Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Topics merged - nasdaq


  • This topic is locked This topic is locked
40 replies to this topic

#1 pirimid

pirimid

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 18 October 2012 - 06:46 PM

Hello BC..
I had an intial post in the Window/XP home..Pro forum which was moved to the apprpriate forum by Queene~Evie...
This post was regarding a virus/ or malware problem that started by what I thought was my 12 rd old daughter getting something on our home pc...I have a HP comp..w/wnd XP Media Ed. IE8 and the SP3 installed...It was running fine up until about 2 wks ago..my IE8 stopped working. id click the icon--it just opens for a moment then closes...I also souldnt open any download from microsoft using Firefox...the download wnd pops up saying download complete. but, the field that says open file/folder now was grey...after alot of research...I noticed I had this search/babylon toolbar on my IE8 before it stopped working and thins whitesmoke on Firefox. I finally ended up deleting IE8 and the SP3 from control panel. After that I had only IE6 but it would work.
But, from Microsoft site I couldnt reinstall them. I also prior to the IE8 not working had downloaded the free AVG 2012 version from Cnet.com. which is not working also...shows in the bottom right of screen with an exclamation point through it.
The BC advisor assigned to me had me run several different programs.. and now it does seem better I was able to download the IE8 from microsoft...although now like before I click on the icon on the desktop it opens for a moment and closes. There are several other things not working. I go to start...to get to disc defrag or disc cleanup...nothing works...doesnt even open the window. I can download the SP3 from Microsoft but it starts running then stops and says system error. at least now I can download things from the site and open and run them...I thought it was a registry problem....but I dont want to make any bad moves there. The BC advisor says it's something more than just a malware issue and told me to repost an ad here again...I still have the logs he had me run.
My firefox works fine thats how I can communicate.

Thanks in advance for your help....

BC AdBot (Login to Remove)

 


#2 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 19 October 2012 - 05:38 AM

I cant open system tools at all...

#3 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 20 October 2012 - 06:40 AM

IF you need me to repost any logs from my previous session w/Bc advisor let me know which ones you want to look at.
Thanks

#4 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Members
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:04:51 PM

Posted 20 October 2012 - 09:24 AM

Hello,Please follow the instructions in ==>This Guide<== starting at step 6. If you cannot complete a step, skip it and continue.Once the proper logs are created, then post them in a reply to this topic by using the Add Reply button.If you can produce at least some of the logs, then please create the post and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the reply and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.Please note that I am not a member of the Malware Removal Team and will not be assisting you in removing the infection. I'm simply helping you to post the information they need in order to assist you.If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

#5 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 21 October 2012 - 06:26 AM

Hello, B.C.

I'm creating a new topic per B.C. (Admin-Bleep Bleep!)

I was able to run the programs her asked for without incident here attached are the logs:

My IE8 still does'nt work. I dbl click on the icon on the desktop & it opens for a moment/then closes again. I can't get into system tools either. again (I have Win Xp Media Ed.)
when I go Start>>>All Programs>>>Accessories>>>System Tools>>>I can highlight over system tools the next window that opens is the tools but scrolling down over for example disc defrag and clicking on it nothing happens.
Also, I had awhile back as previously mentioned downloaded the free ver. of AVG 2012 from download.com (Cnet) and it had worked fine. but, it doesn't work I can't unistall it. on the bottom right of my screen it shows the icon, but with an exclamation point through it...here are the


DDS (Ver_2012-10-19.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_29
Run by HP_Administrator at 18:53:39 on 2012-10-20
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.3006.2185 [GMT -4:00]
.
AV: PC Cleaner Pro *Disabled/Updated* {737A8864-C2D9-4337-B49A-B5E35815B9BB}
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ================
.
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\ARPWRMSG.EXE
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\DISC\DISCover.exe
C:\Program Files\DISC\DiscUpdMgr.exe
C:\Program Files\DISC\DiscStreamHub.exe
C:\WINDOWS\system32\wuauclt.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=64&bd=PAVILION&pf=desktop
uSearchAssistant = hxxp://www.google.com
BHO: {02478D38-C3F9-4EFB-9B51-7695ECA05670} - <orphaned>
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg2012\avgssie.dll
BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
BHO: hpWebHelper Class: {AAAE832A-5FFF-4661-9C8F-369692D1DCB9} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\WebHelper.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: D-Link Toolbar Loader: {f01858c7-2a68-4d93-9e22-502eae3917c2} - c:\program files\d-link toolbar\dlinktb.dll
TB: D-Link Toolbar: {61874DFA-9ADF-44E5-8E61-F3913707E7D7} - c:\program files\d-link toolbar\dlinktb.dll
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
mRun: [AlwaysReady Power Message APP] ARPWRMSG.EXE
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [DMAScheduler] "c:\program files\hp digitalmedia archive\DMAScheduler.exe"
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [HPBootOp] "c:\program files\hewlett-packard\hp boot optimizer\HPBootOp.exe" /run
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [PMBVolumeWatcher] c:\program files\sony\pmb\PMBVolumeWatcher.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
mRun: [UpdatePDRShortCut] "c:\program files\cyberlink\powerdirector10\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\powerdirector10" updatewithcreateonce "software\cyberlink\powerdirector\10.0"
mRun: [KernelFaultCheck] c:\windows\system32\dumprep 0 -k
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [ROC_roc_ssl_v12] "c:\program files\avg secure search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
uPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
Trusted Zone: trymedia.com
Trusted Zone: trymedia.com
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} -
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{892900FC-9814-4488-99C0-81491C1EE93D} : DHCPNameServer = 16.92.3.242 16.92.3.243 16.81.3.243 16.118.3.243
TCP: Interfaces\{CAE1EC5A-A844-4A1F-8B6E-8625DA20F1C2} : DHCPNameServer = 192.168.0.1
Handler: mhtml - <Clsid value has no data>
Notify: dimsntfy - <no file>
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-3 24896]
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2012-3-20 193552]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-10-4 26984]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288]
R2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-9-5 136176]
R3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [2011-5-27 23608]
S1 hechttwb;hechttwb; [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-8-13 5167736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
S2 vToolbarUpdater13.1.0;vToolbarUpdater13.1.0;c:\program files\common files\avg secure search\vtoolbarupdater\13.1.0\toolbarupdater.exe --> c:\program files\common files\avg secure search\vtoolbarupdater\13.1.0\ToolbarUpdater.exe [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-12 250808]
S3 GSService;GSService;c:\windows\system32\GSService.exe [2011-3-31 745472]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-9-5 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-7-20 113120]
S3 SMServer;SMServer;c:\windows\system32\snmvtsvc.exe [2011-5-27 243712]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [2011-5-13 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [2011-5-13 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [2011-5-13 136808]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [2011-5-13 114280]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2004-8-10 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-10-20 10:36:54 6918632 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2b1977ec-8513-4699-a89d-5c42ba7d8648}\mpengine.dll
2012-10-19 10:36:50 6918632 ------w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2012-10-18 22:23:30 -------- d-----w- C:\ee17058befa483438a52239650fa9d
2012-10-18 22:12:23 -------- d-----w- c:\program files\Windows Resource Kits
2012-10-18 21:48:18 -------- d-----w- C:\412fe2e16d4a571d4ad8
2012-10-18 19:20:47 -------- d-----w- C:\41d702ceccc616f15646
2012-10-18 11:38:15 -------- d-----w- c:\documents and settings\hp_administrator\local settings\application data\Temp
2012-10-18 11:38:15 -------- d-----w- c:\documents and settings\hp_administrator\local settings\application data\Adobe
2012-10-17 10:20:15 -------- dc-h--w- c:\windows\ie8
2012-10-16 10:10:22 -------- d-----w- C:\JRT
2012-10-15 18:01:05 -------- d-----w- C:\eset
2012-10-15 11:44:36 -------- d-----w- c:\program files\ESET
2012-10-13 23:35:34 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2012-10-13 23:35:30 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2012-10-13 23:35:26 17408 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2012-10-13 23:35:22 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2012-10-13 23:35:18 4608 ----a-w- c:\windows\system32\dllcache\xrxflnch.exe
2012-10-13 23:35:00 99865 ----a-w- c:\windows\system32\dllcache\xlog.exe
2012-10-13 23:34:56 16970 ----a-w- c:\windows\system32\dllcache\xem336n5.sys
2012-10-13 23:34:53 19455 ----a-w- c:\windows\system32\dllcache\wvchntxx.sys
2012-10-13 23:34:49 12063 ----a-w- c:\windows\system32\dllcache\wsiintxx.sys
2012-10-13 23:34:48 8192 ----a-w- c:\windows\system32\dllcache\wshirda.dll
2012-10-13 23:34:33 8832 ----a-w- c:\windows\system32\dllcache\wmiacpi.sys
2012-10-13 23:34:30 154624 ----a-w- c:\windows\system32\dllcache\wlluc48.sys
2012-10-13 23:34:27 34890 ----a-w- c:\windows\system32\dllcache\wlandrv2.sys
2012-10-13 23:34:16 771581 ----a-w- c:\windows\system32\dllcache\winacisa.sys
2012-10-13 23:34:11 53760 ----a-w- c:\windows\system32\dllcache\wiamsmud.dll
2012-10-13 23:34:07 87040 ----a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2012-10-13 23:34:00 701386 ----a-w- c:\windows\system32\dllcache\wdhaalba.sys
2012-10-13 23:32:59 42240 ----a-w- c:\windows\system32\dllcache\viaagp.sys
2012-10-13 23:31:56 69632 ----a-w- c:\windows\system32\dllcache\umaxu12.dll
2012-10-13 23:30:57 315520 ----a-w- c:\windows\system32\dllcache\trid3d.dll
2012-10-13 23:29:55 7040 ----a-w- c:\windows\system32\dllcache\tandqic.sys
2012-10-13 23:28:59 53248 ----a-w- c:\windows\system32\dllcache\stlncoin.dll
2012-10-13 23:27:52 58368 ----a-w- c:\windows\system32\dllcache\smiminib.sys
2012-10-13 23:26:59 94698 ----a-w- c:\windows\system32\dllcache\sk98xwin.sys
2012-10-13 23:25:55 6912 ----a-w- c:\windows\system32\dllcache\seaddsmc.sys
2012-10-13 23:24:59 62496 ----a-w- c:\windows\system32\dllcache\s3mtrio.dll
2012-10-13 23:23:56 13776 ----a-w- c:\windows\system32\dllcache\recagent.sys
2012-10-13 23:22:59 5632 ----a-w- c:\windows\system32\dllcache\ptpusb.dll
2012-10-13 23:21:57 86016 ----a-w- c:\windows\system32\dllcache\pctspk.exe
2012-10-13 23:20:58 54186 ----a-w- c:\windows\system32\dllcache\otcsercb.sys
2012-10-13 23:19:55 65278 ----a-w- c:\windows\system32\dllcache\netflx3.sys
2012-10-13 23:18:59 103296 ----a-w- c:\windows\system32\dllcache\mtxvideo.sys
2012-10-13 23:17:57 16128 ----a-w- c:\windows\system32\dllcache\modemcsa.sys
2012-10-13 23:16:59 576746 ----a-w- c:\windows\system32\dllcache\ltmdmntl.sys
2012-10-13 23:15:53 6144 ----a-w- c:\windows\system32\dllcache\kbd106.dll
2012-10-13 23:14:52 372824 ----a-w- c:\windows\system32\dllcache\iconf32.dll
2012-10-13 23:13:58 488383 ----a-w- c:\windows\system32\dllcache\hsf_v124.sys
2012-10-13 23:12:59 101376 ----a-w- c:\windows\system32\dllcache\hpgt34.dll
2012-10-13 23:11:55 442240 ----a-w- c:\windows\system32\dllcache\fpnpbase.sys
2012-10-13 23:10:58 595647 ----a-w- c:\windows\system32\dllcache\es56cvmp.sys
2012-10-13 23:09:59 334208 ----a-w- c:\windows\system32\dllcache\ds1wdm.sys
2012-10-13 23:08:58 110592 ----a-w- c:\windows\system32\dllcache\dc260usd.dll
2012-10-13 23:07:59 45696 ----a-w- c:\windows\system32\dllcache\cirrus.sys
2012-10-13 23:06:59 9728 ----a-w- c:\windows\system32\dllcache\brserif.dll
2012-10-13 23:05:59 77568 ----a-w- c:\windows\system32\dllcache\ati.sys
2012-10-13 23:04:52 66048 ----a-w- c:\windows\system32\dllcache\s3legacy.dll
2012-10-12 16:17:34 -------- d-----w- c:\windows\system32\CatRoot_bak
2012-10-12 10:56:45 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-12 10:56:45 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-10-12 01:27:43 -------- d-----w- c:\windows\system32\drivers\AVG
2012-10-08 23:08:36 146432 ----a-w- c:\windows\regedit.com
2012-10-04 10:52:19 -------- d--h--w- C:\kleaner.tmp
2012-10-04 10:51:48 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2012-10-04 10:42:21 -------- d-----w- c:\program files\common files\Bitdefender
2012-10-04 00:09:40 24896 ----a-w- c:\windows\system32\drivers\avgidshx.sys
2012-10-04 00:07:52 -------- d-----w- c:\documents and settings\hp_administrator\local settings\application data\MFAData
2012-10-04 00:07:52 -------- d-----w- c:\documents and settings\hp_administrator\local settings\application data\Avg2013
2012-10-03 21:39:56 -------- d-----w- c:\documents and settings\hp_administrator\application data\SMIGames
2012-10-03 18:54:32 -------- d-----w- c:\documents and settings\hp_administrator\application data\unikgame
2012-10-03 16:01:33 -------- d-----w- c:\documents and settings\hp_administrator\application data\AVG2012
2012-10-03 15:59:27 -------- d-----w- c:\documents and settings\hp_administrator\application data\EnchantedCavern2
2012-10-03 00:38:53 -------- d-----w- c:\program files\PC Tools
2012-10-03 00:35:58 203120 ----a-w- c:\windows\system32\drivers\PCTSD.sys
2012-10-03 00:35:54 -------- d-----w- c:\program files\common files\PC Tools
2012-10-03 00:35:24 -------- d-----w- c:\documents and settings\all users\application data\PC Tools
2012-10-03 00:35:21 -------- d-----w- c:\documents and settings\hp_administrator\application data\TestApp
2012-10-03 00:03:34 -------- d-----w- c:\documents and settings\hp_administrator\application data\ParetoLogic
2012-10-03 00:02:54 -------- d-----w- c:\documents and settings\all users\application data\ParetoLogic
2012-10-02 13:29:58 -------- d-----w- c:\documents and settings\hp_administrator\GNUstep
2012-10-02 00:47:48 -------- d-----w- c:\program files\PandaPDFConverter
2012-10-02 00:38:28 81920 ----a-w- c:\windows\system32\pdfcmon.dll
2012-10-02 00:38:28 137000 ----a-w- c:\windows\system32\MSMAPI32.OCX
2012-10-02 00:38:26 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL
2012-10-02 00:38:24 -------- d-----w- c:\program files\PDFCreator
2012-10-01 21:42:33 -------- d-----w- c:\program files\Cursed House
2012-10-01 21:41:20 -------- d-----w- c:\documents and settings\hp_administrator\application data\Heaven&Hell
2012-10-01 21:35:49 -------- d-----w- c:\program files\The Enchanting Islands
2012-10-01 21:25:24 -------- d-----w- c:\program files\Christmas Puzzle
2012-10-01 21:16:18 -------- d-----w- c:\program files\Heaven and Hell
2012-10-01 21:15:02 -------- d-----w- c:\program files\Mystika - Between Light and Shadow
2012-10-01 17:24:49 -------- d-----w- c:\documents and settings\hp_administrator\application data\rokapublish
2012-10-01 14:25:19 -------- d-----w- c:\program files\Safari Quest
2012-10-01 01:34:42 -------- d-----w- c:\documents and settings\all users\application data\GameXzone
2012-10-01 01:19:17 -------- d-----w- c:\documents and settings\all users\application data\Friends Games
2012-10-01 00:18:43 -------- d-----w- c:\documents and settings\hp_administrator\application data\Awem
2012-09-30 19:45:59 -------- d-----w- c:\program files\Magic Match The Genie`s Journey
2012-09-30 19:39:39 -------- d-----w- c:\documents and settings\all users\application data\Playrix Entertainment
2012-09-21 02:55:32 726528 ----a-w- c:\windows\system32\SET23D.tmp
2012-09-21 02:53:27 22400 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2012-09-21 02:20:26 -------- d-----w- c:\documents and settings\all users\application data\IObit
2012-09-21 02:04:20 -------- d-----w- c:\documents and settings\hp_administrator\application data\DriverCure
2012-09-21 02:04:08 -------- d-----w- c:\documents and settings\all users\application data\SpeedyPC Software
2012-09-21 00:14:13 4273464 ----a-w- c:\windows\uninst.exe
2012-09-21 00:13:57 -------- d-----w- c:\documents and settings\all users\application data\PC1Data
.
==================== Find3M ====================
.
2012-10-09 00:11:21 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-09 00:11:21 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-31 02:03:50 193552 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-08-26 12:56:17 121248 ----a-w- c:\windows\system32\drivers\AnyDVD.sys
.
============= FINISH: 18:54:04.54 ===============

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-10-21 06:43:25
Windows 5.1.2600 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5 WDC_WD3200AAKX-001CA0 rev.15.01H15
Running: gmer.exe; Driver: C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\uxldypog.sys


---- System - GMER 1.0.15 ----

SSDT \??\C:\WINDOWS\system32\drivers\avgtpx86.sys (AVG Technologies) ZwQueryValueKey [0xBA1B91EA]

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwCallbackReturn + 2E5C 80503C30 4 Bytes JMP B2BA1B91
.text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB9224360, 0x20574D, 0xE8000020]
? C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\mbr.sys The system cannot find the file specified. !

---- User code sections - GMER 1.0.15 ----

.text C:\program files\real\realplayer\update\realsched.exe[1688] kernel32.dll!SetUnhandledExceptionFilter 7C8447ED 5 Bytes [33, C0, C2, 04, 00] {XOR EAX, EAX; RET 0x4}
.text C:\Program Files\Mozilla Firefox\firefox.exe[3644] ntdll.dll!LdrLoadDll 7C915CBB 5 Bytes JMP 102BFA35 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\firefox.exe[3644] kernel32.dll!VirtualAlloc 7C809A61 5 Bytes JMP 105607C5 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\firefox.exe[3644] kernel32.dll!MapViewOfFile 7C80B915 5 Bytes JMP 1056079E C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\firefox.exe[3644] GDI32.dll!CreateDIBSection 77F19AA1 5 Bytes JMP 10560728 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs bb-run.sys (Promise Disk Accelerator/Promise Technology, Inc.)
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----

Attached Files



#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:51 PM

Posted 21 October 2012 - 10:07 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Please download RogueKiller© by Tigzy from one of the links below and save it to your desktop.

Link 1 Bleepingcomputer
Link 2 RogueKiller (par Tigzy)

Quit all running programs.

For Windows XP, double-click to start.
For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

Click Scan to scan the system.
When the scan completes > Close out the program > Don't Fix anything!

Don't run any other options, they're not all bad!!!!!!!

Post back the report which should be located on your desktop.

#7 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 21 October 2012 - 04:38 PM

RogueKiller V8.1.1 [10/01/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP (5.1.2600 Service Pack 2) 32 bits version
Started in : Normal mode
User : HP_Administrator [Admin rights]
Mode : Scan -- Date : 10/21/2012 17:35:20

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 1 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤
[ZeroAccess][FILE] @ : C:\WINDOWS\Installer\{a7492bcb-6e4e-ffe0-f680-dace7842659f}\@ --> FOUND
[ZeroAccess][FOLDER] U : C:\WINDOWS\Installer\{a7492bcb-6e4e-ffe0-f680-dace7842659f}\U --> FOUND
[ZeroAccess][FOLDER] L : C:\WINDOWS\Installer\{a7492bcb-6e4e-ffe0-f680-dace7842659f}\L --> FOUND

¤¤¤ Driver : [LOADED] ¤¤¤
SSDT[177] : NtQueryValueKey @ 0x806201E8 -> HOOKED (\??\C:\WINDOWS\system32\drivers\avgtpx86.sys @ 0xBA1B91EA)

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD3200AAKX-001CA0 +++++
--- User ---
[MBR] e2cf41d76cf11290b91844a055c2c75b
[BSP] 05e3161cf4ce79602881f99911e8893d : Toshiba tatooed MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 296182 Mo
1 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 606582270 | Size: 9060 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1].txt >>
RKreport[1].txt



Hello,

This should be the report you asked for....It finished very quickly...

let me know what you need next...Thanks for helping me...

#8 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:51 PM

Posted 22 October 2012 - 09:08 AM

Run RogueKiller again and click Scan
When the scan completes > click on the Registry tab
Put a check next to all of these and uncheck the rest: (if found)

[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND


Now click Delete on the right hand column under Options
===

Now click the Files Tab
Put a check next to all of these and uncheck the rest: (if found)

[ZeroAccess][FILE] @ : C:\WINDOWS\Installer\{a7492bcb-6e4e-ffe0-f680-dace7842659f}\@ --> FOUND
[ZeroAccess][FOLDER] U : C:\WINDOWS\Installer\{a7492bcb-6e4e-ffe0-f680-dace7842659f}\U --> FOUND
[ZeroAccess][FOLDER] L : C:\WINDOWS\Installer\{a7492bcb-6e4e-ffe0-f680-dace7842659f}\L --> FOUND


Now click Delete on the right hand column under Options

Close the application and restart the computer normally.
===

Please Download
TDSSKiller.zip

>>> Double-click on TDSSKiller.exe to run the application.
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue
    Posted Image
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.
===

Let me know of the remaining issues with this computer.

#9 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 22 October 2012 - 06:56 PM

Hello,

I ran Rougekiller again no problem...deleted items & rebooted the computer. I then ran Tdsskiller fine...It detected the Zeroaccess and following directions deleted all...It DID NOT say I needed to reboot. I clicked on the report,,,to send the log but, I'm unable to copy & paste it...does it go into another part of the computer? maybe I can find it there & copy/paste it. It scanned 333 objects no threats were detected..
I tried to open my IE8 & it still opens then closes again...any ideas? I still can't open system tools,,,ex..disc defrag or cleanup...

#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:51 PM

Posted 23 October 2012 - 08:58 AM

Search for this string in the search box *log.txt
This will give you a list of all the files ending with log.txt.
You may be able to see the TDSKiller log if it was created.
===

Please download ComboFix from one of these locations:

Link 1
Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop

  • Disable your Anti-Virus and Anti-Spyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  • Some Rookit infection may damage your boot sector. The Windows Recovery Console may be needed to restore it. Do not bypass this installation. You may regret it.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Posted Image


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Posted Image

Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

Note: If you have difficulty properly disabling your protection programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html

Do not mouse click ComboFix's window while it's running. That may cause it to stall

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

#11 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 23 October 2012 - 09:38 PM

ComboFix 12-10-23.01 - HP_Administrator 10/23/2012 22:15:33.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.3006.2408 [GMT -4:00]
Running from: c:\documents and settings\HP_Administrator\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\TEMP\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\PostBuild.exe
c:\documents and settings\All Users\Application Data\TEMP\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\Setup.exe
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\HP_Administrator\WINDOWS
c:\documents and settings\James'\WINDOWS
c:\windows\regedit.com
c:\windows\system32\Cache
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\287204568329e189.fb
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\2c53092c95605355.fb
c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\3917078cb68ec657.fb
c:\windows\system32\Cache\4985f87c01fef25b.fb
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\610289e025a3ee9a.fb
c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\a8556537add6dfc5.fb
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\c60ff9ae66a4d733.fb
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d2e94710a5708128.fb
c:\windows\system32\Cache\d79b9dfe81484ec4.fb
c:\windows\system32\Cache\d90fad35f41db33f.fb
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\config\systemprofile\WINDOWS
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\system32\msv1_0.dll.tmp
c:\windows\system32\SET23D.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
c:\windows\wt
c:\windows\wt\data.wts
c:\windows\wt\updater\wcmdmgr.exe
c:\windows\wt\updater\wcmdmgrl.exe
c:\windows\wt\updater\wt.ini
c:\windows\wt\webdriver.dll
c:\windows\wt\webdriver\4.1.1\actorobject.dll
c:\windows\wt\webdriver\4.1.1\dx5drv.dll
c:\windows\wt\webdriver\4.1.1\dx7drv.dll
c:\windows\wt\webdriver\4.1.1\objectbundle.dll
c:\windows\wt\webdriver\4.1.1\sound.dll
c:\windows\wt\webdriver\4.1.1\wdcaps.ded
c:\windows\wt\webdriver\4.1.1\wdengine.dll
c:\windows\wt\webdriver\4.1.1\webdriver.dll
c:\windows\wt\webdriver\4.1.1\wthost.exe
c:\windows\wt\webdriver\4.1.1\wthostctl.dll
c:\windows\wt\webdriver\4.1.1\wtmulti.dll
c:\windows\wt\webdriver\4.1.1\wtmulti.jar
c:\windows\wt\webdriver\4.1.1\wtwmplug.ax
c:\windows\wt\webdriver\4.1.1\wtwmplug.ini
c:\windows\wt\webdriver\jdriver.dll
c:\windows\wt\webdriver\rdriver.dll
c:\windows\wt\webdriver\wildtangent.jar
c:\windows\wt\wt3d.dll
c:\windows\wt\wt3d.ini
c:\windows\wt\wtupdates\DRM\3.2.0.19\files\controlpanel\index.html
c:\windows\wt\wtupdates\DRM\3.2.0.19\files\DRM0302.dll
c:\windows\wt\wtupdates\DRM\3.2.0.19\files\DRM0302Java.jar
c:\windows\wt\wtupdates\DRM\3.2.0.19\files\jDRM0302.dll
c:\windows\wt\wtupdates\DRM\3.2.0.19\files\rDRM0302.dll
c:\windows\wt\wtupdates\DRM\3.2.0.19\install\DRM0302.cdanfo
c:\windows\wt\wtupdates\DRM\3.2.0.19\install\DRM0302_Uninstall.cdas
c:\windows\wt\wtupdates\webd\4.1.1\files\actorobject.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\controlpanel\index.html
c:\windows\wt\wtupdates\webd\4.1.1\files\dx5drv.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\dx7drv.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\jdriver.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\legacy\data.wts
c:\windows\wt\wtupdates\webd\4.1.1\files\legacy\webdriver.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\legacy\wt3d.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\npWTHost.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\nsIWTHostPlugin.xpt
c:\windows\wt\wtupdates\webd\4.1.1\files\ObjectBundle.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\rdriver.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\Sound.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\update_info\data.wts
c:\windows\wt\wtupdates\webd\4.1.1\files\wdcaps.ded
c:\windows\wt\wtupdates\webd\4.1.1\files\wdengine.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\Webd331.cdanfo
c:\windows\wt\wtupdates\webd\4.1.1\files\Webd331_fileList.cdas
c:\windows\wt\wtupdates\webd\4.1.1\files\Webd331_Uninstall.cdas
c:\windows\wt\wtupdates\webd\4.1.1\files\webdriver.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\wildtangent.jar
c:\windows\wt\wtupdates\webd\4.1.1\files\wt3d.ini
c:\windows\wt\wtupdates\webd\4.1.1\files\WTHost.exe
c:\windows\wt\wtupdates\webd\4.1.1\files\WTHostCtl.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\wtmulti.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\wtmulti.jar
c:\windows\wt\wtupdates\webd\4.1.1\files\wtvh.dll
c:\windows\wt\wtupdates\webd\4.1.1\files\wtwmplug.ax
c:\windows\wt\wtupdates\webd\4.1.1\files\wtwmplug.ini
c:\windows\wt\wtupdates\webd\4.1.1\install\Webd4_1_1.cdanfo
c:\windows\wt\wtupdates\webd\4.1.1\install\Webd4_1_1_Uninstall.cdas
c:\windows\wt\wtupdates\WireControl\1.1.0.23\files\controlpanel\index.html
c:\windows\wt\wtupdates\WireControl\1.1.0.23\files\install\WireControl.cdanfo
c:\windows\wt\wtupdates\WireControl\1.1.0.23\files\install\WireControl_Uninstall.cdas
c:\windows\wt\wtupdates\WireControl\1.1.0.23\files\WireControl.dll
c:\windows\wt\wtupdates\wtupdater\appinfo.dat
c:\windows\wt\wtupdates\wtwebdriver\update_info\data.wts
c:\windows\wt\wtvh.dll
D:\Autorun.inf
.
c:\windows\system32\drivers\intelppm.sys was missing
Restored copy from - c:\windows\system32\dllcache\intelppm.sys
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NVSVC
-------\Service_NVSvc
.
.
((((((((((((((((((((((((( Files Created from 2012-09-24 to 2012-10-24 )))))))))))))))))))))))))))))))
.
.
2012-10-24 02:27 . 2004-08-04 02:59 36096 ----a-w- c:\windows\system32\drivers\intelppm.sys
2012-10-24 02:27 . 2004-08-04 02:59 36096 ----a-w- c:\windows\system32\dllcache\intelppm.sys
2012-10-24 02:01 . 2012-10-24 02:01 -------- d-----w- c:\documents and settings\HP_Administrator\Local Settings\Application Data\AVG Secure Search
2012-10-24 02:01 . 2012-10-24 02:01 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Secure Search
2012-10-24 02:01 . 2012-10-24 02:01 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\AVG Secure Search
2012-10-24 02:01 . 2012-10-24 02:01 -------- d-----w- c:\program files\Common Files\AVG Secure Search
2012-10-24 02:01 . 2012-10-24 02:01 -------- d-----w- c:\program files\AVG Secure Search
2012-10-24 02:00 . 2012-10-24 02:00 -------- d-----w- C:\$AVG
2012-10-24 01:58 . 2012-10-24 02:03 -------- d-----w- c:\windows\system32\drivers\AVG
2012-10-23 20:58 . 2012-10-12 05:56 6918632 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0D856DD1-E807-4852-B6FC-20504AB36618}\mpengine.dll
2012-10-23 10:40 . 2012-10-12 05:56 6918632 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-10-18 22:12 . 2012-10-18 22:12 -------- d-----w- c:\program files\Windows Resource Kits
2012-10-18 20:06 . 2012-10-18 20:07 -------- d-----w- c:\documents and settings\James'
2012-10-18 11:38 . 2012-10-18 11:38 -------- d-----w- c:\documents and settings\HP_Administrator\Local Settings\Application Data\Temp
2012-10-18 11:38 . 2012-10-18 11:38 -------- d-----w- c:\documents and settings\HP_Administrator\Local Settings\Application Data\Adobe
2012-10-17 10:38 . 2012-10-17 10:38 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\InstallShield
2012-10-17 10:20 . 2012-10-17 10:20 -------- dc-h--w- c:\windows\ie8
2012-10-16 10:10 . 2012-10-16 10:18 -------- d-----w- C:\JRT
2012-10-15 18:01 . 2012-10-15 18:01 -------- d-----w- C:\eset
2012-10-15 11:44 . 2012-10-15 11:44 -------- d-----w- c:\program files\ESET
2012-10-13 23:35 . 2004-08-04 04:56 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2012-10-13 23:35 . 2001-08-18 02:36 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2012-10-13 23:35 . 2001-08-18 02:36 17408 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2012-10-13 23:35 . 2001-08-18 02:37 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2012-10-13 23:35 . 2001-08-18 02:37 4608 ----a-w- c:\windows\system32\dllcache\xrxflnch.exe
2012-10-13 23:35 . 2001-08-18 02:37 99865 ----a-w- c:\windows\system32\dllcache\xlog.exe
2012-10-13 23:34 . 2001-08-17 16:11 16970 ----a-w- c:\windows\system32\dllcache\xem336n5.sys
2012-10-13 23:34 . 2004-08-04 02:29 19455 ----a-w- c:\windows\system32\dllcache\wvchntxx.sys
2012-10-13 23:34 . 2004-08-04 02:29 12063 ----a-w- c:\windows\system32\dllcache\wsiintxx.sys
2012-10-13 23:34 . 2004-08-04 04:56 8192 ----a-w- c:\windows\system32\dllcache\wshirda.dll
2012-10-13 23:34 . 2004-08-04 03:07 8832 ----a-w- c:\windows\system32\dllcache\wmiacpi.sys
2012-10-13 23:34 . 2004-08-04 02:31 154624 ----a-w- c:\windows\system32\dllcache\wlluc48.sys
2012-10-13 23:34 . 2001-08-17 16:12 34890 ----a-w- c:\windows\system32\dllcache\wlandrv2.sys
2012-10-13 23:34 . 2001-08-17 17:28 771581 ----a-w- c:\windows\system32\dllcache\winacisa.sys
2012-10-13 23:34 . 2001-08-18 02:36 53760 ----a-w- c:\windows\system32\dllcache\wiamsmud.dll
2012-10-13 23:34 . 2001-08-18 02:36 87040 ----a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2012-10-13 23:34 . 2001-08-17 17:28 701386 ----a-w- c:\windows\system32\dllcache\wdhaalba.sys
2012-10-13 23:32 . 2004-08-04 03:07 42240 ----a-w- c:\windows\system32\dllcache\viaagp.sys
2012-10-13 23:31 . 2001-08-18 02:36 69632 ----a-w- c:\windows\system32\dllcache\umaxu12.dll
2012-10-13 23:30 . 2001-08-17 18:56 315520 ----a-w- c:\windows\system32\dllcache\trid3d.dll
2012-10-13 23:29 . 2001-08-17 17:52 7040 ----a-w- c:\windows\system32\dllcache\tandqic.sys
2012-10-13 23:28 . 2001-08-18 02:36 53248 ----a-w- c:\windows\system32\dllcache\stlncoin.dll
2012-10-13 23:27 . 2001-08-17 16:51 58368 ----a-w- c:\windows\system32\dllcache\smiminib.sys
2012-10-13 23:26 . 2001-08-17 16:12 94698 ----a-w- c:\windows\system32\dllcache\sk98xwin.sys
2012-10-13 23:25 . 2001-08-17 17:53 6912 ----a-w- c:\windows\system32\dllcache\seaddsmc.sys
2012-10-13 23:24 . 2001-08-18 02:36 62496 ----a-w- c:\windows\system32\dllcache\s3mtrio.dll
2012-10-13 23:23 . 2004-08-04 02:41 13776 ----a-w- c:\windows\system32\dllcache\recagent.sys
2012-10-13 23:22 . 2001-08-18 02:36 5632 ----a-w- c:\windows\system32\dllcache\ptpusb.dll
2012-10-13 23:21 . 2001-08-18 02:36 86016 ----a-w- c:\windows\system32\dllcache\pctspk.exe
2012-10-13 23:20 . 2001-08-17 17:28 54186 ----a-w- c:\windows\system32\dllcache\otcsercb.sys
2012-10-13 23:19 . 2001-08-17 16:11 65278 ----a-w- c:\windows\system32\dllcache\netflx3.sys
2012-10-13 23:18 . 2001-08-17 16:50 103296 ----a-w- c:\windows\system32\dllcache\mtxvideo.sys
2012-10-13 23:17 . 2001-08-17 17:57 16128 ----a-w- c:\windows\system32\dllcache\modemcsa.sys
2012-10-13 23:16 . 2001-08-17 17:28 576746 ----a-w- c:\windows\system32\dllcache\ltmdmntl.sys
2012-10-13 23:15 . 2001-08-17 18:55 6144 ----a-w- c:\windows\system32\dllcache\kbd106.dll
2012-10-13 23:14 . 2001-08-18 02:36 372824 ----a-w- c:\windows\system32\dllcache\iconf32.dll
2012-10-13 23:13 . 2001-08-17 17:28 488383 ----a-w- c:\windows\system32\dllcache\hsf_v124.sys
2012-10-13 23:12 . 2001-08-18 02:36 101376 ----a-w- c:\windows\system32\dllcache\hpgt34.dll
2012-10-13 23:11 . 2001-08-17 16:15 442240 ----a-w- c:\windows\system32\dllcache\fpnpbase.sys
2012-10-13 23:10 . 2001-08-17 17:28 595647 ----a-w- c:\windows\system32\dllcache\es56cvmp.sys
2012-10-13 23:09 . 2001-08-17 16:20 334208 ----a-w- c:\windows\system32\dllcache\ds1wdm.sys
2012-10-13 23:08 . 2001-08-18 02:36 110592 ----a-w- c:\windows\system32\dllcache\dc260usd.dll
2012-10-13 23:07 . 2001-08-17 17:57 45696 ----a-w- c:\windows\system32\dllcache\cirrus.sys
2012-10-13 23:06 . 2001-08-18 02:36 9728 ----a-w- c:\windows\system32\dllcache\brserif.dll
2012-10-13 23:05 . 2004-08-04 02:29 56623 ----a-w- c:\windows\system32\dllcache\ati1btxx.sys
2012-10-13 23:04 . 2001-08-17 18:56 66048 ----a-w- c:\windows\system32\dllcache\s3legacy.dll
2012-10-12 16:17 . 2012-10-23 10:51 -------- d-----w- c:\windows\system32\CatRoot_bak
2012-10-12 10:56 . 2012-10-18 02:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-10-12 10:56 . 2012-09-29 23:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-09 17:19 . 2012-10-09 17:19 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2012-10-08 22:52 . 2012-10-08 22:52 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Mozilla
2012-10-08 22:45 . 2012-10-08 22:45 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Microsoft
2012-10-04 10:52 . 2012-10-04 10:54 -------- d-----w- C:\kleaner.tmp
2012-10-04 10:51 . 2012-10-24 02:00 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2012-10-04 10:42 . 2012-10-04 10:42 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-10-04 00:07 . 2012-10-04 00:07 -------- d-----w- c:\documents and settings\HP_Administrator\Local Settings\Application Data\MFAData
2012-10-04 00:07 . 2012-10-04 00:07 -------- d-----w- c:\documents and settings\HP_Administrator\Local Settings\Application Data\Avg2013
2012-10-03 21:39 . 2012-10-03 21:39 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\SMIGames
2012-10-03 18:54 . 2012-10-03 18:54 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\unikgame
2012-10-03 16:01 . 2012-10-03 16:01 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\AVG2012
2012-10-03 15:59 . 2012-10-03 16:01 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\EnchantedCavern2
2012-10-03 00:43 . 2012-10-03 00:43 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2012-10-03 00:38 . 2012-10-03 15:51 -------- d-----w- c:\program files\PC Tools
2012-10-03 00:35 . 2012-06-22 19:34 203120 ----a-w- c:\windows\system32\drivers\PCTSD.sys
2012-10-03 00:35 . 2012-10-03 15:51 -------- d-----w- c:\program files\Common Files\PC Tools
2012-10-03 00:35 . 2012-10-03 01:02 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Tools
2012-10-03 00:35 . 2012-10-03 00:35 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\TestApp
2012-10-03 00:03 . 2012-10-03 00:03 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\ParetoLogic
2012-10-03 00:02 . 2012-10-03 00:22 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic
2012-10-02 13:29 . 2012-10-02 13:29 -------- d-----w- c:\documents and settings\HP_Administrator\GNUstep
2012-10-02 00:47 . 2012-10-02 00:47 -------- d-----w- c:\program files\PandaPDFConverter
2012-10-02 00:38 . 2012-07-29 17:59 81920 ----a-w- c:\windows\system32\pdfcmon.dll
2012-10-02 00:38 . 2012-05-05 15:54 137000 ----a-w- c:\windows\system32\MSMAPI32.OCX
2012-10-02 00:38 . 2012-05-05 15:54 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL
2012-10-02 00:38 . 2012-10-02 00:43 -------- d-----w- c:\program files\PDFCreator
2012-10-01 21:42 . 2012-10-01 21:43 -------- d-----w- c:\program files\Cursed House
2012-10-01 21:41 . 2012-10-01 21:41 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\Heaven&Hell
2012-10-01 21:35 . 2012-10-01 21:37 -------- d-----w- c:\program files\The Enchanting Islands
2012-10-01 21:25 . 2012-10-01 21:25 -------- d-----w- c:\program files\Christmas Puzzle
2012-10-01 21:16 . 2012-10-01 21:24 -------- d-----w- c:\program files\Heaven and Hell
2012-10-01 21:15 . 2012-10-01 21:15 -------- d-----w- c:\program files\Mystika - Between Light and Shadow
2012-10-01 17:24 . 2012-10-01 17:24 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\rokapublish
2012-10-01 14:25 . 2012-10-01 14:25 -------- d-----w- c:\program files\Safari Quest
2012-10-01 01:34 . 2012-10-01 01:34 -------- d-----w- c:\documents and settings\All Users\Application Data\GameXzone
2012-10-01 01:19 . 2012-10-01 01:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Friends Games
2012-10-01 00:18 . 2012-10-01 00:18 -------- d-----w- c:\documents and settings\HP_Administrator\Application Data\Awem
2012-09-30 19:45 . 2012-10-01 01:26 -------- d-----w- c:\program files\Magic Match The Genie`s Journey
2012-09-30 19:39 . 2012-09-30 19:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Playrix Entertainment
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 00:11 . 2012-04-12 09:47 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 00:11 . 2011-05-28 00:09 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-21 01:53 . 2012-09-21 00:14 4273464 ----a-w- c:\windows\uninst.exe
2012-08-31 02:03 . 2012-03-21 00:44 193552 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-08-26 12:56 . 2012-08-26 12:56 121248 ----a-w- c:\windows\system32\drivers\AnyDVD.sys
2012-07-26 07:21 . 2012-07-26 07:21 237408 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2012-07-20 19:42 . 2012-07-20 19:42 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-10-24 02:00 1792968 ----a-w- c:\program files\AVG Secure Search\13.2.0.3\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\13.2.0.3\AVG Secure Search_toolbar.dll" [2012-10-24 1792968]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-09-30 67584]
"ftutil2"="ftutil2.dll" [2004-06-07 106496]
"AlwaysReady Power Message APP"="ARPWRMSG.EXE" [2005-08-03 77312]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-05-10 7311360]
"nwiz"="nwiz.exe" [2006-05-10 1519616]
"DMAScheduler"="c:\program files\HP DigitalMedia Archive\DMAScheduler.exe" [2006-04-13 90112]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2005-07-23 237568]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2006-02-16 249856]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-12 49152]
"RTHDCPL"="RTHDCPL.EXE" [2011-04-14 20053608]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-05-10 86016]
"PMBVolumeWatcher"="c:\program files\Sony\PMB\PMBVolumeWatcher.exe" [2010-03-24 599328]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2011-11-04 273528]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"UpdatePDRShortCut"="c:\program files\CyberLink\PowerDirector10\MUITransfer\MUIStartMenu.exe" [2010-09-17 222504]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-07-31 2596984]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-28 59280]
"ROC_roc_ssl_v12"="c:\program files\AVG Secure Search\ROC_roc_ssl_v12.exe" [2012-10-24 1020512]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-10-24 997320]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 947176]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2011-07-27 434080]
.
c:\documents and settings\James'\Start Menu\Programs\Startup\
Pin.lnk - [N/A]
PinMcLnk.lnk - [N/A]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - [N/A]
.
c:\documents and settings\Default User\Start Menu\Programs\Startup\
Pin.lnk - [N/A]
PinMcLnk.lnk - [N/A]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\DISC\\DISCover.exe"=
"c:\\Program Files\\DISC\\DiscStreamHub.exe"=
"c:\\Program Files\\DISC\\myFTP.exe"=
"c:\\Program Files\\Updates from HP\\9972322\\Program\\Updates from HP.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
.
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [7/26/2012 3:21 AM 237408]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [10/4/2012 6:51 AM 26984]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2/14/2012 4:53 AM 193288]
R2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [10/23/2012 10:01 PM 711112]
R3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [5/27/2011 8:36 PM 23608]
S1 hechttwb;hechttwb; [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [8/13/2012 3:24 AM 5167736]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [9/5/2011 10:30 AM 136176]
S2 vToolbarUpdater13.1.0;vToolbarUpdater13.1.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\13.1.0\ToolbarUpdater.exe --> c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\13.1.0\ToolbarUpdater.exe [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [4/12/2012 5:47 AM 250808]
S3 GSService;GSService;c:\windows\system32\GSService.exe [3/31/2011 4:02 PM 745472]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [9/5/2011 10:30 AM 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [7/20/2012 3:43 PM 113120]
S3 SMServer;SMServer;c:\windows\system32\snmvtsvc.exe [5/27/2011 8:36 PM 243712]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [5/13/2011 3:21 AM 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [5/13/2011 3:21 AM 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [5/13/2011 3:21 AM 136808]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [5/13/2011 3:21 AM 114280]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [5/6/2008 4:06 PM 11520]
.
Contents of the 'Scheduled Tasks' folder
.
2012-10-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-12 00:11]
.
2012-10-23 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 21:57]
.
2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-09-05 14:30]
.
2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-09-05 14:30]
.
2012-10-24 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-3638874618-4158258702-3043178669-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 17:40]
.
2012-10-18 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3638874618-4158258702-3043178669-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-09-27 17:40]
.
2012-10-23 c:\windows\Tasks\ReclaimerUpdateFiles_HP_Administrator.job
- c:\documents and settings\HP_Administrator\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-25 00:06]
.
2012-10-23 c:\windows\Tasks\ReclaimerUpdateXML_HP_Administrator.job
- c:\documents and settings\HP_Administrator\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-25 00:06]
.
2012-10-24 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_HP_Administrator.job
- c:\documents and settings\HP_Administrator\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-25 00:06]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=64&bd=PAVILION&pf=desktop
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com
Trusted Zone: trymedia.com
TCP: DhcpNameServer = 192.168.0.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll
.
- - - - ORPHANS REMOVED - - - -
.
Notify-dimsntfy - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-23 22:30
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(2344)
c:\windows\system32\WININET.dll
c:\windows\system32\nview.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\nvwddi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\arservice.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\eHome\ehRecvr.exe
c:\windows\eHome\ehSched.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\windows\system32\HPZipm12.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\windows\ARPWRMSG.EXE
c:\windows\system32\rundll32.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\RUNDLL32.EXE
c:\windows\system32\dllhost.exe
c:\windows\system32\wscntfy.exe
c:\windows\eHome\ehmsas.exe
.
**************************************************************************
.
Completion time: 2012-10-23 22:34:49 - machine was rebooted
ComboFix-quarantined-files.txt 2012-10-24 02:34
.
Pre-Run: 156,802,195,456 bytes free
Post-Run: 157,404,160,000 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 2ABAB615B4B4BE2352423821491A44C7

#12 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 23 October 2012 - 09:47 PM

19:49:17.0406 1988 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
19:49:17.0703 1988 ============================================================
19:49:17.0703 1988 Current date / time: 2012/10/22 19:49:17.0703
19:49:17.0703 1988 SystemInfo:
19:49:17.0703 1988
19:49:17.0703 1988 OS Version: 5.1.2600 ServicePack: 2.0
19:49:17.0703 1988 Product type: Workstation
19:49:17.0703 1988 ComputerName: FAMILY
19:49:17.0703 1988 UserName: HP_Administrator
19:49:17.0703 1988 Windows directory: C:\WINDOWS
19:49:17.0703 1988 System windows directory: C:\WINDOWS
19:49:17.0703 1988 Processor architecture: Intel x86
19:49:17.0703 1988 Number of processors: 2
19:49:17.0703 1988 Page size: 0x1000
19:49:17.0703 1988 Boot type: Normal boot
19:49:17.0703 1988 ============================================================
19:49:17.0937 1988 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:49:17.0953 1988 ============================================================
19:49:17.0953 1988 \Device\Harddisk0\DR0:
19:49:17.0953 1988 MBR partitions:
19:49:17.0953 1988 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2427B5BF
19:49:17.0953 1988 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x2427B5FE, BlocksNum 0x11B20C3
19:49:17.0953 1988 ============================================================
19:49:17.0984 1988 C: <-> \Device\Harddisk0\DR0\Partition1
19:49:18.0015 1988 D: <-> \Device\Harddisk0\DR0\Partition2
19:49:18.0015 1988 ============================================================
19:49:18.0015 1988 Initialize success
19:49:18.0015 1988 ============================================================
19:49:20.0812 3964 ============================================================
19:49:20.0812 3964 Scan started
19:49:20.0812 3964 Mode: Manual;
19:49:20.0812 3964 ============================================================
19:49:21.0187 3964 ================ Scan system memory ========================
19:49:21.0187 3964 System memory - ok
19:49:21.0187 3964 ================ Scan services =============================
19:49:21.0328 3964 Abiosdsk - ok
19:49:21.0343 3964 abp480n5 - ok
19:49:21.0375 3964 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:49:21.0375 3964 ACPI - ok
19:49:21.0406 3964 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:49:21.0406 3964 ACPIEC - ok
19:49:21.0484 3964 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:49:21.0484 3964 AdobeFlashPlayerUpdateSvc - ok
19:49:21.0484 3964 adpu160m - ok
19:49:21.0515 3964 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
19:49:21.0515 3964 aec - ok
19:49:21.0531 3964 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:49:21.0531 3964 AFD - ok
19:49:21.0593 3964 [ 994A42D273C35B43EE9D1E8A5D8BC639 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
19:49:21.0609 3964 AgereSoftModem - ok
19:49:21.0609 3964 Aha154x - ok
19:49:21.0625 3964 aic78u2 - ok
19:49:21.0625 3964 aic78xx - ok
19:49:21.0656 3964 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:49:21.0656 3964 Alerter - ok
19:49:21.0671 3964 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
19:49:21.0671 3964 ALG - ok
19:49:21.0687 3964 AliIde - ok
19:49:21.0703 3964 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
19:49:21.0703 3964 AmdK8 - ok
19:49:21.0703 3964 amsint - ok
19:49:21.0750 3964 [ 8D3A55F7B7BE6B374479E5195F477226 ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
19:49:21.0750 3964 AnyDVD - ok
19:49:21.0906 3964 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:49:21.0906 3964 Apple Mobile Device - ok
19:49:21.0937 3964 [ 9C3C12975C97119412802B181FBEEFFE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:49:21.0937 3964 AppMgmt - ok
19:49:21.0953 3964 [ 00523019E3579C8F8A94457FE25F0F24 ] aracpi C:\WINDOWS\system32\DRIVERS\aracpi.sys
19:49:21.0953 3964 aracpi - ok
19:49:21.0968 3964 [ 9FEDAA46EB1A572AC4D9EE6B5F123CF2 ] arhidfltr C:\WINDOWS\system32\DRIVERS\arhidfltr.sys
19:49:21.0968 3964 arhidfltr - ok
19:49:21.0984 3964 [ 82969576093CD983DD559F5A86F382B4 ] arkbcfltr C:\WINDOWS\system32\DRIVERS\arkbcfltr.sys
19:49:21.0984 3964 arkbcfltr - ok
19:49:21.0984 3964 [ 9B21791D8A78FAECE999FADBEBDA6C22 ] armoucfltr C:\WINDOWS\system32\DRIVERS\armoucfltr.sys
19:49:21.0984 3964 armoucfltr - ok
19:49:22.0031 3964 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:49:22.0031 3964 Arp1394 - ok
19:49:22.0046 3964 [ 7A2DA7C7B0C524EF26A79F17A5C69FDE ] ARPolicy C:\WINDOWS\system32\DRIVERS\arpolicy.sys
19:49:22.0046 3964 ARPolicy - ok
19:49:22.0062 3964 [ 9A0D9B2E263BEDE80FB79DDBAD240EC1 ] ARSVC C:\WINDOWS\arservice.exe
19:49:22.0062 3964 ARSVC - ok
19:49:22.0078 3964 asc - ok
19:49:22.0078 3964 asc3350p - ok
19:49:22.0093 3964 asc3550 - ok
19:49:22.0203 3964 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:49:22.0203 3964 aspnet_state - ok
19:49:22.0234 3964 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:49:22.0234 3964 AsyncMac - ok
19:49:22.0250 3964 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:49:22.0250 3964 atapi - ok
19:49:22.0265 3964 Atdisk - ok
19:49:22.0296 3964 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:49:22.0296 3964 Atmarpc - ok
19:49:22.0328 3964 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:49:22.0328 3964 AudioSrv - ok
19:49:22.0328 3964 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:49:22.0328 3964 audstub - ok
19:49:22.0890 3964 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
19:49:22.0921 3964 AVGIDSAgent - ok
19:49:22.0968 3964 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
19:49:22.0968 3964 AVGIDSHX - ok
19:49:23.0015 3964 [ A4B2D9B833A00FCDA09027641400AB54 ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
19:49:23.0015 3964 avgtp - ok
19:49:23.0062 3964 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
19:49:23.0062 3964 avgwd - ok
19:49:23.0078 3964 [ 7270D070173B20AC9487EA16BB08B45F ] bb-run C:\WINDOWS\system32\DRIVERS\bb-run.sys
19:49:23.0078 3964 bb-run - ok
19:49:23.0109 3964 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:49:23.0109 3964 Beep - ok
19:49:23.0171 3964 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\system32\qmgr.dll
19:49:23.0171 3964 BITS - ok
19:49:23.0218 3964 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:49:23.0218 3964 Bonjour Service - ok
19:49:23.0265 3964 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
19:49:23.0265 3964 Browser - ok
19:49:23.0281 3964 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:49:23.0281 3964 cbidf2k - ok
19:49:23.0296 3964 cd20xrnt - ok
19:49:23.0312 3964 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:49:23.0312 3964 Cdaudio - ok
19:49:23.0359 3964 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:49:23.0359 3964 Cdfs - ok
19:49:23.0375 3964 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:49:23.0375 3964 Cdrom - ok
19:49:23.0390 3964 Changer - ok
19:49:23.0421 3964 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:49:23.0421 3964 CiSvc - ok
19:49:23.0453 3964 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:49:23.0453 3964 ClipSrv - ok
19:49:23.0515 3964 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:49:23.0515 3964 clr_optimization_v2.0.50727_32 - ok
19:49:23.0531 3964 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:49:23.0531 3964 clr_optimization_v4.0.30319_32 - ok
19:49:23.0546 3964 CmdIde - ok
19:49:23.0546 3964 COMSysApp - ok
19:49:23.0562 3964 Cpqarray - ok
19:49:23.0609 3964 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:49:23.0609 3964 CryptSvc - ok
19:49:23.0625 3964 dac2w2k - ok
19:49:23.0625 3964 dac960nt - ok
19:49:23.0671 3964 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:49:23.0671 3964 DcomLaunch - ok
19:49:23.0718 3964 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:49:23.0718 3964 Dhcp - ok
19:49:23.0765 3964 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:49:23.0765 3964 Disk - ok
19:49:23.0765 3964 dmadmin - ok
19:49:23.0812 3964 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:49:23.0828 3964 dmboot - ok
19:49:23.0828 3964 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:49:23.0828 3964 dmio - ok
19:49:23.0843 3964 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:49:23.0843 3964 dmload - ok
19:49:23.0890 3964 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
19:49:23.0890 3964 dmserver - ok
19:49:23.0921 3964 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:49:23.0921 3964 DMusic - ok
19:49:23.0953 3964 [ AAC8FFBFD61E784FA3BAC851D4A0BD5F ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:49:23.0953 3964 Dnscache - ok
19:49:23.0953 3964 dpti2o - ok
19:49:23.0968 3964 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:49:23.0968 3964 drmkaud - ok
19:49:24.0046 3964 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
19:49:24.0046 3964 ehRecvr - ok
19:49:24.0093 3964 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
19:49:24.0093 3964 ehSched - ok
19:49:24.0140 3964 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
19:49:24.0140 3964 ElbyCDIO - ok
19:49:24.0171 3964 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:49:24.0171 3964 ERSvc - ok
19:49:24.0218 3964 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
19:49:24.0218 3964 Eventlog - ok
19:49:24.0234 3964 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\system32\es.dll
19:49:24.0234 3964 EventSystem - ok
19:49:24.0234 3964 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:49:24.0234 3964 Fastfat - ok
19:49:24.0265 3964 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:49:24.0281 3964 FastUserSwitchingCompatibility - ok
19:49:24.0312 3964 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
19:49:24.0312 3964 Fax - ok
19:49:24.0343 3964 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
19:49:24.0343 3964 Fdc - ok
19:49:24.0390 3964 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:49:24.0390 3964 Fips - ok
19:49:24.0390 3964 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
19:49:24.0390 3964 Flpydisk - ok
19:49:24.0406 3964 [ 3D234FB6D6EE875EB009864A299BEA29 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:49:24.0406 3964 FltMgr - ok
19:49:24.0484 3964 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:49:24.0484 3964 FontCache3.0.0.0 - ok
19:49:24.0500 3964 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:49:24.0500 3964 Fs_Rec - ok
19:49:24.0515 3964 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:49:24.0515 3964 Ftdisk - ok
19:49:24.0515 3964 [ 22399D3CE5840C6082844679CCA5D2FC ] ftsata2 C:\WINDOWS\system32\DRIVERS\ftsata2.sys
19:49:24.0515 3964 ftsata2 - ok
19:49:24.0562 3964 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:49:24.0562 3964 GEARAspiWDM - ok
19:49:24.0609 3964 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:49:24.0609 3964 Gpc - ok
19:49:24.0656 3964 [ 952BDB84AC2BC601FD1B954BAEBA77F6 ] GSService C:\WINDOWS\system32\GSService.exe
19:49:24.0656 3964 GSService - ok
19:49:24.0718 3964 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:49:24.0718 3964 gupdate - ok
19:49:24.0734 3964 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:49:24.0734 3964 gupdatem - ok
19:49:24.0750 3964 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:49:24.0750 3964 HDAudBus - ok
19:49:24.0750 3964 hechttwb - ok
19:49:24.0859 3964 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:49:24.0859 3964 helpsvc - ok
19:49:24.0890 3964 [ 9376E6893E52B368ABC6255BF54F0B28 ] HidServ C:\WINDOWS\System32\hidserv.dll
19:49:24.0890 3964 HidServ - ok
19:49:24.0906 3964 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:49:24.0906 3964 HidUsb - ok
19:49:24.0906 3964 hpn - ok
19:49:24.0937 3964 [ 9F1D80908658EB7F1BF70809E0B51470 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:49:24.0937 3964 HPZid412 - ok
19:49:24.0937 3964 [ F7E3E9D50F9CD3DE28085A8FDAA0A1C3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:49:24.0937 3964 HPZipr12 - ok
19:49:24.0953 3964 [ CF1B7951B4EC8D13F3C93B74BB2B461B ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:49:24.0968 3964 HPZius12 - ok
19:49:24.0984 3964 [ 1F5C64B0C6B2E2F48735A77AE714CCB8 ] HSXHWBS2 C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
19:49:24.0984 3964 HSXHWBS2 - ok
19:49:25.0015 3964 [ A7F8C9228898A1E871D2AE7082F50AC3 ] HSX_DP C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
19:49:25.0031 3964 HSX_DP - ok
19:49:25.0046 3964 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:49:25.0046 3964 HTTP - ok
19:49:25.0078 3964 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:49:25.0078 3964 HTTPFilter - ok
19:49:25.0093 3964 i2omgmt - ok
19:49:25.0093 3964 i2omp - ok
19:49:25.0109 3964 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:49:25.0109 3964 i8042prt - ok
19:49:25.0156 3964 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
19:49:25.0156 3964 IDriverT - ok
19:49:25.0234 3964 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:49:25.0234 3964 idsvc - ok
19:49:25.0265 3964 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:49:25.0265 3964 Imapi - ok
19:49:25.0312 3964 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:49:25.0312 3964 ImapiService - ok
19:49:25.0312 3964 ini910u - ok
19:49:25.0484 3964 [ 4716F7EE8FB7FD02596ECE1EC70AFF53 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:49:25.0531 3964 IntcAzAudAddService - ok
19:49:25.0562 3964 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:49:25.0562 3964 IntelIde - ok
19:49:25.0562 3964 intelppm - ok
19:49:25.0593 3964 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:49:25.0593 3964 Ip6Fw - ok
19:49:25.0625 3964 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:49:25.0625 3964 IpFilterDriver - ok
19:49:25.0656 3964 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:49:25.0656 3964 IpInIp - ok
19:49:25.0656 3964 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:49:25.0656 3964 IpNat - ok
19:49:25.0718 3964 [ B84A28B3984185EDA8867541AF14CDDB ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:49:25.0718 3964 iPod Service - ok
19:49:25.0718 3964 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:49:25.0734 3964 IPSec - ok
19:49:25.0765 3964 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:49:25.0765 3964 IRENUM - ok
19:49:25.0781 3964 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:49:25.0781 3964 isapnp - ok
19:49:25.0859 3964 [ 381B25DC8E958D905B33130D500BBF29 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
19:49:25.0875 3964 JavaQuickStarterService - ok
19:49:25.0875 3964 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:49:25.0875 3964 Kbdclass - ok
19:49:25.0890 3964 [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:49:25.0890 3964 kbdhid - ok
19:49:25.0906 3964 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:49:25.0906 3964 kmixer - ok
19:49:25.0937 3964 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:49:25.0937 3964 KSecDD - ok
19:49:25.0968 3964 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:49:25.0968 3964 lanmanserver - ok
19:49:25.0984 3964 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:49:26.0000 3964 lanmanworkstation - ok
19:49:26.0000 3964 lbrtfdc - ok
19:49:26.0078 3964 [ 5D4B38A8D8525356798F5E560C3A3090 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:49:26.0078 3964 LightScribeService - ok
19:49:26.0125 3964 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:49:26.0125 3964 LmHosts - ok
19:49:26.0156 3964 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
19:49:26.0156 3964 McrdSvc - ok
19:49:26.0203 3964 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
19:49:26.0203 3964 mdmxsdk - ok
19:49:26.0234 3964 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:49:26.0234 3964 Messenger - ok
19:49:26.0265 3964 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
19:49:26.0265 3964 MHN - ok
19:49:26.0281 3964 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
19:49:26.0281 3964 MHNDRV - ok
19:49:26.0296 3964 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:49:26.0296 3964 mnmdd - ok
19:49:26.0328 3964 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:49:26.0343 3964 mnmsrvc - ok
19:49:26.0375 3964 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:49:26.0375 3964 Modem - ok
19:49:26.0406 3964 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:49:26.0406 3964 Mouclass - ok
19:49:26.0421 3964 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:49:26.0421 3964 MountMgr - ok
19:49:26.0468 3964 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:49:26.0468 3964 MozillaMaintenance - ok
19:49:26.0500 3964 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
19:49:26.0500 3964 MpFilter - ok
19:49:26.0500 3964 mraid35x - ok
19:49:26.0546 3964 [ 29414447EB5BDE2F8397DC965DBB3156 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:49:26.0546 3964 MRxDAV - ok
19:49:26.0578 3964 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:49:26.0578 3964 MRxSmb - ok
19:49:26.0593 3964 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:49:26.0593 3964 Msfs - ok
19:49:26.0609 3964 MSIServer - ok
19:49:26.0625 3964 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:49:26.0625 3964 MSKSSRV - ok
19:49:26.0687 3964 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:49:26.0687 3964 MsMpSvc - ok
19:49:26.0718 3964 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:49:26.0718 3964 MSPCLOCK - ok
19:49:26.0734 3964 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:49:26.0734 3964 MSPQM - ok
19:49:26.0750 3964 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:49:26.0750 3964 mssmbios - ok
19:49:26.0765 3964 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:49:26.0765 3964 Mup - ok
19:49:26.0859 3964 [ 48DAF84FDE43FF61C6877131A79230AB ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
19:49:26.0859 3964 NBService - ok
19:49:26.0875 3964 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:49:26.0875 3964 NDIS - ok
19:49:26.0921 3964 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:49:26.0921 3964 NdisTapi - ok
19:49:26.0921 3964 [ EEFA1CE63805D2145978621BE5C6D955 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:49:26.0921 3964 Ndisuio - ok
19:49:26.0937 3964 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:49:26.0937 3964 NdisWan - ok
19:49:26.0937 3964 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:49:26.0953 3964 NDProxy - ok
19:49:26.0953 3964 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:49:26.0953 3964 NetBIOS - ok
19:49:26.0968 3964 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:49:26.0968 3964 NetBT - ok
19:49:27.0000 3964 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
19:49:27.0000 3964 NetDDE - ok
19:49:27.0015 3964 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:49:27.0015 3964 NetDDEdsdm - ok
19:49:27.0046 3964 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:49:27.0046 3964 Netlogon - ok
19:49:27.0062 3964 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
19:49:27.0078 3964 Netman - ok
19:49:27.0093 3964 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:49:27.0093 3964 NetTcpPortSharing - ok
19:49:27.0109 3964 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:49:27.0109 3964 NIC1394 - ok
19:49:27.0156 3964 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
19:49:27.0156 3964 Nla - ok
19:49:27.0156 3964 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:49:27.0156 3964 Npfs - ok
19:49:27.0171 3964 [ 19A811EF5F1ED5C926A028CE107FF1AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:49:27.0187 3964 Ntfs - ok
19:49:27.0187 3964 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
19:49:27.0187 3964 NtLmSsp - ok
19:49:27.0218 3964 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:49:27.0234 3964 NtmsSvc - ok
19:49:27.0265 3964 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
19:49:27.0265 3964 Null - ok
19:49:27.0359 3964 [ 642A87877F83313EB5302749CD479024 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:49:27.0375 3964 nv - ok
19:49:27.0421 3964 [ 22EEDB34C4D7613A25B10C347C6C4C21 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
19:49:27.0421 3964 NVENETFD - ok
19:49:27.0437 3964 [ 5E3F6AD5CAD0F12D3CCCD06FD964087A ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
19:49:27.0437 3964 nvnetbus - ok
19:49:27.0453 3964 [ B0903C021BFCD6055C053A569EF98AEF ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
19:49:27.0453 3964 NVSvc - ok
19:49:27.0484 3964 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:49:27.0484 3964 NwlnkFlt - ok
19:49:27.0500 3964 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:49:27.0500 3964 NwlnkFwd - ok
19:49:27.0609 3964 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:49:27.0609 3964 odserv - ok
19:49:27.0656 3964 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:49:27.0656 3964 ohci1394 - ok
19:49:27.0703 3964 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:49:27.0703 3964 ose - ok
19:49:27.0718 3964 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:49:27.0718 3964 Parport - ok
19:49:27.0734 3964 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:49:27.0734 3964 PartMgr - ok
19:49:27.0750 3964 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:49:27.0750 3964 ParVdm - ok
19:49:27.0750 3964 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:49:27.0750 3964 PCI - ok
19:49:27.0765 3964 PCIDump - ok
19:49:27.0765 3964 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:49:27.0765 3964 PCIIde - ok
19:49:27.0781 3964 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
19:49:27.0781 3964 Pcmcia - ok
19:49:27.0796 3964 PDCOMP - ok
19:49:27.0796 3964 PDFRAME - ok
19:49:27.0812 3964 PDRELI - ok
19:49:27.0812 3964 PDRFRAME - ok
19:49:27.0828 3964 perc2 - ok
19:49:27.0828 3964 perc2hib - ok
19:49:27.0875 3964 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
19:49:27.0875 3964 PlugPlay - ok
19:49:27.0921 3964 [ 9D84376931440F3679BEEF2A414FA493 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
19:49:27.0921 3964 Pml Driver HPZ12 - ok
19:49:27.0937 3964 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:49:27.0937 3964 PolicyAgent - ok
19:49:27.0968 3964 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:49:27.0984 3964 PptpMiniport - ok
19:49:28.0031 3964 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
19:49:28.0031 3964 Processor - ok
19:49:28.0031 3964 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:49:28.0031 3964 ProtectedStorage - ok
19:49:28.0062 3964 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
19:49:28.0062 3964 Ps2 - ok
19:49:28.0078 3964 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:49:28.0078 3964 PSched - ok
19:49:28.0078 3964 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:49:28.0078 3964 Ptilink - ok
19:49:28.0093 3964 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:49:28.0093 3964 PxHelp20 - ok
19:49:28.0109 3964 ql1080 - ok
19:49:28.0109 3964 Ql10wnt - ok
19:49:28.0125 3964 ql12160 - ok
19:49:28.0125 3964 ql1240 - ok
19:49:28.0140 3964 ql1280 - ok
19:49:28.0156 3964 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:49:28.0156 3964 RasAcd - ok
19:49:28.0203 3964 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:49:28.0203 3964 RasAuto - ok
19:49:28.0218 3964 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:49:28.0218 3964 Rasl2tp - ok
19:49:28.0250 3964 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
19:49:28.0265 3964 RasMan - ok
19:49:28.0265 3964 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:49:28.0265 3964 RasPppoe - ok
19:49:28.0265 3964 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:49:28.0281 3964 Raspti - ok
19:49:28.0296 3964 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:49:28.0296 3964 Rdbss - ok
19:49:28.0312 3964 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:49:28.0312 3964 RDPCDD - ok
19:49:28.0328 3964 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:49:28.0328 3964 rdpdr - ok
19:49:28.0359 3964 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:49:28.0359 3964 RDPWD - ok
19:49:28.0375 3964 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:49:28.0375 3964 RDSessMgr - ok
19:49:28.0406 3964 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:49:28.0406 3964 redbook - ok
19:49:28.0437 3964 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:49:28.0437 3964 RemoteAccess - ok
19:49:28.0453 3964 [ 3151427DB7D87107D1C5BE58FAC53960 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:49:28.0453 3964 RemoteRegistry - ok
19:49:28.0515 3964 [ 7728B6AEDC83BC0DEFD0A53371D4613B ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
19:49:28.0531 3964 RichVideo - ok
19:49:28.0531 3964 RimUsb - ok
19:49:28.0578 3964 [ D9B34325EE5DF78B8F28A3DE9F577C7D ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
19:49:28.0578 3964 RimVSerPort - ok
19:49:28.0625 3964 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
19:49:28.0625 3964 ROOTMODEM - ok
19:49:28.0656 3964 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\system32\locator.exe
19:49:28.0656 3964 RpcLocator - ok
19:49:28.0687 3964 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
19:49:28.0703 3964 RpcSs - ok
19:49:28.0734 3964 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
19:49:28.0734 3964 RSVP - ok
19:49:28.0750 3964 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
19:49:28.0750 3964 rtl8139 - ok
19:49:28.0781 3964 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
19:49:28.0781 3964 SamSs - ok
19:49:28.0812 3964 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:49:28.0812 3964 SCardSvr - ok
19:49:28.0859 3964 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:49:28.0859 3964 Schedule - ok
19:49:28.0906 3964 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:49:28.0906 3964 Secdrv - ok
19:49:28.0906 3964 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
19:49:28.0921 3964 seclogon - ok
19:49:28.0937 3964 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
19:49:28.0937 3964 SENS - ok
19:49:28.0984 3964 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
19:49:28.0984 3964 Serial - ok
19:49:29.0031 3964 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
19:49:29.0031 3964 Sfloppy - ok
19:49:29.0062 3964 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
19:49:29.0062 3964 SharedAccess - ok
19:49:29.0078 3964 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:49:29.0078 3964 ShellHWDetection - ok
19:49:29.0093 3964 Simbad - ok
19:49:29.0125 3964 [ 1339E2824D1567A18604AD0157D82E7B ] SMServer C:\WINDOWS\system32\snmvtsvc.exe
19:49:29.0125 3964 SMServer - ok
19:49:29.0171 3964 [ 7C2D2B593B837FD59C17EF649CDA1EA6 ] SndTAudio C:\WINDOWS\system32\drivers\SndTAudio.sys
19:49:29.0171 3964 SndTAudio - ok
19:49:29.0171 3964 Sparrow - ok
19:49:29.0187 3964 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:49:29.0187 3964 splitter - ok
19:49:29.0218 3964 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:49:29.0218 3964 Spooler - ok
19:49:29.0234 3964 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:49:29.0234 3964 sr - ok
19:49:29.0265 3964 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\system32\srsvc.dll
19:49:29.0265 3964 srservice - ok
19:49:29.0281 3964 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:49:29.0281 3964 Srv - ok
19:49:29.0328 3964 [ 64E44ACD8C238FCBBB78F0BA4BDC4B05 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
19:49:29.0328 3964 ssadbus - ok
19:49:29.0359 3964 [ BB2C84A15C765DA89FD832B0E73F26CE ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
19:49:29.0359 3964 ssadmdfl - ok
19:49:29.0390 3964 [ 6D0D132DDC6F43EDA00DCED6D8B1CA31 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
19:49:29.0390 3964 ssadmdm - ok
19:49:29.0437 3964 [ 1A5A397BC459F346AB56492B61EF79F6 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
19:49:29.0437 3964 ssadserd - ok
19:49:29.0453 3964 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:49:29.0453 3964 SSDPSRV - ok
19:49:29.0500 3964 [ B6763F8534AC547CF1AF98AFDFF2EDC8 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:49:29.0500 3964 stisvc - ok
19:49:29.0562 3964 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:49:29.0562 3964 swenum - ok
19:49:29.0562 3964 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:49:29.0562 3964 swmidi - ok
19:49:29.0578 3964 SwPrv - ok
19:49:29.0578 3964 symc810 - ok
19:49:29.0593 3964 symc8xx - ok
19:49:29.0593 3964 sym_hi - ok
19:49:29.0609 3964 sym_u3 - ok
19:49:29.0609 3964 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:49:29.0609 3964 sysaudio - ok
19:49:29.0640 3964 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:49:29.0640 3964 SysmonLog - ok
19:49:29.0671 3964 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:49:29.0671 3964 TapiSrv - ok
19:49:29.0703 3964 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:49:29.0703 3964 Tcpip - ok
19:49:29.0734 3964 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:49:29.0734 3964 TDPIPE - ok
19:49:29.0750 3964 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:49:29.0750 3964 TDTCP - ok
19:49:29.0781 3964 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:49:29.0781 3964 TermDD - ok
19:49:29.0796 3964 [ C29A5286E64D97385178452D5F307B98 ] TermService C:\WINDOWS\System32\termsrv.dll
19:49:29.0796 3964 TermService - ok
19:49:29.0812 3964 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] Themes C:\WINDOWS\System32\shsvcs.dll
19:49:29.0812 3964 Themes - ok
19:49:29.0859 3964 [ 37DB0A7D097310E8B4DE803FC3119C78 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:49:29.0859 3964 TlntSvr - ok
19:49:29.0859 3964 TosIde - ok
19:49:29.0875 3964 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:49:29.0875 3964 TrkWks - ok
19:49:29.0906 3964 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:49:29.0906 3964 Udfs - ok
19:49:29.0921 3964 ultra - ok
19:49:29.0937 3964 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:49:29.0937 3964 Update - ok
19:49:29.0937 3964 [ 8827911A8C37E40C027CBFC88E69D967 ] uploadmgr C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:49:29.0953 3964 uploadmgr - ok
19:49:29.0984 3964 [ ACA5D98663D879C6BAAFCEA7E2F1B710 ] upnphost C:\WINDOWS\System32\upnphost.dll
19:49:29.0984 3964 upnphost - ok
19:49:30.0000 3964 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
19:49:30.0000 3964 UPS - ok
19:49:30.0046 3964 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
19:49:30.0046 3964 USBAAPL - ok
19:49:30.0078 3964 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:49:30.0078 3964 usbccgp - ok
19:49:30.0093 3964 [ 7481D843E672B51039B7E8A161B746B8 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:49:30.0093 3964 usbehci - ok
19:49:30.0093 3964 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:49:30.0109 3964 usbhub - ok
19:49:30.0109 3964 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
19:49:30.0125 3964 usbohci - ok
19:49:30.0125 3964 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:49:30.0125 3964 usbprint - ok
19:49:30.0125 3964 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:49:30.0140 3964 usbscan - ok
19:49:30.0140 3964 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:49:30.0140 3964 usbstor - ok
19:49:30.0171 3964 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:49:30.0171 3964 usbuhci - ok
19:49:30.0187 3964 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:49:30.0187 3964 VgaSave - ok
19:49:30.0203 3964 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
19:49:30.0203 3964 ViaIde - ok
19:49:30.0218 3964 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:49:30.0218 3964 VolSnap - ok
19:49:30.0234 3964 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
19:49:30.0250 3964 VSS - ok
19:49:30.0250 3964 vToolbarUpdater13.1.0 - ok
19:49:30.0281 3964 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\system32\w32time.dll
19:49:30.0296 3964 W32Time - ok
19:49:30.0312 3964 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:49:30.0312 3964 Wanarp - ok
19:49:30.0343 3964 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\WINDOWS\system32\DRIVERS\wdcsam.sys
19:49:30.0343 3964 WDC_SAM - ok
19:49:30.0359 3964 WDICA - ok
19:49:30.0375 3964 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:49:30.0390 3964 wdmaud - ok
19:49:30.0421 3964 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
19:49:30.0421 3964 WebClient - ok
19:49:30.0453 3964 [ 11EC1AFCEB5C917CE73D3C301FF4291E ] winachsx C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
19:49:30.0468 3964 winachsx - ok
19:49:30.0546 3964 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:49:30.0546 3964 winmgmt - ok
19:49:30.0609 3964 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
19:49:30.0609 3964 WinRM - ok
19:49:30.0640 3964 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
19:49:30.0640 3964 WmdmPmSN - ok
19:49:30.0687 3964 [ 1081C185AED0660B2B5F173C3E023B23 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:49:30.0703 3964 Wmi - ok
19:49:30.0734 3964 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:49:30.0734 3964 WmiApSrv - ok
19:49:30.0828 3964 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
19:49:30.0828 3964 WMPNetworkSvc - ok
19:49:30.0843 3964 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:49:30.0843 3964 WpdUsb - ok
19:49:30.0921 3964 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:49:30.0937 3964 WPFFontCache_v0400 - ok
19:49:30.0968 3964 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
19:49:30.0984 3964 wscsvc - ok
19:49:30.0984 3964 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:49:31.0000 3964 wuauserv - ok
19:49:31.0031 3964 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:49:31.0046 3964 WudfPf - ok
19:49:31.0062 3964 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:49:31.0062 3964 WudfRd - ok
19:49:31.0109 3964 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
19:49:31.0109 3964 WudfSvc - ok
19:49:31.0125 3964 [ 247520EDED53A08AE89EA4FAE04F54D8 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:49:31.0140 3964 WZCSVC - ok
19:49:31.0156 3964 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:49:31.0156 3964 xmlprov - ok
19:49:31.0171 3964 ================ Scan global ===============================
19:49:31.0203 3964 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
19:49:31.0234 3964 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
19:49:31.0250 3964 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
19:49:31.0265 3964 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
19:49:31.0265 3964 [Global] - ok
19:49:31.0265 3964 ================ Scan MBR ==================================
19:49:31.0296 3964 [ D11C727E03BB7318DCDA069B06E652F0 ] \Device\Harddisk0\DR0
19:49:31.0453 3964 \Device\Harddisk0\DR0 - ok
19:49:31.0453 3964 ================ Scan VBR ==================================
19:49:31.0453 3964 [ ED1F4F7151C3D52BA7E3B1F67FE025C8 ] \Device\Harddisk0\DR0\Partition1
19:49:31.0453 3964 \Device\Harddisk0\DR0\Partition1 - ok
19:49:31.0453 3964 [ AD0C584998E8AC79656877A2AF9400AC ] \Device\Harddisk0\DR0\Partition2
19:49:31.0453 3964 \Device\Harddisk0\DR0\Partition2 - ok
19:49:31.0468 3964 ============================================================
19:49:31.0468 3964 Scan finished
19:49:31.0468 3964 ============================================================
19:49:31.0468 4000 Detected object count: 0
19:49:31.0468 4000 Actual detected object count: 0
20:48:23.0984 4068 ============================================================
20:48:23.0984 4068 Scan started
20:48:23.0984 4068 Mode: Manual;
20:48:23.0984 4068 ============================================================
20:48:24.0562 4068 ================ Scan system memory ========================
20:48:24.0562 4068 System memory - ok
20:48:24.0562 4068 ================ Scan services =============================
20:48:24.0703 4068 Abiosdsk - ok
20:48:24.0703 4068 abp480n5 - ok
20:48:24.0734 4068 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:48:24.0734 4068 ACPI - ok
20:48:24.0765 4068 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
20:48:24.0765 4068 ACPIEC - ok
20:48:24.0828 4068 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:48:24.0828 4068 AdobeFlashPlayerUpdateSvc - ok
20:48:24.0843 4068 adpu160m - ok
20:48:24.0859 4068 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
20:48:24.0859 4068 aec - ok
20:48:24.0875 4068 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:48:24.0875 4068 AFD - ok
20:48:25.0078 4068 [ 994A42D273C35B43EE9D1E8A5D8BC639 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
20:48:25.0328 4068 AgereSoftModem - ok
20:48:25.0343 4068 Scan interrupted by user!
20:48:25.0343 4068 ================ Scan global ===============================
20:48:25.0343 4068 Scan interrupted by user!
20:48:25.0343 4068 ================ Scan MBR ==================================
20:48:25.0343 4068 Scan interrupted by user!
20:48:25.0343 4068 ================ Scan VBR ==================================
20:48:25.0343 4068 Scan interrupted by user!
20:48:25.0343 4068 ============================================================
20:48:25.0343 4068 Scan finished
20:48:25.0343 4068 ============================================================
20:48:25.0531 0604 Detected object count: 0
20:48:25.0531 0604 Actual detected object count: 0
20:50:18.0578 1336 ============================================================
20:50:18.0578 1336 Scan started
20:50:18.0578 1336 Mode: Manual;
20:50:18.0578 1336 ============================================================
20:50:19.0421 1336 ================ Scan system memory ========================
20:50:19.0421 1336 Scan interrupted by user!
20:50:19.0421 1336 ================ Scan services =============================
20:50:19.0421 1336 Scan interrupted by user!
20:50:19.0421 1336 ================ Scan global ===============================
20:50:19.0421 1336 Scan interrupted by user!
20:50:19.0437 1336 ================ Scan MBR ==================================
20:50:19.0437 1336 Scan interrupted by user!
20:50:19.0437 1336 ================ Scan VBR ==================================
20:50:19.0437 1336 Scan interrupted by user!
20:50:19.0437 1336 ============================================================
20:50:19.0437 1336 Scan finished
20:50:19.0437 1336 ============================================================
20:50:19.0437 2312 Detected object count: 0
20:50:19.0437 2312 Actual detected object count: 0
20:50:20.0359 3644 ============================================================
20:50:20.0359 3644 Scan started
20:50:20.0359 3644 Mode: Manual;
20:50:20.0359 3644 ============================================================
20:50:20.0843 3644 ================ Scan system memory ========================
20:50:20.0843 3644 System memory - ok
20:50:20.0843 3644 ================ Scan services =============================
20:50:20.0968 3644 Abiosdsk - ok
20:50:20.0968 3644 abp480n5 - ok
20:50:21.0015 3644 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:50:21.0015 3644 ACPI - ok
20:50:21.0031 3644 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
20:50:21.0031 3644 ACPIEC - ok
20:50:21.0109 3644 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:50:21.0109 3644 AdobeFlashPlayerUpdateSvc - ok
20:50:21.0109 3644 adpu160m - ok
20:50:21.0140 3644 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
20:50:21.0140 3644 aec - ok
20:50:21.0156 3644 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:50:21.0156 3644 AFD - ok
20:50:21.0218 3644 [ 994A42D273C35B43EE9D1E8A5D8BC639 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
20:50:21.0234 3644 AgereSoftModem - ok
20:50:21.0234 3644 Aha154x - ok
20:50:21.0250 3644 aic78u2 - ok
20:50:21.0250 3644 aic78xx - ok
20:50:21.0281 3644 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
20:50:21.0281 3644 Alerter - ok
20:50:21.0421 3644 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
20:50:21.0437 3644 ALG - ok
20:50:21.0640 3644 AliIde - ok
20:50:21.0859 3644 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
20:50:21.0859 3644 AmdK8 - ok
20:50:21.0953 3644 amsint - ok
20:50:22.0015 3644 [ 8D3A55F7B7BE6B374479E5195F477226 ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
20:50:22.0031 3644 AnyDVD - ok
20:50:22.0171 3644 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:50:22.0171 3644 Apple Mobile Device - ok
20:50:22.0203 3644 [ 9C3C12975C97119412802B181FBEEFFE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:50:22.0203 3644 AppMgmt - ok
20:50:22.0218 3644 [ 00523019E3579C8F8A94457FE25F0F24 ] aracpi C:\WINDOWS\system32\DRIVERS\aracpi.sys
20:50:22.0218 3644 aracpi - ok
20:50:22.0234 3644 [ 9FEDAA46EB1A572AC4D9EE6B5F123CF2 ] arhidfltr C:\WINDOWS\system32\DRIVERS\arhidfltr.sys
20:50:22.0234 3644 arhidfltr - ok
20:50:22.0250 3644 [ 82969576093CD983DD559F5A86F382B4 ] arkbcfltr C:\WINDOWS\system32\DRIVERS\arkbcfltr.sys
20:50:22.0250 3644 arkbcfltr - ok
20:50:22.0265 3644 [ 9B21791D8A78FAECE999FADBEBDA6C22 ] armoucfltr C:\WINDOWS\system32\DRIVERS\armoucfltr.sys
20:50:22.0265 3644 armoucfltr - ok
20:50:22.0312 3644 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:50:22.0312 3644 Arp1394 - ok
20:50:22.0312 3644 [ 7A2DA7C7B0C524EF26A79F17A5C69FDE ] ARPolicy C:\WINDOWS\system32\DRIVERS\arpolicy.sys
20:50:22.0312 3644 ARPolicy - ok
20:50:22.0359 3644 [ 9A0D9B2E263BEDE80FB79DDBAD240EC1 ] ARSVC C:\WINDOWS\arservice.exe
20:50:22.0359 3644 ARSVC - ok
20:50:22.0359 3644 asc - ok
20:50:22.0375 3644 asc3350p - ok
20:50:22.0375 3644 asc3550 - ok
20:50:22.0484 3644 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:50:22.0484 3644 aspnet_state - ok
20:50:22.0515 3644 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:50:22.0515 3644 AsyncMac - ok
20:50:22.0546 3644 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
20:50:22.0546 3644 atapi - ok
20:50:22.0546 3644 Atdisk - ok
20:50:22.0578 3644 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:50:22.0578 3644 Atmarpc - ok
20:50:22.0625 3644 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
20:50:22.0640 3644 AudioSrv - ok
20:50:22.0750 3644 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
20:50:22.0781 3644 audstub - ok
20:50:23.0359 3644 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
20:50:23.0406 3644 AVGIDSAgent - ok
20:50:23.0437 3644 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
20:50:23.0437 3644 AVGIDSHX - ok
20:50:23.0484 3644 [ A4B2D9B833A00FCDA09027641400AB54 ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
20:50:23.0484 3644 avgtp - ok
20:50:23.0531 3644 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
20:50:23.0531 3644 avgwd - ok
20:50:23.0546 3644 [ 7270D070173B20AC9487EA16BB08B45F ] bb-run C:\WINDOWS\system32\DRIVERS\bb-run.sys
20:50:23.0546 3644 bb-run - ok
20:50:23.0593 3644 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:50:23.0593 3644 Beep - ok
20:50:23.0640 3644 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\system32\qmgr.dll
20:50:23.0656 3644 BITS - ok
20:50:23.0718 3644 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:50:23.0718 3644 Bonjour Service - ok
20:50:23.0765 3644 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
20:50:23.0765 3644 Browser - ok
20:50:23.0781 3644 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
20:50:23.0781 3644 cbidf2k - ok
20:50:23.0796 3644 cd20xrnt - ok
20:50:23.0828 3644 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
20:50:23.0828 3644 Cdaudio - ok
20:50:23.0859 3644 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
20:50:23.0859 3644 Cdfs - ok
20:50:23.0875 3644 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:50:23.0875 3644 Cdrom - ok
20:50:23.0890 3644 Changer - ok
20:50:23.0921 3644 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
20:50:23.0921 3644 CiSvc - ok
20:50:23.0953 3644 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
20:50:23.0953 3644 ClipSrv - ok
20:50:24.0078 3644 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:50:24.0078 3644 clr_optimization_v2.0.50727_32 - ok
20:50:24.0281 3644 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:50:24.0281 3644 clr_optimization_v4.0.30319_32 - ok
20:50:24.0296 3644 CmdIde - ok
20:50:24.0343 3644 COMSysApp - ok
20:50:24.0484 3644 Cpqarray - ok
20:50:24.0609 3644 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
20:50:24.0609 3644 CryptSvc - ok
20:50:24.0671 3644 dac2w2k - ok
20:50:24.0671 3644 dac960nt - ok
20:50:24.0703 3644 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:50:24.0703 3644 DcomLaunch - ok
20:50:24.0750 3644 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
20:50:24.0750 3644 Dhcp - ok
20:50:24.0812 3644 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
20:50:24.0812 3644 Disk - ok
20:50:24.0812 3644 dmadmin - ok
20:50:24.0859 3644 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
20:50:24.0859 3644 dmboot - ok
20:50:24.0875 3644 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
20:50:24.0875 3644 dmio - ok
20:50:24.0890 3644 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
20:50:24.0890 3644 dmload - ok
20:50:24.0906 3644 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
20:50:24.0906 3644 dmserver - ok
20:50:24.0937 3644 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
20:50:24.0937 3644 DMusic - ok
20:50:24.0968 3644 [ AAC8FFBFD61E784FA3BAC851D4A0BD5F ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:50:24.0968 3644 Dnscache - ok
20:50:24.0968 3644 dpti2o - ok
20:50:24.0984 3644 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:50:24.0984 3644 drmkaud - ok
20:50:25.0062 3644 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
20:50:25.0062 3644 ehRecvr - ok
20:50:25.0109 3644 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
20:50:25.0109 3644 ehSched - ok
20:50:25.0156 3644 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
20:50:25.0156 3644 ElbyCDIO - ok
20:50:25.0187 3644 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
20:50:25.0187 3644 ERSvc - ok
20:50:25.0218 3644 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
20:50:25.0218 3644 Eventlog - ok
20:50:25.0234 3644 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\system32\es.dll
20:50:25.0234 3644 EventSystem - ok
20:50:25.0296 3644 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:50:25.0328 3644 Fastfat - ok
20:50:25.0484 3644 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:50:25.0578 3644 FastUserSwitchingCompatibility - ok
20:50:25.0718 3644 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
20:50:25.0796 3644 Fax - ok
20:50:25.0828 3644 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
20:50:25.0859 3644 Fdc - ok
20:50:25.0968 3644 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:50:25.0968 3644 Fips - ok
20:50:26.0000 3644 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
20:50:26.0000 3644 Flpydisk - ok
20:50:26.0015 3644 [ 3D234FB6D6EE875EB009864A299BEA29 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
20:50:26.0015 3644 FltMgr - ok
20:50:26.0093 3644 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:50:26.0093 3644 FontCache3.0.0.0 - ok
20:50:26.0125 3644 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:50:26.0125 3644 Fs_Rec - ok
20:50:26.0125 3644 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:50:26.0125 3644 Ftdisk - ok
20:50:26.0140 3644 [ 22399D3CE5840C6082844679CCA5D2FC ] ftsata2 C:\WINDOWS\system32\DRIVERS\ftsata2.sys
20:50:26.0140 3644 ftsata2 - ok
20:50:26.0171 3644 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:50:26.0171 3644 GEARAspiWDM - ok
20:50:26.0187 3644 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:50:26.0187 3644 Gpc - ok
20:50:26.0234 3644 [ 952BDB84AC2BC601FD1B954BAEBA77F6 ] GSService C:\WINDOWS\system32\GSService.exe
20:50:26.0234 3644 GSService - ok
20:50:26.0312 3644 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:50:26.0312 3644 gupdate - ok
20:50:26.0312 3644 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:50:26.0312 3644 gupdatem - ok
20:50:26.0328 3644 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:50:26.0328 3644 HDAudBus - ok
20:50:26.0343 3644 hechttwb - ok
20:50:26.0421 3644 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:50:26.0437 3644 helpsvc - ok
20:50:26.0468 3644 [ 9376E6893E52B368ABC6255BF54F0B28 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:50:26.0468 3644 HidServ - ok
20:50:26.0484 3644 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:50:26.0484 3644 HidUsb - ok
20:50:26.0484 3644 hpn - ok
20:50:26.0515 3644 [ 9F1D80908658EB7F1BF70809E0B51470 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
20:50:26.0515 3644 HPZid412 - ok
20:50:26.0515 3644 [ F7E3E9D50F9CD3DE28085A8FDAA0A1C3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
20:50:26.0515 3644 HPZipr12 - ok
20:50:26.0531 3644 [ CF1B7951B4EC8D13F3C93B74BB2B461B ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
20:50:26.0531 3644 HPZius12 - ok
20:50:26.0562 3644 [ 1F5C64B0C6B2E2F48735A77AE714CCB8 ] HSXHWBS2 C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
20:50:26.0562 3644 HSXHWBS2 - ok
20:50:26.0593 3644 [ A7F8C9228898A1E871D2AE7082F50AC3 ] HSX_DP C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
20:50:26.0609 3644 HSX_DP - ok
20:50:26.0765 3644 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:50:26.0843 3644 HTTP - ok
20:50:26.0984 3644 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:50:26.0984 3644 HTTPFilter - ok
20:50:27.0187 3644 i2omgmt - ok
20:50:27.0203 3644 i2omp - ok
20:50:27.0312 3644 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:50:27.0312 3644 i8042prt - ok
20:50:27.0406 3644 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
20:50:27.0406 3644 IDriverT - ok
20:50:27.0484 3644 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:50:27.0484 3644 idsvc - ok
20:50:27.0515 3644 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:50:27.0515 3644 Imapi - ok
20:50:27.0546 3644 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:50:27.0546 3644 ImapiService - ok
20:50:27.0562 3644 ini910u - ok
20:50:27.0718 3644 [ 4716F7EE8FB7FD02596ECE1EC70AFF53 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
20:50:27.0765 3644 IntcAzAudAddService - ok
20:50:27.0781 3644 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:50:27.0781 3644 IntelIde - ok
20:50:27.0796 3644 intelppm - ok
20:50:27.0812 3644 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:50:27.0812 3644 Ip6Fw - ok
20:50:27.0859 3644 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:50:27.0859 3644 IpFilterDriver - ok
20:50:27.0875 3644 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:50:27.0875 3644 IpInIp - ok
20:50:27.0890 3644 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:50:27.0890 3644 IpNat - ok
20:50:27.0937 3644 [ B84A28B3984185EDA8867541AF14CDDB ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:50:27.0937 3644 iPod Service - ok
20:50:27.0984 3644 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:50:27.0984 3644 IPSec - ok
20:50:28.0062 3644 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:50:28.0062 3644 IRENUM - ok
20:50:28.0281 3644 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:50:28.0281 3644 isapnp - ok
20:50:28.0437 3644 [ 381B25DC8E958D905B33130D500BBF29 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
20:50:28.0437 3644 JavaQuickStarterService - ok
20:50:28.0593 3644 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:50:28.0609 3644 Kbdclass - ok
20:50:28.0671 3644 [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:50:28.0671 3644 kbdhid - ok
20:50:28.0687 3644 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:50:28.0687 3644 kmixer - ok
20:50:28.0718 3644 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:50:28.0718 3644 KSecDD - ok
20:50:28.0750 3644 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:50:28.0750 3644 lanmanserver - ok
20:50:28.0781 3644 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:50:28.0781 3644 lanmanworkstation - ok
20:50:28.0781 3644 lbrtfdc - ok
20:50:28.0843 3644 [ 5D4B38A8D8525356798F5E560C3A3090 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
20:50:28.0843 3644 LightScribeService - ok
20:50:28.0875 3644 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:50:28.0875 3644 LmHosts - ok
20:50:28.0921 3644 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
20:50:28.0921 3644 McrdSvc - ok
20:50:28.0968 3644 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:50:28.0968 3644 mdmxsdk - ok
20:50:29.0000 3644 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:50:29.0000 3644 Messenger - ok
20:50:29.0015 3644 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
20:50:29.0031 3644 MHN - ok
20:50:29.0031 3644 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
20:50:29.0031 3644 MHNDRV - ok
20:50:29.0062 3644 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:50:29.0062 3644 mnmdd - ok
20:50:29.0093 3644 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:50:29.0093 3644 mnmsrvc - ok
20:50:29.0125 3644 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:50:29.0125 3644 Modem - ok
20:50:29.0171 3644 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:50:29.0171 3644 Mouclass - ok
20:50:29.0187 3644 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:50:29.0187 3644 MountMgr - ok
20:50:29.0234 3644 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:50:29.0234 3644 MozillaMaintenance - ok
20:50:29.0265 3644 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
20:50:29.0265 3644 MpFilter - ok
20:50:29.0265 3644 mraid35x - ok
20:50:29.0343 3644 [ 29414447EB5BDE2F8397DC965DBB3156 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:50:29.0406 3644 MRxDAV - ok
20:50:29.0671 3644 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:50:29.0843 3644 MRxSmb - ok
20:50:29.0984 3644 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:50:29.0984 3644 Msfs - ok
20:50:30.0015 3644 MSIServer - ok
20:50:30.0031 3644 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:50:30.0031 3644 MSKSSRV - ok
20:50:30.0093 3644 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:50:30.0093 3644 MsMpSvc - ok
20:50:30.0125 3644 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:50:30.0125 3644 MSPCLOCK - ok
20:50:30.0140 3644 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:50:30.0140 3644 MSPQM - ok
20:50:30.0156 3644 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:50:30.0156 3644 mssmbios - ok
20:50:30.0171 3644 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:50:30.0171 3644 Mup - ok
20:50:30.0265 3644 [ 48DAF84FDE43FF61C6877131A79230AB ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
20:50:30.0265 3644 NBService - ok
20:50:30.0281 3644 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:50:30.0281 3644 NDIS - ok
20:50:30.0328 3644 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:50:30.0328 3644 NdisTapi - ok
20:50:30.0343 3644 [ EEFA1CE63805D2145978621BE5C6D955 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:50:30.0343 3644 Ndisuio - ok
20:50:30.0343 3644 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:50:30.0343 3644 NdisWan - ok
20:50:30.0359 3644 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:50:30.0359 3644 NDProxy - ok
20:50:30.0359 3644 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:50:30.0359 3644 NetBIOS - ok
20:50:30.0375 3644 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:50:30.0375 3644 NetBT - ok
20:50:30.0406 3644 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
20:50:30.0406 3644 NetDDE - ok
20:50:30.0421 3644 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:50:30.0421 3644 NetDDEdsdm - ok
20:50:30.0453 3644 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:50:30.0453 3644 Netlogon - ok
20:50:30.0484 3644 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
20:50:30.0484 3644 Netman - ok
20:50:30.0500 3644 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:50:30.0500 3644 NetTcpPortSharing - ok
20:50:30.0531 3644 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:50:30.0531 3644 NIC1394 - ok
20:50:30.0562 3644 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
20:50:30.0562 3644 Nla - ok
20:50:30.0578 3644 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:50:30.0578 3644 Npfs - ok
20:50:30.0593 3644 [ 19A811EF5F1ED5C926A028CE107FF1AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:50:30.0593 3644 Ntfs - ok
20:50:30.0593 3644 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:50:30.0593 3644 NtLmSsp - ok
20:50:30.0718 3644 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:50:30.0765 3644 NtmsSvc - ok
20:50:30.0875 3644 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
20:50:30.0875 3644 Null - ok
20:50:31.0234 3644 [ 642A87877F83313EB5302749CD479024 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:50:31.0359 3644 nv - ok
20:50:31.0406 3644 [ 22EEDB34C4D7613A25B10C347C6C4C21 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
20:50:31.0406 3644 NVENETFD - ok
20:50:31.0421 3644 [ 5E3F6AD5CAD0F12D3CCCD06FD964087A ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
20:50:31.0421 3644 nvnetbus - ok
20:50:31.0421 3644 [ B0903C021BFCD6055C053A569EF98AEF ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
20:50:31.0437 3644 NVSvc - ok
20:50:31.0453 3644 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:50:31.0453 3644 NwlnkFlt - ok
20:50:31.0468 3644 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:50:31.0468 3644 NwlnkFwd - ok
20:50:31.0578 3644 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:50:31.0578 3644 odserv - ok
20:50:31.0625 3644 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:50:31.0625 3644 ohci1394 - ok
20:50:31.0671 3644 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:50:31.0671 3644 ose - ok
20:50:31.0703 3644 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:50:31.0703 3644 Parport - ok
20:50:31.0703 3644 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:50:31.0703 3644 PartMgr - ok
20:50:31.0718 3644 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:50:31.0718 3644 ParVdm - ok
20:50:31.0734 3644 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:50:31.0734 3644 PCI - ok
20:50:31.0734 3644 PCIDump - ok
20:50:31.0750 3644 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:50:31.0750 3644 PCIIde - ok
20:50:31.0765 3644 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
20:50:31.0765 3644 Pcmcia - ok
20:50:31.0765 3644 PDCOMP - ok
20:50:31.0781 3644 PDFRAME - ok
20:50:31.0781 3644 PDRELI - ok
20:50:31.0796 3644 PDRFRAME - ok
20:50:31.0796 3644 perc2 - ok
20:50:31.0812 3644 perc2hib - ok
20:50:31.0859 3644 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
20:50:31.0875 3644 PlugPlay - ok
20:50:31.0921 3644 [ 9D84376931440F3679BEEF2A414FA493 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
20:50:31.0921 3644 Pml Driver HPZ12 - ok
20:50:31.0921 3644 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:50:31.0921 3644 PolicyAgent - ok
20:50:31.0968 3644 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:50:31.0968 3644 PptpMiniport - ok
20:50:32.0093 3644 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
20:50:32.0093 3644 Processor - ok
20:50:32.0171 3644 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:50:32.0171 3644 ProtectedStorage - ok
20:50:32.0312 3644 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
20:50:32.0312 3644 Ps2 - ok
20:50:32.0375 3644 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
20:50:32.0375 3644 PSched - ok
20:50:32.0546 3644 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:50:32.0562 3644 Ptilink - ok
20:50:32.0625 3644 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
20:50:32.0656 3644 PxHelp20 - ok
20:50:32.0687 3644 ql1080 - ok
20:50:32.0703 3644 Ql10wnt - ok
20:50:32.0718 3644 ql12160 - ok
20:50:32.0718 3644 ql1240 - ok
20:50:32.0734 3644 ql1280 - ok
20:50:32.0750 3644 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:50:32.0750 3644 RasAcd - ok
20:50:32.0781 3644 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:50:32.0796 3644 RasAuto - ok
20:50:32.0812 3644 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:50:32.0812 3644 Rasl2tp - ok
20:50:32.0843 3644 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
20:50:32.0843 3644 RasMan - ok
20:50:32.0875 3644 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:50:32.0875 3644 RasPppoe - ok
20:50:32.0875 3644 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:50:32.0890 3644 Raspti - ok
20:50:32.0906 3644 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:50:32.0906 3644 Rdbss - ok
20:50:32.0921 3644 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:50:32.0921 3644 RDPCDD - ok
20:50:32.0937 3644 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:50:32.0937 3644 rdpdr - ok
20:50:32.0984 3644 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:50:32.0984 3644 RDPWD - ok
20:50:33.0000 3644 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:50:33.0000 3644 RDSessMgr - ok
20:50:33.0031 3644 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:50:33.0031 3644 redbook - ok
20:50:33.0062 3644 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:50:33.0078 3644 RemoteAccess - ok
20:50:33.0109 3644 [ 3151427DB7D87107D1C5BE58FAC53960 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:50:33.0125 3644 RemoteRegistry - ok
20:50:33.0187 3644 [ 7728B6AEDC83BC0DEFD0A53371D4613B ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
20:50:33.0187 3644 RichVideo - ok
20:50:33.0187 3644 RimUsb - ok
20:50:33.0234 3644 [ D9B34325EE5DF78B8F28A3DE9F577C7D ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
20:50:33.0234 3644 RimVSerPort - ok
20:50:33.0281 3644 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
20:50:33.0281 3644 ROOTMODEM - ok
20:50:33.0343 3644 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\system32\locator.exe
20:50:33.0343 3644 RpcLocator - ok
20:50:33.0593 3644 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
20:50:33.0671 3644 RpcSs - ok
20:50:33.0796 3644 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:50:33.0812 3644 RSVP - ok
20:50:34.0062 3644 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
20:50:34.0078 3644 rtl8139 - ok
20:50:34.0093 3644 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
20:50:34.0093 3644 SamSs - ok
20:50:34.0125 3644 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:50:34.0125 3644 SCardSvr - ok
20:50:34.0171 3644 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:50:34.0171 3644 Schedule - ok
20:50:34.0218 3644 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:50:34.0218 3644 Secdrv - ok
20:50:34.0234 3644 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
20:50:34.0234 3644 seclogon - ok
20:50:34.0265 3644 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
20:50:34.0265 3644 SENS - ok
20:50:34.0312 3644 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
20:50:34.0312 3644 Serial - ok
20:50:34.0359 3644 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:50:34.0375 3644 Sfloppy - ok
20:50:34.0406 3644 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:50:34.0406 3644 SharedAccess - ok
20:50:34.0421 3644 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:50:34.0421 3644 ShellHWDetection - ok
20:50:34.0437 3644 Simbad - ok
20:50:34.0468 3644 [ 1339E2824D1567A18604AD0157D82E7B ] SMServer C:\WINDOWS\system32\snmvtsvc.exe
20:50:34.0468 3644 SMServer - ok
20:50:34.0515 3644 [ 7C2D2B593B837FD59C17EF649CDA1EA6 ] SndTAudio C:\WINDOWS\system32\drivers\SndTAudio.sys
20:50:34.0515 3644 SndTAudio - ok
20:50:34.0515 3644 Sparrow - ok
20:50:34.0531 3644 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:50:34.0531 3644 splitter - ok
20:50:34.0546 3644 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:50:34.0562 3644 Spooler - ok
20:50:34.0578 3644 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:50:34.0578 3644 sr - ok
20:50:34.0578 3644 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\system32\srsvc.dll
20:50:34.0593 3644 srservice - ok
20:50:34.0593 3644 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:50:34.0609 3644 Srv - ok
20:50:34.0640 3644 [ 64E44ACD8C238FCBBB78F0BA4BDC4B05 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
20:50:34.0640 3644 ssadbus - ok
20:50:34.0734 3644 [ BB2C84A15C765DA89FD832B0E73F26CE ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
20:50:34.0734 3644 ssadmdfl - ok
20:50:34.0781 3644 [ 6D0D132DDC6F43EDA00DCED6D8B1CA31 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
20:50:34.0812 3644 ssadmdm - ok
20:50:34.0906 3644 [ 1A5A397BC459F346AB56492B61EF79F6 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
20:50:34.0906 3644 ssadserd - ok
20:50:35.0000 3644 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:50:35.0000 3644 SSDPSRV - ok
20:50:35.0109 3644 [ B6763F8534AC547CF1AF98AFDFF2EDC8 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:50:35.0125 3644 stisvc - ok
20:50:35.0187 3644 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:50:35.0187 3644 swenum - ok
20:50:35.0390 3644 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:50:35.0390 3644 swmidi - ok
20:50:35.0390 3644 SwPrv - ok
20:50:35.0406 3644 symc810 - ok
20:50:35.0421 3644 symc8xx - ok
20:50:35.0437 3644 sym_hi - ok
20:50:35.0437 3644 sym_u3 - ok
20:50:35.0453 3644 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:50:35.0453 3644 sysaudio - ok
20:50:35.0484 3644 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:50:35.0484 3644 SysmonLog - ok
20:50:35.0515 3644 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:50:35.0515 3644 TapiSrv - ok
20:50:35.0546 3644 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:50:35.0546 3644 Tcpip - ok
20:50:35.0578 3644 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:50:35.0578 3644 TDPIPE - ok
20:50:35.0593 3644 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:50:35.0593 3644 TDTCP - ok
20:50:35.0609 3644 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:50:35.0609 3644 TermDD - ok
20:50:35.0640 3644 [ C29A5286E64D97385178452D5F307B98 ] TermService C:\WINDOWS\System32\termsrv.dll
20:50:35.0640 3644 TermService - ok
20:50:35.0671 3644 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] Themes C:\WINDOWS\System32\shsvcs.dll
20:50:35.0671 3644 Themes - ok
20:50:35.0703 3644 [ 37DB0A7D097310E8B4DE803FC3119C78 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:50:35.0703 3644 TlntSvr - ok
20:50:35.0718 3644 TosIde - ok
20:50:35.0734 3644 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:50:35.0734 3644 TrkWks - ok
20:50:35.0765 3644 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:50:35.0765 3644 Udfs - ok
20:50:35.0765 3644 ultra - ok
20:50:35.0796 3644 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:50:35.0796 3644 Update - ok
20:50:35.0812 3644 [ 8827911A8C37E40C027CBFC88E69D967 ] uploadmgr C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:50:35.0812 3644 uploadmgr - ok
20:50:35.0843 3644 [ ACA5D98663D879C6BAAFCEA7E2F1B710 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:50:35.0843 3644 upnphost - ok
20:50:35.0859 3644 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
20:50:35.0859 3644 UPS - ok
20:50:35.0906 3644 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
20:50:35.0906 3644 USBAAPL - ok
20:50:35.0937 3644 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:50:35.0937 3644 usbccgp - ok
20:50:35.0953 3644 [ 7481D843E672B51039B7E8A161B746B8 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:50:35.0953 3644 usbehci - ok
20:50:35.0968 3644 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:50:35.0968 3644 usbhub - ok
20:50:35.0968 3644 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
20:50:35.0984 3644 usbohci - ok
20:50:35.0984 3644 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:50:35.0984 3644 usbprint - ok
20:50:36.0062 3644 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:50:36.0093 3644 usbscan - ok
20:50:36.0234 3644 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:50:36.0265 3644 usbstor - ok
20:50:36.0343 3644 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:50:36.0343 3644 usbuhci - ok
20:50:36.0578 3644 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:50:36.0578 3644 VgaSave - ok
20:50:36.0734 3644 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
20:50:36.0734 3644 ViaIde - ok
20:50:36.0750 3644 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:50:36.0750 3644 VolSnap - ok
20:50:36.0781 3644 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
20:50:36.0781 3644 VSS - ok
20:50:36.0781 3644 vToolbarUpdater13.1.0 - ok
20:50:36.0828 3644 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\system32\w32time.dll
20:50:36.0828 3644 W32Time - ok
20:50:36.0843 3644 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:50:36.0843 3644 Wanarp - ok
20:50:36.0875 3644 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\WINDOWS\system32\DRIVERS\wdcsam.sys
20:50:36.0875 3644 WDC_SAM - ok
20:50:36.0890 3644 WDICA - ok
20:50:36.0906 3644 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:50:36.0906 3644 wdmaud - ok
20:50:36.0953 3644 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
20:50:36.0953 3644 WebClient - ok
20:50:36.0984 3644 [ 11EC1AFCEB5C917CE73D3C301FF4291E ] winachsx C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:50:36.0984 3644 winachsx - ok
20:50:37.0062 3644 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:50:37.0062 3644 winmgmt - ok
20:50:37.0125 3644 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
20:50:37.0125 3644 WinRM - ok
20:50:37.0171 3644 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
20:50:37.0171 3644 WmdmPmSN - ok
20:50:37.0218 3644 [ 1081C185AED0660B2B5F173C3E023B23 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:50:37.0218 3644 Wmi - ok
20:50:37.0265 3644 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:50:37.0265 3644 WmiApSrv - ok
20:50:37.0562 3644 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
20:50:37.0718 3644 WMPNetworkSvc - ok
20:50:37.0812 3644 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
20:50:37.0828 3644 WpdUsb - ok
20:50:38.0015 3644 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:50:38.0062 3644 WPFFontCache_v0400 - ok
20:50:38.0109 3644 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:50:38.0109 3644 wscsvc - ok
20:50:38.0125 3644 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:50:38.0125 3644 wuauserv - ok
20:50:38.0156 3644 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:50:38.0171 3644 WudfPf - ok
20:50:38.0187 3644 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:50:38.0203 3644 WudfRd - ok
20:50:38.0234 3644 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:50:38.0234 3644 WudfSvc - ok
20:50:38.0250 3644 [ 247520EDED53A08AE89EA4FAE04F54D8 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:50:38.0265 3644 WZCSVC - ok
20:50:38.0281 3644 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:50:38.0281 3644 xmlprov - ok
20:50:38.0296 3644 ================ Scan global ===============================
20:50:38.0328 3644 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
20:50:38.0359 3644 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
20:50:38.0375 3644 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
20:50:38.0390 3644 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
20:50:38.0390 3644 [Global] - ok
20:50:38.0390 3644 ================ Scan MBR ==================================
20:50:38.0421 3644 [ D11C727E03BB7318DCDA069B06E652F0 ] \Device\Harddisk0\DR0
20:50:38.0578 3644 \Device\Harddisk0\DR0 - ok
20:50:38.0578 3644 ================ Scan VBR ==================================
20:50:38.0578 3644 [ ED1F4F7151C3D52BA7E3B1F67FE025C8 ] \Device\Harddisk0\DR0\Partition1
20:50:38.0578 3644 \Device\Harddisk0\DR0\Partition1 - ok
20:50:38.0578 3644 [ AD0C584998E8AC79656877A2AF9400AC ] \Device\Harddisk0\DR0\Partition2
20:50:38.0578 3644 \Device\Harddisk0\DR0\Partition2 - ok
20:50:38.0578 3644 ============================================================
20:50:38.0578 3644 Scan finished
20:50:38.0578 3644 ============================================================
20:50:38.0609 2096 Detected object count: 0
20:50:38.0609 2096 Actual detected object count: 0
20:57:44.0578 1024 ============================================================
20:57:44.0578 1024 Scan started
20:57:44.0578 1024 Mode: Manual;
20:57:44.0578 1024 ============================================================
20:57:45.0296 1024 ================ Scan system memory ========================

#13 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 23 October 2012 - 09:49 PM

20:57:45.0296 1024 System memory - ok
20:57:45.0296 1024 ================ Scan services =============================
20:57:45.0531 1024 Abiosdsk - ok
20:57:45.0546 1024 abp480n5 - ok
20:57:45.0578 1024 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:57:45.0593 1024 ACPI - ok
20:57:45.0609 1024 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
20:57:45.0609 1024 ACPIEC - ok
20:57:45.0687 1024 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:57:45.0687 1024 AdobeFlashPlayerUpdateSvc - ok
20:57:45.0812 1024 adpu160m - ok
20:57:45.0843 1024 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
20:57:45.0843 1024 aec - ok
20:57:45.0921 1024 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:57:45.0921 1024 AFD - ok
20:57:46.0062 1024 [ 994A42D273C35B43EE9D1E8A5D8BC639 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
20:57:46.0078 1024 AgereSoftModem - ok
20:57:46.0093 1024 Aha154x - ok
20:57:46.0125 1024 aic78u2 - ok
20:57:46.0218 1024 aic78xx - ok
20:57:46.0281 1024 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
20:57:46.0281 1024 Alerter - ok
20:57:46.0312 1024 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
20:57:46.0328 1024 ALG - ok
20:57:46.0343 1024 AliIde - ok
20:57:46.0390 1024 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
20:57:46.0390 1024 AmdK8 - ok
20:57:46.0406 1024 amsint - ok
20:57:46.0453 1024 [ 8D3A55F7B7BE6B374479E5195F477226 ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
20:57:46.0453 1024 AnyDVD - ok
20:57:46.0609 1024 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:57:46.0609 1024 Apple Mobile Device - ok
20:57:46.0640 1024 [ 9C3C12975C97119412802B181FBEEFFE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:57:46.0640 1024 AppMgmt - ok
20:57:46.0656 1024 [ 00523019E3579C8F8A94457FE25F0F24 ] aracpi C:\WINDOWS\system32\DRIVERS\aracpi.sys
20:57:46.0656 1024 aracpi - ok
20:57:46.0671 1024 [ 9FEDAA46EB1A572AC4D9EE6B5F123CF2 ] arhidfltr C:\WINDOWS\system32\DRIVERS\arhidfltr.sys
20:57:46.0671 1024 arhidfltr - ok
20:57:46.0687 1024 [ 82969576093CD983DD559F5A86F382B4 ] arkbcfltr C:\WINDOWS\system32\DRIVERS\arkbcfltr.sys
20:57:46.0687 1024 arkbcfltr - ok
20:57:46.0703 1024 [ 9B21791D8A78FAECE999FADBEBDA6C22 ] armoucfltr C:\WINDOWS\system32\DRIVERS\armoucfltr.sys
20:57:46.0703 1024 armoucfltr - ok
20:57:46.0734 1024 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:57:46.0734 1024 Arp1394 - ok
20:57:46.0750 1024 [ 7A2DA7C7B0C524EF26A79F17A5C69FDE ] ARPolicy C:\WINDOWS\system32\DRIVERS\arpolicy.sys
20:57:46.0750 1024 ARPolicy - ok
20:57:46.0781 1024 [ 9A0D9B2E263BEDE80FB79DDBAD240EC1 ] ARSVC C:\WINDOWS\arservice.exe
20:57:46.0796 1024 ARSVC - ok
20:57:46.0796 1024 asc - ok
20:57:46.0812 1024 asc3350p - ok
20:57:46.0812 1024 asc3550 - ok
20:57:46.0921 1024 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:57:46.0921 1024 aspnet_state - ok
20:57:46.0953 1024 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:57:46.0953 1024 AsyncMac - ok
20:57:46.0984 1024 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
20:57:46.0984 1024 atapi - ok
20:57:46.0984 1024 Atdisk - ok
20:57:47.0015 1024 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:57:47.0015 1024 Atmarpc - ok
20:57:47.0046 1024 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
20:57:47.0046 1024 AudioSrv - ok
20:57:47.0265 1024 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
20:57:47.0265 1024 audstub - ok
20:57:47.0890 1024 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
20:57:47.0921 1024 AVGIDSAgent - ok
20:57:47.0968 1024 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
20:57:47.0968 1024 AVGIDSHX - ok
20:57:48.0015 1024 [ A4B2D9B833A00FCDA09027641400AB54 ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
20:57:48.0015 1024 avgtp - ok
20:57:48.0062 1024 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
20:57:48.0062 1024 avgwd - ok
20:57:48.0062 1024 [ 7270D070173B20AC9487EA16BB08B45F ] bb-run C:\WINDOWS\system32\DRIVERS\bb-run.sys
20:57:48.0062 1024 bb-run - ok
20:57:48.0062 1024 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:57:48.0062 1024 Beep - ok
20:57:48.0125 1024 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\system32\qmgr.dll
20:57:48.0125 1024 BITS - ok
20:57:48.0171 1024 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:57:48.0171 1024 Bonjour Service - ok
20:57:48.0218 1024 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
20:57:48.0218 1024 Browser - ok
20:57:48.0234 1024 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
20:57:48.0234 1024 cbidf2k - ok
20:57:48.0250 1024 cd20xrnt - ok
20:57:48.0250 1024 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
20:57:48.0250 1024 Cdaudio - ok
20:57:48.0250 1024 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
20:57:48.0250 1024 Cdfs - ok
20:57:48.0281 1024 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:57:48.0281 1024 Cdrom - ok
20:57:48.0281 1024 Changer - ok
20:57:48.0312 1024 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
20:57:48.0312 1024 CiSvc - ok
20:57:48.0343 1024 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
20:57:48.0343 1024 ClipSrv - ok
20:57:48.0406 1024 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:57:48.0406 1024 clr_optimization_v2.0.50727_32 - ok
20:57:48.0437 1024 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:57:48.0437 1024 clr_optimization_v4.0.30319_32 - ok
20:57:48.0437 1024 CmdIde - ok
20:57:48.0437 1024 COMSysApp - ok
20:57:48.0437 1024 Cpqarray - ok
20:57:48.0468 1024 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
20:57:48.0468 1024 CryptSvc - ok
20:57:48.0578 1024 dac2w2k - ok
20:57:48.0671 1024 dac960nt - ok
20:57:48.0703 1024 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:57:48.0718 1024 DcomLaunch - ok
20:57:48.0781 1024 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
20:57:48.0781 1024 Dhcp - ok
20:57:49.0171 1024 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
20:57:49.0187 1024 Disk - ok
20:57:49.0187 1024 dmadmin - ok
20:57:49.0234 1024 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
20:57:49.0234 1024 dmboot - ok
20:57:49.0250 1024 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
20:57:49.0250 1024 dmio - ok
20:57:49.0265 1024 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
20:57:49.0265 1024 dmload - ok
20:57:49.0312 1024 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
20:57:49.0312 1024 dmserver - ok
20:57:49.0328 1024 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
20:57:49.0328 1024 DMusic - ok
20:57:49.0359 1024 [ AAC8FFBFD61E784FA3BAC851D4A0BD5F ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:57:49.0359 1024 Dnscache - ok
20:57:49.0359 1024 dpti2o - ok
20:57:49.0359 1024 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:57:49.0359 1024 drmkaud - ok
20:57:49.0437 1024 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
20:57:49.0437 1024 ehRecvr - ok
20:57:49.0484 1024 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
20:57:49.0484 1024 ehSched - ok
20:57:49.0531 1024 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
20:57:49.0531 1024 ElbyCDIO - ok
20:57:49.0562 1024 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
20:57:49.0562 1024 ERSvc - ok
20:57:49.0609 1024 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
20:57:49.0609 1024 Eventlog - ok
20:57:49.0625 1024 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\system32\es.dll
20:57:49.0625 1024 EventSystem - ok
20:57:49.0640 1024 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:57:49.0640 1024 Fastfat - ok
20:57:49.0656 1024 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:57:49.0656 1024 FastUserSwitchingCompatibility - ok
20:57:49.0703 1024 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
20:57:49.0703 1024 Fax - ok
20:57:49.0718 1024 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
20:57:49.0718 1024 Fdc - ok
20:57:49.0734 1024 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:57:49.0734 1024 Fips - ok
20:57:49.0734 1024 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
20:57:49.0734 1024 Flpydisk - ok
20:57:49.0734 1024 [ 3D234FB6D6EE875EB009864A299BEA29 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
20:57:49.0750 1024 FltMgr - ok
20:57:49.0812 1024 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:57:49.0812 1024 FontCache3.0.0.0 - ok
20:57:49.0828 1024 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:57:49.0828 1024 Fs_Rec - ok
20:57:49.0828 1024 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:57:49.0828 1024 Ftdisk - ok
20:57:49.0843 1024 [ 22399D3CE5840C6082844679CCA5D2FC ] ftsata2 C:\WINDOWS\system32\DRIVERS\ftsata2.sys
20:57:49.0843 1024 ftsata2 - ok
20:57:49.0875 1024 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:57:49.0875 1024 GEARAspiWDM - ok
20:57:49.0921 1024 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:57:49.0921 1024 Gpc - ok
20:57:50.0046 1024 [ 952BDB84AC2BC601FD1B954BAEBA77F6 ] GSService C:\WINDOWS\system32\GSService.exe
20:57:50.0078 1024 GSService - ok
20:57:50.0531 1024 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:57:50.0531 1024 gupdate - ok
20:57:50.0562 1024 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:57:50.0562 1024 gupdatem - ok
20:57:50.0593 1024 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:57:50.0609 1024 HDAudBus - ok
20:57:50.0609 1024 hechttwb - ok
20:57:50.0687 1024 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:57:50.0687 1024 helpsvc - ok
20:57:50.0734 1024 [ 9376E6893E52B368ABC6255BF54F0B28 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:57:50.0734 1024 HidServ - ok
20:57:50.0734 1024 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:57:50.0734 1024 HidUsb - ok
20:57:50.0750 1024 hpn - ok
20:57:50.0765 1024 [ 9F1D80908658EB7F1BF70809E0B51470 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
20:57:50.0765 1024 HPZid412 - ok
20:57:50.0765 1024 [ F7E3E9D50F9CD3DE28085A8FDAA0A1C3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
20:57:50.0765 1024 HPZipr12 - ok
20:57:50.0781 1024 [ CF1B7951B4EC8D13F3C93B74BB2B461B ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
20:57:50.0781 1024 HPZius12 - ok
20:57:50.0796 1024 [ 1F5C64B0C6B2E2F48735A77AE714CCB8 ] HSXHWBS2 C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
20:57:50.0796 1024 HSXHWBS2 - ok
20:57:50.0828 1024 [ A7F8C9228898A1E871D2AE7082F50AC3 ] HSX_DP C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
20:57:50.0828 1024 HSX_DP - ok
20:57:50.0843 1024 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:57:50.0843 1024 HTTP - ok
20:57:50.0906 1024 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:57:50.0906 1024 HTTPFilter - ok
20:57:50.0921 1024 i2omgmt - ok
20:57:50.0921 1024 i2omp - ok
20:57:50.0921 1024 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:57:50.0921 1024 i8042prt - ok
20:57:50.0968 1024 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
20:57:50.0968 1024 IDriverT - ok
20:57:51.0046 1024 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:57:51.0046 1024 idsvc - ok
20:57:51.0078 1024 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:57:51.0078 1024 Imapi - ok
20:57:51.0125 1024 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:57:51.0125 1024 ImapiService - ok
20:57:51.0125 1024 ini910u - ok
20:57:51.0296 1024 [ 4716F7EE8FB7FD02596ECE1EC70AFF53 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
20:57:51.0406 1024 IntcAzAudAddService - ok
20:57:51.0671 1024 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:57:51.0671 1024 IntelIde - ok
20:57:51.0718 1024 intelppm - ok
20:57:51.0750 1024 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:57:51.0750 1024 Ip6Fw - ok
20:57:51.0781 1024 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:57:51.0781 1024 IpFilterDriver - ok
20:57:51.0812 1024 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:57:51.0812 1024 IpInIp - ok
20:57:51.0828 1024 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:57:51.0828 1024 IpNat - ok
20:57:51.0906 1024 [ B84A28B3984185EDA8867541AF14CDDB ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:57:51.0906 1024 iPod Service - ok
20:57:51.0921 1024 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:57:51.0921 1024 IPSec - ok
20:57:51.0953 1024 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:57:51.0968 1024 IRENUM - ok
20:57:52.0015 1024 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:57:52.0015 1024 isapnp - ok
20:57:52.0125 1024 [ 381B25DC8E958D905B33130D500BBF29 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
20:57:52.0125 1024 JavaQuickStarterService - ok
20:57:52.0140 1024 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:57:52.0140 1024 Kbdclass - ok
20:57:52.0140 1024 [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:57:52.0140 1024 kbdhid - ok
20:57:52.0156 1024 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:57:52.0156 1024 kmixer - ok
20:57:52.0171 1024 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:57:52.0171 1024 KSecDD - ok
20:57:52.0203 1024 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:57:52.0203 1024 lanmanserver - ok
20:57:52.0218 1024 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:57:52.0218 1024 lanmanworkstation - ok
20:57:52.0218 1024 lbrtfdc - ok
20:57:52.0296 1024 [ 5D4B38A8D8525356798F5E560C3A3090 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
20:57:52.0296 1024 LightScribeService - ok
20:57:52.0328 1024 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:57:52.0328 1024 LmHosts - ok
20:57:52.0375 1024 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
20:57:52.0375 1024 McrdSvc - ok
20:57:52.0421 1024 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:57:52.0421 1024 mdmxsdk - ok
20:57:52.0437 1024 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:57:52.0437 1024 Messenger - ok
20:57:52.0468 1024 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
20:57:52.0468 1024 MHN - ok
20:57:52.0484 1024 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
20:57:52.0484 1024 MHNDRV - ok
20:57:52.0500 1024 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:57:52.0500 1024 mnmdd - ok
20:57:52.0531 1024 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:57:52.0531 1024 mnmsrvc - ok
20:57:52.0562 1024 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:57:52.0562 1024 Modem - ok
20:57:52.0562 1024 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:57:52.0562 1024 Mouclass - ok
20:57:52.0562 1024 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:57:52.0578 1024 MountMgr - ok
20:57:52.0625 1024 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:57:52.0625 1024 MozillaMaintenance - ok
20:57:52.0640 1024 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
20:57:52.0640 1024 MpFilter - ok
20:57:52.0656 1024 mraid35x - ok
20:57:52.0671 1024 [ 29414447EB5BDE2F8397DC965DBB3156 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:57:52.0671 1024 MRxDAV - ok
20:57:52.0687 1024 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:57:52.0687 1024 MRxSmb - ok
20:57:52.0703 1024 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:57:52.0703 1024 Msfs - ok
20:57:52.0703 1024 MSIServer - ok
20:57:52.0718 1024 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:57:52.0718 1024 MSKSSRV - ok
20:57:52.0781 1024 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:57:52.0781 1024 MsMpSvc - ok
20:57:52.0812 1024 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:57:52.0812 1024 MSPCLOCK - ok
20:57:52.0859 1024 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:57:52.0859 1024 MSPQM - ok
20:57:52.0921 1024 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:57:52.0921 1024 mssmbios - ok
20:57:52.0937 1024 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:57:52.0937 1024 Mup - ok
20:57:53.0125 1024 [ 48DAF84FDE43FF61C6877131A79230AB ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
20:57:53.0140 1024 NBService - ok
20:57:53.0156 1024 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:57:53.0187 1024 NDIS - ok
20:57:53.0187 1024 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:57:53.0203 1024 NdisTapi - ok
20:57:53.0203 1024 [ EEFA1CE63805D2145978621BE5C6D955 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:57:53.0203 1024 Ndisuio - ok
20:57:53.0218 1024 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:57:53.0250 1024 NdisWan - ok
20:57:53.0359 1024 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:57:53.0359 1024 NDProxy - ok
20:57:53.0359 1024 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:57:53.0359 1024 NetBIOS - ok
20:57:53.0468 1024 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:57:53.0468 1024 NetBT - ok
20:57:53.0500 1024 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
20:57:53.0500 1024 NetDDE - ok
20:57:53.0515 1024 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:57:53.0515 1024 NetDDEdsdm - ok
20:57:53.0546 1024 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:57:53.0546 1024 Netlogon - ok
20:57:53.0562 1024 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
20:57:53.0562 1024 Netman - ok
20:57:53.0593 1024 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:57:53.0593 1024 NetTcpPortSharing - ok
20:57:53.0609 1024 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:57:53.0609 1024 NIC1394 - ok
20:57:53.0640 1024 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
20:57:53.0640 1024 Nla - ok
20:57:53.0656 1024 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:57:53.0656 1024 Npfs - ok
20:57:53.0671 1024 [ 19A811EF5F1ED5C926A028CE107FF1AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:57:53.0671 1024 Ntfs - ok
20:57:53.0671 1024 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:57:53.0671 1024 NtLmSsp - ok
20:57:53.0703 1024 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:57:53.0703 1024 NtmsSvc - ok
20:57:53.0734 1024 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
20:57:53.0734 1024 Null - ok
20:57:53.0828 1024 [ 642A87877F83313EB5302749CD479024 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:57:53.0859 1024 nv - ok
20:57:53.0890 1024 [ 22EEDB34C4D7613A25B10C347C6C4C21 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
20:57:53.0890 1024 NVENETFD - ok
20:57:53.0906 1024 [ 5E3F6AD5CAD0F12D3CCCD06FD964087A ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
20:57:53.0906 1024 nvnetbus - ok
20:57:53.0921 1024 [ B0903C021BFCD6055C053A569EF98AEF ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
20:57:53.0921 1024 NVSvc - ok
20:57:53.0953 1024 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:57:53.0953 1024 NwlnkFlt - ok
20:57:53.0953 1024 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:57:53.0953 1024 NwlnkFwd - ok
20:57:54.0078 1024 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:57:54.0078 1024 odserv - ok
20:57:54.0109 1024 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:57:54.0109 1024 ohci1394 - ok
20:57:54.0171 1024 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:57:54.0171 1024 ose - ok
20:57:54.0187 1024 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:57:54.0187 1024 Parport - ok
20:57:54.0187 1024 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:57:54.0187 1024 PartMgr - ok
20:57:54.0250 1024 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:57:54.0265 1024 ParVdm - ok
20:57:54.0296 1024 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:57:54.0296 1024 PCI - ok
20:57:54.0328 1024 PCIDump - ok
20:57:54.0390 1024 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:57:54.0390 1024 PCIIde - ok
20:57:54.0406 1024 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
20:57:54.0406 1024 Pcmcia - ok
20:57:54.0406 1024 PDCOMP - ok
20:57:54.0453 1024 PDFRAME - ok
20:57:54.0453 1024 PDRELI - ok
20:57:54.0453 1024 PDRFRAME - ok
20:57:54.0515 1024 perc2 - ok
20:57:54.0546 1024 perc2hib - ok
20:57:54.0593 1024 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
20:57:54.0625 1024 PlugPlay - ok
20:57:54.0671 1024 [ 9D84376931440F3679BEEF2A414FA493 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
20:57:54.0671 1024 Pml Driver HPZ12 - ok
20:57:54.0687 1024 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:57:54.0687 1024 PolicyAgent - ok
20:57:54.0734 1024 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:57:54.0765 1024 PptpMiniport - ok
20:57:54.0828 1024 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
20:57:54.0828 1024 Processor - ok
20:57:54.0843 1024 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:57:54.0890 1024 ProtectedStorage - ok
20:57:54.0906 1024 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
20:57:54.0906 1024 Ps2 - ok
20:57:54.0906 1024 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
20:57:54.0921 1024 PSched - ok
20:57:54.0921 1024 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:57:54.0921 1024 Ptilink - ok
20:57:54.0953 1024 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
20:57:54.0953 1024 PxHelp20 - ok
20:57:54.0968 1024 ql1080 - ok
20:57:54.0968 1024 Ql10wnt - ok
20:57:54.0968 1024 ql12160 - ok
20:57:54.0968 1024 ql1240 - ok
20:57:54.0968 1024 ql1280 - ok
20:57:54.0984 1024 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:57:54.0984 1024 RasAcd - ok
20:57:55.0015 1024 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:57:55.0031 1024 RasAuto - ok
20:57:55.0046 1024 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:57:55.0046 1024 Rasl2tp - ok
20:57:55.0078 1024 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
20:57:55.0078 1024 RasMan - ok
20:57:55.0109 1024 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:57:55.0109 1024 RasPppoe - ok
20:57:55.0109 1024 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:57:55.0109 1024 Raspti - ok
20:57:55.0140 1024 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:57:55.0140 1024 Rdbss - ok
20:57:55.0140 1024 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:57:55.0140 1024 RDPCDD - ok
20:57:55.0156 1024 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:57:55.0156 1024 rdpdr - ok
20:57:55.0171 1024 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:57:55.0171 1024 RDPWD - ok
20:57:55.0187 1024 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:57:55.0203 1024 RDSessMgr - ok
20:57:55.0218 1024 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:57:55.0218 1024 redbook - ok
20:57:55.0250 1024 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:57:55.0250 1024 RemoteAccess - ok
20:57:55.0265 1024 [ 3151427DB7D87107D1C5BE58FAC53960 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:57:55.0265 1024 RemoteRegistry - ok
20:57:55.0328 1024 [ 7728B6AEDC83BC0DEFD0A53371D4613B ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
20:57:55.0328 1024 RichVideo - ok
20:57:55.0328 1024 RimUsb - ok
20:57:55.0359 1024 [ D9B34325EE5DF78B8F28A3DE9F577C7D ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
20:57:55.0359 1024 RimVSerPort - ok
20:57:55.0406 1024 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
20:57:55.0406 1024 ROOTMODEM - ok
20:57:55.0437 1024 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\system32\locator.exe
20:57:55.0437 1024 RpcLocator - ok
20:57:55.0468 1024 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
20:57:55.0484 1024 RpcSs - ok
20:57:55.0515 1024 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:57:55.0515 1024 RSVP - ok
20:57:55.0531 1024 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
20:57:55.0531 1024 rtl8139 - ok
20:57:55.0562 1024 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
20:57:55.0562 1024 SamSs - ok
20:57:55.0578 1024 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:57:55.0578 1024 SCardSvr - ok
20:57:55.0609 1024 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:57:55.0609 1024 Schedule - ok
20:57:55.0671 1024 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:57:55.0671 1024 Secdrv - ok
20:57:55.0718 1024 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
20:57:55.0781 1024 seclogon - ok
20:57:55.0937 1024 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
20:57:55.0937 1024 SENS - ok
20:57:56.0031 1024 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
20:57:56.0031 1024 Serial - ok
20:57:56.0062 1024 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:57:56.0078 1024 Sfloppy - ok
20:57:56.0125 1024 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:57:56.0125 1024 SharedAccess - ok
20:57:56.0250 1024 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:57:56.0250 1024 ShellHWDetection - ok
20:57:56.0250 1024 Simbad - ok
20:57:56.0296 1024 [ 1339E2824D1567A18604AD0157D82E7B ] SMServer C:\WINDOWS\system32\snmvtsvc.exe
20:57:56.0312 1024 SMServer - ok
20:57:56.0343 1024 [ 7C2D2B593B837FD59C17EF649CDA1EA6 ] SndTAudio C:\WINDOWS\system32\drivers\SndTAudio.sys
20:57:56.0343 1024 SndTAudio - ok
20:57:56.0359 1024 Sparrow - ok
20:57:56.0359 1024 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:57:56.0359 1024 splitter - ok
20:57:56.0421 1024 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:57:56.0421 1024 Spooler - ok
20:57:56.0453 1024 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:57:56.0453 1024 sr - ok
20:57:56.0531 1024 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\system32\srsvc.dll
20:57:56.0546 1024 srservice - ok
20:57:56.0625 1024 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:57:56.0625 1024 Srv - ok
20:57:56.0671 1024 [ 64E44ACD8C238FCBBB78F0BA4BDC4B05 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
20:57:56.0671 1024 ssadbus - ok
20:57:56.0734 1024 [ BB2C84A15C765DA89FD832B0E73F26CE ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
20:57:56.0734 1024 ssadmdfl - ok
20:57:56.0812 1024 [ 6D0D132DDC6F43EDA00DCED6D8B1CA31 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
20:57:56.0812 1024 ssadmdm - ok
20:57:56.0859 1024 [ 1A5A397BC459F346AB56492B61EF79F6 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
20:57:56.0859 1024 ssadserd - ok
20:57:56.0890 1024 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:57:56.0890 1024 SSDPSRV - ok
20:57:56.0937 1024 [ B6763F8534AC547CF1AF98AFDFF2EDC8 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:57:56.0937 1024 stisvc - ok
20:57:56.0953 1024 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:57:56.0953 1024 swenum - ok
20:57:56.0968 1024 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:57:56.0968 1024 swmidi - ok
20:57:56.0968 1024 SwPrv - ok
20:57:56.0984 1024 symc810 - ok
20:57:56.0984 1024 symc8xx - ok
20:57:56.0984 1024 sym_hi - ok
20:57:56.0984 1024 sym_u3 - ok
20:57:57.0000 1024 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:57:57.0000 1024 sysaudio - ok
20:57:57.0046 1024 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:57:57.0109 1024 SysmonLog - ok
20:57:57.0234 1024 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:57:57.0234 1024 TapiSrv - ok
20:57:57.0265 1024 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:57:57.0265 1024 Tcpip - ok
20:57:57.0296 1024 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:57:57.0296 1024 TDPIPE - ok
20:57:57.0359 1024 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:57:57.0359 1024 TDTCP - ok
20:57:57.0390 1024 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:57:57.0390 1024 TermDD - ok
20:57:57.0406 1024 [ C29A5286E64D97385178452D5F307B98 ] TermService C:\WINDOWS\System32\termsrv.dll
20:57:57.0421 1024 TermService - ok
20:57:57.0546 1024 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] Themes C:\WINDOWS\System32\shsvcs.dll
20:57:57.0546 1024 Themes - ok
20:57:57.0609 1024 [ 37DB0A7D097310E8B4DE803FC3119C78 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:57:57.0609 1024 TlntSvr - ok
20:57:57.0718 1024 TosIde - ok
20:57:58.0000 1024 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:57:58.0000 1024 TrkWks - ok
20:57:58.0218 1024 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:57:58.0218 1024 Udfs - ok
20:57:58.0218 1024 ultra - ok
20:57:58.0250 1024 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:57:58.0250 1024 Update - ok
20:57:58.0265 1024 [ 8827911A8C37E40C027CBFC88E69D967 ] uploadmgr C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:57:58.0265 1024 uploadmgr - ok
20:57:58.0296 1024 [ ACA5D98663D879C6BAAFCEA7E2F1B710 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:57:58.0312 1024 upnphost - ok
20:57:58.0359 1024 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
20:57:58.0359 1024 UPS - ok
20:57:58.0421 1024 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
20:57:58.0421 1024 USBAAPL - ok
20:57:58.0453 1024 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:57:58.0453 1024 usbccgp - ok
20:57:58.0531 1024 [ 7481D843E672B51039B7E8A161B746B8 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:57:58.0531 1024 usbehci - ok
20:57:58.0562 1024 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:57:58.0578 1024 usbhub - ok
20:57:58.0640 1024 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
20:57:58.0640 1024 usbohci - ok
20:57:58.0718 1024 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:57:58.0718 1024 usbprint - ok
20:57:58.0781 1024 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:57:58.0781 1024 usbscan - ok
20:57:58.0781 1024 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:57:58.0781 1024 usbstor - ok
20:57:58.0843 1024 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:57:58.0843 1024 usbuhci - ok
20:57:58.0875 1024 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:57:58.0875 1024 VgaSave - ok
20:57:58.0968 1024 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
20:57:58.0968 1024 ViaIde - ok
20:57:58.0984 1024 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:57:58.0984 1024 VolSnap - ok
20:57:59.0078 1024 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
20:57:59.0093 1024 VSS - ok
20:57:59.0109 1024 vToolbarUpdater13.1.0 - ok
20:57:59.0187 1024 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\system32\w32time.dll
20:57:59.0187 1024 W32Time - ok
20:57:59.0203 1024 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:57:59.0203 1024 Wanarp - ok
20:57:59.0234 1024 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\WINDOWS\system32\DRIVERS\wdcsam.sys
20:57:59.0234 1024 WDC_SAM - ok
20:57:59.0234 1024 WDICA - ok
20:57:59.0281 1024 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:57:59.0281 1024 wdmaud - ok
20:57:59.0312 1024 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
20:57:59.0312 1024 WebClient - ok
20:57:59.0359 1024 [ 11EC1AFCEB5C917CE73D3C301FF4291E ] winachsx C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:57:59.0359 1024 winachsx - ok
20:57:59.0421 1024 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:57:59.0421 1024 winmgmt - ok
20:57:59.0781 1024 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
20:57:59.0781 1024 WinRM - ok
20:57:59.0828 1024 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
20:57:59.0828 1024 WmdmPmSN - ok
20:58:00.0015 1024 [ 1081C185AED0660B2B5F173C3E023B23 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:58:00.0046 1024 Wmi - ok
20:58:00.0125 1024 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:58:00.0125 1024 WmiApSrv - ok
20:58:00.0609 1024 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
20:58:00.0625 1024 WMPNetworkSvc - ok
20:58:00.0656 1024 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
20:58:00.0656 1024 WpdUsb - ok
20:58:00.0843 1024 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:58:00.0859 1024 WPFFontCache_v0400 - ok
20:58:00.0890 1024 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:58:00.0890 1024 wscsvc - ok
20:58:00.0906 1024 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:58:00.0906 1024 wuauserv - ok
20:58:00.0953 1024 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:58:00.0953 1024 WudfPf - ok
20:58:00.0984 1024 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:58:00.0984 1024 WudfRd - ok
20:58:01.0015 1024 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:58:01.0015 1024 WudfSvc - ok
20:58:01.0609 1024 [ 247520EDED53A08AE89EA4FAE04F54D8 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:58:01.0625 1024 WZCSVC - ok
20:58:01.0687 1024 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:58:01.0718 1024 xmlprov - ok
20:58:01.0718 1024 ================ Scan global ===============================
20:58:01.0796 1024 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
20:58:01.0828 1024 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
20:58:01.0859 1024 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
20:58:01.0875 1024 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
20:58:01.0890 1024 [Global] - ok
20:58:01.0906 1024 ================ Scan MBR ==================================
20:58:01.0921 1024 [ D11C727E03BB7318DCDA069B06E652F0 ] \Device\Harddisk0\DR0
20:58:03.0312 1024 \Device\Harddisk0\DR0 - ok
20:58:03.0359 1024 ================ Scan VBR ==================================
20:58:03.0359 1024 [ ED1F4F7151C3D52BA7E3B1F67FE025C8 ] \Device\Harddisk0\DR0\Partition1
20:58:03.0359 1024 \Device\Harddisk0\DR0\Partition1 - ok
20:58:03.0406 1024 [ AD0C584998E8AC79656877A2AF9400AC ] \Device\Harddisk0\DR0\Partition2
20:58:03.0437 1024 \Device\Harddisk0\DR0\Partition2 - ok
20:58:03.0437 1024 ============================================================
20:58:03.0437 1024 Scan finished
20:58:03.0437 1024 ============================================================
20:58:03.0437 3280 Detected object count: 0
20:58:03.0437 3280 Actual detected object count: 0
08:04:48.0406 3708 ============================================================
08:04:48.0406 3708 Scan started
08:04:48.0406 3708 Mode: Manual;
08:04:48.0406 3708 ============================================================
08:04:49.0000 3708 ================ Scan system memory ========================
08:04:49.0000 3708 System memory - ok
08:04:49.0000 3708 ================ Scan services =============================
08:04:49.0171 3708 Abiosdsk - ok
08:04:49.0187 3708 abp480n5 - ok
08:04:49.0250 3708 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:04:49.0250 3708 ACPI - ok
08:04:49.0281 3708 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
08:04:49.0281 3708 ACPIEC - ok
08:04:49.0343 3708 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:04:49.0343 3708 AdobeFlashPlayerUpdateSvc - ok
08:04:49.0359 3708 adpu160m - ok
08:04:49.0390 3708 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
08:04:49.0390 3708 aec - ok
08:04:49.0406 3708 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
08:04:49.0406 3708 AFD - ok
08:04:49.0468 3708 [ 994A42D273C35B43EE9D1E8A5D8BC639 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
08:04:49.0484 3708 AgereSoftModem - ok
08:04:49.0484 3708 Aha154x - ok
08:04:49.0484 3708 aic78u2 - ok
08:04:49.0500 3708 aic78xx - ok
08:04:49.0546 3708 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
08:04:49.0546 3708 Alerter - ok
08:04:49.0578 3708 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
08:04:49.0578 3708 ALG - ok
08:04:49.0578 3708 AliIde - ok
08:04:49.0593 3708 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
08:04:49.0593 3708 AmdK8 - ok
08:04:49.0609 3708 amsint - ok
08:04:49.0656 3708 [ 8D3A55F7B7BE6B374479E5195F477226 ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
08:04:49.0656 3708 AnyDVD - ok
08:04:49.0843 3708 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:04:49.0843 3708 Apple Mobile Device - ok
08:04:49.0875 3708 [ 9C3C12975C97119412802B181FBEEFFE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
08:04:49.0875 3708 AppMgmt - ok
08:04:49.0875 3708 [ 00523019E3579C8F8A94457FE25F0F24 ] aracpi C:\WINDOWS\system32\DRIVERS\aracpi.sys
08:04:49.0875 3708 aracpi - ok
08:04:49.0906 3708 [ 9FEDAA46EB1A572AC4D9EE6B5F123CF2 ] arhidfltr C:\WINDOWS\system32\DRIVERS\arhidfltr.sys
08:04:49.0906 3708 arhidfltr - ok
08:04:49.0906 3708 [ 82969576093CD983DD559F5A86F382B4 ] arkbcfltr C:\WINDOWS\system32\DRIVERS\arkbcfltr.sys
08:04:49.0921 3708 arkbcfltr - ok
08:04:49.0921 3708 [ 9B21791D8A78FAECE999FADBEBDA6C22 ] armoucfltr C:\WINDOWS\system32\DRIVERS\armoucfltr.sys
08:04:49.0921 3708 armoucfltr - ok
08:04:49.0968 3708 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:04:49.0968 3708 Arp1394 - ok
08:04:49.0984 3708 [ 7A2DA7C7B0C524EF26A79F17A5C69FDE ] ARPolicy C:\WINDOWS\system32\DRIVERS\arpolicy.sys
08:04:49.0984 3708 ARPolicy - ok
08:04:50.0000 3708 [ 9A0D9B2E263BEDE80FB79DDBAD240EC1 ] ARSVC C:\WINDOWS\arservice.exe
08:04:50.0500 3708 ARSVC - ok
08:04:50.0515 3708 asc - ok
08:04:50.0515 3708 asc3350p - ok
08:04:50.0531 3708 asc3550 - ok
08:04:50.0625 3708 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
08:04:50.0625 3708 aspnet_state - ok
08:04:50.0656 3708 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:04:50.0656 3708 AsyncMac - ok
08:04:50.0687 3708 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
08:04:50.0687 3708 atapi - ok
08:04:50.0687 3708 Atdisk - ok
08:04:50.0734 3708 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:04:50.0734 3708 Atmarpc - ok
08:04:50.0765 3708 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
08:04:50.0765 3708 AudioSrv - ok
08:04:50.0812 3708 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
08:04:50.0812 3708 audstub - ok
08:04:50.0968 3708 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Program Files\AVG\AVG2012\avgidsagent.exe
08:04:51.0062 3708 AVGIDSAgent - ok
08:04:51.0078 3708 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
08:04:51.0078 3708 AVGIDSHX - ok
08:04:51.0125 3708 [ A4B2D9B833A00FCDA09027641400AB54 ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
08:04:51.0125 3708 avgtp - ok
08:04:51.0171 3708 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
08:04:51.0187 3708 avgwd - ok
08:04:51.0187 3708 [ 7270D070173B20AC9487EA16BB08B45F ] bb-run C:\WINDOWS\system32\DRIVERS\bb-run.sys
08:04:51.0187 3708 bb-run - ok
08:04:51.0234 3708 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
08:04:51.0234 3708 Beep - ok
08:04:51.0296 3708 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\system32\qmgr.dll
08:04:51.0312 3708 BITS - ok
08:04:51.0343 3708 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:04:51.0359 3708 Bonjour Service - ok
08:04:51.0406 3708 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
08:04:51.0406 3708 Browser - ok
08:04:51.0421 3708 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
08:04:51.0437 3708 cbidf2k - ok
08:04:51.0437 3708 cd20xrnt - ok
08:04:51.0468 3708 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
08:04:51.0468 3708 Cdaudio - ok
08:04:51.0500 3708 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
08:04:51.0500 3708 Cdfs - ok
08:04:51.0515 3708 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:04:51.0515 3708 Cdrom - ok
08:04:51.0531 3708 Changer - ok
08:04:51.0562 3708 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
08:04:51.0562 3708 CiSvc - ok
08:04:51.0593 3708 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
08:04:51.0593 3708 ClipSrv - ok
08:04:51.0656 3708 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:04:51.0703 3708 clr_optimization_v2.0.50727_32 - ok
08:04:51.0734 3708 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:04:51.0734 3708 clr_optimization_v4.0.30319_32 - ok
08:04:51.0734 3708 CmdIde - ok
08:04:51.0750 3708 COMSysApp - ok
08:04:51.0750 3708 Cpqarray - ok
08:04:51.0781 3708 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
08:04:51.0796 3708 CryptSvc - ok
08:04:51.0796 3708 dac2w2k - ok
08:04:51.0796 3708 dac960nt - ok
08:04:51.0843 3708 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
08:04:51.0843 3708 DcomLaunch - ok
08:04:51.0890 3708 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
08:04:51.0890 3708 Dhcp - ok
08:04:51.0937 3708 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
08:04:51.0937 3708 Disk - ok
08:04:51.0937 3708 dmadmin - ok
08:04:51.0984 3708 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
08:04:52.0000 3708 dmboot - ok
08:04:52.0000 3708 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
08:04:52.0000 3708 dmio - ok
08:04:52.0031 3708 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
08:04:52.0031 3708 dmload - ok
08:04:52.0062 3708 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
08:04:52.0062 3708 dmserver - ok
08:04:52.0093 3708 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
08:04:52.0093 3708 DMusic - ok
08:04:52.0109 3708 [ AAC8FFBFD61E784FA3BAC851D4A0BD5F ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
08:04:52.0109 3708 Dnscache - ok
08:04:52.0125 3708 dpti2o - ok
08:04:52.0125 3708 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
08:04:52.0125 3708 drmkaud - ok
08:04:52.0203 3708 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
08:04:52.0218 3708 ehRecvr - ok
08:04:52.0250 3708 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
08:04:52.0328 3708 ehSched - ok
08:04:52.0359 3708 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
08:04:52.0359 3708 ElbyCDIO - ok
08:04:52.0390 3708 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
08:04:52.0390 3708 ERSvc - ok
08:04:52.0421 3708 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
08:04:52.0437 3708 Eventlog - ok
08:04:52.0437 3708 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\system32\es.dll
08:04:52.0437 3708 EventSystem - ok
08:04:52.0453 3708 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
08:04:52.0453 3708 Fastfat - ok
08:04:52.0484 3708 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:04:52.0484 3708 FastUserSwitchingCompatibility - ok
08:04:52.0531 3708 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
08:04:52.0531 3708 Fax - ok
08:04:52.0562 3708 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
08:04:52.0562 3708 Fdc - ok
08:04:52.0609 3708 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
08:04:52.0609 3708 Fips - ok
08:04:52.0609 3708 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
08:04:52.0609 3708 Flpydisk - ok
08:04:52.0625 3708 [ 3D234FB6D6EE875EB009864A299BEA29 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
08:04:52.0625 3708 FltMgr - ok
08:04:52.0703 3708 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:04:52.0703 3708 FontCache3.0.0.0 - ok
08:04:52.0718 3708 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:04:52.0718 3708 Fs_Rec - ok
08:04:52.0718 3708 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:04:52.0734 3708 Ftdisk - ok
08:04:52.0734 3708 [ 22399D3CE5840C6082844679CCA5D2FC ] ftsata2 C:\WINDOWS\system32\DRIVERS\ftsata2.sys
08:04:52.0734 3708 ftsata2 - ok
08:04:52.0765 3708 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:04:52.0765 3708 GEARAspiWDM - ok
08:04:52.0812 3708 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:04:52.0812 3708 Gpc - ok
08:04:52.0859 3708 [ 952BDB84AC2BC601FD1B954BAEBA77F6 ] GSService C:\WINDOWS\system32\GSService.exe
08:04:53.0031 3708 GSService - ok
08:04:53.0109 3708 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
08:04:53.0109 3708 gupdate - ok
08:04:53.0109 3708 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
08:04:53.0109 3708 gupdatem - ok
08:04:53.0125 3708 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:04:53.0125 3708 HDAudBus - ok
08:04:53.0140 3708 hechttwb - ok
08:04:53.0234 3708 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:04:53.0234 3708 helpsvc - ok
08:04:53.0265 3708 [ 9376E6893E52B368ABC6255BF54F0B28 ] HidServ C:\WINDOWS\System32\hidserv.dll
08:04:53.0265 3708 HidServ - ok
08:04:53.0281 3708 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:04:53.0281 3708 HidUsb - ok
08:04:53.0281 3708 hpn - ok
08:04:53.0312 3708 [ 9F1D80908658EB7F1BF70809E0B51470 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:04:53.0312 3708 HPZid412 - ok
08:04:53.0312 3708 [ F7E3E9D50F9CD3DE28085A8FDAA0A1C3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:04:53.0312 3708 HPZipr12 - ok
08:04:53.0328 3708 [ CF1B7951B4EC8D13F3C93B74BB2B461B ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:04:53.0328 3708 HPZius12 - ok
08:04:53.0375 3708 [ 1F5C64B0C6B2E2F48735A77AE714CCB8 ] HSXHWBS2 C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
08:04:53.0390 3708 HSXHWBS2 - ok
08:04:53.0406 3708 [ A7F8C9228898A1E871D2AE7082F50AC3 ] HSX_DP C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
08:04:53.0421 3708 HSX_DP - ok
08:04:53.0437 3708 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
08:04:53.0437 3708 HTTP - ok
08:04:53.0484 3708 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
08:04:53.0500 3708 HTTPFilter - ok
08:04:53.0500 3708 i2omgmt - ok
08:04:53.0515 3708 i2omp - ok
08:04:53.0515 3708 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:04:53.0515 3708 i8042prt - ok
08:04:53.0562 3708 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
08:04:53.0562 3708 IDriverT - ok
08:04:53.0640 3708 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:04:53.0656 3708 idsvc - ok
08:04:53.0687 3708 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
08:04:53.0687 3708 Imapi - ok
08:04:53.0734 3708 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\system32\imapi.exe
08:04:53.0734 3708 ImapiService - ok
08:04:53.0734 3708 ini910u - ok
08:04:53.0906 3708 [ 4716F7EE8FB7FD02596ECE1EC70AFF53 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
08:04:53.0953 3708 IntcAzAudAddService - ok
08:04:53.0968 3708 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
08:04:53.0968 3708 IntelIde - ok
08:04:53.0984 3708 intelppm - ok
08:04:54.0015 3708 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
08:04:54.0015 3708 Ip6Fw - ok
08:04:54.0046 3708 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:04:54.0046 3708 IpFilterDriver - ok
08:04:54.0062 3708 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:04:54.0062 3708 IpInIp - ok
08:04:54.0078 3708 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:04:54.0078 3708 IpNat - ok
08:04:54.0125 3708 [ B84A28B3984185EDA8867541AF14CDDB ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
08:04:54.0140 3708 iPod Service - ok
08:04:54.0156 3708 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:04:54.0156 3708 IPSec - ok
08:04:54.0203 3708 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
08:04:54.0203 3708 IRENUM - ok
08:04:54.0265 3708 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:04:54.0265 3708 isapnp - ok
08:04:54.0375 3708 [ 381B25DC8E958D905B33130D500BBF29 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
08:04:54.0375 3708 JavaQuickStarterService - ok
08:04:54.0390 3708 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:04:54.0390 3708 Kbdclass - ok
08:04:54.0390 3708 [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:04:54.0390 3708 kbdhid - ok
08:04:54.0421 3708 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
08:04:54.0421 3708 kmixer - ok
08:04:54.0421 3708 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
08:04:54.0421 3708 KSecDD - ok
08:04:54.0468 3708 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
08:04:54.0468 3708 lanmanserver - ok
08:04:54.0484 3708 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:04:54.0484 3708 lanmanworkstation - ok
08:04:54.0484 3708 lbrtfdc - ok
08:04:54.0562 3708 [ 5D4B38A8D8525356798F5E560C3A3090 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
08:04:55.0421 3708 LightScribeService - ok
08:04:55.0453 3708 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
08:04:55.0453 3708 LmHosts - ok
08:04:55.0484 3708 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
08:04:55.0484 3708 McrdSvc - ok
08:04:55.0531 3708 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
08:04:55.0531 3708 mdmxsdk - ok
08:04:55.0562 3708 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
08:04:55.0562 3708 Messenger - ok
08:04:55.0593 3708 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
08:04:55.0593 3708 MHN - ok
08:04:55.0609 3708 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
08:04:55.0609 3708 MHNDRV - ok
08:04:55.0625 3708 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
08:04:55.0625 3708 mnmdd - ok
08:04:55.0656 3708 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
08:04:55.0656 3708 mnmsrvc - ok
08:04:55.0687 3708 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
08:04:55.0703 3708 Modem - ok
08:04:55.0734 3708 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:04:55.0734 3708 Mouclass - ok
08:04:55.0750 3708 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
08:04:55.0750 3708 MountMgr - ok
08:04:55.0796 3708 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
08:04:55.0796 3708 MozillaMaintenance - ok
08:04:55.0828 3708 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
08:04:55.0828 3708 MpFilter - ok
08:04:55.0828 3708 mraid35x - ok
08:04:55.0859 3708 [ 29414447EB5BDE2F8397DC965DBB3156 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:04:55.0859 3708 MRxDAV - ok
08:04:55.0906 3708 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:04:55.0906 3708 MRxSmb - ok
08:04:55.0921 3708 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
08:04:55.0921 3708 Msfs - ok
08:04:55.0921 3708 MSIServer - ok
08:04:55.0953 3708 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:04:55.0953 3708 MSKSSRV - ok
08:04:56.0000 3708 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
08:04:56.0000 3708 MsMpSvc - ok
08:04:56.0031 3708 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:04:56.0031 3708 MSPCLOCK - ok
08:04:56.0046 3708 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
08:04:56.0046 3708 MSPQM - ok
08:04:56.0078 3708 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:04:56.0078 3708 mssmbios - ok
08:04:56.0109 3708 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
08:04:56.0109 3708 Mup - ok
08:04:56.0203 3708 [ 48DAF84FDE43FF61C6877131A79230AB ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
08:04:56.0312 3708 NBService - ok
08:04:56.0328 3708 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
08:04:56.0328 3708 NDIS - ok
08:04:56.0343 3708 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:04:56.0343 3708 NdisTapi - ok
08:04:56.0359 3708 [ EEFA1CE63805D2145978621BE5C6D955 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:04:56.0359 3708 Ndisuio - ok
08:04:56.0375 3708 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:04:56.0375 3708 NdisWan - ok
08:04:56.0375 3708 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
08:04:56.0375 3708 NDProxy - ok
08:04:56.0390 3708 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
08:04:56.0390 3708 NetBIOS - ok
08:04:56.0406 3708 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
08:04:56.0406 3708 NetBT - ok
08:04:56.0453 3708 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
08:04:56.0453 3708 NetDDE - ok
08:04:56.0468 3708 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
08:04:56.0468 3708 NetDDEdsdm - ok
08:04:56.0500 3708 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\system32\lsass.exe
08:04:56.0500 3708 Netlogon - ok
08:04:56.0531 3708 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
08:04:56.0531 3708 Netman - ok
08:04:56.0546 3708 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
08:04:56.0562 3708 NetTcpPortSharing - ok
08:04:56.0578 3708 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:04:56.0578 3708 NIC1394 - ok
08:04:56.0609 3708 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
08:04:56.0609 3708 Nla - ok
08:04:56.0625 3708 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
08:04:56.0625 3708 Npfs - ok
08:04:56.0640 3708 [ 19A811EF5F1ED5C926A028CE107FF1AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
08:04:56.0640 3708 Ntfs - ok
08:04:56.0640 3708 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
08:04:56.0640 3708 NtLmSsp - ok
08:04:56.0687 3708 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
08:04:56.0687 3708 NtmsSvc - ok
08:04:56.0718 3708 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
08:04:56.0718 3708 Null - ok
08:04:56.0812 3708 [ 642A87877F83313EB5302749CD479024 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:04:56.0843 3708 nv - ok
08:04:56.0890 3708 [ 22EEDB34C4D7613A25B10C347C6C4C21 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
08:04:56.0890 3708 NVENETFD - ok
08:04:56.0890 3708 [ 5E3F6AD5CAD0F12D3CCCD06FD964087A ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
08:04:56.0890 3708 nvnetbus - ok
08:04:56.0906 3708 [ B0903C021BFCD6055C053A569EF98AEF ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
08:04:56.0906 3708 NVSvc - ok
08:04:56.0937 3708 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:04:56.0937 3708 NwlnkFlt - ok
08:04:56.0953 3708 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:04:56.0953 3708 NwlnkFwd - ok
08:04:57.0062 3708 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:04:57.0062 3708 odserv - ok
08:04:57.0109 3708 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:04:57.0109 3708 ohci1394 - ok
08:04:57.0156 3708 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:04:57.0156 3708 ose - ok
08:04:57.0171 3708 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
08:04:57.0187 3708 Parport - ok
08:04:57.0187 3708 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
08:04:57.0187 3708 PartMgr - ok
08:04:57.0203 3708 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
08:04:57.0203 3708 ParVdm - ok
08:04:57.0203 3708 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
08:04:57.0203 3708 PCI - ok
08:04:57.0218 3708 PCIDump - ok
08:04:57.0218 3708 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
08:04:57.0234 3708 PCIIde - ok
08:04:57.0250 3708 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
08:04:57.0250 3708 Pcmcia - ok
08:04:57.0265 3708 PDCOMP - ok
08:04:57.0265 3708 PDFRAME - ok
08:04:57.0265 3708 PDRELI - ok
08:04:57.0281 3708 PDRFRAME - ok
08:04:57.0281 3708 perc2 - ok
08:04:57.0296 3708 perc2hib - ok
08:04:57.0343 3708 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
08:04:57.0343 3708 PlugPlay - ok
08:04:57.0390 3708 [ 9D84376931440F3679BEEF2A414FA493 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
08:04:57.0718 3708 Pml Driver HPZ12 - ok
08:04:57.0718 3708 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
08:04:57.0718 3708 PolicyAgent - ok
08:04:57.0765 3708 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:04:57.0765 3708 PptpMiniport - ok
08:04:57.0812 3708 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
08:04:57.0812 3708 Processor - ok
08:04:57.0828 3708 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:04:57.0828 3708 ProtectedStorage - ok
08:04:57.0859 3708 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
08:04:57.0859 3708 Ps2 - ok
08:04:57.0859 3708 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
08:04:57.0859 3708 PSched - ok
08:04:57.0875 3708 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:04:57.0875 3708 Ptilink - ok
08:04:57.0890 3708 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
08:04:57.0890 3708 PxHelp20 - ok
08:04:57.0890 3708 ql1080 - ok
08:04:57.0906 3708 Ql10wnt - ok
08:04:57.0906 3708 ql12160 - ok
08:04:57.0921 3708 ql1240 - ok
08:04:57.0921 3708 ql1280 - ok
08:04:57.0953 3708 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:04:57.0953 3708 RasAcd - ok
08:04:57.0984 3708 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
08:04:57.0984 3708 RasAuto - ok
08:04:58.0015 3708 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:04:58.0015 3708 Rasl2tp - ok
08:04:58.0046 3708 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
08:04:58.0046 3708 RasMan - ok
08:04:58.0062 3708 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:04:58.0062 3708 RasPppoe - ok
08:04:58.0062 3708 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
08:04:58.0062 3708 Raspti - ok
08:04:58.0078 3708 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:04:58.0093 3708 Rdbss - ok
08:04:58.0093 3708 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:04:58.0093 3708 RDPCDD - ok
08:04:58.0109 3708 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:04:58.0109 3708 rdpdr - ok
08:04:58.0140 3708 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
08:04:58.0156 3708 RDPWD - ok
08:04:58.0171 3708 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
08:04:58.0171 3708 RDSessMgr - ok
08:04:58.0203 3708 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
08:04:58.0203 3708 redbook - ok
08:04:58.0234 3708 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
08:04:58.0234 3708 RemoteAccess - ok
08:04:58.0250 3708 [ 3151427DB7D87107D1C5BE58FAC53960 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
08:04:58.0250 3708 RemoteRegistry - ok
08:04:58.0312 3708 [ 7728B6AEDC83BC0DEFD0A53371D4613B ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
08:04:58.0312 3708 RichVideo - ok
08:04:58.0328 3708 RimUsb - ok
08:04:58.0375 3708 [ D9B34325EE5DF78B8F28A3DE9F577C7D ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
08:04:58.0375 3708 RimVSerPort - ok
08:04:58.0390 3708 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
08:04:58.0390 3708 ROOTMODEM - ok
08:04:58.0437 3708 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\system32\locator.exe
08:04:58.0437 3708 RpcLocator - ok
08:04:58.0468 3708 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
08:04:58.0468 3708 RpcSs - ok
08:04:58.0515 3708 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
08:04:58.0515 3708 RSVP - ok
08:04:58.0531 3708 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
08:04:58.0531 3708 rtl8139 - ok
08:04:58.0562 3708 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
08:04:58.0562 3708 SamSs - ok
08:04:58.0593 3708 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
08:04:58.0593 3708 SCardSvr - ok
08:04:58.0640 3708 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
08:04:58.0640 3708 Schedule - ok
08:04:58.0687 3708 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:04:58.0687 3708 Secdrv - ok
08:04:58.0687 3708 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
08:04:58.0703 3708 seclogon - ok
08:04:58.0718 3708 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
08:04:58.0718 3708 SENS - ok
08:04:58.0765 3708 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
08:04:58.0765 3708 Serial - ok
08:04:58.0828 3708 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
08:04:58.0828 3708 Sfloppy - ok
08:04:58.0859 3708 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
08:04:58.0875 3708 SharedAccess - ok
08:04:58.0890 3708 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:04:58.0890 3708 ShellHWDetection - ok
08:04:58.0906 3708 Simbad - ok
08:04:58.0937 3708 [ 1339E2824D1567A18604AD0157D82E7B ] SMServer C:\WINDOWS\system32\snmvtsvc.exe
08:04:59.0015 3708 SMServer - ok
08:04:59.0062 3708 [ 7C2D2B593B837FD59C17EF649CDA1EA6 ] SndTAudio C:\WINDOWS\system32\drivers\SndTAudio.sys
08:04:59.0062 3708 SndTAudio - ok
08:04:59.0062 3708 Sparrow - ok
08:04:59.0078 3708 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
08:04:59.0078 3708 splitter - ok
08:04:59.0109 3708 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
08:04:59.0109 3708 Spooler - ok
08:04:59.0125 3708 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
08:04:59.0125 3708 sr - ok
08:04:59.0156 3708 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\system32\srsvc.dll
08:04:59.0156 3708 srservice - ok
08:04:59.0171 3708 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
08:04:59.0171 3708 Srv - ok
08:04:59.0234 3708 [ 64E44ACD8C238FCBBB78F0BA4BDC4B05 ] ssadbus C:\WINDOWS\system32\DRIVERS\ssadbus.sys
08:04:59.0234 3708 ssadbus - ok
08:04:59.0281 3708 [ BB2C84A15C765DA89FD832B0E73F26CE ] ssadmdfl C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys
08:04:59.0281 3708 ssadmdfl - ok
08:04:59.0296 3708 [ 6D0D132DDC6F43EDA00DCED6D8B1CA31 ] ssadmdm C:\WINDOWS\system32\DRIVERS\ssadmdm.sys
08:04:59.0296 3708 ssadmdm - ok
08:04:59.0343 3708 [ 1A5A397BC459F346AB56492B61EF79F6 ] ssadserd C:\WINDOWS\system32\DRIVERS\ssadserd.sys
08:04:59.0343 3708 ssadserd - ok
08:04:59.0359 3708 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
08:04:59.0359 3708 SSDPSRV - ok
08:04:59.0406 3708 [ B6763F8534AC547CF1AF98AFDFF2EDC8 ] stisvc C:\WINDOWS\system32\wiaservc.dll
08:04:59.0406 3708 stisvc - ok
08:04:59.0421 3708 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
08:04:59.0421 3708 swenum - ok
08:04:59.0421 3708 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
08:04:59.0437 3708 swmidi - ok
08:04:59.0437 3708 SwPrv - ok
08:04:59.0453 3708 symc810 - ok
08:04:59.0453 3708 symc8xx - ok
08:04:59.0468 3708 sym_hi - ok
08:04:59.0468 3708 sym_u3 - ok
08:04:59.0484 3708 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
08:04:59.0484 3708 sysaudio - ok
08:04:59.0515 3708 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
08:04:59.0515 3708 SysmonLog - ok
08:04:59.0546 3708 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
08:04:59.0546 3708 TapiSrv - ok
08:04:59.0578 3708 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:04:59.0578 3708 Tcpip - ok
08:04:59.0609 3708 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
08:04:59.0609 3708 TDPIPE - ok
08:04:59.0609 3708 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
08:04:59.0625 3708 TDTCP - ok
08:04:59.0625 3708 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
08:04:59.0625 3708 TermDD - ok
08:04:59.0656 3708 [ C29A5286E64D97385178452D5F307B98 ] TermService C:\WINDOWS\System32\termsrv.dll
08:04:59.0656 3708 TermService - ok
08:04:59.0671 3708 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] Themes C:\WINDOWS\System32\shsvcs.dll
08:04:59.0671 3708 Themes - ok
08:04:59.0703 3708 [ 37DB0A7D097310E8B4DE803FC3119C78 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
08:04:59.0718 3708 TlntSvr - ok
08:04:59.0718 3708 TosIde - ok
08:04:59.0734 3708 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
08:04:59.0734 3708 TrkWks - ok
08:04:59.0781 3708 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
08:04:59.0781 3708 Udfs - ok
08:04:59.0781 3708 ultra - ok
08:04:59.0796 3708 [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
08:04:59.0796 3708 Update - ok
08:04:59.0812 3708 [ 8827911A8C37E40C027CBFC88E69D967 ] uploadmgr C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:04:59.0812 3708 uploadmgr - ok
08:04:59.0843 3708 [ ACA5D98663D879C6BAAFCEA7E2F1B710 ] upnphost C:\WINDOWS\System32\upnphost.dll
08:04:59.0859 3708 upnphost - ok
08:04:59.0875 3708 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
08:04:59.0875 3708 UPS - ok
08:04:59.0921 3708 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
08:04:59.0921 3708 USBAAPL - ok
08:04:59.0937 3708 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:04:59.0953 3708 usbccgp - ok
08:04:59.0953 3708 [ 7481D843E672B51039B7E8A161B746B8 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:04:59.0953 3708 usbehci - ok
08:04:59.0968 3708 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:04:59.0968 3708 usbhub - ok
08:04:59.0984 3708 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
08:04:59.0984 3708 usbohci - ok
08:04:59.0984 3708 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:04:59.0984 3708 usbprint - ok
08:05:00.0000 3708 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:05:00.0000 3708 usbscan - ok
08:05:00.0000 3708 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:05:00.0000 3708 usbstor - ok
08:05:00.0031 3708 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:05:00.0031 3708 usbuhci - ok
08:05:00.0062 3708 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
08:05:00.0062 3708 VgaSave - ok
08:05:00.0062 3708 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
08:05:00.0062 3708 ViaIde - ok
08:05:00.0093 3708 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
08:05:00.0093 3708 VolSnap - ok
08:05:00.0125 3708 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
08:05:00.0125 3708 VSS - ok
08:05:00.0125 3708 vToolbarUpdater13.1.0 - ok
08:05:00.0156 3708 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\system32\w32time.dll
08:05:00.0156 3708 W32Time - ok
08:05:00.0187 3708 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:05:00.0187 3708 Wanarp - ok
08:05:00.0218 3708 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\WINDOWS\system32\DRIVERS\wdcsam.sys
08:05:00.0218 3708 WDC_SAM - ok
08:05:00.0234 3708 WDICA - ok
08:05:00.0250 3708 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
08:05:00.0250 3708 wdmaud - ok
08:05:00.0296 3708 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
08:05:00.0296 3708 WebClient - ok
08:05:00.0328 3708 [ 11EC1AFCEB5C917CE73D3C301FF4291E ] winachsx C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
08:05:00.0343 3708 winachsx - ok
08:05:00.0421 3708 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
08:05:00.0421 3708 winmgmt - ok
08:05:00.0468 3708 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
08:05:00.0500 3708 WinRM - ok
08:05:00.0531 3708 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
08:05:00.0531 3708 WmdmPmSN - ok
08:05:00.0578 3708 [ 1081C185AED0660B2B5F173C3E023B23 ] Wmi C:\WINDOWS\System32\advapi32.dll
08:05:00.0593 3708 Wmi - ok
08:05:00.0625 3708 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:05:00.0625 3708 WmiApSrv - ok
08:05:00.0796 3708 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
08:05:00.0828 3708 WMPNetworkSvc - ok
08:05:00.0859 3708 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
08:05:00.0859 3708 WpdUsb - ok
08:05:00.0937 3708 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
08:05:00.0953 3708 WPFFontCache_v0400 - ok
08:05:00.0984 3708 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
08:05:01.0000 3708 wscsvc - ok
08:05:01.0000 3708 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
08:05:01.0015 3708 wuauserv - ok
08:05:01.0062 3708 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:05:01.0062 3708 WudfPf - ok
08:05:01.0093 3708 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:05:01.0093 3708 WudfRd - ok
08:05:01.0140 3708 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
08:05:01.0156 3708 WudfSvc - ok
08:05:01.0187 3708 [ 247520EDED53A08AE89EA4FAE04F54D8 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
08:05:01.0187 3708 WZCSVC - ok
08:05:01.0218 3708 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
08:05:01.0218 3708 xmlprov - ok
08:05:01.0234 3708 ================ Scan global ===============================
08:05:01.0296 3708 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
08:05:01.0343 3708 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
08:05:01.0343 3708 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
08:05:01.0359 3708 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
08:05:01.0359 3708 [Global] - ok
08:05:01.0359 3708 ================ Scan MBR ==================================
08:05:01.0390 3708 [ D11C727E03BB7318DCDA069B06E652F0 ] \Device\Harddisk0\DR0
08:05:01.0625 3708 \Device\Harddisk0\DR0 - ok
08:05:01.0625 3708 ================ Scan VBR ==================================
08:05:01.0625 3708 [ ED1F4F7151C3D52BA7E3B1F67FE025C8 ] \Device\Harddisk0\DR0\Partition1
08:05:01.0625 3708 \Device\Harddisk0\DR0\Partition1 - ok
08:05:01.0625 3708 [ 769B77713B5ECAF61514A9611C2363A5 ] \Device\Harddisk0\DR0\Partition2
08:05:01.0625 3708 \Device\Harddisk0\DR0\Partition2 - ok
08:05:01.0640 3708 ============================================================
08:05:01.0640 3708 Scan finished
08:05:01.0640 3708 ============================================================
08:05:01.0640 3544 Detected object count: 0
08:05:01.0640 3544 Actual detected object count: 0
08:05:06.0062 1984 Deinitialize success

#14 pirimid

pirimid
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:04:51 PM

Posted 23 October 2012 - 09:51 PM

Sorry I had to post the TDSS log in two parts it said it was too large...I found it in the C; drive...

I ran the combo fix without a problem...I was at first having an issue because I have that free AVG 2012...which I can't delete...but I was able to put it on hold while it ran...

Thanks again

#15 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:05:51 PM

Posted 24 October 2012 - 08:22 AM

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Search of the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).

Please post the logs and let me know what problem persists.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users