Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Being redirected to sites other than what I was going for


  • Please log in to reply
10 replies to this topic

#1 Drift

Drift

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:41 PM

Posted 04 October 2012 - 06:33 PM

Also, it seems to only happen when I use Google Chrome, searched a couple of times with Firefox and gave me no trouble. Did the same with IE and still nothing was out of the ordinary.

Haven't done anything yet other that use Defogger and disabled CD Emulation Drivers.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:41 PM

Posted 04 October 2012 - 06:34 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Drift

Drift
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:41 PM

Posted 19 November 2012 - 06:02 AM

I sincerely apologize for taking so long with this, I do hope I can still get some help with this but it seems like things had gotten worse with some of the things the programs have found...But before I get ahead of myself, here are the logs.

TDSSKiller


18:56:38.0135 2828 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:56:38.0524 2828 ============================================================
18:56:38.0524 2828 Current date / time: 2012/11/18 18:56:38.0524
18:56:38.0524 2828 SystemInfo:
18:56:38.0524 2828
18:56:38.0525 2828 OS Version: 6.1.7601 ServicePack: 1.0
18:56:38.0525 2828 Product type: Workstation
18:56:38.0525 2828 ComputerName: SANDY-HP
18:56:38.0525 2828 UserName: Sandy
18:56:38.0525 2828 Windows directory: C:\Windows
18:56:38.0525 2828 System windows directory: C:\Windows
18:56:38.0525 2828 Running under WOW64
18:56:38.0525 2828 Processor architecture: Intel x64
18:56:38.0525 2828 Number of processors: 2
18:56:38.0525 2828 Page size: 0x1000
18:56:38.0525 2828 Boot type: Safe boot with network
18:56:38.0525 2828 ============================================================
18:56:39.0112 2828 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:56:39.0116 2828 ============================================================
18:56:39.0116 2828 \Device\Harddisk0\DR0:
18:56:39.0116 2828 MBR partitions:
18:56:39.0116 2828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:56:39.0116 2828 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x380E8800
18:56:39.0116 2828 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3814C800, BlocksNum 0x2205800
18:56:39.0116 2828 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
18:56:39.0116 2828 ============================================================
18:56:39.0146 2828 C: <-> \Device\Harddisk0\DR0\Partition2
18:56:39.0193 2828 D: <-> \Device\Harddisk0\DR0\Partition3
18:56:39.0194 2828 ============================================================
18:56:39.0194 2828 Initialize success
18:56:39.0194 2828 ============================================================
18:56:40.0898 2940 ============================================================
18:56:40.0898 2940 Scan started
18:56:40.0898 2940 Mode: Manual;
18:56:40.0898 2940 ============================================================
18:56:45.0346 2940 ================ Scan system memory ========================
18:56:45.0346 2940 System memory - ok
18:56:45.0347 2940 ================ Scan services =============================
18:56:45.0771 2940 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:56:45.0774 2940 1394ohci - ok
18:56:45.0808 2940 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:56:45.0812 2940 ACPI - ok
18:56:45.0898 2940 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:56:45.0899 2940 AcpiPmi - ok
18:56:45.0972 2940 [ 09E61047B0CEF21559CFCEDF4F14D216 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
18:56:46.0007 2940 Ad-Aware Service - ok
18:56:46.0074 2940 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
18:56:46.0076 2940 adfs - ok
18:56:46.0207 2940 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:56:46.0211 2940 AdobeFlashPlayerUpdateSvc - ok
18:56:46.0235 2940 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:56:46.0241 2940 adp94xx - ok
18:56:46.0303 2940 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:56:46.0308 2940 adpahci - ok
18:56:46.0391 2940 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:56:46.0403 2940 adpu320 - ok
18:56:46.0525 2940 [ E690647AE0B4111E3D82FCE27FDFD9B4 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
18:56:46.0532 2940 AdvancedSystemCareService5 - ok
18:56:46.0616 2940 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:56:46.0623 2940 AeLookupSvc - ok
18:56:46.0692 2940 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
18:56:46.0694 2940 AERTFilters - ok
18:56:46.0736 2940 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:56:46.0741 2940 AFD - ok
18:56:46.0834 2940 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
18:56:46.0865 2940 AgereSoftModem - ok
18:56:46.0947 2940 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:56:46.0948 2940 agp440 - ok
18:56:47.0093 2940 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
18:56:47.0093 2940 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
18:56:47.0099 2940 Akamai ( HiddenFile.Multi.Generic ) - warning
18:56:47.0100 2940 Akamai - detected HiddenFile.Multi.Generic (1)
18:56:47.0134 2940 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:56:47.0136 2940 ALG - ok
18:56:47.0162 2940 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:56:47.0164 2940 aliide - ok
18:56:47.0200 2940 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:56:47.0202 2940 amdide - ok
18:56:47.0230 2940 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:56:47.0232 2940 AmdK8 - ok
18:56:47.0244 2940 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:56:47.0246 2940 AmdPPM - ok
18:56:47.0272 2940 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:56:47.0274 2940 amdsata - ok
18:56:47.0310 2940 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:56:47.0313 2940 amdsbs - ok
18:56:47.0330 2940 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:56:47.0332 2940 amdxata - ok
18:56:47.0361 2940 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
18:56:47.0363 2940 androidusb - ok
18:56:47.0388 2940 [ AD12F5C7251BB8D575D560894E73CBBA ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
18:56:47.0390 2940 Apowersoft_AudioDevice - ok
18:56:47.0418 2940 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:56:47.0420 2940 AppID - ok
18:56:47.0521 2940 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:56:47.0523 2940 AppIDSvc - ok
18:56:47.0545 2940 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:56:47.0547 2940 Appinfo - ok
18:56:47.0668 2940 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:56:47.0672 2940 Apple Mobile Device - ok
18:56:47.0706 2940 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:56:47.0708 2940 arc - ok
18:56:47.0771 2940 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:56:47.0776 2940 arcsas - ok
18:56:47.0968 2940 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:56:48.0004 2940 aspnet_state - ok
18:56:48.0016 2940 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:56:48.0017 2940 AsyncMac - ok
18:56:48.0047 2940 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:56:48.0048 2940 atapi - ok
18:56:48.0161 2940 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
18:56:48.0192 2940 athr - ok
18:56:48.0293 2940 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:56:48.0301 2940 AudioEndpointBuilder - ok
18:56:48.0311 2940 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:56:48.0316 2940 AudioSrv - ok
18:56:48.0347 2940 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:56:48.0349 2940 AxInstSV - ok
18:56:48.0400 2940 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:56:48.0408 2940 b06bdrv - ok
18:56:48.0481 2940 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:56:48.0485 2940 b57nd60a - ok
18:56:48.0595 2940 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
18:56:48.0598 2940 BBSvc - ok
18:56:48.0774 2940 [ 0E7A9264576B40638A3FBC804DE1FF76 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
18:56:48.0793 2940 BCM43XX - ok
18:56:48.0828 2940 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:56:48.0830 2940 BDESVC - ok
18:56:48.0858 2940 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:56:48.0859 2940 Beep - ok
18:56:48.0877 2940 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:56:48.0878 2940 blbdrive - ok
18:56:48.0973 2940 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:56:48.0979 2940 Bonjour Service - ok
18:56:49.0005 2940 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:56:49.0006 2940 bowser - ok
18:56:49.0042 2940 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:56:49.0044 2940 BrFiltLo - ok
18:56:49.0063 2940 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:56:49.0064 2940 BrFiltUp - ok
18:56:49.0109 2940 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:56:49.0111 2940 Browser - ok
18:56:49.0153 2940 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:56:49.0157 2940 Brserid - ok
18:56:49.0177 2940 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:56:49.0179 2940 BrSerWdm - ok
18:56:49.0226 2940 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:56:49.0227 2940 BrUsbMdm - ok
18:56:49.0241 2940 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:56:49.0242 2940 BrUsbSer - ok
18:56:49.0274 2940 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
18:56:49.0276 2940 BthEnum - ok
18:56:49.0296 2940 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:56:49.0297 2940 BTHMODEM - ok
18:56:49.0347 2940 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
18:56:49.0350 2940 BthPan - ok
18:56:49.0411 2940 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
18:56:49.0418 2940 BTHPORT - ok
18:56:49.0477 2940 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:56:49.0479 2940 bthserv - ok
18:56:49.0519 2940 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
18:56:49.0521 2940 BTHUSB - ok
18:56:49.0595 2940 [ A17EEDC1B59232346753D5E9A652CE26 ] CATmobile C:\Program Files (x86)\T-Mobile\webConnect Manager\conappssvc.exe
18:56:49.0599 2940 CATmobile - ok
18:56:49.0621 2940 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:56:49.0623 2940 cdfs - ok
18:56:49.0649 2940 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:56:49.0652 2940 cdrom - ok
18:56:49.0671 2940 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:56:49.0673 2940 CertPropSvc - ok
18:56:49.0695 2940 [ 533328A3D9A9C286682525842547540C ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
18:56:49.0699 2940 CinemaNow Service - ok
18:56:49.0746 2940 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:56:49.0748 2940 circlass - ok
18:56:49.0783 2940 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:56:49.0788 2940 CLFS - ok
18:56:49.0888 2940 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:56:49.0892 2940 clr_optimization_v2.0.50727_32 - ok
18:56:49.0939 2940 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:56:49.0942 2940 clr_optimization_v2.0.50727_64 - ok
18:56:49.0999 2940 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:56:50.0083 2940 clr_optimization_v4.0.30319_32 - ok
18:56:50.0096 2940 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:56:50.0161 2940 clr_optimization_v4.0.30319_64 - ok
18:56:50.0189 2940 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:56:50.0195 2940 CmBatt - ok
18:56:50.0243 2940 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:56:50.0244 2940 cmdide - ok
18:56:50.0286 2940 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
18:56:50.0292 2940 CNG - ok
18:56:50.0305 2940 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:56:50.0307 2940 Compbatt - ok
18:56:50.0336 2940 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:56:50.0337 2940 CompositeBus - ok
18:56:50.0340 2940 COMSysApp - ok
18:56:50.0397 2940 [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64 C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
18:56:50.0398 2940 cpudrv64 - ok
18:56:50.0439 2940 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:56:50.0440 2940 crcdisk - ok
18:56:50.0476 2940 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:56:50.0479 2940 CryptSvc - ok
18:56:50.0555 2940 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
18:56:50.0569 2940 cvhsvc - ok
18:56:50.0632 2940 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:56:50.0833 2940 DcomLaunch - ok
18:56:50.0855 2940 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:56:50.0859 2940 defragsvc - ok
18:56:50.0904 2940 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
18:56:50.0906 2940 Desura Install Service - ok
18:56:50.0954 2940 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:56:50.0955 2940 DfsC - ok
18:56:50.0971 2940 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:56:50.0975 2940 Dhcp - ok
18:56:51.0007 2940 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:56:51.0008 2940 discache - ok
18:56:51.0019 2940 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:56:51.0020 2940 Disk - ok
18:56:51.0039 2940 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:56:51.0042 2940 Dnscache - ok
18:56:51.0070 2940 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:56:51.0074 2940 dot3svc - ok
18:56:51.0109 2940 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:56:51.0112 2940 DPS - ok
18:56:51.0137 2940 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:56:51.0138 2940 drmkaud - ok
18:56:51.0178 2940 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:56:51.0180 2940 dtsoftbus01 - ok
18:56:51.0217 2940 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:56:51.0231 2940 DXGKrnl - ok
18:56:51.0235 2940 EagleX64 - ok
18:56:51.0253 2940 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:56:51.0255 2940 EapHost - ok
18:56:51.0361 2940 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:56:51.0441 2940 ebdrv - ok
18:56:51.0667 2940 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:56:51.0669 2940 EFS - ok
18:56:51.0729 2940 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:56:51.0737 2940 ehRecvr - ok
18:56:51.0760 2940 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:56:51.0763 2940 ehSched - ok
18:56:51.0829 2940 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:56:51.0836 2940 elxstor - ok
18:56:51.0909 2940 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:56:51.0911 2940 ErrDev - ok
18:56:51.0975 2940 esgiguard - ok
18:56:52.0049 2940 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:56:52.0054 2940 EventSystem - ok
18:56:52.0095 2940 [ D83EB7ADE99D99A4CD6568AC1261D35E ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
18:56:52.0099 2940 ewusbnet - ok
18:56:52.0134 2940 [ 86F7951BBCEE4A86E79A97306BD14318 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
18:56:52.0137 2940 ew_hwusbdev - ok
18:56:52.0170 2940 [ 55E0EDA185869F7EA67EA97FD0655B39 ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
18:56:52.0171 2940 ew_usbenumfilter - ok
18:56:52.0197 2940 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:56:52.0200 2940 exfat - ok
18:56:52.0215 2940 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:56:52.0233 2940 fastfat - ok
18:56:52.0272 2940 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:56:52.0280 2940 Fax - ok
18:56:52.0321 2940 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:56:52.0322 2940 fdc - ok
18:56:52.0358 2940 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:56:52.0359 2940 fdPHost - ok
18:56:52.0368 2940 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:56:52.0369 2940 FDResPub - ok
18:56:52.0386 2940 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:56:52.0387 2940 FileInfo - ok
18:56:52.0410 2940 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:56:52.0411 2940 Filetrace - ok
18:56:52.0453 2940 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:56:52.0461 2940 FLEXnet Licensing Service - ok
18:56:52.0518 2940 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:56:52.0519 2940 flpydisk - ok
18:56:52.0558 2940 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:56:52.0562 2940 FltMgr - ok
18:56:52.0608 2940 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:56:52.0639 2940 FontCache - ok
18:56:52.0710 2940 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:56:52.0712 2940 FontCache3.0.0.0 - ok
18:56:52.0731 2940 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:56:52.0733 2940 FsDepends - ok
18:56:52.0765 2940 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
18:56:52.0767 2940 fssfltr - ok
18:56:52.0843 2940 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
18:56:52.0896 2940 fsssvc - ok
18:56:52.0936 2940 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:56:52.0938 2940 Fs_Rec - ok
18:56:52.0972 2940 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:56:52.0975 2940 fvevol - ok
18:56:53.0012 2940 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:56:53.0014 2940 gagp30kx - ok
18:56:53.0117 2940 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
18:56:53.0120 2940 GamesAppService - ok
18:56:53.0151 2940 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:56:53.0152 2940 GEARAspiWDM - ok
18:56:53.0204 2940 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:56:53.0213 2940 gpsvc - ok
18:56:53.0280 2940 [ 721CE1551F8198714F3CABFE2147939B ] Gun C:\Game\SoftnyxGame\GunBoundIS\Gun64.sys
18:56:53.0283 2940 Gun - ok
18:56:53.0357 2940 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:56:53.0360 2940 gupdate - ok
18:56:53.0364 2940 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:56:53.0365 2940 gupdatem - ok
18:56:53.0478 2940 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:56:53.0481 2940 gusvc - ok
18:56:53.0507 2940 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:56:53.0508 2940 hamachi - ok
18:56:53.0764 2940 [ 848BB54F18819EC6D7B255B38697E239 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
18:56:53.0820 2940 Hamachi2Svc - ok
18:56:53.0879 2940 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:56:53.0880 2940 hcw85cir - ok
18:56:53.0928 2940 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:56:53.0933 2940 HdAudAddService - ok
18:56:53.0982 2940 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:56:53.0984 2940 HDAudBus - ok
18:56:54.0025 2940 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:56:54.0025 2940 HECIx64 - ok
18:56:54.0054 2940 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:56:54.0055 2940 HidBatt - ok
18:56:54.0079 2940 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:56:54.0081 2940 HidBth - ok
18:56:54.0098 2940 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:56:54.0100 2940 HidIr - ok
18:56:54.0185 2940 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:56:54.0187 2940 hidserv - ok
18:56:54.0247 2940 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:56:54.0248 2940 HidUsb - ok
18:56:54.0336 2940 [ FD1837DEE0A1D7F180D7B301C0656511 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
18:56:54.0338 2940 HiPatchService - ok
18:56:54.0367 2940 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:56:54.0369 2940 hkmsvc - ok
18:56:54.0400 2940 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:56:54.0405 2940 HomeGroupListener - ok
18:56:54.0419 2940 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:56:54.0425 2940 HomeGroupProvider - ok
18:56:54.0506 2940 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
18:56:54.0508 2940 HP Support Assistant Service - ok
18:56:54.0535 2940 [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
18:56:54.0540 2940 HP Wireless Assistant Service - ok
18:56:54.0589 2940 [ B19FF523B533A3F198B9239E1749C940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:56:54.0594 2940 HPDrvMntSvc.exe - ok
18:56:54.0628 2940 [ 01091B900E15878B4434F9C726C4541D ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:56:54.0646 2940 hpqwmiex - ok
18:56:54.0717 2940 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:56:54.0719 2940 HpSAMD - ok
18:56:54.0848 2940 [ 77C15D7E8F002A173EEBFF0B20CD697D ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
18:56:54.0849 2940 HPWMISVC - ok
18:56:54.0885 2940 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:56:54.0894 2940 HTTP - ok
18:56:54.0948 2940 [ 6E05228393CD614B983568EC40C262C3 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
18:56:54.0952 2940 hwdatacard - ok
18:56:54.0975 2940 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:56:54.0976 2940 hwpolicy - ok
18:56:55.0001 2940 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:56:55.0004 2940 i8042prt - ok
18:56:55.0214 2940 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:56:55.0218 2940 iaStor - ok
18:56:55.0544 2940 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
18:56:55.0546 2940 IAStorDataMgrSvc - ok
18:56:55.0589 2940 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:56:55.0594 2940 iaStorV - ok
18:56:55.0703 2940 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:56:55.0706 2940 IDriverT - ok
18:56:55.0774 2940 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:56:55.0799 2940 idsvc - ok
18:56:56.0038 2940 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:56:56.0255 2940 igfx - ok
18:56:56.0322 2940 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:56:56.0324 2940 iirsp - ok
18:56:56.0379 2940 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:56:56.0393 2940 IKEEXT - ok
18:56:56.0476 2940 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:56:56.0533 2940 IntcAzAudAddService - ok
18:56:56.0582 2940 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
18:56:56.0585 2940 IntcDAud - ok
18:56:56.0644 2940 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:56:56.0645 2940 intelide - ok
18:56:56.0668 2940 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:56:56.0677 2940 intelppm - ok
18:56:56.0709 2940 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:56:56.0712 2940 IPBusEnum - ok
18:56:56.0749 2940 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:56:56.0751 2940 IpFilterDriver - ok
18:56:56.0801 2940 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:56:56.0803 2940 IPMIDRV - ok
18:56:56.0839 2940 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:56:56.0841 2940 IPNAT - ok
18:56:56.0937 2940 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:56:56.0967 2940 iPod Service - ok
18:56:56.0994 2940 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:56:56.0995 2940 IRENUM - ok
18:56:57.0031 2940 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:56:57.0033 2940 isapnp - ok
18:56:57.0076 2940 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:56:57.0080 2940 iScsiPrt - ok
18:56:57.0110 2940 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:56:57.0111 2940 kbdclass - ok
18:56:57.0147 2940 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:56:57.0178 2940 kbdhid - ok
18:56:57.0201 2940 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:56:57.0202 2940 KeyIso - ok
18:56:57.0236 2940 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:56:57.0238 2940 KSecDD - ok
18:56:57.0265 2940 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:56:57.0267 2940 KSecPkg - ok
18:56:57.0293 2940 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:56:57.0296 2940 ksthunk - ok
18:56:57.0344 2940 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:56:57.0350 2940 KtmRm - ok
18:56:57.0464 2940 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:56:57.0468 2940 LanmanServer - ok
18:56:57.0509 2940 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:56:57.0535 2940 LanmanWorkstation - ok
18:56:57.0574 2940 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:56:57.0575 2940 lltdio - ok
18:56:57.0769 2940 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:56:57.0774 2940 lltdsvc - ok
18:56:57.0807 2940 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:56:57.0809 2940 lmhosts - ok
18:56:57.0875 2940 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:56:57.0880 2940 LMS - ok
18:56:57.0930 2940 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:56:57.0932 2940 LSI_FC - ok
18:56:57.0973 2940 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:56:57.0975 2940 LSI_SAS - ok
18:56:58.0020 2940 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:56:58.0021 2940 LSI_SAS2 - ok
18:56:58.0048 2940 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:56:58.0050 2940 LSI_SCSI - ok
18:56:58.0111 2940 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:56:58.0113 2940 luafv - ok
18:56:58.0145 2940 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
18:56:58.0147 2940 mcdbus - ok
18:56:58.0217 2940 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:56:58.0220 2940 Mcx2Svc - ok
18:56:58.0265 2940 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:56:58.0266 2940 megasas - ok
18:56:58.0311 2940 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:56:58.0315 2940 MegaSR - ok
18:56:58.0365 2940 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:56:58.0368 2940 MMCSS - ok
18:56:58.0403 2940 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:56:58.0405 2940 Modem - ok
18:56:58.0427 2940 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:56:58.0429 2940 monitor - ok
18:56:58.0457 2940 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:56:58.0457 2940 mouclass - ok
18:56:58.0470 2940 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:56:58.0471 2940 mouhid - ok
18:56:58.0496 2940 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:56:58.0498 2940 mountmgr - ok
18:56:58.0586 2940 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:56:58.0588 2940 MozillaMaintenance - ok
18:56:58.0638 2940 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:56:58.0641 2940 mpio - ok
18:56:58.0689 2940 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:56:58.0691 2940 mpsdrv - ok
18:56:58.0738 2940 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:56:58.0740 2940 MRxDAV - ok
18:56:58.0778 2940 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:56:58.0780 2940 mrxsmb - ok
18:56:58.0816 2940 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:56:58.0820 2940 mrxsmb10 - ok
18:56:58.0830 2940 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:56:58.0832 2940 mrxsmb20 - ok
18:56:58.0852 2940 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:56:58.0853 2940 msahci - ok
18:56:58.0890 2940 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:56:58.0892 2940 msdsm - ok
18:56:58.0937 2940 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:56:58.0941 2940 MSDTC - ok
18:56:58.0979 2940 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:56:58.0981 2940 Msfs - ok
18:56:58.0989 2940 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:56:58.0990 2940 mshidkmdf - ok
18:56:59.0007 2940 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:56:59.0008 2940 msisadrv - ok
18:56:59.0045 2940 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:56:59.0048 2940 MSiSCSI - ok
18:56:59.0052 2940 msiserver - ok
18:56:59.0084 2940 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:56:59.0086 2940 MSKSSRV - ok
18:56:59.0101 2940 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:56:59.0102 2940 MSPCLOCK - ok
18:56:59.0116 2940 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:56:59.0118 2940 MSPQM - ok
18:56:59.0158 2940 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:56:59.0163 2940 MsRPC - ok
18:56:59.0213 2940 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:56:59.0214 2940 mssmbios - ok
18:56:59.0235 2940 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:56:59.0237 2940 MSTEE - ok
18:56:59.0256 2940 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:56:59.0257 2940 MTConfig - ok
18:56:59.0294 2940 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:56:59.0295 2940 Mup - ok
18:56:59.0339 2940 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:56:59.0346 2940 napagent - ok
18:56:59.0379 2940 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:56:59.0385 2940 NativeWifiP - ok
18:56:59.0389 2940 ncvet.dll - ok
18:56:59.0444 2940 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:56:59.0460 2940 NDIS - ok
18:56:59.0515 2940 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:56:59.0517 2940 NdisCap - ok
18:56:59.0760 2940 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:56:59.0763 2940 NdisTapi - ok
18:56:59.0802 2940 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:56:59.0803 2940 Ndisuio - ok
18:56:59.0831 2940 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:56:59.0834 2940 NdisWan - ok
18:56:59.0852 2940 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:56:59.0853 2940 NDProxy - ok
18:56:59.0886 2940 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:56:59.0887 2940 NetBIOS - ok
18:56:59.0927 2940 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:56:59.0930 2940 NetBT - ok
18:56:59.0946 2940 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:56:59.0947 2940 Netlogon - ok
18:56:59.0999 2940 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:57:00.0004 2940 Netman - ok
18:57:00.0081 2940 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:57:00.0085 2940 NetMsmqActivator - ok
18:57:00.0090 2940 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:57:00.0091 2940 NetPipeActivator - ok
18:57:00.0116 2940 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:57:00.0123 2940 netprofm - ok
18:57:00.0128 2940 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:57:00.0129 2940 NetTcpActivator - ok
18:57:00.0134 2940 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:57:00.0135 2940 NetTcpPortSharing - ok
18:57:00.0662 2940 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
18:57:00.0776 2940 netw5v64 - ok
18:57:00.0834 2940 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:57:00.0836 2940 nfrd960 - ok
18:57:00.0890 2940 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:57:00.0894 2940 NlaSvc - ok
18:57:00.0952 2940 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:57:00.0953 2940 Npfs - ok
18:57:00.0958 2940 npggsvc - ok
18:57:00.0963 2940 NPPTNT2 - ok
18:57:00.0992 2940 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:57:00.0994 2940 nsi - ok
18:57:01.0014 2940 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:57:01.0015 2940 nsiproxy - ok
18:57:01.0067 2940 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:57:01.0109 2940 Ntfs - ok
18:57:01.0161 2940 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:57:01.0161 2940 Null - ok
18:57:01.0198 2940 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:57:01.0201 2940 nvraid - ok
18:57:01.0222 2940 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:57:01.0225 2940 nvstor - ok
18:57:01.0262 2940 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:57:01.0264 2940 nv_agp - ok
18:57:01.0347 2940 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:57:01.0352 2940 odserv - ok
18:57:01.0471 2940 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:57:01.0473 2940 ohci1394 - ok
18:57:01.0510 2940 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:57:01.0513 2940 ose - ok
18:57:01.0665 2940 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:57:01.0789 2940 osppsvc - ok
18:57:01.0840 2940 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:57:01.0845 2940 p2pimsvc - ok
18:57:01.0889 2940 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:57:01.0895 2940 p2psvc - ok
18:57:01.0949 2940 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:57:01.0952 2940 Parport - ok
18:57:01.0989 2940 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:57:01.0990 2940 partmgr - ok
18:57:02.0021 2940 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:57:02.0025 2940 PcaSvc - ok
18:57:02.0059 2940 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:57:02.0061 2940 pci - ok
18:57:02.0090 2940 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:57:02.0091 2940 pciide - ok
18:57:02.0138 2940 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:57:02.0142 2940 pcmcia - ok
18:57:02.0172 2940 [ 876FD95B7A3B7FE6179FBD16E7A6486C ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
18:57:02.0178 2940 PCTCore - ok
18:57:02.0238 2940 [ B5D3C24E4EA8E6D4850E83DAD8C510D4 ] PCTINDIS5X64 C:\Windows\system32\PCTINDIS5X64.SYS
18:57:02.0241 2940 PCTINDIS5X64 - ok
18:57:02.0269 2940 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:57:02.0271 2940 pcw - ok
18:57:02.0300 2940 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:57:02.0307 2940 PEAUTH - ok
18:57:02.0426 2940 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:57:02.0570 2940 PerfHost - ok
18:57:02.0645 2940 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:57:02.0679 2940 pla - ok
18:57:02.0782 2940 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:57:02.0788 2940 PlugPlay - ok
18:57:02.0865 2940 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:57:02.0867 2940 PNRPAutoReg - ok
18:57:02.0885 2940 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:57:02.0888 2940 PNRPsvc - ok
18:57:02.0927 2940 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:57:02.0933 2940 PolicyAgent - ok
18:57:03.0000 2940 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:57:03.0003 2940 Power - ok
18:57:03.0037 2940 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:57:03.0039 2940 PptpMiniport - ok
18:57:03.0076 2940 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:57:03.0078 2940 Processor - ok
18:57:03.0120 2940 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:57:03.0123 2940 ProfSvc - ok
18:57:03.0134 2940 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:57:03.0135 2940 ProtectedStorage - ok
18:57:03.0168 2940 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:57:03.0170 2940 Psched - ok
18:57:03.0222 2940 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:57:03.0267 2940 ql2300 - ok
18:57:03.0351 2940 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:57:03.0353 2940 ql40xx - ok
18:57:03.0467 2940 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:57:03.0471 2940 QWAVE - ok
18:57:03.0491 2940 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:57:03.0493 2940 QWAVEdrv - ok
18:57:03.0600 2940 [ BF87969494FF4C9068F0D8B4A0A43711 ] rak C:\Game\SoftnyxGame\RakionIS\Bin\rakion64.sys
18:57:03.0602 2940 rak - ok
18:57:03.0622 2940 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:57:03.0623 2940 RasAcd - ok
18:57:03.0651 2940 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:57:03.0652 2940 RasAgileVpn - ok
18:57:03.0679 2940 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:57:03.0682 2940 RasAuto - ok
18:57:03.0717 2940 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:57:03.0719 2940 Rasl2tp - ok
18:57:03.0741 2940 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:57:03.0747 2940 RasMan - ok
18:57:03.0766 2940 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:57:03.0767 2940 RasPppoe - ok
18:57:03.0778 2940 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:57:03.0779 2940 RasSstp - ok
18:57:03.0804 2940 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:57:03.0808 2940 rdbss - ok
18:57:03.0829 2940 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:57:03.0831 2940 rdpbus - ok
18:57:03.0858 2940 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:57:03.0859 2940 RDPCDD - ok
18:57:03.0876 2940 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:57:03.0877 2940 RDPENCDD - ok
18:57:03.0895 2940 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:57:03.0896 2940 RDPREFMP - ok
18:57:04.0011 2940 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:57:04.0012 2940 RdpVideoMiniport - ok
18:57:04.0054 2940 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:57:04.0057 2940 RDPWD - ok
18:57:04.0094 2940 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:57:04.0097 2940 rdyboost - ok
18:57:04.0134 2940 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:57:04.0136 2940 RemoteAccess - ok
18:57:04.0161 2940 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:57:04.0164 2940 RemoteRegistry - ok
18:57:04.0202 2940 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
18:57:04.0204 2940 RFCOMM - ok
18:57:04.0227 2940 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:57:04.0230 2940 RpcEptMapper - ok
18:57:04.0247 2940 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:57:04.0249 2940 RpcLocator - ok
18:57:04.0277 2940 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:57:04.0281 2940 RpcSs - ok
18:57:04.0312 2940 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:57:04.0314 2940 rspndr - ok
18:57:04.0319 2940 RSUSBSTOR - ok
18:57:04.0353 2940 [ 20A466B9EA2BD828C0EC723F99B8CFE7 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:57:04.0355 2940 RTL8167 - ok
18:57:04.0411 2940 [ 4EA7E5DF0CB237156176FA0349E6E87F ] RtVOsdService C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
18:57:04.0416 2940 RtVOsdService - ok
18:57:04.0434 2940 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:57:04.0435 2940 SamSs - ok
18:57:04.0555 2940 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
18:57:04.0622 2940 SBAMSvc - ok
18:57:04.0658 2940 [ 6E342316E72F4B6FA39C99E06373A1A3 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
18:57:04.0659 2940 sbapifs - ok
18:57:04.0704 2940 [ 19954328DDA3D656F8A879B3A46FFED6 ] SbFw C:\Windows\system32\drivers\SbFw.sys
18:57:04.0707 2940 SbFw - ok
18:57:04.0726 2940 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
18:57:04.0727 2940 SBFWIMCL - ok
18:57:04.0733 2940 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
18:57:04.0735 2940 SBFWIMCLMP - ok
18:57:04.0759 2940 [ B671EEF468D13016B9286F5835A06AE1 ] sbhips C:\Windows\system32\drivers\sbhips.sys
18:57:04.0761 2940 sbhips - ok
18:57:04.0824 2940 [ C7E399DBC7B70FDA979013389B1A8DAB ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
18:57:04.0827 2940 SbieDrv - ok
18:57:04.0854 2940 [ 9F64E814007B5B586C123F3820C104A5 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
18:57:04.0856 2940 SbieSvc - ok
18:57:04.0897 2940 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:57:04.0899 2940 sbp2port - ok
18:57:04.0942 2940 [ 9ACEB2A2362FC87A3825963E61BA9076 ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
18:57:04.0943 2940 SBRE - ok
18:57:05.0005 2940 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
18:57:05.0039 2940 SBSDWSCService - ok
18:57:05.0062 2940 [ EAB54ADCCECA64B2F38CD859FB494895 ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
18:57:05.0066 2940 sbwtis - ok
18:57:05.0117 2940 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:57:05.0123 2940 SCardSvr - ok
18:57:05.0153 2940 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:57:05.0154 2940 scfilter - ok
18:57:05.0202 2940 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:57:05.0231 2940 Schedule - ok
18:57:05.0260 2940 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:57:05.0261 2940 SCPolicySvc - ok
18:57:05.0293 2940 [ 490B0B68BB938D5C628EC4A67277BE75 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
18:57:05.0295 2940 ScreamBAudioSvc - ok
18:57:05.0372 2940 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
18:57:05.0374 2940 sdbus - ok
18:57:05.0490 2940 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:57:05.0493 2940 SDRSVC - ok
18:57:05.0557 2940 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
18:57:05.0561 2940 SeaPort - ok
18:57:05.0859 2940 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:57:05.0860 2940 secdrv - ok
18:57:05.0895 2940 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:57:05.0897 2940 seclogon - ok
18:57:05.0928 2940 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:57:05.0930 2940 SENS - ok
18:57:05.0943 2940 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:57:05.0945 2940 SensrSvc - ok
18:57:05.0975 2940 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:57:05.0977 2940 Serenum - ok
18:57:06.0018 2940 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:57:06.0020 2940 Serial - ok
18:57:06.0092 2940 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:57:06.0093 2940 sermouse - ok
18:57:06.0163 2940 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:57:06.0166 2940 SessionEnv - ok
18:57:06.0204 2940 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:57:06.0206 2940 sffdisk - ok
18:57:06.0221 2940 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:57:06.0223 2940 sffp_mmc - ok
18:57:06.0258 2940 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:57:06.0259 2940 sffp_sd - ok
18:57:06.0279 2940 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:57:06.0281 2940 sfloppy - ok
18:57:06.0341 2940 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
18:57:06.0350 2940 Sftfs - ok
18:57:06.0405 2940 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
18:57:06.0454 2940 sftlist - ok
18:57:06.0475 2940 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
18:57:06.0479 2940 Sftplay - ok
18:57:06.0498 2940 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
18:57:06.0499 2940 Sftredir - ok
18:57:06.0518 2940 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
18:57:06.0520 2940 Sftvol - ok
18:57:06.0539 2940 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
18:57:06.0543 2940 sftvsa - ok
18:57:06.0621 2940 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:57:06.0627 2940 ShellHWDetection - ok
18:57:06.0657 2940 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:57:06.0658 2940 SiSRaid2 - ok
18:57:06.0719 2940 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:57:06.0721 2940 SiSRaid4 - ok
18:57:06.0811 2940 [ 4523268768F70049EA95FFDF8354B4FA ] sj C:\AeriaGames\EdenEternal\sjcs64.sys
18:57:06.0813 2940 sj - ok
18:57:06.0943 2940 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
18:57:07.0056 2940 Skype C2C Service - ok
18:57:07.0109 2940 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:57:07.0113 2940 SkypeUpdate - ok
18:57:07.0156 2940 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
18:57:07.0157 2940 SmartDefragDriver - ok
18:57:07.0189 2940 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:57:07.0191 2940 Smb - ok
18:57:07.0246 2940 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:57:07.0248 2940 SNMPTRAP - ok
18:57:07.0313 2940 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:57:07.0314 2940 spldr - ok
18:57:07.0508 2940 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:57:07.0516 2940 Spooler - ok
18:57:07.0619 2940 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:57:07.0688 2940 sppsvc - ok
18:57:07.0802 2940 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:57:07.0804 2940 sppuinotify - ok
18:57:07.0812 2940 sptd - ok
18:57:07.0844 2940 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:57:07.0850 2940 srv - ok
18:57:07.0901 2940 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:57:07.0907 2940 srv2 - ok
18:57:07.0951 2940 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:57:07.0955 2940 SrvHsfHDA - ok
18:57:08.0001 2940 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:57:08.0031 2940 SrvHsfV92 - ok
18:57:08.0064 2940 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:57:08.0078 2940 SrvHsfWinac - ok
18:57:08.0118 2940 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:57:08.0121 2940 srvnet - ok
18:57:08.0164 2940 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
18:57:08.0167 2940 ssadbus - ok
18:57:08.0203 2940 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
18:57:08.0205 2940 ssadmdfl - ok
18:57:08.0255 2940 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
18:57:08.0258 2940 ssadmdm - ok
18:57:08.0389 2940 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
18:57:08.0391 2940 ssadserd - ok
18:57:08.0462 2940 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:57:08.0466 2940 SSDPSRV - ok
18:57:08.0724 2940 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:57:08.0727 2940 SstpSvc - ok
18:57:08.0775 2940 Steam Client Service - ok
18:57:08.0809 2940 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:57:08.0811 2940 stexstor - ok
18:57:08.0870 2940 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:57:08.0878 2940 stisvc - ok
18:57:08.0899 2940 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:57:08.0900 2940 swenum - ok
18:57:09.0027 2940 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
18:57:09.0034 2940 SwitchBoard - ok
18:57:09.0070 2940 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:57:09.0077 2940 swprv - ok
18:57:09.0165 2940 [ 961CFAC2A5318E212F459D651F28E0A4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:57:09.0174 2940 SynTP - ok
18:57:09.0291 2940 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:57:09.0336 2940 SysMain - ok
18:57:09.0364 2940 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:57:09.0367 2940 TabletInputService - ok
18:57:09.0416 2940 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:57:09.0422 2940 TapiSrv - ok
18:57:09.0476 2940 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:57:09.0478 2940 TBS - ok
18:57:09.0555 2940 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:57:09.0601 2940 Tcpip - ok
18:57:09.0634 2940 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:57:09.0645 2940 TCPIP6 - ok
18:57:09.0678 2940 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:57:09.0679 2940 tcpipreg - ok
18:57:09.0727 2940 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:57:09.0729 2940 TDPIPE - ok
18:57:09.0769 2940 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:57:09.0771 2940 TDTCP - ok
18:57:09.0863 2940 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:57:09.0866 2940 tdx - ok
18:57:09.0893 2940 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:57:09.0894 2940 TermDD - ok
18:57:09.0930 2940 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:57:09.0940 2940 TermService - ok
18:57:09.0963 2940 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:57:09.0966 2940 Themes - ok
18:57:09.0999 2940 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:57:10.0000 2940 THREADORDER - ok
18:57:10.0069 2940 [ D44D1FD2A03351BAB109E1FC14D08CFB ] TMobileRcAppSvc C:\Program Files (x86)\T-Mobile\webConnect Manager\RcAppSvc.exe
18:57:10.0071 2940 TMobileRcAppSvc - ok
18:57:10.0105 2940 [ 265CD57B1C3700CDBC0B815791BC3B56 ] tmobile_mf691_dc_enum C:\Windows\system32\DRIVERS\tmobile_mf691_dc_enum.sys
18:57:10.0106 2940 tmobile_mf691_dc_enum - ok
18:57:10.0126 2940 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:57:10.0129 2940 TrkWks - ok
18:57:10.0188 2940 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:57:10.0190 2940 TrustedInstaller - ok
18:57:10.0219 2940 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:57:10.0221 2940 tssecsrv - ok
18:57:10.0264 2940 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:57:10.0266 2940 TsUsbFlt - ok
18:57:10.0308 2940 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:57:10.0310 2940 tunnel - ok
18:57:10.0395 2940 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:57:10.0397 2940 uagp35 - ok
18:57:10.0510 2940 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:57:10.0515 2940 udfs - ok
18:57:10.0569 2940 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:57:10.0571 2940 UI0Detect - ok
18:57:10.0599 2940 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:57:10.0601 2940 uliagpkx - ok
18:57:10.0626 2940 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:57:10.0628 2940 umbus - ok
18:57:10.0660 2940 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:57:10.0662 2940 UmPass - ok
18:57:10.0699 2940 [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
18:57:10.0700 2940 UnlockerDriver5 - ok
18:57:10.0809 2940 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:57:10.0872 2940 UNS - ok
18:57:10.0916 2940 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:57:10.0922 2940 upnphost - ok
18:57:11.0098 2940 [ 786526848586325C94DE1B64DD4D82FF ] uqk C:\koramgame\STOnline\avital\wyqku64.sys
18:57:11.0101 2940 uqk - ok
18:57:11.0145 2940 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
18:57:11.0148 2940 USBAAPL64 - ok
18:57:11.0185 2940 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:57:11.0186 2940 usbccgp - ok
18:57:11.0221 2940 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:57:11.0223 2940 usbcir - ok
18:57:11.0249 2940 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:57:11.0250 2940 usbehci - ok
18:57:11.0275 2940 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:57:11.0279 2940 usbhub - ok
18:57:11.0336 2940 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:57:11.0338 2940 usbohci - ok
18:57:11.0391 2940 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:57:11.0430 2940 usbprint - ok
18:57:11.0493 2940 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:57:11.0494 2940 usbscan - ok
18:57:11.0747 2940 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:57:11.0783 2940 USBSTOR - ok
18:57:11.0819 2940 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:57:11.0821 2940 usbuhci - ok
18:57:11.0843 2940 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:57:11.0846 2940 usbvideo - ok
18:57:11.0910 2940 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:57:11.0912 2940 UxSms - ok
18:57:11.0957 2940 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:57:11.0958 2940 VaultSvc - ok
18:57:11.0974 2940 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:57:11.0975 2940 vdrvroot - ok
18:57:12.0016 2940 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:57:12.0024 2940 vds - ok
18:57:12.0060 2940 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:57:12.0062 2940 vga - ok
18:57:12.0089 2940 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:57:12.0090 2940 VgaSave - ok
18:57:12.0125 2940 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:57:12.0128 2940 vhdmp - ok
18:57:12.0171 2940 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:57:12.0172 2940 viaide - ok
18:57:12.0230 2940 [ B2E25DB5A6A178C056342ABD747B7326 ] vmm C:\Windows\system32\Drivers\vmm.sys
18:57:12.0235 2940 vmm - ok
18:57:12.0302 2940 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:57:12.0304 2940 volmgr - ok
18:57:12.0338 2940 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:57:12.0343 2940 volmgrx - ok
18:57:12.0399 2940 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:57:12.0403 2940 volsnap - ok
18:57:12.0430 2940 [ 6BDCA00FC57CC40DA3C8E88B2CEA21AB ] VPCNetS2 C:\Windows\system32\DRIVERS\VMNetSrv.sys
18:57:12.0431 2940 VPCNetS2 - ok
18:57:12.0465 2940 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:57:12.0468 2940 vsmraid - ok
18:57:12.0537 2940 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:57:12.0582 2940 VSS - ok
18:57:12.0607 2940 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:57:12.0608 2940 vwifibus - ok
18:57:12.0621 2940 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:57:12.0622 2940 vwififlt - ok
18:57:12.0658 2940 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:57:12.0665 2940 W32Time - ok
18:57:12.0741 2940 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:57:12.0743 2940 WacomPen - ok
18:57:12.0797 2940 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:57:12.0799 2940 WANARP - ok
18:57:12.0806 2940 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:57:12.0807 2940 Wanarpv6 - ok
18:57:12.0870 2940 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:57:12.0903 2940 WatAdminSvc - ok
18:57:12.0968 2940 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:57:13.0001 2940 wbengine - ok
18:57:13.0048 2940 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:57:13.0052 2940 WbioSrvc - ok
18:57:13.0087 2940 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:57:13.0094 2940 wcncsvc - ok
18:57:13.0109 2940 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:57:13.0112 2940 WcsPlugInService - ok
18:57:13.0152 2940 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:57:13.0153 2940 Wd - ok
18:57:13.0201 2940 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:57:13.0210 2940 Wdf01000 - ok
18:57:13.0231 2940 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:57:13.0235 2940 WdiServiceHost - ok
18:57:13.0242 2940 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:57:13.0246 2940 WdiSystemHost - ok
18:57:13.0292 2940 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:57:13.0297 2940 WebClient - ok
18:57:13.0323 2940 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:57:13.0327 2940 Wecsvc - ok
18:57:13.0342 2940 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:57:13.0345 2940 wercplsupport - ok
18:57:13.0406 2940 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:57:13.0430 2940 WerSvc - ok
18:57:13.0562 2940 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:57:13.0564 2940 WfpLwf - ok
18:57:13.0696 2940 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:57:13.0699 2940 WIMMount - ok
18:57:13.0719 2940 WinHttpAutoProxySvc - ok
18:57:13.0921 2940 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:57:13.0934 2940 Winmgmt - ok
18:57:14.0004 2940 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:57:14.0060 2940 WinRM - ok
18:57:14.0141 2940 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:57:14.0143 2940 WinUsb - ok
18:57:14.0238 2940 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:57:14.0252 2940 Wlansvc - ok
18:57:14.0326 2940 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:57:14.0328 2940 wlcrasvc - ok
18:57:14.0446 2940 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:57:14.0490 2940 wlidsvc - ok
18:57:14.0532 2940 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:57:14.0533 2940 WmiAcpi - ok
18:57:14.0582 2940 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:57:14.0585 2940 wmiApSrv - ok
18:57:14.0607 2940 WMPNetworkSvc - ok
18:57:14.0642 2940 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:57:14.0644 2940 WPCSvc - ok
18:57:14.0670 2940 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:57:14.0674 2940 WPDBusEnum - ok
18:57:14.0745 2940 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:57:14.0746 2940 ws2ifsl - ok
18:57:14.0753 2940 WSearch - ok
18:57:14.0822 2940 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:57:14.0824 2940 WudfPf - ok
18:57:14.0901 2940 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:57:14.0904 2940 WUDFRd - ok
18:57:14.0936 2940 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:57:14.0963 2940 wudfsvc - ok
18:57:14.0998 2940 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:57:15.0003 2940 WwanSvc - ok
18:57:15.0009 2940 X6va001 - ok
18:57:15.0156 2940 X6va005 - ok
18:57:15.0276 2940 X6va008 - ok
18:57:15.0281 2940 X6va009 - ok
18:57:15.0331 2940 X6va010 - ok
18:57:15.0488 2940 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
18:57:15.0495 2940 YahooAUService - ok
18:57:15.0692 2940 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:57:15.0697 2940 yukonw7 - ok
18:57:15.0716 2940 ================ Scan global ===============================
18:57:15.0824 2940 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:57:15.0853 2940 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
18:57:15.0862 2940 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
18:57:15.0884 2940 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:57:15.0916 2940 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
18:57:15.0921 2940 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
18:57:15.0921 2940 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
18:57:15.0922 2940 ================ Scan MBR ==================================
18:57:15.0956 2940 [ A9D691444202B6B49CC6C7223076F181 ] \Device\Harddisk0\DR0
18:57:16.0170 2940 \Device\Harddisk0\DR0 - ok
18:57:16.0171 2940 ================ Scan VBR ==================================
18:57:16.0173 2940 [ 0ABA7E1837EDA1B165A89E82A5915625 ] \Device\Harddisk0\DR0\Partition1
18:57:16.0175 2940 \Device\Harddisk0\DR0\Partition1 - ok
18:57:16.0216 2940 [ 8EE34FACA9FD81E8F6A09A9E499CC57B ] \Device\Harddisk0\DR0\Partition2
18:57:16.0218 2940 \Device\Harddisk0\DR0\Partition2 - ok
18:57:16.0249 2940 [ 47DE326CFB614F6B3E13AE646FC73864 ] \Device\Harddisk0\DR0\Partition3
18:57:16.0251 2940 \Device\Harddisk0\DR0\Partition3 - ok
18:57:16.0269 2940 [ 12FB96FFE732C2283F273FAE272068CE ] \Device\Harddisk0\DR0\Partition4
18:57:16.0270 2940 \Device\Harddisk0\DR0\Partition4 - ok
18:57:16.0270 2940 ============================================================
18:57:16.0270 2940 Scan finished
18:57:16.0270 2940 ============================================================
18:57:16.0280 1472 Detected object count: 2
18:57:16.0281 1472 Actual detected object count: 2
18:57:45.0643 1472 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
18:57:45.0643 1472 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
18:57:45.0687 1472 C:\Windows\system32\services.exe - copied to quarantine
18:57:46.0738 1472 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
18:57:46.0739 1472 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
18:57:47.0074 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\@ - copied to quarantine
18:57:47.0075 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\00000004.@ - copied to quarantine
18:57:47.0076 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\201d3dde - copied to quarantine
18:57:47.0076 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\55490ac4 - copied to quarantine
18:57:47.0077 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000004.@ - copied to quarantine
18:57:47.0078 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000008.@ - copied to quarantine
18:57:47.0079 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\000000cb.@ - copied to quarantine
18:57:47.0080 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000000.@ - copied to quarantine
18:57:47.0081 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000032.@ - copied to quarantine
18:57:47.0082 1472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000064.@ - copied to quarantine
19:01:44.0605 1472 Backup copy not found, trying to cure infected file..
19:01:44.0605 1472 C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
19:01:44.0605 1472 C:\Windows\system32\services.exe - processing error
19:01:44.0605 1472 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
19:02:01.0832 2604 ============================================================
19:02:01.0832 2604 Scan started
19:02:01.0832 2604 Mode: Manual;
19:02:01.0832 2604 ============================================================
19:02:04.0800 2604 ================ Scan system memory ========================
19:02:04.0800 2604 System memory - ok
19:02:04.0800 2604 ================ Scan services =============================
19:02:05.0106 2604 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:02:05.0108 2604 1394ohci - ok
19:02:05.0143 2604 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:02:05.0145 2604 ACPI - ok
19:02:05.0166 2604 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:02:05.0167 2604 AcpiPmi - ok
19:02:05.0252 2604 [ 09E61047B0CEF21559CFCEDF4F14D216 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
19:02:05.0260 2604 Ad-Aware Service - ok
19:02:05.0287 2604 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
19:02:05.0287 2604 adfs - ok
19:02:05.0410 2604 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:02:05.0411 2604 AdobeFlashPlayerUpdateSvc - ok
19:02:05.0447 2604 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:02:05.0451 2604 adp94xx - ok
19:02:05.0472 2604 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:02:05.0474 2604 adpahci - ok
19:02:05.0510 2604 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:02:05.0511 2604 adpu320 - ok
19:02:05.0637 2604 [ E690647AE0B4111E3D82FCE27FDFD9B4 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
19:02:05.0641 2604 AdvancedSystemCareService5 - ok
19:02:05.0695 2604 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:02:05.0696 2604 AeLookupSvc - ok
19:02:05.0771 2604 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
19:02:05.0772 2604 AERTFilters - ok
19:02:05.0816 2604 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:02:05.0819 2604 AFD - ok
19:02:05.0870 2604 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
19:02:05.0876 2604 AgereSoftModem - ok
19:02:05.0905 2604 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:02:05.0905 2604 agp440 - ok
19:02:06.0073 2604 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
19:02:06.0073 2604 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
19:02:06.0079 2604 Akamai ( HiddenFile.Multi.Generic ) - warning
19:02:06.0079 2604 Akamai - detected HiddenFile.Multi.Generic (1)
19:02:06.0136 2604 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:02:06.0137 2604 ALG - ok
19:02:06.0165 2604 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:02:06.0166 2604 aliide - ok
19:02:06.0202 2604 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:02:06.0203 2604 amdide - ok
19:02:06.0232 2604 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:02:06.0232 2604 AmdK8 - ok
19:02:06.0247 2604 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:02:06.0247 2604 AmdPPM - ok
19:02:06.0274 2604 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:02:06.0275 2604 amdsata - ok
19:02:06.0334 2604 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:02:06.0336 2604 amdsbs - ok
19:02:06.0355 2604 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:02:06.0355 2604 amdxata - ok
19:02:06.0385 2604 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
19:02:06.0386 2604 androidusb - ok
19:02:06.0413 2604 [ AD12F5C7251BB8D575D560894E73CBBA ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
19:02:06.0413 2604 Apowersoft_AudioDevice - ok
19:02:06.0442 2604 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:02:06.0443 2604 AppID - ok
19:02:06.0468 2604 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:02:06.0468 2604 AppIDSvc - ok
19:02:06.0524 2604 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:02:06.0525 2604 Appinfo - ok
19:02:06.0615 2604 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:02:06.0616 2604 Apple Mobile Device - ok
19:02:06.0652 2604 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:02:06.0653 2604 arc - ok
19:02:06.0706 2604 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:02:06.0707 2604 arcsas - ok
19:02:06.0826 2604 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:02:06.0826 2604 aspnet_state - ok
19:02:06.0841 2604 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:02:06.0841 2604 AsyncMac - ok
19:02:06.0871 2604 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:02:06.0872 2604 atapi - ok
19:02:06.0941 2604 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
19:02:06.0949 2604 athr - ok
19:02:06.0995 2604 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:02:06.0999 2604 AudioEndpointBuilder - ok
19:02:07.0016 2604 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:02:07.0026 2604 AudioSrv - ok
19:02:07.0094 2604 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:02:07.0095 2604 AxInstSV - ok
19:02:07.0145 2604 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:02:07.0148 2604 b06bdrv - ok
19:02:07.0231 2604 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:02:07.0232 2604 b57nd60a - ok
19:02:07.0285 2604 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
19:02:07.0287 2604 BBSvc - ok
19:02:07.0415 2604 [ 0E7A9264576B40638A3FBC804DE1FF76 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
19:02:07.0433 2604 BCM43XX - ok
19:02:07.0497 2604 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:02:07.0498 2604 BDESVC - ok
19:02:07.0527 2604 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:02:07.0527 2604 Beep - ok
19:02:07.0546 2604 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:02:07.0546 2604 blbdrive - ok
19:02:07.0620 2604 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:02:07.0627 2604 Bonjour Service - ok
19:02:07.0651 2604 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:02:07.0652 2604 bowser - ok
19:02:07.0689 2604 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:02:07.0689 2604 BrFiltLo - ok
19:02:07.0710 2604 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:02:07.0710 2604 BrFiltUp - ok
19:02:07.0756 2604 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:02:07.0757 2604 Browser - ok
19:02:07.0800 2604 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:02:07.0802 2604 Brserid - ok
19:02:07.0846 2604 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:02:07.0847 2604 BrSerWdm - ok
19:02:07.0895 2604 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:02:07.0895 2604 BrUsbMdm - ok
19:02:07.0910 2604 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:02:07.0910 2604 BrUsbSer - ok
19:02:07.0943 2604 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:02:07.0945 2604 BthEnum - ok
19:02:07.0976 2604 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:02:07.0977 2604 BTHMODEM - ok
19:02:08.0027 2604 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:02:08.0028 2604 BthPan - ok
19:02:08.0080 2604 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:02:08.0083 2604 BTHPORT - ok
19:02:08.0113 2604 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:02:08.0113 2604 bthserv - ok
19:02:08.0199 2604 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:02:08.0200 2604 BTHUSB - ok
19:02:08.0275 2604 [ A17EEDC1B59232346753D5E9A652CE26 ] CATmobile C:\Program Files (x86)\T-Mobile\webConnect Manager\conappssvc.exe
19:02:08.0276 2604 CATmobile - ok
19:02:08.0301 2604 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:02:08.0302 2604 cdfs - ok
19:02:08.0373 2604 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:02:08.0374 2604 cdrom - ok
19:02:08.0407 2604 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:02:08.0408 2604 CertPropSvc - ok
19:02:08.0431 2604 [ 533328A3D9A9C286682525842547540C ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
19:02:08.0432 2604 CinemaNow Service - ok
19:02:08.0515 2604 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:02:08.0516 2604 circlass - ok
19:02:08.0551 2604 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:02:08.0554 2604 CLFS - ok
19:02:08.0634 2604 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:02:08.0635 2604 clr_optimization_v2.0.50727_32 - ok
19:02:08.0674 2604 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:02:08.0675 2604 clr_optimization_v2.0.50727_64 - ok
19:02:08.0723 2604 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:02:08.0725 2604 clr_optimization_v4.0.30319_32 - ok
19:02:08.0742 2604 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:02:08.0744 2604 clr_optimization_v4.0.30319_64 - ok
19:02:08.0836 2604 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:02:08.0836 2604 CmBatt - ok
19:02:08.0879 2604 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:02:08.0879 2604 cmdide - ok
19:02:08.0921 2604 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
19:02:08.0924 2604 CNG - ok
19:02:08.0941 2604 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:02:08.0942 2604 Compbatt - ok
19:02:09.0027 2604 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:02:09.0027 2604 CompositeBus - ok
19:02:09.0032 2604 COMSysApp - ok
19:02:09.0088 2604 [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64 C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
19:02:09.0088 2604 cpudrv64 - ok
19:02:09.0130 2604 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:02:09.0130 2604 crcdisk - ok
19:02:09.0223 2604 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:02:09.0224 2604 CryptSvc - ok
19:02:09.0302 2604 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:02:09.0307 2604 cvhsvc - ok
19:02:09.0357 2604 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:02:09.0361 2604 DcomLaunch - ok
19:02:09.0390 2604 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:02:09.0392 2604 defragsvc - ok
19:02:09.0439 2604 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
19:02:09.0440 2604 Desura Install Service - ok
19:02:09.0523 2604 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:02:09.0523 2604 DfsC - ok
19:02:09.0540 2604 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:02:09.0542 2604 Dhcp - ok
19:02:09.0565 2604 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:02:09.0565 2604 discache - ok
19:02:09.0644 2604 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:02:09.0644 2604 Disk - ok
19:02:09.0686 2604 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:02:09.0687 2604 Dnscache - ok
19:02:09.0750 2604 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:02:09.0752 2604 dot3svc - ok
19:02:09.0778 2604 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:02:09.0780 2604 DPS - ok
19:02:09.0805 2604 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:02:09.0806 2604 drmkaud - ok
19:02:09.0847 2604 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:02:09.0849 2604 dtsoftbus01 - ok
19:02:09.0897 2604 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:02:09.0903 2604 DXGKrnl - ok
19:02:09.0909 2604 EagleX64 - ok
19:02:09.0977 2604 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:02:09.0979 2604 EapHost - ok
19:02:10.0085 2604 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:02:10.0104 2604 ebdrv - ok
19:02:10.0169 2604 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:02:10.0171 2604 EFS - ok
19:02:10.0232 2604 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:02:10.0236 2604 ehRecvr - ok
19:02:10.0274 2604 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:02:10.0275 2604 ehSched - ok
19:02:10.0320 2604 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:02:10.0324 2604 elxstor - ok
19:02:10.0378 2604 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:02:10.0379 2604 ErrDev - ok
19:02:10.0433 2604 esgiguard - ok
19:02:10.0496 2604 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:02:10.0498 2604 EventSystem - ok
19:02:10.0542 2604 [ D83EB7ADE99D99A4CD6568AC1261D35E ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
19:02:10.0543 2604 ewusbnet - ok
19:02:10.0581 2604 [ 86F7951BBCEE4A86E79A97306BD14318 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
19:02:10.0582 2604 ew_hwusbdev - ok
19:02:10.0616 2604 [ 55E0EDA185869F7EA67EA97FD0655B39 ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
19:02:10.0617 2604 ew_usbenumfilter - ok
19:02:10.0643 2604 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:02:10.0645 2604 exfat - ok
19:02:10.0672 2604 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:02:10.0674 2604 fastfat - ok
19:02:10.0708 2604 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:02:10.0712 2604 Fax - ok
19:02:10.0755 2604 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:02:10.0756 2604 fdc - ok
19:02:10.0792 2604 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:02:10.0793 2604 fdPHost - ok
19:02:10.0802 2604 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:02:10.0803 2604 FDResPub - ok
19:02:10.0820 2604 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:02:10.0821 2604 FileInfo - ok
19:02:10.0835 2604 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:02:10.0836 2604 Filetrace - ok
19:02:10.0965 2604 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:02:10.0971 2604 FLEXnet Licensing Service - ok
19:02:11.0020 2604 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:02:11.0020 2604 flpydisk - ok
19:02:11.0059 2604 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:02:11.0061 2604 FltMgr - ok
19:02:11.0109 2604 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:02:11.0116 2604 FontCache - ok
19:02:11.0178 2604 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:02:11.0178 2604 FontCache3.0.0.0 - ok
19:02:11.0199 2604 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:02:11.0200 2604 FsDepends - ok
19:02:11.0234 2604 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
19:02:11.0235 2604 fssfltr - ok
19:02:11.0333 2604 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:02:11.0342 2604 fsssvc - ok
19:02:11.0371 2604 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:02:11.0372 2604 Fs_Rec - ok
19:02:11.0395 2604 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:02:11.0397 2604 fvevol - ok
19:02:11.0435 2604 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:02:11.0436 2604 gagp30kx - ok
19:02:11.0507 2604 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
19:02:11.0508 2604 GamesAppService - ok
19:02:11.0541 2604 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:02:11.0542 2604 GEARAspiWDM - ok
19:02:11.0594 2604 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:02:11.0599 2604 gpsvc - ok
19:02:11.0659 2604 [ 721CE1551F8198714F3CABFE2147939B ] Gun C:\Game\SoftnyxGame\GunBoundIS\Gun64.sys
19:02:11.0660 2604 Gun - ok
19:02:11.0747 2604 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:02:11.0748 2604 gupdate - ok
19:02:11.0754 2604 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:02:11.0755 2604 gupdatem - ok
19:02:11.0789 2604 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:02:11.0790 2604 gusvc - ok
19:02:11.0830 2604 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
19:02:11.0831 2604 hamachi - ok
19:02:11.0920 2604 [ 848BB54F18819EC6D7B255B38697E239 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
19:02:11.0935 2604 Hamachi2Svc - ok
19:02:12.0014 2604 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:02:12.0015 2604 hcw85cir - ok
19:02:12.0064 2604 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:02:12.0066 2604 HdAudAddService - ok
19:02:12.0107 2604 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:02:12.0108 2604 HDAudBus - ok
19:02:12.0149 2604 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:02:12.0150 2604 HECIx64 - ok
19:02:12.0200 2604 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:02:12.0201 2604 HidBatt - ok
19:02:12.0225 2604 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:02:12.0226 2604 HidBth - ok
19:02:12.0256 2604 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:02:12.0256 2604 HidIr - ok
19:02:12.0309 2604 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:02:12.0310 2604 hidserv - ok
19:02:12.0338 2604 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:02:12.0339 2604 HidUsb - ok
19:02:12.0394 2604 [ FD1837DEE0A1D7F180D7B301C0656511 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
19:02:12.0394 2604 HiPatchService - ok
19:02:12.0424 2604 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:02:12.0426 2604 hkmsvc - ok
19:02:12.0458 2604 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:02:12.0460 2604 HomeGroupListener - ok
19:02:12.0476 2604 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:02:12.0478 2604 HomeGroupProvider - ok
19:02:12.0553 2604 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
19:02:12.0553 2604 HP Support Assistant Service - ok
19:02:12.0593 2604 [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
19:02:12.0594 2604 HP Wireless Assistant Service - ok
19:02:12.0647 2604 [ B19FF523B533A3F198B9239E1749C940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
19:02:12.0649 2604 HPDrvMntSvc.exe - ok
19:02:12.0675 2604 [ 01091B900E15878B4434F9C726C4541D ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
19:02:12.0681 2604 hpqwmiex - ok
19:02:12.0719 2604 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:02:12.0720 2604 HpSAMD - ok
19:02:12.0772 2604 [ 77C15D7E8F002A173EEBFF0B20CD697D ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
19:02:12.0773 2604 HPWMISVC - ok
19:02:12.0812 2604 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:02:12.0817 2604 HTTP - ok
19:02:12.0851 2604 [ 6E05228393CD614B983568EC40C262C3 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
19:02:12.0852 2604 hwdatacard - ok
19:02:12.0888 2604 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:02:12.0889 2604 hwpolicy - ok
19:02:12.0910 2604 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:02:12.0911 2604 i8042prt - ok
19:02:12.0949 2604 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
19:02:12.0953 2604 iaStor - ok
19:02:13.0002 2604 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:02:13.0003 2604 IAStorDataMgrSvc - ok
19:02:13.0046 2604 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:02:13.0049 2604 iaStorV - ok
19:02:13.0150 2604 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:02:13.0151 2604 IDriverT - ok
19:02:13.0220 2604 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:02:13.0226 2604 idsvc - ok
19:02:13.0451 2604 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
19:02:13.0511 2604 igfx - ok
19:02:13.0547 2604 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:02:13.0547 2604 iirsp - ok
19:02:13.0614 2604 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:02:13.0620 2604 IKEEXT - ok
19:02:13.0689 2604 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:02:13.0706 2604 IntcAzAudAddService - ok
19:02:13.0728 2604 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
19:02:13.0730 2604 IntcDAud - ok
19:02:13.0768 2604 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:02:13.0769 2604 intelide - ok
19:02:13.0792 2604 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:02:13.0793 2604 intelppm - ok
19:02:13.0845 2604 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:02:13.0847 2604 IPBusEnum - ok
19:02:13.0884 2604 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:02:13.0885 2604 IpFilterDriver - ok
19:02:13.0937 2604 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:02:13.0937 2604 IPMIDRV - ok
19:02:13.0975 2604 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:02:13.0976 2604 IPNAT - ok
19:02:14.0039 2604 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:02:14.0044 2604 iPod Service - ok
19:02:14.0075 2604 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:02:14.0075 2604 IRENUM - ok
19:02:14.0111 2604 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:02:14.0112 2604 isapnp - ok
19:02:14.0156 2604 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:02:14.0158 2604 iScsiPrt - ok
19:02:14.0179 2604 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:02:14.0180 2604 kbdclass - ok
19:02:14.0215 2604 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:02:14.0216 2604 kbdhid - ok
19:02:14.0237 2604 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:02:14.0238 2604 KeyIso - ok
19:02:14.0283 2604 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:02:14.0284 2604 KSecDD - ok
19:02:14.0311 2604 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:02:14.0313 2604 KSecPkg - ok
19:02:14.0340 2604 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:02:14.0340 2604 ksthunk - ok
19:02:14.0380 2604 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:02:14.0384 2604 KtmRm - ok
19:02:14.0439 2604 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:02:14.0442 2604 LanmanServer - ok
19:02:14.0478 2604 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:02:14.0480 2604 LanmanWorkstation - ok
19:02:14.0498 2604 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:02:14.0499 2604 lltdio - ok
19:02:14.0549 2604 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:02:14.0551 2604 lltdsvc - ok
19:02:14.0576 2604 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:02:14.0577 2604 lmhosts - ok
19:02:14.0667 2604 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:02:14.0668 2604 LMS - ok
19:02:14.0710 2604 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:02:14.0711 2604 LSI_FC - ok
19:02:14.0753 2604 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:02:14.0754 2604 LSI_SAS - ok
19:02:14.0789 2604 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:02:14.0789 2604 LSI_SAS2 - ok
19:02:14.0806 2604 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:02:14.0807 2604 LSI_SCSI - ok
19:02:14.0891 2604 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:02:14.0892 2604 luafv - ok
19:02:14.0925 2604 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
19:02:14.0927 2604 mcdbus - ok
19:02:14.0964 2604 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:02:14.0965 2604 Mcx2Svc - ok
19:02:15.0012 2604 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:02:15.0013 2604 megasas - ok
19:02:15.0080 2604 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:02:15.0082 2604 MegaSR - ok
19:02:15.0123 2604 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:02:15.0125 2604 MMCSS - ok
19:02:15.0172 2604 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:02:15.0173 2604 Modem - ok
19:02:15.0196 2604 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:02:15.0197 2604 monitor - ok
19:02:15.0281 2604 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:02:15.0282 2604 mouclass - ok
19:02:15.0294 2604 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:02:15.0295 2604 mouhid - ok
19:02:15.0321 2604 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:02:15.0321 2604 mountmgr - ok
19:02:15.0377 2604 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:02:15.0378 2604 MozillaMaintenance - ok
19:02:15.0429 2604 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:02:15.0430 2604 mpio - ok
19:02:15.0469 2604 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:02:15.0470 2604 mpsdrv - ok
19:02:15.0507 2604 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:02:15.0508 2604 MRxDAV - ok
19:02:15.0592 2604 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:02:15.0593 2604 mrxsmb - ok
19:02:15.0641 2604 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:02:15.0643 2604 mrxsmb10 - ok
19:02:15.0654 2604 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:02:15.0655 2604 mrxsmb20 - ok
19:02:15.0676 2604 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:02:15.0677 2604 msahci - ok
19:02:15.0714 2604 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:02:15.0715 2604 msdsm - ok
19:02:15.0762 2604 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:02:15.0763 2604 MSDTC - ok
19:02:15.0815 2604 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:02:15.0816 2604 Msfs - ok
19:02:15.0825 2604 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:02:15.0826 2604 mshidkmdf - ok
19:02:15.0865 2604 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:02:15.0866 2604 msisadrv - ok
19:02:15.0903 2604 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:02:15.0904 2604 MSiSCSI - ok
19:02:15.0915 2604 msiserver - ok
19:02:15.0953 2604 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:02:15.0954 2604 MSKSSRV - ok
19:02:15.0992 2604 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:02:15.0993 2604 MSPCLOCK - ok
19:02:16.0008 2604 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:02:16.0008 2604 MSPQM - ok
19:02:16.0060 2604 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:02:16.0063 2604 MsRPC - ok
19:02:16.0093 2604 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:02:16.0094 2604 mssmbios - ok
19:02:16.0116 2604 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:02:16.0117 2604 MSTEE - ok
19:02:16.0136 2604 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:02:16.0136 2604 MTConfig - ok
19:02:16.0174 2604 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:02:16.0174 2604 Mup - ok
19:02:16.0208 2604 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:02:16.0212 2604 napagent - ok
19:02:16.0247 2604 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:02:16.0249 2604 NativeWifiP - ok
19:02:16.0254 2604 ncvet.dll - ok
19:02:16.0298 2604 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:02:16.0304 2604 NDIS - ok
19:02:16.0340 2604 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:02:16.0340 2604 NdisCap - ok
19:02:16.0384 2604 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:02:16.0385 2604 NdisTapi - ok
19:02:16.0426 2604 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:02:16.0427 2604 Ndisuio - ok
19:02:16.0456 2604 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:02:16.0457 2604 NdisWan - ok
19:02:16.0488 2604 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:02:16.0489 2604 NDProxy - ok
19:02:16.0522 2604 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:02:16.0522 2604 NetBIOS - ok
19:02:16.0562 2604 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:02:16.0564 2604 NetBT - ok
19:02:16.0581 2604 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:02:16.0582 2604 Netlogon - ok
19:02:16.0613 2604 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:02:16.0616 2604 Netman - ok
19:02:16.0694 2604 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:16.0696 2604 NetMsmqActivator - ok
19:02:16.0700 2604 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:16.0701 2604 NetPipeActivator - ok
19:02:16.0741 2604 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:02:16.0745 2604 netprofm - ok
19:02:16.0750 2604 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:16.0751 2604 NetTcpActivator - ok
19:02:16.0755 2604 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:16.0757 2604 NetTcpPortSharing - ok
19:02:16.0887 2604 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
19:02:16.0918 2604 netw5v64 - ok
19:02:16.0948 2604 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:02:16.0949 2604 nfrd960 - ok
19:02:16.0981 2604 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:02:16.0984 2604 NlaSvc - ok
19:02:17.0021 2604 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:02:17.0022 2604 Npfs - ok
19:02:17.0026 2604 npggsvc - ok
19:02:17.0032 2604 NPPTNT2 - ok
19:02:17.0061 2604 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:02:17.0063 2604 nsi - ok
19:02:17.0072 2604 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:02:17.0073 2604 nsiproxy - ok
19:02:17.0135 2604 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:02:17.0145 2604 Ntfs - ok
19:02:17.0185 2604 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:02:17.0186 2604 Null - ok
19:02:17.0222 2604 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:02:17.0224 2604 nvraid - ok
19:02:17.0258 2604 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:02:17.0259 2604 nvstor - ok
19:02:17.0311 2604 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:02:17.0313 2604 nv_agp - ok
19:02:17.0405 2604 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:02:17.0407 2604 odserv - ok
19:02:17.0440 2604 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:02:17.0441 2604 ohci1394 - ok
19:02:17.0479 2604 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:02:17.0480 2604 ose - ok
19:02:17.0633 2604 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:02:17.0661 2604 osppsvc - ok
19:02:17.0721 2604 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:02:17.0724 2604 p2pimsvc - ok
19:02:17.0758 2604 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:02:17.0761 2604 p2psvc - ok
19:02:17.0796 2604 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:02:17.0797 2604 Parport - ok
19:02:17.0824 2604 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:02:17.0825 2604 partmgr - ok
19:02:17.0846 2604 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:02:17.0848 2604 PcaSvc - ok
19:02:17.0883 2604 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:02:17.0885 2604 pci - ok
19:02:17.0915 2604 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:02:17.0915 2604 pciide - ok
19:02:17.0963 2604 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:02:17.0964 2604 pcmcia - ok
19:02:17.0997 2604 [ 876FD95B7A3B7FE6179FBD16E7A6486C ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
19:02:18.0000 2604 PCTCore - ok
19:02:18.0041 2604 [ B5D3C24E4EA8E6D4850E83DAD8C510D4 ] PCTINDIS5X64 C:\Windows\system32\PCTINDIS5X64.SYS
19:02:18.0042 2604 PCTINDIS5X64 - ok
19:02:18.0072 2604 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:02:18.0072 2604 pcw - ok
19:02:18.0113 2604 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:02:18.0117 2604 PEAUTH - ok
19:02:18.0206 2604 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:02:18.0207 2604 PerfHost - ok
19:02:18.0281 2604 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:02:18.0290 2604 pla - ok
19:02:18.0340 2604 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:02:18.0343 2604 PlugPlay - ok
19:02:18.0368 2604 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:02:18.0369 2604 PNRPAutoReg - ok
19:02:18.0387 2604 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:02:18.0390 2604 PNRPsvc - ok
19:02:18.0429 2604 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:02:18.0433 2604 PolicyAgent - ok
19:02:18.0458 2604 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:02:18.0460 2604 Power - ok
19:02:18.0506 2604 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:02:18.0507 2604 PptpMiniport - ok
19:02:18.0590 2604 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:02:18.0591 2604 Processor - ok
19:02:18.0645 2604 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:02:18.0647 2604 ProfSvc - ok
19:02:18.0692 2604 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:02:18.0693 2604 ProtectedStorage - ok
19:02:18.0726 2604 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:02:18.0728 2604 Psched - ok
19:02:18.0791 2604 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:02:18.0800 2604 ql2300 - ok
19:02:18.0886 2604 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:02:18.0887 2604 ql40xx - ok
19:02:18.0925 2604 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:02:18.0928 2604 QWAVE - ok
19:02:18.0949 2604 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:02:18.0950 2604 QWAVEdrv - ok
19:02:19.0046 2604 [ BF87969494FF4C9068F0D8B4A0A43711 ] rak C:\Game\SoftnyxGame\RakionIS\Bin\rakion64.sys
19:02:19.0047 2604 rak - ok
19:02:19.0069 2604 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:02:19.0069 2604 RasAcd - ok
19:02:19.0098 2604 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:02:19.0099 2604 RasAgileVpn - ok
19:02:19.0171 2604 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:02:19.0172 2604 RasAuto - ok
19:02:19.0208 2604 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:02:19.0209 2604 Rasl2tp - ok
19:02:19.0230 2604 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:02:19.0234 2604 RasMan - ok
19:02:19.0302 2604 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:02:19.0303 2604 RasPppoe - ok
19:02:19.0325 2604 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:02:19.0326 2604 RasSstp - ok
19:02:19.0340 2604 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:02:19.0342 2604 rdbss - ok
19:02:19.0398 2604 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:02:19.0399 2604 rdpbus - ok
19:02:19.0427 2604 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:02:19.0428 2604 RDPCDD - ok
19:02:19.0445 2604 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:02:19.0446 2604 RDPENCDD - ok
19:02:19.0464 2604 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:02:19.0465 2604 RDPREFMP - ok
19:02:19.0502 2604 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:02:19.0503 2604 RdpVideoMiniport - ok
19:02:19.0545 2604 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:02:19.0547 2604 RDPWD - ok
19:02:19.0585 2604 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:02:19.0587 2604 rdyboost - ok
19:02:19.0614 2604 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:02:19.0615 2604 RemoteAccess - ok
19:02:19.0641 2604 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:02:19.0643 2604 RemoteRegistry - ok
19:02:19.0682 2604 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:02:19.0683 2604 RFCOMM - ok
19:02:19.0708 2604 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:02:19.0709 2604 RpcEptMapper - ok
19:02:19.0728 2604 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:02:19.0729 2604 RpcLocator - ok
19:02:19.0790 2604 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:02:19.0795 2604 RpcSs - ok
19:02:19.0836 2604 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:02:19.0837 2604 rspndr - ok
19:02:19.0842 2604 RSUSBSTOR - ok
19:02:19.0900 2604 [ 20A466B9EA2BD828C0EC723F99B8CFE7 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:02:19.0902 2604 RTL8167 - ok
19:02:19.0957 2604 [ 4EA7E5DF0CB237156176FA0349E6E87F ] RtVOsdService C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
19:02:19.0959 2604 RtVOsdService - ok
19:02:19.0981 2604 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:02:19.0982 2604 SamSs - ok
19:02:20.0088 2604 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
19:02:20.0108 2604 SBAMSvc - ok
19:02:20.0194 2604 [ 6E342316E72F4B6FA39C99E06373A1A3 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
19:02:20.0194 2604 sbapifs - ok
19:02:20.0218 2604 [ 19954328DDA3D656F8A879B3A46FFED6 ] SbFw C:\Windows\system32\drivers\SbFw.sys
19:02:20.0220 2604 SbFw - ok
19:02:20.0251 2604 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
19:02:20.0252 2604 SBFWIMCL - ok
19:02:20.0259 2604 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
19:02:20.0260 2604 SBFWIMCLMP - ok
19:02:20.0294 2604 [ B671EEF468D13016B9286F5835A06AE1 ] sbhips C:\Windows\system32\drivers\sbhips.sys
19:02:20.0295 2604 sbhips - ok
19:02:20.0360 2604 [ C7E399DBC7B70FDA979013389B1A8DAB ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
19:02:20.0361 2604 SbieDrv - ok
19:02:20.0390 2604 [ 9F64E814007B5B586C123F3820C104A5 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
19:02:20.0391 2604 SbieSvc - ok
19:02:20.0433 2604 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:02:20.0434 2604 sbp2port - ok
19:02:20.0478 2604 [ 9ACEB2A2362FC87A3825963E61BA9076 ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
19:02:20.0479 2604 SBRE - ok
19:02:20.0541 2604 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
19:02:20.0548 2604 SBSDWSCService - ok
19:02:20.0598 2604 [ EAB54ADCCECA64B2F38CD859FB494895 ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
19:02:20.0599 2604 sbwtis - ok
19:02:20.0629 2604 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:02:20.0632 2604 SCardSvr - ok
19:02:20.0666 2604 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:02:20.0667 2604 scfilter - ok
19:02:20.0716 2604 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:02:20.0723 2604 Schedule - ok
19:02:20.0796 2604 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:02:20.0796 2604 SCPolicySvc - ok
19:02:20.0829 2604 [ 490B0B68BB938D5C628EC4A67277BE75 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
19:02:20.0829 2604 ScreamBAudioSvc - ok
19:02:20.0863 2604 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
19:02:20.0864 2604 sdbus - ok
19:02:20.0915 2604 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:02:20.0917 2604 SDRSVC - ok
19:02:20.0982 2604 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
19:02:20.0984 2604 SeaPort - ok
19:02:21.0017 2604 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:02:21.0017 2604 secdrv - ok
19:02:21.0053 2604 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:02:21.0054 2604 seclogon - ok
19:02:21.0074 2604 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:02:21.0076 2604 SENS - ok
19:02:21.0090 2604 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:02:21.0091 2604 SensrSvc - ok
19:02:21.0122 2604 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:02:21.0123 2604 Serenum - ok
19:02:21.0176 2604 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:02:21.0177 2604 Serial - ok
19:02:21.0205 2604 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:02:21.0206 2604 sermouse - ok
19:02:21.0310 2604 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:02:21.0312 2604 SessionEnv - ok
19:02:21.0350 2604 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:02:21.0351 2604 sffdisk - ok
19:02:21.0412 2604 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:02:21.0413 2604 sffp_mmc - ok
19:02:21.0500 2604 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:02:21.0500 2604 sffp_sd - ok
19:02:21.0559 2604 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:02:21.0560 2604 sfloppy - ok
19:02:21.0610 2604 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
19:02:21.0614 2604 Sftfs - ok
19:02:21.0663 2604 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:02:21.0666 2604 sftlist - ok
19:02:21.0744 2604 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
19:02:21.0746 2604 Sftplay - ok
19:02:21.0756 2604 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
19:02:21.0756 2604 Sftredir - ok
19:02:21.0776 2604 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
19:02:21.0777 2604 Sftvol - ok
19:02:21.0809 2604 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:02:21.0810 2604 sftvsa - ok
19:02:21.0846 2604 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:02:21.0849 2604 ShellHWDetection - ok
19:02:21.0904 2604 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:02:21.0904 2604 SiSRaid2 - ok
19:02:21.0944 2604 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:02:21.0945 2604 SiSRaid4 - ok
19:02:22.0036 2604 [ 4523268768F70049EA95FFDF8354B4FA ] sj C:\AeriaGames\EdenEternal\sjcs64.sys
19:02:22.0036 2604 sj - ok
19:02:22.0179 2604 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:02:22.0197 2604 Skype C2C Service - ok
19:02:22.0245 2604 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:02:22.0246 2604 SkypeUpdate - ok
19:02:22.0281 2604 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
19:02:22.0281 2604 SmartDefragDriver - ok
19:02:22.0313 2604 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:02:22.0314 2604 Smb - ok
19:02:22.0359 2604 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:02:22.0361 2604 SNMPTRAP - ok
19:02:22.0404 2604 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:02:22.0405 2604 spldr - ok
19:02:22.0477 2604 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:02:22.0481 2604 Spooler - ok
19:02:22.0588 2604 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:02:22.0609 2604 sppsvc - ok
19:02:22.0638 2604 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:02:22.0639 2604 sppuinotify - ok
19:02:22.0643 2604 sptd - ok
19:02:22.0691 2604 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:02:22.0694 2604 srv - ok
19:02:22.0713 2604 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:02:22.0715 2604 srv2 - ok
19:02:22.0753 2604 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:02:22.0755 2604 SrvHsfHDA - ok
19:02:22.0803 2604 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:02:22.0814 2604 SrvHsfV92 - ok
19:02:22.0867 2604 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:02:22.0871 2604 SrvHsfWinac - ok
19:02:22.0898 2604 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:02:22.0900 2604 srvnet - ok
19:02:22.0944 2604 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
19:02:22.0947 2604 ssadbus - ok
19:02:22.0995 2604 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
19:02:22.0995 2604 ssadmdfl - ok
19:02:23.0035 2604 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
19:02:23.0036 2604 ssadmdm - ok
19:02:23.0091 2604 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
19:02:23.0092 2604 ssadserd - ok
19:02:23.0132 2604 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:02:23.0134 2604 SSDPSRV - ok
19:02:23.0171 2604 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:02:23.0173 2604 SstpSvc - ok
19:02:23.0222 2604 Steam Client Service - ok
19:02:23.0256 2604 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:02:23.0256 2604 stexstor - ok
19:02:23.0324 2604 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:02:23.0329 2604 stisvc - ok
19:02:23.0357 2604 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:02:23.0358 2604 swenum - ok
19:02:23.0496 2604 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
19:02:23.0499 2604 SwitchBoard - ok
19:02:23.0539 2604 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:02:23.0543 2604 swprv - ok
19:02:23.0601 2604 [ 961CFAC2A5318E212F459D651F28E0A4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
19:02:23.0610 2604 SynTP - ok
19:02:23.0671 2604 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:02:23.0682 2604 SysMain - ok
19:02:23.0711 2604 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:02:23.0713 2604 TabletInputService - ok
19:02:23.0730 2604 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:02:23.0733 2604 TapiSrv - ok
19:02:23.0756 2604 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:02:23.0758 2604 TBS - ok
19:02:23.0847 2604 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:02:23.0859 2604 Tcpip - ok
19:02:23.0924 2604 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:02:23.0935 2604 TCPIP6 - ok
19:02:23.0969 2604 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:02:23.0970 2604 tcpipreg - ok
19:02:24.0019 2604 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:02:24.0019 2604 TDPIPE - ok
19:02:24.0094 2604 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:02:24.0095 2604 TDTCP - ok
19:02:24.0131 2604 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:02:24.0132 2604 tdx - ok
19:02:24.0161 2604 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:02:24.0162 2604 TermDD - ok
19:02:24.0199 2604 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:02:24.0204 2604 TermService - ok
19:02:24.0265 2604 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:02:24.0267 2604 Themes - ok
19:02:24.0323 2604 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:02:24.0324 2604 THREADORDER - ok
19:02:24.0448 2604 [ D44D1FD2A03351BAB109E1FC14D08CFB ] TMobileRcAppSvc C:\Program Files (x86)\T-Mobile\webConnect Manager\RcAppSvc.exe
19:02:24.0449 2604 TMobileRcAppSvc - ok
19:02:24.0473 2604 [ 265CD57B1C3700CDBC0B815791BC3B56 ] tmobile_mf691_dc_enum C:\Windows\system32\DRIVERS\tmobile_mf691_dc_enum.sys
19:02:24.0474 2604 tmobile_mf691_dc_enum - ok
19:02:24.0494 2604 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:02:24.0496 2604 TrkWks - ok
19:02:24.0545 2604 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:02:24.0546 2604 TrustedInstaller - ok
19:02:24.0576 2604 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:02:24.0577 2604 tssecsrv - ok
19:02:24.0621 2604 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:02:24.0622 2604 TsUsbFlt - ok
19:02:24.0654 2604 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:02:24.0655 2604 tunnel - ok
19:02:24.0741 2604 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:02:24.0742 2604 uagp35 - ok
19:02:24.0778 2604 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:02:24.0780 2604 udfs - ok
19:02:24.0848 2604 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:02:24.0850 2604 UI0Detect - ok
19:02:24.0879 2604 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:02:24.0879 2604 uliagpkx - ok
19:02:24.0917 2604 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:02:24.0918 2604 umbus - ok
19:02:24.0973 2604 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:02:24.0973 2604 UmPass - ok
19:02:25.0015 2604 [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
19:02:25.0015 2604 UnlockerDriver5 - ok
19:02:25.0144 2604 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:02:25.0158 2604 UNS - ok
19:02:25.0240 2604 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:02:25.0243 2604 upnphost - ok
19:02:25.0344 2604 [ 786526848586325C94DE1B64DD4D82FF ] uqk C:\koramgame\STOnline\avital\wyqku64.sys
19:02:25.0345 2604 uqk - ok
19:02:25.0391 2604 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:02:25.0392 2604 USBAAPL64 - ok
19:02:25.0442 2604 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:02:25.0443 2604 usbccgp - ok
19:02:25.0489 2604 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:02:25.0490 2604 usbcir - ok
19:02:25.0561 2604 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:02:25.0562 2604 usbehci - ok
19:02:25.0587 2604 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:02:25.0589 2604 usbhub - ok
19:02:25.0627 2604 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:02:25.0627 2604 usbohci - ok
19:02:25.0681 2604 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:02:25.0682 2604 usbprint - ok
19:02:25.0739 2604 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:02:25.0739 2604 usbscan - ok
19:02:25.0812 2604 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:02:25.0813 2604 USBSTOR - ok
19:02:25.0843 2604 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:02:25.0844 2604 usbuhci - ok
19:02:25.0867 2604 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
19:02:25.0868 2604 usbvideo - ok
19:02:25.0922 2604 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:02:25.0924 2604 UxSms - ok
19:02:25.0980 2604 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:02:25.0981 2604 VaultSvc - ok
19:02:25.0998 2604 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:02:25.0998 2604 vdrvroot - ok
19:02:26.0073 2604 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:02:26.0078 2604 vds - ok
19:02:26.0118 2604 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:02:26.0118 2604 vga - ok
19:02:26.0179 2604 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:02:26.0180 2604 VgaSave - ok
19:02:26.0260 2604 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:02:26.0261 2604 vhdmp - ok
19:02:26.0316 2604 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:02:26.0317 2604 viaide - ok
19:02:26.0365 2604 [ B2E25DB5A6A178C056342ABD747B7326 ] vmm C:\Windows\system32\Drivers\vmm.sys
19:02:26.0367 2604 vmm - ok
19:02:26.0448 2604 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:02:26.0449 2604 volmgr - ok
19:02:26.0484 2604 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:02:26.0486 2604 volmgrx - ok
19:02:26.0578 2604 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:02:26.0580 2604 volsnap - ok
19:02:26.0609 2604 [ 6BDCA00FC57CC40DA3C8E88B2CEA21AB ] VPCNetS2 C:\Windows\system32\DRIVERS\VMNetSrv.sys
19:02:26.0610 2604 VPCNetS2 - ok
19:02:26.0644 2604 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:02:26.0645 2604 vsmraid - ok
19:02:26.0703 2604 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:02:26.0714 2604 VSS - ok
19:02:26.0786 2604 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:02:26.0787 2604 vwifibus - ok
19:02:26.0800 2604 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:02:26.0801 2604 vwififlt - ok
19:02:26.0925 2604 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:02:26.0929 2604 W32Time - ok
19:02:27.0020 2604 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:02:27.0021 2604 WacomPen - ok
19:02:27.0066 2604 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:02:27.0067 2604 WANARP - ok
19:02:27.0072 2604 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:02:27.0073 2604 Wanarpv6 - ok
19:02:27.0175 2604 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:02:27.0183 2604 WatAdminSvc - ok
19:02:27.0246 2604 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:02:27.0256 2604 wbengine - ok
19:02:27.0316 2604 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:02:27.0318 2604 WbioSrvc - ok
19:02:27.0355 2604 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:02:27.0358 2604 wcncsvc - ok
19:02:27.0378 2604 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:02:27.0379 2604 WcsPlugInService - ok
19:02:27.0442 2604 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:02:27.0443 2604 Wd - ok
19:02:27.0523 2604 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:02:27.0528 2604 Wdf01000 - ok
19:02:27.0544 2604 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:02:27.0546 2604 WdiServiceHost - ok
19:02:27.0552 2604 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:02:27.0554 2604 WdiSystemHost - ok
19:02:27.0589 2604 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:02:27.0591 2604 WebClient - ok
19:02:27.0624 2604 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:02:27.0645 2604 Wecsvc - ok
19:02:27.0677 2604 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:02:27.0679 2604 wercplsupport - ok
19:02:27.0696 2604 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:02:27.0698 2604 WerSvc - ok
19:02:27.0764 2604 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:02:27.0764 2604 WfpLwf - ok
19:02:27.0808 2604 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:02:27.0808 2604 WIMMount - ok
19:02:27.0842 2604 WinHttpAutoProxySvc - ok
19:02:27.0922 2604 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:02:27.0924 2604 Winmgmt - ok
19:02:27.0993 2604 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:02:28.0006 2604 WinRM - ok
19:02:28.0098 2604 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:02:28.0098 2604 WinUsb - ok
19:02:28.0139 2604 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:02:28.0145 2604 Wlansvc - ok
19:02:28.0194 2604 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:02:28.0195 2604 wlcrasvc - ok
19:02:28.0303 2604 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:02:28.0316 2604 wlidsvc - ok
19:02:28.0378 2604 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:02:28.0379 2604 WmiAcpi - ok
19:02:28.0428 2604 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:02:28.0429 2604 wmiApSrv - ok
19:02:28.0453 2604 WMPNetworkSvc - ok
19:02:28.0488 2604 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:02:28.0489 2604 WPCSvc - ok
19:02:28.0528 2604 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:02:28.0530 2604 WPDBusEnum - ok
19:02:28.0613 2604 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:02:28.0613 2604 ws2ifsl - ok
19:02:28.0620 2604 WSearch - ok
19:02:28.0691 2604 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:02:28.0692 2604 WudfPf - ok
19:02:28.0713 2604 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:02:28.0715 2604 WUDFRd - ok
19:02:28.0759 2604 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:02:28.0761 2604 wudfsvc - ok
19:02:28.0800 2604 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:02:28.0803 2604 WwanSvc - ok
19:02:28.0809 2604 X6va001 - ok
19:02:28.0926 2604 X6va005 - ok
19:02:28.0999 2604 X6va008 - ok
19:02:29.0005 2604 X6va009 - ok
19:02:29.0013 2604 X6va010 - ok
19:02:29.0112 2604 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:02:29.0116 2604 YahooAUService - ok
19:02:29.0260 2604 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
19:02:29.0263 2604 yukonw7 - ok
19:02:29.0302 2604 ================ Scan global ===============================
19:02:29.0370 2604 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:02:29.0399 2604 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
19:02:29.0406 2604 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
19:02:29.0441 2604 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:02:29.0487 2604 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
19:02:29.0490 2604 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
19:02:29.0490 2604 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
19:02:29.0499 2604 ================ Scan MBR ==================================
19:02:29.0514 2604 [ A9D691444202B6B49CC6C7223076F181 ] \Device\Harddisk0\DR0
19:02:29.0726 2604 \Device\Harddisk0\DR0 - ok
19:02:29.0738 2604 ================ Scan VBR ==================================
19:02:29.0740 2604 [ 0ABA7E1837EDA1B165A89E82A5915625 ] \Device\Harddisk0\DR0\Partition1
19:02:29.0742 2604 \Device\Harddisk0\DR0\Partition1 - ok
19:02:29.0785 2604 [ 8EE34FACA9FD81E8F6A09A9E499CC57B ] \Device\Harddisk0\DR0\Partition2
19:02:29.0787 2604 \Device\Harddisk0\DR0\Partition2 - ok
19:02:29.0851 2604 [ 47DE326CFB614F6B3E13AE646FC73864 ] \Device\Harddisk0\DR0\Partition3
19:02:29.0853 2604 \Device\Harddisk0\DR0\Partition3 - ok
19:02:29.0938 2604 [ 12FB96FFE732C2283F273FAE272068CE ] \Device\Harddisk0\DR0\Partition4
19:02:29.0939 2604 \Device\Harddisk0\DR0\Partition4 - ok
19:02:29.0941 2604 ============================================================
19:02:29.0941 2604 Scan finished
19:02:29.0941 2604 ============================================================
19:02:29.0949 2472 Detected object count: 2
19:02:29.0949 2472 Actual detected object count: 2
19:06:26.0222 2472 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
19:06:26.0222 2472 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
19:06:26.0269 2472 C:\Windows\system32\services.exe - copied to quarantine
19:06:26.0316 2472 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
19:06:26.0316 2472 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
19:06:26.0316 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\@ - copied to quarantine
19:06:26.0316 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\00000004.@ - copied to quarantine
19:06:26.0316 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\201d3dde - copied to quarantine
19:06:26.0316 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\55490ac4 - copied to quarantine
19:06:26.0316 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000004.@ - copied to quarantine
19:06:26.0332 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000008.@ - copied to quarantine
19:06:26.0332 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\000000cb.@ - copied to quarantine
19:06:26.0332 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000000.@ - copied to quarantine
19:06:26.0332 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000032.@ - copied to quarantine
19:06:26.0332 2472 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000064.@ - copied to quarantine
19:06:26.0347 2472 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Quarantine
19:12:03.0884 2816 Deinitialize success







aswBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-18 19:11:05
-----------------------------
19:11:05.945 OS Version: Windows x64 6.1.7601 Service Pack 1
19:11:05.945 Number of processors: 2 586 0x2505
19:11:05.945 ComputerName: SANDY-HP UserName: Sandy
19:11:08.005 Initialize success
19:12:41.221 AVAST engine defs: 12111801
19:19:00.854 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:19:00.857 Disk 0 Vendor: WDC_WD50 02.0 Size: 476940MB BusType: 3
19:19:00.875 Disk 0 MBR read successfully
19:19:00.878 Disk 0 MBR scan
19:19:00.882 Disk 0 unknown MBR code
19:19:00.921 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
19:19:00.935 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 459217 MB offset 409600
19:19:00.967 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 17419 MB offset 940886016
19:19:01.020 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 976560128
19:19:01.076 Disk 0 scanning C:\Windows\system32\drivers
19:19:17.984 Service scanning
19:20:19.008 Modules scanning
19:20:19.018 Disk 0 trace - called modules:
19:20:19.438 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys iaStor.sys hal.dll
19:20:19.458 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800508d060]
19:20:19.463 3 CLASSPNP.SYS[fffff88001da443f] -> nt!IofCallDriver -> [0xfffffa800508caf0]
19:20:19.469 5 PCTCore64.sys[fffff880014ef720] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004f04050]
19:20:24.172 AVAST engine scan C:\Windows
19:20:30.916 AVAST engine scan C:\Windows\system32
19:22:14.461 File: C:\Windows\system32\services.exe **INFECTED** Win32:Sirefef-ZT [Trj]
19:23:03.896 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
19:23:07.971 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
19:25:26.819 AVAST engine scan C:\Windows\system32\drivers
19:25:46.432 AVAST engine scan C:\Users\Sandy
19:33:34.558 Disk 0 MBR has been saved successfully to "C:\Users\Sandy\Desktop\For BC\MBR.dat"
19:33:34.559 The log file has been saved successfully to "C:\Users\Sandy\Desktop\For BC\aswMBR.txt"





ESET Online Scanner


C:\Program Files (x86)\GadgetBox\searchInstaller.exe Win32/Toolbar.GadgetBox application cleaned by deleting - quarantined
C:\Program Files (x86)\IObit Toolbar\IE\4.6\iobitToolbarIE.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\file0000\tsk0000.dta Win64/Patched.A.Gen trojan deleted - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0000.dta Win32/Sirefef.EZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0001.dta Win64/Sirefef.W trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0006.dta Win64/Conedex.C trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0007.dta Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0008.dta Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0009.dta Win64/Sirefef.AW trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0010.dta probably a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0000\zafs0000\tsk0011.dta a variant of Win64/Sirefef.AN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\file0000\tsk0000.dta Win64/Patched.A.Gen trojan deleted - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0000.dta Win32/Sirefef.EZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0001.dta Win64/Sirefef.W trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0006.dta Win64/Conedex.C trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0007.dta Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0008.dta Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0009.dta Win64/Sirefef.AW trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0010.dta probably a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2012_18.56.38\zasubsys0001\zafs0000\tsk0011.dta a variant of Win64/Sirefef.AN trojan cleaned by deleting - quarantined
C:\Users\Sandy\AppData\Local\Google\Chrome\User Data\Default\Default\aadbgcdadcdcdegdgedhdcdjdedhddgd\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Sandy\AppData\Local\Google\Chrome\User Data\Default\Default\aadbgcdadcdcdegdgedhdcdjdedhddgd\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\extensions\plugin@yontoo.com\content\overlay.js Win32/Adware.Yontoo application cleaned by deleting - quarantined
C:\Users\Sandy\Desktop\FG Downloads\software\gb3-setup.exe a variant of Win32/ELEX application cleaned by deleting - quarantined
C:\Users\Sandy\Desktop\FG Downloads\software\Advanced.SystemCare.5.0.0.158.Final{Incl Serial}\setup.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\Sandy\Downloads\ffdshow_Setup.exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\Sandy\Downloads\PCMAX_AF_ErrorsFix_Setup.exe a variant of Win32/RegistryNuke application cleaned by deleting - quarantined
C:\Users\Sandy\Downloads\SoftonicDownloader_for_opencanvas.exe a variant of Win32/SoftonicDownloader.D application cleaned by deleting - quarantined
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000004.@ Win64/Conedex.C trojan cleaned by deleting - quarantined
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\000000cb.@ Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000000.@ Win64/Sirefef.AW trojan cleaned by deleting - quarantined
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000032.@ probably a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000064.@ a variant of Win64/Sirefef.AN trojan cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\39KMQ6DM\cat-and-dolphin-playing-together[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\39KMQ6DM\fpiCAPNJQ6G.htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K0H47JF5\favorites[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VT3ZA4QJ\cat-and-dolphin-playing-together[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VT3ZA4QJ\submit-a-video[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
Operating memory a variant of Win32/Sirefef.EZ trojan

Edited by Drift, 19 November 2012 - 06:25 AM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:41 PM

Posted 19 November 2012 - 08:33 AM

Run TDSSkiller again and post the new log

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 Drift

Drift
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:41 PM

Posted 21 November 2012 - 01:35 PM

I don't know if its supposed to do this, but when I started up Junkware removal tool it had gotten up until a quick scan of registry then the window just disappeared.

I still have the other logs at the ready but I am just currently stuck on this part.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:41 PM

Posted 21 November 2012 - 02:58 PM

Post the other logs

#7 Drift

Drift
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:41 PM

Posted 21 November 2012 - 03:12 PM

Alright then.

TDSSKiller



10:45:59.0911 8556 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:46:01.0229 8556 ============================================================
10:46:01.0229 8556 Current date / time: 2012/11/19 10:46:01.0229
10:46:01.0229 8556 SystemInfo:
10:46:01.0229 8556
10:46:01.0229 8556 OS Version: 6.1.7601 ServicePack: 1.0
10:46:01.0229 8556 Product type: Workstation
10:46:01.0229 8556 ComputerName: SANDY-HP
10:46:01.0230 8556 UserName: Sandy
10:46:01.0230 8556 Windows directory: C:\Windows
10:46:01.0230 8556 System windows directory: C:\Windows
10:46:01.0230 8556 Running under WOW64
10:46:01.0230 8556 Processor architecture: Intel x64
10:46:01.0230 8556 Number of processors: 2
10:46:01.0230 8556 Page size: 0x1000
10:46:01.0230 8556 Boot type: Normal boot
10:46:01.0230 8556 ============================================================
10:46:05.0227 8556 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:46:05.0301 8556 ============================================================
10:46:05.0301 8556 \Device\Harddisk0\DR0:
10:46:05.0302 8556 MBR partitions:
10:46:05.0302 8556 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
10:46:05.0302 8556 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x380E8800
10:46:05.0302 8556 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3814C800, BlocksNum 0x2205800
10:46:05.0302 8556 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
10:46:05.0302 8556 ============================================================
10:46:05.0604 8556 C: <-> \Device\Harddisk0\DR0\Partition2
10:46:06.0052 8556 D: <-> \Device\Harddisk0\DR0\Partition3
10:46:06.0052 8556 ============================================================
10:46:06.0052 8556 Initialize success
10:46:06.0052 8556 ============================================================
10:46:08.0649 8228 ============================================================
10:46:08.0649 8228 Scan started
10:46:08.0649 8228 Mode: Manual;
10:46:08.0649 8228 ============================================================
10:46:11.0771 8228 ================ Scan system memory ========================
10:46:11.0771 8228 System memory - ok
10:46:11.0772 8228 ================ Scan services =============================
10:46:14.0651 8228 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:46:14.0654 8228 1394ohci - ok
10:46:14.0721 8228 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:46:14.0727 8228 ACPI - ok
10:46:14.0767 8228 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:46:14.0769 8228 AcpiPmi - ok
10:46:14.0999 8228 [ 09E61047B0CEF21559CFCEDF4F14D216 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
10:46:15.0008 8228 Ad-Aware Service - ok
10:46:15.0033 8228 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
10:46:15.0035 8228 adfs - ok
10:46:15.0200 8228 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:46:15.0202 8228 AdobeFlashPlayerUpdateSvc - ok
10:46:15.0239 8228 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:46:15.0246 8228 adp94xx - ok
10:46:15.0284 8228 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:46:15.0289 8228 adpahci - ok
10:46:15.0357 8228 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:46:15.0360 8228 adpu320 - ok
10:46:15.0550 8228 [ E690647AE0B4111E3D82FCE27FDFD9B4 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
10:46:15.0554 8228 AdvancedSystemCareService5 - ok
10:46:15.0586 8228 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:46:15.0588 8228 AeLookupSvc - ok
10:46:15.0684 8228 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
10:46:15.0685 8228 AERTFilters - ok
10:46:15.0795 8228 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:46:15.0951 8228 AFD - ok
10:46:16.0031 8228 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
10:46:16.0075 8228 AgereSoftModem - ok
10:46:16.0128 8228 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:46:16.0129 8228 agp440 - ok
10:46:17.0222 8228 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
10:46:17.0222 8228 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
10:46:17.0231 8228 Akamai ( HiddenFile.Multi.Generic ) - warning
10:46:17.0231 8228 Akamai - detected HiddenFile.Multi.Generic (1)
10:46:17.0371 8228 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:46:17.0373 8228 ALG - ok
10:46:17.0455 8228 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:46:17.0457 8228 aliide - ok
10:46:17.0493 8228 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:46:17.0495 8228 amdide - ok
10:46:17.0544 8228 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:46:17.0565 8228 AmdK8 - ok
10:46:17.0615 8228 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:46:17.0618 8228 AmdPPM - ok
10:46:17.0675 8228 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:46:17.0678 8228 amdsata - ok
10:46:17.0792 8228 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:46:17.0848 8228 amdsbs - ok
10:46:17.0943 8228 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:46:17.0948 8228 amdxata - ok
10:46:18.0021 8228 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
10:46:18.0023 8228 androidusb - ok
10:46:18.0092 8228 [ AD12F5C7251BB8D575D560894E73CBBA ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
10:46:18.0093 8228 Apowersoft_AudioDevice - ok
10:46:18.0172 8228 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:46:18.0173 8228 AppID - ok
10:46:18.0213 8228 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:46:18.0216 8228 AppIDSvc - ok
10:46:18.0270 8228 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:46:18.0272 8228 Appinfo - ok
10:46:18.0527 8228 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:46:18.0559 8228 Apple Mobile Device - ok
10:46:18.0892 8228 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:46:18.0895 8228 arc - ok
10:46:19.0013 8228 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:46:19.0048 8228 arcsas - ok
10:46:19.0620 8228 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:46:19.0803 8228 aspnet_state - ok
10:46:19.0819 8228 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:46:19.0821 8228 AsyncMac - ok
10:46:19.0872 8228 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:46:19.0874 8228 atapi - ok
10:46:20.0077 8228 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
10:46:20.0111 8228 athr - ok
10:46:20.0230 8228 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:46:20.0239 8228 AudioEndpointBuilder - ok
10:46:20.0252 8228 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:46:20.0258 8228 AudioSrv - ok
10:46:20.0328 8228 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:46:20.0343 8228 AxInstSV - ok
10:46:20.0513 8228 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:46:20.0520 8228 b06bdrv - ok
10:46:20.0773 8228 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:46:20.0821 8228 b57nd60a - ok
10:46:21.0020 8228 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
10:46:21.0022 8228 BBSvc - ok
10:46:22.0476 8228 [ 0E7A9264576B40638A3FBC804DE1FF76 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
10:46:22.0786 8228 BCM43XX - ok
10:46:22.0842 8228 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:46:22.0844 8228 BDESVC - ok
10:46:22.0928 8228 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:46:22.0930 8228 Beep - ok
10:46:23.0013 8228 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:46:23.0015 8228 blbdrive - ok
10:46:23.0231 8228 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:46:23.0238 8228 Bonjour Service - ok
10:46:23.0319 8228 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:46:23.0321 8228 bowser - ok
10:46:23.0412 8228 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:46:23.0414 8228 BrFiltLo - ok
10:46:23.0488 8228 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:46:23.0490 8228 BrFiltUp - ok
10:46:23.0689 8228 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:46:23.0734 8228 Browser - ok
10:46:24.0332 8228 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:46:24.0358 8228 Brserid - ok
10:46:24.0444 8228 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:46:24.0447 8228 BrSerWdm - ok
10:46:24.0512 8228 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:46:24.0514 8228 BrUsbMdm - ok
10:46:24.0688 8228 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:46:24.0720 8228 BrUsbSer - ok
10:46:24.0811 8228 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
10:46:24.0813 8228 BthEnum - ok
10:46:24.0909 8228 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:46:24.0912 8228 BTHMODEM - ok
10:46:24.0983 8228 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
10:46:24.0986 8228 BthPan - ok
10:46:25.0203 8228 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
10:46:25.0282 8228 BTHPORT - ok
10:46:25.0358 8228 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:46:25.0360 8228 bthserv - ok
10:46:25.0444 8228 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
10:46:25.0480 8228 BTHUSB - ok
10:46:25.0746 8228 [ A17EEDC1B59232346753D5E9A652CE26 ] CATmobile C:\Program Files (x86)\T-Mobile\webConnect Manager\conappssvc.exe
10:46:25.0750 8228 CATmobile - ok
10:46:26.0180 8228 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:46:26.0291 8228 cdfs - ok
10:46:26.0440 8228 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:46:26.0443 8228 cdrom - ok
10:46:26.0565 8228 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:46:26.0620 8228 CertPropSvc - ok
10:46:27.0009 8228 [ 533328A3D9A9C286682525842547540C ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
10:46:27.0011 8228 CinemaNow Service - ok
10:46:27.0127 8228 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:46:27.0129 8228 circlass - ok
10:46:27.0298 8228 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:46:27.0305 8228 CLFS - ok
10:46:28.0390 8228 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:46:28.0433 8228 clr_optimization_v2.0.50727_32 - ok
10:46:29.0080 8228 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:46:29.0258 8228 clr_optimization_v2.0.50727_64 - ok
10:46:29.0757 8228 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:46:32.0124 8228 clr_optimization_v4.0.30319_32 - ok
10:46:32.0243 8228 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:46:32.0838 8228 clr_optimization_v4.0.30319_64 - ok
10:46:32.0925 8228 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:46:32.0928 8228 CmBatt - ok
10:46:33.0004 8228 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:46:33.0006 8228 cmdide - ok
10:46:33.0180 8228 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
10:46:33.0186 8228 CNG - ok
10:46:33.0275 8228 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:46:33.0278 8228 Compbatt - ok
10:46:33.0383 8228 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:46:33.0384 8228 CompositeBus - ok
10:46:33.0388 8228 COMSysApp - ok
10:46:33.0500 8228 [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64 C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
10:46:33.0502 8228 cpudrv64 - ok
10:46:33.0578 8228 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:46:33.0579 8228 crcdisk - ok
10:46:33.0714 8228 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:46:33.0720 8228 CryptSvc - ok
10:46:34.0422 8228 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
10:46:34.0433 8228 cvhsvc - ok
10:46:34.0625 8228 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:46:35.0260 8228 DcomLaunch - ok
10:46:35.0413 8228 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:46:35.0419 8228 defragsvc - ok
10:46:35.0640 8228 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
10:46:35.0642 8228 Desura Install Service - ok
10:46:35.0733 8228 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:46:35.0735 8228 DfsC - ok
10:46:35.0952 8228 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:46:35.0957 8228 Dhcp - ok
10:46:36.0044 8228 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:46:36.0045 8228 discache - ok
10:46:36.0089 8228 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:46:36.0091 8228 Disk - ok
10:46:36.0248 8228 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:46:36.0251 8228 Dnscache - ok
10:46:36.0373 8228 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:46:36.0377 8228 dot3svc - ok
10:46:36.0501 8228 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:46:36.0504 8228 DPS - ok
10:46:36.0607 8228 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:46:36.0608 8228 drmkaud - ok
10:46:36.0749 8228 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:46:36.0819 8228 dtsoftbus01 - ok
10:46:36.0889 8228 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:46:36.0902 8228 DXGKrnl - ok
10:46:36.0920 8228 EagleX64 - ok
10:46:37.0000 8228 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:46:37.0003 8228 EapHost - ok
10:46:38.0069 8228 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:46:38.0174 8228 ebdrv - ok
10:46:38.0241 8228 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:46:38.0242 8228 EFS - ok
10:46:38.0601 8228 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:46:38.0612 8228 ehRecvr - ok
10:46:38.0686 8228 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:46:38.0689 8228 ehSched - ok
10:46:38.0870 8228 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:46:38.0881 8228 elxstor - ok
10:46:38.0923 8228 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:46:38.0926 8228 ErrDev - ok
10:46:39.0057 8228 esgiguard - ok
10:46:39.0263 8228 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:46:39.0269 8228 EventSystem - ok
10:46:39.0399 8228 [ D83EB7ADE99D99A4CD6568AC1261D35E ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
10:46:39.0405 8228 ewusbnet - ok
10:46:39.0493 8228 [ 86F7951BBCEE4A86E79A97306BD14318 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
10:46:39.0495 8228 ew_hwusbdev - ok
10:46:39.0572 8228 [ 55E0EDA185869F7EA67EA97FD0655B39 ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
10:46:39.0613 8228 ew_usbenumfilter - ok
10:46:39.0678 8228 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:46:39.0681 8228 exfat - ok
10:46:39.0773 8228 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:46:39.0809 8228 fastfat - ok
10:46:40.0123 8228 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:46:40.0219 8228 Fax - ok
10:46:40.0267 8228 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:46:40.0273 8228 fdc - ok
10:46:40.0337 8228 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:46:40.0339 8228 fdPHost - ok
10:46:40.0425 8228 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:46:40.0428 8228 FDResPub - ok
10:46:40.0476 8228 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:46:40.0478 8228 FileInfo - ok
10:46:40.0523 8228 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:46:40.0524 8228 Filetrace - ok
10:46:40.0666 8228 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:46:40.0673 8228 FLEXnet Licensing Service - ok
10:46:40.0732 8228 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:46:40.0733 8228 flpydisk - ok
10:46:40.0782 8228 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:46:40.0787 8228 FltMgr - ok
10:46:41.0143 8228 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
10:46:41.0157 8228 FontCache - ok
10:46:41.0345 8228 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:46:41.0347 8228 FontCache3.0.0.0 - ok
10:46:41.0423 8228 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:46:41.0426 8228 FsDepends - ok
10:46:41.0512 8228 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
10:46:41.0514 8228 fssfltr - ok
10:46:41.0825 8228 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:46:41.0978 8228 fsssvc - ok
10:46:42.0083 8228 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:46:42.0085 8228 Fs_Rec - ok
10:46:42.0229 8228 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:46:42.0232 8228 fvevol - ok
10:46:42.0303 8228 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:46:42.0328 8228 gagp30kx - ok
10:46:42.0549 8228 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
10:46:42.0552 8228 GamesAppService - ok
10:46:42.0622 8228 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:46:42.0628 8228 GEARAspiWDM - ok
10:46:42.0941 8228 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:46:42.0951 8228 gpsvc - ok
10:46:43.0160 8228 [ 721CE1551F8198714F3CABFE2147939B ] Gun C:\Game\SoftnyxGame\GunBoundIS\Gun64.sys
10:46:43.0161 8228 Gun - ok
10:46:43.0459 8228 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:46:43.0461 8228 gupdate - ok
10:46:43.0466 8228 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:46:43.0467 8228 gupdatem - ok
10:46:43.0723 8228 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:46:43.0727 8228 gusvc - ok
10:46:45.0848 8228 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
10:46:46.0209 8228 hamachi - ok
10:46:47.0324 8228 [ 848BB54F18819EC6D7B255B38697E239 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
10:46:47.0342 8228 Hamachi2Svc - ok
10:46:47.0414 8228 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:46:47.0419 8228 hcw85cir - ok
10:46:47.0498 8228 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:46:47.0502 8228 HdAudAddService - ok
10:46:47.0561 8228 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:46:47.0607 8228 HDAudBus - ok
10:46:47.0670 8228 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:46:47.0672 8228 HECIx64 - ok
10:46:47.0733 8228 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:46:47.0737 8228 HidBatt - ok
10:46:47.0840 8228 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:46:47.0847 8228 HidBth - ok
10:46:48.0012 8228 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:46:48.0021 8228 HidIr - ok
10:46:48.0123 8228 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:46:48.0125 8228 hidserv - ok
10:46:48.0193 8228 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:46:48.0197 8228 HidUsb - ok
10:46:48.0459 8228 [ FD1837DEE0A1D7F180D7B301C0656511 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
10:46:48.0461 8228 HiPatchService - ok
10:46:48.0518 8228 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:46:48.0533 8228 hkmsvc - ok
10:46:48.0780 8228 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:46:48.0787 8228 HomeGroupListener - ok
10:46:48.0853 8228 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:46:48.0857 8228 HomeGroupProvider - ok
10:46:49.0074 8228 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:46:49.0077 8228 HP Support Assistant Service - ok
10:46:49.0403 8228 [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
10:46:49.0405 8228 HP Wireless Assistant Service - ok
10:46:49.0579 8228 [ B19FF523B533A3F198B9239E1749C940 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
10:46:49.0582 8228 HPDrvMntSvc.exe - ok
10:46:49.0860 8228 [ 01091B900E15878B4434F9C726C4541D ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
10:46:50.0084 8228 hpqwmiex - ok
10:46:50.0153 8228 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:46:50.0155 8228 HpSAMD - ok
10:46:50.0227 8228 [ 77C15D7E8F002A173EEBFF0B20CD697D ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
10:46:50.0229 8228 HPWMISVC - ok
10:46:50.0412 8228 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:46:50.0477 8228 HTTP - ok
10:46:50.0528 8228 [ 6E05228393CD614B983568EC40C262C3 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
10:46:50.0530 8228 hwdatacard - ok
10:46:50.0610 8228 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:46:50.0612 8228 hwpolicy - ok
10:46:50.0731 8228 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:46:51.0250 8228 i8042prt - ok
10:46:51.0519 8228 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
10:46:51.0526 8228 iaStor - ok
10:46:51.0868 8228 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:46:51.0869 8228 IAStorDataMgrSvc - ok
10:46:52.0073 8228 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:46:52.0103 8228 iaStorV - ok
10:46:52.0327 8228 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
10:46:52.0330 8228 IDriverT - ok
10:46:52.0688 8228 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:46:52.0702 8228 idsvc - ok
10:46:53.0858 8228 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:46:54.0225 8228 igfx - ok
10:46:54.0291 8228 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:46:54.0293 8228 iirsp - ok
10:46:54.0417 8228 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:46:54.0428 8228 IKEEXT - ok
10:46:54.0973 8228 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:46:55.0047 8228 IntcAzAudAddService - ok
10:46:55.0172 8228 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:46:55.0176 8228 IntcDAud - ok
10:46:55.0273 8228 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:46:55.0278 8228 intelide - ok
10:46:55.0338 8228 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:46:55.0339 8228 intelppm - ok
10:46:55.0378 8228 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:46:55.0381 8228 IPBusEnum - ok
10:46:55.0440 8228 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:46:55.0442 8228 IpFilterDriver - ok
10:46:55.0493 8228 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:46:55.0497 8228 IPMIDRV - ok
10:46:55.0552 8228 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:46:55.0554 8228 IPNAT - ok
10:46:55.0945 8228 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:46:55.0953 8228 iPod Service - ok
10:46:55.0974 8228 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:46:55.0990 8228 IRENUM - ok
10:46:56.0056 8228 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:46:56.0060 8228 isapnp - ok
10:46:56.0234 8228 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:46:56.0238 8228 iScsiPrt - ok
10:46:56.0323 8228 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:46:56.0326 8228 kbdclass - ok
10:46:56.0393 8228 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:46:56.0395 8228 kbdhid - ok
10:46:56.0425 8228 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:46:56.0428 8228 KeyIso - ok
10:46:56.0489 8228 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:46:56.0491 8228 KSecDD - ok
10:46:56.0589 8228 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:46:56.0591 8228 KSecPkg - ok
10:46:56.0628 8228 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:46:56.0630 8228 ksthunk - ok
10:46:56.0769 8228 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:46:56.0777 8228 KtmRm - ok
10:46:56.0915 8228 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:46:56.0922 8228 LanmanServer - ok
10:46:57.0004 8228 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:46:57.0008 8228 LanmanWorkstation - ok
10:46:57.0054 8228 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:46:57.0057 8228 lltdio - ok
10:46:57.0213 8228 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:46:57.0219 8228 lltdsvc - ok
10:46:57.0242 8228 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:46:57.0244 8228 lmhosts - ok
10:46:57.0444 8228 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:46:57.0448 8228 LMS - ok
10:46:57.0521 8228 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:46:57.0523 8228 LSI_FC - ok
10:46:57.0582 8228 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:46:57.0589 8228 LSI_SAS - ok
10:46:57.0655 8228 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:46:57.0657 8228 LSI_SAS2 - ok
10:46:57.0717 8228 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:46:57.0719 8228 LSI_SCSI - ok
10:46:57.0746 8228 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:46:57.0749 8228 luafv - ok
10:46:57.0994 8228 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:46:57.0995 8228 MBAMProtector - ok
10:46:58.0348 8228 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:46:58.0354 8228 MBAMScheduler - ok
10:46:58.0746 8228 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:46:58.0782 8228 MBAMService - ok
10:46:58.0883 8228 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
10:46:58.0888 8228 mcdbus - ok
10:46:58.0941 8228 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:46:58.0946 8228 Mcx2Svc - ok
10:46:59.0000 8228 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:46:59.0002 8228 megasas - ok
10:46:59.0168 8228 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:46:59.0191 8228 MegaSR - ok
10:46:59.0323 8228 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:46:59.0327 8228 MMCSS - ok
10:46:59.0405 8228 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:46:59.0408 8228 Modem - ok
10:46:59.0474 8228 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:46:59.0483 8228 monitor - ok
10:46:59.0570 8228 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:46:59.0598 8228 mouclass - ok
10:46:59.0682 8228 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:46:59.0684 8228 mouhid - ok
10:46:59.0842 8228 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:46:59.0989 8228 mountmgr - ok
10:47:00.0132 8228 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:47:00.0134 8228 MozillaMaintenance - ok
10:47:00.0240 8228 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:47:00.0244 8228 mpio - ok
10:47:00.0313 8228 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:47:00.0317 8228 mpsdrv - ok
10:47:00.0423 8228 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:47:00.0427 8228 MRxDAV - ok
10:47:00.0502 8228 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:47:00.0508 8228 mrxsmb - ok
10:47:00.0681 8228 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:47:00.0688 8228 mrxsmb10 - ok
10:47:00.0753 8228 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:47:00.0757 8228 mrxsmb20 - ok
10:47:00.0820 8228 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:47:00.0822 8228 msahci - ok
10:47:00.0894 8228 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:47:00.0900 8228 msdsm - ok
10:47:00.0993 8228 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:47:00.0998 8228 MSDTC - ok
10:47:01.0137 8228 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:47:01.0139 8228 Msfs - ok
10:47:01.0181 8228 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:47:01.0182 8228 mshidkmdf - ok
10:47:01.0220 8228 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:47:01.0222 8228 msisadrv - ok
10:47:01.0302 8228 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:47:01.0307 8228 MSiSCSI - ok
10:47:01.0313 8228 msiserver - ok
10:47:01.0363 8228 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:47:01.0366 8228 MSKSSRV - ok
10:47:01.0392 8228 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:47:01.0394 8228 MSPCLOCK - ok
10:47:01.0462 8228 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:47:01.0464 8228 MSPQM - ok
10:47:01.0628 8228 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:47:01.0633 8228 MsRPC - ok
10:47:01.0748 8228 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:47:02.0059 8228 mssmbios - ok
10:47:02.0081 8228 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:47:02.0082 8228 MSTEE - ok
10:47:02.0113 8228 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:47:02.0114 8228 MTConfig - ok
10:47:02.0184 8228 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:47:02.0186 8228 Mup - ok
10:47:02.0426 8228 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:47:02.0552 8228 napagent - ok
10:47:02.0648 8228 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:47:02.0653 8228 NativeWifiP - ok
10:47:02.0689 8228 ncvet.dll - ok
10:47:02.0823 8228 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:47:02.0888 8228 NDIS - ok
10:47:03.0006 8228 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:47:03.0008 8228 NdisCap - ok
10:47:03.0072 8228 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:47:03.0074 8228 NdisTapi - ok
10:47:03.0159 8228 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:47:03.0161 8228 Ndisuio - ok
10:47:03.0310 8228 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:47:03.0378 8228 NdisWan - ok
10:47:03.0443 8228 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:47:03.0445 8228 NDProxy - ok
10:47:03.0558 8228 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:47:03.0575 8228 NetBIOS - ok
10:47:03.0718 8228 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:47:03.0724 8228 NetBT - ok
10:47:03.0814 8228 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:47:03.0817 8228 Netlogon - ok
10:47:04.0014 8228 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:47:04.0312 8228 Netman - ok
10:47:04.0627 8228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:04.0831 8228 NetMsmqActivator - ok
10:47:04.0860 8228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:04.0861 8228 NetPipeActivator - ok
10:47:05.0174 8228 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:47:05.0180 8228 netprofm - ok
10:47:05.0187 8228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:05.0188 8228 NetTcpActivator - ok
10:47:05.0194 8228 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:05.0196 8228 NetTcpPortSharing - ok
10:47:05.0882 8228 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
10:47:06.0238 8228 netw5v64 - ok
10:47:06.0302 8228 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:47:06.0305 8228 nfrd960 - ok
10:47:06.0451 8228 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:47:06.0457 8228 NlaSvc - ok
10:47:06.0520 8228 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:47:06.0523 8228 Npfs - ok
10:47:06.0529 8228 npggsvc - ok
10:47:06.0534 8228 NPPTNT2 - ok
10:47:06.0593 8228 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:47:06.0603 8228 nsi - ok
10:47:06.0638 8228 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:47:06.0639 8228 nsiproxy - ok
10:47:06.0970 8228 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:47:07.0054 8228 Ntfs - ok
10:47:07.0119 8228 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:47:07.0120 8228 Null - ok
10:47:07.0210 8228 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:47:07.0214 8228 nvraid - ok
10:47:07.0314 8228 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:47:07.0355 8228 nvstor - ok
10:47:07.0432 8228 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:47:07.0435 8228 nv_agp - ok
10:47:07.0889 8228 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:47:07.0925 8228 odserv - ok
10:47:07.0998 8228 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:47:08.0002 8228 ohci1394 - ok
10:47:08.0146 8228 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:47:08.0148 8228 ose - ok
10:47:09.0848 8228 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:47:09.0961 8228 osppsvc - ok
10:47:10.0043 8228 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:47:10.0050 8228 p2pimsvc - ok
10:47:10.0214 8228 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:47:10.0224 8228 p2psvc - ok
10:47:10.0285 8228 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:47:10.0289 8228 Parport - ok
10:47:10.0358 8228 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:47:10.0360 8228 partmgr - ok
10:47:10.0479 8228 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:47:10.0484 8228 PcaSvc - ok
10:47:10.0618 8228 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:47:10.0621 8228 pci - ok
10:47:10.0681 8228 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:47:10.0683 8228 pciide - ok
10:47:10.0785 8228 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:47:10.0790 8228 pcmcia - ok
10:47:10.0963 8228 [ 876FD95B7A3B7FE6179FBD16E7A6486C ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
10:47:10.0970 8228 PCTCore - ok
10:47:11.0029 8228 [ B5D3C24E4EA8E6D4850E83DAD8C510D4 ] PCTINDIS5X64 C:\Windows\system32\PCTINDIS5X64.SYS
10:47:11.0033 8228 PCTINDIS5X64 - ok
10:47:11.0119 8228 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:47:11.0125 8228 pcw - ok
10:47:11.0324 8228 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:47:11.0337 8228 PEAUTH - ok
10:47:12.0083 8228 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:47:12.0085 8228 PerfHost - ok
10:47:12.0371 8228 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:47:12.0449 8228 pla - ok
10:47:12.0673 8228 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:47:12.0680 8228 PlugPlay - ok
10:47:12.0749 8228 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:47:12.0751 8228 PNRPAutoReg - ok
10:47:12.0854 8228 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:47:12.0859 8228 PNRPsvc - ok
10:47:12.0997 8228 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:47:13.0004 8228 PolicyAgent - ok
10:47:13.0091 8228 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:47:13.0094 8228 Power - ok
10:47:13.0150 8228 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:47:13.0153 8228 PptpMiniport - ok
10:47:13.0223 8228 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:47:13.0225 8228 Processor - ok
10:47:13.0300 8228 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:47:13.0303 8228 ProfSvc - ok
10:47:13.0325 8228 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:47:13.0327 8228 ProtectedStorage - ok
10:47:13.0404 8228 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:47:13.0408 8228 Psched - ok
10:47:13.0723 8228 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:47:13.0784 8228 ql2300 - ok
10:47:13.0919 8228 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:47:13.0922 8228 ql40xx - ok
10:47:14.0048 8228 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:47:14.0213 8228 QWAVE - ok
10:47:14.0248 8228 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:47:14.0251 8228 QWAVEdrv - ok
10:47:14.0468 8228 [ BF87969494FF4C9068F0D8B4A0A43711 ] rak C:\Game\SoftnyxGame\RakionIS\Bin\rakion64.sys
10:47:14.0470 8228 rak - ok
10:47:14.0538 8228 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:47:14.0588 8228 RasAcd - ok
10:47:14.0620 8228 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:47:14.0621 8228 RasAgileVpn - ok
10:47:14.0681 8228 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:47:14.0684 8228 RasAuto - ok
10:47:14.0741 8228 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:47:14.0744 8228 Rasl2tp - ok
10:47:14.0963 8228 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:47:14.0969 8228 RasMan - ok
10:47:15.0045 8228 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:47:15.0048 8228 RasPppoe - ok
10:47:15.0091 8228 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:47:15.0093 8228 RasSstp - ok
10:47:15.0161 8228 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:47:15.0166 8228 rdbss - ok
10:47:15.0198 8228 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:47:15.0199 8228 rdpbus - ok
10:47:15.0227 8228 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:47:15.0228 8228 RDPCDD - ok
10:47:15.0278 8228 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:47:15.0279 8228 RDPENCDD - ok
10:47:15.0308 8228 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:47:15.0309 8228 RDPREFMP - ok
10:47:15.0513 8228 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
10:47:15.0516 8228 RdpVideoMiniport - ok
10:47:15.0632 8228 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:47:15.0674 8228 RDPWD - ok
10:47:15.0766 8228 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:47:15.0811 8228 rdyboost - ok
10:47:15.0958 8228 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:47:15.0961 8228 RemoteAccess - ok
10:47:16.0074 8228 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:47:16.0079 8228 RemoteRegistry - ok
10:47:16.0232 8228 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
10:47:16.0238 8228 RFCOMM - ok
10:47:16.0297 8228 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:47:16.0300 8228 RpcEptMapper - ok
10:47:16.0352 8228 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:47:16.0357 8228 RpcLocator - ok
10:47:16.0630 8228 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
10:47:16.0638 8228 RpcSs - ok
10:47:16.0713 8228 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:47:16.0716 8228 rspndr - ok
10:47:16.0721 8228 RSUSBSTOR - ok
10:47:16.0878 8228 [ 20A466B9EA2BD828C0EC723F99B8CFE7 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:47:16.0882 8228 RTL8167 - ok
10:47:17.0034 8228 [ 4EA7E5DF0CB237156176FA0349E6E87F ] RtVOsdService C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
10:47:17.0037 8228 RtVOsdService - ok
10:47:17.0069 8228 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:47:17.0070 8228 SamSs - ok
10:47:17.0784 8228 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
10:47:17.0812 8228 SBAMSvc - ok
10:47:18.0001 8228 [ 6E342316E72F4B6FA39C99E06373A1A3 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
10:47:18.0004 8228 sbapifs - ok
10:47:18.0107 8228 [ 19954328DDA3D656F8A879B3A46FFED6 ] SbFw C:\Windows\system32\drivers\SbFw.sys
10:47:18.0351 8228 SbFw - ok
10:47:18.0383 8228 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
10:47:18.0387 8228 SBFWIMCL - ok
10:47:18.0394 8228 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
10:47:18.0396 8228 SBFWIMCLMP - ok
10:47:18.0427 8228 [ B671EEF468D13016B9286F5835A06AE1 ] sbhips C:\Windows\system32\drivers\sbhips.sys
10:47:18.0429 8228 sbhips - ok
10:47:18.0559 8228 [ C7E399DBC7B70FDA979013389B1A8DAB ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
10:47:18.0561 8228 SbieDrv - ok
10:47:18.0611 8228 [ 9F64E814007B5B586C123F3820C104A5 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
10:47:18.0612 8228 SbieSvc - ok
10:47:18.0667 8228 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:47:18.0669 8228 sbp2port - ok
10:47:18.0722 8228 [ 9ACEB2A2362FC87A3825963E61BA9076 ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
10:47:18.0725 8228 SBRE - ok
10:47:19.0110 8228 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
10:47:19.0118 8228 SBSDWSCService - ok
10:47:19.0208 8228 [ EAB54ADCCECA64B2F38CD859FB494895 ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
10:47:19.0211 8228 sbwtis - ok
10:47:19.0306 8228 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:47:19.0327 8228 SCardSvr - ok
10:47:19.0377 8228 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:47:19.0381 8228 scfilter - ok
10:47:19.0632 8228 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:47:19.0647 8228 Schedule - ok
10:47:19.0724 8228 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:47:19.0726 8228 SCPolicySvc - ok
10:47:19.0806 8228 [ 490B0B68BB938D5C628EC4A67277BE75 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
10:47:19.0808 8228 ScreamBAudioSvc - ok
10:47:19.0884 8228 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
10:47:19.0887 8228 sdbus - ok
10:47:19.0981 8228 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:47:19.0987 8228 SDRSVC - ok
10:47:20.0148 8228 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
10:47:20.0151 8228 SeaPort - ok
10:47:20.0199 8228 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:47:20.0200 8228 secdrv - ok
10:47:20.0240 8228 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:47:20.0243 8228 seclogon - ok
10:47:20.0296 8228 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:47:20.0299 8228 SENS - ok
10:47:20.0400 8228 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:47:20.0403 8228 SensrSvc - ok
10:47:20.0454 8228 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:47:20.0459 8228 Serenum - ok
10:47:20.0519 8228 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:47:20.0521 8228 Serial - ok
10:47:20.0582 8228 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:47:20.0584 8228 sermouse - ok
10:47:20.0642 8228 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:47:20.0646 8228 SessionEnv - ok
10:47:20.0694 8228 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:47:20.0698 8228 sffdisk - ok
10:47:20.0756 8228 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:47:20.0758 8228 sffp_mmc - ok
10:47:20.0816 8228 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:47:20.0817 8228 sffp_sd - ok
10:47:20.0893 8228 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:47:20.0897 8228 sfloppy - ok
10:47:21.0122 8228 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
10:47:21.0132 8228 Sftfs - ok
10:47:21.0339 8228 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:47:21.0346 8228 sftlist - ok
10:47:21.0477 8228 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
10:47:21.0481 8228 Sftplay - ok
10:47:21.0521 8228 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
10:47:21.0523 8228 Sftredir - ok
10:47:21.0655 8228 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
10:47:21.0657 8228 Sftvol - ok
10:47:21.0763 8228 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:47:21.0767 8228 sftvsa - ok
10:47:22.0059 8228 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:47:22.0066 8228 ShellHWDetection - ok
10:47:22.0183 8228 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:47:22.0187 8228 SiSRaid2 - ok
10:47:22.0244 8228 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:47:22.0247 8228 SiSRaid4 - ok
10:47:22.0402 8228 [ 4523268768F70049EA95FFDF8354B4FA ] sj C:\AeriaGames\EdenEternal\sjcs64.sys
10:47:22.0407 8228 sj - ok
10:47:23.0049 8228 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:47:23.0074 8228 Skype C2C Service - ok
10:47:23.0178 8228 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:47:23.0180 8228 SkypeUpdate - ok
10:47:23.0320 8228 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
10:47:23.0322 8228 SmartDefragDriver - ok
10:47:23.0381 8228 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:47:23.0384 8228 Smb - ok
10:47:23.0447 8228 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:47:23.0462 8228 SNMPTRAP - ok
10:47:23.0537 8228 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:47:23.0553 8228 spldr - ok
10:47:23.0743 8228 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:47:23.0783 8228 Spooler - ok
10:47:24.0378 8228 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:47:24.0458 8228 sppsvc - ok
10:47:24.0560 8228 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:47:24.0736 8228 sppuinotify - ok
10:47:24.0848 8228 [ A15860E920B02C9A7CE8F3A6C2FF1E3A ] sptd C:\Windows\System32\Drivers\sptd.sys
10:47:24.0906 8228 sptd - ok
10:47:25.0025 8228 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:47:25.0032 8228 srv - ok
10:47:25.0088 8228 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:47:25.0095 8228 srv2 - ok
10:47:25.0276 8228 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
10:47:25.0301 8228 SrvHsfHDA - ok
10:47:25.0782 8228 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
10:47:25.0865 8228 SrvHsfV92 - ok
10:47:26.0124 8228 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
10:47:26.0184 8228 SrvHsfWinac - ok
10:47:26.0301 8228 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:47:26.0304 8228 srvnet - ok
10:47:26.0411 8228 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
10:47:26.0415 8228 ssadbus - ok
10:47:26.0461 8228 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
10:47:26.0463 8228 ssadmdfl - ok
10:47:26.0568 8228 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
10:47:26.0724 8228 ssadmdm - ok
10:47:26.0835 8228 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
10:47:26.0839 8228 ssadserd - ok
10:47:27.0032 8228 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:47:27.0038 8228 SSDPSRV - ok
10:47:27.0185 8228 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:47:27.0189 8228 SstpSvc - ok
10:47:27.0277 8228 Steam Client Service - ok
10:47:27.0330 8228 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:47:27.0332 8228 stexstor - ok
10:47:27.0481 8228 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:47:27.0491 8228 stisvc - ok
10:47:27.0546 8228 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:47:27.0588 8228 swenum - ok
10:47:27.0885 8228 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
10:47:27.0920 8228 SwitchBoard - ok
10:47:28.0083 8228 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:47:28.0091 8228 swprv - ok
10:47:28.0484 8228 [ 961CFAC2A5318E212F459D651F28E0A4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:47:28.0503 8228 SynTP - ok
10:47:28.0959 8228 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
10:47:29.0021 8228 SysMain - ok
10:47:29.0122 8228 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:47:29.0125 8228 TabletInputService - ok
10:47:29.0308 8228 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:47:29.0315 8228 TapiSrv - ok
10:47:29.0422 8228 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:47:29.0425 8228 TBS - ok
10:47:29.0980 8228 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:47:30.0069 8228 Tcpip - ok
10:47:30.0280 8228 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:47:30.0293 8228 TCPIP6 - ok
10:47:30.0358 8228 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:47:30.0362 8228 tcpipreg - ok
10:47:30.0441 8228 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:47:30.0443 8228 TDPIPE - ok
10:47:30.0505 8228 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:47:30.0507 8228 TDTCP - ok
10:47:30.0564 8228 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:47:30.0567 8228 tdx - ok
10:47:30.0638 8228 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:47:30.0640 8228 TermDD - ok
10:47:30.0915 8228 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:47:30.0929 8228 TermService - ok
10:47:30.0977 8228 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:47:30.0985 8228 Themes - ok
10:47:31.0067 8228 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:47:31.0069 8228 THREADORDER - ok
10:47:31.0338 8228 [ D44D1FD2A03351BAB109E1FC14D08CFB ] TMobileRcAppSvc C:\Program Files (x86)\T-Mobile\webConnect Manager\RcAppSvc.exe
10:47:31.0339 8228 TMobileRcAppSvc - ok
10:47:31.0384 8228 [ 265CD57B1C3700CDBC0B815791BC3B56 ] tmobile_mf691_dc_enum C:\Windows\system32\DRIVERS\tmobile_mf691_dc_enum.sys
10:47:31.0388 8228 tmobile_mf691_dc_enum - ok
10:47:31.0471 8228 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:47:31.0475 8228 TrkWks - ok
10:47:31.0711 8228 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:47:31.0713 8228 TrustedInstaller - ok
10:47:31.0848 8228 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:47:31.0854 8228 tssecsrv - ok
10:47:31.0923 8228 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:47:31.0926 8228 TsUsbFlt - ok
10:47:31.0998 8228 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:47:32.0001 8228 tunnel - ok
10:47:32.0063 8228 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:47:32.0065 8228 uagp35 - ok
10:47:32.0210 8228 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:47:32.0215 8228 udfs - ok
10:47:32.0303 8228 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:47:32.0308 8228 UI0Detect - ok
10:47:32.0333 8228 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:47:32.0335 8228 uliagpkx - ok
10:47:32.0407 8228 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:47:32.0408 8228 umbus - ok
10:47:32.0472 8228 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:47:32.0474 8228 UmPass - ok
10:47:32.0611 8228 [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
10:47:32.0611 8228 UnlockerDriver5 - ok
10:47:33.0351 8228 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:47:33.0368 8228 UNS - ok
10:47:33.0529 8228 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:47:33.0534 8228 upnphost - ok
10:47:33.0901 8228 [ 786526848586325C94DE1B64DD4D82FF ] uqk C:\koramgame\STOnline\avital\wyqku64.sys
10:47:33.0902 8228 uqk - ok
10:47:33.0979 8228 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:47:33.0982 8228 USBAAPL64 - ok
10:47:34.0041 8228 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:47:34.0043 8228 usbccgp - ok
10:47:34.0130 8228 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:47:34.0135 8228 usbcir - ok
10:47:34.0228 8228 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:47:34.0230 8228 usbehci - ok
10:47:34.0353 8228 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:47:34.0362 8228 usbhub - ok
10:47:34.0431 8228 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:47:34.0441 8228 usbohci - ok
10:47:34.0503 8228 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:47:34.0505 8228 usbprint - ok
10:47:34.0571 8228 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:47:34.0601 8228 usbscan - ok
10:47:34.0667 8228 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:47:34.0703 8228 USBSTOR - ok
10:47:34.0765 8228 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:47:34.0768 8228 usbuhci - ok
10:47:34.0849 8228 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
10:47:34.0852 8228 usbvideo - ok
10:47:34.0888 8228 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:47:34.0891 8228 UxSms - ok
10:47:34.0938 8228 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:47:34.0940 8228 VaultSvc - ok
10:47:34.0987 8228 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:47:34.0988 8228 vdrvroot - ok
10:47:35.0185 8228 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:47:35.0331 8228 vds - ok
10:47:35.0383 8228 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:47:35.0387 8228 vga - ok
10:47:35.0445 8228 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:47:35.0450 8228 VgaSave - ok
10:47:35.0548 8228 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:47:35.0551 8228 vhdmp - ok
10:47:35.0617 8228 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:47:35.0618 8228 viaide - ok
10:47:35.0731 8228 [ B2E25DB5A6A178C056342ABD747B7326 ] vmm C:\Windows\system32\Drivers\vmm.sys
10:47:35.0739 8228 vmm - ok
10:47:35.0903 8228 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:47:35.0940 8228 volmgr - ok
10:47:36.0072 8228 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:47:36.0080 8228 volmgrx - ok
10:47:36.0214 8228 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:47:36.0219 8228 volsnap - ok
10:47:36.0298 8228 [ 6BDCA00FC57CC40DA3C8E88B2CEA21AB ] VPCNetS2 C:\Windows\system32\DRIVERS\VMNetSrv.sys
10:47:36.0300 8228 VPCNetS2 - ok
10:47:36.0399 8228 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:47:36.0402 8228 vsmraid - ok
10:47:36.0669 8228 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:47:36.0740 8228 VSS - ok
10:47:36.0797 8228 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:47:36.0798 8228 vwifibus - ok
10:47:36.0822 8228 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:47:36.0824 8228 vwififlt - ok
10:47:36.0959 8228 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:47:37.0157 8228 W32Time - ok
10:47:37.0231 8228 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:47:37.0233 8228 WacomPen - ok
10:47:37.0305 8228 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:47:37.0308 8228 WANARP - ok
10:47:37.0320 8228 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:47:37.0321 8228 Wanarpv6 - ok
10:47:37.0628 8228 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:47:37.0644 8228 WatAdminSvc - ok
10:47:38.0106 8228 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:47:38.0188 8228 wbengine - ok
10:47:38.0298 8228 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:47:38.0302 8228 WbioSrvc - ok
10:47:38.0410 8228 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:47:38.0417 8228 wcncsvc - ok
10:47:38.0478 8228 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:47:38.0483 8228 WcsPlugInService - ok
10:47:38.0532 8228 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:47:38.0534 8228 Wd - ok
10:47:38.0783 8228 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:47:38.0794 8228 Wdf01000 - ok
10:47:38.0832 8228 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:47:38.0837 8228 WdiServiceHost - ok
10:47:38.0853 8228 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:47:38.0856 8228 WdiSystemHost - ok
10:47:38.0948 8228 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:47:38.0954 8228 WebClient - ok
10:47:39.0047 8228 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:47:39.0052 8228 Wecsvc - ok
10:47:39.0131 8228 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:47:39.0134 8228 wercplsupport - ok
10:47:39.0197 8228 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:47:39.0201 8228 WerSvc - ok
10:47:39.0274 8228 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:47:39.0277 8228 WfpLwf - ok
10:47:39.0307 8228 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:47:39.0308 8228 WIMMount - ok
10:47:39.0342 8228 WinHttpAutoProxySvc - ok
10:47:39.0654 8228 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:47:39.0658 8228 Winmgmt - ok
10:47:40.0338 8228 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:47:40.0490 8228 WinRM - ok
10:47:40.0552 8228 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:47:40.0554 8228 WinUsb - ok
10:47:40.0994 8228 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:47:41.0040 8228 Wlansvc - ok
10:47:41.0137 8228 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:47:41.0139 8228 wlcrasvc - ok
10:47:41.0779 8228 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:47:41.0795 8228 wlidsvc - ok
10:47:41.0866 8228 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:47:41.0868 8228 WmiAcpi - ok
10:47:41.0982 8228 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:47:41.0988 8228 wmiApSrv - ok
10:47:42.0077 8228 WMPNetworkSvc - ok
10:47:42.0142 8228 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:47:42.0145 8228 WPCSvc - ok
10:47:42.0207 8228 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:47:42.0211 8228 WPDBusEnum - ok
10:47:42.0257 8228 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:47:42.0259 8228 ws2ifsl - ok
10:47:42.0279 8228 WSearch - ok
10:47:42.0336 8228 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:47:42.0342 8228 WudfPf - ok
10:47:42.0480 8228 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:47:42.0505 8228 WUDFRd - ok
10:47:42.0560 8228 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:47:42.0563 8228 wudfsvc - ok
10:47:42.0711 8228 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:47:42.0716 8228 WwanSvc - ok
10:47:42.0724 8228 X6va001 - ok
10:47:44.0377 8228 X6va005 - ok
10:47:44.0644 8228 X6va008 - ok
10:47:44.0652 8228 X6va009 - ok
10:47:44.0835 8228 X6va010 - ok
10:47:45.0334 8228 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
10:47:45.0344 8228 YahooAUService - ok
10:47:46.0701 8228 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
10:47:46.0760 8228 yukonw7 - ok
10:47:46.0788 8228 ================ Scan global ===============================
10:47:47.0080 8228 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:47:47.0177 8228 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:47:47.0188 8228 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:47:47.0263 8228 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:47:47.0429 8228 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
10:47:47.0434 8228 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
10:47:47.0434 8228 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
10:47:47.0435 8228 ================ Scan MBR ==================================
10:47:47.0480 8228 [ A9D691444202B6B49CC6C7223076F181 ] \Device\Harddisk0\DR0
10:47:48.0805 8228 \Device\Harddisk0\DR0 - ok
10:47:48.0805 8228 ================ Scan VBR ==================================
10:47:48.0814 8228 [ 0ABA7E1837EDA1B165A89E82A5915625 ] \Device\Harddisk0\DR0\Partition1
10:47:48.0817 8228 \Device\Harddisk0\DR0\Partition1 - ok
10:47:48.0873 8228 [ 8EE34FACA9FD81E8F6A09A9E499CC57B ] \Device\Harddisk0\DR0\Partition2
10:47:48.0876 8228 \Device\Harddisk0\DR0\Partition2 - ok
10:47:48.0950 8228 [ 47DE326CFB614F6B3E13AE646FC73864 ] \Device\Harddisk0\DR0\Partition3
10:47:48.0953 8228 \Device\Harddisk0\DR0\Partition3 - ok
10:47:49.0014 8228 [ 12FB96FFE732C2283F273FAE272068CE ] \Device\Harddisk0\DR0\Partition4
10:47:49.0018 8228 \Device\Harddisk0\DR0\Partition4 - ok
10:47:49.0019 8228 ============================================================
10:47:49.0019 8228 Scan finished
10:47:49.0019 8228 ============================================================
10:47:49.0024 6456 Detected object count: 2
10:47:49.0024 6456 Actual detected object count: 2
11:23:23.0029 6456 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
11:23:23.0029 6456 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
11:23:23.0241 6456 C:\Windows\system32\services.exe - copied to quarantine
11:23:30.0559 6456 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
11:23:30.0616 6456 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
11:23:32.0092 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\@ - copied to quarantine
11:23:32.0119 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\00000004.@ - copied to quarantine
11:23:32.0121 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\201d3dde - copied to quarantine
11:23:32.0123 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000004.@ - copied to quarantine
11:23:32.0129 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000008.@ - copied to quarantine
11:23:32.0132 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\000000cb.@ - copied to quarantine
11:23:32.0135 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000000.@ - copied to quarantine
11:23:32.0140 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000032.@ - copied to quarantine
11:23:32.0143 6456 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000064.@ - copied to quarantine
11:40:45.0832 6456 Backup copy not found, trying to cure infected file..
11:40:46.0086 6456 C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
11:40:46.0086 6456 C:\Windows\system32\services.exe - processing error
11:40:46.0095 6456 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
15:18:50.0926 4668 Deinitialize success




Malwarebytes Anti-Malware


Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.19.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Sandy :: SANDY-HP [administrator]

Protection: Enabled

11/19/2012 10:40:47 AM
mbam-log-2012-11-19 (10-40-47).txt

Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 973299
Time elapsed: 6 hour(s), 33 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCU\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\215 APPS (PUP.CrossFire.SA) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKCU\Software\InstalledBrowserExtensions\215 Apps|4493 (PUP.CrossFire.SA) -> Data: Coupon Companion -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 8
C:\TDSSKiller_Quarantine\19.11.2012_10.46.01\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\19.11.2012_10.46.01\zasubsys0000\zafs0000\tsk0006.dta (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\19.11.2012_10.46.01\zasubsys0000\zafs0000\tsk0007.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\19.11.2012_10.46.01\zasubsys0000\zafs0000\tsk0009.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\Users\Sandy\Downloads\Oblivion-Realm-Diablo-II-EuropeBattle.Net-Installer.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000008.@ (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\000000cb.@ (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000032.@ (Rootkit.0Access) -> Quarantined and deleted successfully.

(end)





MiniToolBox




MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Sandy (administrator) on 20-11-2012 at 10:22:18
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 meetandbleepgames.com www.meetandbleepgames.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com

There are 8 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Broadcom 4313 802.11b/g/n = Wireless Network Connection (Connected)
Hamachi Network Interface = Local Area Connection 2 (Connected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled taskoffload=disabled
add route prefix=0.0.0.0/0 interface="Local Area Connection 2" nexthop=25.0.0.1 publish=Yes
set interface interface="Local Area Connection 2" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
add address name="Local Area Connection" address=111.111.111.111 mask=255.0.0.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Sandy-HP
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface
Physical Address. . . . . . . . . : 7A-79-05-52-5A-B9
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::552:5ab9(Preferred)
Link-local IPv6 Address . . . . . : fe80::288e:7c2:f92:dd4e%20(Preferred)
IPv4 Address. . . . . . . . . . . : 5.82.90.185(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : Monday, November 19, 2012 10:21:46 PM
Lease Expires . . . . . . . . . . : Tuesday, November 19, 2013 10:23:53 PM
Default Gateway . . . . . . . . . : 2620:9b::500:1
25.0.0.1
DHCP Server . . . . . . . . . . . : 5.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 343570886
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-CE-6A-C4-78-AC-C0-C7-A9-19
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Broadcom 4313 802.11b/g/n
Physical Address. . . . . . . . . : 90-00-4E-1D-59-C3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a532:961c:ae6:dfbe%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.69(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, November 19, 2012 10:21:54 PM
Lease Expires . . . . . . . . . . : Wednesday, November 21, 2012 10:21:54 AM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 311427150
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-CE-6A-C4-78-AC-C0-C7-A9-19
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Reusable ISATAP Interface {88CDEEEB-9551-4C3A-88F3-301041C5E0EF}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{550C3509-7D27-461B-8299-413656DBE57B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{4336EC88-B8E0-428A-9AC4-61F0B4883EA8}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Pinging google.com [74.125.225.69] with 32 bytes of data:
Reply from 74.125.225.69: bytes=32 time=47ms TTL=49
Reply from 74.125.225.69: bytes=32 time=46ms TTL=49

Ping statistics for 74.125.225.69:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 46ms, Maximum = 47ms, Average = 46ms

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=118ms TTL=48
Reply from 72.30.38.140: bytes=32 time=119ms TTL=48

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 118ms, Maximum = 119ms, Average = 118ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
20...7a 79 05 52 5a b9 ......Hamachi Network Interface
11...90 00 4e 1d 59 c3 ......Broadcom 4313 802.11b/g/n
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
22...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 25.0.0.1 5.82.90.185 9256
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.69 25
5.0.0.0 255.0.0.0 On-link 5.82.90.185 9256
5.82.90.185 255.255.255.255 On-link 5.82.90.185 9256
5.255.255.255 255.255.255.255 On-link 5.82.90.185 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.69 281
192.168.1.69 255.255.255.255 On-link 192.168.1.69 281
192.168.1.255 255.255.255.255 On-link 192.168.1.69 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 5.82.90.185 9256
224.0.0.0 240.0.0.0 On-link 192.168.1.69 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 5.82.90.185 9256
255.255.255.255 255.255.255.255 On-link 192.168.1.69 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 25.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
20 9020 ::/0 2620:9b::500:1
1 306 ::1/128 On-link
20 276 2620:9b::/96 On-link
20 276 2620:9b::552:5ab9/128 On-link
20 276 fe80::/64 On-link
11 281 fe80::/64 On-link
20 276 fe80::288e:7c2:f92:dd4e/128
On-link
11 281 fe80::a532:961c:ae6:dfbe/128
On-link
1 306 ff00::/8 On-link
20 276 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
0 9000 ::/0 2620:9b::500:1
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/19/2012 10:34:02 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (11/19/2012 10:26:34 PM) (Source: Application Virtualization Client) (User: )
Description: {tid=DBC:usr=Sandy}
A temporary settings file was found. This file ( C:\Users\Sandy\AppData\Local\Q$_140061.ENU_SoftGridUserSettings_settings.cp.temp ) may be corrupt and will be deleted

Error: (11/19/2012 10:24:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: HPWMISVC.exe, version: 2.5.3.0, time stamp: 0x4ed4a2e7
Faulting module name: HPWMISVC.exe, version: 2.5.3.0, time stamp: 0x4ed4a2e7
Exception code: 0xc0000005
Fault offset: 0x000018ae
Faulting process id: 0x804
Faulting application start time: 0xHPWMISVC.exe0
Faulting application path: HPWMISVC.exe1
Faulting module path: HPWMISVC.exe2
Report Id: HPWMISVC.exe3

Error: (11/19/2012 10:24:02 PM) (Source: CVHSVC) (User: )
Description: Information only.
Scenario SCN_ does not exist in FFB.XML

Error: (11/19/2012 10:15:08 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: Initialization failed 0x80070424 Type: 88::UnexpectedError.

Error: (11/19/2012 10:06:40 PM) (Source: Application Virtualization Client) (User: )
Description: {tid=9CC:usr=Sandy}
A temporary settings file was found. This file ( C:\Users\Sandy\AppData\Local\Q$_140061.ENU_SoftGridUserSettings_settings.cp.temp ) may be corrupt and will be deleted

Error: (11/19/2012 00:27:39 PM) (Source: MsiInstaller) (User: Sandy-HP)
Description: Product: HP Support Assistant -- Error 1316.A network error occurred while attempting to read from the file C:\Windows\Installer\HP Support Assistant.msi

Error: (11/19/2012 00:27:17 PM) (Source: Microsoft-Windows-RestartManager) (User: Sandy-HP)
Description: Application or service 'hpCaslNotification' could not be shut down.

Error: (11/19/2012 00:06:31 PM) (Source: MsiInstaller) (User: Sandy-HP)
Description: Product: HP Support Assistant -- Error 1316.A network error occurred while attempting to read from the file C:\Windows\Installer\HP Support Assistant.msi

Error: (11/19/2012 10:44:48 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (11/19/2012 11:23:56 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:23:35 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:23:14 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:22:53 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:22:32 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:22:11 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:21:50 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:21:28 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:21:14 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/19/2012 11:21:13 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2011-10-28 02:10:13.905
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-10-28 02:10:13.854
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-10-28 02:08:30.430
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-10-28 02:08:30.328
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-10-27 22:22:24.339
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-10-27 22:22:24.227
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-10-27 14:06:16.197
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-10-27 14:06:16.071
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\SealOnline Eternal Destiny\GameGuard\dump_wmimmc.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-08-28 12:16:03.792
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\Temp\ncvet.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2011-08-28 12:16:03.739
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\Temp\ncvet.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.2.0)
Acrobat.com (Version: 1.6.65)
Ad-Aware Antivirus (Version: 10.1.211.3382)
Ad-Aware Browsing Protection (Version: 0.9.0.2)
Adobe AIR (Version: 3.2.0.2070)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Community Help (Version: 3.4.980)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Download Assistant (Version: 1.0.6)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 Professional (Version: 10.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 10 ActiveX 64-bit (Version: 10.3.162.28)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS5.1 (Version: 12.1)
Adobe Reader 9.5.2 MUI (Version: 9.5.2)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player 11.5 (Version: 11.5.7.609)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
Advanced SystemCare 5 (Version: 5.0.0)
Age of Empires Online
AIM 7
Akamai NetSession Interface
Alien Swarm
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.778.0)
Atlantica (Version: 31606)
Auslogics BoostSpeed (Version: 5.3)
Bang! Howdy
Bastion
Bcool (Version: )
beanfun! (Version: 2.1.2.7)
Bejeweled (Version: 2.2.0.95)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Bing Bar (Version: 7.0.619.0)
Blackhawk Striker 2 (Version: 2.2.0.95)
Bonjour (Version: 3.0.0.10)
Bookworm Adventures Deluxe 1.0
Borderlands
Bots 1 (Version: 1)
BoutCheetah 30 (Version: 30)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.350.6)
Build-a-lot 2 (Version: 2.2.0.95)
Build Your Own Net Dream (remove only)
BYOND (Version: 496.1145)
CCleaner (Version: 3.20)
CDisplay 1.8
Ceville 1.0 (Version: 1.0)
Chuzzle Deluxe (Version: 2.2.0.95)
CinemaNow Media Manager (Version: 1.9.1.105)
Civ3 Conquests v1.22 Full
Civilization III
Civilization III - Play the World v1.27F
Civilization III v1.29f
Civilization III: Conquests
Connect (Version: 1.0.0.1)
Coupon Companion (Version: 1.18.149.149)
Coupon Printer for Windows (Version: 5.0.0.0)
CyberLink DVD Suite (Version: 7.0.3003)
CyberLink MediaShow (Version: 5.0.1616)
CyberLink PowerDVD 9 (Version: 9.0.1.4217)
CyberLink YouCam (Version: 3.0.2511)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.4.0315)
Defender's Quest (Version: 1.0.51)
Defraggler (Version: 2.06)
Desura (Version: 100.53)
Desura: Zombie Grinder (Version: Alpha)
DFOLauncher
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Disney Toontown Online (Version: )
Dora's Carnival Adventure (Version: 2.2.0.95)
Dota 2
Download Updater (AOL LLC)
Dragon Saga (Version: 0.2.1)
DragonNest
Dropbox (Version: 1.4.7)
Dungeon Defenders
Dungeon Siege 2
Dynasty Warriors Online
EdenEternal
Elsword version v2.0627.1.1 (Version: v2.0627.1.1)
Energy Star Digital Logo (Version: 1.0.1)
Escape Rosecliff Island (Version: 2.2.0.95)
ESET Online Scanner v3
ESU for Microsoft Windows 7 (Version: 1.0.0)
Express Burn Disc Burning Software
FairyLand (Version: 2.00.0000)
FATE (Version: 2.2.0.95)
Father V 0.487
Final Drive Nitro (Version: 2.2.0.95)
FLV Player (Version: 2.0.25)
Free YouTube Downloader 3.5.128
GadgetBox (Version: 1.0)
Game Booster 3 (Version: 3.3.1)
GhostMaster (Version: 1.00.000)
GKLauncher (Version: 1.1.0.3)
Google Chrome (Version: 23.0.1271.64)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
Grand Chase version 101912 (Version: 101912)
Guild Wars
GunboundIS
Heroes of Hellas 2 - Olympia (Version: 2.2.0.95)
Heroes of Newerth (Version: 2.3.0)
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
HP Advisor (Version: 3.4.10262.3295)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.2.5)
HP MediaSmart CinemaNow 2.0 (Version: 2.0)
HP Photo Creations (Version: 1.0.0.3611)
HP Photosmart Plus B210 series Basic Device Software (Version: 22.0.334.0)
HP Photosmart Plus B210 series Help (Version: 140.0.54.54)
HP Photosmart Plus B210 series Product Improvement Study (Version: 22.0.334.0)
HP Power Manager (Version: 1.4.7)
HP Product Detection (Version: 11.14.0001)
HP Quick Launch (Version: 2.6.3)
HP Setup (Version: 8.1.4186.3400)
HP Software Framework (Version: 4.1.13.1)
HP Support Assistant (Version: 6.1.12.1)
HP Update (Version: 5.002.005.003)
HP Wireless Assistant (Version: 4.0.9.0)
HunterBlade 0.050416 (Version: 0.050416)
IMVU Avatar Chat Software
Insaniquarium Deluxe 1.1
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2131)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.2.1001)
IObit Toolbar v4.6 (Version: 4.6)
IrfanView (remove only) (Version: 4.30)
iTunes (Version: 10.7.0.21)
J2SE Runtime Environment 5.0 Update 10 (Version: 1.5.0.100)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Jewel Quest 3 (Version: 2.2.0.95)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
join.me (Version: 1.7.0.131)
Junk Mail filter update (Version: 15.4.3502.0922)
JustCloud (Version: )
Kalydo Player 4.07.02 (Version: 4.07.02)
KarmaOnline (Version: 1.00)
Killing Floor
Killing Floor Mod: Defence Alliance 2
KillProcess 2.44 (Version: 2.44)
Knightage (Version: 19.60)
kuler (Version: 2.0)
La Tale
LabelPrint (Version: 2.5.2907)
Lavalon Dragonica (Version: 1.0)
League of Legends (Version: 1.02.0000)
League of Legends (Version: 1.3)
Left 4 Dead 2
LogMeIn Hamachi (Version: 2.1.0.284)
Lost Saga
Mabinogi
MagicDisc 2.7.106
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
MAMEHub
Media Go (Version: 2.2.223)
Media Go Video Playback Engine 1.96.120.08260 (Version: 1.96.120.08260)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
MEVO & the Grooveriders
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Age of Empires
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft AppLocale (Version: 1.0.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2010 - English (Version: 14.0.5130.5001)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Virtual PC 2007 SP1 (Version: 6.0.192.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Windows Application Compatibility Database
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XNA Framework Redistributable 3.0 (Version: 3.0.11010.0)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MorphVOX Junior (Version: 2.7.5)
Mozilla Firefox 15.0 (x86 en-US) (Version: 15.0)
Mozilla Firefox 16.0.2 (x86 en-US) (Version: 16.0.2)
Mozilla Maintenance Service (Version: 16.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Netmarble NPAPI Plugin Updater Installer
Nexon Game Manager
Nostale (Version: 0.01.98.0)
Notepad++ (Version: 6.1.3)
NVIDIA PhysX (Version: 9.10.0513)
OGPlanet Game Launcher (Version: 1.0.0)
On the Rain-Slick Precipice of Darkness, Episode One (Version: 1.00)
OpenAL
Origin (Version: 9.0.2.2064)
Panda Identity Protect 3.0.44 (Version: 3.0.44)
Panda Security Toolbar (Version: 2.0.0.10)
Panda Security URL Filtering (Version: 2.0.0.9)
Pando Media Booster (Version: 2.6.0.8)
PC Tools Registry Tool (Version: 1.0.0.14)
PDF Settings CS4 (Version: 9.0)
PDF Settings CS5 (Version: 10.0)
Penguins! (Version: 2.2.0.95)
PhotoNow! (Version: 1.1.6904)
Photoshop Camera Raw (Version: 5.0)
Pixel Bender Toolkit (Version: 1.0)
Plants vs. Zombies (Version: 2.2.0.95)
Plants vs. Zombies: Game of the Year
Platformines_Beta2 (Version: 0.9.0.8)
PlayStation®Network Downloader (Version: 2.07.00849)
PlayStation®Store (Version: 4.9.4.14625)
Pokemon Mystery Universe Client
Pokemon Mystery Universe Map Editor
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
Portforward Static IP Address 1.0.47 (Version: 1.0.47)
Power2Go (Version: 6.1.4204)
PowerDirector (Version: 8.0.3003)
Project64 1.6 (Version: 1.6)
Puzzle Pirates
Puzzle Quest 2
Raidcall (Version: 6.3.0-1.0.3244.73)
RaiderZ (Version: 1.00.0000)
Real Alternative 2.0.2 (Version: 2.0.2)
Realm of the Mad God
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.21.531.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6196)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30105)
Recettear: An Item Shop's Tale
RecordPad Sound Recorder
Recovery Manager (Version: 5.5.3023)
RemnantKnights 1.00406 (Version: 1.00406)
RGF HotSpot version 0.6b (Version: 0.6b)
Roxio CinemaNow 2.0 (Version: 1.0.278)
RtVOsd (Version: 1.0.6)
Rusty Hearts PWE (Version: 1.00.0000)
Sam & Max - Season Two (Version: 1.5.0.0)
Sam & Max Season 1 (Version: 1.00)
Sam and Max - The Devil's Playhouse (Version: 2.0.0.0)
Sandboxie 3.60 (64-bit)
SCHTHACK PSOBB Compatibility Database
ScummVM 1.4.1
SD Gundam Capsule Fighter (Version: 1.0.0)
Secure Download Manager (Version: 3.0.0)
Shin Megami Tensei: Imagine Online
Shoot Many Robots © Demiurge Studios version 1 (Version: 1)
Skype Click to Call (Version: 6.3.11079)
Skype™ 5.10 (Version: 5.10.116)
Smart Defrag 2 (Version: 2.2)
Smashmuck Champions
Smite (Version: 0.1.1092.2)
Solver (Version: 1.1.0.0)
Soul Captor (Version: 1.0.0.94405)
Spiral Knights
SPORE™ (Version: 1.05.0001)
Spybot - Search & Destroy (Version: 1.6.2)
Star Trek Online
Steam (Version: 1.0.0.0)
STOnline (Version: 1.0000)
Streaming Video Recorder V2.4.2 (Version: 2.4.2)
Suite Shared Configuration CS4 (Version: 1.0)
Switch Sound File Converter
Synaptics Pointing Device Driver (Version: 15.1.6.64)
System Requirements Lab for Intel (Version: 4.5.5.0)
T-Mobile webConnect Manager (Version: 2.05.0049.0)
Team Fortress 2
TeamSpeak 3 Client (Version: 3.0.9.2)
Terraria
Torchlight
Torchlight II © Runic Games version 1 (Version: 1)
Tradewinds 2
Trickster Online
Ultra Defragmenter (Version: 5.0.6)
Uncharted Waters Online (Version: 1)
Unity Web Player (Version: )
Unity Web Player (Version: 2.5.5b4_50)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Virtual Families (Version: 2.2.0.95)
Virtual Villagers - The Secret City (Version: 2.2.0.95)
Virtual Villagers (remove only)
Virtual Villagers The Secret City
VLC media player 2.0.0 (Version: 2.0.0)
Voobly (Version: Voobly)
Wakfu (Version: 0.300_build54296)
WavePad Sound Editor
WebEx
Wheel of Fortune 2 (Version: 2.2.0.95)
WildTangent Games App (HP Games) (Version: 4.0.6.14)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live Family Safety (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
Wizard101 (Version: 1.0.0)
Wonderland Online (Version: 6.0.3)
WTFast WarpPortal Custom Build 1.83
Xfire (remove only)
XSplit (Version: 1.1.1209.0601)
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
Yontoo 1.10.02 (Version: 1.10.02)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 3893.86 MB
Available physical RAM: 1855.93 MB
Total Pagefile: 7785.91 MB
Available Pagefile: 3995.04 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.16 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:448.45 GB) (Free:24.53 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:17.01 GB) (Free:2.43 GB) NTFS

========================= Users: ========================================

User accounts for \\SANDY-HP

Administrator Guest Sandy

========================= Restore Points ==================================

11-11-2012 10:54:10 Installed Civilization III: Conquests
14-11-2012 20:00:36 Removed WindSlayer 2
16-11-2012 15:01:41 Windows Update
17-11-2012 18:55:13 Installed iTunes
18-11-2012 22:39:45 Windows Update
19-11-2012 17:21:22 Installed HP Support Assistant

**** End of log ****




Farbar Service Scanner

Farbar Service Scanner Version: 09-11-2012
Ran by Sandy (administrator) on 20-11-2012 at 10:20:28
Running from "C:\Users\Sandy\Desktop\For BC"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-11-16 03:04] - [2012-10-03 12:56] - 1914248 ____A (Microsoft Corporation) 37608401DFDB388CAF66917F6B2D6FB0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




Adware Cleaner


# AdwCleaner v2.008 - Logfile created 11/20/2012 at 10:31:39
# Updated 17/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Sandy - SANDY-HP
# Boot Mode : Normal
# Running from : C:\Users\Sandy\Desktop\For BC\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.xpt
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Users\Sandy\AppData\Local\APN
Folder Deleted : C:\Users\Sandy\AppData\Local\Conduit
Folder Deleted : C:\Users\Sandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apjkpjchfbckhjhokinlgdbmibpbbjak
Folder Deleted : C:\Users\Sandy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gconbelphfnoopllbebkpkphgmmackde
Folder Deleted : C:\Users\Sandy\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Sandy\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Sandy\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\ConduitCommon
Folder Deleted : C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\CT3072253
Folder Deleted : C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
Folder Deleted : C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\extensions\plugin@yontoo.com
Folder Deleted : C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\extensions\staged
Folder Deleted : C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\Smartbar

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BB9EE8E8-D146-4BDD-B05D-CA0C77FF31E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jplinpmadfkdgipabgcdchbdikologlh
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0 (en-US)

Profile name : default
File : C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\prefs.js

C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\user.js ... Deleted !

Deleted : user_pref("CT3072253..clientLogIsEnabled", false);
Deleted : user_pref("CT3072253..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Deleted : user_pref("CT3072253..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Deleted : user_pref("CT3072253.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Deleted : user_pref("CT3072253.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Deleted : user_pref("CT3072253.AppTrackingLastCheckTime", "Sat Jun 23 2012 21:56:19 GMT-0400 (Eastern Daylight[...]
Deleted : user_pref("CT3072253.BrowserCompStateIsOpen_129573915102477663", true);
Deleted : user_pref("CT3072253.BrowserCompStateIsOpen_129749445530228833", true);
Deleted : user_pref("CT3072253.BrowserCompStateIsOpen_129749445881800338", true);
Deleted : user_pref("CT3072253.BrowserCompStateIsOpen_129805375651312503", true);
Deleted : user_pref("CT3072253.CTID", "CT3072253");
Deleted : user_pref("CT3072253.CurrentServerDate", "23-7-2012");
Deleted : user_pref("CT3072253.DSInstall", false);
Deleted : user_pref("CT3072253.DialogsAlignMode", "LTR");
Deleted : user_pref("CT3072253.DialogsGetterLastCheckTime", "Mon Jul 23 2012 02:24:05 GMT-0400 (Eastern Daylig[...]
Deleted : user_pref("CT3072253.DownloadReferralCookieData", "");
Deleted : user_pref("CT3072253.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3072253.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Deleted : user_pref("CT3072253.FirstServerDate", "8-4-2012");
Deleted : user_pref("CT3072253.FirstTime", true);
Deleted : user_pref("CT3072253.FirstTimeFF3", true);
Deleted : user_pref("CT3072253.FixPageNotFoundErrors", true);
Deleted : user_pref("CT3072253.GroupingServerCheckInterval", 1440);
Deleted : user_pref("CT3072253.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Deleted : user_pref("CT3072253.HPInstall", false);
Deleted : user_pref("CT3072253.HasUserGlobalKeys", true);
Deleted : user_pref("CT3072253.HomePageProtectorEnabled", false);
Deleted : user_pref("CT3072253.HomepageBeforeUnload", "chrome://branding/locale/browserconfig.properties");
Deleted : user_pref("CT3072253.Initialize", true);
Deleted : user_pref("CT3072253.InitializeCommonPrefs", true);
Deleted : user_pref("CT3072253.InstallationAndCookieDataSentCount", 3);
Deleted : user_pref("CT3072253.InstallationId", "ConduitXPEIntegration");
Deleted : user_pref("CT3072253.InstallationType", "ConduitXPEIntegration");
Deleted : user_pref("CT3072253.InstalledDate", "Sat Apr 07 2012 20:27:26 GMT-0700 (US Mountain Standard Time)"[...]
Deleted : user_pref("CT3072253.IsAlertDBUpdated", true);
Deleted : user_pref("CT3072253.IsGrouping", false);
Deleted : user_pref("CT3072253.IsInitSetupIni", true);
Deleted : user_pref("CT3072253.IsMulticommunity", false);
Deleted : user_pref("CT3072253.IsOpenThankYouPage", true);
Deleted : user_pref("CT3072253.IsOpenUninstallPage", false);
Deleted : user_pref("CT3072253.LanguagePackLastCheckTime", "Mon Jul 23 2012 02:24:05 GMT-0400 (Eastern Dayligh[...]
Deleted : user_pref("CT3072253.LanguagePackReloadIntervalMM", 1440);
Deleted : user_pref("CT3072253.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Deleted : user_pref("CT3072253.LastLogin_3.10.0.1", "Sat Apr 21 2012 10:25:06 GMT-0700 (US Mountain Standard T[...]
Deleted : user_pref("CT3072253.LastLogin_3.12.2.3", "Sat Jun 23 2012 21:56:02 GMT-0400 (Eastern Daylight Time)[...]
Deleted : user_pref("CT3072253.LastLogin_3.13.0.6", "Mon Jul 23 2012 02:24:05 GMT-0400 (Eastern Daylight Time)[...]
Deleted : user_pref("CT3072253.LatestVersion", "3.13.0.6");
Deleted : user_pref("CT3072253.Locale", "en");
Deleted : user_pref("CT3072253.MCDetectTooltipHeight", "83");
Deleted : user_pref("CT3072253.MCDetectTooltipShow", false);
Deleted : user_pref("CT3072253.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Deleted : user_pref("CT3072253.MCDetectTooltipWidth", "295");
Deleted : user_pref("CT3072253.MyStuffEnabledAtInstallation", true);
Deleted : user_pref("CT3072253.OriginalFirstVersion", "3.10.0.1");
Deleted : user_pref("CT3072253.SHRINK_TOOLBAR", 1);
Deleted : user_pref("CT3072253.SearchCaption", "uTorrentControl2 Customized Web Search");
Deleted : user_pref("CT3072253.SearchEngineBeforeUnload", "Yahoo");
Deleted : user_pref("CT3072253.SearchFromAddressBarIsInit", true);
Deleted : user_pref("CT3072253.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Deleted : user_pref("CT3072253.SearchInNewTabEnabled", true);
Deleted : user_pref("CT3072253.SearchInNewTabIntervalMM", 1440);
Deleted : user_pref("CT3072253.SearchInNewTabLastCheckTime", "Mon Jul 23 2012 02:24:00 GMT-0400 (Eastern Dayli[...]
Deleted : user_pref("CT3072253.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Deleted : user_pref("CT3072253.SearchProtectorEnabled", false);
Deleted : user_pref("CT3072253.SearchProtectorToolbarDisabled", false);
Deleted : user_pref("CT3072253.SendProtectorDataViaLogin", true);
Deleted : user_pref("CT3072253.ServiceMapLastCheckTime", "Mon Jul 23 2012 02:24:01 GMT-0400 (Eastern Daylight [...]
Deleted : user_pref("CT3072253.SettingsLastCheckTime", "Mon Jul 23 2012 02:23:59 GMT-0400 (Eastern Daylight Ti[...]
Deleted : user_pref("CT3072253.SettingsLastUpdate", "1342354602");
Deleted : user_pref("CT3072253.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3072253&SearchSource=13");
Deleted : user_pref("CT3072253.ThirdPartyComponentsInterval", 504);
Deleted : user_pref("CT3072253.ThirdPartyComponentsLastCheck", "Mon Jul 23 2012 02:23:59 GMT-0400 (Eastern Day[...]
Deleted : user_pref("CT3072253.ThirdPartyComponentsLastUpdate", "1331805997");
Deleted : user_pref("CT3072253.ToolbarShrinkedFromSetup", false);
Deleted : user_pref("CT3072253.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Deleted : user_pref("CT3072253.UserID", "UN82611455676186195");
Deleted : user_pref("CT3072253.ValidationData_Toolbar", 2);
Deleted : user_pref("CT3072253.addressBarTakeOverEnabledInHidden", "true");
Deleted : user_pref("CT3072253.alertChannelId", "1463702");
Deleted : user_pref("CT3072253.approveUntrustedApps", false);
Deleted : user_pref("CT3072253.autoDisableScopes", 14);
Deleted : user_pref("CT3072253.backendstorage.cb_experience_000", "31");
Deleted : user_pref("CT3072253.backendstorage.cb_firstuse0100", "31");
Deleted : user_pref("CT3072253.backendstorage.cb_user_id_000", "43423337303834343533333333315F46697265666F78")[...]
Deleted : user_pref("CT3072253.backendstorage.cbcountry_000", "5553");
Deleted : user_pref("CT3072253.backendstorage.cbcountry_001", "5553");
Deleted : user_pref("CT3072253.backendstorage.cbfirsttime", "5361742041707220303720323031322032303A32373A33382[...]
Deleted : user_pref("CT3072253.cbcountry_001", "US");
Deleted : user_pref("CT3072253.cbfirsttime", "Thu Aug 09 2012 08:54:34 GMT-0400 (Eastern Daylight Time)");
Deleted : user_pref("CT3072253.components.1000080", true);
Deleted : user_pref("CT3072253.defaultSearch", "FALSE");
Deleted : user_pref("CT3072253.embeddedsData", "[{\"appId\":\"129571859753931591\",\"apiPermissions\":{\"cross[...]
Deleted : user_pref("CT3072253.enableSearchFromAddressBar", "FALSE");
Deleted : user_pref("CT3072253.firstTimeDialogOpened", true);
Deleted : user_pref("CT3072253.fixPageNotFoundError", "true");
Deleted : user_pref("CT3072253.fixPageNotFoundErrorInHidden", "true");
Deleted : user_pref("CT3072253.fixUrls", true);
Deleted : user_pref("CT3072253.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Deleted : user_pref("CT3072253.globalFirstTimeInfoLastCheckTime", "Mon Jul 23 2012 02:24:05 GMT-0400 (Eastern [...]
Deleted : user_pref("CT3072253.homepageProtectorEnableByLogin", true);
Deleted : user_pref("CT3072253.initDone", true);
Deleted : user_pref("CT3072253.installId", "fft5A2B.tmp.exe");
Deleted : user_pref("CT3072253.installType", "XPE");
Deleted : user_pref("CT3072253.isAppTrackingManagerOn", true);
Deleted : user_pref("CT3072253.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3072253.isNewTabEnabled", true);
Deleted : user_pref("CT3072253.isPerformedSmartBarTransition", "true");
Deleted : user_pref("CT3072253.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Deleted : user_pref("CT3072253.myStuffEnabled", true);
Deleted : user_pref("CT3072253.myStuffPublihserMinWidth", 400);
Deleted : user_pref("CT3072253.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Deleted : user_pref("CT3072253.myStuffServiceIntervalMM", 1440);
Deleted : user_pref("CT3072253.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Deleted : user_pref("CT3072253.navigateToUrlOnSearch", false);
Deleted : user_pref("CT3072253.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"Even if you don't come yourself,[...]
Deleted : user_pref("CT3072253.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Deleted : user_pref("CT3072253.oldAppsList", "129295695672325902,129571859753931591,111,129593762370823811,129[...]
Deleted : user_pref("CT3072253.openThankYouPage", "true");
Deleted : user_pref("CT3072253.openUninstallPage", "FALSE");
Deleted : user_pref("CT3072253.revertSettingsEnabled", false);
Deleted : user_pref("CT3072253.search.searchAppId", "129571859753931591");
Deleted : user_pref("CT3072253.search.searchCount", "0");
Deleted : user_pref("CT3072253.searchInNewTabEnabledInHidden", "true");
Deleted : user_pref("CT3072253.searchProtectorDialogDelayInSec", 10);
Deleted : user_pref("CT3072253.searchProtectorEnableByLogin", true);
Deleted : user_pref("CT3072253.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3072253.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Deleted : user_pref("CT3072253.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Deleted : user_pref("CT3072253.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Deleted : user_pref("CT3072253.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3072253.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3072253.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Deleted : user_pref("CT3072253.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1344516866345");
Deleted : user_pref("CT3072253.serviceLayer_services_appTracking_lastUpdate", "1344516871622");
Deleted : user_pref("CT3072253.serviceLayer_services_appsMetadata_lastUpdate", "1344788081305");
Deleted : user_pref("CT3072253.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1344516868514");
Deleted : user_pref("CT3072253.serviceLayer_services_login_10.10.20.14_lastUpdate", "1344788081513");
Deleted : user_pref("CT3072253.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1344516868488");
Deleted : user_pref("CT3072253.serviceLayer_services_searchAPI_lastUpdate", "1344788081564");
Deleted : user_pref("CT3072253.serviceLayer_services_serviceMap_lastUpdate", "1344788081035");
Deleted : user_pref("CT3072253.serviceLayer_services_toolbarContextMenu_lastUpdate", "1344516870643");
Deleted : user_pref("CT3072253.serviceLayer_services_toolbarSettings_lastUpdate", "1344788081313");
Deleted : user_pref("CT3072253.serviceLayer_services_translation_lastUpdate", "1344788081141");
Deleted : user_pref("CT3072253.settingsINI", true);
Deleted : user_pref("CT3072253.shouldFirstTimeDialog", "false");
Deleted : user_pref("CT3072253.smartbar.CTID", "CT3072253");
Deleted : user_pref("CT3072253.smartbar.Uninstall", "0");
Deleted : user_pref("CT3072253.smartbar.toolbarName", "uTorrentControl2 ");
Deleted : user_pref("CT3072253.testingCtid", "");
Deleted : user_pref("CT3072253.toolbarAppMetaDataLastCheckTime", "Mon Jul 23 2012 02:24:05 GMT-0400 (Eastern D[...]
Deleted : user_pref("CT3072253.toolbarBornServerTime", "8-4-2012");
Deleted : user_pref("CT3072253.toolbarContextMenuLastCheckTime", "Mon Jul 23 2012 02:24:05 GMT-0400 (Eastern D[...]
Deleted : user_pref("CT3072253.toolbarCurrentServerTime", "12-8-2012");
Deleted : user_pref("CT3072253.url_history0001", "hxxp://bvs.wikidot.com/items:filter-wrappings:::clickhandler[...]
Deleted : user_pref("CT3072253.usagesFlag", 2);
Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3072253/CT3072253[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1463702/1459356/US", "\"0\"[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3072253", [...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3072253",[...]
Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"229[...]
Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Sandy\\AppData\\Roaming\\Mozilla\\F[...]
Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.13.0.6");
Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?ei=utf-8&[...]
Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT3072253");
Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT3072253");
Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT3072253");
Deleted : user_pref("CommunityToolbar.globalUserId", "d92fa4cd-3a2d-4c94-a0b9-3ea57c49a7dc");
Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3072253");
Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Mon Jul 23 2012 02:24:1[...]
Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Mon Jul 23 2012 02:24:19 GMT-040[...]
Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Mon Jul 23 2012 02:24:11 GMT-0400 (E[...]
Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Deleted : user_pref("CommunityToolbar.notifications.userId", "a3b646c1-e49c-431e-8336-88136072e7a8");
Deleted : user_pref("CommunityToolbar.originalHomepage", "chrome://branding/locale/browserconfig.properties");
Deleted : user_pref("CommunityToolbar.originalSearchEngine", "Yahoo");
Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3072253");
Deleted : user_pref("extensions.4fc49e6b3ec30.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.InstallationTime", 1343024641);
Deleted : user_pref("extensions.crossriderapp4493.4493.active", true);
Deleted : user_pref("extensions.crossriderapp4493.4493.addressbar", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.affid", "0");
Deleted : user_pref("extensions.crossriderapp4493.4493.backgroundjs", "\n\n\"undefined\"!=typeof _GPL_BG_NEW&&[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.backgroundver", 7);
Deleted : user_pref("extensions.crossriderapp4493.4493.can_run_bg_code", true);
Deleted : user_pref("extensions.crossriderapp4493.4493.certdomaininstaller", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.changeprevious", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.InstallationTime.expiration", "Fri Feb 01 2030 0[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.InstallationTime.value", "1343024641");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_aoi.value", "1343024641");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_blocklist.expiration", "Tue Nov 20 2012 10:[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_blocklist.value", "%22nonexistantdomain.com[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_country_code.expiration", "Wed Nov 21 2012 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_country_code.value", "%22US%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_crr.expiration", "Fri Feb 01 2030 00:00:00 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_crr.value", "1353385169");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 01 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_hotfix20111102645.value", "%221%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_installer_params.expiration", "Fri Feb 01 2[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_installer_params.value", "%7B%22source_id%2[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_parent_zoneid.value", "%2214019%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_pc_20120828.expiration", "Fri Feb 01 2030 0[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_pc_20120828.value", "1346343167350");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 00[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_product_id.value", "%221175%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:00:[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_zoneid.value", "%2259618%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.dbtest.expiration", "Fri Feb 01 2030 00:00:00 GM[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.dbtest.value", "1346159195695");
Deleted : user_pref("extensions.crossriderapp4493.4493.description", "Coupon Companion");
Deleted : user_pref("extensions.crossriderapp4493.4493.domain", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.emailsig", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.enablesearch", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.exposesites", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.fbremoteurl", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.group", 0);
Deleted : user_pref("extensions.crossriderapp4493.4493.homepage", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.iframe", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_appVer.expiration", "Fri Feb 01 20[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_appVer.value", "41");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_lastVersion.expiration", "Fri Feb [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_lastVersion.value", "0");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_meta.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_meta.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_nextCheck.expiration", "Tue Nov 20[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_nextCheck.value", "true");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_queue.expiration", "Fri Feb 01 203[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_queue.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_remote_resources.expiration", "Fri[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_remote_resources.value", "%7B%22re[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _GP[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.manifesturl", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.name", "Coupon Companion");
Deleted : user_pref("extensions.crossriderapp4493.4493.newtab", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.opensearch", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1.code", "appAPI._cr_config={appID:funct[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1.name", "base");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000014.code", "Array.prototype.indexOf|[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000014.name", "GPL Plugin (Loader)");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000014.ver", 7);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000015.code", "var _GPL_BG={vars:{},rul[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000015.name", "GPL Background (BG)");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000015.ver", 4);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_13.code", "(function(a){a.selectedText=f[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_13.name", "CrossriderAppUtils");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_13.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefin[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_14.name", "CrossriderUtils");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_14.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_15.code", "(function(f){var u={};var e=M[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_15.name", "FacebookFFIE");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_15.ver", 1);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_16.code", "if((typeof isBackground===\"u[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_16.name", "FFAppAPIWrapper");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_16.ver", 4);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_17.code", "if(typeof window!==\"undefine[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_17.name", "jQuery");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_17.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_21.code", "var CrossriderDebugManager=(f[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_21.name", "debug");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_21.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_22.code", "(function(a){appAPI.queueMana[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_22.name", "resources");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_22.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_28.code", "var CrossriderInitializerPlug[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_28.name", "initializer");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_28.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_4.code", "/*! jQuery v1.7.1 jquery.com |[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_4.name", "jquery_1_7_1");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_4.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_47.code", "(function(){appAPI.ready=func[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_47.name", "resources_background");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_47.ver", 1);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins_lists.plugins_0", "17,14,16,47,1000015");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins_lists.plugins_1", "17,14,13,16,15,4,1,21,22,100[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.pluginsurl", "hxxp://app-static.crossrider.com/plugin/a[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.pluginsversion", 17);
Deleted : user_pref("extensions.crossriderapp4493.4493.premium", true);
Deleted : user_pref("extensions.crossriderapp4493.4493.publisher", "215 Apps");
Deleted : user_pref("extensions.crossriderapp4493.4493.searchstatus", 0);
Deleted : user_pref("extensions.crossriderapp4493.4493.setnewtab", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.settingsurl", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.thankyou", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.updateinterval", 360);
Deleted : user_pref("extensions.crossriderapp4493.4493.ver", 41);
Deleted : user_pref("extensions.crossriderapp4493.adsOldValue", 14);
Deleted : user_pref("extensions.crossriderapp4493.apps", "4493");
Deleted : user_pref("extensions.crossriderapp4493.bic", "138b281b38e8b0b0eb477d1ef91c927f");
Deleted : user_pref("extensions.crossriderapp4493.cid", 4493);
Deleted : user_pref("extensions.crossriderapp4493.firstrun", false);
Deleted : user_pref("extensions.crossriderapp4493.hadappinstalled", true);
Deleted : user_pref("extensions.crossriderapp4493.installationdate", 1343024641);
Deleted : user_pref("extensions.crossriderapp4493.lastcheck", 22557064);
Deleted : user_pref("extensions.crossriderapp4493.lastcheckitem", 22557065);
Deleted : user_pref("extensions.crossriderapp4493.misc.lastBgWorkerTimer", "1344517265936");
Deleted : user_pref("extensions.crossriderapp4493.misc.lastDomWorkerTimer", "1344517265930");
Deleted : user_pref("extensions.crossriderapp4493.modetype", "production");
Deleted : user_pref("extensions.enabledAddons", "4fc49e6b3eb82@4fc49e6b3ebbc.info:1.0,lxadsiemrm@lxadsiemrm.or[...]
Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=[...]

-\\ Google Chrome v23.0.1271.64

File : C:\Users\Sandy\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [35017 octets] - [20/11/2012 10:31:39]

########## EOF - C:\AdwCleaner[S1].txt - [35078 octets] ##########

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:41 PM

Posted 21 November 2012 - 04:47 PM

Run TDSSkiller again and post the new log

Run malwarebytes again and post the new log

You missed to post junkware tool log

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#9 Drift

Drift
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:41 PM

Posted 21 November 2012 - 05:21 PM

I understand that I did, and explained my reasons why in the post before the logs. However, I will try to get those before I start up the next step. Juuust need to figure out why it just suddenly closes after a certain part.


EDIT: Oop, found out the reason. Will give the logs in a sec.

Junkware Removal Tool

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 3.4.1 (11.21.2012)
OS: Windows 7 Home Premium x64
Ran by Sandy on Wed 11/21/2012 at 17:25:03.76
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\toolbar\webbrowser\\{687578b9-7132-4a7a-80e4-30ee31099e03}
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\urlsearchhooks\\{687578b9-7132-4a7a-80e4-30ee31099e03}
Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\toolbar\\{ef99bd32-c1fb-11d2-892f-0090271d4f88}



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_classes_root\clsid\{ef99bd32-c1fb-11d2-892f-0090271d4f88}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Sandy\appdata\local\coupon companion"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupon companion"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"
Successfully deleted: [Folder] "C:\Program Files (x86)\free youtube downloader"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\extensions\crossriderapp4493@crossrider.com
Successfully deleted: [File] C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\extensions\lxadsiemrm@lxadsiemrm.org.xpi [Tracur]
Successfully deleted: [OneClickDownloader@OneClickDownloader.com.xpi] from C:\Users\Sandy\AppData\Roaming\Mozilla\Firefox\Profiles\1iqkede9.default\extensions



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 11/21/2012 at 17:27:13.63
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Edited by Drift, 21 November 2012 - 05:28 PM.


#10 Drift

Drift
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:41 PM

Posted 31 December 2012 - 07:28 AM

Happy Holidays, hope you have had a good one.

Here are the logs you wanted (Did the Junkware Tool again just in case.)


TDSSkiller
==========

06:31:42.0965 3296 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
06:31:43.0374 3296 ============================================================
06:31:43.0374 3296 Current date / time: 2012/12/31 06:31:43.0374
06:31:43.0374 3296 SystemInfo:
06:31:43.0374 3296
06:31:43.0375 3296 OS Version: 6.1.7601 ServicePack: 1.0
06:31:43.0375 3296 Product type: Workstation
06:31:43.0375 3296 ComputerName: SANDY-HP
06:31:43.0375 3296 UserName: Sandy
06:31:43.0375 3296 Windows directory: C:\Windows
06:31:43.0375 3296 System windows directory: C:\Windows
06:31:43.0375 3296 Running under WOW64
06:31:43.0375 3296 Processor architecture: Intel x64
06:31:43.0375 3296 Number of processors: 2
06:31:43.0375 3296 Page size: 0x1000
06:31:43.0375 3296 Boot type: Normal boot
06:31:43.0375 3296 ============================================================
06:31:43.0970 3296 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:31:43.0979 3296 ============================================================
06:31:43.0979 3296 \Device\Harddisk0\DR0:
06:31:43.0980 3296 MBR partitions:
06:31:43.0980 3296 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
06:31:43.0980 3296 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x380E8800
06:31:43.0980 3296 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3814C800, BlocksNum 0x2205800
06:31:43.0980 3296 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
06:31:43.0980 3296 ============================================================
06:31:44.0015 3296 C: <-> \Device\Harddisk0\DR0\Partition2
06:31:44.0062 3296 D: <-> \Device\Harddisk0\DR0\Partition3
06:31:44.0063 3296 ============================================================
06:31:44.0063 3296 Initialize success
06:31:44.0063 3296 ============================================================
06:31:51.0049 6532 ============================================================
06:31:51.0049 6532 Scan started
06:31:51.0049 6532 Mode: Manual;
06:31:51.0049 6532 ============================================================
06:31:51.0286 6532 ================ Scan system memory ========================
06:31:51.0286 6532 System memory - ok
06:31:51.0287 6532 ================ Scan services =============================
06:31:51.0875 6532 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
06:31:51.0880 6532 1394ohci - ok
06:31:51.0924 6532 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
06:31:51.0929 6532 ACPI - ok
06:31:51.0956 6532 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
06:31:51.0958 6532 AcpiPmi - ok
06:31:52.0049 6532 [ 09E61047B0CEF21559CFCEDF4F14D216 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
06:31:52.0064 6532 Ad-Aware Service - ok
06:31:52.0111 6532 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys
06:31:52.0114 6532 adfs - ok
06:31:52.0235 6532 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
06:31:52.0239 6532 AdobeFlashPlayerUpdateSvc - ok
06:31:52.0285 6532 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
06:31:52.0294 6532 adp94xx - ok
06:31:52.0342 6532 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
06:31:52.0348 6532 adpahci - ok
06:31:52.0401 6532 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
06:31:52.0406 6532 adpu320 - ok
06:31:52.0508 6532 [ E690647AE0B4111E3D82FCE27FDFD9B4 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
06:31:52.0518 6532 AdvancedSystemCareService5 - ok
06:31:52.0630 6532 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
06:31:52.0633 6532 AeLookupSvc - ok
06:31:52.0706 6532 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
06:31:52.0710 6532 AERTFilters - ok
06:31:52.0753 6532 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
06:31:52.0762 6532 AFD - ok
06:31:52.0828 6532 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
06:31:52.0862 6532 AgereSoftModem - ok
06:31:52.0905 6532 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
06:31:52.0907 6532 agp440 - ok
06:31:53.0066 6532 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
06:31:53.0066 6532 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
06:31:53.0073 6532 Akamai ( HiddenFile.Multi.Generic ) - warning
06:31:53.0073 6532 Akamai - detected HiddenFile.Multi.Generic (1)
06:31:53.0115 6532 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
06:31:53.0117 6532 ALG - ok
06:31:53.0144 6532 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
06:31:53.0145 6532 aliide - ok
06:31:53.0181 6532 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
06:31:53.0182 6532 amdide - ok
06:31:53.0211 6532 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
06:31:53.0213 6532 AmdK8 - ok
06:31:53.0236 6532 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
06:31:53.0238 6532 AmdPPM - ok
06:31:53.0264 6532 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
06:31:53.0266 6532 amdsata - ok
06:31:53.0302 6532 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
06:31:53.0306 6532 amdsbs - ok
06:31:53.0323 6532 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
06:31:53.0324 6532 amdxata - ok
06:31:53.0353 6532 [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
06:31:53.0355 6532 androidusb - ok
06:31:53.0403 6532 [ AD12F5C7251BB8D575D560894E73CBBA ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
06:31:53.0405 6532 Apowersoft_AudioDevice - ok
06:31:53.0432 6532 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
06:31:53.0435 6532 AppID - ok
06:31:53.0458 6532 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
06:31:53.0460 6532 AppIDSvc - ok
06:31:53.0481 6532 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
06:31:53.0483 6532 Appinfo - ok
06:31:53.0592 6532 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
06:31:53.0594 6532 Apple Mobile Device - ok
06:31:53.0632 6532 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
06:31:53.0634 6532 arc - ok
06:31:53.0663 6532 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
06:31:53.0666 6532 arcsas - ok
06:31:53.0771 6532 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
06:31:53.0774 6532 aspnet_state - ok
06:31:53.0797 6532 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
06:31:53.0800 6532 AsyncMac - ok
06:31:53.0828 6532 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
06:31:53.0830 6532 atapi - ok
06:31:53.0904 6532 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
06:31:53.0935 6532 athr - ok
06:31:53.0999 6532 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:31:54.0015 6532 AudioEndpointBuilder - ok
06:31:54.0033 6532 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
06:31:54.0040 6532 AudioSrv - ok
06:31:54.0096 6532 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
06:31:54.0099 6532 AxInstSV - ok
06:31:54.0149 6532 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
06:31:54.0161 6532 b06bdrv - ok
06:31:54.0229 6532 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
06:31:54.0232 6532 b57nd60a - ok
06:31:54.0298 6532 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
06:31:54.0303 6532 BBSvc - ok
06:31:54.0407 6532 [ 0E7A9264576B40638A3FBC804DE1FF76 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
06:31:54.0511 6532 BCM43XX - ok
06:31:54.0565 6532 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
06:31:54.0568 6532 BDESVC - ok
06:31:54.0595 6532 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
06:31:54.0596 6532 Beep - ok
06:31:54.0696 6532 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
06:31:54.0713 6532 BFE - ok
06:31:54.0758 6532 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
06:31:54.0761 6532 blbdrive - ok
06:31:54.0823 6532 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
06:31:54.0831 6532 Bonjour Service - ok
06:31:54.0875 6532 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
06:31:54.0878 6532 bowser - ok
06:31:54.0912 6532 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
06:31:54.0914 6532 BrFiltLo - ok
06:31:54.0933 6532 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
06:31:54.0935 6532 BrFiltUp - ok
06:31:54.0979 6532 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
06:31:54.0981 6532 Browser - ok
06:31:55.0023 6532 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
06:31:55.0027 6532 Brserid - ok
06:31:55.0092 6532 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
06:31:55.0094 6532 BrSerWdm - ok
06:31:55.0141 6532 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
06:31:55.0142 6532 BrUsbMdm - ok
06:31:55.0167 6532 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
06:31:55.0168 6532 BrUsbSer - ok
06:31:55.0200 6532 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
06:31:55.0203 6532 BthEnum - ok
06:31:55.0232 6532 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
06:31:55.0234 6532 BTHMODEM - ok
06:31:55.0284 6532 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
06:31:55.0287 6532 BthPan - ok
06:31:55.0339 6532 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
06:31:55.0350 6532 BTHPORT - ok
06:31:55.0414 6532 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
06:31:55.0417 6532 bthserv - ok
06:31:55.0456 6532 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
06:31:55.0459 6532 BTHUSB - ok
06:31:55.0521 6532 [ A17EEDC1B59232346753D5E9A652CE26 ] CATmobile C:\Program Files (x86)\T-Mobile\webConnect Manager\conappssvc.exe
06:31:55.0525 6532 CATmobile - ok
06:31:55.0558 6532 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
06:31:55.0561 6532 cdfs - ok
06:31:55.0597 6532 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
06:31:55.0601 6532 cdrom - ok
06:31:55.0630 6532 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
06:31:55.0633 6532 CertPropSvc - ok
06:31:55.0666 6532 [ 533328A3D9A9C286682525842547540C ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
06:31:55.0669 6532 CinemaNow Service - ok
06:31:55.0705 6532 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
06:31:55.0708 6532 circlass - ok
06:31:55.0742 6532 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
06:31:55.0759 6532 CLFS - ok
06:31:55.0870 6532 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:31:55.0873 6532 clr_optimization_v2.0.50727_32 - ok
06:31:55.0909 6532 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
06:31:55.0912 6532 clr_optimization_v2.0.50727_64 - ok
06:31:55.0992 6532 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:31:55.0996 6532 clr_optimization_v4.0.30319_32 - ok
06:31:56.0011 6532 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
06:31:56.0015 6532 clr_optimization_v4.0.30319_64 - ok
06:31:56.0048 6532 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
06:31:56.0049 6532 CmBatt - ok
06:31:56.0091 6532 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
06:31:56.0092 6532 cmdide - ok
06:31:56.0136 6532 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
06:31:56.0145 6532 CNG - ok
06:31:56.0186 6532 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
06:31:56.0188 6532 Compbatt - ok
06:31:56.0217 6532 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
06:31:56.0219 6532 CompositeBus - ok
06:31:56.0226 6532 COMSysApp - ok
06:31:56.0289 6532 [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64 C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
06:31:56.0290 6532 cpudrv64 - ok
06:31:56.0331 6532 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
06:31:56.0332 6532 crcdisk - ok
06:31:56.0369 6532 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
06:31:56.0374 6532 CryptSvc - ok
06:31:56.0461 6532 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
06:31:56.0493 6532 cvhsvc - ok
06:31:56.0551 6532 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
06:31:56.0561 6532 DcomLaunch - ok
06:31:56.0626 6532 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
06:31:56.0633 6532 defragsvc - ok
06:31:56.0737 6532 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
06:31:56.0741 6532 Desura Install Service - ok
06:31:56.0757 6532 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
06:31:56.0759 6532 DfsC - ok
06:31:56.0808 6532 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
06:31:56.0813 6532 Dhcp - ok
06:31:56.0866 6532 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
06:31:56.0868 6532 discache - ok
06:31:56.0889 6532 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
06:31:56.0892 6532 Disk - ok
06:31:56.0933 6532 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
06:31:56.0937 6532 Dnscache - ok
06:31:56.0962 6532 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
06:31:56.0967 6532 dot3svc - ok
06:31:57.0002 6532 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
06:31:57.0005 6532 DPS - ok
06:31:57.0029 6532 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
06:31:57.0030 6532 drmkaud - ok
06:31:57.0070 6532 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
06:31:57.0074 6532 dtsoftbus01 - ok
06:31:57.0133 6532 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
06:31:57.0163 6532 DXGKrnl - ok
06:31:57.0169 6532 EagleX64 - ok
06:31:57.0234 6532 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
06:31:57.0238 6532 EapHost - ok
06:31:57.0369 6532 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
06:31:57.0495 6532 ebdrv - ok
06:31:57.0559 6532 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
06:31:57.0561 6532 EFS - ok
06:31:57.0625 6532 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
06:31:57.0642 6532 ehRecvr - ok
06:31:57.0698 6532 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
06:31:57.0701 6532 ehSched - ok
06:31:57.0746 6532 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
06:31:57.0756 6532 elxstor - ok
06:31:57.0813 6532 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
06:31:57.0815 6532 ErrDev - ok
06:31:57.0868 6532 esgiguard - ok
06:31:57.0943 6532 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
06:31:57.0949 6532 EventSystem - ok
06:31:57.0988 6532 [ D83EB7ADE99D99A4CD6568AC1261D35E ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
06:31:57.0994 6532 ewusbnet - ok
06:31:58.0027 6532 [ 86F7951BBCEE4A86E79A97306BD14318 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
06:31:58.0030 6532 ew_hwusbdev - ok
06:31:58.0062 6532 [ 55E0EDA185869F7EA67EA97FD0655B39 ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
06:31:58.0064 6532 ew_usbenumfilter - ok
06:31:58.0090 6532 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
06:31:58.0095 6532 exfat - ok
06:31:58.0118 6532 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
06:31:58.0121 6532 fastfat - ok
06:31:58.0152 6532 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
06:31:58.0161 6532 Fax - ok
06:31:58.0201 6532 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
06:31:58.0203 6532 fdc - ok
06:31:58.0238 6532 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
06:31:58.0241 6532 fdPHost - ok
06:31:58.0259 6532 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
06:31:58.0262 6532 FDResPub - ok
06:31:58.0277 6532 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
06:31:58.0280 6532 FileInfo - ok
06:31:58.0290 6532 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
06:31:58.0291 6532 Filetrace - ok
06:31:58.0344 6532 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
06:31:58.0353 6532 FLEXnet Licensing Service - ok
06:31:58.0376 6532 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
06:31:58.0377 6532 flpydisk - ok
06:31:58.0416 6532 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
06:31:58.0421 6532 FltMgr - ok
06:31:58.0467 6532 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
06:31:58.0499 6532 FontCache - ok
06:31:58.0557 6532 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
06:31:58.0559 6532 FontCache3.0.0.0 - ok
06:31:58.0578 6532 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
06:31:58.0581 6532 FsDepends - ok
06:31:58.0612 6532 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
06:31:58.0614 6532 fssfltr - ok
06:31:58.0709 6532 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
06:31:58.0755 6532 fsssvc - ok
06:31:58.0817 6532 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
06:31:58.0819 6532 Fs_Rec - ok
06:31:58.0853 6532 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
06:31:58.0857 6532 fvevol - ok
06:31:58.0892 6532 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
06:31:58.0895 6532 gagp30kx - ok
06:31:58.0964 6532 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
06:31:58.0969 6532 GamesAppService - ok
06:31:59.0003 6532 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
06:31:59.0005 6532 GEARAspiWDM - ok
06:31:59.0054 6532 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
06:31:59.0071 6532 gpsvc - ok
06:31:59.0127 6532 [ 721CE1551F8198714F3CABFE2147939B ] Gun C:\Game\SoftnyxGame\GunBoundIS\Gun64.sys
06:31:59.0129 6532 Gun - ok
06:31:59.0216 6532 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:31:59.0217 6532 gupdate - ok
06:31:59.0226 6532 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:31:59.0227 6532 gupdatem - ok
06:31:59.0257 6532 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
06:31:59.0260 6532 gusvc - ok
06:31:59.0287 6532 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
06:31:59.0288 6532 hamachi - ok
06:31:59.0411 6532 [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
06:31:59.0481 6532 Hamachi2Svc - ok
06:31:59.0514 6532 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
06:31:59.0516 6532 hcw85cir - ok
06:31:59.0564 6532 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
06:31:59.0569 6532 HdAudAddService - ok
06:31:59.0641 6532 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
06:31:59.0644 6532 HDAudBus - ok
06:31:59.0672 6532 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
06:31:59.0674 6532 HECIx64 - ok
06:31:59.0701 6532 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
06:31:59.0703 6532 HidBatt - ok
06:31:59.0748 6532 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
06:31:59.0751 6532 HidBth - ok
06:31:59.0789 6532 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
06:31:59.0791 6532 HidIr - ok
06:31:59.0832 6532 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
06:31:59.0834 6532 hidserv - ok
06:31:59.0861 6532 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
06:31:59.0863 6532 HidUsb - ok
06:31:59.0938 6532 [ 34E95DE386032FD7F14C228DD8E1CDBF ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
06:31:59.0940 6532 HiPatchService - ok
06:31:59.0969 6532 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
06:31:59.0974 6532 hkmsvc - ok
06:32:00.0014 6532 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
06:32:00.0021 6532 HomeGroupListener - ok
06:32:00.0044 6532 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
06:32:00.0050 6532 HomeGroupProvider - ok
06:32:00.0123 6532 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
06:32:00.0126 6532 HP Support Assistant Service - ok
06:32:00.0171 6532 [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
06:32:00.0175 6532 HP Wireless Assistant Service - ok
06:32:00.0247 6532 [ 01091B900E15878B4434F9C726C4541D ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
06:32:00.0259 6532 hpqwmiex - ok
06:32:00.0320 6532 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
06:32:00.0323 6532 HpSAMD - ok
06:32:00.0372 6532 [ 77C15D7E8F002A173EEBFF0B20CD697D ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
06:32:00.0373 6532 HPWMISVC - ok
06:32:00.0530 6532 [ 917AD8239B7FFE908FF8F715A534D273 ] hshld C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe
06:32:00.0544 6532 hshld - ok
06:32:00.0647 6532 [ BBC89DA4065BDCE34257BE95B2F636EE ] HssDRV6 C:\Windows\system32\DRIVERS\hssdrv6.sys
06:32:00.0649 6532 HssDRV6 - ok
06:32:00.0732 6532 [ E521D91D1A3DDEB2867AA091A8A9D156 ] HssSrv C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
06:32:00.0740 6532 HssSrv - ok
06:32:00.0811 6532 [ 443156D4CA230724B8FF5234B0C9FFFC ] HssTrayService C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
06:32:00.0813 6532 HssTrayService - ok
06:32:00.0905 6532 [ BB4B1326F64C3E1C1102258DC453851E ] HssWd C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
06:32:00.0913 6532 HssWd - ok
06:32:01.0002 6532 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
06:32:01.0019 6532 HTTP - ok
06:32:01.0051 6532 [ 6E05228393CD614B983568EC40C262C3 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
06:32:01.0055 6532 hwdatacard - ok
06:32:01.0077 6532 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
06:32:01.0079 6532 hwpolicy - ok
06:32:01.0111 6532 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
06:32:01.0114 6532 i8042prt - ok
06:32:01.0163 6532 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
06:32:01.0170 6532 iaStor - ok
06:32:01.0219 6532 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
06:32:01.0220 6532 IAStorDataMgrSvc - ok
06:32:01.0269 6532 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
06:32:01.0275 6532 iaStorV - ok
06:32:01.0350 6532 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
06:32:01.0353 6532 IDriverT - ok
06:32:01.0432 6532 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
06:32:01.0445 6532 idsvc - ok
06:32:01.0689 6532 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
06:32:01.0924 6532 igfx - ok
06:32:01.0958 6532 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
06:32:01.0959 6532 iirsp - ok
06:32:02.0019 6532 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
06:32:02.0031 6532 IKEEXT - ok
06:32:02.0134 6532 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
06:32:02.0215 6532 IntcAzAudAddService - ok
06:32:02.0262 6532 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
06:32:02.0265 6532 IntcDAud - ok
06:32:02.0335 6532 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
06:32:02.0337 6532 intelide - ok
06:32:02.0370 6532 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
06:32:02.0373 6532 intelppm - ok
06:32:02.0412 6532 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
06:32:02.0417 6532 IPBusEnum - ok
06:32:02.0451 6532 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:32:02.0453 6532 IpFilterDriver - ok
06:32:02.0494 6532 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
06:32:02.0499 6532 iphlpsvc - ok
06:32:02.0537 6532 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
06:32:02.0543 6532 IPMIDRV - ok
06:32:02.0580 6532 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
06:32:02.0583 6532 IPNAT - ok
06:32:02.0656 6532 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
06:32:02.0665 6532 iPod Service - ok
06:32:02.0741 6532 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
06:32:02.0743 6532 IRENUM - ok
06:32:02.0778 6532 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
06:32:02.0780 6532 isapnp - ok
06:32:02.0835 6532 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
06:32:02.0840 6532 iScsiPrt - ok
06:32:02.0891 6532 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
06:32:02.0893 6532 kbdclass - ok
06:32:02.0938 6532 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
06:32:02.0939 6532 kbdhid - ok
06:32:02.0959 6532 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
06:32:02.0960 6532 KeyIso - ok
06:32:03.0027 6532 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
06:32:03.0030 6532 KSecDD - ok
06:32:03.0111 6532 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
06:32:03.0114 6532 KSecPkg - ok
06:32:03.0151 6532 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
06:32:03.0153 6532 ksthunk - ok
06:32:03.0191 6532 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
06:32:03.0197 6532 KtmRm - ok
06:32:03.0233 6532 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
06:32:03.0238 6532 LanmanServer - ok
06:32:03.0267 6532 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
06:32:03.0271 6532 LanmanWorkstation - ok
06:32:03.0351 6532 [ 285954C6C6EF43B78AB84034750FAC6A ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
06:32:03.0353 6532 libusb0 - ok
06:32:03.0376 6532 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
06:32:03.0378 6532 lltdio - ok
06:32:03.0441 6532 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
06:32:03.0447 6532 lltdsvc - ok
06:32:03.0476 6532 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
06:32:03.0478 6532 lmhosts - ok
06:32:03.0548 6532 [ DBC1136A62BD4DECC3632DF650284C2E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
06:32:03.0554 6532 LMS - ok
06:32:03.0655 6532 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
06:32:03.0658 6532 LSI_FC - ok
06:32:03.0698 6532 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
06:32:03.0700 6532 LSI_SAS - ok
06:32:03.0744 6532 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
06:32:03.0746 6532 LSI_SAS2 - ok
06:32:03.0784 6532 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
06:32:03.0787 6532 LSI_SCSI - ok
06:32:03.0813 6532 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
06:32:03.0816 6532 luafv - ok
06:32:03.0924 6532 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
06:32:03.0925 6532 MBAMProtector - ok
06:32:04.0016 6532 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
06:32:04.0021 6532 MBAMScheduler - ok
06:32:04.0062 6532 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
06:32:04.0071 6532 MBAMService - ok
06:32:04.0147 6532 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
06:32:04.0151 6532 mcdbus - ok
06:32:04.0186 6532 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
06:32:04.0189 6532 Mcx2Svc - ok
06:32:04.0234 6532 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
06:32:04.0236 6532 megasas - ok
06:32:04.0281 6532 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
06:32:04.0286 6532 MegaSR - ok
06:32:04.0323 6532 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
06:32:04.0325 6532 MMCSS - ok
06:32:04.0361 6532 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
06:32:04.0363 6532 Modem - ok
06:32:04.0396 6532 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
06:32:04.0398 6532 monitor - ok
06:32:04.0425 6532 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
06:32:04.0427 6532 mouclass - ok
06:32:04.0439 6532 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
06:32:04.0441 6532 mouhid - ok
06:32:04.0476 6532 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
06:32:04.0478 6532 mountmgr - ok
06:32:04.0532 6532 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
06:32:04.0534 6532 MozillaMaintenance - ok
06:32:04.0585 6532 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
06:32:04.0588 6532 mpio - ok
06:32:04.0636 6532 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
06:32:04.0638 6532 mpsdrv - ok
06:32:04.0713 6532 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
06:32:04.0748 6532 MpsSvc - ok
06:32:04.0818 6532 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
06:32:04.0822 6532 MRxDAV - ok
06:32:04.0869 6532 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
06:32:04.0873 6532 mrxsmb - ok
06:32:04.0920 6532 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:32:04.0924 6532 mrxsmb10 - ok
06:32:04.0969 6532 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:32:04.0972 6532 mrxsmb20 - ok
06:32:04.0999 6532 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
06:32:05.0001 6532 msahci - ok
06:32:05.0037 6532 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
06:32:05.0040 6532 msdsm - ok
06:32:05.0085 6532 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
06:32:05.0089 6532 MSDTC - ok
06:32:05.0127 6532 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
06:32:05.0129 6532 Msfs - ok
06:32:05.0137 6532 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
06:32:05.0138 6532 mshidkmdf - ok
06:32:05.0166 6532 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
06:32:05.0167 6532 msisadrv - ok
06:32:05.0215 6532 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
06:32:05.0218 6532 MSiSCSI - ok
06:32:05.0223 6532 msiserver - ok
06:32:05.0265 6532 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
06:32:05.0267 6532 MSKSSRV - ok
06:32:05.0340 6532 [ 103B3BBE23AB774B009D182276EC6786 ] msloop C:\Windows\system32\DRIVERS\loop.sys
06:32:05.0342 6532 msloop - ok
06:32:05.0360 6532 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
06:32:05.0362 6532 MSPCLOCK - ok
06:32:05.0375 6532 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
06:32:05.0377 6532 MSPQM - ok
06:32:05.0406 6532 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
06:32:05.0411 6532 MsRPC - ok
06:32:05.0516 6532 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
06:32:05.0517 6532 mssmbios - ok
06:32:05.0538 6532 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
06:32:05.0541 6532 MSTEE - ok
06:32:05.0570 6532 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
06:32:05.0571 6532 MTConfig - ok
06:32:05.0608 6532 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
06:32:05.0610 6532 Mup - ok
06:32:05.0653 6532 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
06:32:05.0662 6532 napagent - ok
06:32:05.0715 6532 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
06:32:05.0720 6532 NativeWifiP - ok
06:32:05.0730 6532 ncvet.dll - ok
06:32:05.0810 6532 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
06:32:05.0816 6532 NDIS - ok
06:32:05.0852 6532 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
06:32:05.0853 6532 NdisCap - ok
06:32:05.0874 6532 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
06:32:05.0875 6532 NdisTapi - ok
06:32:05.0916 6532 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
06:32:05.0918 6532 Ndisuio - ok
06:32:05.0946 6532 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
06:32:05.0949 6532 NdisWan - ok
06:32:05.0967 6532 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
06:32:05.0968 6532 NDProxy - ok
06:32:06.0001 6532 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
06:32:06.0002 6532 NetBIOS - ok
06:32:06.0041 6532 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
06:32:06.0045 6532 NetBT - ok
06:32:06.0060 6532 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
06:32:06.0062 6532 Netlogon - ok
06:32:06.0102 6532 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
06:32:06.0108 6532 Netman - ok
06:32:06.0195 6532 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:32:06.0198 6532 NetMsmqActivator - ok
06:32:06.0203 6532 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:32:06.0204 6532 NetPipeActivator - ok
06:32:06.0242 6532 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
06:32:06.0246 6532 netprofm - ok
06:32:06.0252 6532 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:32:06.0254 6532 NetTcpActivator - ok
06:32:06.0259 6532 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:32:06.0261 6532 NetTcpPortSharing - ok
06:32:06.0400 6532 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
06:32:06.0551 6532 netw5v64 - ok
06:32:06.0604 6532 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
06:32:06.0606 6532 nfrd960 - ok
06:32:06.0626 6532 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
06:32:06.0631 6532 NlaSvc - ok
06:32:06.0740 6532 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
06:32:06.0741 6532 NPF - ok
06:32:06.0789 6532 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
06:32:06.0791 6532 Npfs - ok
06:32:06.0797 6532 npggsvc - ok
06:32:06.0804 6532 NPPTNT2 - ok
06:32:06.0907 6532 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
06:32:06.0909 6532 nsi - ok
06:32:06.0929 6532 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
06:32:06.0929 6532 nsiproxy - ok
06:32:07.0002 6532 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
06:32:07.0045 6532 Ntfs - ok
06:32:07.0086 6532 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
06:32:07.0087 6532 Null - ok
06:32:07.0134 6532 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
06:32:07.0137 6532 nvraid - ok
06:32:07.0181 6532 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
06:32:07.0184 6532 nvstor - ok
06:32:07.0221 6532 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
06:32:07.0224 6532 nv_agp - ok
06:32:07.0306 6532 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
06:32:07.0312 6532 odserv - ok
06:32:07.0352 6532 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
06:32:07.0354 6532 ohci1394 - ok
06:32:07.0388 6532 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:32:07.0390 6532 ose - ok
06:32:07.0571 6532 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
06:32:07.0671 6532 osppsvc - ok
06:32:07.0745 6532 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
06:32:07.0751 6532 p2pimsvc - ok
06:32:07.0792 6532 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
06:32:07.0799 6532 p2psvc - ok
06:32:07.0885 6532 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
06:32:07.0889 6532 Parport - ok
06:32:07.0925 6532 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
06:32:07.0929 6532 partmgr - ok
06:32:07.0948 6532 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
06:32:07.0954 6532 PcaSvc - ok
06:32:07.0984 6532 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
06:32:07.0988 6532 pci - ok
06:32:08.0027 6532 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
06:32:08.0029 6532 pciide - ok
06:32:08.0075 6532 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
06:32:08.0079 6532 pcmcia - ok
06:32:08.0134 6532 [ 876FD95B7A3B7FE6179FBD16E7A6486C ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
06:32:08.0143 6532 PCTCore - ok
06:32:08.0186 6532 [ B5D3C24E4EA8E6D4850E83DAD8C510D4 ] PCTINDIS5X64 C:\Windows\system32\PCTINDIS5X64.SYS
06:32:08.0191 6532 PCTINDIS5X64 - ok
06:32:08.0228 6532 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
06:32:08.0231 6532 pcw - ok
06:32:08.0261 6532 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
06:32:08.0272 6532 PEAUTH - ok
06:32:08.0418 6532 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
06:32:08.0422 6532 PerfHost - ok
06:32:08.0523 6532 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
06:32:08.0563 6532 pla - ok
06:32:08.0708 6532 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
06:32:08.0715 6532 PlugPlay - ok
06:32:08.0802 6532 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
06:32:08.0804 6532 PNRPAutoReg - ok
06:32:08.0822 6532 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
06:32:08.0825 6532 PNRPsvc - ok
06:32:08.0867 6532 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
06:32:08.0873 6532 PolicyAgent - ok
06:32:08.0914 6532 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
06:32:08.0918 6532 Power - ok
06:32:08.0952 6532 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
06:32:08.0954 6532 PptpMiniport - ok
06:32:08.0991 6532 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
06:32:08.0993 6532 Processor - ok
06:32:09.0058 6532 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
06:32:09.0063 6532 ProfSvc - ok
06:32:09.0082 6532 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
06:32:09.0085 6532 ProtectedStorage - ok
06:32:09.0116 6532 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
06:32:09.0118 6532 Psched - ok
06:32:09.0197 6532 [ 86154F3A156FA2A5429C2940C69F426F ] PsSdk41 C:\Windows\system32\Drivers\pssdk41.sys
06:32:09.0199 6532 PsSdk41 - ok
06:32:09.0267 6532 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
06:32:09.0302 6532 ql2300 - ok
06:32:09.0354 6532 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
06:32:09.0357 6532 ql40xx - ok
06:32:09.0393 6532 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
06:32:09.0397 6532 QWAVE - ok
06:32:09.0416 6532 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
06:32:09.0418 6532 QWAVEdrv - ok
06:32:09.0525 6532 [ BF87969494FF4C9068F0D8B4A0A43711 ] rak C:\Game\SoftnyxGame\RakionIS\Bin\rakion64.sys
06:32:09.0526 6532 rak - ok
06:32:09.0547 6532 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
06:32:09.0548 6532 RasAcd - ok
06:32:09.0577 6532 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
06:32:09.0578 6532 RasAgileVpn - ok
06:32:09.0605 6532 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
06:32:09.0607 6532 RasAuto - ok
06:32:09.0643 6532 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
06:32:09.0645 6532 Rasl2tp - ok
06:32:09.0677 6532 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
06:32:09.0687 6532 RasMan - ok
06:32:09.0758 6532 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
06:32:09.0760 6532 RasPppoe - ok
06:32:09.0770 6532 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
06:32:09.0772 6532 RasSstp - ok
06:32:09.0796 6532 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
06:32:09.0800 6532 rdbss - ok
06:32:09.0833 6532 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
06:32:09.0834 6532 rdpbus - ok
06:32:09.0861 6532 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
06:32:09.0862 6532 RDPCDD - ok
06:32:09.0879 6532 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
06:32:09.0880 6532 RDPENCDD - ok
06:32:09.0898 6532 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
06:32:09.0899 6532 RDPREFMP - ok
06:32:09.0970 6532 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
06:32:09.0971 6532 RdpVideoMiniport - ok
06:32:10.0013 6532 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
06:32:10.0016 6532 RDPWD - ok
06:32:10.0053 6532 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
06:32:10.0057 6532 rdyboost - ok
06:32:10.0093 6532 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
06:32:10.0096 6532 RemoteAccess - ok
06:32:10.0120 6532 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
06:32:10.0124 6532 RemoteRegistry - ok
06:32:10.0172 6532 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
06:32:10.0177 6532 RFCOMM - ok
06:32:10.0264 6532 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
06:32:10.0267 6532 rpcapd - ok
06:32:10.0309 6532 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
06:32:10.0312 6532 RpcEptMapper - ok
06:32:10.0339 6532 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
06:32:10.0342 6532 RpcLocator - ok
06:32:10.0394 6532 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
06:32:10.0403 6532 RpcSs - ok
06:32:10.0448 6532 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
06:32:10.0451 6532 rspndr - ok
06:32:10.0457 6532 RSUSBSTOR - ok
06:32:10.0580 6532 [ 20A466B9EA2BD828C0EC723F99B8CFE7 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
06:32:10.0587 6532 RTL8167 - ok
06:32:10.0804 6532 [ 4EA7E5DF0CB237156176FA0349E6E87F ] RtVOsdService C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
06:32:10.0811 6532 RtVOsdService - ok
06:32:10.0837 6532 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
06:32:10.0839 6532 SamSs - ok
06:32:11.0014 6532 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
06:32:11.0036 6532 SBAMSvc - ok
06:32:11.0126 6532 [ 6E342316E72F4B6FA39C99E06373A1A3 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
06:32:11.0128 6532 sbapifs - ok
06:32:11.0175 6532 [ 19954328DDA3D656F8A879B3A46FFED6 ] SbFw C:\Windows\system32\drivers\SbFw.sys
06:32:11.0180 6532 SbFw - ok
06:32:11.0207 6532 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCL C:\Windows\system32\DRIVERS\sbfwim.sys
06:32:11.0210 6532 SBFWIMCL - ok
06:32:11.0221 6532 [ 513B3BFCD3C465B9820C2D05FA94E630 ] SBFWIMCLMP C:\Windows\system32\DRIVERS\SBFWIM.sys
06:32:11.0223 6532 SBFWIMCLMP - ok
06:32:11.0251 6532 [ B671EEF468D13016B9286F5835A06AE1 ] sbhips C:\Windows\system32\drivers\sbhips.sys
06:32:11.0253 6532 sbhips - ok
06:32:11.0317 6532 [ C7E399DBC7B70FDA979013389B1A8DAB ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
06:32:11.0321 6532 SbieDrv - ok
06:32:11.0346 6532 [ 9F64E814007B5B586C123F3820C104A5 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
06:32:11.0348 6532 SbieSvc - ok
06:32:11.0390 6532 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
06:32:11.0392 6532 sbp2port - ok
06:32:11.0434 6532 [ 9ACEB2A2362FC87A3825963E61BA9076 ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
06:32:11.0436 6532 SBRE - ok
06:32:11.0503 6532 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
06:32:11.0537 6532 SBSDWSCService - ok
06:32:11.0577 6532 [ EAB54ADCCECA64B2F38CD859FB494895 ] sbwtis C:\Windows\system32\DRIVERS\sbwtis.sys
06:32:11.0579 6532 sbwtis - ok
06:32:11.0608 6532 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
06:32:11.0613 6532 SCardSvr - ok
06:32:11.0645 6532 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
06:32:11.0646 6532 scfilter - ok
06:32:11.0695 6532 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
06:32:11.0730 6532 Schedule - ok
06:32:11.0830 6532 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
06:32:11.0831 6532 SCPolicySvc - ok
06:32:11.0863 6532 [ 490B0B68BB938D5C628EC4A67277BE75 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
06:32:11.0864 6532 ScreamBAudioSvc - ok
06:32:11.0897 6532 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
06:32:11.0899 6532 sdbus - ok
06:32:11.0938 6532 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
06:32:11.0942 6532 SDRSVC - ok
06:32:11.0994 6532 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
06:32:11.0997 6532 SeaPort - ok
06:32:12.0017 6532 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
06:32:12.0019 6532 secdrv - ok
06:32:12.0053 6532 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
06:32:12.0056 6532 seclogon - ok
06:32:12.0086 6532 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
06:32:12.0089 6532 SENS - ok
06:32:12.0102 6532 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
06:32:12.0105 6532 SensrSvc - ok
06:32:12.0134 6532 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
06:32:12.0135 6532 Serenum - ok
06:32:12.0176 6532 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
06:32:12.0179 6532 Serial - ok
06:32:12.0217 6532 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
06:32:12.0219 6532 sermouse - ok
06:32:12.0278 6532 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
06:32:12.0281 6532 SessionEnv - ok
06:32:12.0318 6532 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
06:32:12.0319 6532 sffdisk - ok
06:32:12.0347 6532 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
06:32:12.0348 6532 sffp_mmc - ok
06:32:12.0361 6532 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
06:32:12.0363 6532 sffp_sd - ok
06:32:12.0405 6532 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
06:32:12.0406 6532 sfloppy - ok
06:32:12.0466 6532 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
06:32:12.0475 6532 Sftfs - ok
06:32:12.0530 6532 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
06:32:12.0538 6532 sftlist - ok
06:32:12.0570 6532 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
06:32:12.0574 6532 Sftplay - ok
06:32:12.0601 6532 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
06:32:12.0602 6532 Sftredir - ok
06:32:12.0622 6532 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
06:32:12.0623 6532 Sftvol - ok
06:32:12.0654 6532 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
06:32:12.0657 6532 sftvsa - ok
06:32:12.0725 6532 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
06:32:12.0730 6532 SharedAccess - ok
06:32:12.0791 6532 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
06:32:12.0795 6532 ShellHWDetection - ok
06:32:12.0860 6532 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
06:32:12.0862 6532 SiSRaid2 - ok
06:32:12.0911 6532 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
06:32:12.0913 6532 SiSRaid4 - ok
06:32:13.0003 6532 [ 4523268768F70049EA95FFDF8354B4FA ] sj C:\AeriaGames\EdenEternal\sjcs64.sys
06:32:13.0004 6532 sj - ok
06:32:13.0159 6532 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
06:32:13.0180 6532 Skype C2C Service - ok
06:32:13.0255 6532 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
06:32:13.0258 6532 SkypeUpdate - ok
06:32:13.0315 6532 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
06:32:13.0316 6532 SmartDefragDriver - ok
06:32:13.0348 6532 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
06:32:13.0350 6532 Smb - ok
06:32:13.0404 6532 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
06:32:13.0408 6532 SNMPTRAP - ok
06:32:13.0428 6532 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
06:32:13.0430 6532 spldr - ok
06:32:13.0489 6532 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
06:32:13.0497 6532 Spooler - ok
06:32:13.0597 6532 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
06:32:13.0701 6532 sppsvc - ok
06:32:13.0883 6532 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
06:32:13.0886 6532 sppuinotify - ok
06:32:13.0910 6532 sptd - ok
06:32:13.0983 6532 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
06:32:13.0993 6532 srv - ok
06:32:14.0027 6532 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
06:32:14.0032 6532 srv2 - ok
06:32:14.0099 6532 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
06:32:14.0103 6532 SrvHsfHDA - ok
06:32:14.0179 6532 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
06:32:14.0218 6532 SrvHsfV92 - ok
06:32:14.0269 6532 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
06:32:14.0284 6532 SrvHsfWinac - ok
06:32:14.0344 6532 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
06:32:14.0348 6532 srvnet - ok
06:32:14.0390 6532 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
06:32:14.0393 6532 ssadbus - ok
06:32:14.0430 6532 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
06:32:14.0432 6532 ssadmdfl - ok
06:32:14.0480 6532 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
06:32:14.0484 6532 ssadmdm - ok
06:32:14.0549 6532 [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
06:32:14.0553 6532 ssadserd - ok
06:32:14.0822 6532 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
06:32:14.0830 6532 SSDPSRV - ok
06:32:14.0861 6532 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
06:32:14.0864 6532 SstpSvc - ok
06:32:14.0908 6532 Steam Client Service - ok
06:32:14.0945 6532 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
06:32:14.0947 6532 stexstor - ok
06:32:15.0014 6532 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
06:32:15.0023 6532 stisvc - ok
06:32:15.0058 6532 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
06:32:15.0060 6532 swenum - ok
06:32:15.0131 6532 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
06:32:15.0141 6532 SwitchBoard - ok
06:32:15.0175 6532 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
06:32:15.0187 6532 swprv - ok
06:32:15.0269 6532 [ 961CFAC2A5318E212F459D651F28E0A4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
06:32:15.0304 6532 SynTP - ok
06:32:15.0414 6532 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
06:32:15.0491 6532 SysMain - ok
06:32:15.0623 6532 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
06:32:15.0629 6532 TabletInputService - ok
06:32:15.0677 6532 [ B70DF208E97536CA9F29289E609F5B16 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
06:32:15.0679 6532 taphss - ok
06:32:15.0720 6532 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
06:32:15.0727 6532 TapiSrv - ok
06:32:15.0779 6532 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
06:32:15.0785 6532 TBS - ok
06:32:15.0861 6532 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
06:32:15.0916 6532 Tcpip - ok
06:32:15.0994 6532 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
06:32:16.0005 6532 TCPIP6 - ok
06:32:16.0055 6532 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
06:32:16.0056 6532 tcpipreg - ok
06:32:16.0097 6532 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
06:32:16.0099 6532 TDPIPE - ok
06:32:16.0139 6532 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
06:32:16.0142 6532 TDTCP - ok
06:32:16.0177 6532 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
06:32:16.0181 6532 tdx - ok
06:32:16.0217 6532 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
06:32:16.0219 6532 TermDD - ok
06:32:16.0256 6532 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
06:32:16.0271 6532 TermService - ok
06:32:16.0333 6532 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
06:32:16.0337 6532 Themes - ok
06:32:16.0368 6532 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
06:32:16.0370 6532 THREADORDER - ok
06:32:16.0427 6532 [ D44D1FD2A03351BAB109E1FC14D08CFB ] TMobileRcAppSvc C:\Program Files (x86)\T-Mobile\webConnect Manager\RcAppSvc.exe
06:32:16.0430 6532 TMobileRcAppSvc - ok
06:32:16.0463 6532 [ 265CD57B1C3700CDBC0B815791BC3B56 ] tmobile_mf691_dc_enum C:\Windows\system32\DRIVERS\tmobile_mf691_dc_enum.sys
06:32:16.0465 6532 tmobile_mf691_dc_enum - ok
06:32:16.0495 6532 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
06:32:16.0498 6532 TrkWks - ok
06:32:16.0545 6532 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
06:32:16.0548 6532 TrustedInstaller - ok
06:32:16.0577 6532 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
06:32:16.0579 6532 tssecsrv - ok
06:32:16.0622 6532 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
06:32:16.0624 6532 TsUsbFlt - ok
06:32:16.0677 6532 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
06:32:16.0679 6532 tunnel - ok
06:32:16.0720 6532 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
06:32:16.0722 6532 uagp35 - ok
06:32:16.0756 6532 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
06:32:16.0761 6532 udfs - ok
06:32:16.0804 6532 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
06:32:16.0808 6532 UI0Detect - ok
06:32:16.0846 6532 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
06:32:16.0848 6532 uliagpkx - ok
06:32:16.0873 6532 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
06:32:16.0875 6532 umbus - ok
06:32:16.0918 6532 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
06:32:16.0920 6532 UmPass - ok
06:32:16.0956 6532 [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
06:32:16.0958 6532 UnlockerDriver5 - ok
06:32:17.0069 6532 [ 7466809E6DA561D60C2F1CE8EDE3C73F ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
06:32:17.0126 6532 UNS - ok
06:32:17.0208 6532 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
06:32:17.0215 6532 upnphost - ok
06:32:17.0356 6532 [ 786526848586325C94DE1B64DD4D82FF ] uqk C:\koramgame\STOnline\avital\wyqku64.sys
06:32:17.0358 6532 uqk - ok
06:32:17.0426 6532 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
06:32:17.0428 6532 USBAAPL64 - ok
06:32:17.0487 6532 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
06:32:17.0489 6532 usbccgp - ok
06:32:17.0534 6532 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
06:32:17.0537 6532 usbcir - ok
06:32:17.0573 6532 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
06:32:17.0575 6532 usbehci - ok
06:32:17.0599 6532 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
06:32:17.0604 6532 usbhub - ok
06:32:17.0694 6532 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
06:32:17.0697 6532 usbohci - ok
06:32:17.0805 6532 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
06:32:17.0807 6532 usbprint - ok
06:32:17.0862 6532 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
06:32:17.0863 6532 usbscan - ok
06:32:17.0890 6532 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
06:32:17.0893 6532 USBSTOR - ok
06:32:17.0933 6532 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
06:32:17.0934 6532 usbuhci - ok
06:32:17.0968 6532 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
06:32:17.0971 6532 usbvideo - ok
06:32:18.0001 6532 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
06:32:18.0004 6532 UxSms - ok
06:32:18.0025 6532 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
06:32:18.0027 6532 VaultSvc - ok
06:32:18.0043 6532 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
06:32:18.0045 6532 vdrvroot - ok
06:32:18.0085 6532 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
06:32:18.0093 6532 vds - ok
06:32:18.0152 6532 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
06:32:18.0153 6532 vga - ok
06:32:18.0191 6532 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
06:32:18.0193 6532 VgaSave - ok
06:32:18.0227 6532 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
06:32:18.0231 6532 vhdmp - ok
06:32:18.0273 6532 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
06:32:18.0275 6532 viaide - ok
06:32:18.0321 6532 [ B2E25DB5A6A178C056342ABD747B7326 ] vmm C:\Windows\system32\Drivers\vmm.sys
06:32:18.0326 6532 vmm - ok
06:32:18.0382 6532 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
06:32:18.0385 6532 volmgr - ok
06:32:18.0464 6532 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
06:32:18.0472 6532 volmgrx - ok
06:32:18.0525 6532 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
06:32:18.0530 6532 volsnap - ok
06:32:18.0588 6532 [ 6BDCA00FC57CC40DA3C8E88B2CEA21AB ] VPCNetS2 C:\Windows\system32\DRIVERS\VMNetSrv.sys
06:32:18.0592 6532 VPCNetS2 - ok
06:32:18.0634 6532 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
06:32:18.0637 6532 vsmraid - ok
06:32:18.0712 6532 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
06:32:18.0791 6532 VSS - ok
06:32:18.0842 6532 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
06:32:18.0844 6532 vwifibus - ok
06:32:18.0868 6532 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
06:32:18.0870 6532 vwififlt - ok
06:32:18.0923 6532 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
06:32:18.0925 6532 vwifimp - ok
06:32:18.0959 6532 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
06:32:18.0966 6532 W32Time - ok
06:32:19.0010 6532 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
06:32:19.0011 6532 WacomPen - ok
06:32:19.0055 6532 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
06:32:19.0057 6532 WANARP - ok
06:32:19.0064 6532 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
06:32:19.0065 6532 Wanarpv6 - ok
06:32:19.0132 6532 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
06:32:19.0178 6532 WatAdminSvc - ok
06:32:19.0255 6532 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
06:32:19.0302 6532 wbengine - ok
06:32:19.0350 6532 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
06:32:19.0354 6532 WbioSrvc - ok
06:32:19.0389 6532 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
06:32:19.0396 6532 wcncsvc - ok
06:32:19.0412 6532 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
06:32:19.0415 6532 WcsPlugInService - ok
06:32:19.0443 6532 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
06:32:19.0444 6532 Wd - ok
06:32:19.0480 6532 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
06:32:19.0490 6532 Wdf01000 - ok
06:32:19.0511 6532 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
06:32:19.0515 6532 WdiServiceHost - ok
06:32:19.0522 6532 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
06:32:19.0525 6532 WdiSystemHost - ok
06:32:19.0560 6532 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
06:32:19.0566 6532 WebClient - ok
06:32:19.0592 6532 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
06:32:19.0597 6532 Wecsvc - ok
06:32:19.0611 6532 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
06:32:19.0614 6532 wercplsupport - ok
06:32:19.0630 6532 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
06:32:19.0634 6532 WerSvc - ok
06:32:19.0664 6532 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
06:32:19.0666 6532 WfpLwf - ok
06:32:19.0697 6532 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
06:32:19.0699 6532 WIMMount - ok
06:32:19.0767 6532 WinDefend - ok
06:32:19.0798 6532 WinHttpAutoProxySvc - ok
06:32:19.0902 6532 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
06:32:19.0907 6532 Winmgmt - ok
06:32:19.0983 6532 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
06:32:20.0029 6532 WinRM - ok
06:32:20.0112 6532 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
06:32:20.0114 6532 WinUsb - ok
06:32:20.0184 6532 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
06:32:20.0199 6532 Wlansvc - ok
06:32:20.0262 6532 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
06:32:20.0264 6532 wlcrasvc - ok
06:32:20.0393 6532 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
06:32:20.0462 6532 wlidsvc - ok
06:32:20.0490 6532 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
06:32:20.0492 6532 WmiAcpi - ok
06:32:20.0544 6532 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
06:32:20.0550 6532 wmiApSrv - ok
06:32:20.0627 6532 WMPNetworkSvc - ok
06:32:20.0666 6532 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
06:32:20.0670 6532 WPCSvc - ok
06:32:20.0695 6532 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
06:32:20.0699 6532 WPDBusEnum - ok
06:32:20.0736 6532 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
06:32:20.0737 6532 ws2ifsl - ok
06:32:20.0812 6532 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
06:32:20.0817 6532 wscsvc - ok
06:32:20.0828 6532 WSearch - ok
06:32:20.0869 6532 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
06:32:20.0871 6532 WudfPf - ok
06:32:20.0903 6532 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
06:32:20.0906 6532 WUDFRd - ok
06:32:20.0938 6532 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
06:32:20.0941 6532 wudfsvc - ok
06:32:20.0978 6532 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
06:32:20.0983 6532 WwanSvc - ok
06:32:20.0990 6532 X6va001 - ok
06:32:21.0107 6532 X6va005 - ok
06:32:21.0211 6532 X6va008 - ok
06:32:21.0224 6532 X6va009 - ok
06:32:21.0295 6532 X6va010 - ok
06:32:21.0342 6532 X6va011 - ok
06:32:21.0501 6532 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
06:32:21.0517 6532 YahooAUService - ok
06:32:21.0695 6532 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
06:32:21.0701 6532 yukonw7 - ok
06:32:21.0756 6532 ================ Scan global ===============================
06:32:21.0815 6532 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
06:32:21.0845 6532 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
06:32:21.0867 6532 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
06:32:21.0908 6532 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
06:32:21.0953 6532 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
06:32:21.0963 6532 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - infected
06:32:21.0963 6532 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.a (0)
06:32:21.0964 6532 ================ Scan MBR ==================================
06:32:21.0981 6532 [ A9D691444202B6B49CC6C7223076F181 ] \Device\Harddisk0\DR0
06:32:22.0236 6532 \Device\Harddisk0\DR0 - ok
06:32:22.0237 6532 ================ Scan VBR ==================================
06:32:22.0240 6532 [ 0ABA7E1837EDA1B165A89E82A5915625 ] \Device\Harddisk0\DR0\Partition1
06:32:22.0241 6532 \Device\Harddisk0\DR0\Partition1 - ok
06:32:22.0252 6532 [ 8EE34FACA9FD81E8F6A09A9E499CC57B ] \Device\Harddisk0\DR0\Partition2
06:32:22.0254 6532 \Device\Harddisk0\DR0\Partition2 - ok
06:32:22.0284 6532 [ 47DE326CFB614F6B3E13AE646FC73864 ] \Device\Harddisk0\DR0\Partition3
06:32:22.0287 6532 \Device\Harddisk0\DR0\Partition3 - ok
06:32:22.0304 6532 [ 12FB96FFE732C2283F273FAE272068CE ] \Device\Harddisk0\DR0\Partition4
06:32:22.0305 6532 \Device\Harddisk0\DR0\Partition4 - ok
06:32:22.0306 6532 ============================================================
06:32:22.0306 6532 Scan finished
06:32:22.0306 6532 ============================================================
06:32:22.0320 5400 Detected object count: 2
06:32:22.0321 5400 Actual detected object count: 2
06:32:25.0845 5400 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
06:32:25.0846 5400 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
06:32:25.0880 5400 C:\Windows\system32\services.exe - copied to quarantine
06:32:26.0578 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\@ - copied to quarantine
06:32:26.0622 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\00000004.@ - copied to quarantine
06:32:26.0626 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\201d3dde - copied to quarantine
06:32:26.0643 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\L\4cce1f70 - copied to quarantine
06:32:26.0648 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000004.@ - copied to quarantine
06:32:26.0652 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000008.@ - copied to quarantine
06:32:26.0656 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\000000cb.@ - copied to quarantine
06:32:26.0660 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000000.@ - copied to quarantine
06:32:26.0664 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000032.@ - copied to quarantine
06:32:26.0669 5400 C:\Windows\installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\80000064.@ - copied to quarantine
06:32:30.0998 5400 Backup copy not found, trying to cure infected file..
06:32:30.0998 5400 C:\Windows\system32\services.exe - Cure failed (FFFFFFFF)
06:32:30.0999 5400 C:\Windows\system32\services.exe - processing error
06:32:30.0999 5400 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
06:35:14.0587 4500 Deinitialize success



Malwarebytes
==========

Malwarebytes Anti-Malware (PRO) 1.70.0.1100
www.malwarebytes.org

Database version: v2012.12.30.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Sandy :: SANDY-HP [administrator]

Protection: Disabled

12/30/2012 5:00:43 PM
mbam-log-2012-12-30 (17-00-43).txt

Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 1113670
Time elapsed: 9 hour(s), 56 minute(s), 25 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 9
C:\Program Files (x86)\Steam\steamapps\common\Wanderlust Rebirth\39dll.dll (PUP.HackTool.DDoS) -> No action taken.
C:\TDSSKiller_Quarantine\19.12.2012_06.37.51\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\19.12.2012_06.37.51\zasubsys0000\zafs0000\tsk0007.dta (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\19.12.2012_06.37.51\zasubsys0000\zafs0000\tsk0008.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\24.12.2012_08.12.17\zasubsys0000\file0000\tsk0000.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\24.12.2012_08.12.17\zasubsys0000\zafs0000\tsk0005.dta (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\24.12.2012_08.12.17\zasubsys0000\zafs0000\tsk0006.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\00000008.@ (Trojan.Dropper.BCMiner) -> Quarantined and deleted successfully.
C:\Windows\Installer\{34abdb91-f75e-6e4d-3541-138e74b7a4fe}\U\000000cb.@ (Rootkit.0Access) -> Quarantined and deleted successfully.

(end)




Junkware Tool
==========

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.3.2 (12.29.2012:3)
OS: Windows 7 Home Premium x64
Ran by Sandy on Mon 12/31/2012 at 5:59:39.40
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\1clickdownload
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{02478d38-c3f9-4efb-9b51-7695eca05670}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{02478d38-c3f9-4efb-9b51-7695eca05670}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{f9e4a054-e9b1-4bc3-83a3-76a1ae736170}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{f9e4a054-e9b1-4bc3-83a3-76a1ae736170}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] "hkey_local_machine\software\pip"



~~~ Files

Successfully deleted: [File] "C:\Windows\couponprinter.ocx"



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Sandy\appdata\locallow\bcool"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bcool"



~~~ FireFox

Successfully deleted the following from C:\Users\Sandy\AppData\Roaming\mozilla\firefox\profiles\1iqkede9.default\prefs.js

user_pref("extensions.4fc49e6b3ec30.scode", "(function(){try{if('aol.com,mail.google.com,mystart.incredibar.com,premiumreports.info,search.babylon.com,search.funmoods.com,sear



~~~ Chrome

Dumping contents of C:\Users\Sandy\appdata\local\Google\Chrome\User Data\Default\Default
C:\Users\Sandy\appdata\local\Google\Chrome\User Data\Default\Default\aadbgcdadcdcdegdgedhdcdjdedhddgd
C:\Users\Sandy\appdata\local\Google\Chrome\User Data\Default\Default\aadbgcdadcdcdegdgedhdcdjdedhddgd\manifest.json

Successfully deleted: [Folder] C:\Users\Sandy\appdata\local\Google\Chrome\User Data\Default\Default [Default Extension 1.0]
Successfully deleted: [Registry Key] hkey_local_machine\software\google\chrome\extensions\pbkdpahkifcigckmhiafindmaflfifgm



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 12/31/2012 at 6:15:39.84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




Farbar Service Scanner
==========


Farbar Service Scanner Version: 09-11-2012
Ran by Sandy (administrator) on 31-12-2012 at 04:51:19
Running from "C:\Users\Sandy\Desktop\For BC"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-11-16 03:04] - [2012-10-03 12:56] - 1914248 ____A (Microsoft Corporation) 37608401DFDB388CAF66917F6B2D6FB0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



Rkill
==========

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/31/2012 04:58:13 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Possibly Patched Files.

* C:\Windows\system32\services.exe

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001
* C:\Windows\assembly\GAC_32\Desktop.ini [ZA File]
* C:\Windows\assembly\GAC_64\Desktop.ini [ZA File]

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

* BITS [Missing Service]
* wuauserv [Missing Service]

Searching for Missing Digital Signatures:

* C:\Windows\System32\services.exe [NoSig]
+-> C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe : 328,704 : 07/13/2009 09:39 PM : 24acb7e5be595468e3b9aa488b9b4fcb [Pos Repl]

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com

20 out of 28 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 12/31/2012 05:06:32 AM
Execution time: 0 hours(s), 8 minute(s), and 19 seconds(s)





Autoruns
==========

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "HPWirelessAssistant" "" "" "c:\program files\hewlett-packard\hp wireless assistant\delayedappstarter.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "RTHDVCPL" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rtkngui64.exe"
+ "SBRegRebootCleaner" "Registry Cleaner" "GFI Software" "c:\program files (x86)\ad-aware antivirus\sbrc.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Ad-Aware Antivirus" "Ad-Aware Antivirus Launcher" "Lavasoft Limited" "c:\program files (x86)\ad-aware antivirus\adawarelauncher.exe"
+ "Ad-Aware Browsing Protection" "Ad-Aware Browsing Protection" "Lavasoft" "c:\programdata\ad-aware browsing protection\adawarebp.exe"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe Reader Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\reader 9.0\reader\reader_sl.exe"
+ "AdobeCS4ServiceManager" "Adobe CS4 Service Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe"
+ "AdobeCS5.5ServiceManager" "Adobe CS5.5 Service Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\cs5.5servicemanager\cs5.5servicemanager.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "HP Quick Launch" "HP Message Service" "Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp quick launch\hpmsgsvc.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "LogMeIn Hamachi Ui" "Hamachi Client Application" "LogMeIn Inc." "c:\program files (x86)\logmein hamachi\hamachi-2-ui.exe"
+ "Panda Security URL Filtering" "Visicom Media Anti-phishing Domain Advisor (Powered by Panda Security)" "Panda Security" "c:\programdata\panda security url filtering\panda_url_filtering.exe"
+ "RaidCall" "Raidcall" "RAIDCALL.COM" "c:\program files (x86)\raidcall\raidcall.exe"
+ "Recordpad" "RecordPad Sound Recorder" "NCH Software" "c:\program files (x86)\nch swift sound\recordpad\recordpad.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "SwitchBoard" "SwitchBoard Server (32 bit)" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\switchboard\switchboard.exe"
+ "T-Mobile webConnect Manager" "T-Mobile Connection Manager" "T-Mobile" "c:\program files (x86)\t-mobile\webconnect manager\tmobilecm.exe"
"C:\Users\Sandy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "CapsUnlock.lnk" "CapsUnlock" "BrainSystems" "c:\program files (x86)\capsunlock\capsunlock.exe"
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropbox.exe"
+ "MagicDisc.lnk" "" "" "File not found: G:\Games\Emulators\PC MagicDisc\MagicDisc\MagicDisc.exe"
+ "OneNote 2007 Screen Clipper and Launcher.lnk" "Microsoft Office OneNote Quick Launcher" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onenotem.exe"
+ "OneNote 2010 Screen Clipper and Launcher.lnk" "Microsoft Office Client Virtualization Handler" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvh.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Internet Explorer" "" "" "File not found: start"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Advanced SystemCare 5" "Advanced SystemCare 5 Tray" "IObit" "c:\program files (x86)\iobit\advanced systemcare 5\asctray.exe"
+ "Akamai NetSession Interface" "Akamai NetSession Client" "Akamai Technologies, Inc." "c:\users\sandy\appdata\local\akamai\netsession_win.exe"
+ "Anvi_CSB" "" "" "File not found: C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBMini.exe"
+ "Desura" "Desura" "Desura Pty Ltd" "c:\program files (x86)\desura\desura.exe"
+ "HPAdvisorDock" "HP Advisor Dock" "" "c:\program files (x86)\hewlett-packard\hp advisor\dock\hpadvisordock.exe"
+ "Messenger (Yahoo!)" "Yahoo! Messenger" "Yahoo! Inc." "c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe"
+ "SandboxieControl" "Sandboxie Control" "SANDBOXIE L.T.D" "c:\program files\sandboxie\sbiectrl.exe"
+ "SpybotSD TeaTimer" "System settings protector" "Safer-Networking Ltd." "c:\program files (x86)\spybot - search & destroy\teatimer.exe"
+ "Steam" "Steam" "Valve Corporation" "c:\program files (x86)\steam\steam.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Advanced SystemCare" "ASCv5ExtMenu Module" "" "c:\program files (x86)\iobit\advanced systemcare 5\ascv5extmenu_64.dll"
+ "Notepad++64" "ShellHandler for Notepad++ (64 bit)" "" "c:\program files (x86)\notepad++\nppshell_04.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "AdAwareContextMenu64" "Ad-Aware Antivirus Shell Extension x64" "Lavasoft Limited" "c:\program files (x86)\ad-aware antivirus\adawareshellextension64.dll"
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "GB3ContextMenu" "Game Booster v3 Context Menu" "IObit" "c:\program files (x86)\iobit\game booster 3\gbv3contextmenu.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "AdAwareContextMenu" "Ad-Aware Antivirus Shell Extension" "Lavasoft Limited" "c:\program files (x86)\ad-aware antivirus\adawareshellextension.dll"
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe drive cs4\adfsmenu.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Advanced SystemCare" "ASCv5ExtMenu Module" "" "c:\program files (x86)\iobit\advanced systemcare 5\ascv5extmenu_64.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files (x86)\7-zip\7-zip.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "VPCHostCopyHook" "Virtual PC Host Shell Extension" "Microsoft Corporation" "c:\program files (x86)\microsoft virtual pc\vpcshexh.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe Drive CS4" "Adobe Drive Menu" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe drive cs4\adfsmenu.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\users\sandy\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "Hotspot Shield Class" "" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\hssie\hssie_64.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Skype add-on for Internet Explorer" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "&Yahoo! Toolbar Helper" "Yahoo! Toolbar" "Yahoo! Inc." "c:\program files (x86)\yahoo!\companion\installs\cpn1\yt.dll"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Bing Bar Helper" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bingext.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Hotspot Shield Class" "" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\hssie\hssie.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Panda Security Toolbar" "Panda Security Toolbar Link Library" "" "c:\program files (x86)\panda security\panda security toolbar\pandasecuritydx.dll"
+ "SingleInstance Class" "Yahoo! Single Instance for Mail" "Yahoo! Inc" "c:\program files (x86)\yahoo!\companion\installs\cpn0\ytsingleinstance.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Spybot-S&D IE Protection" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Bing" "Bing Client Extensions" "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bingext.dll"
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Panda Security Toolbar" "Panda Security Toolbar Link Library" "" "c:\program files (x86)\panda security\panda security toolbar\pandasecuritydx.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Messenger Companion (Ctrl+Shift+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Spybot - Search && Destroy Configuration" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
"Task Scheduler" "" "" ""
+ "\Ad-Aware Antivirus Scheduled Scan" "Ad-Aware Antivirus Launcher" "Lavasoft Limited" "c:\program files (x86)\ad-aware antivirus\adawarelauncher.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\Game_Booster_Startup" "Game Booster" "IObit" "c:\program files (x86)\iobit\game booster 3\gbtray.exe"
+ "\HPCeeScheduleForSandy" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\HPCustParticipation HP Photosmart Plus B210 series" "HP Customer Participation." "Hewlett-Packard Co." "c:\program files\hp\hp photosmart plus b210 series\bin\hpcustpartic.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\RecoveryCDWin7" "ESAdvRemIntegrator" "" "c:\program files (x86)\hewlett-packard\hp setup\remengine.exe"
+ "\Registration" "ESAdvRemIntegrator" "" "c:\program files (x86)\hewlett-packard\hp setup\remengine.exe"
+ "\ServicePlan" "ESAdvRemIntegrator" "" "c:\program files (x86)\hewlett-packard\hp setup\remengine.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sidebar.exe"
+ "\SmartDefrag_Startup" "Smart Defrag v2" "IObit" "c:\program files (x86)\iobit\smart defrag 2\smartdefrag.exe"
+ "\SpyHunter4Startup" "" "" "File not found: C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe"
+ "\{4B509B19-832D-4EE4-8492-CCA2CF56B994}" "" "" "File not found: C:\Level Up Games\Grand Chase Chaos\GrandChase.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Ad-Aware Service" "Ad-Aware Service" "Lavasoft Limited" "c:\program files (x86)\ad-aware antivirus\adawareservice.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AdvancedSystemCareService5" "Advanced SystemCare Service" "IObit" "c:\program files (x86)\iobit\advanced systemcare 5\ascservice.exe"
+ "AERTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\realtek\audio\hda\aertsr64.exe"
+ "Akamai" "Provides networking protocol and file transfer technologies. If the service is stopped, those applications that depend on the service may fail to transfer files or otherwise function properly." "Akamai Technologies, Inc." "c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bbsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "CATmobile" "ConAppsSvc" "SmithMicro Inc." "c:\program files (x86)\t-mobile\webconnect manager\conappssvc.exe"
+ "CinemaNow Service" "CinemaNow Service Application" "CinemaNow, Inc." "c:\program files (x86)\cinemanow\cinemanow media manager\cinemanowsvc.exe"
+ "cvhsvc" "Client Virtualization Handler Service (unlocalized description)" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "Desura Install Service" "Desura" "Desura Pty Ltd" "c:\program files (x86)\common files\desura\desura_service.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files (x86)\windows live\family safety\fsssvc.exe"
+ "GamesAppService" "WT Games App Services" "WildTangent, Inc." "c:\program files (x86)\wildtangent games\app\gamesappservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "Hamachi2Svc" "Hamachi Client Tunneling Engine" "LogMeIn Inc." "c:\program files (x86)\logmein hamachi\hamachi-2.exe"
+ "HiPatchService" "HiPatchService" "Hi-Rez Studios" "c:\program files (x86)\hi-rez studios\hipatchservice.exe"
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe"
+ "HP Wireless Assistant Service" "This service monitors the wireless devices in this computer and allows the HP Wireless Assistant application to turn devices on and off." "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp wireless assistant\hpwa_service.exe"
+ "hpqwmiex" "HP Software Framework WMI Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe"
+ "HPWMISVC" "HP Quick Launch WMI Service" "Hewlett-Packard Development Company, L.P." "c:\program files (x86)\hewlett-packard\hp quick launch\hpwmisvc.exe"
+ "hshld" "" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\bin\openvpnas.exe"
+ "HssSrv" "" "AnchorFree Inc." "c:\program files (x86)\hotspot shield\hsswpr\hsssrv.exe"
+ "HssTrayService" "" "" "c:\program files (x86)\hotspot shield\bin\hsstrayservice.exe"
+ "HssWd" "" "" "c:\program files (x86)\hotspot shield\bin\hsswd.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "npggsvc" "nProtect GameGuard Service" "INCA Internet Co., Ltd." "c:\windows\syswow64\gamemon.des"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "rpcapd" "Allows to capture traffic on this machine from a remote machine." "CACE Technologies, Inc." "c:\program files (x86)\winpcap\rpcapd.exe"
+ "RtVOsdService" "Realtek OSD Control" "Realtek Semiconductor Corp." "c:\program files\realtek\rtvosd\rtvosdservice.exe"
+ "SBAMSvc" "Manages your antispyware and antivirus application" "GFI Software" "c:\program files (x86)\ad-aware antivirus\sbamsvc.exe"
+ "SbieSvc" "Sandboxie Service" "SANDBOXIE L.T.D" "c:\program files\sandboxie\sbiesvc.exe"
+ "SBSDWSCService" "Spybot-S&D Security Center integration" "Safer Networking Ltd." "c:\program files (x86)\spybot - search & destroy\sdwinsec.exe"
+ "SeaPort" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation" "c:\program files (x86)\microsoft\bingbar\seaport.exe"
+ "sftlist" "Streams and manages applications." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"
+ "sftvsa" "Monitors global service events and launches virtual services." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "SwitchBoard" "Adobe SwitchBoard" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\switchboard\switchboard.exe"
+ "TMobileRcAppSvc" "RcAppSvc, Service Helper" "SmithMicro Inc." "c:\program files (x86)\t-mobile\webconnect manager\rcappsvc.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "YahooAUService" "Keeps your favorite Yahoo! software up-to-date with the latest features, tools, and enhancements." "Yahoo! Inc." "c:\program files (x86)\yahoo!\softwareupdate\yahooauservice.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adfs" "Adobe Drive File System Driver" "Adobe Systems, Inc." "c:\windows\system32\drivers\adfs.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "AgereSoftModem" "SoftModem Device Driver" "LSI Corp" "c:\windows\system32\drivers\agrsm64.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "androidusb" "ADB Interface" "Google Inc" "c:\windows\system32\drivers\ssadadb.sys"
+ "Apowersoft_AudioDevice" "Wondershare Virtual Audio Device" "Wondershare" "c:\windows\system32\drivers\apowersoft_audiodevice.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl664.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "cpudrv64" "" "" "c:\program files (x86)\systemrequirementslab\cpudrv64.sys"
+ "dtsoftbus01" "DAEMON Tools Virtual Bus Driver" "DT Soft Ltd" "c:\windows\system32\drivers\dtsoftbus01.sys"
+ "EagleX64" "" "" "File not found: C:\Windows\system32\drivers\EagleX64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "esgiguard" "" "" "File not found: C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys"
+ "ew_hwusbdev" "USB Modem/Serial Device Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_hwusbdev.sys"
+ "ew_usbenumfilter" "Filter Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_usbenumfilter.sys"
+ "ewusbnet" "USB NDIS Miniport Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ewusbnet.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "Gun" "" "" "c:\game\softnyxgame\gunboundis\gun64.sys"
+ "hamachi" "Hamachi Virtual Network Interface Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\hamachi.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "HssDRV6" "Hotspot Shield Routing Driver 6" "AnchorFree Inc." "c:\windows\system32\drivers\hssdrv6.sys"
+ "hwdatacard" "USB Modem/Serial Device Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ewusbmdm.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "libusb0" "LibUSB-Win32 - Kernel Driver" "http://libusb-win32.sourceforge.net" "c:\windows\system32\drivers\libusb0.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "mcdbus" "MagicISO SCSI Host Controller" "MagicISO, Inc." "c:\windows\system32\drivers\mcdbus.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "ncvet.dll" "" "" "File not found: C:\Windows\System32\Drivers\ncvet.dll.sys"
+ "netw5v64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5v64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NPF" "npf.sys (NT5/6 AMD64) Kernel Driver" "CACE Technologies, Inc." "c:\windows\system32\drivers\npf.sys"
+ "NPPTNT2" "" "" "File not found: C:\Windows\system32\npptNT2.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PCTCore" "PC Tools KDS Core Driver" "PC Tools" "c:\windows\system32\drivers\pctcore64.sys"
+ "PCTINDIS5X64" "Smith Micro NDIS 5.0 Protocol Driver" "Smith Micro Inc." "c:\windows\system32\pctindis5x64.sys"
+ "PsSdk41" "PSSDK Driver Protocol v4.1 64bit" "microOLAP Technologies LTD" "c:\windows\system32\drivers\pssdk41.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "rak" "" "" "c:\game\softnyxgame\rakionis\bin\rakion64.sys"
+ "RSUSBSTOR" "" "" "File not found: System32\Drivers\RtsUStor.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "sbapifs" "GFI Active Protection Filter Driver" "GFI Software" "c:\windows\system32\drivers\sbapifs.sys"
+ "SbFw" "GFI Firewall SDK TDI Firewall Driver" "GFI Software" "c:\windows\system32\drivers\sbfw.sys"
+ "SBFWIMCL" "GFI Firewall SDK NDIS Intermediate Driver" "GFI Software" "c:\windows\system32\drivers\sbfwim.sys"
+ "SBFWIMCLMP" "GFI Firewall SDK NDIS Intermediate Driver" "GFI Software" "c:\windows\system32\drivers\sbfwim.sys"
+ "sbhips" "GFI Firewall SDK Host Intrusion Prevention System Driver" "GFI Software" "c:\windows\system32\drivers\sbhips.sys"
+ "SbieDrv" "Sandboxie Kernel Mode Driver" "SANDBOXIE L.T.D" "c:\program files\sandboxie\sbiedrv.sys"
+ "SBRE" "GFI Anti-Rootkit Driver" "GFI Software" "c:\windows\system32\drivers\sbredrv.sys"
+ "sbwtis" "GFI Software Transport Inspection WFP Driver" "GFI Software" "c:\windows\system32\drivers\sbwtis.sys"
+ "ScreamBAudioSvc" "Screaming Bee Audio Driver" "Screaming Bee LLC" "c:\windows\system32\drivers\screamingbaudio64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "sj" "" "" "c:\aeriagames\edeneternal\sjcs64.sys"
+ "SmartDefragDriver" "File driver of SmartDefrag" "" "c:\windows\system32\drivers\smartdefragdriver.sys"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys"
+ "ssadbus" "SAMSUNG Android USB Composite Device Driver" "MCCI Corporation" "c:\windows\system32\drivers\ssadbus.sys"
+ "ssadmdfl" "SAMSUNG Android USB Modem (Filter)" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdfl.sys"
+ "ssadmdm" "SAMSUNG Android USB Modem Drivers" "MCCI Corporation" "c:\windows\system32\drivers\ssadmdm.sys"
+ "ssadserd" "SAMSUNG Android USB Diagnostic Serial Port (WDM)" "MCCI Corporation" "c:\windows\system32\drivers\ssadserd.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "taphss" "TAP-Win32 Virtual Network Driver" "AnchorFree Inc" "c:\windows\system32\drivers\taphss.sys"
+ "tmobile_mf691_dc_enum" "DC Class Enumerator Driver" "T-Mobile" "c:\windows\system32\drivers\tmobile_mf691_dc_enum.sys"
+ "uqk" "" "" "c:\koramgame\stonline\avital\wyqku64.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "X6va001" "" "" "File not found: C:\Windows\System32\Drivers\X6va001.sys"
+ "X6va005" "" "" "File not found: C:\Users\Sandy\AppData\Local\Temp\00541BB.tmp"
+ "X6va008" "" "" "File not found: C:\Windows\SysWOW64\Drivers\X6va008"
+ "X6va009" "" "" "File not found: C:\Windows\SysWOW64\Drivers\X6va009"
+ "X6va010" "" "" "File not found: C:\Windows\SysWOW64\Drivers\X6va010"
+ "X6va011" "" "" "File not found: C:\Windows\SysWOW64\Drivers\X6va011"
+ "yukonw7" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "VIDC.XFR1" "Xfire Video Codec" "" "c:\windows\system32\xfcodec64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.iac2" "Indeo® audio software" "Intel Corporation" "c:\windows\syswow64\iac25_32.ax"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "VIDC.IV41" "Intel Indeo® Video Interactive 32-bit Driver" "Intel Corporation" "c:\windows\syswow64\ir41_32.dll"
+ "vidc.iv50" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\syswow64\ir50_32.dll"
+ "VIDC.XFR1" "Xfire Video Codec" "" "c:\windows\syswow64\xfcodec.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\syswow64\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\syswow64\ir41_32.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Bytescout Screen Capturing Filter" "Bytescout Virtual Camera Filter acts like a video capture source." "Bytescout" "c:\windows\system32\bytescoutscreencapturingfilter.dll"
+ "Bytescout Video Mixer Filter" "Bytescout Video Mixer Filter mixes two video streams into one." "Bytescout" "c:\windows\system32\bytescoutvideomixerfilter.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Bytescout Screen Capturing Filter" "Bytescout Virtual Camera Filter acts like a video capture source." "Bytescout" "c:\windows\syswow64\bytescoutscreencapturingfilter.dll"
+ "Bytescout Video Mixer Filter" "Bytescout Video Mixer Filter mixes two video streams into one." "Bytescout" "c:\windows\syswow64\bytescoutvideomixerfilter.dll"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CuttlefishSubtitleParser Filter" "Sony MP4 SMF Subtitle Stream Parser" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.96.120.08260\cuttlefishsubtitleparser.ax"
+ "CyberLink Audio Decoder (PDVD9)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claud.ax"
+ "CyberLink Audio Decoder(PDVD9 UPnP)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\claud.ax"
+ "CyberLink Audio Effect (PDVD9)" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudfx.ax"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio Spectrum Analyzer (PDVD9)" "CLAudSpa.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudspa.ax"
+ "CyberLink Audio Spectrum Analyzer(PDVD9 UPnP)" "CLAudSpa.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\claudspa.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink Audio Wizard" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudwizard.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "CyberLink AudioCD Filter (PDVD9)" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\claudiocd.ax"
+ "CyberLink Demultiplexer(PDVD9 UPnP)" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\cldemuxer.ax"
+ "CyberLink Demux (PDVD9)" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\cldemuxer.ax"
+ "CyberLink Digest Filter (PDVD9)" "DigestFilter Dynamic Link Library" "" "c:\program files (x86)\cyberlink\powerdvd9\digestfilter.dll"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink DVD Navigator (PDVD9)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clnavx.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink HD/BD Mixer (PDVD9)" "CLHBMixer" " " "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\clhbmixer.ax"
+ "CyberLink Line21 Decoder (PDVD9)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clline21.ax"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\clsplter.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink MPEG-4 Splitter (PDVD9)" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\navfilter\clm4splt.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink Push-Mode CLStream(PDVD9)" "CLStream" "CyberLink" "c:\program files (x86)\cyberlink\powerdvd9\upnp\clstream(pushmode).ax"
+ "CyberLink Streamming Filter(PDVD9)" "Cyberlink Streaming Source Filter(Scramble)" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\clstream.ax"
+ "Cyberlink SubTitle Importor (PDVD9)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clsubtitle.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TimeStretch Filter (PDVD9)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\audiofilter\clauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Tzan Filter (PDVD9)" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\cltzan.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "CyberLink Video/SP Decoder (PDVD9)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\videofilter\clvsd.ax"
+ "CyberLink Video/SP Decoder(PDVD9 UPnP)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\powerdvd9\upnp\clvsd.ax"
+ "CyberLink WMV/WMA Demux(PDVD9)" "WMV/WMA Demux" "CyberLink" "c:\program files (x86)\cyberlink\powerdvd9\upnp\clwmfdemux.ax"
+ "Indeo® audio software" "Indeo® audio software" "Intel Corporation" "c:\windows\syswow64\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\syswow64\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\syswow64\ir50_32.dll"
+ "MPC - RealAudio Decoder" "RealMedia Splitter" "MPC-HC Team" "c:\program files (x86)\real alternative\realmediasplitter.ax"
+ "MPC - RealMedia Source" "RealMedia Splitter" "MPC-HC Team" "c:\program files (x86)\real alternative\realmediasplitter.ax"
+ "MPC - RealMedia Splitter" "RealMedia Splitter" "MPC-HC Team" "c:\program files (x86)\real alternative\realmediasplitter.ax"
+ "MPC - RealVideo Decoder" "RealMedia Splitter" "MPC-HC Team" "c:\program files (x86)\real alternative\realmediasplitter.ax"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Sony CF AAC decoder" "Sony FhG AAC Decoder" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.96.120.08260\cfaac.ax"
+ "Sony CF AVC Decoder" "Sony AVC Decoder Filter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.96.120.08260\sjvtdfcf.ax"
+ "Sony CF AVC Decoder (Intel VA)" "Sony AVC Decoder Filter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.96.120.08260\sjvtdfcf.ax"
+ "Sony CF DXVA AVC Decoder" "Sony AVC Decoder Filter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.96.120.08260\sjvtdfcf.ax"
+ "Sony MP4 File Source" "Sony MP4 File Source Filter" "Sony Corporation" "c:\program files (x86)\common files\sony shared\media go video playback engine\1.96.120.08260\mp4filesource.ax"
+ "VHAudioGain" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHCropResize" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHDeinterlace" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHFrameRateConv" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHMixerSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHMultiReader" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHMultiWriter" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHSplitProcSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHYV12Decoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "VHYV12Encoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\vhmediacom.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute" "" "" ""
+ "SBBD.exe /d \Device\HarddiskVolume2\Program Files (x86)\Ad-Aware Antivirus\Definitions" "Boot Delete Utility" "GFI Software" "c:\windows\system32\sbbd.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "HP 8e11 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinksts8e11lm.dll"
+ "HP Discovery Port Monitor (HP Photosmart Plus B210 series)" "HP Discovery Port Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpdiscopm8e11.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "AdobeDriveCS4_NP" "Adobe Drive CS4 Network" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\adobe drive cs4\adobedrivecs4_np.dll"

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:41 PM

Posted 01 January 2013 - 08:56 AM

Download

Rogue killer

right click on it and select run as administrator

Now,click on SCAN After scan finishes click on DELETE

Log is not required

Now run RKILL given in previous instructions and post the new log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users