Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Infection with Mulitple Problems


  • Please log in to reply
5 replies to this topic

#1 saberleo456

saberleo456

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 28 September 2012 - 06:53 PM

OS:Windows 7 SP1, My computer has recently encountered many problems that are related by the time they occurred. I'm not sure what caused it, but I alt-tabbed from playing Mass Effect and there on the corner of the screen I noticed "this copy of Windows is not genuine." I have an OEM Windows 7 Home Premium installation. I thought I just needed to revalidate and it was just a nonissue. I tried to revalidate on the Microsoft site, but the validation just would not open up. Shortly after that I experienced problems with the Windows Explorer file browser with messages saying that the "explorer.exe" did not exist and the libraries pin turned to the invalid file icon. I then checked the Windows troubleshooter which could not open because it couldn't find the file. I have run a couple tests with my antivirus/antimalware scanners and nothing came up. I could sure use some help here I'm at my wit's end. Thank you for reading my wall of text, please do help if you can.

Edit: HP IDT Audio Manager (beats Audio) refuses to open up and LAN connections are not recognized.

Edited by saberleo456, 28 September 2012 - 06:56 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:39 PM

Posted 02 October 2012 - 02:04 PM

Hello, sorry you got lost..
Are you saying you have no internet connection? If so..



For the connection try these...

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.
Now check if the internet is working again.

OR

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.

If needed : type these one line at a time, press enter after each line. See if it works after each.


netsh interface ipv4 reset
netsh interface ipv6 reset
ipconfig /flushdns


WIN7.. Please Download this file, Click Me
Right-click on winsockfix.bat and click on Run as Administrator.


If You have it run these..or if the above failed copy these to a USB or CD and run from there.



Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.

>>>
Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.


Next run Superantisypware (SAS):

Download and scan with SUPERAntiSpyware Free for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen.
  • Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click "Next" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 saberleo456

saberleo456
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 02 October 2012 - 07:25 PM

Hello again, thank you for the prompt response. Rkill reports that "There was a problem retrieving the necessary environment variable: WinDir. Rkill has terminated!"

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:39 PM

Posted 02 October 2012 - 07:40 PM

OK, lets try without rkill,,do the rest.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 saberleo456

saberleo456
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 02 October 2012 - 09:12 PM

Well sorry it took so long, it didn't find anything. Here are the logs:

17:49:31.0254 6960 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
17:49:33.0266 6960 ============================================================
17:49:33.0266 6960 Current date / time: 2012/10/02 17:49:33.0266
17:49:33.0266 6960 SystemInfo:
17:49:33.0266 6960
17:49:33.0266 6960 OS Version: 6.1.7601 ServicePack: 1.0
17:49:33.0266 6960 Product type: Workstation
17:49:33.0266 6960 ComputerName: TONY-HP
17:49:33.0266 6960 UserName: Tony
17:49:33.0266 6960 Windows directory: C:\Windows
17:49:33.0266 6960 System windows directory: C:\Windows
17:49:33.0266 6960 Running under WOW64
17:49:33.0266 6960 Processor architecture: Intel x64
17:49:33.0266 6960 Number of processors: 4
17:49:33.0266 6960 Page size: 0x1000
17:49:33.0266 6960 Boot type: Normal boot
17:49:33.0266 6960 ============================================================
17:49:33.0955 6960 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:49:33.0955 6960 ============================================================
17:49:33.0955 6960 \Device\Harddisk0\DR0:
17:49:33.0955 6960 MBR partitions:
17:49:33.0955 6960 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:49:33.0955 6960 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x48A95800
17:49:33.0971 6960 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x48AF9800, BlocksNum 0x1D2A800
17:49:33.0971 6960 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x4A824000, BlocksNum 0x33AB0
17:49:33.0971 6960 ============================================================
17:49:33.0986 6960 C: <-> \Device\Harddisk0\DR0\Partition2
17:49:34.0033 6960 D: <-> \Device\Harddisk0\DR0\Partition3
17:49:34.0033 6960 F: <-> \Device\Harddisk0\DR0\Partition4
17:49:34.0033 6960 ============================================================
17:49:34.0033 6960 Initialize success
17:49:34.0033 6960 ============================================================
17:49:56.0424 1608 ============================================================
17:49:56.0424 1608 Scan started
17:49:56.0424 1608 Mode: Manual; TDLFS;
17:49:56.0424 1608 ============================================================
17:49:56.0767 1608 ================ Scan system memory ========================
17:49:56.0767 1608 System memory - ok
17:49:56.0767 1608 ================ Scan services =============================
17:49:56.0877 1608 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
17:49:56.0877 1608 !SASCORE - ok
17:49:57.0079 1608 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:49:57.0095 1608 1394ohci - ok
17:49:57.0111 1608 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
17:49:57.0126 1608 Accelerometer - ok
17:49:57.0142 1608 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:49:57.0142 1608 ACPI - ok
17:49:57.0173 1608 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:49:57.0173 1608 AcpiPmi - ok
17:49:57.0329 1608 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:49:57.0329 1608 AdobeARMservice - ok
17:49:57.0360 1608 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:49:57.0360 1608 adp94xx - ok
17:49:57.0407 1608 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:49:57.0407 1608 adpahci - ok
17:49:57.0423 1608 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:49:57.0438 1608 adpu320 - ok
17:49:57.0719 1608 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
17:49:57.0735 1608 AdvancedSystemCareService5 - ok
17:49:57.0781 1608 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:49:57.0781 1608 AeLookupSvc - ok
17:49:57.0891 1608 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
17:49:57.0906 1608 AESTFilters - ok
17:49:57.0937 1608 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:49:57.0953 1608 AFD - ok
17:49:57.0969 1608 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:49:57.0984 1608 agp440 - ok
17:49:58.0000 1608 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:49:58.0000 1608 ALG - ok
17:49:58.0000 1608 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:49:58.0015 1608 aliide - ok
17:49:58.0047 1608 [ 3DE8DC285540733818588CC94E7FC96E ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:49:58.0062 1608 AMD External Events Utility - ok
17:49:58.0109 1608 AMD FUEL Service - ok
17:49:58.0156 1608 [ 30BFEEE0DFFD5BD79D29157CF080DEED ] amdhub30 C:\Windows\system32\DRIVERS\amdhub30.sys
17:49:58.0156 1608 amdhub30 - ok
17:49:58.0171 1608 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:49:58.0171 1608 amdide - ok
17:49:58.0203 1608 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
17:49:58.0203 1608 amdiox64 - ok
17:49:58.0218 1608 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:49:58.0218 1608 AmdK8 - ok
17:49:58.0546 1608 [ 42D53DAF85F948C39CE1351A8F5B5808 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:49:58.0827 1608 amdkmdag - ok
17:49:58.0873 1608 [ 75182B5784015B271932088551616A96 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:49:58.0873 1608 amdkmdap - ok
17:49:58.0889 1608 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:49:58.0889 1608 AmdPPM - ok
17:49:58.0920 1608 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:49:58.0936 1608 amdsata - ok
17:49:58.0967 1608 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:49:58.0967 1608 amdsbs - ok
17:49:58.0998 1608 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:49:58.0998 1608 amdxata - ok
17:49:59.0029 1608 [ 321533578132C811EC834A1B741C994C ] amdxhc C:\Windows\system32\DRIVERS\amdxhc.sys
17:49:59.0029 1608 amdxhc - ok
17:49:59.0029 1608 [ 2FBB00A7616106B95104574C6CD640C2 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
17:49:59.0029 1608 amd_sata - ok
17:49:59.0045 1608 [ 87D0D7645CB0D53220649BD5FE15D93E ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
17:49:59.0045 1608 amd_xata - ok
17:49:59.0076 1608 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
17:49:59.0092 1608 androidusb - ok
17:49:59.0123 1608 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
17:49:59.0123 1608 AODDriver4.1 - ok
17:49:59.0154 1608 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:49:59.0154 1608 AppID - ok
17:49:59.0185 1608 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:49:59.0185 1608 AppIDSvc - ok
17:49:59.0185 1608 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:49:59.0185 1608 Appinfo - ok
17:49:59.0248 1608 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:49:59.0248 1608 Apple Mobile Device - ok
17:49:59.0326 1608 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
17:49:59.0326 1608 arc - ok
17:49:59.0341 1608 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:49:59.0341 1608 arcsas - ok
17:49:59.0435 1608 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:49:59.0435 1608 aspnet_state - ok
17:49:59.0466 1608 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:49:59.0482 1608 AsyncMac - ok
17:49:59.0497 1608 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:49:59.0497 1608 atapi - ok
17:49:59.0544 1608 [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:49:59.0544 1608 AtiHDAudioService - ok
17:49:59.0607 1608 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:49:59.0638 1608 AudioEndpointBuilder - ok
17:49:59.0716 1608 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:49:59.0716 1608 AudioSrv - ok
17:49:59.0778 1608 [ 96B4456F1DCA4EDA506ED31C7D2D6B05 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys
17:49:59.0778 1608 Avgfwfd - ok
17:49:59.0872 1608 [ BD5D11CEDBCDE4FA97D2387E7069B1FF ] avgfws C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
17:49:59.0887 1608 avgfws - ok
17:50:00.0075 1608 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
17:50:00.0106 1608 AVGIDSAgent - ok
17:50:00.0168 1608 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
17:50:00.0168 1608 AVGIDSDriver - ok
17:50:00.0199 1608 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
17:50:00.0199 1608 AVGIDSFilter - ok
17:50:00.0231 1608 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
17:50:00.0246 1608 AVGIDSHA - ok
17:50:00.0277 1608 [ 221FEBAB02D6C97C95558348CC354A85 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
17:50:00.0277 1608 Avgldx64 - ok
17:50:00.0293 1608 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
17:50:00.0293 1608 Avgmfx64 - ok
17:50:00.0324 1608 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
17:50:00.0324 1608 Avgrkx64 - ok
17:50:00.0355 1608 [ F8C3C7ED612A41B05C66358FC9786BFD ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
17:50:00.0355 1608 Avgtdia - ok
17:50:00.0402 1608 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
17:50:00.0402 1608 avgwd - ok
17:50:00.0449 1608 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:50:00.0449 1608 AxInstSV - ok
17:50:00.0480 1608 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:50:00.0480 1608 b06bdrv - ok
17:50:00.0558 1608 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:50:00.0558 1608 b57nd60a - ok
17:50:00.0589 1608 [ 326E77EA6E9BF27C7CD2837D65DB96C7 ] BazisVirtualCDBus C:\Windows\system32\DRIVERS\BazisVirtualCDBus.sys
17:50:00.0589 1608 BazisVirtualCDBus - ok
17:50:00.0636 1608 [ 93EE7D9C35AE7E9FFDA148D7805F1421 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:50:00.0636 1608 BBSvc - ok
17:50:00.0683 1608 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
17:50:00.0761 1608 BCM43XX - ok
17:50:00.0777 1608 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:50:00.0777 1608 BDESVC - ok
17:50:00.0808 1608 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:50:00.0808 1608 Beep - ok
17:50:00.0886 1608 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:50:00.0917 1608 BFE - ok
17:50:00.0948 1608 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
17:50:00.0979 1608 BITS - ok
17:50:00.0995 1608 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
17:50:00.0995 1608 blbdrive - ok
17:50:01.0042 1608 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:50:01.0057 1608 Bonjour Service - ok
17:50:01.0089 1608 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:50:01.0089 1608 bowser - ok
17:50:01.0104 1608 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:50:01.0104 1608 BrFiltLo - ok
17:50:01.0120 1608 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:50:01.0120 1608 BrFiltUp - ok
17:50:01.0135 1608 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:50:01.0135 1608 BridgeMP - ok
17:50:01.0167 1608 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:50:01.0167 1608 Browser - ok
17:50:01.0213 1608 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:50:01.0229 1608 Brserid - ok
17:50:01.0229 1608 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:50:01.0229 1608 BrSerWdm - ok
17:50:01.0229 1608 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:50:01.0245 1608 BrUsbMdm - ok
17:50:01.0245 1608 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:50:01.0245 1608 BrUsbSer - ok
17:50:01.0245 1608 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:50:01.0245 1608 BTHMODEM - ok
17:50:01.0276 1608 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:50:01.0276 1608 bthserv - ok
17:50:01.0291 1608 catchme - ok
17:50:01.0323 1608 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:50:01.0323 1608 cdfs - ok
17:50:01.0338 1608 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:50:01.0354 1608 cdrom - ok
17:50:01.0369 1608 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:50:01.0369 1608 CertPropSvc - ok
17:50:01.0385 1608 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:50:01.0385 1608 circlass - ok
17:50:01.0416 1608 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:50:01.0416 1608 CLFS - ok
17:50:01.0494 1608 [ 524DC3807CB1746225F9D26ADD19C319 ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
17:50:01.0494 1608 CLKMSVC10_38F51D56 - ok
17:50:01.0557 1608 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:50:01.0557 1608 clr_optimization_v2.0.50727_32 - ok
17:50:01.0588 1608 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:50:01.0588 1608 clr_optimization_v2.0.50727_64 - ok
17:50:01.0666 1608 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:50:01.0666 1608 clr_optimization_v4.0.30319_32 - ok
17:50:01.0744 1608 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:50:01.0744 1608 clr_optimization_v4.0.30319_64 - ok
17:50:01.0806 1608 [ E13A438F9E51DD034730678E33B73290 ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
17:50:01.0806 1608 clwvd - ok
17:50:01.0837 1608 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
17:50:01.0837 1608 CmBatt - ok
17:50:01.0853 1608 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:50:01.0853 1608 cmdide - ok
17:50:01.0900 1608 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:50:01.0900 1608 CNG - ok
17:50:01.0915 1608 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
17:50:01.0915 1608 Compbatt - ok
17:50:01.0931 1608 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:50:01.0931 1608 CompositeBus - ok
17:50:01.0931 1608 COMSysApp - ok
17:50:01.0962 1608 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:50:01.0978 1608 crcdisk - ok
17:50:02.0009 1608 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:50:02.0009 1608 CryptSvc - ok
17:50:02.0040 1608 [ C7259495924D21F1AFA26467D9F4DAE0 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
17:50:02.0040 1608 dc3d - ok
17:50:02.0103 1608 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:50:02.0103 1608 DcomLaunch - ok
17:50:02.0134 1608 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:50:02.0134 1608 defragsvc - ok
17:50:02.0149 1608 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:50:02.0149 1608 DfsC - ok
17:50:02.0181 1608 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:50:02.0181 1608 Dhcp - ok
17:50:02.0212 1608 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:50:02.0212 1608 discache - ok
17:50:02.0227 1608 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
17:50:02.0243 1608 Disk - ok
17:50:02.0259 1608 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:50:02.0274 1608 Dnscache - ok
17:50:02.0305 1608 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:50:02.0305 1608 dot3svc - ok
17:50:02.0383 1608 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:50:02.0383 1608 DPS - ok
17:50:02.0415 1608 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:50:02.0415 1608 drmkaud - ok
17:50:02.0446 1608 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:50:02.0446 1608 DXGKrnl - ok
17:50:02.0477 1608 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:50:02.0477 1608 EapHost - ok
17:50:02.0617 1608 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:50:02.0727 1608 ebdrv - ok
17:50:02.0773 1608 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:50:02.0789 1608 EFS - ok
17:50:02.0836 1608 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:50:02.0867 1608 ehRecvr - ok
17:50:02.0867 1608 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:50:02.0867 1608 ehSched - ok
17:50:02.0898 1608 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:50:02.0929 1608 elxstor - ok
17:50:02.0929 1608 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:50:02.0929 1608 ErrDev - ok
17:50:02.0976 1608 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:50:02.0992 1608 EventSystem - ok
17:50:03.0054 1608 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:50:03.0070 1608 exfat - ok
17:50:03.0101 1608 ezSharedSvc - ok
17:50:03.0179 1608 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:50:03.0179 1608 fastfat - ok
17:50:03.0241 1608 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:50:03.0257 1608 Fax - ok
17:50:03.0288 1608 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
17:50:03.0288 1608 fdc - ok
17:50:03.0319 1608 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:50:03.0319 1608 fdPHost - ok
17:50:03.0319 1608 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:50:03.0335 1608 FDResPub - ok
17:50:03.0351 1608 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:50:03.0351 1608 FileInfo - ok
17:50:03.0351 1608 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:50:03.0366 1608 Filetrace - ok
17:50:03.0366 1608 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:50:03.0366 1608 flpydisk - ok
17:50:03.0382 1608 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:50:03.0382 1608 FltMgr - ok
17:50:03.0444 1608 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:50:03.0522 1608 FontCache - ok
17:50:03.0569 1608 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:50:03.0569 1608 FontCache3.0.0.0 - ok
17:50:03.0616 1608 [ 2074A85A6B8F84A5A9C60B915B465FAF ] FPLService C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
17:50:03.0616 1608 FPLService - ok
17:50:03.0647 1608 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:50:03.0647 1608 FsDepends - ok
17:50:03.0663 1608 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:50:03.0678 1608 Fs_Rec - ok
17:50:03.0756 1608 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:50:03.0756 1608 fvevol - ok
17:50:03.0803 1608 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:50:03.0803 1608 gagp30kx - ok
17:50:03.0850 1608 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
17:50:03.0865 1608 GamesAppService - ok
17:50:03.0897 1608 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:50:03.0897 1608 GEARAspiWDM - ok
17:50:03.0943 1608 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:50:04.0021 1608 gpsvc - ok
17:50:04.0037 1608 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
17:50:04.0037 1608 hamachi - ok
17:50:04.0177 1608 [ F10C3F2E002100BF8B797DCF283FEA7D ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
17:50:04.0193 1608 Hamachi2Svc - ok
17:50:04.0209 1608 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:50:04.0209 1608 hcw85cir - ok
17:50:04.0287 1608 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:50:04.0287 1608 HdAudAddService - ok
17:50:04.0318 1608 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:50:04.0318 1608 HDAudBus - ok
17:50:04.0318 1608 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:50:04.0318 1608 HidBatt - ok
17:50:04.0333 1608 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:50:04.0333 1608 HidBth - ok
17:50:04.0333 1608 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
17:50:04.0333 1608 HidIr - ok
17:50:04.0365 1608 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
17:50:04.0365 1608 hidserv - ok
17:50:04.0380 1608 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:50:04.0380 1608 HidUsb - ok
17:50:04.0411 1608 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:50:04.0427 1608 hkmsvc - ok
17:50:04.0443 1608 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:50:04.0443 1608 HomeGroupListener - ok
17:50:04.0474 1608 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:50:04.0474 1608 HomeGroupProvider - ok
17:50:04.0536 1608 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:50:04.0536 1608 HP Support Assistant Service - ok
17:50:04.0583 1608 [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
17:50:04.0599 1608 HPClientSvc - ok
17:50:04.0661 1608 [ C5D2F308E1C12A5C328EF549696DBC05 ] hpCMSrv C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
17:50:04.0661 1608 hpCMSrv - ok
17:50:04.0708 1608 [ B19FF523B533A3F198B9239E1749C940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:50:04.0708 1608 HPDrvMntSvc.exe - ok
17:50:04.0770 1608 [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
17:50:04.0770 1608 hpdskflt - ok
17:50:04.0817 1608 [ 01091B900E15878B4434F9C726C4541D ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:50:04.0817 1608 hpqwmiex - ok
17:50:04.0833 1608 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:50:04.0848 1608 HpSAMD - ok
17:50:04.0864 1608 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv C:\Windows\system32\Hpservice.exe
17:50:04.0864 1608 hpsrv - ok
17:50:04.0926 1608 [ 491CE9B6321FB74E4B37AF2C47F98434 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
17:50:04.0926 1608 HPWMISVC - ok
17:50:04.0957 1608 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:50:04.0973 1608 HTTP - ok
17:50:04.0989 1608 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:50:04.0989 1608 hwpolicy - ok
17:50:05.0004 1608 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:50:05.0004 1608 i8042prt - ok
17:50:05.0051 1608 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:50:05.0051 1608 iaStorV - ok
17:50:05.0113 1608 [ 3A0FF117B4ADC5ABE4D968E26A337158 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
17:50:05.0129 1608 IconMan_R - ok
17:50:05.0178 1608 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:50:05.0256 1608 idsvc - ok
17:50:05.0288 1608 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:50:05.0288 1608 iirsp - ok
17:50:05.0334 1608 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:50:05.0412 1608 IKEEXT - ok
17:50:05.0412 1608 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:50:05.0412 1608 intelide - ok
17:50:05.0428 1608 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
17:50:05.0428 1608 intelppm - ok
17:50:05.0444 1608 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:50:05.0444 1608 IPBusEnum - ok
17:50:05.0459 1608 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:50:05.0459 1608 IpFilterDriver - ok
17:50:05.0568 1608 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:50:05.0584 1608 iphlpsvc - ok
17:50:05.0615 1608 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:50:05.0615 1608 IPMIDRV - ok
17:50:05.0631 1608 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:50:05.0631 1608 IPNAT - ok
17:50:05.0678 1608 [ 755E4BA6DCE627A2683BB7640553C8D6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:50:05.0693 1608 iPod Service - ok
17:50:05.0740 1608 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:50:05.0740 1608 IRENUM - ok
17:50:05.0740 1608 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:50:05.0756 1608 isapnp - ok
17:50:05.0787 1608 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:50:05.0787 1608 iScsiPrt - ok
17:50:05.0802 1608 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:50:05.0802 1608 kbdclass - ok
17:50:05.0818 1608 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:50:05.0818 1608 kbdhid - ok
17:50:05.0818 1608 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:50:05.0834 1608 KeyIso - ok
17:50:05.0865 1608 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:50:05.0865 1608 KSecDD - ok
17:50:05.0896 1608 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:50:05.0896 1608 KSecPkg - ok
17:50:05.0912 1608 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:50:05.0927 1608 ksthunk - ok
17:50:05.0958 1608 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:50:05.0958 1608 KtmRm - ok
17:50:05.0990 1608 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
17:50:05.0990 1608 LanmanServer - ok
17:50:06.0021 1608 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:50:06.0021 1608 LanmanWorkstation - ok
17:50:06.0036 1608 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:50:06.0036 1608 lltdio - ok
17:50:06.0068 1608 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:50:06.0068 1608 lltdsvc - ok
17:50:06.0099 1608 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:50:06.0099 1608 lmhosts - ok
17:50:06.0130 1608 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:50:06.0146 1608 LSI_FC - ok
17:50:06.0161 1608 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:50:06.0161 1608 LSI_SAS - ok
17:50:06.0177 1608 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:50:06.0177 1608 LSI_SAS2 - ok
17:50:06.0177 1608 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:50:06.0177 1608 LSI_SCSI - ok
17:50:06.0192 1608 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:50:06.0208 1608 luafv - ok
17:50:06.0239 1608 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
17:50:06.0255 1608 LVRS64 - ok
17:50:06.0458 1608 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
17:50:06.0645 1608 LVUVC64 - ok
17:50:06.0692 1608 [ 922CBAC7B992B9614CAB7122F4BF9406 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
17:50:06.0692 1608 ManyCam - ok
17:50:06.0738 1608 [ 34A42DD7CF525D0D2C5232916496E4B8 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
17:50:06.0738 1608 mcaudrv_simple - ok
17:50:06.0754 1608 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:50:06.0770 1608 Mcx2Svc - ok
17:50:06.0785 1608 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
17:50:06.0785 1608 megasas - ok
17:50:06.0816 1608 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:50:06.0816 1608 MegaSR - ok
17:50:06.0863 1608 Microsoft SharePoint Workspace Audit Service - ok
17:50:06.0894 1608 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:50:06.0894 1608 MMCSS - ok
17:50:06.0910 1608 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:50:06.0910 1608 Modem - ok
17:50:06.0926 1608 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:50:06.0926 1608 monitor - ok
17:50:06.0941 1608 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:50:06.0941 1608 mouclass - ok
17:50:06.0957 1608 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:50:06.0957 1608 mouhid - ok
17:50:06.0988 1608 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:50:06.0988 1608 mountmgr - ok
17:50:07.0019 1608 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:50:07.0019 1608 MozillaMaintenance - ok
17:50:07.0097 1608 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:50:07.0097 1608 mpio - ok
17:50:07.0128 1608 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:50:07.0128 1608 mpsdrv - ok
17:50:07.0160 1608 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:50:07.0191 1608 MpsSvc - ok
17:50:07.0222 1608 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:50:07.0222 1608 MRxDAV - ok
17:50:07.0253 1608 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:50:07.0253 1608 mrxsmb - ok
17:50:07.0331 1608 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:50:07.0331 1608 mrxsmb10 - ok
17:50:07.0347 1608 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:50:07.0347 1608 mrxsmb20 - ok
17:50:07.0378 1608 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:50:07.0378 1608 msahci - ok
17:50:07.0394 1608 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:50:07.0394 1608 msdsm - ok
17:50:07.0487 1608 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:50:07.0487 1608 MSDTC - ok
17:50:07.0503 1608 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:50:07.0503 1608 Msfs - ok
17:50:07.0518 1608 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:50:07.0518 1608 mshidkmdf - ok
17:50:07.0550 1608 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:50:07.0550 1608 msisadrv - ok
17:50:07.0565 1608 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:50:07.0581 1608 MSiSCSI - ok
17:50:07.0581 1608 msiserver - ok
17:50:07.0596 1608 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:50:07.0596 1608 MSKSSRV - ok
17:50:07.0596 1608 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:50:07.0596 1608 MSPCLOCK - ok
17:50:07.0612 1608 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:50:07.0612 1608 MSPQM - ok
17:50:07.0628 1608 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:50:07.0643 1608 MsRPC - ok
17:50:07.0643 1608 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:50:07.0643 1608 mssmbios - ok
17:50:07.0674 1608 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:50:07.0674 1608 MSTEE - ok
17:50:07.0690 1608 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:50:07.0690 1608 MTConfig - ok
17:50:07.0721 1608 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:50:07.0721 1608 Mup - ok
17:50:07.0752 1608 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:50:07.0768 1608 napagent - ok
17:50:07.0830 1608 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:50:07.0830 1608 NativeWifiP - ok
17:50:07.0877 1608 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:50:07.0908 1608 NDIS - ok
17:50:07.0908 1608 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:50:07.0908 1608 NdisCap - ok
17:50:07.0940 1608 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:50:07.0940 1608 NdisTapi - ok
17:50:07.0955 1608 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:50:07.0955 1608 Ndisuio - ok
17:50:08.0033 1608 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:50:08.0033 1608 NdisWan - ok
17:50:08.0049 1608 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:50:08.0064 1608 NDProxy - ok
17:50:08.0096 1608 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:50:08.0111 1608 NetBIOS - ok
17:50:08.0127 1608 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:50:08.0142 1608 NetBT - ok
17:50:08.0174 1608 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:50:08.0189 1608 Netlogon - ok
17:50:08.0220 1608 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:50:08.0236 1608 Netman - ok
17:50:08.0267 1608 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:08.0267 1608 NetMsmqActivator - ok
17:50:08.0283 1608 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:08.0283 1608 NetPipeActivator - ok
17:50:08.0345 1608 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:50:08.0345 1608 netprofm - ok
17:50:08.0423 1608 [ A98071E3E1E5E503462CC9E0DED91A36 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
17:50:08.0501 1608 netr28x - ok
17:50:08.0517 1608 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:08.0517 1608 NetTcpActivator - ok
17:50:08.0517 1608 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:50:08.0517 1608 NetTcpPortSharing - ok
17:50:08.0564 1608 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:50:08.0564 1608 nfrd960 - ok
17:50:08.0626 1608 [ 1B57976ACCFBBCFEB101AE702C7A740A ] NitroDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
17:50:08.0642 1608 NitroDriverReadSpool2 - ok
17:50:08.0673 1608 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:50:08.0673 1608 NlaSvc - ok
17:50:08.0798 1608 [ 60EF6771E349EB9173142AB34AFC5A4C ] nlsX86cc C:\Windows\SysWOW64\NLSSRV32.EXE
17:50:08.0798 1608 nlsX86cc - ok
17:50:08.0829 1608 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:50:08.0829 1608 Npfs - ok
17:50:08.0860 1608 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:50:08.0860 1608 nsi - ok
17:50:08.0891 1608 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:50:08.0891 1608 nsiproxy - ok
17:50:08.0954 1608 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:50:09.0047 1608 Ntfs - ok
17:50:09.0063 1608 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:50:09.0063 1608 Null - ok
17:50:09.0094 1608 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
17:50:09.0094 1608 NVENETFD - ok
17:50:09.0110 1608 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:50:09.0125 1608 nvraid - ok
17:50:09.0156 1608 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:50:09.0156 1608 nvstor - ok
17:50:09.0172 1608 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:50:09.0172 1608 nv_agp - ok
17:50:09.0203 1608 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:50:09.0203 1608 ohci1394 - ok
17:50:09.0281 1608 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:50:09.0281 1608 ose - ok
17:50:09.0468 1608 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:50:09.0609 1608 osppsvc - ok
17:50:09.0656 1608 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:50:09.0671 1608 p2pimsvc - ok
17:50:09.0702 1608 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:50:09.0702 1608 p2psvc - ok
17:50:09.0749 1608 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
17:50:09.0749 1608 Parport - ok
17:50:09.0780 1608 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:50:09.0780 1608 partmgr - ok
17:50:09.0796 1608 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:50:09.0796 1608 PcaSvc - ok
17:50:09.0874 1608 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:50:09.0874 1608 pci - ok
17:50:09.0890 1608 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:50:09.0890 1608 pciide - ok
17:50:09.0936 1608 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:50:09.0952 1608 pcmcia - ok
17:50:09.0968 1608 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:50:09.0968 1608 pcw - ok
17:50:09.0999 1608 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:50:10.0014 1608 PEAUTH - ok
17:50:10.0046 1608 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:50:10.0046 1608 PerfHost - ok
17:50:10.0124 1608 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:50:10.0248 1608 pla - ok
17:50:10.0295 1608 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:50:10.0295 1608 PlugPlay - ok
17:50:10.0326 1608 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:50:10.0342 1608 PNRPAutoReg - ok
17:50:10.0373 1608 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:50:10.0389 1608 PNRPsvc - ok
17:50:10.0404 1608 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
17:50:10.0404 1608 Point64 - ok
17:50:10.0436 1608 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:50:10.0436 1608 PolicyAgent - ok
17:50:10.0467 1608 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:50:10.0482 1608 Power - ok
17:50:10.0498 1608 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:50:10.0498 1608 PptpMiniport - ok
17:50:10.0529 1608 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
17:50:10.0529 1608 Processor - ok
17:50:10.0560 1608 PROCEXP151 - ok
17:50:10.0592 1608 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:50:10.0592 1608 ProfSvc - ok
17:50:10.0607 1608 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:50:10.0607 1608 ProtectedStorage - ok
17:50:10.0638 1608 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:50:10.0654 1608 Psched - ok
17:50:10.0685 1608 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:50:10.0763 1608 ql2300 - ok
17:50:10.0794 1608 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:50:10.0810 1608 ql40xx - ok
17:50:10.0810 1608 QWAVE - ok
17:50:10.0841 1608 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:50:10.0841 1608 QWAVEdrv - ok
17:50:10.0857 1608 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:50:10.0857 1608 RasAcd - ok
17:50:10.0888 1608 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:50:10.0888 1608 RasAgileVpn - ok
17:50:10.0919 1608 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:50:10.0919 1608 RasAuto - ok
17:50:10.0935 1608 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:50:10.0935 1608 Rasl2tp - ok
17:50:11.0013 1608 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:50:11.0028 1608 RasMan - ok
17:50:11.0044 1608 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:50:11.0044 1608 RasPppoe - ok
17:50:11.0060 1608 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:50:11.0060 1608 RasSstp - ok
17:50:11.0138 1608 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:50:11.0138 1608 rdbss - ok
17:50:11.0169 1608 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:50:11.0169 1608 rdpbus - ok
17:50:11.0184 1608 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:50:11.0184 1608 RDPCDD - ok
17:50:11.0200 1608 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:50:11.0200 1608 RDPENCDD - ok
17:50:11.0216 1608 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:50:11.0216 1608 RDPREFMP - ok
17:50:11.0262 1608 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:50:11.0262 1608 RDPWD - ok
17:50:11.0262 1608 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:50:11.0262 1608 rdyboost - ok
17:50:11.0309 1608 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:50:11.0309 1608 RemoteAccess - ok
17:50:11.0340 1608 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:50:11.0356 1608 RemoteRegistry - ok
17:50:11.0403 1608 [ 085D18C71AB2611A3D61528132B6501E ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
17:50:11.0403 1608 RoxioNow Service - ok
17:50:11.0418 1608 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:50:11.0434 1608 RpcEptMapper - ok
17:50:11.0450 1608 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:50:11.0450 1608 RpcLocator - ok
17:50:11.0481 1608 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:50:11.0496 1608 RpcSs - ok
17:50:11.0528 1608 [ 9D21618E7A3B2C75CF1A2ECBBE723730 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
17:50:11.0528 1608 RSPCIESTOR - ok
17:50:11.0543 1608 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:50:11.0543 1608 rspndr - ok
17:50:11.0590 1608 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:50:11.0590 1608 RTL8167 - ok
17:50:11.0621 1608 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:50:11.0621 1608 SamSs - ok
17:50:11.0824 1608 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
17:50:11.0824 1608 SASDIFSV - ok
17:50:11.0840 1608 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
17:50:11.0840 1608 SASKUTIL - ok
17:50:11.0886 1608 [ 687CDADD7B13529E6D6EDA30B3F67051 ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
17:50:11.0886 1608 SbieDrv - ok
17:50:11.0902 1608 [ 4CDB30762D89264FF570D2C64BA9B8A6 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
17:50:11.0902 1608 SbieSvc - ok
17:50:11.0918 1608 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:50:11.0933 1608 sbp2port - ok
17:50:11.0980 1608 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:50:11.0980 1608 SCardSvr - ok
17:50:11.0996 1608 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:50:11.0996 1608 scfilter - ok
17:50:12.0074 1608 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:50:12.0105 1608 Schedule - ok
17:50:12.0167 1608 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:50:12.0167 1608 SCPolicySvc - ok
17:50:12.0214 1608 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:50:12.0214 1608 sdbus - ok
17:50:12.0245 1608 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:50:12.0245 1608 SDRSVC - ok
17:50:12.0308 1608 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:50:12.0308 1608 SeaPort - ok
17:50:12.0354 1608 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:50:12.0354 1608 secdrv - ok
17:50:12.0354 1608 seclogon - ok
17:50:12.0417 1608 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
17:50:12.0417 1608 SENS - ok
17:50:12.0432 1608 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:50:12.0432 1608 SensrSvc - ok
17:50:12.0448 1608 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
17:50:12.0464 1608 Serenum - ok
17:50:12.0464 1608 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
17:50:12.0464 1608 Serial - ok
17:50:12.0479 1608 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:50:12.0479 1608 sermouse - ok
17:50:12.0510 1608 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:50:12.0510 1608 SessionEnv - ok
17:50:12.0526 1608 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:50:12.0526 1608 sffdisk - ok
17:50:12.0542 1608 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:50:12.0542 1608 sffp_mmc - ok
17:50:12.0542 1608 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:50:12.0542 1608 sffp_sd - ok
17:50:12.0557 1608 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:50:12.0557 1608 sfloppy - ok
17:50:12.0651 1608 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:50:12.0666 1608 SharedAccess - ok
17:50:12.0822 1608 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:50:12.0822 1608 ShellHWDetection - ok
17:50:12.0854 1608 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:50:12.0854 1608 SiSRaid2 - ok
17:50:12.0854 1608 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:50:12.0854 1608 SiSRaid4 - ok
17:50:12.0916 1608 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:50:12.0916 1608 SkypeUpdate - ok
17:50:12.0947 1608 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:50:12.0947 1608 Smb - ok
17:50:12.0978 1608 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:50:12.0978 1608 SNMPTRAP - ok
17:50:13.0025 1608 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:50:13.0025 1608 spldr - ok
17:50:13.0103 1608 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:50:13.0103 1608 Spooler - ok
17:50:13.0228 1608 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:50:13.0353 1608 sppsvc - ok
17:50:13.0384 1608 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:50:13.0384 1608 sppuinotify - ok
17:50:13.0415 1608 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:50:13.0431 1608 srv - ok
17:50:13.0462 1608 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:50:13.0478 1608 srv2 - ok
17:50:13.0493 1608 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:50:13.0493 1608 SrvHsfHDA - ok
17:50:13.0602 1608 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:50:13.0649 1608 SrvHsfV92 - ok
17:50:13.0696 1608 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:50:13.0836 1608 SrvHsfWinac - ok
17:50:13.0868 1608 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:50:13.0883 1608 srvnet - ok
17:50:13.0930 1608 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
17:50:13.0930 1608 ssadbus - ok
17:50:13.0961 1608 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
17:50:13.0961 1608 ssadmdfl - ok
17:50:13.0992 1608 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
17:50:13.0992 1608 ssadmdm - ok
17:50:14.0086 1608 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
17:50:14.0086 1608 ssadserd - ok
17:50:14.0117 1608 [ ED161B91FDF7EAA39469D72D463D5F4E ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
17:50:14.0117 1608 sscdbus - ok
17:50:14.0148 1608 [ 4CB09E77593DBD8D7AF33B37375CA715 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
17:50:14.0164 1608 sscdmdfl - ok
17:50:14.0180 1608 [ C7B4CF53497A6E5363F3439427663882 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
17:50:14.0180 1608 sscdmdm - ok
17:50:14.0242 1608 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:50:14.0242 1608 SSDPSRV - ok
17:50:14.0258 1608 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:50:14.0258 1608 SstpSvc - ok
17:50:14.0414 1608 [ 20E27AA5BCC01C2149830C05FE22F675 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
17:50:14.0414 1608 STacSV - ok
17:50:14.0445 1608 Steam Client Service - ok
17:50:14.0492 1608 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:50:14.0492 1608 stexstor - ok
17:50:14.0570 1608 [ BEB37CE4E7456F5EFA52D783D1E06D8C ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
17:50:14.0570 1608 STHDA - ok
17:50:14.0632 1608 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:50:14.0648 1608 stisvc - ok
17:50:14.0679 1608 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:50:14.0679 1608 swenum - ok
17:50:14.0819 1608 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:50:14.0835 1608 swprv - ok
17:50:14.0866 1608 [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:50:14.0882 1608 SynTP - ok
17:50:14.0944 1608 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:50:15.0022 1608 SysMain - ok
17:50:15.0084 1608 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:50:15.0084 1608 TabletInputService - ok
17:50:15.0147 1608 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:50:15.0162 1608 TapiSrv - ok
17:50:15.0178 1608 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:50:15.0178 1608 TBS - ok
17:50:15.0256 1608 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:50:15.0272 1608 Tcpip - ok
17:50:15.0381 1608 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:50:15.0396 1608 TCPIP6 - ok
17:50:15.0428 1608 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:50:15.0443 1608 tcpipreg - ok
17:50:15.0459 1608 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:50:15.0459 1608 TDPIPE - ok
17:50:15.0490 1608 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:50:15.0490 1608 TDTCP - ok
17:50:15.0521 1608 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:50:15.0521 1608 tdx - ok
17:50:15.0552 1608 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:50:15.0552 1608 TermDD - ok
17:50:15.0599 1608 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:50:15.0630 1608 TermService - ok
17:50:15.0646 1608 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:50:15.0662 1608 Themes - ok
17:50:15.0693 1608 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:50:15.0693 1608 THREADORDER - ok
17:50:15.0864 1608 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:50:15.0864 1608 TrkWks - ok
17:50:15.0927 1608 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:50:15.0927 1608 TrustedInstaller - ok
17:50:15.0958 1608 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:50:15.0958 1608 tssecsrv - ok
17:50:15.0958 1608 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:50:15.0958 1608 TsUsbFlt - ok
17:50:15.0989 1608 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:50:15.0989 1608 TsUsbGD - ok
17:50:16.0005 1608 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:50:16.0005 1608 tunnel - ok
17:50:16.0005 1608 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:50:16.0020 1608 uagp35 - ok
17:50:16.0083 1608 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:50:16.0083 1608 udfs - ok
17:50:16.0130 1608 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:50:16.0145 1608 UI0Detect - ok
17:50:16.0161 1608 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:50:16.0161 1608 uliagpkx - ok
17:50:16.0176 1608 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:50:16.0176 1608 umbus - ok
17:50:16.0192 1608 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
17:50:16.0192 1608 UmPass - ok
17:50:16.0239 1608 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:50:16.0239 1608 UMVPFSrv - ok
17:50:16.0286 1608 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:50:16.0286 1608 upnphost - ok
17:50:16.0317 1608 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:50:16.0317 1608 usbaudio - ok
17:50:16.0348 1608 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:50:16.0348 1608 usbccgp - ok
17:50:16.0379 1608 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:50:16.0379 1608 usbcir - ok
17:50:16.0395 1608 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:50:16.0395 1608 usbehci - ok
17:50:16.0473 1608 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:50:16.0473 1608 usbhub - ok
17:50:16.0488 1608 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:50:16.0488 1608 usbohci - ok
17:50:16.0504 1608 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:50:16.0504 1608 usbprint - ok
17:50:16.0535 1608 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:50:16.0535 1608 usbscan - ok
17:50:16.0551 1608 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:50:16.0551 1608 USBSTOR - ok
17:50:16.0582 1608 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:50:16.0582 1608 usbuhci - ok
17:50:16.0613 1608 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:50:16.0613 1608 usbvideo - ok
17:50:16.0644 1608 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:50:16.0644 1608 UxSms - ok
17:50:16.0676 1608 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:50:16.0676 1608 VaultSvc - ok
17:50:16.0676 1608 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:50:16.0691 1608 vdrvroot - ok
17:50:16.0832 1608 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:50:16.0878 1608 vds - ok
17:50:16.0910 1608 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:50:16.0910 1608 vga - ok
17:50:16.0925 1608 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:50:16.0925 1608 VgaSave - ok
17:50:16.0941 1608 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:50:16.0941 1608 vhdmp - ok
17:50:16.0941 1608 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:50:16.0941 1608 viaide - ok
17:50:16.0956 1608 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:50:16.0956 1608 volmgr - ok
17:50:17.0034 1608 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:50:17.0034 1608 volmgrx - ok
17:50:17.0050 1608 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:50:17.0050 1608 volsnap - ok
17:50:17.0128 1608 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:50:17.0128 1608 vsmraid - ok
17:50:17.0175 1608 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:50:17.0268 1608 VSS - ok
17:50:17.0300 1608 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:50:17.0300 1608 vwifibus - ok
17:50:17.0331 1608 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:50:17.0331 1608 vwififlt - ok
17:50:17.0393 1608 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:50:17.0409 1608 W32Time - ok
17:50:17.0424 1608 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:50:17.0424 1608 WacomPen - ok
17:50:17.0456 1608 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:50:17.0456 1608 WANARP - ok
17:50:17.0456 1608 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:50:17.0456 1608 Wanarpv6 - ok
17:50:17.0534 1608 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:50:17.0612 1608 WatAdminSvc - ok
17:50:17.0674 1608 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:50:17.0768 1608 wbengine - ok
17:50:17.0908 1608 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:50:17.0908 1608 WbioSrvc - ok
17:50:17.0986 1608 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:50:18.0002 1608 wcncsvc - ok
17:50:18.0017 1608 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:50:18.0017 1608 WcsPlugInService - ok
17:50:18.0048 1608 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
17:50:18.0064 1608 Wd - ok
17:50:18.0142 1608 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:50:18.0267 1608 Wdf01000 - ok
17:50:18.0282 1608 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:50:18.0282 1608 WdiServiceHost - ok
17:50:18.0298 1608 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:50:18.0298 1608 WdiSystemHost - ok
17:50:18.0329 1608 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:50:18.0345 1608 WebClient - ok
17:50:18.0407 1608 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:50:18.0423 1608 Wecsvc - ok
17:50:18.0438 1608 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:50:18.0438 1608 wercplsupport - ok
17:50:18.0470 1608 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:50:18.0470 1608 WerSvc - ok
17:50:18.0501 1608 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:50:18.0501 1608 WfpLwf - ok
17:50:18.0516 1608 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:50:18.0516 1608 WIMMount - ok
17:50:18.0548 1608 WinDefend - ok
17:50:18.0563 1608 WinHttpAutoProxySvc - ok
17:50:18.0610 1608 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:50:18.0610 1608 Winmgmt - ok
17:50:18.0672 1608 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:50:18.0782 1608 WinRM - ok
17:50:18.0844 1608 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
17:50:18.0844 1608 WinUsb - ok
17:50:18.0891 1608 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:50:18.0906 1608 Wlansvc - ok
17:50:18.0953 1608 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:50:18.0969 1608 wlcrasvc - ok
17:50:19.0062 1608 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:50:19.0078 1608 wlidsvc - ok
17:50:19.0109 1608 [ 680A7846370000D20D7E74917D5B7936 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
17:50:19.0125 1608 WmBEnum - ok
17:50:19.0140 1608 [ 14C35BA8189C6F65D839163AA285E954 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
17:50:19.0140 1608 WmFilter - ok
17:50:19.0156 1608 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:50:19.0156 1608 WmiAcpi - ok
17:50:19.0203 1608 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:50:19.0203 1608 wmiApSrv - ok
17:50:19.0234 1608 WMPNetworkSvc - ok
17:50:19.0265 1608 [ 8488DD91A3EE54A8E29F02AD7BB8201E ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
17:50:19.0265 1608 WmVirHid - ok
17:50:19.0281 1608 [ 14802B3A30AA849C97CB968CCC813BF3 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
17:50:19.0281 1608 WmXlCore - ok
17:50:19.0328 1608 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:50:19.0328 1608 WPCSvc - ok
17:50:19.0359 1608 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:50:19.0374 1608 WPDBusEnum - ok
17:50:19.0421 1608 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:50:19.0421 1608 ws2ifsl - ok
17:50:19.0437 1608 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
17:50:19.0437 1608 wscsvc - ok
17:50:19.0452 1608 WSearch - ok
17:50:19.0530 1608 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:50:19.0624 1608 wuauserv - ok
17:50:19.0671 1608 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:50:19.0671 1608 WudfPf - ok
17:50:19.0749 1608 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:50:19.0811 1608 WUDFRd - ok
17:50:19.0889 1608 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:50:19.0889 1608 wudfsvc - ok
17:50:19.0967 1608 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:50:19.0967 1608 WwanSvc - ok
17:50:19.0983 1608 X6va006 - ok
17:50:20.0030 1608 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
17:50:20.0030 1608 xusb21 - ok
17:50:20.0186 1608 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
17:50:20.0186 1608 YahooAUService - ok
17:50:20.0217 1608 ================ Scan global ===============================
17:50:20.0264 1608 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:50:20.0295 1608 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
17:50:20.0310 1608 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
17:50:20.0342 1608 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:50:20.0373 1608 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:50:20.0373 1608 [Global] - ok
17:50:20.0373 1608 ================ Scan MBR ==================================
17:50:20.0388 1608 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:50:21.0153 1608 \Device\Harddisk0\DR0 - ok
17:50:21.0153 1608 ================ Scan VBR ==================================
17:50:21.0153 1608 [ D03A20C2F52C735684860DBB35ED2645 ] \Device\Harddisk0\DR0\Partition1
17:50:21.0153 1608 \Device\Harddisk0\DR0\Partition1 - ok
17:50:21.0168 1608 [ FC8C46FA8943904F2AA72DDA9DFC7624 ] \Device\Harddisk0\DR0\Partition2
17:50:21.0168 1608 \Device\Harddisk0\DR0\Partition2 - ok
17:50:21.0200 1608 [ 252A36EBEFF2E325D4CE13A22B87FAAA ] \Device\Harddisk0\DR0\Partition3
17:50:21.0215 1608 \Device\Harddisk0\DR0\Partition3 - ok
17:50:21.0215 1608 [ 15C1A71C423831B5897BC2B0183C9F91 ] \Device\Harddisk0\DR0\Partition4
17:50:21.0215 1608 \Device\Harddisk0\DR0\Partition4 - ok
17:50:21.0215 1608 ============================================================
17:50:21.0215 1608 Scan finished
17:50:21.0215 1608 ============================================================
17:50:21.0233 1144 Detected object count: 0
17:50:21.0233 1144 Actual detected object count: 0
17:50:33.0757 3044 Deinitialize success

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 10/02/2012 at 07:02 PM

Application Version : 5.5.1022

Core Rules Database Version : 9330
Trace Rules Database Version: 7142

Scan type : Complete Scan
Total Scan Time : 01:09:17

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 698
Memory threats detected : 0
Registry items scanned : 69020
Registry threats detected : 0
File items scanned : 70483
File threats detected : 1

Adware.Tracking Cookie
msnbcmedia.msn.com [ C:\USERS\TONY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\V8RBECH2 ]

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:39 PM

Posted 03 October 2012 - 08:31 PM

Wow a tracking cookie!!

I suspect we need a deeper look. Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users