIPE - ok
20:30:29.0384 5440 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:30:29.0384 5440 TDTCP - ok
20:30:29.0404 5440 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:30:29.0404 5440 tdx - ok
20:30:29.0424 5440 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:30:29.0424 5440 TermDD - ok
20:30:29.0444 5440 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
20:30:29.0454 5440 TermService - ok
20:30:29.0464 5440 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:30:29.0464 5440 Themes - ok
20:30:29.0474 5440 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:30:29.0474 5440 THREADORDER - ok
20:30:29.0494 5440 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:30:29.0494 5440 TrkWks - ok
20:30:29.0524 5440 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:30:29.0534 5440 TrustedInstaller - ok
20:30:29.0544 5440 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:30:29.0554 5440 tssecsrv - ok
20:30:29.0564 5440 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:30:29.0564 5440 TsUsbFlt - ok
20:30:29.0574 5440 tsusbhub - ok
20:30:29.0604 5440 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:30:29.0604 5440 tunnel - ok
20:30:29.0624 5440 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:30:29.0624 5440 uagp35 - ok
20:30:29.0644 5440 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:30:29.0644 5440 udfs - ok
20:30:29.0664 5440 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:30:29.0674 5440 UI0Detect - ok
20:30:29.0694 5440 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:30:29.0694 5440 uliagpkx - ok
20:30:29.0714 5440 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
20:30:29.0714 5440 umbus - ok
20:30:29.0734 5440 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:30:29.0734 5440 UmPass - ok
20:30:29.0754 5440 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
20:30:29.0764 5440 UmRdpService - ok
20:30:29.0774 5440 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:30:29.0774 5440 upnphost - ok
20:30:29.0794 5440 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:30:29.0794 5440 usbaudio - ok
20:30:29.0824 5440 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:30:29.0824 5440 usbccgp - ok
20:30:29.0844 5440 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:30:29.0844 5440 usbcir - ok
20:30:29.0864 5440 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:30:29.0864 5440 usbehci - ok
20:30:29.0874 5440 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:30:29.0874 5440 usbhub - ok
20:30:29.0884 5440 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:30:29.0884 5440 usbohci - ok
20:30:29.0904 5440 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:30:29.0904 5440 usbprint - ok
20:30:29.0924 5440 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:30:29.0924 5440 USBSTOR - ok
20:30:29.0934 5440 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:30:29.0934 5440 usbuhci - ok
20:30:29.0944 5440 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:30:29.0954 5440 UxSms - ok
20:30:29.0964 5440 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
20:30:29.0964 5440 VaultSvc - ok
20:30:29.0974 5440 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:30:29.0974 5440 vdrvroot - ok
20:30:30.0004 5440 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
20:30:30.0004 5440 vds - ok
20:30:30.0024 5440 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:30:30.0024 5440 vga - ok
20:30:30.0034 5440 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:30:30.0034 5440 VgaSave - ok
20:30:30.0044 5440 VGPU - ok
20:30:30.0054 5440 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:30:30.0054 5440 vhdmp - ok
20:30:30.0064 5440 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:30:30.0064 5440 viaagp - ok
20:30:30.0074 5440 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:30:30.0074 5440 ViaC7 - ok
20:30:30.0094 5440 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
20:30:30.0094 5440 viaide - ok
20:30:30.0114 5440 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:30:30.0114 5440 vmbus - ok
20:30:30.0124 5440 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:30:30.0124 5440 VMBusHID - ok
20:30:30.0134 5440 vmci - ok
20:30:30.0144 5440 VMnetAdapter - ok
20:30:30.0154 5440 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:30:30.0154 5440 volmgr - ok
20:30:30.0174 5440 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:30:30.0174 5440 volmgrx - ok
20:30:30.0194 5440 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:30:30.0194 5440 volsnap - ok
20:30:30.0214 5440 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:30:30.0214 5440 vsmraid - ok
20:30:30.0254 5440 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
20:30:30.0264 5440 VSS - ok
20:30:30.0314 5440 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
20:30:30.0314 5440 vToolbarUpdater12.2.6 - ok
20:30:30.0324 5440 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:30:30.0324 5440 vwifibus - ok
20:30:30.0344 5440 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:30:30.0344 5440 vwififlt - ok
20:30:30.0374 5440 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:30:30.0374 5440 W32Time - ok
20:30:30.0384 5440 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:30:30.0384 5440 WacomPen - ok
20:30:30.0404 5440 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:30:30.0404 5440 WANARP - ok
20:30:30.0404 5440 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:30:30.0404 5440 Wanarpv6 - ok
20:30:30.0464 5440 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:30:30.0474 5440 WatAdminSvc - ok
20:30:30.0504 5440 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
20:30:30.0514 5440 wbengine - ok
20:30:30.0534 5440 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:30:30.0544 5440 WbioSrvc - ok
20:30:30.0564 5440 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:30:30.0564 5440 wcncsvc - ok
20:30:30.0584 5440 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:30:30.0584 5440 WcsPlugInService - ok
20:30:30.0594 5440 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:30:30.0594 5440 Wd - ok
20:30:30.0614 5440 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:30:30.0624 5440 Wdf01000 - ok
20:30:30.0644 5440 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:30:30.0644 5440 WdiServiceHost - ok
20:30:30.0644 5440 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:30:30.0654 5440 WdiSystemHost - ok
20:30:30.0674 5440 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
20:30:30.0674 5440 WebClient - ok
20:30:30.0694 5440 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:30:30.0694 5440 Wecsvc - ok
20:30:30.0704 5440 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:30:30.0714 5440 wercplsupport - ok
20:30:30.0724 5440 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:30:30.0724 5440 WerSvc - ok
20:30:30.0734 5440 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:30:30.0734 5440 WfpLwf - ok
20:30:30.0754 5440 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:30:30.0754 5440 WIMMount - ok
20:30:30.0764 5440 WinHttpAutoProxySvc - ok
20:30:30.0814 5440 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:30:30.0814 5440 Winmgmt - ok
20:30:30.0854 5440 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
20:30:30.0864 5440 WinRM - ok
20:30:30.0904 5440 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:30:30.0914 5440 Wlansvc - ok
20:30:30.0934 5440 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:30:30.0934 5440 WmiAcpi - ok
20:30:30.0944 5440 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:30:30.0944 5440 wmiApSrv - ok
20:30:31.0014 5440 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:30:31.0014 5440 WMPNetworkSvc - ok
20:30:31.0034 5440 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:30:31.0034 5440 WPCSvc - ok
20:30:31.0064 5440 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:30:31.0064 5440 WPDBusEnum - ok
20:30:31.0084 5440 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:30:31.0084 5440 ws2ifsl - ok
20:30:31.0094 5440 WSearch - ok
20:30:31.0114 5440 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:30:31.0124 5440 WudfPf - ok
20:30:31.0144 5440 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:30:31.0144 5440 WUDFRd - ok
20:30:31.0164 5440 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:30:31.0164 5440 wudfsvc - ok
20:30:31.0184 5440 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:30:31.0184 5440 WwanSvc - ok
20:30:31.0194 5440 ================ Scan global ===============================
20:30:31.0224 5440 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
20:30:31.0244 5440 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
20:30:31.0254 5440 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
20:30:31.0304 5440 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:30:31.0314 5440 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:30:31.0324 5440 [Global] - ok
20:30:31.0324 5440 ================ Scan MBR ==================================
20:30:31.0324 5440 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:30:31.0474 5440 \Device\Harddisk0\DR0 - ok
20:30:31.0514 5440 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:30:31.0574 5440 \Device\Harddisk1\DR1 ( TDSS File System ) - warning
20:30:31.0574 5440 \Device\Harddisk1\DR1 - detected TDSS File System (1)
20:30:31.0574 5440 ================ Scan VBR ==================================
20:30:31.0584 5440 [ 00C7DDA82E4FA32E0420237AABD7696E ] \Device\Harddisk0\DR0\Partition1
20:30:31.0584 5440 \Device\Harddisk0\DR0\Partition1 - ok
20:30:31.0584 5440 [ 2DBDB3836BBBED47CC6D30D135BBF830 ] \Device\Harddisk0\DR0\Partition2
20:30:31.0594 5440 \Device\Harddisk0\DR0\Partition2 - ok
20:30:31.0614 5440 [ 6979ED8AE70DA74791C7CC42CD592720 ] \Device\Harddisk1\DR1\Partition1
20:30:31.0614 5440 \Device\Harddisk1\DR1\Partition1 - ok
20:30:31.0614 5440 ============================================================
20:30:31.0614 5440 Scan finished
20:30:31.0614 5440 ============================================================
20:30:31.0624 5432 Detected object count: 1
20:30:31.0624 5432 Actual detected object count: 1
20:30:48.0854 5432 \Device\Harddisk1\DR1\TDLFS\ldrm - copied to quarantine
20:30:48.0864 5432 \Device\Harddisk1\DR1\TDLFS\cmd.dll - copied to quarantine
20:30:48.0864 5432 \Device\Harddisk1\DR1\TDLFS\cmd64.dll - copied to quarantine
20:30:48.0874 5432 \Device\Harddisk1\DR1\TDLFS\sub.dll - copied to quarantine
20:30:48.0874 5432 \Device\Harddisk1\DR1\TDLFS\subx.dll - copied to quarantine
20:30:48.0894 5432 \Device\Harddisk1\DR1\TDLFS\drv32 - copied to quarantine
20:30:48.0904 5432 \Device\Harddisk1\DR1\TDLFS\drv64 - copied to quarantine
20:30:48.0904 5432 \Device\Harddisk1\DR1\TDLFS\servers.dat - copied to quarantine
20:30:48.0904 5432 \Device\Harddisk1\DR1\TDLFS\config.ini - copied to quarantine
20:30:48.0904 5432 \Device\Harddisk1\DR1\TDLFS\ldr16 - copied to quarantine
20:30:48.0914 5432 \Device\Harddisk1\DR1\TDLFS\ldr32 - copied to quarantine
20:30:48.0914 5432 \Device\Harddisk1\DR1\TDLFS\ldr64 - copied to quarantine
20:30:48.0914 5432 \Device\Harddisk1\DR1\TDLFS\s - copied to quarantine
20:30:48.0924 5432 \Device\Harddisk1\DR1\TDLFS\u - copied to quarantine
20:30:48.0924 5432 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Quarantine
20:31:00.0204 5176 Deinitialize success

#6 mlhaynes4

mlhaynes4
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 28 September 2012 - 08:55 PM

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.28.09

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Jason :: JASON-PC [administrator]

Protection: Enabled

9/28/2012 8:33:17 PM
mbam-log-2012-09-28 (21-23-31).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 315650
Time elapsed: 49 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 2
HKCR\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32| (Trojan.0Access) -> Bad: (C:\$Recycle.Bin\S-1-5-18\$5a9d3cfe56ae2e1b64f1e0eaa69cd7cc\n.) Good: (fastprox.dll) -> No action taken.
HKCR\CLSID\{FBEB8A05-BEEE-4442-804E-409D6C4515E9}\InProcServer32| (Trojan.0Access) -> Bad: (C:\$Recycle.Bin\S-1-5-21-965333617-2437437609-2643657388-1000\$5a9d3cfe56ae2e1b64f1e0eaa69cd7cc\n.) Good: (shell32.dll) -> No action taken.

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\$Recycle.Bin\S-1-5-18\$5a9d3cfe56ae2e1b64f1e0eaa69cd7cc\U\00000001.@ (Trojan.0Access) -> No action taken.
C:\$Recycle.Bin\S-1-5-18\$5a9d3cfe56ae2e1b64f1e0eaa69cd7cc\U\80000000.@ (Trojan.0Access) -> No action taken.
C:\$Recycle.Bin\S-1-5-18\$5a9d3cfe56ae2e1b64f1e0eaa69cd7cc\U\800000cb.@ (Trojan.0Access) -> No action taken.
C:\$Recycle.Bin\S-1-5-21-965333617-2437437609-2643657388-1000\$5a9d3cfe56ae2e1b64f1e0eaa69cd7cc\n (Trojan.0Access) -> No action taken.

(end)

MiniToolBox by Farbar Version: 23-07-2012
Ran by Jason (administrator) on 28-09-2012 at 21:28:03
Microsoft Windows 7 Ultimate Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

D-Link DWA-160 Xtreme N Dual Band USB Adapter(rev.B) = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="ethernet_9" address=192.168.246.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Jason-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : D-Link DWA-160 Xtreme N Dual Band USB Adapter(rev.B)
Physical Address. . . . . . . . . : 00-21-91-84-80-5C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ac85:5c24:b52b:8141%14(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.106(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, September 28, 2012 9:25:45 PM
Lease Expires . . . . . . . . . . : Saturday, September 29, 2012 9:25:45 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 335552913
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-64-6B-D2-00-1A-4D-54-C8-E9
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.tn.comcast.net.
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-1A-4D-54-C8-E9
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{DEA90CBB-EB09-46C2-AFF4-AB1C6790BE64}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 2001:4860:800a::64
74.125.137.139
74.125.137.100
74.125.137.101
74.125.137.102
74.125.137.113
74.125.137.138


Pinging google.com [74.125.137.113] with 32 bytes of data:
Reply from 74.125.137.113: bytes=32 time=66ms TTL=44
Reply from 74.125.137.113: bytes=32 time=62ms TTL=44

Ping statistics for 74.125.137.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 62ms, Maximum = 66ms, Average = 64ms
Server: UnKnown
Address: 192.168.0.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=84ms TTL=46
Reply from 98.139.183.24: bytes=32 time=136ms TTL=44

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 84ms, Maximum = 136ms, Average = 110ms
Server: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...00 21 91 84 80 5c ......D-Link DWA-160 Xtreme N Dual Band USB Adapter(rev.B)
10...00 1a 4d 54 c8 e9 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.106 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.106 281
192.168.0.106 255.255.255.255 On-link 192.168.0.106 281
192.168.0.255 255.255.255.255 On-link 192.168.0.106 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.106 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.106 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
14 281 fe80::/64 On-link
14 281 fe80::ac85:5c24:b52b:8141/128
On-link
1 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/28/2012 01:41:02 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/28/2012 01:41:01 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/28/2012 01:41:01 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/25/2012 02:49:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/25/2012 02:48:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/25/2012 02:48:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/23/2012 05:51:39 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/23/2012 05:51:38 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/23/2012 05:51:38 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (09/22/2012 02:03:42 PM) (Source: Application Error) (User: )
Description: Faulting application name: Torchlight.exe, version: 1.0.69.23, time stamp: 0x4b60acfa
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e2111c0
Exception code: 0x0eedfade
Fault offset: 0x0000d36f
Faulting process id: 0x1124
Faulting application start time: 0xTorchlight.exe0
Faulting application path: Torchlight.exe1
Faulting module path: Torchlight.exe2
Report Id: Torchlight.exe3


System errors:
=============
Error: (09/28/2012 09:26:40 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/28/2012 09:26:40 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/28/2012 09:25:53 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (09/28/2012 09:25:41 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (09/28/2012 08:27:01 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (09/28/2012 08:27:01 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/28/2012 02:05:44 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (09/28/2012 02:05:38 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:04:18 PM on ?9/?28/?2012 was unexpected.

Error: (09/27/2012 11:38:36 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (09/27/2012 11:38:36 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (09/28/2012 01:41:02 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Xp64\DPInst.exe

Error: (09/28/2012 01:41:01 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Win764\DPInst.exe

Error: (09/28/2012 01:41:01 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Vista64\DPInst.exe

Error: (09/25/2012 02:49:00 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Xp64\DPInst.exe

Error: (09/25/2012 02:48:59 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Win764\DPInst.exe

Error: (09/25/2012 02:48:59 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Vista64\DPInst.exe

Error: (09/23/2012 05:51:39 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Xp64\DPInst.exe

Error: (09/23/2012 05:51:38 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Win764\DPInst.exe

Error: (09/23/2012 05:51:38 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\Vista64\DPInst.exe

Error: (09/22/2012 02:03:42 PM) (Source: Application Error)(User: )
Description: Torchlight.exe1.0.69.234b60acfaKERNELBASE.dll6.1.7601.176514e2111c00eedfade0000d36f112401cd98ec97fcd8d6C:\Program Files\Steam\steamapps\common\Torchlight II\Torchlight.exeC:\Windows\system32\KERNELBASE.dlld773d340-04df-11e2-a505-001a4d54c8e9


=========================== Installed Programs ============================

AC3Filter 1.63b (Version: 1.63b)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.265)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Alarm Clock v1.0
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.923.1)
AMD Catalyst Install Manager (Version: 8.0.873.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0405.2205.37728)
AMD Media Foundation Decoders (Version: 1.0.70405.2224)
AMD VISION Engine Control Center (Version: 2012.0405.2205.37728)
AutoMode Switcher (Version: 1.00)
AVG Security Toolbar (Version: 12.2.5.34)
Avira Free Antivirus (Version: 12.0.0.1199)
BitTorrent (Version: 7.6.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728)
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728)
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728)
ccc-utility (Version: 2012.0405.2205.37728)
CCC Help Chinese Standard (Version: 2012.0405.2204.37728)
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728)
CCC Help Czech (Version: 2012.0405.2204.37728)
CCC Help Danish (Version: 2012.0405.2204.37728)
CCC Help Dutch (Version: 2012.0405.2204.37728)
CCC Help English (Version: 2012.0405.2204.37728)
CCC Help Finnish (Version: 2012.0405.2204.37728)
CCC Help French (Version: 2012.0405.2204.37728)
CCC Help German (Version: 2012.0405.2204.37728)
CCC Help Greek (Version: 2012.0405.2204.37728)
CCC Help Hungarian (Version: 2012.0405.2204.37728)
CCC Help Italian (Version: 2012.0405.2204.37728)
CCC Help Japanese (Version: 2012.0405.2204.37728)
CCC Help Korean (Version: 2012.0405.2204.37728)
CCC Help Norwegian (Version: 2012.0405.2204.37728)
CCC Help Polish (Version: 2012.0405.2204.37728)
CCC Help Portuguese (Version: 2012.0405.2204.37728)
CCC Help Russian (Version: 2012.0405.2204.37728)
CCC Help Spanish (Version: 2012.0405.2204.37728)
CCC Help Swedish (Version: 2012.0405.2204.37728)
CCC Help Thai (Version: 2012.0405.2204.37728)
CCC Help Turkish (Version: 2012.0405.2204.37728)
Creative ALchemy (Version: 1.43)
Creative Audio Control Panel (Version: 3.00)
Creative Console Launcher (Version: 2.61)
Creative Sound Blaster Properties (Version: 1.02)
Diablo III (Version: 1.0.4.11327)
Diablo III Public Test (Version: 1.0.5.12289)
DivX Setup (Version: 2.6.1.3)
Dolby Digital Live Pack (Version: 3.02)
DTS Connect Pack (Version: 1.00)
ESET Online Scanner v3
Google Chrome (Version: 22.0.1229.79)
Google Drive (Version: 1.4.3365.1552)
Google Talk Plugin (Version: 3.7.1.9330)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
Guild Wars 2
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
McAfee Security Scan Plus (Version: 3.0.271.4)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
NVIDIA 3D Vision Controller Driver 304.79 (Version: 304.79)
NVIDIA 3D Vision Driver 304.79 (Version: 304.79)
NVIDIA Control Panel 304.79 (Version: 304.79)
NVIDIA Graphics Driver 304.79 (Version: 304.79)
NVIDIA HD Audio Driver 1.3.17.0 (Version: 1.3.17.0)
NVIDIA Install Application (Version: 2.1002.78.480)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0479)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
OpenAL
OpenOffice.org 3.4 (Version: 3.4.9590)
Path of Exile (Version: 0.9.11.18500)
RAIDXpert (Version: 3.2.1540.5)
Realtek Ethernet Controller Driver (Version: 7.48.823.2011)
Realtek PCI Fast Ethernet Controller Driver For Vista and Win7 (Version: 1.00.0005)
SoundFont Bank Manager
Spotify (Version: 0.8.4.124.ga3559d86)
Steam (Version: 1.0.0.0)
System Requirements Lab CYRI (Version: 4.5.1.0)
THX Setup Console (Version: 3.50)
Torchlight 2 (Version: 1.1.1.1)
Torchlight II
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Ventrilo Client (Version: 3.0.8)
Volume Panel (Version: 2.21)
Windows Driver Package - SteelSeries (HidUsb) HIDClass (11/19/2010 1.2.4.0) (Version: 11/19/2010 1.2.4.0)
WinZip 16.5 (Version: 16.5.10095)
World of Warcraft (Version: 5.0.5.16057)
World of Warcraft Beta (Version: )
World of Warcraft®: Cataclysm™ MMO Gaming Mouse (Version: 1.01.0015)

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3198.49 MB
Available physical RAM: 1861.34 MB
Total Pagefile: 6395.27 MB
Available Pagefile: 4693.8 MB
Total Virtual: 2047.88 MB
Available Virtual: 1932.48 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.76 GB) (Free:282.42 GB) NTFS
2 Drive d: () (Fixed) (Total:465.66 GB) (Free:465.55 GB) NTFS

========================= Users: ========================================

User accounts for \\JASON-PC

Administrator Guest Jason
UpdatusUser

========================= Restore Points ==================================

21-09-2012 04:47:06 Scheduled Checkpoint
22-09-2012 07:00:12 Windows Update
22-09-2012 17:01:15 Installed Steam
22-09-2012 17:55:28 Installed DirectX
22-09-2012 18:00:10 Installed DirectX

**** End of log ****

Farbar Service Scanner Version: 19-09-2012
Ran by Jason (administrator) on 28-09-2012 at 21:30:28
Running from "C:\Users\Jason\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P4R6AWZO"
Microsoft Windows 7 Ultimate Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of MpsSvc. The value does not exist.
Checking ImagePath: ATTENTION!=====> Unable to retrieve ImagePath of MpsSvc. The value does not exist.
Unable to retrieve ServiceDll of MpsSvc. The value does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to open SharedAccess registry key. The service key does not exist.


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-09-12 13:31] - [2012-08-22 13:16] - 1292144 ____A (Microsoft Corporation) A5EBB8F648000E88B7D9390B514976BF

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#7 mlhaynes4

mlhaynes4
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 28 September 2012 - 08:56 PM

# AdwCleaner v2.003 - Logfile created 09/28/2012 at 21:31:03
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : Jason - JASON-PC
# Boot Mode : Normal
# Running from : C:\Users\Jason\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\68MYML3T\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Program Files\Ask.com
Folder Found : C:\Program Files\AVG Secure Search
Folder Found : C:\Program Files\Common Files\AVG Secure Search
Folder Found : C:\Program Files\Conduit
Folder Found : C:\Program Files\Free Offers from Freeze.com
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\Users\Jason\AppData\Local\APN
Folder Found : C:\Users\Jason\AppData\Local\AskToolbar
Folder Found : C:\Users\Jason\AppData\Local\AVG Secure Search
Folder Found : C:\Users\Jason\AppData\Local\Conduit
Folder Found : C:\Users\Jason\AppData\Local\Temp\AskSearch
Folder Found : C:\Users\Jason\AppData\Local\Temp\avg@toolbar
Folder Found : C:\Users\Jason\AppData\LocalLow\AskToolbar
Folder Found : C:\Users\Jason\AppData\LocalLow\AVG Secure Search
Folder Found : C:\Users\Jason\AppData\LocalLow\Conduit

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4DE90BB-150D-4B33-95FE-6BAAC97E1C21}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B4DE90BB-150D-4B33-95FE-6BAAC97E1C21}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\S
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Freeze.com
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKU\S-1-5-21-965333617-2437437609-2643657388-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKU\S-1-5-21-965333617-2437437609-2643657388-1008\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.12] : homepage = "hxxps://isearch.avg.com/?cid={908BECC2-AC20-4AD4-AB9E-5ABB9CFD8F52}&mid=ba080e2fa9274a6782204afb8148f72d-2b70ea40aeb120b7b9455a05dc38871542827207&lang=en&ds=hk011&pr=sa&d=2012-09-17 17:42:36&v=12.2.5.34&sap=hp",
Found [l.16] : urls_to_restore_on_startup = [ "hxxps://isearch.avg.com/?cid={908BECC2-AC20-4AD4-AB9E-5ABB9CFD8F52}&mid=ba080e2fa9274a6782204afb8148f72d-2b70ea40aeb120b7b9455a05dc38871542827207&lang=en&ds=hk011&pr=sa&d=2012-09-17 17:42:36&v=12.2.5.34&sap=hp" ]
Found [l.44] : icon_url = "hxxps://isearch.avg.com/favicon.ico",
Found [l.47] : keyword = "isearch.avg.com",
Found [l.50] : search_url = "hxxps://isearch.avg.com/search?cid={908BECC2-AC20-4AD4-AB9E-5ABB9CFD8F52}&mid=&lang=&ds=&pr=&d=&v=&sap=dsp&q={searchTerms}",
Found [l.1205] : homepage = "hxxps://isearch.avg.com/?cid={908BECC2-AC20-4AD4-AB9E-5ABB9CFD8F52}&mid=ba080e2fa9274a6782204afb8148f72d-2b70ea40aeb120b7b9455a05dc38871542827207&lang=en&ds=hk011&pr=sa&d=2012-09-17 17:42:36&v=12.2.5.34&sap=hp",
Found [l.1826] : urls_to_restore_on_startup = [ "hxxps://isearch.avg.com/?cid={908BECC2-AC20-4AD4-AB9E-5ABB9CFD8F52}&mid=ba080e2fa9274a6782204afb8148f72d-2b70ea40aeb120b7b9455a05dc38871542827207&lang=en&ds=hk011&pr=sa&d=2012-09-17 17:42:36&v=12.2.5.34&sap=hp" ]

*************************

AdwCleaner[R1].txt - [6965 octets] - [28/09/2012 21:31:03]

########## EOF - C:\AdwCleaner[R1].txt - [7025 octets] ##########

Junkware Removal Tool (JRT) by Thisisu
Version: 1.1.3 (09.28.2012)
OS: Windows 7 Ultimate x86
Ran by Jason on Fri 09/28/2012 at 21:41:12.63
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_current_user\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}
Successfully deleted: [KEY] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}
Successfully deleted: [KEY] hkey_classes_root\clsid\{3c471948-f874-49f5-b338-4f214a2ee0b1}



*** Files: 0 Detections



*** Folders: 0 Detections



Removed the following from [PREFS.JS] :



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Fri 09/28/2012 at 21:41:13.26
End of Report

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:01 PM

Posted 28 September 2012 - 09:00 PM

Malwarebytes>>Please remove the infections,scan again and post the clean log

Adware cleaner>>Launch the tool and click on DELETE,post the new log

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#9 mlhaynes4

mlhaynes4
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 28 September 2012 - 10:44 PM

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.28.09

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Jason :: JASON-PC [administrator]

Protection: Enabled

9/28/2012 10:39:05 PM
mbam-log-2012-09-28 (22-39-05).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 316975
Time elapsed: 53 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

# AdwCleaner v2.003 - Logfile created 09/28/2012 at 22:34:04
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : Jason - JASON-PC
# Boot Mode : Normal
# Running from : C:\Users\Jason\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W9ODJMOH\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\Common Files\AVG Secure Search

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.44] : icon_url = "hxxps://isearch.avg.com/favicon.ico",

*************************

AdwCleaner[R1].txt - [7094 octets] - [28/09/2012 21:31:03]
AdwCleaner[S1].txt - [7697 octets] - [28/09/2012 21:31:35]
AdwCleaner[S2].txt - [970 octets] - [28/09/2012 22:34:04]

########## EOF - C:\AdwCleaner[S2].txt - [1029 octets] ##########

Farbar Service Scanner Version: 19-09-2012
Ran by Jason (administrator) on 28-09-2012 at 23:37:25
Running from "C:\Users\Jason\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F42ECUUH"
Microsoft Windows 7 Ultimate Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-09-12 13:31] - [2012-08-22 13:16] - 1292144 ____A (Microsoft Corporation) A5EBB8F648000E88B7D9390B514976BF

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#10 mlhaynes4

mlhaynes4
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 28 September 2012 - 10:45 PM

Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/28/2012 11:40:24 PM in x86 mode.
Windows Version: Windows 7 Ultimate Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "AMD AVT" "" "" "File not found: start"
+ "avgnt" "Avira System Tray Tool" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avgnt.exe"
+ "CTxfiHlp" "CTXfiHlp MFC Application" "Creative Technology Ltd" "c:\windows\system32\ctxfihlp.exe"
+ "DivXUpdate" "DivX Update" "" "c:\program files\divx\divx update\divxupdate.exe"
+ "dmdpct" "" "" ""
+ "ROC_ROC_NT" "" "" "File not found: C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files\ati technologies\ati.ace\core-static\clistart.exe"
+ "SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse" "World of Warcraft®: Cataclysm™ MMO Gaming Mouse HID Process" "SteelSeries" "c:\program files\steelseries\world of warcraft cataclysm mmo gaming mouse\wowmhid2.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "VolPanel" "VolPanlu.exe" "Creative Technology Ltd" "c:\program files\creative\volume panel\volpanlu.exe"
+ "vProt" "" "" "File not found: C:\Program Files\AVG Secure Search\vprot.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "McAfee Security Scan Plus.lnk" "McAfee Security Scanner Scheduler" "McAfee, Inc." "c:\program files\mcafee security scan\3.0.271\ssscheduler.exe"
"C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "GameStop Now.lnk" "" "" "File not found: C:\Program Files\GameStop App\Now\GameStopNow.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Google Update" "Google Installer" "Google Inc." "c:\users\jason\appdata\local\google\update\googleupdate.exe"
+ "GoogleDriveSync" "Google Drive" "Google" "c:\program files\google\drive\googledrivesync.exe"
+ "Ombaz" "" "" "File not found: C:\Users\Jason\AppData\Roaming\Bueza\reyto.exe"
+ "Spotify" "Spotify" "Spotify Ltd" "c:\users\jason\appdata\roaming\spotify\spotify.exe"
+ "Spotify Web Helper" "" "" "c:\users\jason\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "Steam" "Steam" "Valve Corporation" "c:\program files\steam\steam.exe"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Shell Extension for Malware scanning" "Avira Shell Extension Library" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\shlext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files\ati technologies\ati.ace\core-static\atiacmxx.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "Apache Software Foundation" "c:\program files\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "Shell Extension for Malware scanning" "Avira Shell Extension Library" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\shlext.dll"
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinZip" "WinZip Shell Extension DLL" "WinZip Computing, S.L." "c:\program files\winzip\wzshlstb.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "GDriveBlacklistedOverlay" "Google Drive shell extension" "Google" "c:\program files\google\drive\googledrivesync32.dll"
+ "GDriveSharedOverlay" "Google Drive shell extension" "Google" "c:\program files\google\drive\googledrivesync32.dll"
+ "GDriveSyncedOverlay" "Google Drive shell extension" "Google" "c:\program files\google\drive\googledrivesync32.dll"
+ "GDriveSyncingOverlay" "Google Drive shell extension" "Google" "c:\program files\google\drive\googledrivesync32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "DivX Plus Web Player HTML5 <video>" "DivX Plus Web Player HTML5 <video> version 2.1.2.145" "DivX, LLC" "c:\program files\divx\divx plus web player\ie\divxhtml5\divxhtml5.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.4 r402" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-965333617-2437437609-2643657388-1000Core" "Google Installer" "Google Inc." "c:\users\jason\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-965333617-2437437609-2643657388-1000UA" "Google Installer" "Google Inc." "c:\users\jason\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "AMD FUEL Service" "Provides FUEL Functionality" "Advanced Micro Devices, Inc." "c:\program files\ati technologies\ati.ace\fuel\fuel.service.exe"
+ "AMD_RAIDXpert" "AMD RAIDXpert Server" "AMD" "c:\program files\amd\raidxpert\bin\raidxpertservice.exe"
+ "AntiVirSchedulerService" "Service to schedule Avira Free Antivirus jobs and updates." "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\sched.exe"
+ "AntiVirService" "Offers permanent protection against viruses and malware with the Avira search engine." "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avguard.exe"
+ "Creative ALchemy AL6 Licensing Service" "Provides licensing services for Creative ALchemy." "Creative Labs" "c:\program files\common files\creative labs shared\service\al6licensing.exe"
+ "Creative Audio Engine Licensing Service" "Provides licensing services for Creative Audio Engine." "Creative Labs" "c:\program files\common files\creative labs shared\service\ctaelicensing.exe"
+ "CTAudSvcService" "Creative Audio Service" "Creative Technology Ltd" "c:\program files\creative\shared files\ctaudsvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "McComponentHostService" "McAfee Security Scan Component Host Service" "McAfee, Inc." "c:\program files\mcafee security scan\3.0.271\mcchsvc.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files\nvidia corporation\nvidia update core\daemonu.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files\common files\steam\steamservice.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "vToolbarUpdater12.2.6" "ToolbarU Application" "" "c:\program files\common files\avg secure search\vtoolbarupdater\12.2.6\toolbarupdater.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aic78xx" "Adaptec Ultra SCSI miniport" "Adaptec, Inc." "c:\windows\system32\drivers\djsvs.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdiox86" "AMD IO Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdiox86.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows family" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AODDriver4.01" "AMD OverDrive Service Driver" "Advanced Micro Devices" "c:\program files\ati technologies\ati.ace\fuel\i386\aoddriver2.sys"
+ "AODDriver4.1" "AMD OverDrive Service Driver" "Advanced Micro Devices" "c:\program files\ati technologies\ati.ace\fuel\i386\aoddriver2.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "AtiHDAudioService" "AMD High Definition Audio Function Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\atihdw73.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "avgntflt" "Avira mini-filter driver" "Avira GmbH" "c:\windows\system32\drivers\avgntflt.sys"
+ "avgtp" "" "AVG Technologies" "c:\windows\system32\drivers\avgtpx86.sys"
+ "avipbb" "Avira Security Enhancement Driver" "Avira GmbH" "c:\windows\system32\drivers\avipbb.sys"
+ "avkmgr" "Avira Manager Driver" "Avira GmbH" "c:\windows\system32\drivers\avkmgr.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbdx.sys"
+ "b57nd60x" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60x.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CT20XUT" "Creative 20X Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ct20xut.sys"
+ "CT20XUT.SYS" "Creative 20X Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ct20xut.sys"
+ "ctac32k" "Creative AC3 SW Decoder Device Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctac32k.sys"
+ "ctaud2k" "Creative WDM Audio Device Driver" "Creative Technology Ltd" "c:\windows\system32\drivers\ctaud2k.sys"
+ "CTEXFIFX" "Creative XFi Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ctexfifx.sys"
+ "CTEXFIFX.SYS" "Creative XFi Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\ctexfifx.sys"
+ "CTHWIUT" "Creative Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\cthwiut.sys"
+ "CTHWIUT.SYS" "Creative Utility Effects" "Creative Technology Ltd." "c:\windows\system32\drivers\cthwiut.sys"
+ "ctprxy2k" "Creative Proxy Device Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctprxy2k.sys"
+ "ctsfm2k" "SoundFont® Manager (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ctsfm2k.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbdx.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "emupia" "E-mu Plug-in Architecture Driver (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\emupia2k.sys"
+ "ha20x22k" "Creative 20X2 HAL (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ha20x22k.sys"
+ "ha20x2k" "Creative 20X HAL (WDM)" "Creative Technology Ltd" "c:\windows\system32\drivers\ha20x2k.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7 for x86" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "netr28u" "Ralink 802.11n Wireless Adapter Driver" "Ralink Technology Corp." "c:\windows\system32\drivers\netr28u.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda32v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 304.79 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ossrv" "Creative OS Services Driver (WDM)" "Creative Technology Ltd." "c:\windows\system32\drivers\ctoss2k.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTL8167" "Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver " "Realtek " "c:\windows\system32\drivers\rt86win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "ssmdrv" "Avira Snapshot Driver" "Avira GmbH" "c:\windows\system32\drivers\ssmdrv.sys"
+ "SSMO3v2Filter" "Developed and Built for World of Warcraft: Cataclysm MMO Gaming Mouse by SteelSeries." "Sagatek Co. Ltd." "c:\windows\system32\drivers\mo3v2driver.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "Synth3dVsc" "" "" "File not found: System32\drivers\synth3dvsc.sys"
+ "tsusbhub" "@%SystemRoot%\system32\drivers\tsusbhub.sys,-2" "" "File not found: system32\drivers\tsusbhub.sys"
+ "VGPU" "" "" "File not found: System32\drivers\rdvgkmd.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vmci" "" "" "File not found: system32\DRIVERS\vmci.sys"
+ "VMnetAdapter" "Driver for VMware's Virtual Ethernet Adapters Ver. 2" "" "File not found: system32\DRIVERS\vmnetadapter.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\system32\divx.dll"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\system32\divx.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AC3Filter" "ac3filter" "" "c:\program files\ac3filter\ac3filter.ax"
+ "AMD MJPEG Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Ticker" "" "" "c:\program files\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "BPM Metadata" "Creative BPM Metadata Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\metabpmu.ax"
+ "Creative AC3 Source Filter" "Creative AC3 Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\ac3srcu.ax"
+ "Creative Audio Gain Filter" "Audio Gain Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\audgain.ax"
+ "Creative CDDA Source Filter" "CDDA Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\cdda.ax"
+ "Creative File Reader Filter" "Creative File Reader Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\filreadu.ax"
+ "Creative Flac Source Filter" "Creative FLAC Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\flacsrcu.ax"
+ "Creative Internet Source Filter" "Creative Internet Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\inetsrcu.ax"
+ "Creative LiveRecording Filter_SxS" "Live Recording Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\liverecu.ax"
+ "Creative MLP Source Filter" "Creative MLP Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\mlpsrcu.ax"
+ "Creative NVF Filter" "Creative Nomad Voice File Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\nvfsrcu.ax"
+ "Creative Ogg Source Filter" "Creative Ogg Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\oggsrcu.ax"
+ "Creative PCM Raw Writer" "Creative Raw Writer" "Creative Technology Ltd" "c:\program files\creative\shared files\rawwritu.ax"
+ "Creative Recording Wav_Asio Filter" "Audio Recording Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\audiorec.ax"
+ "Creative Wave Writer" "Wave Writer" "Creative Technology Ltd" "c:\program files\creative\shared files\wavwrite.ax"
+ "Creative WMA Source Filter" "Creative WMA Source Filter" "Creative Technology Ltd" "c:\program files\creative\shared files\wmasrc.ax"
+ "Creative WMA Writer" "WMA Writer" "Creative Technology Ltd" "c:\program files\creative\shared files\wmawrite.ax"
+ "CT CMSS3 filter" "Sample" "Creative Technology Ltd" "c:\program files\creative\shared files\cmss3.ax"
+ "CT HPVirtualizer filter" "Creative Headphone Virtualizer Filter" "Creative Technology, Ltd." "c:\program files\creative\shared files\virtual.ax"
+ "CT Karaoke filter" "Creative Karaoke Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\karaoke.ax"
+ "CT PDP filter" "Creative Crystalizer Filter" "Creative Technology, Ltd." "c:\program files\creative\shared files\pdp.ax"
+ "CT SmartVolumeManagement filter" "Creative Compressor Plugin" "Creative Technology Ltd." "c:\program files\creative\shared files\dscompr.ax"
+ "CT Time-Scaling filter" "Sample" "Creative Technology Ltd." "c:\program files\creative\shared files\timescal.ax"
+ "CT Upsampler filter" "Sample" "Creative Technology Ltd" "c:\program files\creative\shared files\upsample.ax"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\daac.ax"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files\divx\divx codec\divxdec.ax"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\directshowdemuxfilter.dll"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files\divx\divx plus directshow filters\divxdech264.ax"
+ "MMACE Deinterlace" "" "" "c:\program files\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "Noise Reduction" "Creative Noise Reduction Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\noisredu.ax"
+ "SVM Metadata" "Creative SVM Metadata Filter" "Creative Technology Ltd." "c:\program files\creative\shared files\metasvmu.ax"
"C:\Users\Jason\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "WinZip Gadget" "" "WinZip" "C:\Program Files\Windows Sidebar\Shared Gadgets\WinZip.Gadget\en-US\Gadget.xml"


Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

Program finished at: 09/28/2012 11:40:31 PM
Execution time: 0 hours(s), 0 minute(s), and 6 seconds(s)

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:01 PM

Posted 29 September 2012 - 03:53 AM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#12 mlhaynes4

mlhaynes4
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 29 September 2012 - 10:58 AM

Thank you so much man, I could already tell after even the first and second round of steps how much smoother and efficient my computer was running.

You're the man!

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:01 PM

Posted 29 September 2012 - 11:22 AM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users